last executing test programs:

4.205476024s ago: executing program 1 (id=5512):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = memfd_secret(0x80000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x48)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000280)={r2, r1, 0x2e, 0x4608, @void}, 0x10)
close_range(r2, 0xffffffffffffffff, 0x0)

4.186614424s ago: executing program 1 (id=5514):
syz_read_part_table(0x1062, &(0x7f0000000000)="$eJzsz7FRw0AQBdA93QlJJFACZdADMfUglUJKSkhI5k6cO3B2npPkFmwH7yX/5mb272xwV1OKiFzeU+Tt43XYsv/4bjHG3KL7/zuUNEc8dV/ptw7nGtPesBz7iPqSo8TztXUsrWEdjKXu1em0xltqK2t75s+fW94KAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAI/qEgAA//8g+hAq")
syz_mount_image$ext4(&(0x7f0000000300)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000001c0), 0x1, 0x553, &(0x7f0000001080)="$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")
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000280)='+}[@\x00')
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x178)
link(&(0x7f0000000200)='./file1\x00', &(0x7f0000000300)='./bus\x00')
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000540)={{}, &(0x7f00000004c0), &(0x7f0000000500)}, 0x20)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_read_part_table(0x611, &(0x7f00000007c0)="$eJzs3D9olGccB/DvJbmcUTAOTi41Dp2Eojh6Q5XkqlgIp1IIDvYfIs0UIXDSwxQd2gwRM0jHLlK4DjFOxgxOikLnIg4WIYNLwS5SO+TK3b0kFyjF0kgp/XyG+z3vy4/n+/7gWZ8L/2kDKRerdqVb3vvkL/vbo5vruZxtjU+caLfb7TNJKedSzlh593KSoWzdNQeSDPftc+u7navf/PpBufX09Kt3zz+YH9jYs5I9SXb1N2fkzz6l8vcm5W1Yqj4crSZZ6DzUmmvrHyW3X47XV07NLy6fLB//rPP+SvKo6O8djJFcSiOX80U+HnrjqK82l6Ut+XPXZmoLjerFJ7Xm2ret54fW99UG7144+nr/6vX7h5PZTsRkuod90/A/HLwv/2pf/uzYjanF5rGDd/bePNK497j+YvC3dk8RWd6eXAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA3o6lzs+1mdpCo3rxSa259vVPP354++V4feXU/OLyyeHjz4q+R0UdKuqlNHI55STTmc7nmXnzyKlSf3714ejVjfzfdybPD63vq7XuXjj6emL1+v3D3a5SJjtlYDsm3mppKN387Ok9z47dmFpsHjt4Z+/NI417j+svBnvvpyv5tDtuksr2fwYAAAAAAAAAAAAAAAAAAAD/c+MTJ/ZPvl8/k5RybkeSX77s3rJvV0Z+SPfmfc+Boj6rJLuT3NrR+y+A1tPTr4bPP5j/ubgUP5dK5pLs+n7lbPLORs6VrbHlzZ35N/0RAAD//y5Ai0g=")

3.376951889s ago: executing program 1 (id=5531):
unshare(0x5e010600)
syz_open_dev$sg(&(0x7f00000060c0), 0x3, 0x8002)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[], 0x48)
socket$inet6_sctp(0xa, 0x1, 0x84)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000800), &(0x7f0000000840)=r1}, 0x17)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x18, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='page_pool_release\x00', r2}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r4, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000280)="b9ff03076804268c989e14f088a8", 0x0, 0x2, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

3.244389641s ago: executing program 1 (id=5538):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000080), 0x67, 0x53c, &(0x7f0000000f40)="$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")
fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r1, &(0x7f0000000400)={0x18, 0x0, {0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, 'lo\x00'}}, 0x1e)
ioctl$PPPIOCGCHAN(r1, 0x80047437, &(0x7f0000001f00))
sendmmsg(r1, &(0x7f0000000a00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x240080cb)

3.104085624s ago: executing program 2 (id=5540):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000500)=ANY=[@ANYBLOB="18010000120000000000000000000000850000006d000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket(0x15, 0x5, 0x0)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
getsockopt(r1, 0x200000000114, 0x2714, &(0x7f0000c35fff)=""/1, &(0x7f0000000000)=0x2a)
signalfd(0xffffffffffffffff, &(0x7f00007aeff8)={[0xfffffffffffffffc]}, 0x8)
syz_open_procfs$pagemap(0xffffffffffffffff, &(0x7f0000000080))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='kfree\x00', r0}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000001c0), 0x1, 0x553, &(0x7f0000001080)="$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")
r2 = open(&(0x7f0000000200)='./file1\x00', 0x4827e, 0xdc)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r2, 0x1000)
fallocate(r2, 0x0, 0x0, 0x8800000)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000540)='./file1\x00', 0x105042, 0x1db)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006280)={0x0, 0x0, 0x0}, 0x0)
writev(r3, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x64000}], 0x1)

1.891255756s ago: executing program 0 (id=5556):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x10}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000200)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r4, &(0x7f0000000500)="a4", 0x34000, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x2000000, @loopback, 0xffffffff}, 0x1c)

1.66215982s ago: executing program 1 (id=5557):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xe, 0xb, &(0x7f00000000c0)=ANY=[@ANYRES8], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x94)
r1 = syz_mount_image$ext4(&(0x7f00000007c0)='ext4\x00', &(0x7f00000006c0)='./file1\x00', 0x40, &(0x7f00000008c0)={[{@user_xattr}, {@mb_optimize_scan}]}, 0x1, 0x576, &(0x7f0000000140)="$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")
r2 = open(&(0x7f0000000140)='./file1\x00', 0x64042, 0x169)
open_by_handle_at(r0, &(0x7f0000000100)=@orangefs={0x14, 0x1, {"50766aabe8760b900fb14a58dd7dbf26", 0x8000}}, 0x80)
remap_file_pages(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x1000004, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000080)={r3, 0xffffffffffffffff, 0x2d, 0x0, @val=@netfilter={0x2, 0x0, 0x6, 0x1}}, 0x20)
bpf$LINK_DETACH(0x22, &(0x7f00000001c0)=r4, 0x4)
setsockopt$MRT_ADD_VIF(r2, 0x0, 0xca, &(0x7f0000000000)={0xffffffffffffffff, 0x1, 0x3, 0x40, @vifc_lcl_addr=@broadcast, @empty}, 0x10)
pwritev(r1, &(0x7f0000000080)=[{&(0x7f0000000040)='\x00'/13, 0xd}], 0x1, 0x200, 0x365)

1.474405373s ago: executing program 2 (id=5563):
r0 = socket$caif_stream(0x25, 0x1, 0x2)
setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000280)={0x0, 0x88d4}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xb, &(0x7f0000000480)=ANY=[@ANYBLOB="180000000800000000000000030000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffdfb702000008000000b703000000000000850000000600000095000000000000001593440162eccb3f4f33902bc66c0de5b8442af5546c1cbfea24ceb7af5ba61ffbcf7f03a8c7a10e2ab4f3fcb34041628fc84d3f97ba8082adfd37a15830cfb690cf83f50c26cf5297aaca7ea3c22c2ecbb940dae93152d20d864e5ff9e4e87eaf23d57e03d103cba27b0aca62c8bf7c7073bec59db35a094889cf95fa54a1c76df398b73e69bfd020b56e41f6fac3ee323297cb41a6f05bddb59fc444e7"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000080))
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
r1 = socket$igmp6(0xa, 0x3, 0x3a)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000012c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
setsockopt$MRT6_ADD_MFC(r1, 0x29, 0x22, &(0x7f0000000000)={{0xa, 0x0, 0x101, @loopback, 0xa3c}, {0xa, 0xfffe, 0xffdffffd, @dev, 0x4}, 0x1000, {[0x9, 0x0, 0xfffffffe, 0xfffffef9, 0x0, 0x1, 0x2]}}, 0x5c)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{}, &(0x7f0000000200), &(0x7f0000000240)}, 0x20)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x3014850, &(0x7f00000006c0)={[{@noquota}, {@noquota}, {@grpjquota}, {@noauto_da_alloc}, {@dioread_lock}]}, 0x2, 0x4f3, &(0x7f0000000700)="$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")
chmod(&(0x7f0000000340)='./file1\x00', 0x0)
lstat(&(0x7f0000000680)='./file1\x00', &(0x7f0000000c00))

1.468189663s ago: executing program 4 (id=5564):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000002001000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b7000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x3800480, &(0x7f0000002200), 0x45, 0x786, &(0x7f00000007c0)="$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")
creat(&(0x7f0000000100)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x0, 0x0, 0x0, 0x5, 0xa8, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x94)
r2 = open(&(0x7f0000000540)='./bus\x00', 0x4000, 0x100)
preadv2(r2, &(0x7f00000000c0)=[{&(0x7f0000001200)=""/4096, 0x1000}], 0x2, 0x0, 0x0, 0x0)

1.428274774s ago: executing program 2 (id=5565):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r1, 0x0, 0xf7}, 0x18)
eventfd(0x2) (fail_nth: 8)

1.422059524s ago: executing program 4 (id=5566):
r0 = socket$caif_stream(0x25, 0x1, 0x2)
setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000280)={0x0, 0x88d4}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xb, &(0x7f0000000480)=ANY=[@ANYBLOB="180000000800000000000000030000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffdfb702000008000000b703000000000000850000000600000095000000000000001593440162eccb3f4f33902bc66c0de5b8442af5546c1cbfea24ceb7af5ba61ffbcf7f03a8c7a10e2ab4f3fcb34041628fc84d3f97ba8082adfd37a15830cfb690cf83f50c26cf5297aaca7ea3c22c2ecbb940dae93152d20d864e5ff9e4e87eaf23d57e03d103cba27b0aca62c8bf7c7073bec59db35a094889cf95fa54a1c76df398b73e69bfd020b56e41f6fac3ee323297cb41a6f05bddb59fc444e7"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000080))
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
r1 = socket$igmp6(0xa, 0x3, 0x3a)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000012c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
setsockopt$MRT6_ADD_MFC(r1, 0x29, 0x22, &(0x7f0000000000)={{0xa, 0x0, 0x101, @loopback, 0xa3c}, {0xa, 0xfffe, 0xffdffffd, @dev, 0x4}, 0x1000, {[0x9, 0x0, 0xfffffffe, 0xfffffef9, 0x0, 0x1, 0x2]}}, 0x5c)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05"], 0x48)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x3014850, &(0x7f00000006c0)={[{@noquota}, {@noquota}, {@grpjquota}, {@noauto_da_alloc}, {@dioread_lock}]}, 0x2, 0x4f3, &(0x7f0000000700)="$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")
chmod(&(0x7f0000000340)='./file1\x00', 0x0)
lstat(&(0x7f0000000680)='./file1\x00', &(0x7f0000000c00))

1.280116057s ago: executing program 2 (id=5567):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2c, &(0x7f0000000000)={0x1, {{0xa, 0x0, 0x3, @mcast2, 0x16e}}, {{0xa, 0x4e21, 0x9, @private0, 0xfffffffd}}}, 0x108)
r1 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[@ANYBLOB='V?\x00\x00-\x00Y'], 0xfe33)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000380)={{r0}, &(0x7f0000000000), &(0x7f0000000040)='%pI4   \x00'}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='timer_start\x00', r2}, 0x10)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000940))
r3 = socket$netlink(0x10, 0x3, 0x10)
r4 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r4, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r4, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r5, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000001000)='./file1\x00', 0x408e, &(0x7f0000000240), 0xff, 0x43a, &(0x7f0000000340)="$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")
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
r8 = dup(r7)
sendmsg$IPSET_CMD_CREATE(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="640000000206030000000000fffff0000000000016000300686173683a6e65742c706f72742c6e6574000000050004000000000005000500020000000900020073797a3200000000050001000700000014000780080013400000000008001240"], 0x64}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
r9 = syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000240)={'team0\x00', <r10=>0x0})
sendmsg$ETHTOOL_MSG_DEBUG_SET(r8, &(0x7f0000000e80)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x168, 0x0, 0x4, 0x70bd28, 0x25dfdbfc, {}, [@ETHTOOL_A_DEBUG_HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_macvtap\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dvmrp1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}]}, @ETHTOOL_A_DEBUG_HEADER={0x7c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1\x00'}]}, @ETHTOOL_A_DEBUG_MSGMASK={0xc, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x7f}]}, @ETHTOOL_A_DEBUG_HEADER={0x64, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_hsr\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @ETHTOOL_A_DEBUG_MSGMASK={0x14, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_SIZE={0x8}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}]}, 0x168}, 0x1, 0x0, 0x0, 0x40800}, 0x4048800)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f00000001c0)={0x0, 0x300, &(0x7f0000000500)={&(0x7f0000000840)={0x58, r9, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [{{0x8, 0x1, r10}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xfffbfff9}}}]}}]}, 0x58}, 0x1, 0x1000000, 0x0, 0x24004000}, 0x24040840)

1.279617897s ago: executing program 1 (id=5568):
mkdir(&(0x7f0000000580)='./file0\x00', 0x92)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000280)='gadgetfs\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$inet6(0x10, 0x3, 0x0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f0000000000)=0x2)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb904}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
ioctl$PPPIOCSPASS(r1, 0x40107447, &(0x7f0000000100)={0x1, &(0x7f0000000080)=[{0x6, 0xfc, 0xfb, 0x6cf}]})
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r3}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r4}, 0x10)
sendto$inet6(r0, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0)
r5 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mreq(r5, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r6, 0x29, 0x8, &(0x7f0000000180)=0xffff7b6e, 0x4)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xc, '\x00', 0x0, @fallback=0x3c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r7}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
sendmsg$unix(r9, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000640)='Q;', 0x2}], 0x1, &(0x7f0000001040)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r9, @ANYRES32=r8, @ANYRES32=r8, @ANYRES32=r9, @ANYRES32=r8, @ANYRES32=r9, @ANYRES32=r8, @ANYRES32=r9, @ANYBLOB="1c000000000000000100000402000000", @ANYRES32, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r8, @ANYBLOB="0000000018"], 0xa0}, 0x4004881)
recvmsg$unix(r8, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x2000)

989.879882ms ago: executing program 0 (id=5569):
socket$unix(0x1, 0x5, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_io_uring_setup(0x10b, &(0x7f0000000140)={0x0, 0x8b7c, 0x800, 0x200007, 0x22}, &(0x7f0000000940)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000440)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0xb, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x4, 0x100001, 0x23456})
io_uring_enter(r1, 0x47f9, 0x4db, 0x0, 0x0, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000080), 0xbd0d, 0x200000)
splice(r4, &(0x7f0000000180)=0xc9d7, r0, 0x0, 0x1, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000080000000c"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = socket$igmp(0x2, 0x3, 0x2)
sendmsg$inet(r6, &(0x7f0000001ec0)={&(0x7f0000000c00)={0x2, 0x4e22, @broadcast}, 0x10, 0x0, 0x0, &(0x7f0000001dc0)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0xf}, @loopback}}}, @ip_retopts={{0x10}}], 0x30}, 0x4)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r7 = socket(0x10, 0x3, 0x0)
write(r7, &(0x7f0000000100)="240000005a001f001007f41108000400020100020800038005000000ffc8bbb86ec81f7d", 0x24)
r8 = epoll_create1(0x0)
r9 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x101202, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r8, 0x1, r9, &(0x7f0000000040)={0x10000004})
write$P9_RAUTH(r9, &(0x7f0000000180)={0x14, 0x67, 0x1, {0x80, 0x4, 0x8}}, 0x14)
write$cgroup_devices(r9, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x9)

989.196962ms ago: executing program 3 (id=5570):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000080000000c"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = socket(0x10, 0x3, 0x0)
write(r1, &(0x7f0000000100)="240000005a001f001007f41108000400020100020800038005000000ffc8bbb86ec81f7d", 0x24) (fail_nth: 6)

871.737734ms ago: executing program 0 (id=5571):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48284b70043dc6124d877142a48448b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d4023f210fa34b63a715a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f01000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb796ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab04000000ffe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890decace0200f404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef29cd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf0100483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6c354463d7d0917fc80e5009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab4000000000000000028df75cf43f8ecc8d37b126602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89fa516dab183ee65744fb8fc4f9ce2242e0f00000000010000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f49198e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18a6e452a31bde54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85eff010000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1099e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677ec97c5c568a89d6e36b165c391339878b699644c96bd6ea589765ed2a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac4741201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cde"], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x18)
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x8}, 0x94)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0)
r1 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r1, &(0x7f0000000040), 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000007940)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x33f}, 0x1, 0x0, 0x0, 0xc0d0}, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r5, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, r4, {0x2, 0x0, @multicast1}, 0xa, 0x0, 0xfffd}}, 0x26)
sendmmsg$inet(r5, &(0x7f0000005f80)=[{{0x0, 0x0, &(0x7f0000005dc0)=[{&(0x7f00000010c0)="7d5107673289eeae3f806c5c62db497a0299399ab6101c3b", 0x1}], 0x1}}], 0x4000000000001ce, 0x8040)
unshare(0x2040400)
r6 = fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
listen(r1, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
sendmsg$nl_route_sched(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)=@newqdisc={0x24, 0x10, 0x400, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x9}, {0xf}, {0xe, 0xd}}}, 0x24}, 0x1, 0x0, 0x0, 0x8c0}, 0x0)

870.673394ms ago: executing program 4 (id=5572):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000c500000001f0ffff95"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)={0x30, 0x3, 0x8, 0x201, 0x0, 0x0, {0x2, 0x0, 0x7}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x8e}, @CTA_TIMEOUT_DATA={0xc, 0x4, 0x0, 0x1, @fccp=[@CTA_TIMEOUT_DCCP_OPEN={0x8, 0x4, 0x1, 0x0, 0x2}]}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x6}]}, 0x30}}, 0x400)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x44004)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='block_bio_remap\x00'}, 0x10)
r3 = socket$inet(0x2, 0x2, 0x1)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xfffffffffffffe54, 0x0, 0x1, 0x0, 0x0, 0x14}, 0x4010)
sendmsg$inet(r3, &(0x7f0000000600)={&(0x7f0000000040)={0x2, 0xffff, @remote}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000400)='\b\x00', 0x2}, {&(0x7f00000004c0)="1ed8b7f9d457", 0x14}], 0x2, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000029000000000000000007000000890b040a0101027f00000100000000001c000000000000000000000008"], 0x40}, 0x20000000)

812.408275ms ago: executing program 3 (id=5573):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x1000c16, &(0x7f0000000500), 0xff, 0x260, &(0x7f0000000980)="$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")
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000002100)='./file1\x00', 0x446, &(0x7f00000001c0)={[{@stripe={'stripe', 0x3d, 0x2}}, {@journal_dev={'journal_dev', 0x3d, 0x1045}}, {@oldalloc}, {@noquota}, {@data_err_ignore}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@delalloc}, {@errors_continue}, {@orlov}, {@user_xattr}, {@quota}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x5, 0x553, &(0x7f0000001080)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
pwrite64(r0, &(0x7f0000000000)='2', 0x1, 0x4fed0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000940)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000040), 0xfea7) (fail_nth: 12)

808.589715ms ago: executing program 4 (id=5574):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x50032, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x0, 0x400}, 0x100002, 0x0, 0x1, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000f1ffffff0000000000100000850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='oom_adj\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000880)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r0])
r1 = syz_io_uring_setup(0x2e37, &(0x7f0000000240)={0x0, 0x69e1, 0x10000, 0x0, 0x295, 0x0, r0}, &(0x7f00000003c0)=<r2=>0x0, &(0x7f0000000080)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r0, 0x0, &(0x7f0000000000)=[{0x0}, {0x0}], 0x2})
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
io_uring_enter(r1, 0x564, 0xa1ff, 0x42, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0xff, 0x7ffc1ffd}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00'}, 0x10)
request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x3}, &(0x7f0000001fee)='R\x10rust\xe3c*s\xa8rVed:\xc4e', 0x0)
ustat(0xd, &(0x7f0000000680))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000008c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x10280, 0x17, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x1, @perf_bp={0x0, 0x5}, 0x1018b0, 0x10002, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x2, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xc)
r5 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_opts(r5, 0x0, 0x4, &(0x7f0000000180)="441f08d600270bcf724ef54e91e6ffbe002a5f89000000000000000000", 0x1d)
syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000001580)=ANY=[@ANYRES8=0x0, @ANYRESOCT, @ANYRESOCT, @ANYRES64=0x0, @ANYBLOB="b7ad7cd65c46a5be7840094fc88ed300444000f8ac89758d3a070000000000000096a99f88ba68f3377383de4de11c07aa5d22d9f4f3c58344d6011b6ea5ee82cf40e4ca5976370cb73c872e576f936791a0ffa5639ac237214be5926acea5405e00f1a144cf7a5240bc1e56ed617e19d6a5a268505f0012b4baf36d3a71eb34c8b67281dbba4b20c3d724ef150deff6f7d908bc72575a1f43b608e0d118", @ANYBLOB="a1fffd2e4c38a7b17fef1a78ad1943012e7b7711a1517cd8b4288a2fbb7d202d8c4a1809add074e6dde0703158125f2f114c49f5ee5f249d63ac0d851c212ccd8d82b7c694ead23c417021e8bc78d646d07e3513568bb81d2179a012dcdcb845b0a58b6d5e46a177de56e3e77ed573967e4eea299078019693ca486edbaa44e947802c7f46f1de18cf7f0e1af02964d04cc84d979855e8d3a3fda262f6a7d2b4b4849fd880c9b9af9be818ba05386754a3505e833ca0b9770f63e91f3a9a04e9fca51d88273d5491ed", @ANYRESOCT, @ANYRESHEX], 0x3, 0x7dc, &(0x7f0000000d80)="$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")
stat(&(0x7f0000001c40)='./file0\x00', &(0x7f00000005c0))
pipe2$9p(&(0x7f0000000000), 0x84880)
r6 = gettid()
process_vm_writev(r6, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0x7ffff000}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000080000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000050000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYRESDEC=r1, @ANYRES32=0x0, @ANYRES32=r4, @ANYRESHEX, @ANYRESHEX, @ANYRESOCT], 0x48)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r7, 0xc08c5332, &(0x7f0000000380)={0xff, 0x7, 0x0, 'queue1\x00', 0x5})
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x4, 0x0, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xff3a)
ioctl$SNDRV_TIMER_IOCTL_CREATE(0xffffffffffffffff, 0xc02054a5, &(0x7f0000000180)={0x80000000, r8, 'id0\x00'})

808.347635ms ago: executing program 0 (id=5575):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1, 0x0, 0xff}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000000380)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xece7, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x1007, 0x9, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0xfc}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
mmap$perf(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x11, r2, 0x0)
perf_event_open(&(0x7f0000000040)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0xc7d7}, 0x0, 0x0, r2, 0xa) (fail_nth: 1)

708.638247ms ago: executing program 2 (id=5576):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1, 0x0, 0xff}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000000380)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xece7, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x1007, 0x9, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0xfc}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
mmap$perf(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x11, r2, 0x0)
perf_event_open(&(0x7f0000000040)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0xc7d7}, 0x0, 0x0, r2, 0xa)

707.847457ms ago: executing program 0 (id=5577):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x3}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x7}}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x9, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x9}]}], {0x14}}, 0x64}}, 0x0)

631.181478ms ago: executing program 3 (id=5578):
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB], 0x48) (async)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000000c0)='sched_switch\x00', r0}, 0x10) (async)
perf_event_open(0x0, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="05000000040000000800000008"], 0x50) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtaction={0x70, 0x30, 0x0, 0x870bd2d, 0x0, {0x9}, [{0x5c, 0x1, [@m_sample={0x58, 0x0, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_RATE={0x8, 0x3, 0x5}, @TCA_SAMPLE_RATE={0x8}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x8, 0x4000000, 0x0, 0x1ff}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x5}}}}]}]}, 0x70}}, 0x20048000)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000100)={'batadv_slave_1\x00'})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x800}, 0x0) (async)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYRES32, @ANYRES32, @ANYRES16=r2], 0x50) (async)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='freezer.state\x00', 0x275a, 0x0) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
fcntl$lock(r3, 0x5, &(0x7f0000000040)={0x300, 0x1, 0x42, 0xfffffffffffffffc}) (async)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, &(0x7f0000000780)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000380), r5)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000580)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="01000000040200f2c8dc1b000000180001801400020073797a5f74756e0003000000000000000c000280"], 0x38}, 0x1, 0x0, 0x0, 0x20000844}, 0x0) (async)
sendmsg$ETHTOOL_MSG_RINGS_SET(r4, &(0x7f0000000580)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000540)={0x0}, 0x1, 0x0, 0x0, 0x4000010}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r4}, 0x10)
msync(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2)
r7 = syz_genetlink_get_family_id$smc(0x0, 0xffffffffffffffff)
sendmsg$SMC_PNETID_DEL(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x48, r7, 0x200, 0x70bd2b, 0x25dfdbfd, {}, [@SMC_PNETID_NAME={0x9, 0x1, 'syz2\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x7}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'veth0_to_hsr\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz2\x00'}]}, 0x48}, 0x1, 0x0, 0x0, 0x20048000}, 0x4004005) (async)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0xfffd, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[], 0x0}, 0x94)
setxattr$incfs_metadata(0x0, &(0x7f0000000080), 0x0, 0x0, 0x1) (async)
pivot_root(&(0x7f00000001c0)='.\x00', &(0x7f0000002080)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00')

582.462159ms ago: executing program 2 (id=5579):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x10}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000200)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r4, &(0x7f0000000500)="a4", 0x34000, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x2000000, @loopback, 0xffffffff}, 0x1c)

154.607337ms ago: executing program 0 (id=5580):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000001800000000000000000000001801000020"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0, 0x0, 0x5d6c}, 0x18)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000100)={r1, <r2=>0xffffffffffffffff}, 0x4)
r3 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0xc, 0x0, 0x0)
sendmsg$nl_generic(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000300)={r0, 0x0, 0x25, 0x10, @val=@perf_event}, 0x18)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0)
syz_usbip_server_init(0x3)
syz_usbip_server_init(0x0)
syz_usbip_server_init(0x4)
syz_usbip_server_init(0x3)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000980)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x48)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000640)={'ip_vti0\x00', 0x0})
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000280), r5)
r6 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfd, 0x2, 0x0, 0x0, 0x0, 0x1, 0x8, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5, 0x7fff}, 0x8b0b, 0x0, 0xffffffbe, 0x4, 0x10000, 0x0, 0x45, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f00000001c0)='cpu>20\t&&')

113.431928ms ago: executing program 3 (id=5581):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0xbe, &(0x7f0000000240)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x3, "d00b0fb343ef15dbfba1469f806ac7537a8f2142e02bc60cc28bdec24eb721d9", "a9d2ca1dd752cd2dd5b75092d69f8be02fdec4a7994bae3fad59a730302c5ca11903237753b0351ad3cb8b4266aef93b", "6def8f27e32bce8ef8519b510bcbcc5ce0d3b691f0c62bf885df768a", {"023697d7407a156eb716c3194f85e84f", "7e90850ffcee24c84d324c0fc3413cfb"}}}}}}}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4f, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r2, 0x0, 0x200000000000006}, 0x18)
readv(r0, &(0x7f00000005c0)=[{&(0x7f0000000180)=""/53, 0x35}], 0x1)

103.842228ms ago: executing program 3 (id=5582):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0xbe, &(0x7f0000000240)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x3, "d00b0fb343ef15dbfba1469f806ac7537a8f2142e02bc60cc28bdec24eb721d9", "a9d2ca1dd752cd2dd5b75092d69f8be02fdec4a7994bae3fad59a730302c5ca11903237753b0351ad3cb8b4266aef93b", "6def8f27e32bce8ef8519b510bcbcc5ce0d3b691f0c62bf885df768a", {"023697d7407a156eb716c3194f85e84f", "7e90850ffcee24c84d324c0fc3413cfb"}}}}}}}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
bpf$TOKEN_CREATE(0x24, &(0x7f00000001c0)={0x0, r0}, 0x8)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYBLOB, @ANYRES32=r1], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r2, 0x0, 0x200000000000006}, 0x18)
readv(r0, &(0x7f00000005c0)=[{&(0x7f0000000180)=""/53, 0x35}], 0x1)

52.608169ms ago: executing program 3 (id=5583):
openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000003240)=ANY=[], 0x80}}, 0x80000)
socket$packet(0x11, 0x3, 0x300)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000000)=0x9, 0x4)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0xa004}, 0x4)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'ip6_vti0\x00', <r2=>0x0})
sendto$packet(r1, &(0x7f0000000180)="10030600e0ff020004004788aa96a13bb100001100007fca1a00", 0x10608, 0x0, &(0x7f0000000140)={0x11, 0x0, r2}, 0x14)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000), 0x208e24b)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x15)
remap_file_pages(&(0x7f000051c000/0x400000)=nil, 0x400d00, 0x0, 0x0, 0x0)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000080a05000000000000000000020000000900010073797a3000000000140000001100010000000000000000000000000a5f8d92d860034bc902ae7c7edd60090092a3d87c4e7e837739750e3918a2ae81526c8344bebf49f5647d00545728340d8a084aa5618c8d6f78865bd3fa8a17b70e9991911c58ab5e60f43371497aab78e4b66189d1373426acf689d085dd8d4b9f141f61723c8a7d8cdc97c41da4faab66ff8e5b5cf4903b66b02ec55b53aa037cf94bddeb8ca0"], 0x48}}, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$netlink(0x10, 0x3, 0x12)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
dup(r8)
getsockname$packet(r3, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000140)=0x14)

424.669µs ago: executing program 4 (id=5584):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
lgetxattr(0x0, &(0x7f0000000280)=ANY=[], 0x0, 0x0)
getsockopt$bt_BT_RCVMTU(r0, 0x112, 0xd, 0x0, &(0x7f0000000700))

0s ago: executing program 4 (id=5585):
r0 = socket$inet6(0x10, 0x3, 0x0) (async)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040)={<r4=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r3, &(0x7f0000000180)={0x3, 0x40, 0xfa02, {{0x6000000, 0x4000, 0xffffffff, @empty}, {0xa, 0x0, 0x2, @mcast1, 0x86}, r4}}, 0x48) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r2}, 0x10) (async)
sendto$inet6(r0, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

e=1326 audit(1757352940.188:16519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24072 comm="syz.2.5088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f1407f0ebe9 code=0x7ffc0000
[  371.673526][   T29] audit: type=1326 audit(1757352940.188:16520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24072 comm="syz.2.5088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1407f0ebe9 code=0x7ffc0000
[  371.697171][   T29] audit: type=1326 audit(1757352940.188:16521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24072 comm="syz.2.5088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1407f0ebe9 code=0x7ffc0000
[  371.721315][   T29] audit: type=1326 audit(1757352940.198:16522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24072 comm="syz.2.5088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f1407f0ebe9 code=0x7ffc0000
[  371.744790][   T29] audit: type=1326 audit(1757352940.198:16523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24072 comm="syz.2.5088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1407f0ebe9 code=0x7ffc0000
[  371.768482][   T29] audit: type=1326 audit(1757352940.198:16524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24072 comm="syz.2.5088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1407f0ebe9 code=0x7ffc0000
[  371.792147][   T29] audit: type=1326 audit(1757352940.198:16525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24072 comm="syz.2.5088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f1407f0ebe9 code=0x7ffc0000
[  371.875145][T24090] loop3: detected capacity change from 0 to 8192
[  371.902464][T24095] FAULT_INJECTION: forcing a failure.
[  371.902464][T24095] name failslab, interval 1, probability 0, space 0, times 0
[  371.915160][T24095] CPU: 1 UID: 0 PID: 24095 Comm: syz.2.5097 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  371.915262][T24095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  371.915274][T24095] Call Trace:
[  371.915281][T24095]  <TASK>
[  371.915289][T24095]  __dump_stack+0x1d/0x30
[  371.915342][T24095]  dump_stack_lvl+0xe8/0x140
[  371.915363][T24095]  dump_stack+0x15/0x1b
[  371.915382][T24095]  should_fail_ex+0x265/0x280
[  371.915406][T24095]  should_failslab+0x8c/0xb0
[  371.915431][T24095]  kmem_cache_alloc_noprof+0x50/0x310
[  371.915526][T24095]  ? __anon_vma_prepare+0xcd/0x2f0
[  371.915545][T24095]  __anon_vma_prepare+0xcd/0x2f0
[  371.915563][T24095]  do_wp_page+0x1926/0x24e0
[  371.915646][T24095]  ? kcsan_check_scoped_accesses+0x242/0x270
[  371.915711][T24095]  ? __rcu_read_lock+0x37/0x50
[  371.915735][T24095]  handle_mm_fault+0x77d/0x2c20
[  371.915771][T24095]  do_user_addr_fault+0x636/0x1090
[  371.915841][T24095]  ? __flush_smp_call_function_queue+0x64d/0x8e0
[  371.915860][T24095]  ? __pfx_rcu_exp_handler+0x10/0x10
[  371.915959][T24095]  ? fpregs_assert_state_consistent+0xb4/0xe0
[  371.915995][T24095]  exc_page_fault+0x62/0xa0
[  371.916070][T24095]  asm_exc_page_fault+0x26/0x30
[  371.916089][T24095] RIP: 0033:0x7f1407dd0ba3
[  371.916106][T24095] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  371.916124][T24095] RSP: 002b:00007f140696e4a0 EFLAGS: 00010202
[  371.916141][T24095] RAX: 0000000000000400 RBX: 00007f140696e540 RCX: 00007f13fe54f000
[  371.916195][T24095] RDX: 00007f140696e6e0 RSI: 0000000000000001 RDI: 00007f140696e5e0
[  371.916237][T24095] RBP: 00000000000000f9 R08: 0000000000000008 R09: 00000000000000a6
[  371.916301][T24095] R10: 00000000000000be R11: 00007f140696e540 R12: 0000000000000001
[  371.916315][T24095] R13: 00007f1407fada20 R14: 0000000000000020 R15: 00007f140696e5e0
[  371.916334][T24095]  </TASK>
[  371.916348][T24095] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  372.131919][T24090]  loop3: p1 p2 < > p3 p4 < p5 >
[  372.136902][T24090] loop3: partition table partially beyond EOD, truncated
[  372.147167][T24090] loop3: p1 size 100663296 extends beyond EOD, truncated
[  372.156386][T24090] loop3: p2 start 591104 is beyond EOD, truncated
[  372.162958][T24090] loop3: p3 start 33572980 is beyond EOD, truncated
[  372.174107][T24090] loop3: p5 size 100663296 extends beyond EOD, truncated
[  372.348629][T24145] loop4: detected capacity change from 0 to 512
[  372.383701][T24145] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  372.413690][T24145] vhci_hcd: invalid port number 0
[  372.422711][T24159] FAULT_INJECTION: forcing a failure.
[  372.422711][T24159] name failslab, interval 1, probability 0, space 0, times 0
[  372.435389][T24159] CPU: 1 UID: 0 PID: 24159 Comm: syz.0.5112 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  372.435486][T24159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  372.435497][T24159] Call Trace:
[  372.435504][T24159]  <TASK>
[  372.435512][T24159]  __dump_stack+0x1d/0x30
[  372.435533][T24159]  dump_stack_lvl+0xe8/0x140
[  372.435555][T24159]  dump_stack+0x15/0x1b
[  372.435629][T24159]  should_fail_ex+0x265/0x280
[  372.435654][T24159]  should_failslab+0x8c/0xb0
[  372.435753][T24159]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  372.435840][T24159]  ? p9_client_create+0x207/0xbc0
[  372.435872][T24159]  kstrdup+0x3e/0xd0
[  372.435896][T24159]  p9_client_create+0x207/0xbc0
[  372.435930][T24159]  v9fs_session_init+0xf7/0xde0
[  372.435957][T24159]  ? avc_has_perm_noaudit+0x1b1/0x200
[  372.436047][T24159]  ? v9fs_mount+0x51/0x5c0
[  372.436070][T24159]  ? __kmalloc_cache_noprof+0x299/0x320
[  372.436176][T24159]  v9fs_mount+0x67/0x5c0
[  372.436200][T24159]  ? selinux_capable+0x31/0x40
[  372.436226][T24159]  ? __pfx_v9fs_mount+0x10/0x10
[  372.436280][T24159]  legacy_get_tree+0x78/0xd0
[  372.436303][T24159]  vfs_get_tree+0x57/0x1d0
[  372.436401][T24159]  do_new_mount+0x207/0x5e0
[  372.436421][T24159]  ? security_capable+0x83/0x90
[  372.436506][T24159]  path_mount+0x4a4/0xb20
[  372.436530][T24159]  ? user_path_at+0x109/0x130
[  372.436567][T24159]  __se_sys_mount+0x28f/0x2e0
[  372.436590][T24159]  ? fput+0x8f/0xc0
[  372.436672][T24159]  __x64_sys_mount+0x67/0x80
[  372.436761][T24159]  x64_sys_call+0x2b4d/0x2ff0
[  372.436781][T24159]  do_syscall_64+0xd2/0x200
[  372.436909][T24159]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  372.436937][T24159]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  372.436962][T24159]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  372.436985][T24159] RIP: 0033:0x7ff1c8d9ebe9
[  372.437034][T24159] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  372.437051][T24159] RSP: 002b:00007ff1c7807038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  372.437074][T24159] RAX: ffffffffffffffda RBX: 00007ff1c8fd5fa0 RCX: 00007ff1c8d9ebe9
[  372.437090][T24159] RDX: 00002000000002c0 RSI: 0000200000000080 RDI: 0000000000000000
[  372.437105][T24159] RBP: 00007ff1c7807090 R08: 0000200000000240 R09: 0000000000000000
[  372.437119][T24159] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  372.437132][T24159] R13: 00007ff1c8fd6038 R14: 00007ff1c8fd5fa0 R15: 00007fffc8ce9ab8
[  372.437148][T24159]  </TASK>
[  372.686435][T14618] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  372.727292][T24169] loop4: detected capacity change from 0 to 2048
[  372.736022][T24169] EXT4-fs: Ignoring removed orlov option
[  372.753478][T24169] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  372.770005][T24177] tipc: New replicast peer: 255.255.255.255
[  372.776316][T24177] tipc: Enabled bearer <udp:s>, priority 10
[  372.832268][T24178] lo speed is unknown, defaulting to 1000
[  372.838826][T24178] lo speed is unknown, defaulting to 1000
[  372.912402][T24209] ipvlan2: entered promiscuous mode
[  372.984009][T14618] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  372.996475][T24226] __nla_validate_parse: 8 callbacks suppressed
[  372.996508][T24226] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5124'.
[  373.044940][T24209] random: crng reseeded on system resumption
[  373.608276][T24271] loop3: detected capacity change from 0 to 1024
[  373.633989][T24271] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  373.675228][T24271] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4183: comm syz.3.5130: Allocating blocks 385-513 which overlap fs metadata
[  373.716902][T24271] EXT4-fs (loop3): pa ffff88810728ed20: logic 16, phys. 129, len 24
[  373.725073][T24271] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[  373.760563][T24271] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 28 with max blocks 4 with error 28
[  373.772975][T24271] EXT4-fs (loop3): This should not happen!! Data will be lost
[  373.772975][T24271] 
[  373.782707][T24271] EXT4-fs (loop3): Total free blocks count 0
[  373.788777][T24271] EXT4-fs (loop3): Free/Dirty block details
[  373.794729][T24271] EXT4-fs (loop3): free_blocks=128
[  373.800150][T24271] EXT4-fs (loop3): dirty_blocks=0
[  373.805251][T24271] EXT4-fs (loop3): Block reservation details
[  373.811359][T24271] EXT4-fs (loop3): i_reserved_data_blocks=0
[  373.900969][ T3399] tipc: Node number set to 3730841977
[  373.981686][T24280] loop3: detected capacity change from 0 to 1024
[  374.003583][T24280] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  374.026215][T24280] EXT4-fs error (device loop3): mb_free_blocks:2017: group 0, inode 18: block 177:freeing already freed block (bit 11); block bitmap corrupt.
[  374.083351][T24287] loop4: detected capacity change from 0 to 128
[  374.114432][T24287] FAT-fs (loop4): Directory bread(block 162) failed
[  374.132003][T24287] FAT-fs (loop4): Directory bread(block 163) failed
[  374.138652][T24287] FAT-fs (loop4): Directory bread(block 164) failed
[  374.152207][T24287] FAT-fs (loop4): Directory bread(block 165) failed
[  374.158973][T24287] FAT-fs (loop4): Directory bread(block 166) failed
[  374.166544][T24293] ipvlan0: entered promiscuous mode
[  374.170721][T24287] FAT-fs (loop4): Directory bread(block 167) failed
[  374.170745][T24287] FAT-fs (loop4): Directory bread(block 168) failed
[  374.170762][T24287] FAT-fs (loop4): Directory bread(block 169) failed
[  374.218272][T24303] random: crng reseeded on system resumption
[  374.325085][T24310] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5140'.
[  374.342874][T12272] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  374.380824][T24322] loop4: detected capacity change from 0 to 2048
[  374.405233][T24313] lo speed is unknown, defaulting to 1000
[  374.405479][T24320] serio: Serial port ptm0
[  374.421308][T24313] lo speed is unknown, defaulting to 1000
[  374.433734][T24322] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  374.456114][T24311] lo speed is unknown, defaulting to 1000
[  374.478702][T24311] lo speed is unknown, defaulting to 1000
[  374.570384][T14618] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  374.627669][T14618] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  374.658497][T24360] loop3: detected capacity change from 0 to 2048
[  374.684516][T14618] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  374.720186][T24360] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  374.779804][T12272] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  374.798624][T24390] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5150'.
[  374.817973][T12272] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  374.819171][T24388] loop4: detected capacity change from 0 to 512
[  374.838900][T24388] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  374.853760][T24388] EXT4-fs (loop4): 1 truncate cleaned up
[  374.872313][T12272] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  374.882262][T24388] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  374.928609][T24388] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5146'.
[  374.995219][T14618] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  375.040435][T24422] FAULT_INJECTION: forcing a failure.
[  375.040435][T24422] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  375.053805][T24422] CPU: 0 UID: 0 PID: 24422 Comm: syz.4.5155 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  375.053836][T24422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  375.053927][T24422] Call Trace:
[  375.053935][T24422]  <TASK>
[  375.053986][T24422]  __dump_stack+0x1d/0x30
[  375.054010][T24422]  dump_stack_lvl+0xe8/0x140
[  375.054040][T24422]  dump_stack+0x15/0x1b
[  375.054058][T24422]  should_fail_ex+0x265/0x280
[  375.054084][T24422]  should_fail_alloc_page+0xf2/0x100
[  375.054113][T24422]  __alloc_frozen_pages_noprof+0xff/0x360
[  375.054233][T24422]  alloc_pages_mpol+0xb3/0x250
[  375.054266][T24422]  vma_alloc_folio_noprof+0x1aa/0x300
[  375.054301][T24422]  handle_mm_fault+0xec2/0x2c20
[  375.054336][T24422]  do_user_addr_fault+0x636/0x1090
[  375.054379][T24422]  ? fpregs_assert_state_consistent+0xb4/0xe0
[  375.054441][T24422]  exc_page_fault+0x62/0xa0
[  375.054470][T24422]  asm_exc_page_fault+0x26/0x30
[  375.054491][T24422] RIP: 0033:0x7feb45f90ba3
[  375.054525][T24422] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  375.054544][T24422] RSP: 002b:00007feb44b2e4a0 EFLAGS: 00010206
[  375.054585][T24422] RAX: 0000000000009000 RBX: 00007feb44b2e540 RCX: 00007feb3c70f000
[  375.054599][T24422] RDX: 00007feb44b2e6e0 RSI: 000000000000002b RDI: 00007feb44b2e5e0
[  375.054613][T24422] RBP: 0000000000000036 R08: 0000000000000008 R09: 00000000000000b3
[  375.054626][T24422] R10: 00000000000000c0 R11: 00007feb44b2e540 R12: 0000000000000001
[  375.054640][T24422] R13: 00007feb4616da20 R14: 00000000000000ff R15: 00007feb44b2e5e0
[  375.054659][T24422]  </TASK>
[  375.054670][T24422] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  375.128819][T24433] loop3: detected capacity change from 0 to 256
[  375.170832][T24422] loop4: detected capacity change from 0 to 764
[  375.290030][T24440] loop4: detected capacity change from 0 to 256
[  375.306598][T24440] FAT-fs (loop4): Directory bread(block 64) failed
[  375.313305][T24440] FAT-fs (loop4): Directory bread(block 65) failed
[  375.400326][T24440] FAT-fs (loop4): Directory bread(block 66) failed
[  375.407188][T24440] FAT-fs (loop4): Directory bread(block 67) failed
[  375.415375][T24440] FAT-fs (loop4): Directory bread(block 68) failed
[  375.422545][T24440] FAT-fs (loop4): Directory bread(block 69) failed
[  375.429369][T24440] FAT-fs (loop4): Directory bread(block 70) failed
[  375.437116][T24440] FAT-fs (loop4): Directory bread(block 71) failed
[  375.444246][T24440] FAT-fs (loop4): Directory bread(block 72) failed
[  375.464640][T24440] FAT-fs (loop4): Directory bread(block 73) failed
[  375.526108][T24445] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5163'.
[  375.565672][T24455] loop4: detected capacity change from 0 to 512
[  375.632567][T24455] EXT4-fs (loop4): orphan cleanup on readonly fs
[  375.639654][T24455] EXT4-fs error (device loop4): ext4_orphan_get:1418: comm syz.4.5164: bad orphan inode 13
[  375.651631][T24455] ext4_test_bit(bit=12, block=18) = 1
[  375.657112][T24455] is_bad_inode(inode)=0
[  375.661358][T24455] NEXT_ORPHAN(inode)=2130706432
[  375.666239][T24455] max_ino=32
[  375.669452][T24455] i_nlink=1
[  375.675478][T24455] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  375.757086][T24455] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  375.766526][T24455] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  375.975821][T24479] FAULT_INJECTION: forcing a failure.
[  375.975821][T24479] name failslab, interval 1, probability 0, space 0, times 0
[  375.988547][T24479] CPU: 0 UID: 0 PID: 24479 Comm: syz.1.5171 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  375.988654][T24479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  375.988668][T24479] Call Trace:
[  375.988676][T24479]  <TASK>
[  375.988685][T24479]  __dump_stack+0x1d/0x30
[  375.988708][T24479]  dump_stack_lvl+0xe8/0x140
[  375.988741][T24479]  dump_stack+0x15/0x1b
[  375.988760][T24479]  should_fail_ex+0x265/0x280
[  375.988786][T24479]  should_failslab+0x8c/0xb0
[  375.988813][T24479]  kmem_cache_alloc_noprof+0x50/0x310
[  375.988868][T24479]  ? alloc_empty_file+0x76/0x200
[  375.988902][T24479]  alloc_empty_file+0x76/0x200
[  375.988989][T24479]  alloc_file_pseudo+0xc6/0x160
[  375.989041][T24479]  hugetlb_file_setup+0x2a6/0x3d0
[  375.989067][T24479]  ksys_mmap_pgoff+0x157/0x310
[  375.989087][T24479]  x64_sys_call+0x14a3/0x2ff0
[  375.989160][T24479]  do_syscall_64+0xd2/0x200
[  375.989381][T24479]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  375.989408][T24479]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  375.989440][T24479]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  375.989463][T24479] RIP: 0033:0x7fe1bc9bebe9
[  375.989539][T24479] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  375.989559][T24479] RSP: 002b:00007fe1bb41f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  375.989580][T24479] RAX: ffffffffffffffda RBX: 00007fe1bcbf5fa0 RCX: 00007fe1bc9bebe9
[  375.989593][T24479] RDX: 0000000000000002 RSI: 0000000000ff5000 RDI: 0000200000000000
[  375.989604][T24479] RBP: 00007fe1bb41f090 R08: ffffffffffffffff R09: 0000000000000000
[  375.989617][T24479] R10: 000000000004c831 R11: 0000000000000246 R12: 0000000000000001
[  375.989655][T24479] R13: 00007fe1bcbf6038 R14: 00007fe1bcbf5fa0 R15: 00007fff2ee98c48
[  375.989701][T24479]  </TASK>
[  376.210215][T24485] FAULT_INJECTION: forcing a failure.
[  376.210215][T24485] name failslab, interval 1, probability 0, space 0, times 0
[  376.222980][T24485] CPU: 0 UID: 0 PID: 24485 Comm: syz.1.5174 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  376.223009][T24485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  376.223061][T24485] Call Trace:
[  376.223070][T24485]  <TASK>
[  376.223080][T24485]  __dump_stack+0x1d/0x30
[  376.223125][T24485]  dump_stack_lvl+0xe8/0x140
[  376.223148][T24485]  dump_stack+0x15/0x1b
[  376.223168][T24485]  should_fail_ex+0x265/0x280
[  376.223192][T24485]  should_failslab+0x8c/0xb0
[  376.223213][T24485]  kmem_cache_alloc_lru_noprof+0x55/0x310
[  376.223241][T24485]  ? __d_alloc+0x3d/0x340
[  376.223271][T24485]  __d_alloc+0x3d/0x340
[  376.223298][T24485]  d_alloc+0x2e/0x100
[  376.223390][T24485]  lookup_one_qstr_excl+0x99/0x250
[  376.223419][T24485]  filename_create+0x149/0x230
[  376.223437][T24485]  do_mknodat+0xe7/0x610
[  376.223497][T24485]  __x64_sys_mknod+0x51/0x60
[  376.223519][T24485]  x64_sys_call+0x2d47/0x2ff0
[  376.223542][T24485]  do_syscall_64+0xd2/0x200
[  376.223637][T24485]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  376.223663][T24485]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  376.223732][T24485]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  376.223753][T24485] RIP: 0033:0x7fe1bc9bebe9
[  376.223769][T24485] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  376.223785][T24485] RSP: 002b:00007fe1bb41f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085
[  376.223846][T24485] RAX: ffffffffffffffda RBX: 00007fe1bcbf5fa0 RCX: 00007fe1bc9bebe9
[  376.223861][T24485] RDX: 0000000000000702 RSI: 0000000000006000 RDI: 0000200000000180
[  376.223874][T24485] RBP: 00007fe1bb41f090 R08: 0000000000000000 R09: 0000000000000000
[  376.223887][T24485] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  376.223900][T24485] R13: 00007fe1bcbf6038 R14: 00007fe1bcbf5fa0 R15: 00007fff2ee98c48
[  376.223920][T24485]  </TASK>
[  376.448440][T24487] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5175'.
[  376.473125][T24491] syz_tun: entered allmulticast mode
[  376.499332][T24490] syz_tun: left allmulticast mode
[  376.573588][   T29] kauditd_printk_skb: 657 callbacks suppressed
[  376.573605][   T29] audit: type=1326 audit(376.549:17180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24494 comm="syz.0.5180" exe="/root/syz-executor" sig=9 arch=c000003e syscall=157 compat=0 ip=0x7ff1c8d9ebe9 code=0x0
[  376.630678][T14618] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  376.707708][T24520] loop4: detected capacity change from 0 to 2048
[  376.730551][T24520] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  376.753888][T24527] ipvlan2: entered promiscuous mode
[  376.761340][T24529] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=24529 comm=syz.0.5187
[  376.790572][T14618] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  376.810565][T24535] random: crng reseeded on system resumption
[  376.812206][   T29] audit: type=1400 audit(376.789:17181): avc:  denied  { audit_write } for  pid=24496 comm="syz.2.5181" capability=29  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  376.840119][T14618] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  376.846273][   T29] audit: type=1107 audit(376.819:17182): pid=24496 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[  376.876390][T24539] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=24539 comm=syz.1.5189
[  376.902778][T14618] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  376.932964][T24543] loop3: detected capacity change from 0 to 512
[  376.948029][T24550] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5188'.
[  376.949502][   T29] audit: type=1400 audit(376.919:17183): avc:  denied  { read } for  pid=24551 comm="syz.1.5192" path="socket:[64408]" dev="sockfs" ino=64408 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  376.982174][T24556] FAULT_INJECTION: forcing a failure.
[  376.982174][T24556] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  376.995680][T24556] CPU: 1 UID: 0 PID: 24556 Comm: syz.0.5196 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  376.995784][T24556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  376.995794][T24556] Call Trace:
[  376.995800][T24556]  <TASK>
[  376.995808][T24556]  __dump_stack+0x1d/0x30
[  376.995828][T24556]  dump_stack_lvl+0xe8/0x140
[  376.995897][T24556]  dump_stack+0x15/0x1b
[  376.995912][T24556]  should_fail_ex+0x265/0x280
[  376.995992][T24556]  should_fail_alloc_page+0xf2/0x100
[  376.996020][T24556]  __alloc_frozen_pages_noprof+0xff/0x360
[  376.996052][T24556]  alloc_pages_mpol+0xb3/0x250
[  376.996112][T24556]  alloc_pages_noprof+0x90/0x130
[  376.996140][T24556]  pte_alloc_one+0x2d/0x120
[  376.996162][T24556]  __pte_alloc+0x32/0x2b0
[  376.996212][T24556]  handle_mm_fault+0x1c55/0x2c20
[  376.996245][T24556]  do_user_addr_fault+0x636/0x1090
[  376.996286][T24556]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  376.996393][T24556]  exc_page_fault+0x62/0xa0
[  376.996422][T24556]  asm_exc_page_fault+0x26/0x30
[  376.996444][T24556] RIP: 0033:0x7ff1c8c60c46
[  376.996471][T24556] Code: f0 72 6e 48 63 cd 48 01 c1 49 39 4f 08 72 4c 8d 4d ff 85 ed 74 33 66 0f 1f 44 00 00 48 39 f0 72 1b 4d 8b 07 49 89 c1 49 29 f1 <47> 0f b6 0c 08 45 84 c9 74 08 45 88 0c 00 49 8b 47 10 48 83 c0 01
[  376.996513][T24556] RSP: 002b:00007ff1c78064a0 EFLAGS: 00010246
[  376.996532][T24556] RAX: 0000000000000001 RBX: 00007ff1c7806540 RCX: 0000000000000101
[  376.996547][T24556] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 00007ff1c78065e0
[  376.996562][T24556] RBP: 0000000000000102 R08: 00007ff1bf3e7000 R09: 0000000000000000
[  376.996577][T24556] R10: 0000000000000000 R11: 00007ff1c7806550 R12: 0000000000000001
[  376.996591][T24556] R13: 00007ff1c8e3da20 R14: 0000000000000000 R15: 00007ff1c78065e0
[  376.996638][T24556]  </TASK>
[  376.996649][T24556] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  377.030620][T24543] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  377.182379][   T29] audit: type=1326 audit(377.079:17184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24553 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1407f0ebe9 code=0x7ffc0000
[  377.213679][   T29] audit: type=1326 audit(377.099:17185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24553 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f1407f0ebe9 code=0x7ffc0000
[  377.236595][   T29] audit: type=1326 audit(377.099:17186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24553 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f1407f0ec23 code=0x7ffc0000
[  377.258980][   T29] audit: type=1326 audit(377.099:17187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24553 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f1407f0d69f code=0x7ffc0000
[  377.281351][   T29] audit: type=1326 audit(377.109:17188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24553 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f1407f0ec77 code=0x7ffc0000
[  377.303725][   T29] audit: type=1326 audit(377.109:17189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24553 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1407f0d550 code=0x7ffc0000
[  377.358193][T24543] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  377.369425][T24571] FAULT_INJECTION: forcing a failure.
[  377.369425][T24571] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  377.382621][T24571] CPU: 0 UID: 0 PID: 24571 Comm: syz.2.5201 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  377.382683][T24571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  377.382707][T24571] Call Trace:
[  377.382715][T24571]  <TASK>
[  377.382723][T24571]  __dump_stack+0x1d/0x30
[  377.382747][T24571]  dump_stack_lvl+0xe8/0x140
[  377.382767][T24571]  dump_stack+0x15/0x1b
[  377.382785][T24571]  should_fail_ex+0x265/0x280
[  377.382853][T24571]  should_fail+0xb/0x20
[  377.382873][T24571]  should_fail_usercopy+0x1a/0x20
[  377.382898][T24571]  _copy_from_user+0x1c/0xb0
[  377.382927][T24571]  memdup_user+0x5e/0xd0
[  377.382956][T24571]  strndup_user+0x68/0xb0
[  377.382981][T24571]  perf_uprobe_init+0x48/0x150
[  377.383011][T24571]  perf_uprobe_event_init+0xc4/0x140
[  377.383110][T24571]  perf_try_init_event+0xd6/0x540
[  377.383151][T24571]  ? perf_event_alloc+0xb1c/0x1740
[  377.383182][T24571]  perf_event_alloc+0xb27/0x1740
[  377.383213][T24571]  __se_sys_perf_event_open+0x615/0x11c0
[  377.383245][T24571]  ? __rcu_read_unlock+0x4f/0x70
[  377.383342][T24571]  __x64_sys_perf_event_open+0x67/0x80
[  377.383372][T24571]  x64_sys_call+0x7bd/0x2ff0
[  377.383469][T24571]  do_syscall_64+0xd2/0x200
[  377.383501][T24571]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  377.383602][T24571]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  377.383669][T24571]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  377.383767][T24571] RIP: 0033:0x7f1407f0ebe9
[  377.383785][T24571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  377.383805][T24571] RSP: 002b:00007f140696f038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  377.383895][T24571] RAX: ffffffffffffffda RBX: 00007f1408145fa0 RCX: 00007f1407f0ebe9
[  377.383910][T24571] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000
[  377.383923][T24571] RBP: 00007f140696f090 R08: 0000000000000000 R09: 0000000000000000
[  377.383937][T24571] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[  377.383951][T24571] R13: 00007f1408146038 R14: 00007f1408145fa0 R15: 00007ffe3ff19718
[  377.383969][T24571]  </TASK>
[  377.666497][T24579] ipvlan2: entered promiscuous mode
[  377.712902][T24579] random: crng reseeded on system resumption
[  377.852262][T24613] loop3: detected capacity change from 0 to 2048
[  377.866234][T24613] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  377.900922][T12272] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  377.917018][T12272] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  377.930700][T12272] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  378.078113][T24631] lo speed is unknown, defaulting to 1000
[  378.085068][T24638] tipc: Started in network mode
[  378.089979][T24638] tipc: Node identity 46591f4ca86a, cluster identity 4711
[  378.097209][T24638] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  378.104378][T24631] lo speed is unknown, defaulting to 1000
[  378.124514][T24638] tipc: Disabling bearer <eth:syzkaller0>
[  378.179740][T24663] loop3: detected capacity change from 0 to 512
[  378.212724][T24663] EXT4-fs error (device loop3): ext4_quota_enable:7128: inode #4: comm syz.3.5218: iget: bogus i_mode (4200)
[  378.224591][T24663] EXT4-fs error (device loop3): ext4_quota_enable:7131: comm syz.3.5218: Bad quota inode: 4, type: 1
[  378.236798][T24663] EXT4-fs warning (device loop3): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  378.252921][T24663] EXT4-fs (loop3): mount failed
[  378.324785][T24686] loop3: detected capacity change from 0 to 512
[  378.345947][T24686] EXT4-fs (loop3): orphan cleanup on readonly fs
[  378.353531][T24686] EXT4-fs error (device loop3): ext4_orphan_get:1418: comm syz.3.5223: bad orphan inode 13
[  378.365039][T24686] ext4_test_bit(bit=12, block=18) = 1
[  378.370443][T24686] is_bad_inode(inode)=0
[  378.374708][T24686] NEXT_ORPHAN(inode)=2130706432
[  378.379660][T24686] max_ino=32
[  378.382953][T24686] i_nlink=1
[  378.386861][T24686] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  378.401849][T24686] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  378.410709][T24686] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  378.481330][T24701] batman_adv: batadv0: Interface deactivated: veth1_vlan
[  378.488434][T24701] batman_adv: batadv0: Removing interface: veth1_vlan
[  378.876451][T24717] siw: device registration error -23
[  378.938339][T12272] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  378.948009][T24721] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24721 comm=syz.2.5230
[  379.014487][T24733] ./file0: Can't lookup blockdev
[  379.032016][T24729] lo speed is unknown, defaulting to 1000
[  379.038728][T24729] lo speed is unknown, defaulting to 1000
[  379.050326][T24734] 9pnet_fd: Insufficient options for proto=fd
[  379.139271][T24757] blktrace: Concurrent blktraces are not allowed on loop7
[  379.150870][T24757] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5231'.
[  379.499821][T24785] netlink: 'syz.1.5242': attribute type 10 has an invalid length.
[  379.507941][T24785] netlink: 40 bytes leftover after parsing attributes in process `syz.1.5242'.
[  379.520592][T24785] team0: Port device geneve1 added
[  379.697733][T24796] loop8: detected capacity change from 0 to 16384
[  379.751219][T24796] loop8: detected capacity change from 16384 to 16383
[  379.841060][T24813] netlink: 16178 bytes leftover after parsing attributes in process `syz.2.5254'.
[  379.855739][T24813] netdevsim netdevsim2 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  379.865701][T24813] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  379.915950][T24813] netdevsim netdevsim2 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  379.925906][T24813] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  379.955446][T24821] loop4: detected capacity change from 0 to 512
[  379.964345][T24821] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  379.982965][T24813] netdevsim netdevsim2 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  379.992830][T24813] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  380.005332][T24821] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  380.020244][T24821] ext4 filesystem being mounted at /466/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  380.033359][T24821] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.5255: corrupted xattr block 19: overlapping e_value 
[  380.047577][T24821] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[  380.059704][T24813] netdevsim netdevsim2 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  380.069520][T24813] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  380.080374][T24821] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.5255: corrupted xattr block 19: overlapping e_value 
[  380.095951][T24833] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.5255: corrupted xattr block 19: overlapping e_value 
[  380.097598][T24821] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[  380.121047][T24821] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.5255: corrupted xattr block 19: overlapping e_value 
[  380.141295][T24833] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[  380.173747][T17891] netdevsim netdevsim2 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  380.182068][T17891] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  380.230591][T14618] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  380.238915][T17891] netdevsim netdevsim2 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  380.247918][T17891] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  380.258059][T17891] netdevsim netdevsim2 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  380.266581][T17891] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  380.277026][T17891] netdevsim netdevsim2 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  380.285314][T17891] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  380.698882][T24867] netlink: 'syz.2.5265': attribute type 27 has an invalid length.
[  380.758877][T24868] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5265'.
[  380.879253][T24875] syz_tun: entered allmulticast mode
[  380.901467][  T385] netdevsim netdevsim2 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  380.909908][  T385] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  380.945814][  T385] netdevsim netdevsim2 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  380.954316][  T385] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  380.974738][  T385] netdevsim netdevsim2 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  380.983228][  T385] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  380.999723][  T385] netdevsim netdevsim2 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  381.008332][  T385] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  381.141798][T24896] loop3: detected capacity change from 0 to 128
[  381.190645][T24899] loop4: detected capacity change from 0 to 512
[  381.228072][T24899] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  381.259609][T24899] ext4 filesystem being mounted at /468/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  381.322925][ T7311] bio_check_eod: 6886 callbacks suppressed
[  381.322941][ T7311] kworker/u8:9: attempt to access beyond end of device
[  381.322941][ T7311] loop3: rw=1, sector=145, nr_sectors = 8 limit=128
[  381.343476][ T7311] kworker/u8:9: attempt to access beyond end of device
[  381.343476][ T7311] loop3: rw=1, sector=161, nr_sectors = 8 limit=128
[  381.357291][ T7311] kworker/u8:9: attempt to access beyond end of device
[  381.357291][ T7311] loop3: rw=1, sector=177, nr_sectors = 8 limit=128
[  381.391459][ T7311] kworker/u8:9: attempt to access beyond end of device
[  381.391459][ T7311] loop3: rw=1, sector=193, nr_sectors = 8 limit=128
[  381.422052][ T7311] kworker/u8:9: attempt to access beyond end of device
[  381.422052][ T7311] loop3: rw=1, sector=209, nr_sectors = 8 limit=128
[  381.466878][T14618] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  381.476160][ T7311] kworker/u8:9: attempt to access beyond end of device
[  381.476160][ T7311] loop3: rw=1, sector=225, nr_sectors = 8 limit=128
[  381.490107][ T7311] kworker/u8:9: attempt to access beyond end of device
[  381.490107][ T7311] loop3: rw=1, sector=241, nr_sectors = 8 limit=128
[  381.505743][ T7311] kworker/u8:9: attempt to access beyond end of device
[  381.505743][ T7311] loop3: rw=1, sector=257, nr_sectors = 8 limit=128
[  381.527125][ T7311] kworker/u8:9: attempt to access beyond end of device
[  381.527125][ T7311] loop3: rw=1, sector=273, nr_sectors = 8 limit=128
[  381.544225][T24927] netlink: 'syz.0.5282': attribute type 10 has an invalid length.
[  381.553048][T24927] netlink: 55 bytes leftover after parsing attributes in process `syz.0.5282'.
[  381.569970][ T7311] kworker/u8:9: attempt to access beyond end of device
[  381.569970][ T7311] loop3: rw=1, sector=289, nr_sectors = 8 limit=128
[  381.606975][   T29] kauditd_printk_skb: 229 callbacks suppressed
[  381.606993][   T29] audit: type=1400 audit(2000000003.423:17419): avc:  denied  { setattr } for  pid=24921 comm="syz.0.5282" name="file0" dev="tmpfs" ino=2524 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  381.643849][T24933] loop3: detected capacity change from 0 to 512
[  381.675775][T24933] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  381.731519][T24933] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  381.781045][T24933] ext4 filesystem being mounted at /517/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  381.843619][T24933] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.5280: corrupted xattr block 19: overlapping e_value 
[  381.895868][T24933] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[  381.921545][T24942] loop4: detected capacity change from 0 to 8192
[  381.941072][T24933] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.5280: corrupted xattr block 19: overlapping e_value 
[  381.941109][T24944] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.5280: corrupted xattr block 19: overlapping e_value 
[  381.988953][T24933] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[  382.001675][T24944] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[  382.021213][T24933] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.5280: corrupted xattr block 19: overlapping e_value 
[  382.051865][T24946]  loop4: p1 p2 p3 p4
[  382.055972][T24946] loop4: p1 start 51379968 is beyond EOD, truncated
[  382.092050][T24946] loop4: p3 size 15991040 extends beyond EOD, truncated
[  382.114130][T12272] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  382.121224][T24946] loop4: p4 start 16711680 is beyond EOD, truncated
[  382.131552][T24942]  loop4: p1 p2 p3 p4
[  382.135700][T24942] loop4: p1 start 51379968 is beyond EOD, truncated
[  382.156052][T24942] loop4: p3 size 15991040 extends beyond EOD, truncated
[  382.171259][T24942] loop4: p4 start 16711680 is beyond EOD, truncated
[  382.182524][   T29] audit: type=1326 audit(2000000004.003:17420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24941 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb460cebe9 code=0x7ffc0000
[  382.211270][T24946] loop4: detected capacity change from 0 to 2048
[  382.213948][T24958] ipvlan2: entered promiscuous mode
[  382.261270][T24946]  loop4: p1 < > p4
[  382.265711][T24946] loop4: p4 size 8388608 extends beyond EOD, truncated
[  382.272489][   T29] audit: type=1326 audit(2000000004.003:17421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24941 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb460cebe9 code=0x7ffc0000
[  382.295882][   T29] audit: type=1326 audit(2000000004.003:17422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24941 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7feb460cebe9 code=0x7ffc0000
[  382.318951][   T29] audit: type=1326 audit(2000000004.003:17423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24941 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7feb460cec23 code=0x7ffc0000
[  382.342432][   T29] audit: type=1326 audit(2000000004.003:17424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24941 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7feb460cd69f code=0x7ffc0000
[  382.365580][   T29] audit: type=1326 audit(2000000004.033:17425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24941 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7feb460cec77 code=0x7ffc0000
[  382.388712][   T29] audit: type=1326 audit(2000000004.033:17426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24941 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7feb460cd550 code=0x7ffc0000
[  382.412206][   T29] audit: type=1326 audit(2000000004.033:17427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24941 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7feb460ce7eb code=0x7ffc0000
[  382.435354][   T29] audit: type=1326 audit(2000000004.033:17428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24941 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7feb460cd84a code=0x7ffc0000
[  382.470770][T24966] random: crng reseeded on system resumption
[  382.594762][T24981] loop3: detected capacity change from 0 to 1024
[  382.628442][T24981] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  382.673089][T12272] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  382.776409][T25003] netlink: 'syz.3.5297': attribute type 4 has an invalid length.
[  382.794121][   T23] lo speed is unknown, defaulting to 1000
[  382.799995][   T23] syz0: Port: 1 Link DOWN
[  382.810130][T25003] netlink: 'syz.3.5297': attribute type 4 has an invalid length.
[  382.830549][   T23] lo speed is unknown, defaulting to 1000
[  382.836354][   T23] syz0: Port: 1 Link ACTIVE
[  382.853098][   T23] lo speed is unknown, defaulting to 1000
[  382.859117][   T23] syz0: Port: 1 Link DOWN
[  382.904021][T25011] loop3: detected capacity change from 0 to 512
[  382.935381][T25011] EXT4-fs (loop3): orphan cleanup on readonly fs
[  382.950678][T25011] EXT4-fs error (device loop3): ext4_orphan_get:1418: comm syz.3.5299: bad orphan inode 13
[  382.967992][T25014] ipvlan0: entered promiscuous mode
[  382.974581][T25011] ext4_test_bit(bit=12, block=18) = 1
[  382.979983][T25011] is_bad_inode(inode)=0
[  382.984224][T25011] NEXT_ORPHAN(inode)=2130706432
[  382.989074][T25011] max_ino=32
[  382.992303][T25011] i_nlink=1
[  382.999723][T25011] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  383.016958][T25022] random: crng reseeded on system resumption
[  383.041219][T25011] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  383.053229][T25011] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  383.412287][T25049] netlink: 16178 bytes leftover after parsing attributes in process `syz.1.5310'.
[  383.426437][T25049] netdevsim netdevsim1 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  383.436232][T25049] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  383.482538][T25049] netdevsim netdevsim1 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  383.492362][T25049] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  383.579222][T25060] FAULT_INJECTION: forcing a failure.
[  383.579222][T25060] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  383.592423][T25060] CPU: 0 UID: 0 PID: 25060 Comm: syz.4.5312 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  383.592508][T25060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  383.592519][T25060] Call Trace:
[  383.592526][T25060]  <TASK>
[  383.592533][T25060]  __dump_stack+0x1d/0x30
[  383.592553][T25060]  dump_stack_lvl+0xe8/0x140
[  383.592570][T25060]  dump_stack+0x15/0x1b
[  383.592584][T25060]  should_fail_ex+0x265/0x280
[  383.592682][T25060]  should_fail+0xb/0x20
[  383.592699][T25060]  should_fail_usercopy+0x1a/0x20
[  383.592723][T25060]  _copy_to_user+0x20/0xa0
[  383.592749][T25060]  simple_read_from_buffer+0xb5/0x130
[  383.592826][T25060]  proc_fail_nth_read+0x10e/0x150
[  383.592850][T25060]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  383.592871][T25060]  vfs_read+0x1a5/0x770
[  383.592889][T25060]  ? __rcu_read_unlock+0x4f/0x70
[  383.592954][T25060]  ? __fget_files+0x184/0x1c0
[  383.592977][T25060]  ksys_read+0xda/0x1a0
[  383.592996][T25060]  __x64_sys_read+0x40/0x50
[  383.593052][T25060]  x64_sys_call+0x27bc/0x2ff0
[  383.593071][T25060]  do_syscall_64+0xd2/0x200
[  383.593098][T25060]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  383.593193][T25060]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  383.593218][T25060]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  383.593237][T25060] RIP: 0033:0x7feb460cd5fc
[  383.593252][T25060] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  383.593267][T25060] RSP: 002b:00007feb44b2f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  383.593324][T25060] RAX: ffffffffffffffda RBX: 00007feb46305fa0 RCX: 00007feb460cd5fc
[  383.593341][T25060] RDX: 000000000000000f RSI: 00007feb44b2f0a0 RDI: 0000000000000003
[  383.593352][T25060] RBP: 00007feb44b2f090 R08: 0000000000000000 R09: 0000000000000000
[  383.593363][T25060] R10: 0000200000000280 R11: 0000000000000246 R12: 0000000000000001
[  383.593454][T25060] R13: 00007feb46306038 R14: 00007feb46305fa0 R15: 00007ffc81527978
[  383.593471][T25060]  </TASK>
[  383.596553][T12272] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  383.677424][T25064] loop4: detected capacity change from 0 to 2048
[  383.813380][T25049] netdevsim netdevsim1 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  383.823379][T25049] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  383.825408][T25069] loop3: detected capacity change from 0 to 1024
[  383.837144][T25064] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  383.870269][T14618] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  383.874483][T25079] syz_tun: entered allmulticast mode
[  383.892407][T25069] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  383.901854][T25078] syz_tun: left allmulticast mode
[  383.904654][T14618] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  383.935358][T14618] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  383.947441][T25069] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=25069 comm=syz.3.5313
[  383.966703][T25049] netdevsim netdevsim1 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  383.976627][T25049] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  384.007343][T25069] EXT4-fs error (device loop3): mb_free_blocks:2017: group 0, inode 15: block 177:freeing already freed block (bit 11); block bitmap corrupt.
[  384.042261][T12272] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  384.069051][ T7311] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  384.077329][ T7311] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  384.099066][ T3505] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  384.107352][ T3505] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  384.180417][T25118] loop3: detected capacity change from 0 to 512
[  384.198827][T25120] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  384.208375][T25118] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  384.222016][T25120] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  384.244726][ T3505] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  384.253154][ T3505] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  384.262336][T25118] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  384.263063][ T3505] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  384.275768][T25118] ext4 filesystem being mounted at /525/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  384.283189][ T3505] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  384.334924][T25118] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.5327: corrupted xattr block 19: overlapping e_value 
[  384.335424][T25131] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5324'.
[  384.368268][T25118] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[  384.391107][T25118] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.5327: corrupted xattr block 19: overlapping e_value 
[  384.405127][T25132] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.5327: corrupted xattr block 19: overlapping e_value 
[  384.431628][T25118] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[  384.441869][T25132] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[  384.461010][T25118] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.5327: corrupted xattr block 19: overlapping e_value 
[  384.513677][T12272] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  384.541346][T25136] loop3: detected capacity change from 0 to 2048
[  384.553362][T25136] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  384.579989][T12272] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  384.596094][T12272] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  384.608180][T12272] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  384.796177][T25151] FAULT_INJECTION: forcing a failure.
[  384.796177][T25151] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  384.809339][T25151] CPU: 1 UID: 0 PID: 25151 Comm: syz.0.5331 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  384.809373][T25151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  384.809387][T25151] Call Trace:
[  384.809394][T25151]  <TASK>
[  384.809473][T25151]  __dump_stack+0x1d/0x30
[  384.809499][T25151]  dump_stack_lvl+0xe8/0x140
[  384.809523][T25151]  dump_stack+0x15/0x1b
[  384.809568][T25151]  should_fail_ex+0x265/0x280
[  384.809596][T25151]  should_fail+0xb/0x20
[  384.809619][T25151]  should_fail_usercopy+0x1a/0x20
[  384.809697][T25151]  _copy_to_user+0x20/0xa0
[  384.809732][T25151]  simple_read_from_buffer+0xb5/0x130
[  384.809754][T25151]  proc_fail_nth_read+0x10e/0x150
[  384.809827][T25151]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  384.809887][T25151]  vfs_read+0x1a5/0x770
[  384.809912][T25151]  ? __rcu_read_unlock+0x4f/0x70
[  384.809938][T25151]  ? __fget_files+0x184/0x1c0
[  384.809968][T25151]  ksys_read+0xda/0x1a0
[  384.810047][T25151]  __x64_sys_read+0x40/0x50
[  384.810073][T25151]  x64_sys_call+0x27bc/0x2ff0
[  384.810097][T25151]  do_syscall_64+0xd2/0x200
[  384.810129][T25151]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  384.810189][T25151]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  384.810283][T25151]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  384.810306][T25151] RIP: 0033:0x7ff1c8d9d5fc
[  384.810325][T25151] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  384.810347][T25151] RSP: 002b:00007ff1c7807030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  384.810372][T25151] RAX: ffffffffffffffda RBX: 00007ff1c8fd5fa0 RCX: 00007ff1c8d9d5fc
[  384.810409][T25151] RDX: 000000000000000f RSI: 00007ff1c78070a0 RDI: 0000000000000005
[  384.810422][T25151] RBP: 00007ff1c7807090 R08: 0000000000000000 R09: 0000000000000000
[  384.810434][T25151] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  384.810449][T25151] R13: 00007ff1c8fd6038 R14: 00007ff1c8fd5fa0 R15: 00007fffc8ce9ab8
[  384.810471][T25151]  </TASK>
[  385.429829][T25160] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5334'.
[  385.483719][T25166] FAULT_INJECTION: forcing a failure.
[  385.483719][T25166] name failslab, interval 1, probability 0, space 0, times 0
[  385.496547][T25166] CPU: 1 UID: 0 PID: 25166 Comm: syz.4.5336 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  385.496577][T25166] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  385.496670][T25166] Call Trace:
[  385.496695][T25166]  <TASK>
[  385.496702][T25166]  __dump_stack+0x1d/0x30
[  385.496725][T25166]  dump_stack_lvl+0xe8/0x140
[  385.496748][T25166]  dump_stack+0x15/0x1b
[  385.496768][T25166]  should_fail_ex+0x265/0x280
[  385.496796][T25166]  should_failslab+0x8c/0xb0
[  385.496866][T25166]  __kvmalloc_node_noprof+0x123/0x4e0
[  385.496901][T25166]  ? do_getxattr+0x9d/0x2a0
[  385.496925][T25166]  do_getxattr+0x9d/0x2a0
[  385.497012][T25166]  path_getxattrat+0x22c/0x2a0
[  385.497053][T25166]  __x64_sys_fgetxattr+0x59/0x70
[  385.497101][T25166]  x64_sys_call+0x1ab3/0x2ff0
[  385.497169][T25166]  do_syscall_64+0xd2/0x200
[  385.497270][T25166]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  385.497299][T25166]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  385.497331][T25166]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  385.497356][T25166] RIP: 0033:0x7feb460cebe9
[  385.497445][T25166] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  385.497465][T25166] RSP: 002b:00007feb44b2f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c1
[  385.497503][T25166] RAX: ffffffffffffffda RBX: 00007feb46305fa0 RCX: 00007feb460cebe9
[  385.497516][T25166] RDX: 00002000000004c0 RSI: 0000200000000380 RDI: 0000000000000006
[  385.497529][T25166] RBP: 00007feb44b2f090 R08: 0000000000000000 R09: 0000000000000000
[  385.497543][T25166] R10: 00000000000000a4 R11: 0000000000000246 R12: 0000000000000001
[  385.497561][T25166] R13: 00007feb46306038 R14: 00007feb46305fa0 R15: 00007ffc81527978
[  385.497580][T25166]  </TASK>
[  385.795377][T25178] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5338'.
[  385.804406][T25178] netem: change failed
[  385.809156][T25180] loop3: detected capacity change from 0 to 512
[  385.822264][T25187] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5335'.
[  385.833859][T25180] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  385.874508][T25180] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  385.888195][T25196] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5342'.
[  385.890328][T25180] ext4 filesystem being mounted at /529/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  385.918226][T25180] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.5339: corrupted xattr block 19: overlapping e_value 
[  385.932622][T25180] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[  385.942152][T25180] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.5339: corrupted xattr block 19: overlapping e_value 
[  385.962324][T25180] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[  385.972322][T25209] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.5339: corrupted xattr block 19: overlapping e_value 
[  385.994271][T25204] ipvlan2: entered promiscuous mode
[  386.011057][T25180] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.5339: corrupted xattr block 19: overlapping e_value 
[  386.032668][T25209] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[  386.044015][T25216] random: crng reseeded on system resumption
[  386.062794][T12272] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  386.101143][T25222] pim6reg: left allmulticast mode
[  386.160589][T25238] FAULT_INJECTION: forcing a failure.
[  386.160589][T25238] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  386.174144][T25238] CPU: 1 UID: 0 PID: 25238 Comm: syz.0.5350 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  386.174175][T25238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  386.174186][T25238] Call Trace:
[  386.174195][T25238]  <TASK>
[  386.174203][T25238]  __dump_stack+0x1d/0x30
[  386.174271][T25238]  dump_stack_lvl+0xe8/0x140
[  386.174312][T25238]  dump_stack+0x15/0x1b
[  386.174412][T25238]  should_fail_ex+0x265/0x280
[  386.174435][T25238]  should_fail_alloc_page+0xf2/0x100
[  386.174475][T25238]  __alloc_frozen_pages_noprof+0xff/0x360
[  386.174512][T25238]  alloc_pages_mpol+0xb3/0x250
[  386.174547][T25238]  alloc_pages_noprof+0x90/0x130
[  386.174654][T25238]  __pmd_alloc+0x47/0x470
[  386.174692][T25238]  handle_mm_fault+0x19d4/0x2c20
[  386.174730][T25238]  do_user_addr_fault+0x636/0x1090
[  386.174765][T25238]  ? fpregs_restore_userregs+0xe2/0x1d0
[  386.174839][T25238]  ? switch_fpu_return+0xe/0x20
[  386.174869][T25238]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  386.174930][T25238]  exc_page_fault+0x62/0xa0
[  386.174956][T25238]  asm_exc_page_fault+0x26/0x30
[  386.174975][T25238] RIP: 0033:0x7ff1c8c60ba3
[  386.174991][T25238] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  386.175008][T25238] RSP: 002b:00007ff1c78064a0 EFLAGS: 00010206
[  386.175033][T25238] RAX: 0000000000000000 RBX: 00007ff1c7806540 RCX: 00007ff1bf3e7000
[  386.175048][T25238] RDX: 00007ff1c78066e0 RSI: 0000000000000007 RDI: 00007ff1c78065e0
[  386.175061][T25238] RBP: 000000000000013c R08: 0000000000000009 R09: 00000000000001c7
[  386.175076][T25238] R10: 00000000000001da R11: 00007ff1c7806540 R12: 00007ff1c7806540
[  386.175089][T25238] R13: 00007ff1c8e3da20 R14: 0000000000000060 R15: 00007ff1c78065e0
[  386.175109][T25238]  </TASK>
[  386.175120][T25238] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  386.202535][T25236] loop4: detected capacity change from 0 to 8192
[  386.396265][T25254] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=25254 comm=syz.0.5356
[  386.411524][T25236]  loop4: p1 p2 p3 p4
[  386.415636][T25236] loop4: p1 start 51379968 is beyond EOD, truncated
[  386.423424][T25236] loop4: p3 size 15991040 extends beyond EOD, truncated
[  386.431843][T25236] loop4: p4 start 16711680 is beyond EOD, truncated
[  386.434951][T25256] loop3: detected capacity change from 0 to 1024
[  386.453055][T25256] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  386.508988][T25270] geneve2: entered promiscuous mode
[  386.514529][T25270] geneve2: entered allmulticast mode
[  386.544044][T12272] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  386.554283][T25236] loop4: detected capacity change from 0 to 2048
[  386.578198][T25281] loop3: detected capacity change from 0 to 512
[  386.586311][T25236]  loop4: p1 < > p4
[  386.591025][T25236] loop4: p4 size 8388608 extends beyond EOD, truncated
[  386.608822][T25281] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  386.631953][T25295] syz_tun: entered allmulticast mode
[  386.651034][T25281] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  386.662685][T25294] syz_tun: left allmulticast mode
[  386.664294][T25281] ext4 filesystem being mounted at /533/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  386.682504][   T29] kauditd_printk_skb: 266 callbacks suppressed
[  386.682523][   T29] audit: type=1326 audit(2000000014.504:17695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25280 comm="syz.3.5360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5734c2ebe9 code=0x7ffc0000
[  386.713398][T25303] FAULT_INJECTION: forcing a failure.
[  386.713398][T25303] name failslab, interval 1, probability 0, space 0, times 0
[  386.721687][   T29] audit: type=1326 audit(2000000014.504:17696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25280 comm="syz.3.5360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5734c2ebe9 code=0x7ffc0000
[  386.726283][T25303] CPU: 1 UID: 0 PID: 25303 Comm: syz.1.5365 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  386.726310][T25303] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  386.726365][T25303] Call Trace:
[  386.726371][T25303]  <TASK>
[  386.726379][T25303]  __dump_stack+0x1d/0x30
[  386.726401][T25303]  dump_stack_lvl+0xe8/0x140
[  386.726421][T25303]  dump_stack+0x15/0x1b
[  386.726437][T25303]  should_fail_ex+0x265/0x280
[  386.726540][T25303]  should_failslab+0x8c/0xb0
[  386.726565][T25303]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  386.726632][T25303]  ? security_context_to_sid_core+0x69/0x3b0
[  386.726655][T25303]  kmemdup_nul+0x36/0xc0
[  386.726680][T25303]  security_context_to_sid_core+0x69/0x3b0
[  386.726732][T25303]  security_context_str_to_sid+0x33/0x40
[  386.726753][T25303]  sel_write_relabel+0x237/0x360
[  386.726813][T25303]  selinux_transaction_write+0xc3/0x110
[  386.726839][T25303]  ? __pfx_selinux_transaction_write+0x10/0x10
[  386.726865][T25303]  vfs_write+0x266/0x960
[  386.726885][T25303]  ? __rcu_read_unlock+0x4f/0x70
[  386.726978][T25303]  ? __fget_files+0x184/0x1c0
[  386.727082][T25303]  ksys_write+0xda/0x1a0
[  386.727104][T25303]  __x64_sys_write+0x40/0x50
[  386.727132][T25303]  x64_sys_call+0x27fe/0x2ff0
[  386.727154][T25303]  do_syscall_64+0xd2/0x200
[  386.727202][T25303]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  386.727226][T25303]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  386.727253][T25303]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  386.727283][T25303] RIP: 0033:0x7fe1bc9bebe9
[  386.727299][T25303] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  386.727317][T25303] RSP: 002b:00007fe1bb41f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  386.727385][T25303] RAX: ffffffffffffffda RBX: 00007fe1bcbf5fa0 RCX: 00007fe1bc9bebe9
[  386.727398][T25303] RDX: 0000000000000056 RSI: 0000200000001a80 RDI: 0000000000000006
[  386.727432][T25303] RBP: 00007fe1bb41f090 R08: 0000000000000000 R09: 0000000000000000
[  386.727472][T25303] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  386.727485][T25303] R13: 00007fe1bcbf6038 R14: 00007fe1bcbf5fa0 R15: 00007fff2ee98c48
[  386.727504][T25303]  </TASK>
[  386.969618][   T29] audit: type=1326 audit(2000000014.504:17697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25280 comm="syz.3.5360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f5734c2ebe9 code=0x7ffc0000
[  386.993212][   T29] audit: type=1326 audit(2000000014.504:17698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25280 comm="syz.3.5360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5734c2ebe9 code=0x7ffc0000
[  387.016829][   T29] audit: type=1326 audit(2000000014.504:17699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25280 comm="syz.3.5360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=163 compat=0 ip=0x7f5734c2ebe9 code=0x7ffc0000
[  387.041045][   T29] audit: type=1326 audit(2000000014.544:17700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25280 comm="syz.3.5360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5734c2ebe9 code=0x7ffc0000
[  387.064929][   T29] audit: type=1326 audit(2000000014.544:17701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25280 comm="syz.3.5360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5734c2ebe9 code=0x7ffc0000
[  387.088527][   T29] audit: type=1326 audit(2000000014.544:17702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25280 comm="syz.3.5360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f5734c2ebe9 code=0x7ffc0000
[  387.112085][   T29] audit: type=1326 audit(2000000014.794:17703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25280 comm="syz.3.5360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5734c2ebe9 code=0x7ffc0000
[  387.135743][   T29] audit: type=1326 audit(2000000014.794:17704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25280 comm="syz.3.5360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5734c2ebe9 code=0x7ffc0000
[  387.247560][T12272] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  387.257382][T25325] FAULT_INJECTION: forcing a failure.
[  387.257382][T25325] name failslab, interval 1, probability 0, space 0, times 0
[  387.270162][T25325] CPU: 1 UID: 0 PID: 25325 Comm: syz.1.5372 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  387.270194][T25325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  387.270208][T25325] Call Trace:
[  387.270278][T25325]  <TASK>
[  387.270287][T25325]  __dump_stack+0x1d/0x30
[  387.270312][T25325]  dump_stack_lvl+0xe8/0x140
[  387.270341][T25325]  dump_stack+0x15/0x1b
[  387.270360][T25325]  should_fail_ex+0x265/0x280
[  387.270386][T25325]  should_failslab+0x8c/0xb0
[  387.270442][T25325]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  387.270475][T25325]  ? sidtab_sid2str_get+0xa0/0x130
[  387.270500][T25325]  kmemdup_noprof+0x2b/0x70
[  387.270571][T25325]  sidtab_sid2str_get+0xa0/0x130
[  387.270594][T25325]  security_sid_to_context_core+0x1eb/0x2e0
[  387.270618][T25325]  security_sid_to_context+0x27/0x40
[  387.270712][T25325]  selinux_lsmprop_to_secctx+0x67/0xf0
[  387.270775][T25325]  security_lsmprop_to_secctx+0x43/0x80
[  387.270806][T25325]  audit_log_task_context+0x77/0x190
[  387.270848][T25325]  audit_log_task+0xf4/0x250
[  387.270901][T25325]  audit_seccomp+0x61/0x100
[  387.270928][T25325]  ? __seccomp_filter+0x68c/0x10d0
[  387.270952][T25325]  __seccomp_filter+0x69d/0x10d0
[  387.270976][T25325]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  387.271105][T25325]  ? vfs_write+0x7e8/0x960
[  387.271129][T25325]  ? kmem_cache_free+0xdf/0x300
[  387.271163][T25325]  __secure_computing+0x82/0x150
[  387.271186][T25325]  syscall_trace_enter+0xcf/0x1e0
[  387.271243][T25325]  do_syscall_64+0xac/0x200
[  387.271345][T25325]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  387.271371][T25325]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  387.271401][T25325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  387.271500][T25325] RIP: 0033:0x7fe1bc9bebe9
[  387.271519][T25325] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  387.271539][T25325] RSP: 002b:00007fe1bb41f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  387.271562][T25325] RAX: ffffffffffffffda RBX: 00007fe1bcbf5fa0 RCX: 00007fe1bc9bebe9
[  387.271576][T25325] RDX: 0000000020008000 RSI: 0000200000000500 RDI: 0000000000000009
[  387.271615][T25325] RBP: 00007fe1bb41f090 R08: 0000000000000000 R09: 0000000000000000
[  387.271629][T25325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  387.271666][T25325] R13: 00007fe1bcbf6038 R14: 00007fe1bcbf5fa0 R15: 00007fff2ee98c48
[  387.271685][T25325]  </TASK>
[  387.584827][T25346] loop4: detected capacity change from 0 to 2048
[  387.607800][T25346] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  387.620634][T25355] FAULT_INJECTION: forcing a failure.
[  387.620634][T25355] name failslab, interval 1, probability 0, space 0, times 0
[  387.633432][T25355] CPU: 1 UID: 0 PID: 25355 Comm: syz.1.5381 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  387.633466][T25355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  387.633520][T25355] Call Trace:
[  387.633529][T25355]  <TASK>
[  387.633538][T25355]  __dump_stack+0x1d/0x30
[  387.633639][T25355]  dump_stack_lvl+0xe8/0x140
[  387.633660][T25355]  dump_stack+0x15/0x1b
[  387.633678][T25355]  should_fail_ex+0x265/0x280
[  387.633739][T25355]  should_failslab+0x8c/0xb0
[  387.633766][T25355]  kmem_cache_alloc_noprof+0x50/0x310
[  387.633797][T25355]  ? security_file_alloc+0x32/0x100
[  387.633908][T25355]  security_file_alloc+0x32/0x100
[  387.633938][T25355]  init_file+0x5c/0x1d0
[  387.633979][T25355]  alloc_empty_file+0x8b/0x200
[  387.634007][T25355]  path_openat+0x68/0x2170
[  387.634027][T25355]  ? _parse_integer_limit+0x170/0x190
[  387.634072][T25355]  ? kstrtoull+0x111/0x140
[  387.634092][T25355]  ? kstrtouint+0x76/0xc0
[  387.634126][T25355]  do_filp_open+0x109/0x230
[  387.634153][T25355]  do_sys_openat2+0xa6/0x110
[  387.634184][T25355]  __x64_sys_openat+0xf2/0x120
[  387.634211][T25355]  x64_sys_call+0x2e9c/0x2ff0
[  387.634230][T25355]  do_syscall_64+0xd2/0x200
[  387.634257][T25355]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  387.634453][T25355]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  387.634522][T25355]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  387.634541][T25355] RIP: 0033:0x7fe1bc9bebe9
[  387.634556][T25355] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  387.634573][T25355] RSP: 002b:00007fe1bb41f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  387.634591][T25355] RAX: ffffffffffffffda RBX: 00007fe1bcbf5fa0 RCX: 00007fe1bc9bebe9
[  387.634606][T25355] RDX: 0000000000515a02 RSI: 00002000000000c0 RDI: 0000000000000004
[  387.634617][T25355] RBP: 00007fe1bb41f090 R08: 0000000000000000 R09: 0000000000000000
[  387.634628][T25355] R10: 52abe154ad664f26 R11: 0000000000000246 R12: 0000000000000001
[  387.634639][T25355] R13: 00007fe1bcbf6038 R14: 00007fe1bcbf5fa0 R15: 00007fff2ee98c48
[  387.634696][T25355]  </TASK>
[  387.636857][T14618] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  387.861401][T14618] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  387.880094][T14618] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  387.904498][T25364] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5386'.
[  387.986684][T25377] sd 0:0:1:0: device reset
[  388.009036][T25370] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=25370 comm=syz.0.5387
[  388.024016][T25370] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=25370 comm=syz.0.5387
[  388.025934][T25382] netlink: 'syz.4.5391': attribute type 10 has an invalid length.
[  388.044481][T25382] netlink: 40 bytes leftover after parsing attributes in process `syz.4.5391'.
[  388.054095][T25382] batman_adv: batadv0: Adding interface: veth1_vlan
[  388.060867][T25382] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  388.087748][T25382] batman_adv: batadv0: Interface activated: veth1_vlan
[  388.116446][   T10] Process accounting resumed
[  388.121967][T25385] netlink: 'syz.4.5392': attribute type 1 has an invalid length.
[  388.136101][T25385] 8021q: adding VLAN 0 to HW filter on device bond0
[  388.144680][T25385] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5392'.
[  388.153619][T25385] netlink: 16 bytes leftover after parsing attributes in process `syz.4.5392'.
[  388.190515][T25427] ipip0: entered promiscuous mode
[  388.435778][T25459] loop0: detected capacity change from 0 to 512
[  388.443408][T25459] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  388.568182][T25478] Invalid ELF header type: 3 != 1
[  388.589431][T25466] lo speed is unknown, defaulting to 1000
[  388.595739][T25466] lo speed is unknown, defaulting to 1000
[  388.615621][T25480] loop3: detected capacity change from 0 to 2048
[  388.629230][T25478] loop0: detected capacity change from 0 to 2364
[  388.648896][T25478] iso9660: Unknown parameter 'unhid��Yde'
[  388.661740][T25480] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  388.711864][T12272] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  388.727259][T12272] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  388.743232][T12272] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  388.857041][T25517] FAULT_INJECTION: forcing a failure.
[  388.857041][T25517] name failslab, interval 1, probability 0, space 0, times 0
[  388.869915][T25517] CPU: 0 UID: 0 PID: 25517 Comm: syz.3.5416 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  388.869948][T25517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  388.869962][T25517] Call Trace:
[  388.869971][T25517]  <TASK>
[  388.869980][T25517]  __dump_stack+0x1d/0x30
[  388.870005][T25517]  dump_stack_lvl+0xe8/0x140
[  388.870028][T25517]  dump_stack+0x15/0x1b
[  388.870135][T25517]  should_fail_ex+0x265/0x280
[  388.870170][T25517]  ? netlbl_mgmt_add_common+0x3b/0x960
[  388.870199][T25517]  should_failslab+0x8c/0xb0
[  388.870228][T25517]  __kmalloc_cache_noprof+0x4c/0x320
[  388.870293][T25517]  netlbl_mgmt_add_common+0x3b/0x960
[  388.870322][T25517]  ? __nla_parse+0x40/0x60
[  388.870346][T25517]  ? selinux_current_getlsmprop_subj+0x6e/0x80
[  388.870441][T25517]  netlbl_mgmt_adddef+0x183/0x1b0
[  388.870470][T25517]  genl_family_rcv_msg_doit+0x140/0x1b0
[  388.870512][T25517]  genl_rcv_msg+0x422/0x460
[  388.870702][T25517]  ? __pfx_netlbl_mgmt_adddef+0x10/0x10
[  388.870783][T25517]  netlink_rcv_skb+0x123/0x220
[  388.870810][T25517]  ? __pfx_genl_rcv_msg+0x10/0x10
[  388.870929][T25517]  genl_rcv+0x28/0x40
[  388.870961][T25517]  netlink_unicast+0x5bd/0x690
[  388.871034][T25517]  netlink_sendmsg+0x58b/0x6b0
[  388.871139][T25517]  ? __pfx_netlink_sendmsg+0x10/0x10
[  388.871162][T25517]  __sock_sendmsg+0x142/0x180
[  388.871195][T25517]  ____sys_sendmsg+0x31e/0x4e0
[  388.871298][T25517]  ___sys_sendmsg+0x17b/0x1d0
[  388.871336][T25517]  __x64_sys_sendmsg+0xd4/0x160
[  388.871442][T25517]  x64_sys_call+0x191e/0x2ff0
[  388.871466][T25517]  do_syscall_64+0xd2/0x200
[  388.871565][T25517]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  388.871652][T25517]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  388.871685][T25517]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  388.871726][T25517] RIP: 0033:0x7f5734c2ebe9
[  388.871745][T25517] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  388.871763][T25517] RSP: 002b:00007f573368f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  388.871783][T25517] RAX: ffffffffffffffda RBX: 00007f5734e65fa0 RCX: 00007f5734c2ebe9
[  388.871796][T25517] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000004
[  388.871811][T25517] RBP: 00007f573368f090 R08: 0000000000000000 R09: 0000000000000000
[  388.871826][T25517] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  388.871871][T25517] R13: 00007f5734e66038 R14: 00007f5734e65fa0 R15: 00007ffea2002428
[  388.871892][T25517]  </TASK>
[  389.166450][T25523] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5418'.
[  389.191724][T25518] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  389.199151][T25518] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  389.236814][T25527] loop3: detected capacity change from 0 to 1024
[  389.278362][T25527] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  389.321379][T25527] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4183: comm syz.3.5420: Allocating blocks 385-513 which overlap fs metadata
[  389.344273][T25527] EXT4-fs (loop3): pa ffff8881071cb770: logic 16, phys. 129, len 24
[  389.352420][T25527] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[  389.388252][T25527] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 28 with max blocks 4 with error 28
[  389.400702][T25527] EXT4-fs (loop3): This should not happen!! Data will be lost
[  389.400702][T25527] 
[  389.410410][T25527] EXT4-fs (loop3): Total free blocks count 0
[  389.416549][T25527] EXT4-fs (loop3): Free/Dirty block details
[  389.422573][T25527] EXT4-fs (loop3): free_blocks=128
[  389.427700][T25527] EXT4-fs (loop3): dirty_blocks=0
[  389.432915][T25527] EXT4-fs (loop3): Block reservation details
[  389.438974][T25527] EXT4-fs (loop3): i_reserved_data_blocks=0
[  389.733245][T25558] lo speed is unknown, defaulting to 1000
[  389.740080][T25558] lo speed is unknown, defaulting to 1000
[  390.084043][T25548] random: crng reseeded on system resumption
[  390.109580][T25555] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  390.109580][T25555]    program syz.0.5428 not setting count and/or reply_len properly
[  390.150075][T25587] loop3: detected capacity change from 0 to 1024
[  390.165570][T25587] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4183: comm syz.3.5431: Allocating blocks 385-513 which overlap fs metadata
[  390.185148][T25587] EXT4-fs (loop3): pa ffff8881071cb700: logic 16, phys. 129, len 24
[  390.193259][T25587] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[  390.206298][T25587] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 28 with max blocks 4 with error 28
[  390.218736][T25587] EXT4-fs (loop3): This should not happen!! Data will be lost
[  390.218736][T25587] 
[  390.228585][T25587] EXT4-fs (loop3): Total free blocks count 0
[  390.234611][T25587] EXT4-fs (loop3): Free/Dirty block details
[  390.240552][T25587] EXT4-fs (loop3): free_blocks=128
[  390.245752][T25587] EXT4-fs (loop3): dirty_blocks=0
[  390.250933][T25587] EXT4-fs (loop3): Block reservation details
[  390.256985][T25587] EXT4-fs (loop3): i_reserved_data_blocks=0
[  390.376755][T25595] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  390.424917][T25597] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  390.432186][T25597] IPv6: NLM_F_CREATE should be set when creating new route
[  390.464533][T25597] loop3: detected capacity change from 0 to 1024
[  390.506714][T25597] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4183: comm syz.3.5432: Allocating blocks 449-513 which overlap fs metadata
[  390.568154][T25597] ipip0: entered promiscuous mode
[  390.584268][T25596] EXT4-fs (loop3): pa ffff88810728ed20: logic 48, phys. 177, len 21
[  390.592376][T25596] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  390.700299][T25628] loop4: detected capacity change from 0 to 512
[  390.710831][T25628] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  390.720218][T25623] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  390.733749][T25623] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  390.743666][T25628] ext4 filesystem being mounted at /509/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  390.757324][T25628] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.5440: corrupted xattr block 19: overlapping e_value 
[  390.757882][T25623] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  390.779972][T25623] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  390.794747][T25628] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[  390.814089][T25642] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.5440: corrupted xattr block 19: overlapping e_value 
[  390.833974][T25634] loop3: detected capacity change from 0 to 2048
[  390.841349][T25628] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.5440: corrupted xattr block 19: overlapping e_value 
[  390.855979][T25642] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[  390.866125][T25628] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[  390.875230][T25628] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.5440: corrupted xattr block 19: overlapping e_value 
[  390.904031][T25634]  loop3: p2 p3 p7
[  390.941511][T25651] __nla_validate_parse: 1 callbacks suppressed
[  390.941528][T25651] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5442'.
[  391.222095][T25681] loop4: detected capacity change from 0 to 8192
[  391.279096][T25681]  loop4: p1 p2 p3 p4
[  391.283307][T25681] loop4: p1 start 51379968 is beyond EOD, truncated
[  391.291370][T25681] loop4: p3 size 15991040 extends beyond EOD, truncated
[  391.298898][T25681] loop4: p4 start 16711680 is beyond EOD, truncated
[  391.354868][T25681] loop4: detected capacity change from 0 to 2048
[  391.389842][T25681]  loop4: p1 < > p4
[  391.395806][T25681] loop4: p4 size 8388608 extends beyond EOD, truncated
[  391.750458][   T29] kauditd_printk_skb: 441 callbacks suppressed
[  391.750475][   T29] audit: type=1400 audit(2000000019.546:18145): avc:  denied  { name_connect } for  pid=25718 comm="syz.1.5457" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[  391.838975][T25735] loop4: detected capacity change from 0 to 2048
[  391.948317][T25727] lo speed is unknown, defaulting to 1000
[  391.964871][T25727] lo speed is unknown, defaulting to 1000
[  392.002986][T25741] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5462'.
[  392.074052][T14618] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  392.098642][T14618] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  392.143629][T25758] FAULT_INJECTION: forcing a failure.
[  392.143629][T25758] name failslab, interval 1, probability 0, space 0, times 0
[  392.156391][T25758] CPU: 0 UID: 0 PID: 25758 Comm: syz.4.5463 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  392.156424][T25758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  392.156435][T25758] Call Trace:
[  392.156509][T25758]  <TASK>
[  392.156582][T25758]  __dump_stack+0x1d/0x30
[  392.156606][T25758]  dump_stack_lvl+0xe8/0x140
[  392.156625][T25758]  dump_stack+0x15/0x1b
[  392.156640][T25758]  should_fail_ex+0x265/0x280
[  392.156665][T25758]  ? alloc_netdev_mqs+0x7cb/0xa30
[  392.156690][T25758]  should_failslab+0x8c/0xb0
[  392.156775][T25758]  __kmalloc_cache_noprof+0x4c/0x320
[  392.156802][T25758]  alloc_netdev_mqs+0x7cb/0xa30
[  392.156826][T25758]  ip6_tnl_locate+0x37e/0x4a0
[  392.156876][T25758]  ip6_tnl_siocdevprivate+0x550/0x920
[  392.156916][T25758]  dev_ifsioc+0x8f5/0xaa0
[  392.157019][T25758]  dev_ioctl+0x78d/0x960
[  392.157047][T25758]  sock_ioctl+0x593/0x610
[  392.157081][T25758]  ? __pfx_sock_ioctl+0x10/0x10
[  392.157113][T25758]  __se_sys_ioctl+0xcb/0x140
[  392.157154][T25758]  __x64_sys_ioctl+0x43/0x50
[  392.157173][T25758]  x64_sys_call+0x1816/0x2ff0
[  392.157194][T25758]  do_syscall_64+0xd2/0x200
[  392.157278][T25758]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  392.157309][T25758]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  392.157402][T25758] RIP: 0033:0x7feb460cebe9
[  392.157419][T25758] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  392.157439][T25758] RSP: 002b:00007feb44b2f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  392.157463][T25758] RAX: ffffffffffffffda RBX: 00007feb46305fa0 RCX: 00007feb460cebe9
[  392.157543][T25758] RDX: 0000200000000080 RSI: 00000000000089f1 RDI: 000000000000000c
[  392.157567][T25758] RBP: 00007feb44b2f090 R08: 0000000000000000 R09: 0000000000000000
[  392.157579][T25758] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  392.157591][T25758] R13: 00007feb46306038 R14: 00007feb46305fa0 R15: 00007ffc81527978
[  392.157610][T25758]  </TASK>
[  392.458176][T25773] FAULT_INJECTION: forcing a failure.
[  392.458176][T25773] name failslab, interval 1, probability 0, space 0, times 0
[  392.471034][T25773] CPU: 1 UID: 0 PID: 25773 Comm: syz.3.5464 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  392.471147][T25773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  392.471158][T25773] Call Trace:
[  392.471165][T25773]  <TASK>
[  392.471172][T25773]  __dump_stack+0x1d/0x30
[  392.471193][T25773]  dump_stack_lvl+0xe8/0x140
[  392.471214][T25773]  dump_stack+0x15/0x1b
[  392.471311][T25773]  should_fail_ex+0x265/0x280
[  392.471345][T25773]  ? sctp_add_bind_addr+0x71/0x1e0
[  392.471377][T25773]  should_failslab+0x8c/0xb0
[  392.471405][T25773]  __kmalloc_cache_noprof+0x4c/0x320
[  392.471488][T25773]  sctp_add_bind_addr+0x71/0x1e0
[  392.471514][T25773]  sctp_copy_local_addr_list+0x199/0x220
[  392.471541][T25773]  sctp_copy_one_addr+0x7f/0x280
[  392.471632][T25773]  sctp_bind_addr_copy+0x79/0x290
[  392.471657][T25773]  sctp_assoc_set_bind_addr_from_ep+0xce/0xe0
[  392.471681][T25773]  sctp_connect_new_asoc+0x1c3/0x3a0
[  392.471770][T25773]  sctp_sendmsg+0xf10/0x18d0
[  392.471789][T25773]  ? selinux_socket_sendmsg+0xb1/0x1b0
[  392.471888][T25773]  ? __pfx_sctp_sendmsg+0x10/0x10
[  392.471910][T25773]  inet_sendmsg+0xc5/0xd0
[  392.471938][T25773]  __sock_sendmsg+0x102/0x180
[  392.472005][T25773]  __sys_sendto+0x268/0x330
[  392.472037][T25773]  __x64_sys_sendto+0x76/0x90
[  392.472088][T25773]  x64_sys_call+0x2d05/0x2ff0
[  392.472112][T25773]  do_syscall_64+0xd2/0x200
[  392.472147][T25773]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  392.472232][T25773]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  392.472262][T25773]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  392.472282][T25773] RIP: 0033:0x7f5734c2ebe9
[  392.472297][T25773] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  392.472358][T25773] RSP: 002b:00007f573364d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  392.472379][T25773] RAX: ffffffffffffffda RBX: 00007f5734e66180 RCX: 00007f5734c2ebe9
[  392.472391][T25773] RDX: 0000000000000001 RSI: 0000200000000000 RDI: 0000000000000005
[  392.472403][T25773] RBP: 00007f573364d090 R08: 0000200000000100 R09: 000000000000001c
[  392.472415][T25773] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  392.472466][T25773] R13: 00007f5734e66218 R14: 00007f5734e66180 R15: 00007ffea2002428
[  392.472482][T25773]  </TASK>
[  392.716985][   T29] audit: type=1400 audit(2000000020.536:18146): avc:  denied  { ioctl } for  pid=25770 comm="syz.4.5466" path="socket:[67332]" dev="sockfs" ino=67332 ioctlcmd=0x89f2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  392.739780][T25776] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5468'.
[  392.787885][   T29] audit: type=1326 audit(2000000020.607:18147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25781 comm="syz.2.5471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1407f0ebe9 code=0x7ffc0000
[  392.811647][   T29] audit: type=1326 audit(2000000020.607:18148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25781 comm="syz.2.5471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1407f0ebe9 code=0x7ffc0000
[  392.835390][   T29] audit: type=1326 audit(2000000020.607:18149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25781 comm="syz.2.5471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=162 compat=0 ip=0x7f1407f0ebe9 code=0x7ffc0000
[  392.878492][   T29] audit: type=1326 audit(2000000020.687:18150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25781 comm="syz.2.5471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1407f0ebe9 code=0x7ffc0000
[  392.902342][   T29] audit: type=1326 audit(2000000020.687:18151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25781 comm="syz.2.5471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1407f0ebe9 code=0x7ffc0000
[  392.922648][T25783] loop0: detected capacity change from 0 to 8192
[  392.928117][   T29] audit: type=1326 audit(2000000020.727:18152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25781 comm="syz.2.5471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1407f0ebe9 code=0x7ffc0000
[  393.004047][T25783]  loop0: p1 p2 p3 p4
[  393.008186][T25783] loop0: p1 start 51379968 is beyond EOD, truncated
[  393.016039][   T29] audit: type=1326 audit(2000000020.797:18153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25781 comm="syz.2.5471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1407f0ebe9 code=0x7ffc0000
[  393.039729][   T29] audit: type=1326 audit(2000000020.807:18154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25781 comm="syz.2.5471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1407f0ebe9 code=0x7ffc0000
[  393.064097][T25783] loop0: p3 size 15991040 extends beyond EOD, truncated
[  393.074849][T25783] loop0: p4 start 16711680 is beyond EOD, truncated
[  393.086559][T25793] loop3: detected capacity change from 0 to 512
[  393.094663][T25793] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  393.130266][T25793] ext4 filesystem being mounted at /554/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  393.145290][T25793] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.5474: corrupted xattr block 19: overlapping e_value 
[  393.163703][T25793] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[  393.196573][T25793] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.5474: corrupted xattr block 19: overlapping e_value 
[  393.211816][T25810] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.5474: corrupted xattr block 19: overlapping e_value 
[  393.227630][T25783] loop0: detected capacity change from 0 to 2048
[  393.246348][T25793] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[  393.256814][T25810] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[  393.271547][T25793] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.5474: corrupted xattr block 19: overlapping e_value 
[  393.287029][T25783]  loop0: p1 < > p4
[  393.291763][T25783] loop0: p4 size 8388608 extends beyond EOD, truncated
[  393.366078][T25823] loop0: detected capacity change from 0 to 1024
[  393.399258][T25823] EXT4-fs: Ignoring removed i_version option
[  393.408643][T25827] loop3: detected capacity change from 0 to 2048
[  393.418227][T25823] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  393.440116][T25823] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.5479: Invalid block bitmap block 0 in block_group 0
[  393.458137][T25823] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.5479: Failed to acquire dquot type 0
[  393.476597][T25814] loop9: detected capacity change from 0 to 7
[  393.488030][T25823] EXT4-fs error (device loop0): ext4_free_blocks:6696: comm syz.0.5479: Freeing blocks not in datazone - block = 0, count = 4096
[  393.502982][T25814] Buffer I/O error on dev loop9, logical block 0, async page read
[  393.511482][T25814] Buffer I/O error on dev loop9, logical block 0, async page read
[  393.511568][T12272] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  393.519404][T25814]  loop9: unable to read partition table
[  393.539677][T25823] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.5479: Invalid inode bitmap blk 0 in block_group 0
[  393.545156][T12272] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  393.552385][T25814] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  393.552385][T25814] 
) failed (rc=-5)
[  393.562048][T25823] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[  393.583430][ T3505] EXT4-fs error (device loop0): ext4_release_dquot:6973: comm kworker/u8:8: Failed to release dquot type 0
[  393.605328][T25823] EXT4-fs (loop0): 1 orphan inode deleted
[  393.679769][T25846] loop0: detected capacity change from 0 to 512
[  393.691003][T25848] syz_tun: refused to change device tx_queue_len
[  393.695188][T25846] msdos: Bad value for 'uid'
[  393.702155][T25846] msdos: Bad value for 'uid'
[  393.767694][T25852] loop8: detected capacity change from 16383 to 0
[  394.085148][T25868] loop0: detected capacity change from 0 to 512
[  394.092626][T25868] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  394.110660][T25868] ext4 filesystem being mounted at /523/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  394.123215][T25868] EXT4-fs error (device loop0): ext4_xattr_block_get:593: inode #15: comm syz.0.5489: corrupted xattr block 19: overlapping e_value 
[  394.150069][T25868] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop0 ino=15
[  394.168906][T25868] EXT4-fs error (device loop0): ext4_xattr_block_get:593: inode #15: comm syz.0.5489: corrupted xattr block 19: overlapping e_value 
[  394.184567][T25872] EXT4-fs error (device loop0): ext4_xattr_block_get:593: inode #15: comm syz.0.5489: corrupted xattr block 19: overlapping e_value 
[  394.199804][T25872] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop0 ino=15
[  394.200322][T25868] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop0 ino=15
[  394.239426][T25868] EXT4-fs error (device loop0): ext4_xattr_block_get:593: inode #15: comm syz.0.5489: corrupted xattr block 19: overlapping e_value 
[  394.445348][T25887] netlink: 'syz.0.5493': attribute type 9 has an invalid length.
[  394.454611][T25887] netlink: 'syz.0.5493': attribute type 9 has an invalid length.
[  394.472083][T25887] loop0: detected capacity change from 0 to 128
[  394.480460][T25887] EXT4-fs (loop0): couldn't mount as ext3 due to feature incompatibilities
[  394.524598][T25895] FAULT_INJECTION: forcing a failure.
[  394.524598][T25895] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  394.537857][T25895] CPU: 1 UID: 0 PID: 25895 Comm: syz.3.5495 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  394.537890][T25895] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  394.538013][T25895] Call Trace:
[  394.538020][T25895]  <TASK>
[  394.538028][T25895]  __dump_stack+0x1d/0x30
[  394.538048][T25895]  dump_stack_lvl+0xe8/0x140
[  394.538066][T25895]  dump_stack+0x15/0x1b
[  394.538082][T25895]  should_fail_ex+0x265/0x280
[  394.538107][T25895]  should_fail+0xb/0x20
[  394.538182][T25895]  should_fail_usercopy+0x1a/0x20
[  394.538204][T25895]  _copy_from_iter+0xd2/0xe80
[  394.538228][T25895]  ? __build_skb_around+0x1a0/0x200
[  394.538249][T25895]  ? __alloc_skb+0x223/0x320
[  394.538340][T25895]  netlink_sendmsg+0x471/0x6b0
[  394.538388][T25895]  ? __pfx_netlink_sendmsg+0x10/0x10
[  394.538411][T25895]  __sock_sendmsg+0x142/0x180
[  394.538446][T25895]  ____sys_sendmsg+0x31e/0x4e0
[  394.538476][T25895]  ___sys_sendmsg+0x17b/0x1d0
[  394.538594][T25895]  __x64_sys_sendmsg+0xd4/0x160
[  394.538627][T25895]  x64_sys_call+0x191e/0x2ff0
[  394.538706][T25895]  do_syscall_64+0xd2/0x200
[  394.538883][T25895]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  394.538905][T25895]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  394.538937][T25895]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  394.538963][T25895] RIP: 0033:0x7f5734c2ebe9
[  394.538989][T25895] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  394.539015][T25895] RSP: 002b:00007f573368f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  394.539037][T25895] RAX: ffffffffffffffda RBX: 00007f5734e65fa0 RCX: 00007f5734c2ebe9
[  394.539049][T25895] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000006
[  394.539062][T25895] RBP: 00007f573368f090 R08: 0000000000000000 R09: 0000000000000000
[  394.539092][T25895] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  394.539104][T25895] R13: 00007f5734e66038 R14: 00007f5734e65fa0 R15: 00007ffea2002428
[  394.539124][T25895]  </TASK>
[  394.746743][T25898] loop0: detected capacity change from 0 to 512
[  394.779880][T25898] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  394.800081][T25898] ext4 filesystem being mounted at /528/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  394.821633][T25903] loop4: detected capacity change from 0 to 2048
[  394.828803][T25897] EXT4-fs error (device loop0): ext4_xattr_block_get:593: inode #15: comm syz.0.5496: corrupted xattr block 19: overlapping e_value 
[  394.843081][T25897] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop0 ino=15
[  394.852831][T25897] EXT4-fs error (device loop0): ext4_xattr_block_get:593: inode #15: comm syz.0.5496: corrupted xattr block 19: overlapping e_value 
[  394.874173][T25898] EXT4-fs error (device loop0): ext4_xattr_block_get:593: inode #15: comm syz.0.5496: corrupted xattr block 19: overlapping e_value 
[  394.898148][T25897] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop0 ino=15
[  394.909163][T14618] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  394.924609][T25898] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop0 ino=15
[  394.925554][T14618] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  394.944000][T25897] EXT4-fs error (device loop0): ext4_xattr_block_get:593: inode #15: comm syz.0.5496: corrupted xattr block 19: overlapping e_value 
[  395.241891][T25925] loop0: detected capacity change from 0 to 1024
[  395.285259][T25925] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4183: comm syz.0.5502: Allocating blocks 385-513 which overlap fs metadata
[  395.325126][T25925] EXT4-fs (loop0): pa ffff88810728ecb0: logic 16, phys. 129, len 24
[  395.333260][T25925] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[  395.368228][T25925] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 28 with max blocks 4 with error 28
[  395.380646][T25925] EXT4-fs (loop0): This should not happen!! Data will be lost
[  395.380646][T25925] 
[  395.390382][T25925] EXT4-fs (loop0): Total free blocks count 0
[  395.396385][T25925] EXT4-fs (loop0): Free/Dirty block details
[  395.402370][T25925] EXT4-fs (loop0): free_blocks=128
[  395.407538][T25925] EXT4-fs (loop0): dirty_blocks=0
[  395.412570][T25925] EXT4-fs (loop0): Block reservation details
[  395.418586][T25925] EXT4-fs (loop0): i_reserved_data_blocks=0
[  395.477919][T25932] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5503'.
[  395.506444][T25934] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5505'.
[  395.589525][T25946] loop4: detected capacity change from 0 to 2048
[  395.625472][T14618] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  395.676398][T14618] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  395.789118][T25968] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5513'.
[  395.835577][T25970] loop4: detected capacity change from 0 to 2048
[  395.865245][T14618] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  395.888505][T14618] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  395.899230][T25955] loop1: detected capacity change from 0 to 8192
[  395.999500][T25981] loop4: detected capacity change from 0 to 8192
[  396.006376][T25955]  loop1: p1 p2 p3 p4
[  396.011658][T25955] loop1: p1 start 51379968 is beyond EOD, truncated
[  396.021274][T25955] loop1: p3 size 15991040 extends beyond EOD, truncated
[  396.029364][T25981]  loop4: p1 p2 p3 p4
[  396.033496][T25981] loop4: p1 start 51379968 is beyond EOD, truncated
[  396.041619][T25981] loop4: p3 size 15991040 extends beyond EOD, truncated
[  396.050049][T25981] loop4: p4 start 16711680 is beyond EOD, truncated
[  396.064543][T25955] loop1: p4 start 16711680 is beyond EOD, truncated
[  396.075292][T26005] FAULT_INJECTION: forcing a failure.
[  396.075292][T26005] name failslab, interval 1, probability 0, space 0, times 0
[  396.088086][T26005] CPU: 1 UID: 0 PID: 26005 Comm: syz.2.5522 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  396.088118][T26005] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  396.088132][T26005] Call Trace:
[  396.088140][T26005]  <TASK>
[  396.088150][T26005]  __dump_stack+0x1d/0x30
[  396.088174][T26005]  dump_stack_lvl+0xe8/0x140
[  396.088196][T26005]  dump_stack+0x15/0x1b
[  396.088236][T26005]  should_fail_ex+0x265/0x280
[  396.088262][T26005]  should_failslab+0x8c/0xb0
[  396.088288][T26005]  kmem_cache_alloc_lru_noprof+0x55/0x310
[  396.088379][T26005]  ? __d_alloc+0x3d/0x340
[  396.088410][T26005]  __d_alloc+0x3d/0x340
[  396.088441][T26005]  d_alloc_pseudo+0x1e/0x80
[  396.088564][T26005]  alloc_file_pseudo+0x71/0x160
[  396.088644][T26005]  anon_inode_getfile+0xa0/0x120
[  396.088676][T26005]  bpf_link_prime+0xfc/0x1d0
[  396.088771][T26005]  bpf_xdp_link_attach+0x217/0x5d0
[  396.088806][T26005]  link_create+0x502/0x6e0
[  396.088840][T26005]  __sys_bpf+0x61d/0x7b0
[  396.088875][T26005]  __x64_sys_bpf+0x41/0x50
[  396.088959][T26005]  x64_sys_call+0x2aea/0x2ff0
[  396.088998][T26005]  do_syscall_64+0xd2/0x200
[  396.089031][T26005]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  396.089058][T26005]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  396.089143][T26005]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  396.089276][T26005] RIP: 0033:0x7f1407f0ebe9
[  396.089296][T26005] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  396.089316][T26005] RSP: 002b:00007f140696f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  396.089339][T26005] RAX: ffffffffffffffda RBX: 00007f1408145fa0 RCX: 00007f1407f0ebe9
[  396.089471][T26005] RDX: 0000000000000040 RSI: 00002000000003c0 RDI: 000000000000001c
[  396.089485][T26005] RBP: 00007f140696f090 R08: 0000000000000000 R09: 0000000000000000
[  396.089500][T26005] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  396.089521][T26005] R13: 00007f1408146038 R14: 00007f1408145fa0 R15: 00007ffe3ff19718
[  396.089541][T26005]  </TASK>
[  396.096860][T25981] loop4: detected capacity change from 0 to 2048
[  396.125017][T26007] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5523'.
[  396.180643][T25955] loop1: detected capacity change from 0 to 2048
[  396.346932][T25955]  loop1: p1 < > p4
[  396.351156][T25981]  loop4: p1 < > p4
[  396.355534][T25981] loop4: p4 size 8388608 extends beyond EOD, truncated
[  396.383769][T25955] loop1: p4 size 8388608 extends beyond EOD, truncated
[  396.437277][T26039] loop4: detected capacity change from 0 to 128
[  396.456492][T26039] vfat: Unknown parameter '00000000000000000000'
[  396.518474][T26051] loop4: detected capacity change from 0 to 2048
[  396.544071][T26061] loop0: detected capacity change from 0 to 512
[  396.550344][T26062] ipvlan2: entered promiscuous mode
[  396.568074][T26061] EXT4-fs warning (device loop0): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  396.584691][T26074] loop1: detected capacity change from 0 to 512
[  396.597649][T26074] EXT4-fs (loop1): orphan cleanup on readonly fs
[  396.602057][T14618] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  396.619290][T26074] EXT4-fs error (device loop1): ext4_orphan_get:1418: comm syz.1.5538: bad orphan inode 13
[  396.620116][T26079] random: crng reseeded on system resumption
[  396.635545][T26061] EXT4-fs (loop0): mount failed
[  396.646255][T14618] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  396.692690][T26085] loop4: detected capacity change from 0 to 1024
[  396.711648][T26074] ext4_test_bit(bit=12, block=18) = 1
[  396.717089][T26074] is_bad_inode(inode)=0
[  396.721338][T26074] NEXT_ORPHAN(inode)=2130706432
[  396.726249][T26074] max_ino=32
[  396.729452][T26074] i_nlink=1
[  396.740816][T26085] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.5539: Allocating blocks 385-513 which overlap fs metadata
[  396.757853][T26085] EXT4-fs (loop4): pa ffff8881071cb770: logic 16, phys. 129, len 24
[  396.765885][T26085] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[  396.808710][T26085] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 28 with max blocks 4 with error 28
[  396.821151][T26085] EXT4-fs (loop4): This should not happen!! Data will be lost
[  396.821151][T26085] 
[  396.830812][T26085] EXT4-fs (loop4): Total free blocks count 0
[  396.836858][T26085] EXT4-fs (loop4): Free/Dirty block details
[  396.842879][T26085] EXT4-fs (loop4): free_blocks=128
[  396.848038][T26085] EXT4-fs (loop4): dirty_blocks=0
[  396.853159][T26085] EXT4-fs (loop4): Block reservation details
[  396.859264][T26085] EXT4-fs (loop4): i_reserved_data_blocks=0
[  397.018573][T26099] 9pnet_fd: Insufficient options for proto=fd
[  397.097715][   T29] kauditd_printk_skb: 137 callbacks suppressed
[  397.097733][   T29] audit: type=1326 audit(2000000024.929:18288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26103 comm="syz.4.5545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb460cebe9 code=0x7ffc0000
[  397.127620][   T29] audit: type=1326 audit(2000000024.929:18289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26103 comm="syz.4.5545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb460cebe9 code=0x7ffc0000
[  397.208235][   T29] audit: type=1326 audit(2000000024.929:18290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26105 comm="syz.0.5546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1c8d9ebe9 code=0x7ffc0000
[  397.232120][   T29] audit: type=1326 audit(2000000024.929:18291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26105 comm="syz.0.5546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1c8d9ebe9 code=0x7ffc0000
[  397.256614][   T29] audit: type=1326 audit(2000000024.929:18292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26105 comm="syz.0.5546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff1c8d9ebe9 code=0x7ffc0000
[  397.280405][   T29] audit: type=1326 audit(2000000024.929:18293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26105 comm="syz.0.5546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1c8d9ebe9 code=0x7ffc0000
[  397.304220][   T29] audit: type=1326 audit(2000000024.929:18294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26105 comm="syz.0.5546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1c8d9ebe9 code=0x7ffc0000
[  397.327853][   T29] audit: type=1326 audit(2000000024.929:18295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26105 comm="syz.0.5546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff1c8d9ebe9 code=0x7ffc0000
[  397.351565][   T29] audit: type=1326 audit(2000000024.929:18296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26105 comm="syz.0.5546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1c8d9ebe9 code=0x7ffc0000
[  397.375218][   T29] audit: type=1326 audit(2000000024.929:18297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26105 comm="syz.0.5546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff1c8d9ebe9 code=0x7ffc0000
[  397.568921][T26120] loop0: detected capacity change from 0 to 512
[  397.616335][T26120] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  397.678002][T26120] ext4 filesystem being mounted at /542/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  397.699078][T26120] EXT4-fs error (device loop0): ext4_xattr_block_get:593: inode #15: comm syz.0.5551: corrupted xattr block 19: overlapping e_value 
[  397.738018][T26120] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop0 ino=15
[  397.758689][T26133] loop4: detected capacity change from 0 to 512
[  397.768411][T26134] EXT4-fs error (device loop0): ext4_xattr_block_get:593: inode #15: comm syz.0.5551: corrupted xattr block 19: overlapping e_value 
[  397.768390][T26120] EXT4-fs error (device loop0): ext4_xattr_block_get:593: inode #15: comm syz.0.5551: corrupted xattr block 19: overlapping e_value 
[  397.768682][T26120] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop0 ino=15
[  397.817656][T26134] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop0 ino=15
[  397.847861][T26120] EXT4-fs error (device loop0): ext4_xattr_block_get:593: inode #15: comm syz.0.5551: corrupted xattr block 19: overlapping e_value 
[  397.863255][T26133] hub 8-0:1.0: USB hub found
[  397.873269][T26133] hub 8-0:1.0: 8 ports detected
[  397.933072][T26141] loop4: detected capacity change from 0 to 1024
[  398.072626][T26141] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.5555: Allocating blocks 449-513 which overlap fs metadata
[  398.108520][T26141] EXT4-fs (loop4): pa ffff88810728ecb0: logic 48, phys. 177, len 21
[  398.116734][T26141] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  398.159125][T26141] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 28 with max blocks 4 with error 28
[  398.171545][T26141] EXT4-fs (loop4): This should not happen!! Data will be lost
[  398.171545][T26141] 
[  398.181209][T26141] EXT4-fs (loop4): Total free blocks count 0
[  398.187205][T26141] EXT4-fs (loop4): Free/Dirty block details
[  398.193132][T26141] EXT4-fs (loop4): free_blocks=64
[  398.198280][T26141] EXT4-fs (loop4): dirty_blocks=0
[  398.203336][T26141] EXT4-fs (loop4): Block reservation details
[  398.209357][T26141] EXT4-fs (loop4): i_reserved_data_blocks=0
[  398.356079][T26161] loop3: detected capacity change from 0 to 512
[  398.366578][T26167] loop4: detected capacity change from 0 to 2048
[  398.376113][T26161] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  398.398432][T14618] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  398.408929][T26175] loop1: detected capacity change from 0 to 1024
[  398.420488][T14618] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  398.421361][T26174] FAULT_INJECTION: forcing a failure.
[  398.421361][T26174] name failslab, interval 1, probability 0, space 0, times 0
[  398.434623][T26161] ext4 filesystem being mounted at /566/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  398.441912][T26174] CPU: 1 UID: 0 PID: 26174 Comm: syz.2.5565 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  398.441941][T26174] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  398.441953][T26174] Call Trace:
[  398.441961][T26174]  <TASK>
[  398.441970][T26174]  __dump_stack+0x1d/0x30
[  398.442042][T26174]  dump_stack_lvl+0xe8/0x140
[  398.442061][T26174]  dump_stack+0x15/0x1b
[  398.442078][T26174]  should_fail_ex+0x265/0x280
[  398.442102][T26174]  should_failslab+0x8c/0xb0
[  398.442206][T26174]  kmem_cache_alloc_noprof+0x50/0x310
[  398.442232][T26174]  ? alloc_empty_file+0x76/0x200
[  398.442304][T26174]  alloc_empty_file+0x76/0x200
[  398.442332][T26174]  alloc_file_pseudo+0xc6/0x160
[  398.442388][T26174]  anon_inode_getfile_fmode+0xa5/0x140
[  398.442421][T26174]  do_eventfd+0x116/0x1b0
[  398.442483][T26174]  __x64_sys_eventfd+0x20/0x30
[  398.442504][T26174]  x64_sys_call+0x2e91/0x2ff0
[  398.442525][T26174]  do_syscall_64+0xd2/0x200
[  398.442609][T26174]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  398.442632][T26174]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  398.442663][T26174]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  398.442684][T26174] RIP: 0033:0x7f1407f0ebe9
[  398.442701][T26174] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  398.442719][T26174] RSP: 002b:00007f140696f038 EFLAGS: 00000246 ORIG_RAX: 000000000000011c
[  398.442739][T26174] RAX: ffffffffffffffda RBX: 00007f1408145fa0 RCX: 00007f1407f0ebe9
[  398.442753][T26174] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002
[  398.442832][T26174] RBP: 00007f140696f090 R08: 0000000000000000 R09: 0000000000000000
[  398.442845][T26174] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  398.442857][T26174] R13: 00007f1408146038 R14: 00007f1408145fa0 R15: 00007ffe3ff19718
[  398.442874][T26174]  </TASK>
[  398.498685][T26175] ext4 filesystem being mounted at /428/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  398.505137][T26182] netlink: 16178 bytes leftover after parsing attributes in process `syz.2.5567'.
[  398.511512][T26161] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.5562: corrupted xattr block 19: overlapping e_value 
[  398.673586][T26161] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[  398.683333][T26161] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.5562: corrupted xattr block 19: overlapping e_value 
[  398.683382][T26183] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.5562: corrupted xattr block 19: overlapping e_value 
[  398.683622][T26183] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[  398.698889][T26161] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[  398.720183][T26187] loop4: detected capacity change from 0 to 512
[  398.730714][T26161] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.5562: corrupted xattr block 19: overlapping e_value 
[  398.752298][T26187] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  398.770443][T26187] ext4 filesystem being mounted at /555/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  398.812944][T26187] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.5566: corrupted xattr block 19: overlapping e_value 
[  398.827455][T26187] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[  398.836606][T26187] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.5566: corrupted xattr block 19: overlapping e_value 
[  398.851976][T26187] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[  398.852418][T26203] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5569'.
[  398.861342][T26187] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.5566: corrupted xattr block 19: overlapping e_value 
[  398.887829][T26205] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.5566: corrupted xattr block 19: overlapping e_value 
[  398.901573][T26198] netlink: 96 bytes leftover after parsing attributes in process `syz.1.5568'.
[  398.911073][T26205] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[  398.935365][T26213] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5570'.
[  398.973389][T26228] loop3: detected capacity change from 0 to 128
[  398.996481][T26228] ext4 filesystem being mounted at /568/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  399.026068][T26235] FAULT_INJECTION: forcing a failure.
[  399.026068][T26235] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  399.039281][T26235] CPU: 1 UID: 0 PID: 26235 Comm: syz.0.5575 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  399.039309][T26235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  399.039321][T26235] Call Trace:
[  399.039330][T26235]  <TASK>
[  399.039338][T26235]  __dump_stack+0x1d/0x30
[  399.039358][T26235]  dump_stack_lvl+0xe8/0x140
[  399.039418][T26235]  dump_stack+0x15/0x1b
[  399.039441][T26235]  should_fail_ex+0x265/0x280
[  399.039462][T26235]  should_fail+0xb/0x20
[  399.039480][T26235]  should_fail_usercopy+0x1a/0x20
[  399.039551][T26235]  _copy_from_user+0x1c/0xb0
[  399.039647][T26235]  perf_copy_attr+0x145/0x610
[  399.039748][T26235]  __se_sys_perf_event_open+0x67/0x11c0
[  399.039841][T26235]  ? vfs_write+0x7e8/0x960
[  399.039860][T26235]  ? __rcu_read_unlock+0x4f/0x70
[  399.039883][T26235]  __x64_sys_perf_event_open+0x67/0x80
[  399.039908][T26235]  x64_sys_call+0x7bd/0x2ff0
[  399.039999][T26235]  do_syscall_64+0xd2/0x200
[  399.040026][T26235]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  399.040046][T26235]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  399.040133][T26235]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  399.040159][T26235] RIP: 0033:0x7ff1c8d9ebe9
[  399.040173][T26235] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  399.040243][T26235] RSP: 002b:00007ff1c7807038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  399.040262][T26235] RAX: ffffffffffffffda RBX: 00007ff1c8fd5fa0 RCX: 00007ff1c8d9ebe9
[  399.040273][T26235] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000040
[  399.040284][T26235] RBP: 00007ff1c7807090 R08: 000000000000000a R09: 0000000000000000
[  399.040295][T26235] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001
[  399.040306][T26235] R13: 00007ff1c8fd6038 R14: 00007ff1c8fd5fa0 R15: 00007fffc8ce9ab8
[  399.040349][T26235]  </TASK>
[  399.046249][T26228] FAULT_INJECTION: forcing a failure.
[  399.046249][T26228] name failslab, interval 1, probability 0, space 0, times 0
[  399.106443][ T3399] kernel write not supported for file /1344/oom_adj (pid: 3399 comm: kworker/1:6)
[  399.107835][T26228] CPU: 0 UID: 0 PID: 26228 Comm: syz.3.5573 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  399.107862][T26228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  399.107928][T26228] Call Trace:
[  399.107935][T26228]  <TASK>
[  399.107942][T26228]  __dump_stack+0x1d/0x30
[  399.108039][T26228]  dump_stack_lvl+0xe8/0x140
[  399.108059][T26228]  dump_stack+0x15/0x1b
[  399.108094][T26228]  should_fail_ex+0x265/0x280
[  399.108117][T26228]  should_failslab+0x8c/0xb0
[  399.108213][T26228]  kmem_cache_alloc_noprof+0x50/0x310
[  399.108240][T26228]  ? ext4_mb_new_blocks+0x2ce/0x2080
[  399.108269][T26228]  ext4_mb_new_blocks+0x2ce/0x2080
[  399.108298][T26228]  ? ext4_ext_search_right+0x317/0x4f0
[  399.108384][T26228]  ? ext4_ext_check_overlap+0x1f6/0x2f0
[  399.108410][T26228]  ext4_ext_map_blocks+0xff5/0x38a0
[  399.108437][T26228]  ? _raw_write_unlock+0xd/0x30
[  399.108467][T26228]  ? ext4_es_insert_extent+0x1aec/0x1c10
[  399.108549][T26228]  ? ext4_es_lookup_extent+0x352/0x4f0
[  399.108602][T26228]  ext4_map_blocks+0x5ee/0xd00
[  399.108634][T26228]  _ext4_get_block+0x10a/0x350
[  399.108731][T26228]  ext4_get_block_unwritten+0x2a/0xb0
[  399.108817][T26228]  ext4_block_write_begin+0x5e5/0xc00
[  399.108904][T26228]  ? __pfx_ext4_get_block_unwritten+0x10/0x10
[  399.108933][T26228]  ? folio_mapping+0xb9/0x120
[  399.109022][T26228]  ext4_write_begin+0x647/0xeb0
[  399.109101][T26228]  ext4_da_write_begin+0x1fb/0x6e0
[  399.109124][T26228]  ? balance_dirty_pages_ratelimited_flags+0x40b/0x5e0
[  399.109152][T26228]  generic_perform_write+0x181/0x490
[  399.109337][T26228]  ext4_buffered_write_iter+0x1ee/0x3c0
[  399.109410][T26228]  ? ext4_file_write_iter+0xfe/0xf00
[  399.109439][T26228]  ext4_file_write_iter+0x383/0xf00
[  399.109475][T26228]  ? kstrtouint_from_user+0x9f/0xf0
[  399.109500][T26228]  ? avc_policy_seqno+0x15/0x30
[  399.109539][T26228]  ? selinux_file_permission+0x1e4/0x320
[  399.109562][T26228]  ? __pfx_ext4_file_write_iter+0x10/0x10
[  399.109591][T26228]  vfs_write+0x527/0x960
[  399.109671][T26228]  ksys_write+0xda/0x1a0
[  399.109694][T26228]  __x64_sys_write+0x40/0x50
[  399.109716][T26228]  x64_sys_call+0x27fe/0x2ff0
[  399.109798][T26228]  do_syscall_64+0xd2/0x200
[  399.109826][T26228]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  399.109849][T26228]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  399.109896][T26228]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  399.109916][T26228] RIP: 0033:0x7f5734c2ebe9
[  399.109932][T26228] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  399.109950][T26228] RSP: 002b:00007f573368f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  399.109970][T26228] RAX: ffffffffffffffda RBX: 00007f5734e65fa0 RCX: 00007f5734c2ebe9
[  399.110041][T26228] RDX: 000000000000fea7 RSI: 0000200000000040 RDI: 0000000000000005
[  399.110054][T26228] RBP: 00007f573368f090 R08: 0000000000000000 R09: 0000000000000000
[  399.110066][T26228] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  399.110078][T26228] R13: 00007f5734e66038 R14: 00007f5734e65fa0 R15: 00007ffea2002428
[  399.110096][T26228]  </TASK>
[  399.144062][T26236] loop4: detected capacity change from 0 to 764
[  399.206665][T26242] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5577'.
[  399.579822][T26236] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  399.683778][T26258] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  399.690334][T26258] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  399.698048][T26258] vhci_hcd vhci_hcd.0: Device attached
[  399.706586][T26258] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  399.718094][T26258] vhci_hcd vhci_hcd.0: pdev(0) rhport(2) sockfd(12)
[  399.724715][T26258] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  399.732219][T26258] vhci_hcd vhci_hcd.0: Device attached
[  399.743378][T26258] vhci_hcd vhci_hcd.0: pdev(0) rhport(3) sockfd(14)
[  399.750064][T26258] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  399.757861][T26258] vhci_hcd vhci_hcd.0: Device attached
[  399.810434][T26275] ==================================================================
[  399.818562][T26275] BUG: KCSAN: data-race in mas_state_walk / mas_wr_store_entry
[  399.826127][T26275] 
[  399.828459][T26275] write to 0xffff8881044b4408 of 8 bytes by task 26274 on cpu 0:
[  399.836258][T26275]  mas_wr_store_entry+0x1581/0x2b50
[  399.841466][T26275]  mas_store_prealloc+0x74d/0x9e0
[  399.846494][T26275]  commit_merge+0x6a5/0x730
[  399.850997][T26275]  vma_expand+0x220/0x320
[  399.855325][T26275]  vma_merge_new_range+0x296/0x310
[  399.860433][T26275]  mmap_region+0xa59/0x1630
[  399.864947][T26275]  do_mmap+0x9b3/0xbe0
[  399.869019][T26275]  vm_mmap_pgoff+0x17a/0x2e0
[  399.873616][T26275]  ksys_mmap_pgoff+0xc2/0x310
[  399.878290][T26275]  x64_sys_call+0x14a3/0x2ff0
[  399.882975][T26275]  do_syscall_64+0xd2/0x200
[  399.887480][T26275]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  399.893374][T26275] 
[  399.895693][T26275] read to 0xffff8881044b4408 of 8 bytes by task 26275 on cpu 1:
[  399.903320][T26275]  mas_state_walk+0x28f/0x650
[  399.908002][T26275]  mas_walk+0x60/0x150
[  399.912076][T26275]  lock_vma_under_rcu+0x8d/0x160
[  399.917023][T26275]  do_user_addr_fault+0x233/0x1090
[  399.922140][T26275]  exc_page_fault+0x62/0xa0
[  399.926646][T26275]  asm_exc_page_fault+0x26/0x30
[  399.931494][T26275] 
[  399.933812][T26275] value changed: 0x00007feb44accfff -> 0x00007feb44aabfff
[  399.940907][T26275] 
[  399.943223][T26275] Reported by Kernel Concurrency Sanitizer on:
[  399.949369][T26275] CPU: 1 UID: 0 PID: 26275 Comm: syz.4.5585 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  399.959171][T26275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  399.969223][T26275] ==================================================================
[  399.992835][T26266] vhci_hcd: connection closed
[  399.993333][T26259] vhci_hcd: connection closed
[  399.993746][  T371] vhci_hcd: stop threads
[  400.007197][  T371] vhci_hcd: release socket
[  400.011623][  T371] vhci_hcd: disconnect device
[  400.018755][T26263] vhci_hcd: connection closed
[  400.019773][  T371] vhci_hcd: stop threads
[  400.028920][  T371] vhci_hcd: release socket
[  400.033368][  T371] vhci_hcd: disconnect device
[  400.038525][  T371] vhci_hcd: stop threads
[  400.043488][  T371] vhci_hcd: release socket
[  400.048000][  T371] vhci_hcd: disconnect device