last executing test programs:

4.604416551s ago: executing program 2 (id=1003):
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
creat(0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_open_procfs(0x0, 0x0)
r0 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bond0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a000000020000000110000007"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c30000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r3}, &(0x7f0000000000), &(0x7f0000000040)=r4}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@newqdisc={0x90, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, r1, {}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x60, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x5, 0x4, 0x22, 0x1, 0x8, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x4}]}}]}, 0x90}, 0x1, 0x0, 0x0, 0x100}, 0x40)

4.603883311s ago: executing program 2 (id=1004):
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x0, &(0x7f00000021c0), 0x1, 0x789, &(0x7f0000001240)="$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")
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x810)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
futex_waitv(&(0x7f0000001ac0)=[{0x287, &(0x7f0000000280)=0x8000, 0x82}, {0x10, &(0x7f00000002c0), 0x2}, {0x8000, &(0x7f0000000300)=0x7, 0x2}, {0x6, &(0x7f0000000340)=0xd075, 0x80}, {0xfff, &(0x7f0000000380)=0x7, 0x2}, {0x2a, &(0x7f00000003c0)=0x3, 0x82}, {0x8, &(0x7f0000000400)=0x1, 0x2}, {0x5, &(0x7f0000000440)=0x800, 0x82}, {0x6, &(0x7f0000000480)=0x2, 0x2}, {0x1, &(0x7f00000004c0)=0xfff, 0x82}, {0x8, &(0x7f0000000540)=0x81, 0x2}, {0x2, &(0x7f0000000580)=0x2c5, 0x82}, {0xfffffffffffffffa, &(0x7f0000000600)=0x8, 0x2}, {0x6, 0x0, 0x82}, {0x1, &(0x7f0000000680)=0x5, 0x82}, {0x400, &(0x7f00000006c0)=0x5, 0x41}, {0x8, &(0x7f0000000700)=0x10, 0x2}, {0x3, &(0x7f0000000740)=0xc2d100000000000, 0x82}, {0x1, &(0x7f0000000780)=0x5, 0x82}, {0x80000000, &(0x7f0000000800)=0x2, 0x82}, {0x5, &(0x7f0000000840)=0x6, 0x82}, {0x1b, &(0x7f0000000880)=0x40, 0x82}, {0xffffffff7fffffff, &(0x7f00000008c0)=0x5, 0x2}, {0xb, &(0x7f0000000900)=0xb, 0x82}, {0x1ff, &(0x7f0000000940)=0x6, 0x2}, {0xfcb, &(0x7f0000000980)=0x3, 0x2}, {0x4, &(0x7f00000009c0)=0x4, 0x2}, {0x81, &(0x7f0000000a00)=0x40, 0x82}, {0x3, &(0x7f0000000a40)=0x1, 0x80}, {0x1, &(0x7f0000000a80)=0x3, 0x2}, {0x6, &(0x7f0000000ac0)=0x6, 0x82}, {0x191fca1d, &(0x7f0000000b00)=0x1, 0x2}, {0x7, &(0x7f0000000b40), 0x82}, {0x9, &(0x7f0000000b80)=0xfffffffffffffc01, 0x82}, {0x5, &(0x7f0000000bc0)=0x4, 0x2}, {0x6, &(0x7f0000000c00)=0x4, 0x2}, {0xa, &(0x7f0000000c40)=0x100000001, 0x2}, {0x7, &(0x7f0000000c80)=0xfce, 0x82}, {0x2, &(0x7f0000000e00)=0x7fff, 0x2}, {0x50, &(0x7f0000000e40)=0x3ff, 0x2}, {0x8, &(0x7f0000000e80)=0x800, 0x2}, {0x4, &(0x7f0000000ec0), 0x82}, {0x401, &(0x7f0000000f00)=0x1, 0x82}, {0xbe6, &(0x7f0000001a00)=0x185, 0x2}, {0x7, &(0x7f0000001a40)=0xfac, 0x2}], 0x2d, 0x0, &(0x7f0000001f40)={0x77359400}, 0x1)
pwrite64(r1, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = getpid()
r3 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r2, 0x0, 0xffffffffffffffff, 0x0)
r4 = getpid()
r5 = perf_event_open(0x0, r4, 0x0, r3, 0x0)
ioctl$PERF_EVENT_IOC_DISABLE(r5, 0x2401, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
truncate(&(0x7f0000000000)='./file1\x00', 0x100003)

3.125591273s ago: executing program 0 (id=1015):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
r1 = gettid()
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x2082)
read(r2, &(0x7f0000000100)=""/140, 0xde)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r2, 0x4040534e, &(0x7f0000000040)={0x197, @tick, 0x0, {}, 0xff, 0x2})
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r2, 0xc0605345, &(0x7f00000001c0)={0xfffffffd, 0x2, {0xffffffffffffffff, 0x0, 0x8, 0x3, 0x8}, 0x3})
tkill(r1, 0x7)
setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x30, &(0x7f0000000940)=ANY=[@ANYBLOB="020000000000000002000000e0000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000500000002000000e00000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000064010102000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000e000000200"/614], 0x310)

3.005420275s ago: executing program 2 (id=1017):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="1801000001ffffeb00000000eb658e0d850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000400)=ANY=[], 0x254}}, 0x0)

2.888222917s ago: executing program 0 (id=1019):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = syz_io_uring_setup(0x121d, &(0x7f0000000500)={0x0, 0x7d10, 0x80, 0x3, 0x1000034e}, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000580)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1018e58, &(0x7f0000000380)={[{@nodioread_nolock}, {@noblock_validity}, {@data_err_ignore}, {@max_batch_time={'max_batch_time', 0x3d, 0x8c9}}, {@nodiscard}, {@inlinecrypt}, {@i_version}]}, 0x6, 0x5fc, &(0x7f0000000600)="$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")
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1})
io_uring_enter(r0, 0x47bc, 0x0, 0x0, 0x0, 0x0)

2.610131161s ago: executing program 2 (id=1029):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xeb48195b69e85694, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000640)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r0, 0x0, 0x5}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000000000000000000000000851000000600000018020000", @ANYRES32, @ANYBLOB="00000000000000006600020000000000180000000000000000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702"], &(0x7f0000000000)='GPL\x00', 0x2, 0xde, &(0x7f0000000340)=""/222, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

2.519399262s ago: executing program 2 (id=1030):
r0 = socket$kcm(0x2, 0x1000000000000002, 0x0)
sendmsg$inet(r0, &(0x7f0000000b40)={&(0x7f0000000080)={0x2, 0x4e20, @multicast1}, 0x10, &(0x7f0000000000)=[{&(0x7f0000000800)="e9", 0x9500}, {&(0x7f00000017c0)="ea0189bdebb0c16d420ee9b95082abd6431cc7afc22c4a6b8adecef68f76bd81a86e89f9c80e5c868a12b09e80ba8c01eb3f4b7be71f9fc2355c336cedc15eb778e3a3b35c3f72629ea4d9ae42cf4c17255815fb8a47aafd8b8ff0c202b4e09f7c42811261b5e113fcce27b4329ccb792df14b7d6dcfaf2cf8dbb51946e89c862e9252731f680ec50326fc16386aeefe654bac24", 0x94}], 0x2, &(0x7f0000000100)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0xd}, @loopback}}}], 0x20}, 0xe900)
r1 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000240)='GPL\x00', 0x10, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000340)='sys_enter\x00', r2}, 0x18)
getitimer(0x1, &(0x7f0000000280))
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000002540)={{r3}, &(0x7f00000024c0), &(0x7f0000002500)}, 0x20)
fcntl$notify(r1, 0x402, 0x8000001f)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000080), 0x106}}, 0x20)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000380), r1)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r1, 0x89f0, &(0x7f0000000480)={'ip6gre0\x00', &(0x7f00000003c0)={'syztnl0\x00', <r6=>0x0, 0x29, 0xb2, 0xff, 0x9, 0x0, @private2={0xfc, 0x2, '\x00', 0x1}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x1, 0x80, 0x4, 0x401}})
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r1, 0x89f0, &(0x7f0000000580)={'syztnl2\x00', &(0x7f0000000500)={'syztnl1\x00', <r7=>0x0, 0x2f, 0xff, 0x6, 0x7, 0x42, @private0, @private0={0xfc, 0x0, '\x00', 0x1}, 0x7800, 0x20, 0x6, 0x6}})
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000000700)={'syztnl1\x00', &(0x7f00000005c0)={'tunl0\x00', <r8=>0x0, 0x7, 0x8000, 0x10001, 0x2, {{0x3c, 0x4, 0x0, 0x26, 0xf0, 0x64, 0x0, 0x1, 0x4, 0x0, @private=0xa010100, @loopback, {[@timestamp={0x44, 0x18, 0xee, 0x0, 0x6, [0x7, 0x6, 0x7fff, 0x3, 0x7ff]}, @rr={0x7, 0x7, 0x23, [@dev={0xac, 0x14, 0x14, 0x24}]}, @lsrr={0x83, 0x2b, 0xd4, [@multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}, @private=0xa010102, @loopback, @dev={0xac, 0x14, 0x14, 0x1d}, @multicast2, @private=0xa010101, @multicast1, @multicast1, @remote]}, @cipso={0x86, 0x58, 0x0, [{0x0, 0x6, "aba9590f"}, {0x6, 0x6, "8ee4cc19"}, {0x7, 0xf, "50a5a3c839f6c8440307148c11"}, {0x7, 0x12, "9d663a95cf12bfa47efce4b9e582acba"}, {0x6, 0x10, "548688d07482d8152b0e01f10169"}, {0x9f52979f9c0e69e, 0x2}, {0x7, 0xf, "a266bbf75839fcfed23213e77c"}, {0x7, 0x4, "c582"}]}, @timestamp_addr={0x44, 0x34, 0x59, 0x1, 0xf, [{@private=0xa010101, 0x5}, {@broadcast, 0x3}, {@broadcast, 0x1}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x41}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x1000}, {@empty, 0x2}]}, @ra={0x94, 0x4}]}}}}})
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000000740)={'tunl0\x00', &(0x7f0000000840)={'sit0\x00', <r9=>0x0, 0x10, 0x1, 0x5, 0x6, {{0x2b, 0x4, 0x0, 0x5, 0xac, 0x67, 0x0, 0x5, 0x4, 0x0, @remote, @private=0xa010101, {[@timestamp_prespec={0x44, 0x1c, 0xdb, 0x3, 0x9, [{@multicast2, 0x7fffffff}, {@empty, 0x5}, {@broadcast, 0x4}]}, @timestamp_prespec={0x44, 0x14, 0xfb, 0x3, 0x8, [{@dev={0xac, 0x14, 0x14, 0x3e}, 0x6}, {@multicast1, 0xee}]}, @cipso={0x86, 0x64, 0x3, [{0x6, 0x2}, {0x1, 0x2}, {0x7, 0xd, "2c43d62e196d9a4bdbe235"}, {0x5, 0xc, "6b839363badc48d3376e"}, {0x2, 0x4, "d5ef"}, {0x6, 0x12, "c6a36e70d847c7c7bec28c8122c0d5bd"}, {0x2, 0xc, "bacc61e98ac4321446d0"}, {0x5, 0xa, "272941ba0d72cd7b"}, {0x1, 0x10, "4cb487c6a5e2ca84c1cb1db8f0c5"}, {0x5, 0x5, "e1412e"}]}, @ra={0x94, 0x4, 0x1}]}}}}})
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f0000000940)={'ip6_vti0\x00', &(0x7f0000000780)={'syztnl1\x00', <r10=>0x0, 0x4, 0xc, 0xf, 0x3, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x40, 0x80, 0x1, 0xc}})
sendmsg$ETHTOOL_MSG_COALESCE_GET(r1, &(0x7f0000000b80)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000980)={&(0x7f0000000a00)={0x12c, r5, 0x20, 0x70bd27, 0x25dfdbfe, {}, [@HEADER={0x84, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_vlan\x00'}]}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netpci0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x50, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip_vti0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_team\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x12c}, 0x1, 0x0, 0x0, 0x8800}, 0x4000)
fcntl$notify(r1, 0x402, 0x3)

2.496787163s ago: executing program 0 (id=1031):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_read_part_table(0x59d, &(0x7f0000000000)="$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")

2.430890683s ago: executing program 2 (id=1032):
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x5, 0x16, &(0x7f0000001a00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000021000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0x0, r2}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xf, 0x4, 0x4, 0x10004, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x5, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

2.276722426s ago: executing program 0 (id=1035):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f00000010c0)='./file0\x00', 0x8000, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x9, 0x1236, &(0x7f0000003540)="$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")
chdir(&(0x7f0000000040)='./file0\x00')
truncate(&(0x7f0000000300)='./file0\x00', 0x7fff)
r0 = socket$inet6(0xa, 0x3, 0x5)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="3c010000190001000000000000000000e0000001000000000000000000000000fe8000000000000000000000000000aa4e220000000000000a0000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000104000000000000feffffffffffffff030000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000008400050020010000000000000000000000000000000000002b"], 0x13c}}, 0x20040880)
sendmmsg(r0, &(0x7f0000000480)=[{{&(0x7f0000000180)=@l2tp6={0xa, 0x500, 0x4000000, @remote, 0x0, 0x3}, 0x80, 0x0}, 0x5b4}, {{&(0x7f0000000040)=@l2tp6={0xa, 0x0, 0x7080000, @ipv4={'\x00', '\xff\xff', @loopback}, 0x7, 0x1}, 0x80, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000002900"], 0x18}}], 0x2, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
flistxattr(r1, 0x0, 0x2)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r4, &(0x7f0000000300)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0xa)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r5, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0xc, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r6}, 0x10)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r8 = socket(0x10, 0x803, 0x0)
r9 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0xffffffff, {0x0, 0x0, 0x0, r10, {0x0, 0x7}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x2}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtfilter={0x50, 0x2c, 0xd27, 0x30bd29, 0x2, {0x0, 0x0, 0x0, r10, {0x0, 0xc}, {}, {0x7, 0xa}}, [@filter_kind_options=@f_basic={{0xa}, {0x20, 0x2, [@TCA_BASIC_EMATCHES={0x1c, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x1}}, @TCA_EMATCH_TREE_LIST={0x10, 0x2, 0x0, 0x1, [@TCF_EM_META={0xc, 0x1, 0x0, 0x0, {{0x7, 0x4, 0x4}}}]}]}]}}]}, 0x50}}, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000940)=@delchain={0x5c, 0x64, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {0x9}, {0x10, 0xffff}}, [@filter_kind_options=@f_flower={{0xb}, {0x2c, 0x2, [@TCA_FLOWER_KEY_ENC_IPV6_DST_MASK={0x14, 0x22, [0xffff00, 0xffffffff, 0xffffff00, 0xff]}, @TCA_FLOWER_KEY_ENC_IPV6_DST={0x14, 0x21, @empty}]}}]}, 0x5c}}, 0x4040004)

1.935731551s ago: executing program 0 (id=1044):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000410, &(0x7f0000000000)={[{@bsdgroups}, {@jqfmt_vfsv1}]}, 0xc1, 0x7da, &(0x7f0000000fc0)="$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")
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
futex(&(0x7f000000cffc)=0x1, 0x86, 0x2, 0x0, 0x0, 0xfffffffc)
r1 = socket$caif_stream(0x25, 0x1, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000080000000000008000001d8500000007000000850000002a00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x41, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r2}, 0x10)
sendmmsg$inet(r1, &(0x7f0000000fc0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000380)="92", 0x1}], 0x1}, 0x1000000}], 0x2, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000), 0x208e24b)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@newtaction={0x70, 0x30, 0xffff, 0x0, 0x25dfdbff, {}, [{0x5c, 0x1, [@m_ife={0x58, 0x1, 0x0, 0x0, {{0x8}, {0x30, 0x2, 0x0, 0x1, [@TCA_IFE_METALST={0x10, 0x6, [@IFE_META_PRIO={0x8, 0x3, @val=0x949}, @IFE_META_SKBMARK={0x4, 0x1, @void}]}, @TCA_IFE_PARMS={0x1c, 0x1, {{0x1, 0x9, 0x0, 0x5, 0x1}, 0x1}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x70}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000140)='.\x00', 0x0, 0x0)
utimensat(r5, 0x0, &(0x7f0000000100)={{0x0, 0x3fffffff}, {0x0, 0x3fffffff}}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
bpf$TOKEN_CREATE(0x24, &(0x7f00000004c0), 0x8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', 0xffffffffffffffff, 0x0, 0x3}, 0x18)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'veth0_macvtap\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x200, {0x0, 0x0, 0x0, r7, {0xfff2}, {}, {0x9}}}, 0x24}}, 0x0)

1.548686337s ago: executing program 3 (id=1049):
openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/current\x00', 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_int(r0, &(0x7f0000000080)='notify_on_release\x00', 0x2, 0x0)
socket$kcm(0x2, 0x200000000000003, 0x106)
socket$inet_udp(0x2, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10)
socket$kcm(0xa, 0x2, 0x88)
socket$kcm(0x10, 0x2, 0x10)
socket$kcm(0x1e, 0x4, 0x0)
socket$kcm(0x2, 0x5, 0x84)
socket$kcm(0x2, 0x5, 0x84)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1, 0x8}, 0x5f21df7aec8d40fb, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000001c0)=ANY=[@ANYRES32, @ANYRES32=r2, @ANYRES64=r2], 0x20)

1.493692778s ago: executing program 1 (id=1050):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000280), 0x8)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0a0000000400000008000000"], 0x48)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=@updpolicy={0x1bc, 0x19, 0x1, 0x0, 0x400001, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x3, 0x2}}, [@tmpl={0x104, 0x5, [{{@in=@local, 0x0, 0x33}, 0x0, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, {{@in6=@remote, 0x0, 0x3c}, 0x0, @in6=@mcast2}, {{@in6=@local, 0x0, 0x33}, 0x0, @in=@loopback}, {{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x0, @in=@rand_addr=0x64010101}]}]}, 0x1bc}, 0x1, 0x0, 0x0, 0x1}, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002100)={&(0x7f0000000640)='console\x00', r0}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1, 0x0, 0x100}, 0x18)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0xf1, &(0x7f0000000240)={&(0x7f0000000500)=@newqdisc={0x38, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0xc, 0x2, [@TCA_HHF_HH_FLOWS_LIMIT={0x4}]}}]}, 0x38}}, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000001cc0)=[{{0x0, 0x0, &(0x7f00000003c0)=[{0x0}, {0x0}, {0x0}, {0x0}, {&(0x7f0000000700)="6ba095cec5061c959f", 0x9}], 0x5}}], 0x1, 0x40400c1)
r2 = perf_event_open(&(0x7f0000001480)={0x2, 0x80, 0x82, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x20000000, 0x10001}, 0x0, 0x0, 0x7, 0x0, 0x0, 0xd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000180)='cpu==0||!')

1.313564081s ago: executing program 3 (id=1051):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000280), 0x8)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0a0000000400000008000000"], 0x48)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=@updpolicy={0x1bc, 0x19, 0x1, 0x0, 0x400001, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x3, 0x2}}, [@tmpl={0x104, 0x5, [{{@in=@local, 0x0, 0x33}, 0x0, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, {{@in6=@remote, 0x0, 0x3c}, 0x0, @in6=@mcast2}, {{@in6=@local, 0x0, 0x33}, 0x0, @in=@loopback}, {{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x0, @in=@rand_addr=0x64010101}]}]}, 0x1bc}, 0x1, 0x0, 0x0, 0x1}, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002100)={&(0x7f0000000640)='console\x00', r0}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1, 0x0, 0x100}, 0x18)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0xf1, &(0x7f0000000240)={&(0x7f0000000500)=@newqdisc={0x38, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0xc, 0x2, [@TCA_HHF_HH_FLOWS_LIMIT={0x4}]}}]}, 0x38}}, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000001cc0)=[{{0x0, 0x0, &(0x7f00000003c0)=[{0x0}, {0x0}, {0x0}, {0x0}, {&(0x7f0000000700)="6ba095cec5061c959f", 0x9}], 0x5}}], 0x1, 0x40400c1)
r2 = perf_event_open(&(0x7f0000001480)={0x2, 0x80, 0x82, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x20000000, 0x10001}, 0x0, 0x0, 0x7, 0x0, 0x0, 0xd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000180)='cpu==0||!')

1.269679862s ago: executing program 3 (id=1053):
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d00000018110000", @ANYBLOB="0000000000000000b7080000004000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000001c0)='kfree\x00', r0}, 0x10)
openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/current\x00', 0x2, 0x0)

1.243058772s ago: executing program 3 (id=1055):
pipe2(&(0x7f0000000080)={<r0=>0xffffffffffffffff}, 0x4800)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x7, 0x7ffc1ff3}]})
bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e000000000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={0x0, r2, 0x0, 0x400000000}, 0x18)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x18)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000))
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
pipe2$9p(&(0x7f0000000240), 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000013c0)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c0002001c0000001f000000060001000000000008000500", @ANYRES32, @ANYBLOB='\b\x00\n\x00', @ANYRES32, @ANYBLOB="0a000100000070"], 0x64}}, 0x0)

1.128885124s ago: executing program 1 (id=1057):
socket$packet(0x11, 0x2, 0x300)
r0 = socket$netlink(0x10, 0x3, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
write(r0, &(0x7f0000000040)="2700000014000707030e0000120f0a0011000100f5fe009d2fb112ff000000008a151f75080039", 0x27)
recvmsg$can_bcm(r0, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x40000100)

1.110798104s ago: executing program 3 (id=1058):
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x0, &(0x7f00000021c0), 0x1, 0x789, &(0x7f0000001240)="$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")
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x810)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
futex_waitv(&(0x7f0000001ac0)=[{0x287, &(0x7f0000000280)=0x8000, 0x82}, {0x10, &(0x7f00000002c0), 0x2}, {0x6, &(0x7f0000000340)=0xd075, 0x80}, {0xfff, &(0x7f0000000380)=0x7, 0x2}, {0x2a, &(0x7f00000003c0)=0x3, 0x82}, {0x8, &(0x7f0000000400)=0x1, 0x2}, {0x5, &(0x7f0000000440)=0x800, 0x82}, {0x6, &(0x7f0000000480)=0x2, 0x2}, {0x1, &(0x7f00000004c0)=0xfff, 0x82}, {0x8, &(0x7f0000000540)=0x81, 0x2}, {0x2, &(0x7f0000000580)=0x2c5, 0x82}, {0xfffffffffffffffa, &(0x7f0000000600)=0x8, 0x2}, {0x6, 0x0, 0x82}, {0x1, &(0x7f0000000680)=0x5, 0x82}, {0x400, &(0x7f00000006c0)=0x5, 0x41}, {0x8, &(0x7f0000000700)=0x10, 0x2}, {0x3, &(0x7f0000000740)=0xc2d100000000000, 0x82}, {0x1, &(0x7f0000000780)=0x5, 0x82}, {0x80000000, &(0x7f0000000800)=0x2, 0x82}, {0x5, &(0x7f0000000840)=0x6, 0x82}, {0x1b, &(0x7f0000000880)=0x40, 0x82}, {0xffffffff7fffffff, &(0x7f00000008c0)=0x5, 0x2}, {0xb, &(0x7f0000000900)=0xb, 0x82}, {0x1ff, &(0x7f0000000940)=0x6, 0x2}, {0xfcb, &(0x7f0000000980)=0x3, 0x2}, {0x4, &(0x7f00000009c0)=0x4, 0x2}, {0x81, &(0x7f0000000a00)=0x40, 0x82}, {0x3, &(0x7f0000000a40)=0x1, 0x80}, {0x1, &(0x7f0000000a80)=0x3, 0x2}, {0x6, &(0x7f0000000ac0)=0x6, 0x82}, {0x191fca1d, &(0x7f0000000b00)=0x1, 0x2}, {0x7, &(0x7f0000000b40), 0x82}, {0x9, &(0x7f0000000b80)=0xfffffffffffffc01, 0x82}, {0x5, &(0x7f0000000bc0)=0x4, 0x2}, {0x6, &(0x7f0000000c00)=0x4, 0x2}, {0xa, &(0x7f0000000c40)=0x100000001, 0x2}, {0x7, &(0x7f0000000c80)=0xfce, 0x82}, {0x2, &(0x7f0000000e00)=0x7fff, 0x2}, {0x50, &(0x7f0000000e40)=0x3ff, 0x2}, {0x8, &(0x7f0000000e80)=0x800, 0x2}, {0x4, &(0x7f0000000ec0), 0x82}, {0x401, &(0x7f0000000f00)=0x1, 0x82}, {0xbe6, &(0x7f0000001a00)=0x185, 0x2}, {0x7, &(0x7f0000001a40)=0xfac, 0x2}, {0xfffffffffffff455, &(0x7f0000001a80)=0xe, 0x2}], 0x2d, 0x0, &(0x7f0000001f40)={0x77359400}, 0x1)
pwrite64(r1, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = getpid()
r3 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r2, 0x0, 0xffffffffffffffff, 0x0)
r4 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r3, 0x0)
ioctl$PERF_EVENT_IOC_DISABLE(r4, 0x2401, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
truncate(&(0x7f0000000000)='./file1\x00', 0x100003)

1.061237424s ago: executing program 4 (id=1059):
pipe2(&(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x4800)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x7, 0x7ffc1ff3}]})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0xf)
splice(r1, 0x0, r0, 0x0, 0x6, 0x0) (fail_nth: 7)
dup3(r1, r0, 0x0)
sendmsg$IPSET_CMD_PROTOCOL(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000340)=ANY=[@ANYBLOB="2c000000010605"], 0x2c}, 0x1, 0x0, 0x0, 0x40001d0}, 0x80)

1.060269744s ago: executing program 0 (id=1060):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = syz_io_uring_setup(0x121d, &(0x7f0000000500)={0x0, 0x7d10, 0x80, 0x3, 0x1000034e}, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000580)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1018e58, &(0x7f0000000380)={[{@nodioread_nolock}, {@noblock_validity}, {@data_err_ignore}, {@max_batch_time={'max_batch_time', 0x3d, 0x8c9}}, {@nodiscard}, {@inlinecrypt}, {@i_version}]}, 0x6, 0x5fc, &(0x7f0000000600)="$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")
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1})
io_uring_enter(r0, 0x47bc, 0x0, 0x0, 0x0, 0x0)

982.294446ms ago: executing program 1 (id=1061):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x39)
fadvise64(r0, 0xc84d, 0x8, 0x5)
r1 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x6)
symlinkat(&(0x7f0000000400)='./file0/../file0\x00', r2, &(0x7f00000003c0)='./file0\x00')
readlinkat(r2, &(0x7f00000001c0)='./file0/../file0\x00', &(0x7f0000000780)=""/198, 0xc6)
ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f00000008c0)={'wlan0\x00', &(0x7f0000000300)=@ethtool_pauseparam={0x13, 0x5, 0x7, 0x7}})
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000880)={0x18, 0x42, 0x601, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @pid}]}, 0x18}], 0x1}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='blkio.throttle.io_serviced\x00', 0x275a, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100001f00702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$msdos(&(0x7f0000000100), &(0x7f0000000180)='./file1\x00', 0xa1c406, &(0x7f0000000400)=ANY=[@ANYRES32=0x0, @ANYRES16, @ANYRESDEC], 0x1, 0x2a2, &(0x7f0000001140)="$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")
r5 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0)
read(r5, &(0x7f0000001400)=""/4096, 0x1000)
fcntl$lock(r4, 0x5, &(0x7f0000000140)={0x1, 0x1, 0x10800000})
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1800403, &(0x7f0000000940), 0x2, 0x5ad, &(0x7f0000000180)="$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")
r6 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$selinux_validatetrans(r6, &(0x7f0000000180)=ANY=[@ANYBLOB='system_u:ob'], 0x79)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000080)={r0, &(0x7f0000000b80)="7c9caf3902", 0x0}, 0x20)

880.073087ms ago: executing program 4 (id=1062):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000180)={'syzkaller0\x00', 0x7101})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r2)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000280))
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(r2, 0x8943, &(0x7f0000002280)={'syzkaller0\x00', @random="110000000002"})

568.879322ms ago: executing program 1 (id=1063):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f00000001c0)={'batadv_slave_1\x00', <r1=>0x0})
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000140)={r1, 0x1, 0x6, @broadcast}, 0x10)
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f00000002c0)={r1, 0x11, 0x6, @random="08d32bfb45c9"}, 0x10)
setsockopt$packet_drop_memb(r0, 0x107, 0x2, &(0x7f0000000580)={r1, 0x1, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="440000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0300000000000000140012800c0001006d6163766c616e0095e5028008000500", @ANYRES32=r3, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r3, @ANYBLOB], 0x44}}, 0x0)

528.060523ms ago: executing program 4 (id=1064):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
bind$rds(0xffffffffffffffff, 0x0, 0x0)
r1 = socket(0x10, 0x3, 0x6)
r2 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000040))
sendmsg$nl_route_sched(r2, 0x0, 0x20000000)

445.694264ms ago: executing program 4 (id=1065):
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000300)={0x0, 0x0, 0x4, 0x0, '\x00', [{0x1, 0x8, 0x1ff, 0xf38, 0x1, 0xfffffffffffffff9}, {0x6, 0x4, 0x7ffb, 0x1, 0x10000, 0x8000000000000000}], ['\x00', '\x00', '\x00', '\x00']})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000080), &(0x7f00000006c0)='%-010d \x00'}, 0x20)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r1)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r1, 0x0, 0x4000054)

398.718474ms ago: executing program 4 (id=1066):
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d00000018110000", @ANYBLOB="0000000000000000b7080000004000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000001c0)='kfree\x00', r0}, 0x10)
openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/current\x00', 0x2, 0x0)

327.429215ms ago: executing program 4 (id=1067):
r0 = mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x902r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x80, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mq_timedreceive(r0, &(0x7f000001d600)=""/102382, 0x18fee, 0x9000, 0x0)
perf_event_open(&(0x7f0000000100)={0x4, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0xfa, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x1, 0x4}, 0xc8101339d8525423, 0x400000, 0xfffffffc}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0x0, r1, 0x0, 0x5}, 0x18)
lsm_set_self_attr(0x69, 0x0, 0x42, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0900000004000000080000001000000000000000", @ANYRESOCT, @ANYBLOB, @ANYBLOB='\x00'/12], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000000000085200000030000009500000000000000000000000000000035816c24ce406591ef45282956566e52f2768c1119d421e4d4be1dbf4e309f21afd38da5c080b3fd882df93971fb162a4efb736a4ccb7a683c0e65c0b8e4db01000000759de499caa34e1c"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0xfd, 0x0, 0x0, 0x0, 0x0, 0x200, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000280), 0x2}, 0x19c91, 0x0, 0x400, 0x3, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0x8f2b3480, 0x0, 0xfffffffffffffe6c, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
futex(0x0, 0x3, 0x2, &(0x7f0000fd7ff0)={0x0, 0x989680}, 0x0, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x1400000, 0x0, 0xc3072, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$packet(0x11, 0x3, 0x300)
ioctl$AUTOFS_IOC_SETTIMEOUT(r4, 0x80049367, &(0x7f00000000c0)=0xa)
socket$packet(0x11, 0xa, 0x300)
socket$inet_sctp(0x2, 0x1, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
mknodat(0xffffffffffffff9c, 0x0, 0x81c0, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000080000000000000010000009400000007ad4160850000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='netlink_extack\x00', r5}, 0x10)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)

85.905029ms ago: executing program 1 (id=1068):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x18, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1, 0x0, 0x2}, 0x18)
r2 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x88002, 0x0)
pwritev(r2, &(0x7f00000000c0)=[{0x0, 0x4f}, {&(0x7f0000000140)="de", 0x1}], 0x2, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000100)={'erspan0\x00', &(0x7f0000000080)={'ip_vti0\x00', 0x0, 0x20, 0x8, 0x4, 0x8, {{0x15, 0x4, 0x0, 0x0, 0x54, 0x67, 0x0, 0x1, 0x29, 0x0, @multicast2, @empty, {[@cipso={0x86, 0x15, 0xffffffffffffffff, [{0x1, 0xf, "fc40d566617cc1246c9f9ab3da"}]}, @timestamp={0x44, 0x28, 0x8f, 0x0, 0x5, [0x401, 0xc7, 0x1, 0x8, 0x1, 0xc0, 0x2, 0x7b, 0x7]}]}}}}})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x19, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000030000000000000010070000852000000500000085100000ffffffff18110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200000000000085000000860000004135f8ffffffffff18120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000000c000000b700000000000000850000001c0000001834000004000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000000000008500000000000005e24f00060000001829000022", @ANYRES32=r0, @ANYBLOB="00000000000000009500000000000000"], &(0x7f0000000180)='GPL\x00', 0x2, 0x0, 0x0, 0x40f00, 0x7c, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[r0, r0], &(0x7f0000000400)=[{0x0, 0x4, 0x9, 0x5}], 0x10, 0x1, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, @void, @value}, 0x94)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000100085000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
socket(0x2, 0x80805, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00'}, 0x10)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0xc0041, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r5 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r4, &(0x7f00000003c0)=ANY=[@ANYBLOB="034886dd09032800050030000000600000001228290081e949b93897bc3b0000000040007d01ff020000000000000000000000000001"], 0xfdef)

30.81645ms ago: executing program 3 (id=1069):
socket$inet_udp(0x2, 0x2, 0x0)
creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
r0 = gettid()
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x2082)
read(r1, &(0x7f0000000100)=""/140, 0xde)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f0000000040)={0x197, @tick, 0x0, {}, 0xff, 0x2})
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r1, 0xc0605345, &(0x7f00000001c0)={0xfffffffd, 0x2, {0xffffffffffffffff, 0x0, 0x8, 0x3, 0x8}, 0x3})
tkill(r0, 0x7)

0s ago: executing program 1 (id=1070):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x3804402, &(0x7f0000000240)={[{@i_version}, {@abort}, {@resuid}, {@user_xattr}, {@discard}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7b1}}, {@nolazytime}, {@noinit_itable}, {@nomblk_io_submit}, {@nodelalloc}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x40000}}]}, 0x1, 0x55f, &(0x7f0000000c80)="$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") (async)
r1 = open(&(0x7f00000001c0)='./file1\x00', 0x14927e, 0x20)
fallocate(r1, 0x0, 0x0, 0x1001f0) (async)
copy_file_range(r1, 0x0, r1, &(0x7f00000000c0)=0xc615, 0x101, 0x0) (async)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
fallocate(r2, 0x10, 0x6, 0x10001) (async)
io_setup(0x7, &(0x7f00000000c0)=<r3=>0x0) (async)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
setsockopt$sock_timeval(r5, 0x1, 0x14, &(0x7f0000000000)={0x0, 0xea60}, 0x10)
io_submit(r3, 0x2, &(0x7f0000001740)=[&(0x7f0000000200)={0x0, 0x4, 0x0, 0x0, 0x1, r5, &(0x7f0000000100)="02", 0x1}, &(0x7f0000001240)={0x0, 0x0, 0x0, 0x8, 0xff, r4, 0x0, 0x0, 0x6, 0x0, 0x2}]) (async)
syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002a20702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r6}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="0300000004000000040000000a00000000000000", @ANYRES32=0x0, @ANYBLOB="0000000700000000000000002000000000000000fc86d5b5803f2ea69f210fad5ee1c0a9956e97388156bc4e5f56b4e46a134f60f750207a0fafd3daa1eca21dfa5bc5e995ac0c68dee5047470246afda23fe20d915f51a88e7a5017d995ebed7c918ad78a8bb1f800562289eb667c2a", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r8}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r9}, 0x10) (async)
r10 = add_key$keyring(&(0x7f00000003c0), &(0x7f0000000300)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) (async)
r11 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r11, 0x800448d4, &(0x7f0000000080)) (async)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000009c0)="010000000037a788a11d1f000000000000006923c63a4541062101b60a2156566de77062086575a59ea9cb", 0x2b, r10) (async)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000100)={0x0, 0x3, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a31000000001400078005001500070000000800124000000000050005000200000005000400000000000d000300686173683a6e6574"], 0x5c}}, 0x0) (async)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x80)

kernel console output (not intermixed with test programs):

k: 52 bytes leftover after parsing attributes in process `syz.3.516'.
[   69.584989][ T5083] batadv_slave_1: left promiscuous mode
[   69.621025][ T5093] netlink: 12 bytes leftover after parsing attributes in process `syz.4.529'.
[   69.633352][ T5094] loop0: detected capacity change from 0 to 128
[   69.656637][ T5096] loop1: detected capacity change from 0 to 128
[   69.695485][ T5099] loop4: detected capacity change from 0 to 2048
[   69.726901][ T5099] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.739207][ T5099] ext4 filesystem being mounted at /103/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   69.942585][ T5124] netlink: 12 bytes leftover after parsing attributes in process `syz.1.542'.
[   69.967768][ T5128] loop3: detected capacity change from 0 to 128
[   70.026878][ T5136] x_tables: ip6_tables: tcpmss match: only valid for protocol 6
[   70.217851][ T5139] loop3: detected capacity change from 0 to 2048
[   70.269931][ T5135] netlink: 52 bytes leftover after parsing attributes in process `syz.3.545'.
[   70.345357][ T5141] loop1: detected capacity change from 0 to 2048
[   70.414648][ T5141] Alternate GPT is invalid, using primary GPT.
[   70.421092][ T5141]  loop1: p2 p3 p7
[   70.529136][ T5154] loop3: detected capacity change from 0 to 2048
[   70.552463][ T5154] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.565908][ T5156] loop1: detected capacity change from 0 to 1024
[   70.574918][ T5154] ext4 filesystem being mounted at /125/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   70.585300][ T5156] EXT4-fs: inline encryption not supported
[   70.591322][ T5156] EXT4-fs: Ignoring removed i_version option
[   70.599054][ T5156] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   70.616144][ T5156] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #3: block 2: comm syz.1.554: lblock 2 mapped to illegal pblock 2 (length 1)
[   70.641618][ T5156] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #3: block 48: comm syz.1.554: lblock 0 mapped to illegal pblock 48 (length 1)
[   70.660688][ T5156] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.554: Failed to acquire dquot type 0
[   70.675916][ T5156] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   70.686499][ T5156] EXT4-fs error (device loop1): ext4_evict_inode:254: inode #11: comm syz.1.554: mark_inode_dirty error
[   70.697875][ T5156] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   70.710913][ T5156] EXT4-fs (loop1): 1 orphan inode deleted
[   70.714239][ T5162] loop0: detected capacity change from 0 to 128
[   70.717163][ T5156] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.735149][ T1845] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:6: lblock 1 mapped to illegal pblock 1 (length 1)
[   70.765432][ T1845] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:6: Failed to release dquot type 0
[   70.822349][ T5165] netlink: 8 bytes leftover after parsing attributes in process `syz.0.556'.
[   70.868094][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.887964][ T2290] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:7: lblock 1 mapped to illegal pblock 1 (length 1)
[   70.913882][ T5165] loop0: detected capacity change from 0 to 4096
[   70.920700][ T2290] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:7: Failed to release dquot type 0
[   70.934060][ T3314] EXT4-fs error (device loop1): __ext4_get_inode_loc:4792: comm syz-executor: Invalid inode table block 1 in block_group 0
[   70.959902][ T3314] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   70.970078][ T3314] EXT4-fs error (device loop1): ext4_quota_off:7217: inode #3: comm syz-executor: mark_inode_dirty error
[   70.988779][ T5165] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.023833][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.081656][ T2290] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm kworker/u8:7: bg 0: block 345: padding at end of block bitmap is not set
[   71.200175][ T2290] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 241 with error 117
[   71.212820][ T2290] EXT4-fs (loop4): This should not happen!! Data will be lost
[   71.212820][ T2290] 
[   71.247493][  T330] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm kworker/u8:5: bg 0: block 345: padding at end of block bitmap is not set
[   71.292248][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.301470][ T5188] loop1: detected capacity change from 0 to 128
[   71.308852][  T330] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2048 with error 117
[   71.321614][  T330] EXT4-fs (loop3): This should not happen!! Data will be lost
[   71.321614][  T330] 
[   71.412206][ T5196] netlink: 52 bytes leftover after parsing attributes in process `syz.0.570'.
[   71.632713][ T5227] FAULT_INJECTION: forcing a failure.
[   71.632713][ T5227] name failslab, interval 1, probability 0, space 0, times 0
[   71.645450][ T5227] CPU: 1 UID: 0 PID: 5227 Comm: syz.1.581 Not tainted 6.16.0-rc2-syzkaller-00047-g52da431bf03b #0 PREEMPT(voluntary) 
[   71.645549][ T5227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   71.645560][ T5227] Call Trace:
[   71.645566][ T5227]  <TASK>
[   71.645573][ T5227]  __dump_stack+0x1d/0x30
[   71.645594][ T5227]  dump_stack_lvl+0xe8/0x140
[   71.645639][ T5227]  dump_stack+0x15/0x1b
[   71.645655][ T5227]  should_fail_ex+0x265/0x280
[   71.645685][ T5227]  should_failslab+0x8c/0xb0
[   71.645709][ T5227]  kmem_cache_alloc_noprof+0x50/0x310
[   71.645732][ T5227]  ? getname_kernel+0x3c/0x1f0
[   71.645817][ T5227]  getname_kernel+0x3c/0x1f0
[   71.645839][ T5227]  kern_path+0x23/0x130
[   71.645988][ T5227]  autofs_dev_ioctl_ismountpoint+0x12d/0x4c0
[   71.646022][ T5227]  ? __pfx_autofs_dev_ioctl_ismountpoint+0x10/0x10
[   71.646054][ T5227]  autofs_dev_ioctl+0x351/0x6a0
[   71.646135][ T5227]  ? __pfx_autofs_dev_ioctl+0x10/0x10
[   71.646237][ T5227]  __se_sys_ioctl+0xce/0x140
[   71.646269][ T5227]  __x64_sys_ioctl+0x43/0x50
[   71.646300][ T5227]  x64_sys_call+0x19a8/0x2fb0
[   71.646402][ T5227]  do_syscall_64+0xd2/0x200
[   71.646427][ T5227]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   71.646456][ T5227]  ? clear_bhb_loop+0x40/0x90
[   71.646475][ T5227]  ? clear_bhb_loop+0x40/0x90
[   71.646497][ T5227]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.646547][ T5227] RIP: 0033:0x7f96e4a3e929
[   71.646565][ T5227] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   71.646649][ T5227] RSP: 002b:00007f96e30a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   71.646757][ T5227] RAX: ffffffffffffffda RBX: 00007f96e4c65fa0 RCX: 00007f96e4a3e929
[   71.646772][ T5227] RDX: 0000200000000200 RSI: 00000000c018937e RDI: 0000000000000005
[   71.646787][ T5227] RBP: 00007f96e30a7090 R08: 0000000000000000 R09: 0000000000000000
[   71.646801][ T5227] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   71.646815][ T5227] R13: 0000000000000000 R14: 00007f96e4c65fa0 R15: 00007ffd5d7de398
[   71.646835][ T5227]  </TASK>
[   71.889704][ T5229] loop0: detected capacity change from 0 to 128
[   71.916847][ T5233] netlink: 12 bytes leftover after parsing attributes in process `syz.1.586'.
[   71.981791][ T5239] netlink: 4 bytes leftover after parsing attributes in process `syz.4.583'.
[   71.997249][ T5243] netlink: 52 bytes leftover after parsing attributes in process `syz.0.590'.
[   72.069910][ T5253] loop2: detected capacity change from 0 to 2048
[   72.091912][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.106526][ T5255] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=35603 sclass=netlink_route_socket pid=5255 comm=syz.1.593
[   72.138257][ T5253] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   72.169920][ T5268] SELinux: syz.3.601 (5268) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   72.323878][ T5257] netlink: 'syz.4.595': attribute type 1 has an invalid length.
[   72.512913][ T5297] loop3: detected capacity change from 0 to 4096
[   72.540773][ T5297] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.576994][ T5280] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   72.604119][ T5300] FAULT_INJECTION: forcing a failure.
[   72.604119][ T5300] name failslab, interval 1, probability 0, space 0, times 0
[   72.616814][ T5300] CPU: 0 UID: 0 PID: 5300 Comm: syz.4.610 Not tainted 6.16.0-rc2-syzkaller-00047-g52da431bf03b #0 PREEMPT(voluntary) 
[   72.616904][ T5300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   72.616918][ T5300] Call Trace:
[   72.616926][ T5300]  <TASK>
[   72.616935][ T5300]  __dump_stack+0x1d/0x30
[   72.616956][ T5300]  dump_stack_lvl+0xe8/0x140
[   72.616974][ T5300]  dump_stack+0x15/0x1b
[   72.616991][ T5300]  should_fail_ex+0x265/0x280
[   72.617105][ T5300]  should_failslab+0x8c/0xb0
[   72.617145][ T5300]  kmem_cache_alloc_noprof+0x50/0x310
[   72.617175][ T5300]  ? getname_flags+0x80/0x3b0
[   72.617202][ T5300]  getname_flags+0x80/0x3b0
[   72.617223][ T5300]  path_setxattrat+0x223/0x310
[   72.617265][ T5300]  __x64_sys_lsetxattr+0x71/0x90
[   72.617284][ T5300]  x64_sys_call+0x1e36/0x2fb0
[   72.617307][ T5300]  do_syscall_64+0xd2/0x200
[   72.617325][ T5300]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   72.617349][ T5300]  ? clear_bhb_loop+0x40/0x90
[   72.617368][ T5300]  ? clear_bhb_loop+0x40/0x90
[   72.617390][ T5300]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.617454][ T5300] RIP: 0033:0x7f4593cfe929
[   72.617472][ T5300] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   72.617492][ T5300] RSP: 002b:00007f4592367038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[   72.617514][ T5300] RAX: ffffffffffffffda RBX: 00007f4593f25fa0 RCX: 00007f4593cfe929
[   72.617529][ T5300] RDX: 0000200000000280 RSI: 0000200000000000 RDI: 0000200000000400
[   72.617589][ T5300] RBP: 00007f4592367090 R08: 0000000000000000 R09: 0000000000000000
[   72.617681][ T5300] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000000001
[   72.617696][ T5300] R13: 0000000000000000 R14: 00007f4593f25fa0 R15: 00007ffd18494868
[   72.617780][ T5300]  </TASK>
[   72.617841][ T5280] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   72.646877][ T5287] loop0: detected capacity change from 0 to 2048
[   72.651070][ T5280] EXT4-fs (loop2): This should not happen!! Data will be lost
[   72.651070][ T5280] 
[   72.828722][ T5280] EXT4-fs (loop2): Total free blocks count 0
[   72.834783][ T5280] EXT4-fs (loop2): Free/Dirty block details
[   72.840948][ T5280] EXT4-fs (loop2): free_blocks=2415919104
[   72.846732][ T5280] EXT4-fs (loop2): dirty_blocks=8208
[   72.852076][ T5280] EXT4-fs (loop2): Block reservation details
[   72.858080][ T5280] EXT4-fs (loop2): i_reserved_data_blocks=513
[   72.888795][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.935188][   T12] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[   72.952272][ T5310] SELinux: syz.0.617 (5310) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   72.974254][ T5312] loop4: detected capacity change from 0 to 1024
[   72.982275][ T5312] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   72.993196][ T5312] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   73.020180][ T5312] JBD2: no valid journal superblock found
[   73.026002][ T5312] EXT4-fs (loop4): Could not load journal inode
[   73.200551][ T5320] netlink: 'syz.3.620': attribute type 1 has an invalid length.
[   73.224183][ T5341] SELinux: syz.0.628 (5341) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   73.246237][ T5339] loop2: detected capacity change from 0 to 128
[   73.272116][   T29] kauditd_printk_skb: 337 callbacks suppressed
[   73.272134][   T29] audit: type=1400 audit(1750297565.917:5714): avc:  denied  { write } for  pid=5334 comm="syz.4.626" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   73.388933][ T5350] loop1: detected capacity change from 0 to 128
[   73.443487][ T5359] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[   73.443497][   T29] audit: type=1400 audit(1750297566.087:5715): avc:  denied  { mac_admin } for  pid=5358 comm="syz.2.636" capability=33  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   73.496944][   T29] audit: type=1400 audit(1750297566.097:5716): avc:  denied  { relabelto } for  pid=5358 comm="syz.2.636" name="file0" dev="tmpfs" ino=620 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0"
[   73.523519][   T29] audit: type=1400 audit(1750297566.097:5717): avc:  denied  { associate } for  pid=5358 comm="syz.2.636" name="file0" dev="tmpfs" ino=620 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon="system_u:object_r:fsadm_exec_t:s0"
[   73.550925][   T29] audit: type=1400 audit(1750297566.127:5718): avc:  denied  { rmdir } for  pid=3310 comm="syz-executor" name="file0" dev="tmpfs" ino=620 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0"
[   73.587040][ T5368] loop1: detected capacity change from 0 to 2048
[   73.612634][ T5368] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.618993][ T5376] loop0: detected capacity change from 0 to 128
[   73.645753][ T5368] ext4 filesystem being mounted at /141/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   73.673317][ T5382] SELinux: syz.4.643 (5382) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   73.717610][   T29] audit: type=1326 audit(1750297566.357:5719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5385 comm="syz.4.645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4593cfe929 code=0x7ffc0000
[   73.741300][   T29] audit: type=1326 audit(1750297566.357:5720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5385 comm="syz.4.645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4593cfe929 code=0x7ffc0000
[   73.764774][   T29] audit: type=1326 audit(1750297566.357:5721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5385 comm="syz.4.645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4593cfe929 code=0x7ffc0000
[   73.788309][   T29] audit: type=1326 audit(1750297566.357:5722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5385 comm="syz.4.645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4593cfe929 code=0x7ffc0000
[   73.812015][   T29] audit: type=1326 audit(1750297566.357:5723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5385 comm="syz.4.645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=221 compat=0 ip=0x7f4593cfe929 code=0x7ffc0000
[   73.927311][ T5390] loop4: detected capacity change from 0 to 4096
[   73.936934][ T5390] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.952869][ T5380] netlink: 'syz.2.642': attribute type 1 has an invalid length.
[   73.973679][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.097721][ T5400] loop0: detected capacity change from 0 to 2048
[   74.157370][ T5400] Alternate GPT is invalid, using primary GPT.
[   74.163942][ T5400]  loop0: p2 p3 p7
[   74.165441][ T5411] SELinux: syz.2.655 (5411) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   74.201119][ T5413] loop2: detected capacity change from 0 to 128
[   74.264023][ T5415] loop2: detected capacity change from 0 to 2048
[   74.279711][ T5417] loop4: detected capacity change from 0 to 2048
[   74.324746][ T5417] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.337536][ T5415] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.361936][ T5417] ext4 filesystem being mounted at /123/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   74.378158][ T5419] loop3: detected capacity change from 0 to 4096
[   74.385691][ T5415] ext4 filesystem being mounted at /121/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   74.399626][ T5425] loop0: detected capacity change from 0 to 2048
[   74.417157][ T5419] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.421707][ T5425] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.441960][ T5425] ext4 filesystem being mounted at /135/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   74.519978][  T330] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm kworker/u8:5: bg 0: block 345: padding at end of block bitmap is not set
[   74.535628][  T165] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm kworker/u8:4: bg 0: block 345: padding at end of block bitmap is not set
[   74.551861][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.555335][  T165] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 321 with error 117
[   74.561201][ T2290] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm kworker/u8:7: bg 0: block 345: padding at end of block bitmap is not set
[   74.573412][  T165] EXT4-fs (loop4): This should not happen!! Data will be lost
[   74.573412][  T165] 
[   74.598379][  T330] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 72 with error 117
[   74.610937][  T330] EXT4-fs (loop0): This should not happen!! Data will be lost
[   74.610937][  T330] 
[   74.611717][   T12] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm kworker/u8:0: bg 0: block 345: padding at end of block bitmap is not set
[   74.621358][ T2290] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 176 with error 117
[   74.647685][ T2290] EXT4-fs (loop2): This should not happen!! Data will be lost
[   74.647685][ T2290] 
[   74.672150][  T330] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 88 with max blocks 2 with error 117
[   74.684629][  T330] EXT4-fs (loop0): This should not happen!! Data will be lost
[   74.684629][  T330] 
[   74.697600][   T12] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2048 with error 117
[   74.700027][ T1845] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 192 with max blocks 2 with error 117
[   74.710417][   T12] EXT4-fs (loop1): This should not happen!! Data will be lost
[   74.710417][   T12] 
[   74.732709][ T1845] EXT4-fs (loop2): This should not happen!! Data will be lost
[   74.732709][ T1845] 
[   74.766373][ T1845] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 2065 with max blocks 52 with error 28
[   74.779010][ T1845] EXT4-fs (loop1): This should not happen!! Data will be lost
[   74.779010][ T1845] 
[   74.788709][ T1845] EXT4-fs (loop1): Total free blocks count 0
[   74.794748][ T1845] EXT4-fs (loop1): Free/Dirty block details
[   74.800679][ T1845] EXT4-fs (loop1): free_blocks=0
[   74.805822][ T1845] EXT4-fs (loop1): dirty_blocks=64
[   74.811141][ T1845] EXT4-fs (loop1): Block reservation details
[   74.946379][ T5442] loop3: detected capacity change from 0 to 2048
[   74.968993][ T5444] __nla_validate_parse: 10 callbacks suppressed
[   74.969012][ T5444] netlink: 8 bytes leftover after parsing attributes in process `syz.1.661'.
[   74.995259][ T5441] netlink: 52 bytes leftover after parsing attributes in process `syz.3.664'.
[   75.140793][ T5448] netlink: 80 bytes leftover after parsing attributes in process `syz.3.666'.
[   75.174574][ T5450] loop1: detected capacity change from 0 to 1024
[   75.190862][ T5452] loop3: detected capacity change from 0 to 128
[   75.192081][ T5450] EXT4-fs: inline encryption not supported
[   75.203151][ T5450] EXT4-fs: Ignoring removed i_version option
[   75.216154][ T3310] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[   75.227224][ T3310] CPU: 0 UID: 0 PID: 3310 Comm: syz-executor Not tainted 6.16.0-rc2-syzkaller-00047-g52da431bf03b #0 PREEMPT(voluntary) 
[   75.227252][ T3310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   75.227266][ T3310] Call Trace:
[   75.227274][ T3310]  <TASK>
[   75.227283][ T3310]  __dump_stack+0x1d/0x30
[   75.227309][ T3310]  dump_stack_lvl+0xe8/0x140
[   75.227344][ T3310]  dump_stack+0x15/0x1b
[   75.227362][ T3310]  dump_header+0x81/0x220
[   75.227454][ T3310]  oom_kill_process+0x334/0x3f0
[   75.227557][ T3310]  out_of_memory+0x979/0xb80
[   75.227610][ T3310]  try_charge_memcg+0x5e6/0x9e0
[   75.227672][ T3310]  charge_memcg+0x51/0xc0
[   75.227703][ T3310]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[   75.227740][ T3310]  __read_swap_cache_async+0x1df/0x350
[   75.227792][ T3310]  swap_cluster_readahead+0x277/0x3e0
[   75.227891][ T3310]  swapin_readahead+0xde/0x6f0
[   75.227918][ T3310]  ? __filemap_get_folio+0x4f7/0x6b0
[   75.227948][ T3310]  ? swap_cache_get_folio+0x77/0x200
[   75.228054][ T3310]  do_swap_page+0x301/0x2430
[   75.228073][ T3310]  ? finish_task_switch+0xad/0x2b0
[   75.228093][ T3310]  ? __pfx_default_wake_function+0x10/0x10
[   75.228160][ T3310]  handle_mm_fault+0x9a5/0x2be0
[   75.228181][ T3310]  ? mas_walk+0xf2/0x120
[   75.228253][ T3310]  do_user_addr_fault+0x636/0x1090
[   75.228353][ T3310]  ? fpregs_restore_userregs+0xe2/0x1d0
[   75.228449][ T3310]  ? switch_fpu_return+0xe/0x20
[   75.228471][ T3310]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   75.228494][ T3310]  exc_page_fault+0x62/0xa0
[   75.228587][ T3310]  asm_exc_page_fault+0x26/0x30
[   75.228605][ T3310] RIP: 0033:0x7f92c16411a5
[   75.228620][ T3310] Code: 00 00 00 00 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 80 3d 9e 43 1c 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 <c3> 66 2e 0f 1f 84 00 00 00 00 00 48 83 ec 28 48 89 54 24 10 89 74
[   75.228637][ T3310] RSP: 002b:00007ffe845f0368 EFLAGS: 00010246
[   75.228653][ T3310] RAX: 0000000000000000 RBX: 000000000000012e RCX: 00007f92c16411a3
[   75.228683][ T3310] RDX: 00007ffe845f0380 RSI: 0000000000000000 RDI: 0000000000000000
[   75.228695][ T3310] RBP: 00007ffe845f03ec R08: 0000000007bba472 R09: 0000000000000000
[   75.228706][ T3310] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000001388
[   75.228718][ T3310] R13: 00000000000927c0 R14: 0000000000012445 R15: 00007ffe845f0440
[   75.228740][ T3310]  </TASK>
[   75.228746][ T3310] memory: usage 307200kB, limit 307200kB, failcnt 732
[   75.251709][ T5450] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   75.254916][ T3310] memory+swap: usage 308436kB, limit 9007199254740988kB, failcnt 0
[   75.254933][ T3310] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[   75.273023][ T5450] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #3: block 2: comm syz.1.667: lblock 2 mapped to illegal pblock 2 (length 1)
[   75.275433][ T3310] Memory cgroup stats for 
[   75.280332][ T5450] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #3: block 48: comm syz.1.667: lblock 0 mapped to illegal pblock 48 (length 1)
[   75.284907][ T3310] /syz2:
[   75.290449][ T5450] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.667: Failed to acquire dquot type 0
[   75.294949][ T3310] cache 16384
[   75.300315][ T5450] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   75.305777][ T3310] rss 0
[   75.305788][ T3310] shmem 0
[   75.336868][ T5450] EXT4-fs error (device loop1): ext4_evict_inode:254: inode #11: comm syz.1.667: mark_inode_dirty error
[   75.342576][ T3310] mapped_file 0
[   75.342587][ T3310] dirty 0
[   75.342595][ T3310] writeback 0
[   75.342603][ T3310] workingset_refault_anon 446
[   75.351450][ T5450] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   75.351743][ T3310] workingset_refault_file 742
[   75.356830][ T5450] EXT4-fs (loop1): 1 orphan inode deleted
[   75.362372][ T3310] swap 1265664
[   75.362382][ T3310] swapcached 0
[   75.362390][ T3310] pgpgin 67153
[   75.362398][ T3310] pgpgout 67149
[   75.362406][ T3310] pgfault 73450
[   75.368611][ T5450] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.373323][ T3310] pgmajfault 254
[   75.373333][ T3310] inactive_anon 0
[   75.373341][ T3310] active_anon 0
[   75.373350][ T3310] inactive_file 4096
[   75.422782][ T5456] netlink: 4 bytes leftover after parsing attributes in process `syz.3.669'.
[   75.429093][ T3310] active_file 12288
[   75.429106][ T3310] unevictable 0
[   75.429128][ T3310] hierarchical_memory_limit 314572800
[   75.665317][ T3310] hierarchical_memsw_limit 9223372036854771712
[   75.671530][ T3310] total_cache 16384
[   75.675357][ T3310] total_rss 0
[   75.678841][ T3310] total_shmem 0
[   75.682333][ T3310] total_mapped_file 0
[   75.686356][ T3310] total_dirty 0
[   75.689815][ T3310] total_writeback 0
[   75.693802][ T3310] total_workingset_refault_anon 446
[   75.699284][ T3310] total_workingset_refault_file 742
[   75.704641][ T3310] total_swap 1265664
[   75.708576][ T3310] total_swapcached 0
[   75.712521][ T3310] total_pgpgin 67153
[   75.716459][ T3310] total_pgpgout 67149
[   75.720442][ T3310] total_pgfault 73450
[   75.724443][ T3310] total_pgmajfault 254
[   75.728550][ T3310] total_inactive_anon 0
[   75.732705][ T3310] total_active_anon 0
[   75.736677][ T3310] total_inactive_file 4096
[   75.741205][ T3310] total_active_file 12288
[   75.745534][ T3310] total_unevictable 0
[   75.749560][ T3310] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.657,pid=5414,uid=0
[   75.764123][ T3310] Memory cgroup out of memory: Killed process 5414 (syz.2.657) total-vm:95932kB, anon-rss:1064kB, file-rss:22460kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[   75.784316][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.794683][ T1845] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:6: lblock 1 mapped to illegal pblock 1 (length 1)
[   75.812502][ T1845] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:6: Failed to release dquot type 0
[   75.835049][ T3314] EXT4-fs error (device loop1): __ext4_get_inode_loc:4792: comm syz-executor: Invalid inode table block 1 in block_group 0
[   75.856290][ T3314] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   75.871353][ T3314] EXT4-fs error (device loop1): ext4_quota_off:7217: inode #3: comm syz-executor: mark_inode_dirty error
[   76.003897][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.017148][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.024406][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.053406][ T5466] netlink: 8 bytes leftover after parsing attributes in process `syz.1.674'.
[   76.103689][ T5469] loop2: detected capacity change from 0 to 2048
[   76.115709][ T5473] loop4: detected capacity change from 0 to 2048
[   76.142980][ T5466] loop1: detected capacity change from 0 to 4096
[   76.152326][ T5466] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.183816][ T5473] Alternate GPT is invalid, using primary GPT.
[   76.190352][ T5473]  loop4: p2 p3 p7
[   76.203112][ T5475] loop0: detected capacity change from 0 to 2048
[   76.213464][ T5469] Alternate GPT is invalid, using primary GPT.
[   76.219904][ T5469]  loop2: p2 p3 p7
[   76.256146][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.267297][ T5478] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   76.333043][ T5478] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   76.344586][ T5475] EXT4-fs error (device loop0): __ext4_fill_super:5500: inode #2: comm syz.0.672: iget: bad extended attribute block 281474976710655
[   76.376771][ T5475] EXT4-fs (loop0): get root inode failed
[   76.382611][ T5475] EXT4-fs (loop0): mount failed
[   76.402650][ T5478] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   76.417797][ T5483] netlink: 80 bytes leftover after parsing attributes in process `syz.4.679'.
[   76.462669][ T5478] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   76.502992][ T5489] loop2: detected capacity change from 0 to 2048
[   76.553879][ T5478] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   76.574988][ T5478] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   76.603138][ T5478] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   76.631696][ T5478] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   76.701950][ T5489] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.720593][ T5489] ext4 filesystem being mounted at /124/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   76.799429][ T5499] loop3: detected capacity change from 0 to 128
[   77.116126][ T5502] loop3: detected capacity change from 0 to 2048
[   77.172725][ T5502] netlink: 52 bytes leftover after parsing attributes in process `syz.3.686'.
[   77.377842][ T5507] loop1: detected capacity change from 0 to 2048
[   77.459443][ T5507] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.480598][ T5507] ext4 filesystem being mounted at /147/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   77.496312][  T330] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm kworker/u8:5: bg 0: block 345: padding at end of block bitmap is not set
[   77.517759][ T5515] netlink: 80 bytes leftover after parsing attributes in process `syz.4.690'.
[   77.550796][  T330] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 241 with error 117
[   77.563405][  T330] EXT4-fs (loop2): This should not happen!! Data will be lost
[   77.563405][  T330] 
[   77.583408][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.647722][ T5521] loop4: detected capacity change from 0 to 128
[   77.667527][  T330] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm kworker/u8:5: bg 0: block 345: padding at end of block bitmap is not set
[   77.702931][ T5526] netlink: 12 bytes leftover after parsing attributes in process `syz.0.692'.
[   77.738064][  T330] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 182 with error 117
[   77.750826][  T330] EXT4-fs (loop1): This should not happen!! Data will be lost
[   77.750826][  T330] 
[   77.772552][ T5530] loop2: detected capacity change from 0 to 128
[   77.794632][ T5532] loop0: detected capacity change from 0 to 2048
[   77.817587][ T5532] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   77.834073][ T5538] netlink: 4 bytes leftover after parsing attributes in process `syz.4.698'.
[   77.863334][ T5538] bridge0: entered promiscuous mode
[   77.872180][ T5538] bridge0: port 3(macvlan2) entered blocking state
[   77.878797][ T5538] bridge0: port 3(macvlan2) entered disabled state
[   77.885564][ T5538] macvlan2: entered allmulticast mode
[   77.891026][ T5538] bridge0: entered allmulticast mode
[   77.899424][ T5538] macvlan2: left allmulticast mode
[   77.904954][ T5538] bridge0: left allmulticast mode
[   77.915391][ T5542] loop2: detected capacity change from 0 to 2048
[   77.915937][ T5538] bridge0: left promiscuous mode
[   77.955560][ T5542] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.977634][ T5542] ext4 filesystem being mounted at /129/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.061366][ T5550] loop4: detected capacity change from 0 to 2048
[   78.082605][ T5550] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.107081][ T5550] ext4 filesystem being mounted at /134/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.221290][ T5543] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   78.247001][ T5543] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   78.259538][ T5543] EXT4-fs (loop0): This should not happen!! Data will be lost
[   78.259538][ T5543] 
[   78.269273][ T5543] EXT4-fs (loop0): Total free blocks count 0
[   78.275319][ T5543] EXT4-fs (loop0): Free/Dirty block details
[   78.281257][ T5543] EXT4-fs (loop0): free_blocks=2415919104
[   78.287055][ T5543] EXT4-fs (loop0): dirty_blocks=8208
[   78.292391][ T5543] EXT4-fs (loop0): Block reservation details
[   78.298401][ T5543] EXT4-fs (loop0): i_reserved_data_blocks=513
[   78.455821][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.639818][  T330] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[   78.784539][  T330] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm kworker/u8:5: bg 0: block 345: padding at end of block bitmap is not set
[   78.807034][  T330] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 241 with error 117
[   78.819680][  T330] EXT4-fs (loop4): This should not happen!! Data will be lost
[   78.819680][  T330] 
[   78.836855][   T12] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm kworker/u8:0: bg 0: block 345: padding at end of block bitmap is not set
[   78.868917][   T29] kauditd_printk_skb: 395 callbacks suppressed
[   78.868937][   T29] audit: type=1326 audit(1750297571.507:6116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5567 comm="syz.3.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd186ade929 code=0x7ffc0000
[   78.898701][   T29] audit: type=1326 audit(1750297571.507:6117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5567 comm="syz.3.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd186ade929 code=0x7ffc0000
[   78.907665][   T12] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 241 with error 117
[   78.922147][   T29] audit: type=1326 audit(1750297571.507:6118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5567 comm="syz.3.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd186ade929 code=0x7ffc0000
[   78.934858][   T12] EXT4-fs (loop2): This should not happen!! Data will be lost
[   78.934858][   T12] 
[   78.958266][   T29] audit: type=1326 audit(1750297571.507:6119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5567 comm="syz.3.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd186ade929 code=0x7ffc0000
[   78.991381][   T29] audit: type=1326 audit(1750297571.507:6120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5567 comm="syz.3.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd186ade929 code=0x7ffc0000
[   79.014909][   T29] audit: type=1326 audit(1750297571.507:6121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5567 comm="syz.3.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fd186ade929 code=0x7ffc0000
[   79.038596][   T29] audit: type=1326 audit(1750297571.507:6122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5567 comm="syz.3.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fd186ade963 code=0x7ffc0000
[   79.094157][ T5568] loop3: detected capacity change from 0 to 2048
[   79.112324][ T5574] loop0: detected capacity change from 0 to 128
[   79.160026][   T29] audit: type=1326 audit(1750297571.657:6123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5567 comm="syz.3.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fd186add3df code=0x7ffc0000
[   79.163102][ T5568] Alternate GPT is invalid, using primary GPT.
[   79.183232][   T29] audit: type=1326 audit(1750297571.687:6124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5567 comm="syz.3.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fd186ade9b7 code=0x7ffc0000
[   79.183260][   T29] audit: type=1326 audit(1750297571.737:6125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5567 comm="syz.3.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd186add290 code=0x7ffc0000
[   79.189691][ T5568]  loop3: p2 p3 p7
[   79.244777][ T5578] loop1: detected capacity change from 0 to 1024
[   79.258116][ T5578] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   79.269130][ T5578] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   79.280025][ T5578] JBD2: no valid journal superblock found
[   79.285895][ T5578] EXT4-fs (loop1): Could not load journal inode
[   79.307779][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.320713][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.348170][ T5582] loop1: detected capacity change from 0 to 2048
[   79.373442][ T5582] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   79.395965][ T5594] x_tables: ip6_tables: tcpmss match: only valid for protocol 6
[   79.426123][ T5592] FAULT_INJECTION: forcing a failure.
[   79.426123][ T5592] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   79.439394][ T5592] CPU: 0 UID: 0 PID: 5592 Comm: syz.4.717 Not tainted 6.16.0-rc2-syzkaller-00047-g52da431bf03b #0 PREEMPT(voluntary) 
[   79.439425][ T5592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   79.439438][ T5592] Call Trace:
[   79.439445][ T5592]  <TASK>
[   79.439453][ T5592]  __dump_stack+0x1d/0x30
[   79.439475][ T5592]  dump_stack_lvl+0xe8/0x140
[   79.439496][ T5592]  dump_stack+0x15/0x1b
[   79.439540][ T5592]  should_fail_ex+0x265/0x280
[   79.439567][ T5592]  should_fail+0xb/0x20
[   79.439590][ T5592]  should_fail_usercopy+0x1a/0x20
[   79.439622][ T5592]  _copy_from_user+0x1c/0xb0
[   79.439675][ T5592]  ___sys_sendmsg+0xc1/0x1d0
[   79.439792][ T5592]  __x64_sys_sendmsg+0xd4/0x160
[   79.439891][ T5592]  x64_sys_call+0x2999/0x2fb0
[   79.439913][ T5592]  do_syscall_64+0xd2/0x200
[   79.439933][ T5592]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   79.439962][ T5592]  ? clear_bhb_loop+0x40/0x90
[   79.439981][ T5592]  ? clear_bhb_loop+0x40/0x90
[   79.440007][ T5592]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.440027][ T5592] RIP: 0033:0x7f4593cfe929
[   79.440041][ T5592] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.440116][ T5592] RSP: 002b:00007f4592367038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   79.440134][ T5592] RAX: ffffffffffffffda RBX: 00007f4593f25fa0 RCX: 00007f4593cfe929
[   79.440146][ T5592] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000008
[   79.440158][ T5592] RBP: 00007f4592367090 R08: 0000000000000000 R09: 0000000000000000
[   79.440169][ T5592] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   79.440182][ T5592] R13: 0000000000000000 R14: 00007f4593f25fa0 R15: 00007ffd18494868
[   79.440216][ T5592]  </TASK>
[   79.676380][ T5608] loop2: detected capacity change from 0 to 128
[   79.710963][ T5611] loop0: detected capacity change from 0 to 2048
[   79.743492][ T5614] loop3: detected capacity change from 0 to 1024
[   79.752058][ T5611] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.752366][ T5614] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   79.770543][ T5611] ext4 filesystem being mounted at /145/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   79.775406][ T5614] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   79.852582][ T5614] JBD2: no valid journal superblock found
[   79.858447][ T5614] EXT4-fs (loop3): Could not load journal inode
[   79.986887][ T5598] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   80.001895][ T5598] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   80.014413][ T5598] EXT4-fs (loop1): This should not happen!! Data will be lost
[   80.014413][ T5598] 
[   80.024123][ T5598] EXT4-fs (loop1): Total free blocks count 0
[   80.030140][ T5598] EXT4-fs (loop1): Free/Dirty block details
[   80.036136][ T5598] EXT4-fs (loop1): free_blocks=2415919104
[   80.038635][ T5622] loop2: detected capacity change from 0 to 2048
[   80.041884][ T5598] EXT4-fs (loop1): dirty_blocks=8208
[   80.053539][ T5598] EXT4-fs (loop1): Block reservation details
[   80.059614][ T5598] EXT4-fs (loop1): i_reserved_data_blocks=513
[   80.102931][ T5622] Alternate GPT is invalid, using primary GPT.
[   80.109326][ T5622]  loop2: p2 p3 p7
[   80.195962][  T330] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[   80.234221][   T12] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm kworker/u8:0: bg 0: block 345: padding at end of block bitmap is not set
[   80.283062][   T12] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 904 with error 117
[   80.295848][   T12] EXT4-fs (loop0): This should not happen!! Data will be lost
[   80.295848][   T12] 
[   80.441977][ T5642] x_tables: ip6_tables: tcpmss match: only valid for protocol 6
[   80.472843][ T5640] __nla_validate_parse: 3 callbacks suppressed
[   80.472862][ T5640] netlink: 4 bytes leftover after parsing attributes in process `syz.2.736'.
[   80.504896][ T5638] netlink: 12 bytes leftover after parsing attributes in process `syz.1.735'.
[   80.532039][ T5640] bridge0: entered promiscuous mode
[   80.581688][ T5640] bridge0: port 3(macvlan2) entered blocking state
[   80.588299][ T5640] bridge0: port 3(macvlan2) entered disabled state
[   80.596841][ T5640] macvlan2: entered allmulticast mode
[   80.602368][ T5640] bridge0: entered allmulticast mode
[   80.615565][ T5640] macvlan2: left allmulticast mode
[   80.620883][ T5640] bridge0: left allmulticast mode
[   80.636639][ T5640] bridge0: left promiscuous mode
[   80.738674][ T5649] loop4: detected capacity change from 0 to 2048
[   80.757121][ T5651] loop1: detected capacity change from 0 to 2048
[   80.807053][ T5649] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.821143][ T5651] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   80.836060][ T5655] loop2: detected capacity change from 0 to 2048
[   80.839649][ T5649] ext4 filesystem being mounted at /140/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   80.902598][ T5655] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.930772][ T5655] ext4 filesystem being mounted at /139/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   80.966874][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.004957][ T5665] netlink: 4 bytes leftover after parsing attributes in process `syz.1.740'.
[   81.062759][ T5677] loop3: detected capacity change from 0 to 128
[   81.133230][ T5680] x_tables: ip6_tables: tcpmss match: only valid for protocol 6
[   81.361149][   T12] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm kworker/u8:0: bg 0: block 345: padding at end of block bitmap is not set
[   81.378168][  T330] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   81.394332][   T12] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 241 with error 117
[   81.406924][   T12] EXT4-fs (loop2): This should not happen!! Data will be lost
[   81.406924][   T12] 
[   81.420568][  T330] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   81.433098][  T330] EXT4-fs (loop1): This should not happen!! Data will be lost
[   81.433098][  T330] 
[   81.442906][  T330] EXT4-fs (loop1): Total free blocks count 0
[   81.448964][  T330] EXT4-fs (loop1): Free/Dirty block details
[   81.454994][  T330] EXT4-fs (loop1): free_blocks=2415919104
[   81.460799][  T330] EXT4-fs (loop1): dirty_blocks=5584
[   81.466187][  T330] EXT4-fs (loop1): Block reservation details
[   81.472232][  T330] EXT4-fs (loop1): i_reserved_data_blocks=349
[   81.531206][ T5690] netlink: 12 bytes leftover after parsing attributes in process `syz.0.752'.
[   81.586329][  T330] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 2048 with max blocks 2048 with error 28
[   81.683163][ T5695] loop3: detected capacity change from 0 to 2048
[   81.740769][ T5695] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   81.763001][ T5703] loop1: detected capacity change from 0 to 1024
[   81.769864][ T5703] EXT4-fs: inline encryption not supported
[   81.775786][ T5703] EXT4-fs: Ignoring removed i_version option
[   81.782544][ T5695] ext4 filesystem being mounted at /162/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   81.793106][ T5703] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   81.811022][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.858737][ T5705] loop0: detected capacity change from 0 to 2048
[   81.868371][ T5703] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #3: block 2: comm syz.1.755: lblock 2 mapped to illegal pblock 2 (length 1)
[   81.907916][ T5703] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #3: block 48: comm syz.1.755: lblock 0 mapped to illegal pblock 48 (length 1)
[   81.931723][ T5703] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.755: Failed to acquire dquot type 0
[   81.945430][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.945547][  T330] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm kworker/u8:5: bg 0: block 345: padding at end of block bitmap is not set
[   81.955413][ T5703] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   81.982758][ T5705] Alternate GPT is invalid, using primary GPT.
[   81.989079][ T5705]  loop0: p2 p3 p7
[   82.002527][  T330] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 472 with error 117
[   82.015224][  T330] EXT4-fs (loop3): This should not happen!! Data will be lost
[   82.015224][  T330] 
[   82.026432][ T5703] EXT4-fs error (device loop1): ext4_evict_inode:254: inode #11: comm syz.1.755: mark_inode_dirty error
[   82.049736][ T5703] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   82.078905][ T5703] EXT4-fs (loop1): 1 orphan inode deleted
[   82.090052][ T5703] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.110716][ T2290] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:7: lblock 1 mapped to illegal pblock 1 (length 1)
[   82.141371][ T2290] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:7: Failed to release dquot type 0
[   82.177389][ T5725] netlink: 12 bytes leftover after parsing attributes in process `syz.0.763'.
[   82.229502][ T5728] loop4: detected capacity change from 0 to 2048
[   82.264292][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.283788][   T41] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:2: lblock 1 mapped to illegal pblock 1 (length 1)
[   82.300063][ T5734] x_tables: ip6_tables: tcpmss match: only valid for protocol 6
[   82.308612][   T41] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:2: Failed to release dquot type 0
[   82.331627][ T3314] EXT4-fs error (device loop1): __ext4_get_inode_loc:4792: comm syz-executor: Invalid inode table block 1 in block_group 0
[   82.332457][ T5728] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   82.344702][ T3314] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   82.458624][ T3314] EXT4-fs error (device loop1): ext4_quota_off:7217: inode #3: comm syz-executor: mark_inode_dirty error
[   82.588569][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.602300][ T5744] netlink: 4 bytes leftover after parsing attributes in process `syz.4.765'.
[   82.614354][ T5750] loop0: detected capacity change from 0 to 128
[   82.683528][ T5756] FAULT_INJECTION: forcing a failure.
[   82.683528][ T5756] name failslab, interval 1, probability 0, space 0, times 0
[   82.696353][ T5756] CPU: 0 UID: 0 PID: 5756 Comm: syz.3.775 Not tainted 6.16.0-rc2-syzkaller-00047-g52da431bf03b #0 PREEMPT(voluntary) 
[   82.696381][ T5756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   82.696394][ T5756] Call Trace:
[   82.696402][ T5756]  <TASK>
[   82.696409][ T5756]  __dump_stack+0x1d/0x30
[   82.696479][ T5756]  dump_stack_lvl+0xe8/0x140
[   82.696501][ T5756]  dump_stack+0x15/0x1b
[   82.696521][ T5756]  should_fail_ex+0x265/0x280
[   82.696633][ T5756]  should_failslab+0x8c/0xb0
[   82.696659][ T5756]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   82.696688][ T5756]  ? sidtab_sid2str_get+0xa0/0x130
[   82.696711][ T5756]  kmemdup_noprof+0x2b/0x70
[   82.696792][ T5756]  sidtab_sid2str_get+0xa0/0x130
[   82.696819][ T5756]  security_sid_to_context_core+0x1eb/0x2e0
[   82.696848][ T5756]  security_sid_to_context+0x27/0x40
[   82.696873][ T5756]  selinux_lsmprop_to_secctx+0x67/0xf0
[   82.696947][ T5756]  security_lsmprop_to_secctx+0x43/0x80
[   82.696981][ T5756]  audit_log_task_context+0x77/0x190
[   82.697013][ T5756]  audit_log_task+0xf4/0x250
[   82.697104][ T5756]  audit_seccomp+0x61/0x100
[   82.697133][ T5756]  ? __seccomp_filter+0x68c/0x10d0
[   82.697160][ T5756]  __seccomp_filter+0x69d/0x10d0
[   82.697185][ T5756]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   82.697204][ T5756]  ? vfs_write+0x75e/0x8e0
[   82.697294][ T5756]  __secure_computing+0x82/0x150
[   82.697316][ T5756]  syscall_trace_enter+0xcf/0x1e0
[   82.697402][ T5756]  do_syscall_64+0xac/0x200
[   82.697424][ T5756]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   82.697467][ T5756]  ? clear_bhb_loop+0x40/0x90
[   82.697486][ T5756]  ? clear_bhb_loop+0x40/0x90
[   82.697504][ T5756]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.697523][ T5756] RIP: 0033:0x7fd186ade929
[   82.697541][ T5756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.697607][ T5756] RSP: 002b:00007fd185147038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   82.697630][ T5756] RAX: ffffffffffffffda RBX: 00007fd186d05fa0 RCX: 00007fd186ade929
[   82.697642][ T5756] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[   82.697655][ T5756] RBP: 00007fd185147090 R08: 0000000000000000 R09: 0000000000000000
[   82.697666][ T5756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   82.697677][ T5756] R13: 0000000000000000 R14: 00007fd186d05fa0 R15: 00007ffd2687be98
[   82.697693][ T5756]  </TASK>
[   82.823382][ T5759] loop0: detected capacity change from 0 to 2048
[   82.909265][ T5763] loop3: detected capacity change from 0 to 1024
[   82.982596][ T5763] EXT4-fs: inline encryption not supported
[   82.988512][ T5763] EXT4-fs: Ignoring removed i_version option
[   82.996355][ T5763] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   83.008894][ T5763] EXT4-fs error (device loop3): ext4_map_blocks:780: inode #3: block 2: comm syz.3.777: lblock 2 mapped to illegal pblock 2 (length 1)
[   83.013839][ T5740] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   83.038023][ T5740] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   83.050559][ T5740] EXT4-fs (loop4): This should not happen!! Data will be lost
[   83.050559][ T5740] 
[   83.060304][ T5740] EXT4-fs (loop4): Total free blocks count 0
[   83.066381][ T5740] EXT4-fs (loop4): Free/Dirty block details
[   83.072319][ T5740] EXT4-fs (loop4): free_blocks=2415919104
[   83.078109][ T5740] EXT4-fs (loop4): dirty_blocks=8208
[   83.083449][ T5740] EXT4-fs (loop4): Block reservation details
[   83.089488][ T5740] EXT4-fs (loop4): i_reserved_data_blocks=513
[   83.106344][ T5763] EXT4-fs error (device loop3): ext4_map_blocks:780: inode #3: block 48: comm syz.3.777: lblock 0 mapped to illegal pblock 48 (length 1)
[   83.140779][ T5763] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.777: Failed to acquire dquot type 0
[   83.141703][   T41] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[   83.166238][ T5768] netlink: 12 bytes leftover after parsing attributes in process `syz.2.778'.
[   83.176269][ T5754] netlink: 52 bytes leftover after parsing attributes in process `syz.0.774'.
[   83.208623][ T5770] netlink: 4 bytes leftover after parsing attributes in process `syz.2.780'.
[   83.217883][ T5763] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   83.242700][ T5763] EXT4-fs error (device loop3): ext4_evict_inode:254: inode #11: comm syz.3.777: mark_inode_dirty error
[   83.303164][ T5780] loop4: detected capacity change from 0 to 128
[   83.309628][ T5779] loop0: detected capacity change from 0 to 2048
[   83.322113][ T5763] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   83.340860][ T5763] EXT4-fs (loop3): 1 orphan inode deleted
[   83.357881][ T5782] netlink: 8 bytes leftover after parsing attributes in process `syz.4.785'.
[   83.368489][ T5779] ext4 filesystem being mounted at /161/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   83.379904][   T41] EXT4-fs error (device loop3): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:2: lblock 1 mapped to illegal pblock 1 (length 1)
[   83.400747][   T41] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:2: Failed to release dquot type 0
[   83.564341][ T3309] EXT4-fs error (device loop3): __ext4_get_inode_loc:4792: comm syz-executor: Invalid inode table block 1 in block_group 0
[   83.594317][ T3309] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   83.603907][ T3309] EXT4-fs error (device loop3): ext4_quota_off:7217: inode #3: comm syz-executor: mark_inode_dirty error
[   83.639413][   T41] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm kworker/u8:2: bg 0: block 345: padding at end of block bitmap is not set
[   83.665059][   T41] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 723 with error 117
[   83.677706][   T41] EXT4-fs (loop0): This should not happen!! Data will be lost
[   83.677706][   T41] 
[   83.892785][   T29] kauditd_printk_skb: 247 callbacks suppressed
[   83.892801][   T29] audit: type=1326 audit(1750297576.537:6365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5814 comm="syz.4.797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4593cfe929 code=0x7ffc0000
[   83.893203][ T5815] FAULT_INJECTION: forcing a failure.
[   83.893203][ T5815] name failslab, interval 1, probability 0, space 0, times 0
[   83.899058][   T29] audit: type=1326 audit(1750297576.537:6366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5814 comm="syz.4.797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4593cfe929 code=0x7ffc0000
[   83.922419][ T5815] CPU: 1 UID: 0 PID: 5815 Comm: syz.4.797 Not tainted 6.16.0-rc2-syzkaller-00047-g52da431bf03b #0 PREEMPT(voluntary) 
[   83.922448][ T5815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   83.922460][ T5815] Call Trace:
[   83.922468][ T5815]  <TASK>
[   83.922475][ T5815]  __dump_stack+0x1d/0x30
[   83.922518][ T5815]  dump_stack_lvl+0xe8/0x140
[   83.922538][ T5815]  dump_stack+0x15/0x1b
[   83.922598][ T5815]  should_fail_ex+0x265/0x280
[   83.922627][ T5815]  should_failslab+0x8c/0xb0
[   83.922699][ T5815]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   83.922734][ T5815]  ? sidtab_sid2str_get+0xa0/0x130
[   83.922836][ T5815]  kmemdup_noprof+0x2b/0x70
[   83.922878][ T5815]  sidtab_sid2str_get+0xa0/0x130
[   83.922900][ T5815]  security_sid_to_context_core+0x1eb/0x2e0
[   83.922924][ T5815]  security_sid_to_context+0x27/0x40
[   83.922945][ T5815]  selinux_lsmprop_to_secctx+0x67/0xf0
[   83.923026][ T5815]  security_lsmprop_to_secctx+0x43/0x80
[   83.923061][ T5815]  audit_log_task_context+0x77/0x190
[   83.923173][ T5815]  audit_log_task+0xf4/0x250
[   83.923201][ T5815]  audit_seccomp+0x61/0x100
[   83.923226][ T5815]  ? __seccomp_filter+0x68c/0x10d0
[   83.923249][ T5815]  __seccomp_filter+0x69d/0x10d0
[   83.923271][ T5815]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   83.923328][ T5815]  ? vfs_write+0x75e/0x8e0
[   83.923400][ T5815]  ? __rcu_read_unlock+0x4f/0x70
[   83.923421][ T5815]  ? __fget_files+0x184/0x1c0
[   83.923442][ T5815]  __secure_computing+0x82/0x150
[   83.923514][ T5815]  syscall_trace_enter+0xcf/0x1e0
[   83.923657][ T5815]  do_syscall_64+0xac/0x200
[   83.923675][ T5815]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   83.923741][ T5815]  ? clear_bhb_loop+0x40/0x90
[   83.923761][ T5815]  ? clear_bhb_loop+0x40/0x90
[   83.923782][ T5815]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.923803][ T5815] RIP: 0033:0x7f4593cfe929
[   83.923818][ T5815] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   83.923915][ T5815] RSP: 002b:00007f4592367038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   83.923935][ T5815] RAX: ffffffffffffffda RBX: 00007f4593f25fa0 RCX: 00007f4593cfe929
[   83.923948][ T5815] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[   83.923960][ T5815] RBP: 00007f4592367090 R08: 0000000000000000 R09: 0000000000000000
[   83.923972][ T5815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   83.923984][ T5815] R13: 0000000000000000 R14: 00007f4593f25fa0 R15: 00007ffd18494868
[   83.924077][ T5815]  </TASK>
[   83.924085][ T5815] audit: error in audit_log_task_context
[   83.935027][   T29] audit: type=1326 audit(1750297576.537:6367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5814 comm="syz.4.797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7f4593cfe929 code=0x7ffc0000
[   84.238388][   T29] audit: type=1326 audit(1750297576.537:6368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5814 comm="syz.4.797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4593cfe929 code=0x7ffc0000
[   84.261836][   T29] audit: type=1326 audit(1750297576.537:6369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5814 comm="syz.4.797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7f4593cfe929 code=0x7ffc0000
[   84.293876][   T29] audit: type=1326 audit(1750297576.537:6370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5814 comm="syz.4.797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4593cfe929 code=0x7ffc0000
[   84.296662][ T5811] loop1: detected capacity change from 0 to 4096
[   84.317315][   T29] audit: type=1326 audit(1750297576.537:6371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5814 comm="syz.4.797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4593cfd290 code=0x7ffc0000
[   84.317348][   T29] audit: type=1326 audit(1750297576.537:6372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5814 comm="syz.4.797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f4593cfd3df code=0x7ffc0000
[   84.355392][ T5821] bridge0: entered promiscuous mode
[   84.370577][   T29] audit: type=1326 audit(1750297576.727:6374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5812 comm="syz.3.796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd186ade929 code=0x7ffc0000
[   84.425700][ T5821] bridge0: port 3(macvlan2) entered blocking state
[   84.432382][ T5821] bridge0: port 3(macvlan2) entered disabled state
[   84.440186][ T5821] macvlan2: entered allmulticast mode
[   84.445691][ T5821] bridge0: entered allmulticast mode
[   84.469684][ T5821] macvlan2: left allmulticast mode
[   84.474970][ T5821] bridge0: left allmulticast mode
[   84.486808][ T5821] bridge0: left promiscuous mode
[   84.603185][ T5841] loop2: detected capacity change from 0 to 1024
[   84.616139][ T5841] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   84.627183][ T5841] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   84.659868][ T5841] JBD2: no valid journal superblock found
[   84.665709][ T5841] EXT4-fs (loop2): Could not load journal inode
[   84.687948][ T5848] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[   84.687948][ T5848]    program wÞ£ÿ not setting count and/or reply_len properly
[   84.742467][ T5849] FAULT_INJECTION: forcing a failure.
[   84.742467][ T5849] name failslab, interval 1, probability 0, space 0, times 0
[   84.755298][ T5849] CPU: 1 UID: 0 PID: 5849 Comm: syz.0.809 Not tainted 6.16.0-rc2-syzkaller-00047-g52da431bf03b #0 PREEMPT(voluntary) 
[   84.755327][ T5849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   84.755339][ T5849] Call Trace:
[   84.755346][ T5849]  <TASK>
[   84.755353][ T5849]  __dump_stack+0x1d/0x30
[   84.755427][ T5849]  dump_stack_lvl+0xe8/0x140
[   84.755443][ T5849]  dump_stack+0x15/0x1b
[   84.755467][ T5849]  should_fail_ex+0x265/0x280
[   84.755524][ T5849]  should_failslab+0x8c/0xb0
[   84.755544][ T5849]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   84.755569][ T5849]  ? sidtab_sid2str_get+0xa0/0x130
[   84.755591][ T5849]  kmemdup_noprof+0x2b/0x70
[   84.755649][ T5849]  sidtab_sid2str_get+0xa0/0x130
[   84.755669][ T5849]  security_sid_to_context_core+0x1eb/0x2e0
[   84.755702][ T5849]  security_sid_to_context+0x27/0x40
[   84.755720][ T5849]  selinux_lsmprop_to_secctx+0x67/0xf0
[   84.755741][ T5849]  security_lsmprop_to_secctx+0x43/0x80
[   84.755767][ T5849]  audit_log_task_context+0x77/0x190
[   84.755846][ T5849]  audit_log_task+0xf4/0x250
[   84.755879][ T5849]  audit_seccomp+0x61/0x100
[   84.755901][ T5849]  ? __seccomp_filter+0x68c/0x10d0
[   84.755927][ T5849]  __seccomp_filter+0x69d/0x10d0
[   84.755948][ T5849]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   84.755965][ T5849]  ? vfs_write+0x75e/0x8e0
[   84.756068][ T5849]  ? __rcu_read_unlock+0x4f/0x70
[   84.756087][ T5849]  ? __fget_files+0x184/0x1c0
[   84.756106][ T5849]  __secure_computing+0x82/0x150
[   84.756125][ T5849]  syscall_trace_enter+0xcf/0x1e0
[   84.756181][ T5849]  do_syscall_64+0xac/0x200
[   84.756196][ T5849]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   84.756291][ T5849]  ? clear_bhb_loop+0x40/0x90
[   84.756324][ T5849]  ? clear_bhb_loop+0x40/0x90
[   84.756343][ T5849]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.756361][ T5849] RIP: 0033:0x7fe82f2ae929
[   84.756376][ T5849] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.756391][ T5849] RSP: 002b:00007fe82d5d5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[   84.756463][ T5849] RAX: ffffffffffffffda RBX: 00007fe82f4d6080 RCX: 00007fe82f2ae929
[   84.756474][ T5849] RDX: 0000000000000010 RSI: 0000200000000180 RDI: 0000000000000005
[   84.756485][ T5849] RBP: 00007fe82d5d5090 R08: 0000000000000000 R09: 0000000000000000
[   84.756496][ T5849] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   84.756507][ T5849] R13: 0000000000000000 R14: 00007fe82f4d6080 R15: 00007fff365fa468
[   84.756550][ T5849]  </TASK>
[   85.175018][ T5859] loop0: detected capacity change from 0 to 128
[   85.295958][ T5861] loop0: detected capacity change from 0 to 128
[   85.398864][ T5857] netlink: 'syz.2.812': attribute type 1 has an invalid length.
[   85.454691][ T5870] bridge0: entered promiscuous mode
[   85.475877][ T5870] bridge0: port 3(macvlan2) entered blocking state
[   85.482571][ T5870] bridge0: port 3(macvlan2) entered disabled state
[   85.512969][ T5870] macvlan2: entered allmulticast mode
[   85.518439][ T5870] bridge0: entered allmulticast mode
[   85.562549][ T5870] macvlan2: left allmulticast mode
[   85.567809][ T5870] bridge0: left allmulticast mode
[   85.597022][ T5870] bridge0: left promiscuous mode
[   85.614352][ T5884] loop3: detected capacity change from 0 to 1024
[   85.621448][ T5884] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   85.632406][ T5884] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   85.643461][ T5884] JBD2: no valid journal superblock found
[   85.649206][ T5884] EXT4-fs (loop3): Could not load journal inode
[   85.730872][ T5894] loop1: detected capacity change from 0 to 128
[   85.815699][ T5900] __nla_validate_parse: 8 callbacks suppressed
[   85.815716][ T5900] netlink: 12 bytes leftover after parsing attributes in process `syz.4.830'.
[   85.836803][ T5909] serio: Serial port ttyS3
[   85.902295][ T5913] loop2: detected capacity change from 0 to 2048
[   85.926285][ T5918] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   85.955225][ T5913] Alternate GPT is invalid, using primary GPT.
[   85.961624][ T5913]  loop2: p2 p3 p7
[   85.971900][ T5918] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   86.016118][ T5921] FAULT_INJECTION: forcing a failure.
[   86.016118][ T5921] name failslab, interval 1, probability 0, space 0, times 0
[   86.028890][ T5921] CPU: 1 UID: 0 PID: 5921 Comm: syz.2.840 Not tainted 6.16.0-rc2-syzkaller-00047-g52da431bf03b #0 PREEMPT(voluntary) 
[   86.028920][ T5921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   86.028933][ T5921] Call Trace:
[   86.028941][ T5921]  <TASK>
[   86.028950][ T5921]  __dump_stack+0x1d/0x30
[   86.028975][ T5921]  dump_stack_lvl+0xe8/0x140
[   86.028998][ T5921]  dump_stack+0x15/0x1b
[   86.029019][ T5921]  should_fail_ex+0x265/0x280
[   86.029070][ T5921]  should_failslab+0x8c/0xb0
[   86.029097][ T5921]  kmem_cache_alloc_noprof+0x50/0x310
[   86.029125][ T5921]  ? getname_flags+0x80/0x3b0
[   86.029150][ T5921]  getname_flags+0x80/0x3b0
[   86.029188][ T5921]  __x64_sys_link+0x33/0x70
[   86.029205][ T5921]  x64_sys_call+0x2af9/0x2fb0
[   86.029223][ T5921]  do_syscall_64+0xd2/0x200
[   86.029244][ T5921]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   86.029308][ T5921]  ? clear_bhb_loop+0x40/0x90
[   86.029326][ T5921]  ? clear_bhb_loop+0x40/0x90
[   86.029390][ T5921]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.029414][ T5921] RIP: 0033:0x7f92c160e929
[   86.029432][ T5921] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.029454][ T5921] RSP: 002b:00007f92bfc77038 EFLAGS: 00000246 ORIG_RAX: 0000000000000056
[   86.029475][ T5921] RAX: ffffffffffffffda RBX: 00007f92c1835fa0 RCX: 00007f92c160e929
[   86.029486][ T5921] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000200000000040
[   86.029547][ T5921] RBP: 00007f92bfc77090 R08: 0000000000000000 R09: 0000000000000000
[   86.029561][ T5921] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   86.029575][ T5921] R13: 0000000000000001 R14: 00007f92c1835fa0 R15: 00007ffe845f0028
[   86.029596][ T5921]  </TASK>
[   86.207773][ T5918] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   86.259653][ T5928] loop4: detected capacity change from 0 to 128
[   86.267617][ T5918] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   86.336269][ T5918] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   86.365117][ T5918] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   86.384190][ T5918] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   86.397244][ T5918] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   86.419044][ T5938] loop2: detected capacity change from 0 to 128
[   86.496213][ T5940] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   86.505132][ T5944] loop3: detected capacity change from 0 to 2048
[   86.538740][ T5944] ext4 filesystem being mounted at /176/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   86.562023][ T5940] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   86.628575][ T5940] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   86.692785][ T5940] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   86.785883][ T5434] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm kworker/u8:9: bg 0: block 345: padding at end of block bitmap is not set
[   86.807929][ T5940] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   86.821269][ T5940] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   86.821605][ T5434] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 432 with error 117
[   86.842105][ T5434] EXT4-fs (loop3): This should not happen!! Data will be lost
[   86.842105][ T5434] 
[   86.860548][ T5940] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   86.893060][ T5940] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   86.945786][ T5965] xt_cluster: you have exceeded the maximum number of cluster nodes (514 > 32)
[   87.065544][ T5972] loop2: detected capacity change from 0 to 128
[   87.128267][ T5976] loop0: detected capacity change from 0 to 128
[   87.143700][ T5974] loop2: detected capacity change from 0 to 1024
[   87.155240][ T5974] EXT4-fs: inline encryption not supported
[   87.161267][ T5974] EXT4-fs: Ignoring removed i_version option
[   87.175670][ T5974] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   87.189817][ T5974] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #3: block 2: comm syz.2.858: lblock 2 mapped to illegal pblock 2 (length 1)
[   87.205021][ T5974] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #3: block 48: comm syz.2.858: lblock 0 mapped to illegal pblock 48 (length 1)
[   87.219370][ T5974] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.858: Failed to acquire dquot type 0
[   87.237108][ T5974] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   87.259093][ T5978] x_tables: ip6_tables: tcpmss match: only valid for protocol 6
[   87.323304][ T5974] EXT4-fs error (device loop2): ext4_evict_inode:254: inode #11: comm syz.2.858: mark_inode_dirty error
[   87.334857][ T5974] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   87.373802][ T5974] EXT4-fs (loop2): 1 orphan inode deleted
[   87.425507][ T5434] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:9: lblock 1 mapped to illegal pblock 1 (length 1)
[   87.466057][ T5988] bond_slave_0: entered promiscuous mode
[   87.471797][ T5988] bond_slave_1: entered promiscuous mode
[   87.477719][ T5434] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:9: Failed to release dquot type 0
[   87.490027][ T5988] vlan2: entered promiscuous mode
[   87.495151][ T5988] bond0: entered promiscuous mode
[   87.518707][ T3310] EXT4-fs error (device loop2): __ext4_get_inode_loc:4792: comm syz-executor: Invalid inode table block 1 in block_group 0
[   87.532165][ T3310] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   87.545080][ T3310] EXT4-fs error (device loop2): ext4_quota_off:7217: inode #3: comm syz-executor: mark_inode_dirty error
[   87.604603][ T5991] netlink: 12 bytes leftover after parsing attributes in process `syz.2.863'.
[   87.633823][ T5994] loop4: detected capacity change from 0 to 2048
[   87.665681][ T5994] ext4 filesystem being mounted at /168/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   87.750633][ T5997] loop3: detected capacity change from 0 to 8192
[   88.119268][ T6001] loop2: detected capacity change from 0 to 2048
[   88.175355][ T6001] netlink: 52 bytes leftover after parsing attributes in process `syz.2.866'.
[   88.185406][ T6011] loop1: detected capacity change from 0 to 2048
[   88.235492][ T6011] Alternate GPT is invalid, using primary GPT.
[   88.242047][ T6011]  loop1: p2 p3 p7
[   88.296154][ T6013] loop2: detected capacity change from 0 to 128
[   88.381901][ T6017] loop1: detected capacity change from 0 to 128
[   88.468793][ T6021] loop2: detected capacity change from 0 to 2048
[   88.493152][ T6021] ext4 filesystem being mounted at /172/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   88.535646][ T6025] loop1: detected capacity change from 0 to 1024
[   88.562730][ T6027] netlink: 12 bytes leftover after parsing attributes in process `syz.0.876'.
[   88.581728][ T6025] EXT4-fs: inline encryption not supported
[   88.587621][ T6025] EXT4-fs: Ignoring removed i_version option
[   88.595035][ T6029] netlink: 4 bytes leftover after parsing attributes in process `syz.3.875'.
[   88.649138][ T5994] syz.4.865 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[   88.650075][ T6029] bridge0: entered promiscuous mode
[   88.663308][ T5994] CPU: 0 UID: 0 PID: 5994 Comm: syz.4.865 Not tainted 6.16.0-rc2-syzkaller-00047-g52da431bf03b #0 PREEMPT(voluntary) 
[   88.663340][ T5994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   88.663352][ T5994] Call Trace:
[   88.663359][ T5994]  <TASK>
[   88.663368][ T5994]  __dump_stack+0x1d/0x30
[   88.663390][ T5994]  dump_stack_lvl+0xe8/0x140
[   88.663455][ T5994]  dump_stack+0x15/0x1b
[   88.663473][ T5994]  dump_header+0x81/0x220
[   88.663504][ T5994]  oom_kill_process+0x334/0x3f0
[   88.663601][ T5994]  out_of_memory+0x979/0xb80
[   88.663703][ T5994]  try_charge_memcg+0x5e6/0x9e0
[   88.663729][ T5994]  obj_cgroup_charge_pages+0xa6/0x150
[   88.663822][ T5994]  __memcg_kmem_charge_page+0x9f/0x170
[   88.663889][ T5994]  __alloc_frozen_pages_noprof+0x188/0x360
[   88.663950][ T5994]  alloc_pages_mpol+0xb3/0x250
[   88.663979][ T5994]  alloc_pages_noprof+0x90/0x130
[   88.664008][ T5994]  __vmalloc_node_range_noprof+0x6f2/0xe00
[   88.664110][ T5994]  __kvmalloc_node_noprof+0x30f/0x4e0
[   88.664137][ T5994]  ? ip_set_alloc+0x1f/0x30
[   88.664236][ T5994]  ? ip_set_alloc+0x1f/0x30
[   88.664262][ T5994]  ? __kmalloc_cache_noprof+0x189/0x320
[   88.664288][ T5994]  ip_set_alloc+0x1f/0x30
[   88.664344][ T5994]  hash_netiface_create+0x282/0x740
[   88.664374][ T5994]  ? __pfx_hash_netiface_create+0x10/0x10
[   88.664422][ T5994]  ip_set_create+0x3cc/0x960
[   88.664457][ T5994]  ? __nla_parse+0x40/0x60
[   88.664518][ T5994]  nfnetlink_rcv_msg+0x4c3/0x590
[   88.664553][ T5994]  ? selinux_capable+0x1f9/0x270
[   88.664613][ T5994]  netlink_rcv_skb+0x123/0x220
[   88.664643][ T5994]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   88.664677][ T5994]  nfnetlink_rcv+0x16b/0x1690
[   88.664701][ T5994]  ? __kfree_skb+0x109/0x150
[   88.664750][ T5994]  ? nlmon_xmit+0x4f/0x60
[   88.664782][ T5994]  ? consume_skb+0x49/0x150
[   88.664810][ T5994]  ? nlmon_xmit+0x4f/0x60
[   88.664830][ T5994]  ? dev_hard_start_xmit+0x3b0/0x3e0
[   88.664863][ T5994]  ? __dev_queue_xmit+0x11c0/0x1fb0
[   88.664946][ T5994]  ? __dev_queue_xmit+0x182/0x1fb0
[   88.664977][ T5994]  ? ref_tracker_free+0x37d/0x3e0
[   88.665008][ T5994]  ? __netlink_deliver_tap+0x4dc/0x500
[   88.665077][ T5994]  netlink_unicast+0x59e/0x670
[   88.665107][ T5994]  netlink_sendmsg+0x58b/0x6b0
[   88.665168][ T5994]  ? __pfx_netlink_sendmsg+0x10/0x10
[   88.665203][ T5994]  __sock_sendmsg+0x142/0x180
[   88.665227][ T5994]  ____sys_sendmsg+0x31e/0x4e0
[   88.665259][ T5994]  ___sys_sendmsg+0x17b/0x1d0
[   88.665302][ T5994]  __x64_sys_sendmsg+0xd4/0x160
[   88.665335][ T5994]  x64_sys_call+0x2999/0x2fb0
[   88.665431][ T5994]  do_syscall_64+0xd2/0x200
[   88.665450][ T5994]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   88.665476][ T5994]  ? clear_bhb_loop+0x40/0x90
[   88.665499][ T5994]  ? clear_bhb_loop+0x40/0x90
[   88.665520][ T5994]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.665542][ T5994] RIP: 0033:0x7f4593cfe929
[   88.665559][ T5994] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   88.665578][ T5994] RSP: 002b:00007f4592367038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   88.665598][ T5994] RAX: ffffffffffffffda RBX: 00007f4593f25fa0 RCX: 00007f4593cfe929
[   88.665619][ T5994] RDX: 0000000000000810 RSI: 0000200000000040 RDI: 0000000000000004
[   88.665632][ T5994] RBP: 00007f4593d80b39 R08: 0000000000000000 R09: 0000000000000000
[   88.665651][ T5994] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   88.665663][ T5994] R13: 0000000000000000 R14: 00007f4593f25fa0 R15: 00007ffd18494868
[   88.665681][ T5994]  </TASK>
[   88.665688][ T5994] memory: usage 307200kB, limit 307200kB, failcnt 412
[   88.715869][ T6029] bridge0: port 3(macvlan2) entered blocking state
[   88.716889][ T5994] memory+swap: usage 308424kB, limit 9007199254740988kB, failcnt 0
[   88.716908][ T5994] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[   88.721832][ T6029] bridge0: port 3(macvlan2) entered disabled state
[   88.726370][ T5994] Memory cgroup stats for /syz4:
[   88.771598][ T6025] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   88.790857][ T5994] cache 12288
[   88.830628][ T6029] macvlan2: entered allmulticast mode
[   88.832984][ T5994] rss 0
[   88.837549][ T6029] bridge0: entered allmulticast mode
[   88.841872][ T5994] shmem 0
[   88.841882][ T5994] mapped_file 0
[   88.841889][ T5994] dirty 0
[   88.841898][ T5994] writeback 4096
[   88.917762][ T6025] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #3: block 2: comm syz.1.874: lblock 2 mapped to illegal pblock 2 (length 1)
[   88.920011][ T5994] workingset_refault_anon 826
[   88.920021][ T5994] workingset_refault_file 1276
[   88.920028][ T5994] swap 1253376
[   88.920035][ T5994] swapcached 4096
[   88.930749][ T6025] __quota_error: 431 callbacks suppressed
[   88.930767][ T6025] Quota error (device loop1): qtree_write_dquot: dquota write failed
[   88.930842][ T5994] pgpgin 104664
[   88.935495][ T6025] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #3: block 48: comm syz.1.874: lblock 0 mapped to illegal pblock 48 (length 1)
[   88.941400][ T5994] pgpgout 104660
[   88.941413][ T5994] pgfault 116404
[   88.941420][ T5994] pgmajfault 524
[   88.941427][ T5994] inactive_anon 4096
[   88.941434][ T5994] active_anon 0
[   88.941441][ T5994] inactive_file 0
[   88.941450][ T5994] active_file 12288
[   88.941458][ T5994] unevictable 0
[   88.966121][ T6025] Quota error (device loop1): v2_write_file_info: Can't write info structure
[   88.974472][ T5994] hierarchical_memory_limit 314572800
[   88.982381][ T6025] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.874: Failed to acquire dquot type 0
[   89.028536][ T6025] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   89.030940][ T5994] hierarchical_memsw_limit 9223372036854771712
[   89.046424][   T29] audit: type=1326 audit(1750297581.687:6801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6036 comm="syz.0.877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7fe82f2ae929 code=0x7ffc0000
[   89.052685][ T5994] total_cache 12288
[   89.052697][ T5994] total_rss 0
[   89.052706][ T5994] total_shmem 0
[   89.052714][ T5994] total_mapped_file 0
[   89.052722][ T5994] total_dirty 0
[   89.052731][ T5994] total_writeback 4096
[   89.068770][ T6025] EXT4-fs error (device loop1): ext4_evict_inode:254: inode #11: comm syz.1.874: mark_inode_dirty error
[   89.071264][ T5994] total_workingset_refault_anon 826
[   89.071275][ T5994] total_workingset_refault_file 1276
[   89.071284][ T5994] total_swap 1253376
[   89.071291][ T5994] total_swapcached 4096
[   89.071300][ T5994] total_pgpgin 104664
[   89.071309][ T5994] total_pgpgout 104660
[   89.083275][ T6025] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   89.084736][ T5994] total_pgfault 116404
[   89.096725][ T6025] EXT4-fs (loop1): 1 orphan inode deleted
[   89.097660][ T5994] total_pgmajfault 524
[   89.097671][ T5994] total_inactive_anon 4096
[   89.136489][ T5434] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:9: lblock 1 mapped to illegal pblock 1 (length 1)
[   89.141831][ T5994] total_active_anon 0
[   89.141842][ T5994] total_inactive_file 0
[   89.151426][ T5434] Quota error (device loop1): remove_tree: Can't read quota data block 1
[   89.159285][ T5994] total_active_file 12288
[   89.162876][ T5434] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:9: Failed to release dquot type 0
[   89.166408][ T5994] total_unevictable 0
[   89.392335][ T5994] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.865,pid=5992,uid=0
[   89.407061][ T5994] Memory cgroup out of memory: Killed process 5992 (syz.4.865) total-vm:95800kB, anon-rss:1064kB, file-rss:22328kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[   89.424373][ T6029] macvlan2: left allmulticast mode
[   89.429579][ T6029] bridge0: left allmulticast mode
[   89.442359][ T3314] EXT4-fs error (device loop1): __ext4_get_inode_loc:4792: comm syz-executor: Invalid inode table block 1 in block_group 0
[   89.456954][ T6029] bridge0: left promiscuous mode
[   89.483736][ T3314] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   89.493544][ T3314] EXT4-fs error (device loop1): ext4_quota_off:7217: inode #3: comm syz-executor: mark_inode_dirty error
[   89.530887][   T29] audit: type=1400 audit(1750297582.177:6802): avc:  denied  { read } for  pid=6040 comm="syz.1.879" dev="nsfs" ino=4026532512 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   89.552058][   T29] audit: type=1400 audit(1750297582.177:6803): avc:  denied  { open } for  pid=6040 comm="syz.1.879" path="net:[4026532512]" dev="nsfs" ino=4026532512 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   89.585007][   T29] audit: type=1400 audit(1750297582.217:6804): avc:  denied  { create } for  pid=6042 comm="syz.0.880" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   89.605025][   T29] audit: type=1326 audit(1750297582.217:6805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6040 comm="syz.1.879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96e4a3e929 code=0x7ffc0000
[   89.628497][   T29] audit: type=1326 audit(1750297582.227:6806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6040 comm="syz.1.879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f96e4a3e929 code=0x7ffc0000
[   89.651909][   T29] audit: type=1326 audit(1750297582.227:6807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6040 comm="syz.1.879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96e4a3e929 code=0x7ffc0000
[   89.711464][ T6041] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.725589][ T6047] loop0: detected capacity change from 0 to 128
[   89.733483][  T330] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm kworker/u8:5: bg 0: block 345: padding at end of block bitmap is not set
[   89.752099][ T6041] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.763235][  T330] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2048 with error 117
[   89.775979][  T330] EXT4-fs (loop2): This should not happen!! Data will be lost
[   89.775979][  T330] 
[   89.822198][ T6041] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.840436][  T330] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 2065 with max blocks 693 with error 28
[   89.853302][  T330] EXT4-fs (loop2): This should not happen!! Data will be lost
[   89.853302][  T330] 
[   89.863059][  T330] EXT4-fs (loop2): Total free blocks count 0
[   89.869142][  T330] EXT4-fs (loop2): Free/Dirty block details
[   89.875077][  T330] EXT4-fs (loop2): free_blocks=0
[   89.880042][  T330] EXT4-fs (loop2): dirty_blocks=704
[   89.885266][  T330] EXT4-fs (loop2): Block reservation details
[   89.891314][  T330] EXT4-fs (loop2): i_reserved_data_blocks=44
[   89.907098][ T6045] loop3: detected capacity change from 0 to 2048
[   89.932481][ T6041] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.949247][ T6056] netlink: 12 bytes leftover after parsing attributes in process `syz.4.887'.
[   89.970907][ T6045] netlink: 52 bytes leftover after parsing attributes in process `syz.3.881'.
[   89.988562][ T6041] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   90.001810][ T6041] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   90.013152][ T6041] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   90.025556][ T6041] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   90.062768][ T6063] loop2: detected capacity change from 0 to 2048
[   90.075808][ T6067] loop1: detected capacity change from 0 to 128
[   90.077149][ T6066] netlink: 4 bytes leftover after parsing attributes in process `syz.4.891'.
[   90.100260][ T6066] bridge0: entered promiscuous mode
[   90.107216][ T6066] bridge0: port 3(macvlan2) entered blocking state
[   90.113983][ T6066] bridge0: port 3(macvlan2) entered disabled state
[   90.121113][ T6066] macvlan2: entered allmulticast mode
[   90.126567][ T6066] bridge0: entered allmulticast mode
[   90.133201][ T6066] macvlan2: left allmulticast mode
[   90.134071][ T6063] Alternate GPT is invalid, using primary GPT.
[   90.138397][ T6066] bridge0: left allmulticast mode
[   90.144747][ T6063]  loop2: p2 p3 p7
[   90.150283][ T6066] bridge0: left promiscuous mode
[   90.159038][ T6073] FAULT_INJECTION: forcing a failure.
[   90.159038][ T6073] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   90.172321][ T6073] CPU: 1 UID: 0 PID: 6073 Comm: syz.1.894 Not tainted 6.16.0-rc2-syzkaller-00047-g52da431bf03b #0 PREEMPT(voluntary) 
[   90.172353][ T6073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   90.172366][ T6073] Call Trace:
[   90.172407][ T6073]  <TASK>
[   90.172455][ T6073]  __dump_stack+0x1d/0x30
[   90.172478][ T6073]  dump_stack_lvl+0xe8/0x140
[   90.172498][ T6073]  dump_stack+0x15/0x1b
[   90.172516][ T6073]  should_fail_ex+0x265/0x280
[   90.172550][ T6073]  should_fail+0xb/0x20
[   90.172593][ T6073]  should_fail_usercopy+0x1a/0x20
[   90.172649][ T6073]  _copy_from_iter+0xcf/0xe40
[   90.172668][ T6073]  ? __build_skb_around+0x1a0/0x200
[   90.172736][ T6073]  ? __alloc_skb+0x223/0x320
[   90.172825][ T6073]  netlink_sendmsg+0x471/0x6b0
[   90.172896][ T6073]  ? __pfx_netlink_sendmsg+0x10/0x10
[   90.173014][ T6073]  __sock_sendmsg+0x142/0x180
[   90.173041][ T6073]  ____sys_sendmsg+0x31e/0x4e0
[   90.173078][ T6073]  ___sys_sendmsg+0x17b/0x1d0
[   90.173127][ T6073]  __x64_sys_sendmsg+0xd4/0x160
[   90.173166][ T6073]  x64_sys_call+0x2999/0x2fb0
[   90.173228][ T6073]  do_syscall_64+0xd2/0x200
[   90.173248][ T6073]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   90.173275][ T6073]  ? clear_bhb_loop+0x40/0x90
[   90.173395][ T6073]  ? clear_bhb_loop+0x40/0x90
[   90.173418][ T6073]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.173441][ T6073] RIP: 0033:0x7f96e4a3e929
[   90.173457][ T6073] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.173477][ T6073] RSP: 002b:00007f96e30a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   90.173524][ T6073] RAX: ffffffffffffffda RBX: 00007f96e4c65fa0 RCX: 00007f96e4a3e929
[   90.173655][ T6073] RDX: 0000000004000000 RSI: 0000200000000600 RDI: 0000000000000004
[   90.173668][ T6073] RBP: 00007f96e30a7090 R08: 0000000000000000 R09: 0000000000000000
[   90.173681][ T6073] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   90.173770][ T6073] R13: 0000000000000000 R14: 00007f96e4c65fa0 R15: 00007ffd5d7de398
[   90.173789][ T6073]  </TASK>
[   90.388005][ T6069] netlink: 4 bytes leftover after parsing attributes in process `syz.3.892'.
[   90.401277][ T6069] bridge0: entered promiscuous mode
[   90.407650][ T6069] bridge0: port 3(macvlan2) entered blocking state
[   90.414294][ T6069] bridge0: port 3(macvlan2) entered disabled state
[   90.421920][ T6069] macvlan2: entered allmulticast mode
[   90.427358][ T6069] bridge0: entered allmulticast mode
[   90.428157][ T6077] loop2: detected capacity change from 0 to 1024
[   90.439237][ T6069] macvlan2: left allmulticast mode
[   90.439550][ T6077] EXT4-fs: inline encryption not supported
[   90.444494][ T6069] bridge0: left allmulticast mode
[   90.450269][ T6077] EXT4-fs: Ignoring removed i_version option
[   90.456545][ T6069] bridge0: left promiscuous mode
[   90.467321][ T6077] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   90.480258][ T6077] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #3: block 2: comm syz.2.895: lblock 2 mapped to illegal pblock 2 (length 1)
[   90.494734][ T6077] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #3: block 48: comm syz.2.895: lblock 0 mapped to illegal pblock 48 (length 1)
[   90.508968][ T6077] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.895: Failed to acquire dquot type 0
[   90.530299][ T6077] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   90.540280][ T6077] EXT4-fs error (device loop2): ext4_evict_inode:254: inode #11: comm syz.2.895: mark_inode_dirty error
[   90.574105][ T6077] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   90.584702][ T6077] EXT4-fs (loop2): 1 orphan inode deleted
[   90.604755][ T6086] netlink: 'syz.1.899': attribute type 9 has an invalid length.
[   90.612785][ T1845] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:6: lblock 1 mapped to illegal pblock 1 (length 1)
[   90.628939][ T1845] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:6: Failed to release dquot type 0
[   90.651001][ T3310] EXT4-fs error (device loop2): __ext4_get_inode_loc:4792: comm syz-executor: Invalid inode table block 1 in block_group 0
[   90.664226][ T3310] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   90.673811][ T3310] EXT4-fs error (device loop2): ext4_quota_off:7217: inode #3: comm syz-executor: mark_inode_dirty error
[   90.689183][ T6089] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   90.711724][ T6093] loop1: detected capacity change from 0 to 128
[   90.719897][ T6093] ext4 filesystem being mounted at /187/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   90.772080][ T6089] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   90.785534][ T6099] netlink: 8 bytes leftover after parsing attributes in process `syz.0.905'.
[   90.806172][ T6094] loop2: detected capacity change from 0 to 8192
[   90.823770][ T6094] netlink: 24 bytes leftover after parsing attributes in process `syz.2.903'.
[   90.842383][ T6089] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   90.869431][ T6101] macvlan2: entered promiscuous mode
[   90.874878][ T6101] macvlan2: entered allmulticast mode
[   90.890792][ T6101] batadv0: entered promiscuous mode
[   90.897210][ T6101] 8021q: adding VLAN 0 to HW filter on device macvlan2
[   90.904295][ T6091] loop4: detected capacity change from 0 to 2048
[   90.905624][ T6101] bond0: (slave macvlan2): Enslaving as an active interface with an up link
[   90.921696][ T6089] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   90.942381][ T6091] netlink: 52 bytes leftover after parsing attributes in process `syz.4.902'.
[   90.978704][ T6109] batadv_slave_1: entered promiscuous mode
[   90.985681][ T6109] netlink: 4 bytes leftover after parsing attributes in process `syz.1.909'.
[   91.002239][ T6109] bridge0: entered promiscuous mode
[   91.008977][ T6109] bridge0: port 3(macvlan3) entered blocking state
[   91.015658][ T6109] bridge0: port 3(macvlan3) entered disabled state
[   91.023519][ T6109] macvlan3: entered allmulticast mode
[   91.029209][ T6109] bridge0: entered allmulticast mode
[   91.039719][ T6109] macvlan3: left allmulticast mode
[   91.044969][ T6109] bridge0: left allmulticast mode
[   91.050816][ T6109] bridge0: left promiscuous mode
[   91.115523][ T6108] batadv_slave_1: left promiscuous mode
[   91.127318][ T6125] loop4: detected capacity change from 0 to 128
[   91.169024][ T6127] loop2: detected capacity change from 0 to 2048
[   91.188439][ T6089] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   91.229821][ T6089] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   91.233088][ T6135] netlink: 9 bytes leftover after parsing attributes in process `syz.1.918'.
[   91.241389][ T6089] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   91.256984][ T6127] ext4 filesystem being mounted at /178/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   91.260007][ T6089] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   91.287380][ T6141] netlink: 5 bytes leftover after parsing attributes in process `syz.1.918'.
[   91.299928][ T6135] gretap0: entered promiscuous mode
[   91.320837][ T6141] 0ªX¹¦D: renamed from gretap0
[   91.327656][ T6141] 0ªX¹¦D: left promiscuous mode
[   91.332654][ T6141] 0ªX¹¦D: entered allmulticast mode
[   91.343388][ T6144] netlink: 8 bytes leftover after parsing attributes in process `syz.3.921'.
[   91.376782][ T6141] A link change request failed with some changes committed already. Interface 
30ªX¹¦D may have been left with an inconsistent configuration, please check.
[   91.740499][ T6155] loop4: detected capacity change from 0 to 2048
[   91.795999][ T6155] netlink: 52 bytes leftover after parsing attributes in process `syz.4.922'.
[   91.834022][ T6168] loop3: detected capacity change from 0 to 2048
[   91.877965][ T6168] ext4 filesystem being mounted at /184/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   91.950291][ T6180] loop1: detected capacity change from 0 to 128
[   92.062267][ T6190] netlink: 'syz.1.933': attribute type 21 has an invalid length.
[   92.082809][ T6190] netlink: 156 bytes leftover after parsing attributes in process `syz.1.933'.
[   92.180608][ T6196] FAULT_INJECTION: forcing a failure.
[   92.180608][ T6196] name failslab, interval 1, probability 0, space 0, times 0
[   92.193338][ T6196] CPU: 0 UID: 0 PID: 6196 Comm: syz.1.936 Not tainted 6.16.0-rc2-syzkaller-00047-g52da431bf03b #0 PREEMPT(voluntary) 
[   92.193369][ T6196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   92.193380][ T6196] Call Trace:
[   92.193387][ T6196]  <TASK>
[   92.193400][ T6196]  __dump_stack+0x1d/0x30
[   92.193421][ T6196]  dump_stack_lvl+0xe8/0x140
[   92.193459][ T6196]  dump_stack+0x15/0x1b
[   92.193474][ T6196]  should_fail_ex+0x265/0x280
[   92.193500][ T6196]  should_failslab+0x8c/0xb0
[   92.193524][ T6196]  kmem_cache_alloc_noprof+0x50/0x310
[   92.193620][ T6196]  ? audit_log_start+0x365/0x6c0
[   92.193649][ T6196]  audit_log_start+0x365/0x6c0
[   92.193820][ T6196]  audit_seccomp+0x48/0x100
[   92.193850][ T6196]  ? __seccomp_filter+0x68c/0x10d0
[   92.193871][ T6196]  __seccomp_filter+0x69d/0x10d0
[   92.193894][ T6196]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   92.193946][ T6196]  ? vfs_write+0x75e/0x8e0
[   92.193983][ T6196]  __secure_computing+0x82/0x150
[   92.194003][ T6196]  syscall_trace_enter+0xcf/0x1e0
[   92.194051][ T6196]  do_syscall_64+0xac/0x200
[   92.194071][ T6196]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   92.194100][ T6196]  ? clear_bhb_loop+0x40/0x90
[   92.194124][ T6196]  ? clear_bhb_loop+0x40/0x90
[   92.194195][ T6196]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.194215][ T6196] RIP: 0033:0x7f96e4a3e929
[   92.194230][ T6196] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   92.194249][ T6196] RSP: 002b:00007f96e30a7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[   92.194269][ T6196] RAX: ffffffffffffffda RBX: 00007f96e4c65fa0 RCX: 00007f96e4a3e929
[   92.194282][ T6196] RDX: 0000200000000200 RSI: 000000001ad83348 RDI: 000000000000001d
[   92.194363][ T6196] RBP: 00007f96e30a7090 R08: 0000000000000000 R09: 0000000000000000
[   92.194374][ T6196] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001
[   92.194387][ T6196] R13: 0000000000000000 R14: 00007f96e4c65fa0 R15: 00007ffd5d7de398
[   92.194426][ T6196]  </TASK>
[   92.613554][ T6210] loop0: detected capacity change from 0 to 128
[   92.627187][ T6207] netlink: 4 bytes leftover after parsing attributes in process `syz.1.942'.
[   92.726831][ T6225] netlink: 8 bytes leftover after parsing attributes in process `syz.0.949'.
[   92.783942][ T6229] loop2: detected capacity change from 0 to 128
[   92.835823][ T6221] loop1: detected capacity change from 0 to 2048
[   92.884477][ T6221] Alternate GPT is invalid, using primary GPT.
[   92.891084][ T6221]  loop1: p2 p3 p7
[   92.944007][ T2290] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm kworker/u8:7: bg 0: block 345: padding at end of block bitmap is not set
[   92.960159][ T2290] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 241 with error 117
[   92.966383][ T6243] loop2: detected capacity change from 0 to 128
[   92.972762][ T2290] EXT4-fs (loop3): This should not happen!! Data will be lost
[   92.972762][ T2290] 
[   93.091575][ T6251] loop0: detected capacity change from 0 to 2048
[   93.123547][ T6251] Alternate GPT is invalid, using primary GPT.
[   93.130071][ T6251]  loop0: p2 p3 p7
[   93.197755][ T6265] loop2: detected capacity change from 0 to 8192
[   93.241191][ T6276] loop1: detected capacity change from 0 to 128
[   93.288223][ T6272] loop4: detected capacity change from 0 to 128
[   93.522143][ T6283] loop4: detected capacity change from 0 to 2048
[   93.598363][ T6283] Alternate GPT is invalid, using primary GPT.
[   93.604931][ T6283]  loop4: p2 p3 p7
[   93.829080][ T6290] loop2: detected capacity change from 0 to 1024
[   93.858824][ T6290] EXT4-fs: inline encryption not supported
[   93.864815][ T6290] EXT4-fs: Ignoring removed i_version option
[   93.953723][   T29] kauditd_printk_skb: 427 callbacks suppressed
[   93.953752][   T29] audit: type=1400 audit(1750297586.597:7230): avc:  denied  { prog_run } for  pid=6293 comm="syz.1.979" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   94.022634][ T6290] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   94.100230][ T6294] loop1: detected capacity change from 0 to 2048
[   94.129079][ T6290] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #3: block 2: comm syz.2.977: lblock 2 mapped to illegal pblock 2 (length 1)
[   94.158183][   T29] audit: type=1400 audit(1750297586.627:7231): avc:  denied  { tracepoint } for  pid=6293 comm="syz.1.979" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   94.177925][   T29] audit: type=1326 audit(1750297586.637:7232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6293 comm="syz.1.979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96e4a3e929 code=0x7ffc0000
[   94.201273][   T29] audit: type=1326 audit(1750297586.637:7233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6293 comm="syz.1.979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96e4a3e929 code=0x7ffc0000
[   94.224613][   T29] audit: type=1326 audit(1750297586.637:7234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6293 comm="syz.1.979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f96e4a3e929 code=0x7ffc0000
[   94.247924][   T29] audit: type=1326 audit(1750297586.637:7235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6293 comm="syz.1.979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96e4a3e929 code=0x7ffc0000
[   94.271468][   T29] audit: type=1326 audit(1750297586.637:7236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6293 comm="syz.1.979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96e4a3e929 code=0x7ffc0000
[   94.294827][   T29] audit: type=1326 audit(1750297586.637:7237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6293 comm="syz.1.979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f96e4a3e929 code=0x7ffc0000
[   94.318210][   T29] audit: type=1400 audit(1750297586.637:7238): avc:  denied  { map_read map_write } for  pid=6293 comm="syz.1.979" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   94.337975][   T29] audit: type=1326 audit(1750297586.647:7239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6293 comm="syz.1.979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96e4a3e929 code=0x7ffc0000
[   94.371092][ T6290] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #3: block 48: comm syz.2.977: lblock 0 mapped to illegal pblock 48 (length 1)
[   94.386518][ T6290] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.977: Failed to acquire dquot type 0
[   94.398905][ T6290] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   94.412295][ T6294] Alternate GPT is invalid, using primary GPT.
[   94.418770][ T6294]  loop1: p2 p3 p7
[   94.437202][ T6290] EXT4-fs error (device loop2): ext4_evict_inode:254: inode #11: comm syz.2.977: mark_inode_dirty error
[   94.449523][ T6290] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   94.460209][ T6290] EXT4-fs (loop2): 1 orphan inode deleted
[   94.479973][  T330] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:5: lblock 1 mapped to illegal pblock 1 (length 1)
[   94.533946][  T330] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:5: Failed to release dquot type 0
[   94.558906][ T6315] loop3: detected capacity change from 0 to 128
[   94.635115][ T6318] loop4: detected capacity change from 0 to 2048
[   94.714337][ T6318] Alternate GPT is invalid, using primary GPT.
[   94.721017][ T6318]  loop4: p2 p3 p7
[   94.812267][ T3310] EXT4-fs error (device loop2): __ext4_get_inode_loc:4792: comm syz-executor: Invalid inode table block 1 in block_group 0
[   94.867933][ T3310] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   94.914026][ T3310] EXT4-fs error (device loop2): ext4_quota_off:7217: inode #3: comm syz-executor: mark_inode_dirty error
[   95.144768][ T6350] xt_cluster: you have exceeded the maximum number of cluster nodes (514 > 32)
[   95.173152][ T6346] loop0: detected capacity change from 0 to 2048
[   95.210389][ T6352] loop3: detected capacity change from 0 to 1024
[   95.231396][ T6352] EXT4-fs: inline encryption not supported
[   95.235025][ T6346] Alternate GPT is invalid, using primary GPT.
[   95.237388][ T6352] EXT4-fs: Ignoring removed i_version option
[   95.243714][ T6346]  loop0: p2 p3 p7
[   95.282292][ T6331] loop4: detected capacity change from 0 to 2048
[   95.327270][ T6352] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   95.372578][ T6357] loop0: detected capacity change from 0 to 128
[   95.385116][ T6331] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=6331 comm=syz.4.993
[   95.420797][ T6352] EXT4-fs error (device loop3): ext4_map_blocks:780: inode #3: block 2: comm syz.3.1001: lblock 2 mapped to illegal pblock 2 (length 1)
[   95.431222][ T6362] loop2: detected capacity change from 0 to 2048
[   95.442958][ T6352] EXT4-fs error (device loop3): ext4_map_blocks:780: inode #3: block 48: comm syz.3.1001: lblock 0 mapped to illegal pblock 48 (length 1)
[   95.458297][ T6352] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.1001: Failed to acquire dquot type 0
[   95.480904][ T6352] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   95.490949][ T6352] EXT4-fs error (device loop3): ext4_evict_inode:254: inode #11: comm syz.3.1001: mark_inode_dirty error
[   95.521222][ T6362] ext4 filesystem being mounted at /196/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   95.538875][ T6352] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   95.566328][ T6352] EXT4-fs (loop3): 1 orphan inode deleted
[   95.635425][ T5434] EXT4-fs error (device loop3): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:9: lblock 1 mapped to illegal pblock 1 (length 1)
[   95.667350][ T5434] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:9: Failed to release dquot type 0
[   95.692013][ T3309] EXT4-fs unmount: 29 callbacks suppressed
[   95.692029][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.034980][ T3309] EXT4-fs error (device loop3): __ext4_get_inode_loc:4792: comm syz-executor: Invalid inode table block 1 in block_group 0
[   96.090396][ T3309] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   96.202969][ T3309] EXT4-fs error (device loop3): ext4_quota_off:7217: inode #3: comm syz-executor: mark_inode_dirty error
[   96.270415][ T2290] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm kworker/u8:7: bg 0: block 345: padding at end of block bitmap is not set
[   96.418938][ T2290] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 137 with error 117
[   96.431579][ T2290] EXT4-fs (loop2): This should not happen!! Data will be lost
[   96.431579][ T2290] 
[   96.494469][ T6385] loop0: detected capacity change from 0 to 2048
[   96.563956][ T6385] Alternate GPT is invalid, using primary GPT.
[   96.570349][ T6385]  loop0: p2 p3 p7
[   96.679139][ T6387] loop0: detected capacity change from 0 to 128
[   96.814424][ T6391] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[   96.823216][ T6391] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=35 sclass=netlink_route_socket pid=6391 comm=syz.1.1014
[   96.951046][ T6397] loop1: detected capacity change from 0 to 4096
[   96.972459][ T6397] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   97.032816][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.048285][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.125942][ T6404] loop0: detected capacity change from 0 to 1024
[   97.141402][ T6404] EXT4-fs: inline encryption not supported
[   97.147418][ T6404] EXT4-fs: Ignoring removed i_version option
[   97.166396][ T6404] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   97.193071][ T6404] EXT4-fs error (device loop0): ext4_map_blocks:780: inode #3: block 2: comm syz.0.1019: lblock 2 mapped to illegal pblock 2 (length 1)
[   97.217848][ T6404] EXT4-fs error (device loop0): ext4_map_blocks:780: inode #3: block 48: comm syz.0.1019: lblock 0 mapped to illegal pblock 48 (length 1)
[   97.238881][ T6404] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.1019: Failed to acquire dquot type 0
[   97.265522][ T6412] loop1: detected capacity change from 0 to 128
[   97.284503][ T6404] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   97.321031][ T6416] loop4: detected capacity change from 0 to 4096
[   97.330015][ T6416] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   97.344055][ T6418] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.344552][ T6404] EXT4-fs error (device loop0): ext4_evict_inode:254: inode #11: comm syz.0.1019: mark_inode_dirty error
[   97.365505][ T6404] EXT4-fs warning (device loop0): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   97.376750][ T6404] EXT4-fs (loop0): 1 orphan inode deleted
[   97.383178][ T6404] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   97.413189][  T330] EXT4-fs error (device loop0): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:5: lblock 1 mapped to illegal pblock 1 (length 1)
[   97.434832][ T6418] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.445585][  T330] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:5: Failed to release dquot type 0
[   97.480209][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.491080][ T6418] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.524803][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.536487][ T3307] EXT4-fs error (device loop0): __ext4_get_inode_loc:4792: comm syz-executor: Invalid inode table block 1 in block_group 0
[   97.551289][ T6418] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.563522][ T3307] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   97.573347][ T3307] EXT4-fs error (device loop0): ext4_quota_off:7217: inode #3: comm syz-executor: mark_inode_dirty error
[   97.613005][ T6437] loop4: detected capacity change from 0 to 128
[   97.630375][ T6440] loop0: detected capacity change from 0 to 2048
[   97.651506][ T6418] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   97.672465][ T6418] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   97.684287][ T6418] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   97.699668][ T6440] Alternate GPT is invalid, using primary GPT.
[   97.706152][ T6440]  loop0: p2 p3 p7
[   97.727555][ T6418] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   97.841773][ T6444] loop0: detected capacity change from 0 to 8192
[   97.844496][ T6454] __nla_validate_parse: 9 callbacks suppressed
[   97.844509][ T6454] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1037'.
[   97.915932][ T6444] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1035'.
[   97.937552][ T6461] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1039'.
[   97.981440][ T6465] loop1: detected capacity change from 0 to 1024
[   97.988316][ T6465] EXT4-fs: inline encryption not supported
[   97.994337][ T6465] EXT4-fs: Ignoring removed i_version option
[   98.001654][ T6465] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   98.018071][ T6463] loop3: detected capacity change from 0 to 8192
[   98.049171][ T6463] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   98.059959][ T6465] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #3: block 2: comm syz.1.1041: lblock 2 mapped to illegal pblock 2 (length 1)
[   98.112393][ T6468] loop0: detected capacity change from 0 to 2048
[   98.133436][ T6465] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #3: block 48: comm syz.1.1041: lblock 0 mapped to illegal pblock 48 (length 1)
[   98.182238][ T6468] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   98.204733][ T6465] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.1041: Failed to acquire dquot type 0
[   98.218877][ T6465] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   98.229057][ T6465] EXT4-fs error (device loop1): ext4_evict_inode:254: inode #11: comm syz.1.1041: mark_inode_dirty error
[   98.242676][ T6465] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   98.265077][ T6475] loop3: detected capacity change from 0 to 2048
[   98.272223][ T6465] EXT4-fs (loop1): 1 orphan inode deleted
[   98.278420][ T6465] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   98.291579][ T5434] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:9: lblock 1 mapped to illegal pblock 1 (length 1)
[   98.310294][ T6483] batadv_slave_1: entered promiscuous mode
[   98.364204][ T6475] Alternate GPT is invalid, using primary GPT.
[   98.368725][ T6483] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1048'.
[   98.370666][ T6475]  loop3: p2 p3 p7
[   98.400736][ T5434] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:9: Failed to release dquot type 0
[   98.409553][ T6483] bridge0: entered promiscuous mode
[   98.427447][ T6484] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1044'.
[   98.474227][ T6483] bridge0: port 3(macvlan2) entered blocking state
[   98.480853][ T6483] bridge0: port 3(macvlan2) entered disabled state
[   98.559040][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.568313][ T6483] macvlan2: entered allmulticast mode
[   98.573771][ T6483] bridge0: entered allmulticast mode
[   98.579416][ T3314] EXT4-fs error (device loop1): __ext4_get_inode_loc:4792: comm syz-executor: Invalid inode table block 1 in block_group 0
[   98.600982][ T3314] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   98.620697][ T6483] macvlan2: left allmulticast mode
[   98.620872][ T3314] EXT4-fs error (device loop1): ext4_quota_off:7217: inode #3: comm syz-executor: mark_inode_dirty error
[   98.625862][ T6483] bridge0: left allmulticast mode
[   98.626211][ T6483] bridge0: left promiscuous mode
[   98.708938][ T6482] batadv_slave_1: left promiscuous mode
[   98.788391][ T6481] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   98.804372][ T6481] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   98.817116][ T6481] EXT4-fs (loop0): This should not happen!! Data will be lost
[   98.817116][ T6481] 
[   98.827009][ T6481] EXT4-fs (loop0): Total free blocks count 0
[   98.833144][ T6481] EXT4-fs (loop0): Free/Dirty block details
[   98.839191][ T6481] EXT4-fs (loop0): free_blocks=2415919104
[   98.844982][ T6481] EXT4-fs (loop0): dirty_blocks=8208
[   98.850284][ T6481] EXT4-fs (loop0): Block reservation details
[   98.856353][ T6481] EXT4-fs (loop0): i_reserved_data_blocks=513
[   98.856823][ T6504] 9pnet_fd: Insufficient options for proto=fd
[   98.942289][ T6512] FAULT_INJECTION: forcing a failure.
[   98.942289][ T6512] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   98.955632][ T6512] CPU: 1 UID: 0 PID: 6512 Comm: syz.4.1059 Not tainted 6.16.0-rc2-syzkaller-00047-g52da431bf03b #0 PREEMPT(voluntary) 
[   98.955679][ T6512] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   98.955690][ T6512] Call Trace:
[   98.955696][ T6512]  <TASK>
[   98.955703][ T6512]  __dump_stack+0x1d/0x30
[   98.955724][ T6512]  dump_stack_lvl+0xe8/0x140
[   98.955756][ T6512]  dump_stack+0x15/0x1b
[   98.955775][ T6512]  should_fail_ex+0x265/0x280
[   98.955806][ T6512]  should_fail_alloc_page+0xf2/0x100
[   98.955833][ T6512]  __alloc_frozen_pages_noprof+0xff/0x360
[   98.955898][ T6512]  alloc_pages_bulk_noprof+0x4b8/0x540
[   98.956021][ T6512]  ? __kmalloc_noprof+0x1dd/0x3e0
[   98.956101][ T6512]  ? copy_splice_read+0xc2/0x5f0
[   98.956127][ T6512]  copy_splice_read+0xf3/0x5f0
[   98.956157][ T6512]  sock_splice_read+0xa5/0xb0
[   98.956262][ T6512]  ? __pfx_sock_splice_read+0x10/0x10
[   98.956313][ T6512]  splice_file_to_pipe+0x241/0x3a0
[   98.956378][ T6512]  do_splice+0xc4d/0x10b0
[   98.956420][ T6512]  ? __rcu_read_unlock+0x4f/0x70
[   98.956442][ T6512]  ? __fget_files+0x184/0x1c0
[   98.956511][ T6512]  __se_sys_splice+0x26c/0x3a0
[   98.956546][ T6512]  __x64_sys_splice+0x78/0x90
[   98.956574][ T6512]  x64_sys_call+0xb0a/0x2fb0
[   98.956593][ T6512]  do_syscall_64+0xd2/0x200
[   98.956700][ T6512]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   98.956775][ T6512]  ? clear_bhb_loop+0x40/0x90
[   98.956799][ T6512]  ? clear_bhb_loop+0x40/0x90
[   98.956823][ T6512]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.956844][ T6512] RIP: 0033:0x7f4593cfe929
[   98.956858][ T6512] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   98.956974][ T6512] RSP: 002b:00007f4592367038 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[   98.956998][ T6512] RAX: ffffffffffffffda RBX: 00007f4593f25fa0 RCX: 00007f4593cfe929
[   98.957013][ T6512] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000005
[   98.957025][ T6512] RBP: 00007f4592367090 R08: 0000000000000006 R09: 0000000000000000
[   98.957036][ T6512] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   98.957089][ T6512] R13: 0000000000000000 R14: 00007f4593f25fa0 R15: 00007ffd18494868
[   98.957108][ T6512]  </TASK>
[   99.014496][  T330] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[   99.028667][ T6510] loop3: detected capacity change from 0 to 2048
[   99.035252][   T29] kauditd_printk_skb: 473 callbacks suppressed
[   99.035267][   T29] audit: type=1326 audit(1750297591.657:7701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6511 comm="syz.4.1059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f4593cfd33c code=0x7ffc0000
[   99.050680][ T6512] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1059'.
[   99.053697][   T29] audit: type=1326 audit(1750297591.657:7702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6511 comm="syz.4.1059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f4593cfd3df code=0x7ffc0000
[   99.116806][ T6519] loop1: detected capacity change from 0 to 128
[   99.132073][   T29] audit: type=1326 audit(1750297591.657:7703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6511 comm="syz.4.1059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f4593cfd58a code=0x7ffc0000
[   99.132110][   T29] audit: type=1326 audit(1750297591.657:7704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6511 comm="syz.4.1059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4593cfe929 code=0x7ffc0000
[   99.208048][ T6510] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   99.209159][   T29] audit: type=1326 audit(1750297591.657:7705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6511 comm="syz.4.1059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4593cfe929 code=0x7ffc0000
[   99.232510][ T6510] ext4 filesystem being mounted at /213/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   99.364874][   T29] audit: type=1326 audit(1750297591.687:7706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6511 comm="syz.4.1059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f4593cfe929 code=0x7ffc0000
[   99.388353][   T29] audit: type=1326 audit(1750297591.697:7707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6511 comm="syz.4.1059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4593cfe929 code=0x7ffc0000
[   99.411870][   T29] audit: type=1400 audit(1750297591.787:7708): avc:  denied  { relabelfrom } for  pid=6516 comm="syz.4.1062" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[   99.431768][   T29] audit: type=1400 audit(1750297591.787:7709): avc:  denied  { relabelto } for  pid=6516 comm="syz.4.1062" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[   99.484671][ T6522] loop0: detected capacity change from 0 to 1024
[   99.492396][ T6523] batadv_slave_1: entered promiscuous mode
[   99.499035][ T6523] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1063'.
[   99.530133][ T6522] EXT4-fs: inline encryption not supported
[   99.530766][ T6523] bridge0: entered promiscuous mode
[   99.536029][ T6522] EXT4-fs: Ignoring removed i_version option
[   99.555936][ T6523] bridge0: port 3(macvlan3) entered blocking state
[   99.562666][ T6523] bridge0: port 3(macvlan3) entered disabled state
[   99.569314][   T29] audit: type=1400 audit(1750297592.147:7710): avc:  denied  { ioctl } for  pid=6524 comm="syz.4.1064" path="socket:[18112]" dev="sockfs" ino=18112 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   99.610587][ T6522] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   99.634325][ T6522] EXT4-fs error (device loop0): ext4_map_blocks:780: inode #3: block 2: comm syz.0.1060: lblock 2 mapped to illegal pblock 2 (length 1)
[   99.659982][ T6523] macvlan3: entered allmulticast mode
[   99.665438][ T6523] bridge0: entered allmulticast mode
[   99.671395][ T6522] EXT4-fs error (device loop0): ext4_map_blocks:780: inode #3: block 48: comm syz.0.1060: lblock 0 mapped to illegal pblock 48 (length 1)
[   99.694087][ T6523] macvlan3: left allmulticast mode
[   99.699301][ T6523] bridge0: left allmulticast mode
[   99.771702][ T6522] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.1060: Failed to acquire dquot type 0
[   99.783440][ T6523] bridge0: left promiscuous mode
[   99.798263][ T6535] mmap: syz.4.1067 (6535) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   99.827383][ T6522] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   99.850486][ T6522] EXT4-fs error (device loop0): ext4_evict_inode:254: inode #11: comm syz.0.1060: mark_inode_dirty error
[   99.891349][ T6522] EXT4-fs warning (device loop0): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   99.894963][ T6521] batadv_slave_1: left promiscuous mode
[   99.901590][ T6522] EXT4-fs (loop0): 1 orphan inode deleted
[   99.901971][ T6522] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   99.928011][ T5434] EXT4-fs error (device loop0): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:9: lblock 1 mapped to illegal pblock 1 (length 1)
[   99.952927][ T5434] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:9: Failed to release dquot type 0
[   99.993191][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.031230][ T6539] ==================================================================
[  100.039441][ T6539] BUG: KCSAN: data-race in call_rcu / mas_state_walk
[  100.046148][ T6539] 
[  100.048488][ T6539] write to 0xffff8881041e6708 of 8 bytes by task 6538 on cpu 1:
[  100.056139][ T6539]  call_rcu+0x48/0x3e0
[  100.060238][ T6539]  mas_wmb_replace+0xf7a/0x14a0
[  100.065099][ T6539]  mas_wr_store_entry+0x1773/0x2b50
[  100.070321][ T6539]  mas_store_prealloc+0x74d/0x9e0
[  100.075373][ T6539]  vma_iter_store_new+0x1c5/0x200
[  100.080943][ T6539]  vma_complete+0x125/0x580
[  100.085467][ T6539]  __split_vma+0x591/0x650
[  100.089905][ T6539]  vma_modify+0x21e/0xc80
[  100.094265][ T6539]  vma_modify_flags+0x101/0x130
[  100.099136][ T6539]  mprotect_fixup+0x2cc/0x570
[  100.103822][ T6539]  do_mprotect_pkey+0x6d6/0x980
[  100.108683][ T6539]  __x64_sys_mprotect+0x48/0x60
[  100.113553][ T6539]  x64_sys_call+0x2794/0x2fb0
[  100.118249][ T6539]  do_syscall_64+0xd2/0x200
[  100.122767][ T6539]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.128677][ T6539] 
[  100.131128][ T6539] read to 0xffff8881041e6708 of 8 bytes by task 6539 on cpu 0:
[  100.138763][ T6539]  mas_state_walk+0x28f/0x650
[  100.143455][ T6539]  mas_walk+0x30/0x120
[  100.147539][ T6539]  lock_vma_under_rcu+0xa2/0x2f0
[  100.152497][ T6539]  do_user_addr_fault+0x233/0x1090
[  100.157640][ T6539]  exc_page_fault+0x62/0xa0
[  100.162155][ T6539]  asm_exc_page_fault+0x26/0x30
[  100.167010][ T6539] 
[  100.169334][ T6539] Reported by Kernel Concurrency Sanitizer on:
[  100.175486][ T6539] CPU: 0 UID: 0 PID: 6539 Comm: syz.1.1070 Not tainted 6.16.0-rc2-syzkaller-00047-g52da431bf03b #0 PREEMPT(voluntary) 
[  100.187901][ T6539] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  100.197960][ T6539] ==================================================================
[  100.244797][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.254350][ T3307] EXT4-fs error (device loop0): __ext4_get_inode_loc:4792: comm syz-executor: Invalid inode table block 1 in block_group 0
[  100.268687][ T3307] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  100.278229][ T3307] EXT4-fs error (device loop0): ext4_quota_off:7217: inode #3: comm syz-executor: mark_inode_dirty error