last executing test programs:

3.903339681s ago: executing program 3 (id=1838):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x1}, 0x8002, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_open_procfs(0x0, 0x0)
utimensat(0xffffffffffffff9c, 0x0, 0x0, 0x0) (fail_nth: 4)

3.527668044s ago: executing program 3 (id=1845):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000080)={0x18, 0x0, 0x7b4e46c6d09b23f9, 0x70bd25, 0x25dfdbfd, {}, [@TIPC_NLA_LINK={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x8000}, 0x80)
socket$netlink(0x10, 0x3, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3, 0x0, 0x1000000100}, 0x18)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r4, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
sendto$inet6(r4, &(0x7f00000002c0)="b1", 0x1, 0x0, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)

2.876563419s ago: executing program 0 (id=1855):
syz_mount_image$ext4(&(0x7f0000000400)='ext4\x00', &(0x7f0000000440)='./file0\x00', 0x0, &(0x7f0000000480), 0x1, 0x3e3, &(0x7f00000004c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x42, 0x1)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r1, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000980)={{r1}, &(0x7f0000000900), &(0x7f0000000940)}, 0x20)
pwritev2(r0, &(0x7f0000000000)=[{&(0x7f00000008c0)="c47b786ab00e415864e698920d6685d47960a663c086af2cd41d7f89a4cef2769edf587f443d8223759fedb7f6aa4204299585533d043b5c9b66c536b2cd6c06cc7c43afae2107e30a21109c3a88f01675f6ee7453c890b7fcd4c1bfcdc5bbda714a36057bb7d7518c023c94efe04a633fc39d6eed2c37f353c410dd6cb052cd725f68788573e23952b56e64b86e2afd8892671ef752671350cc9b90e033dc5daa6eab11f40b48d5d7de1d9289801e06a9575e3f39e36f0362d9dd2469b0dcda431086df757bd23ac72282eeb008dbc208e3f4d14bebd8fdddf5bfe32e94f2e00f8ad6193de2e1aaa5ed820b9d855a49129cad47173979e2afbf8816e7ec61ab14fe35e5901be7ef6cc30fa92c162464bba72c0d345d2fcc69b61fa4bfe9e643544382be413830d12479c2b41d94930c8bdb3fc61322e11a48fdf85fa917cdcce16c0e644fc17bfac7c0b932176df29f8ec814dc3e41402f333f5fba0fa7f64cca769aa01577c5c81385f43304df83d5ba39ed556db53af2411b4e8f9c94402b26069da8ffa9adbfdc4632206649cb39819684902dfb9a1d5cc1381e043c0edc17b44c90745958dabec07c36b689402de071fcc417e21d3e40a5e42c516ea71ed8d3f6bfc83a95f217e473de7d4825d09b295173237cfa30a75b82be2d9cbe8f8c708b73abddfeeef456aa8366f1ed54b042df84c0a5d6a12674e74c3c3e8085e5884a8b8ef379f513a47cee41c38e628474b6e7536bef3e238b2cd6e3aa0cabf3fa7af2de8c9c269afa71946a798816370a81df4508141c35cb0f4fe119c299abdbdd343fc0c7f769c6d20e84d941c2afb3a40d1e6944631bff3a7d191bb0b71b0733c5ea7f99a515ccd26c21957c6fac71d95a27c5a499e5930f9801f75622b413b93193efd8af922fd24539de9869c0ab59dbac3b064925a17de4edd35097b6c44633b134dea53e6c5e72a6f45283d305289f59041155af7f8049fb7163b2781677787cef33a9407dbad40c9bd1e7e27541e4ecff2de9b727c1e08fcf15973003a1d7e605b54de515bf3b2d589a4622f38f82c513f14fbb8fe68ab7434f98c35b5cd48f087aad7f430670cc5a4429dc43c7846efdf7dbcff1c9e59e1e9dd2730a532c6226a5b760a679dcdebe6c148ee8ccc5deb68a7a1c59dd9f295d5a97a10d24bfc127b3ba09b7d6acd43c63d4365822f56eb8a376b7f2ddbafae68456c0e59934280558b1262ba866933e806b5e48146722194b025c3570915607d8d0b32e301b935797c913a7472d2d9504e1fdf4d9cc54750a21ad8a8e7c5d07ab79d6cf0fa99c2735cd08dfd49452e073df60cba18474f26312e49e276e1a9d411df96da53e171ecc25dba3b285297f471eeb656ce52db6e274c48f0c56684dc7f7ee7f1d418e99be0a2fe948272a5b09972eb493cfd28122110f1d34c4773c34b1fb6e8404dc1eedaf0f38c69c13f7712f0ac02074b6ac46bb53647057df74791dfdd30390be04f00fb743d0462dc3ee39fbc57d76a85d574c12e365a7799c4ef8851a5b77a3dca57ed0c6dd449117b10ad98192e46597c8d92ef00413eb54c1495c81e4b0e9e7aeb61b33e01e7d894908ca76cceca018447c3c52018c10a0e97366d83af3f4be40e6fccdcadb0bde1e0fdb350e7524a773cc9422f72847ef2fafbddb28188d1b6c74e87f9912559ec95b2d7adc2d12e18b51cc445deeb002978ee693908c040d9779dfb60b4803960dee8ed3c8cc03bbb7b2b9ea3cb47c7fa1fc31a496ffd5066574a397d5463500b787a3475aca7c95e3e4abadcd35fa7af3bf5c74e74503b126617d6d90dbb9c9bf08b6230edd08ee749d2f8f82c10e76aae94581389c63ea5687380d387df3b05c5b933fb8ef8feceda73780235f15435b1e3c9d9c647c5dab3c62d11e930013e370ec159d218a942b600eb7519488e0af7566365521ecdf45471d3461d06e307e9d8d240552aee0c27da7e4197f3d1b5bbc131da32e1345cfa422b62fe04b7db4785c329e19a97e395c40da6df3386575bf1dfff4cf9cd7617d846bcecb65aac46508dfd197d130922466c53993f8d9f48a40c6af05336b93b18a367c75abf12c306df5d7fbfbb3a65010f3ae", 0x5db}], 0x1, 0xa96, 0x900000, 0x0)
fallocate(r0, 0x3, 0x2, 0x8000c62)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000ec0)=ANY=[@ANYBLOB="180000001800ff0f000000001b0000850000006d00000085000000656d0000950067b3a45231a4a0cb4f9e9c44e40f569fa7f0802b3290346c2a5021e214bee9afce5bfb75292cef4f9b75e0723e97b1bc1c8c09f0df9f91bd560871eb33050076e92baa4c3bb6c42ee5cffe77e7f1eb95c3a0800cc23b53a656066dc5bc1e2764c76721910463db7471ffc4b5659e452f189dff06a97d2eb14b8414eee9d5ebb41eb6bfb2d81719689fbaebceb6e8eaddb38f7366d7e50b5d89d1"], &(0x7f0000000080)='GPL\x00', 0x800, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xb, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x2, 0xffffffffffffff6c, 0x0, 0x0, 0x6d, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x10, 0xc, &(0x7f0000001140)=ANY=[@ANYBLOB="d2120f1998471bdf673303d0292869e9e12aa7511be682a5f14dca736ef8b281182a1ba40be199c055077bb0a43e4fa091968df4e35365e96d2e673f00e02d97917d6110d0668177b3dbda63bd6cfdbdbcdb6219cb63ca2f4fb30d43d0b3f33a4ff23a86", @ANYBLOB="14048199299574ada8ef3b14d65dab5def877641f8be2ac68c322c40aefa0fc47ba013a976f3aecce1665b923251b2c33da99cd01e8324d09b15da16ff749970e53992ae53a7d2e6aa304805bdcf9dbcfa64ccdf8ad95973eddc0052b547e331e759933a812a17dadde214a7fa1d5f9fa35a20092ff34708b37accf4c19f71057a01c9acf6242d7dee1a61cd1d54f468eb03ee2a42086360cedb1d3381f84442b652b41d74aaf7190b745381a3ef0a55e20bd0a59fed972df931c5d95d453d8e68e4a13c0e17b7aa9a309df8aae7af", @ANYRES64, @ANYRESDEC=r2], &(0x7f0000000040)='syzkaller\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r3}, 0x18)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r4}, 0x18)
socket$vsock_stream(0x28, 0x1, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x803, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB, @ANYBLOB], 0x3c}}, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000940)={'syztnl0\x00', &(0x7f0000001040)={'gre0\x00', 0x0, 0x10, 0x700, 0x0, 0x0, {{0x2f, 0x4, 0x0, 0x0, 0xbc, 0x67, 0x0, 0x0, 0x0, 0x0, @empty, @empty, {[@ssrr={0x89, 0x1f, 0xb1, [@multicast2, @dev={0xac, 0x14, 0x14, 0x3f}, @broadcast, @initdev={0xac, 0x1e, 0x1, 0x0}, @multicast1, @loopback, @local]}, @timestamp_addr={0x44, 0x44, 0x7a, 0x1, 0x3, [{@loopback, 0x4}, {@broadcast, 0x20000000}, {@empty, 0x5}, {@broadcast}, {@broadcast, 0x1}, {@multicast2, 0x10}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x3}, {@loopback, 0x4}]}, @timestamp_prespec={0x44, 0x44, 0x33, 0x3, 0x6, [{@initdev={0xac, 0x1e, 0x1, 0x0}, 0x7}, {@multicast1, 0x9472}, {@dev={0xac, 0x14, 0x14, 0x60}, 0x1ff}, {@rand_addr=0x64010102, 0x7fff}, {@remote, 0x6}, {@remote, 0x1}, {@dev={0xac, 0x14, 0x14, 0x13}, 0x1}, {@remote, 0xffff0001}]}]}}}}})
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
r8 = dup(r7)
fsetxattr$security_selinux(r8, &(0x7f0000000000), &(0x7f0000000040)='system_u:object_r:mouse_device_t:s0\x00', 0x20, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0xa, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r9 = socket(0x1d, 0x2, 0x6)
syz_usb_connect(0x0, 0x36, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r9, 0x8933, &(0x7f0000000300)={'vxcan1\x00', <r10=>0x0})
bind$can_j1939(r9, &(0x7f0000000040)={0x1d, r10, 0x8000000000000003}, 0x18)
sendmsg$nl_route_sched(r9, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000004740)=@newtaction={0x14, 0x30, 0x1, 0x70bd2c, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4c804}, 0x4091)
close(r9)

2.6754272s ago: executing program 3 (id=1857):
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xb, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
r5 = syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0xa382)
r6 = memfd_create(&(0x7f0000000880)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc90\xb9voI\xa5/\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\x81\x00V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93\x9c5\xcf\t\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\x94\x13^\x13\xaf\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5', 0x2)
ioctl$LOOP_CHANGE_FD(r5, 0x4c00, r6)
r7 = syz_open_procfs(0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r7, &(0x7f0000000380))
r8 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r9 = fcntl$dupfd(r8, 0x406, 0xffffffffffffffff)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r9, &(0x7f0000000040))
sendfile(r5, r5, 0x0, 0x24002de8)
ioctl$LOOP_SET_STATUS(r5, 0x4c02, &(0x7f00000001c0)={0x0, {}, 0x0, {}, 0x4, 0x0, 0x1, 0x18, "28f5c9ea1f1ae4be4111ab18d2da69bde58cd7af40fd150b70aac11c2e16bd5bba7663c435aff94793ddd7aae07ef35f17bf01933bdb6fd7ecdd91b59ca8d541", "07a9310978042a8bfe1406584a128d74694e1df82d00", [0x6]})
r10 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r10, 0x0)
connect$unix(r2, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
accept4(r1, 0x0, 0x0, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, 0x0, &(0x7f0000000140), 0x5, r0}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)

2.646815581s ago: executing program 2 (id=1858):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000002380)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r1}, 0x10)
fchmodat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x38)

2.568650511s ago: executing program 2 (id=1859):
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000002840), 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800"/15, @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kfree\x00', r1}, 0x18)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000240)={'veth1_to_batadv\x00', <r3=>0x0})
bind$packet(r2, &(0x7f0000000080)={0x11, 0x2, r3, 0x1, 0x0, 0x6, @broadcast}, 0x14)
close_range(r0, 0xffffffffffffffff, 0x0)

2.568050461s ago: executing program 2 (id=1860):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000680)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020756c3c00000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000000)='sys_enter\x00', r0}, 0x18)
semctl$SETALL(0x0, 0x0, 0x11, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = socket$key(0xf, 0x3, 0x2)
recvmmsg(r3, &(0x7f0000000440), 0x6f5, 0x2000000022, &(0x7f0000000480)={0x77359400})
setsockopt$sock_int(r3, 0x1, 0x4b, &(0x7f0000000040)=0xfd87, 0x4)
sendmsg$key(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="0216000002"], 0x10}}, 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$EBT_SO_SET_ENTRIES(r4, 0x0, 0x80, &(0x7f0000000300)=@broute={'broute\x00', 0x20, 0x0, 0x90, [0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000040], 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff0000000000000000000000000000000000000042000000000000000000000000000000000000000000000000feffffff00000000"]}, 0x108)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='kfree\x00', r6, 0x0, 0x8}, 0x18)
r7 = socket$inet_icmp(0x2, 0x2, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r7, 0x0, 0x80, &(0x7f0000000140)=@broute={'broute\x00', 0x20, 0x0, 0x90, [0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000040], 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff0000000000000000000000000000000000000000000000000000000010000000000000000000000000000000feffffff00000000"]}, 0x108)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="1e00000000000000080000000300000000020000", @ANYRES32=r5, @ANYBLOB="fc0000120000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0400000002000000020000000300"/28], 0x50)
getgroups(0x1, &(0x7f0000000200)=[0x0])
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r1, 0x40042409, 0x1)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r8, &(0x7f0000000000)={0x0, 0x40000, &(0x7f00000002c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="4400000002010101000000000000000002000000040001801800028014000180080001007f00000108000200ac1414aa140019800800010004000000080002"], 0x44}}, 0x0)

2.456340542s ago: executing program 2 (id=1861):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000102000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{r0}, &(0x7f0000000400), &(0x7f0000000440)=r1}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r1}, 0x10)
fchmodat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x38)

2.406062652s ago: executing program 2 (id=1862):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a0000000100000001020000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000002380)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{r0}, &(0x7f0000000400), &(0x7f0000000440)=r1}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r1}, 0x10)
fchmodat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x38)

2.405570102s ago: executing program 2 (id=1863):
r0 = syz_open_dev$MSR(&(0x7f0000000000), 0x1, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
socket$kcm(0x2, 0xa, 0x2)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
fcntl$getflags(r1, 0x40a)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(0xffffffffffffffff, 0x8983, &(0x7f0000000300)={0x0, 'syzkaller1\x00'})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]})
nanosleep(0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454d9, 0x0)
ioctl$TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
membarrier(0x10, 0x0)
membarrier(0x8, 0x0)
ioctl$X86_IOC_RDMSR_REGS(r0, 0xc02063a0, 0x0)

2.277635373s ago: executing program 0 (id=1864):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x8, 0x4, 0x4, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x3, 0x8, &(0x7f0000000240)=ANY=[@ANYBLOB="1809000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7030000070000008500000021000000b70000000000000095"], &(0x7f0000000640)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000007c0)={{r0}, &(0x7f00000003c0), &(0x7f0000000780)=r1}, 0x20)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x13)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x800714, &(0x7f0000000500), 0xff, 0x485, &(0x7f0000001040)="$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")
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
r4 = socket$inet6_dccp(0xa, 0x6, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000400)={'batadv0\x00', <r5=>0x0})
sendmsg$BATADV_CMD_TP_METER(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x30, r3, 0x3196aee33d918dfd, 0x0, 0x0, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8}]}, 0x30}}, 0x0)
ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, &(0x7f00000001c0)=r5)
r6 = open(&(0x7f0000000040)='./bus\x00', 0x4e142, 0x0)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r7, 0x8933, &(0x7f00000001c0)={'wpan0\x00', <r10=>0x0})
sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(r8, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000680)={0x1c, r9, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r10}]}, 0x1c}, 0x1, 0x0, 0x0, 0x5396ebcfacd913b0}, 0x20004010)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
pwritev2(r6, &(0x7f0000000680)=[{&(0x7f0000000080)="da1d3145e2587a1f0080d23b0990bec86c02e92012503916fc519079009862d1d8349b28f000dc45c3e4d67554fe0d5f17cda9ab898b6484fe7f10942c3d7fcd079db59263ebaf9781cf0e192b19a2a88d1409912bd35a880f154a63c6e8eb2055dfc4bb314c600ca79f4e4475afc1f257de83b2006ae4981c0c6b7780ed91af51c7c097d62ce68ce4a1b66dfef354418d33e6eb69af2cea263ca0bab10712a89c694dc318dd28361c6bd2f4e435e51efe1e6d5f66f3fa98fa1d419b964092078541e567223ed6ea5787db891aadf9be75b57b4fc0759870", 0xd8}], 0x1, 0x6000000, 0x0, 0x0)

1.234313481s ago: executing program 0 (id=1868):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000000)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000080)={0x18, 0x0, 0x7b4e46c6d09b23f9, 0x70bd25, 0x25dfdbfd, {}, [@TIPC_NLA_LINK={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x8000}, 0x80)
socket$netlink(0x10, 0x3, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3, 0x0, 0x1000000100}, 0x18)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r4, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
sendto$inet6(r4, &(0x7f00000002c0)="b1", 0x1, 0x0, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)

645.866835ms ago: executing program 3 (id=1872):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x2, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000240)={0x1, &(0x7f0000000040)=[{0x6, 0xf8, 0x0, 0x7fff0006}]})
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r3, 0x84, 0x81, &(0x7f0000000780)="1a0000000200", 0x6)
close_range(r2, 0xffffffffffffffff, 0x0)

589.384856ms ago: executing program 4 (id=1874):
r0 = syz_open_dev$usbfs(&(0x7f0000000480), 0x200, 0xa401)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(0xffffffffffffffff, 0x40089413, &(0x7f0000000200)=0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r4}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="0b00000005000000050000000900000001000000", @ANYRES32, @ANYBLOB="f7000000000000f8c1501eaed63867975b053a870000000000000000000000000026a440cb34420a9b9ea189a1080a7c118f4559d94125c6fc49b59133ffc5223bf06e66b100f1bd1819fa135514e6438534ddbbc48d933d3e236475e51d154ec4ddd8c50c1a871da2b0147a3f046a32cbffccd91a970edcfb57ccfc0592745e8abed5c6de6a88291d8e4ff44793dccce6618e2b75a44806417be15f08b91cecf7b905b51ec993c4fde197af358d35403cf0a9179f840ec4882ff45390d4ce99be1215ff899a1ffd33e1e9f808eb5d66ab5bb629ba4b6fb06752fbf74178", @ANYRES32=0x0, @ANYRES32], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000006800090300000000000000000a000004000800010001000000"], 0x24}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file1\x00', 0x8000, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2bd, &(0x7f0000000b40)="$eJzs3N9LU38YwPFHN92c6PaFL0FB9VA3dXPQ1X2NUIgGhTmpLoJjntXYaZNzxmIROYjotr9DuuwuqP4Bb6Kb7ruTIOjGi2jh+aGbTpu65dL3C8Z5js/n8fOoU54J+6zeef24mHeNvFmRwbjKoEhd1kRS61FgILgOevGwNKvLxdEfX07fvnvvRiabnZpRnc7MXkqr6vjZ90+evTn3sTI693b8XUxWUvdXv6e/rpxYObn6a/ZRwdWCq6VyRU2dL5cr5rxt6ULBLRqqt2zLdC0tlFzLacnn7fLiYk3N0sJYYtGxXFfNUk2LVk0rZa04NTUfmoWSGoahYwk53qIdrMktz8yYmR3TjUhXO0L3xVpvR9qtcZxMvX0yt9yrvgAAQP/aff73Z/2d5//snH/t8vwvwvzfI/WWuz/M/zgSHCdjJoLf31bM/wAAAAAAAAAAAAAAAAAAAAAA/AvWGo1ko9FIhtfwERORuIiE94fdJ3pjnz//K4fULrqs6Y17cRH7VTVXDa5+PpOXgthiyYQk5af3fAj48fT17NSEeoaCT5kTsZequYh3NoFXH0q1qz/z36Rfr/Jhva4a1A9Jonn/tCTl//b7pzfrw+MQlqq5YblwvqnekKR8eiBlsWXBe16vPy6/EMlOPZ9UvXYzu2X/EW8dAAAAAABHgaEbUq2vf/2zHw1vQVy25/36Pfx/YMvr66ic6uSISgAAAAAAcGBu7WnRtG3L2UcQE5EDlB/VICJ90caW4KqI9EEbTUG8l/3ERcT/iO6n/NtGeUdVjQ7WREWkT77zm8FAdMfUYf9lAgAAANBtm0P/Hoo+v+xhRwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHD+dHhUWrt+WChO7lDdtF/nrXyAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADQR34HAAD//8fyFuQ=")
msgget$private(0x0, 0x720)
mkdir(&(0x7f0000000000)='./file0\x00', 0x4f)
mkdir(&(0x7f0000000000)='./control\x00', 0x0)
mount(0x0, &(0x7f00000006c0)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x4014, 0x0)
ioctl$USBDEVFS_SUBMITURB(r1, 0x8038550a, &(0x7f0000000040)=@urb_type_control={0x2, {}, 0x0, 0x21, &(0x7f0000000240)={0x1, 0xc, 0x37, 0x13f}, 0x8, 0x1, 0x0, 0x0, 0x0, 0x28, 0x0})

570.229235ms ago: executing program 3 (id=1875):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000060000000000000000008500000007000000850000000e00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000012c0)={&(0x7f0000000040)='kfree\x00', r1, 0x0, 0xfffffffffffffffd}, 0x18)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xa2, 0x7}}, './file0\x00'})
r2 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x2000)
ioctl$SG_GET_VERSION_NUM(r2, 0x2284, &(0x7f0000000080))
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x65, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r4, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
dup(r4)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r6}, 0x10)
syz_emit_ethernet(0x52, &(0x7f0000000440)={@local, @local, @void, {@ipv4={0x800, @tcp={{0xc, 0x4, 0x0, 0x0, 0x44, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local, {[@timestamp_addr={0x44, 0x1c, 0xa, 0x1, 0x0, [{}, {@dev}, {@dev}]}]}}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0xc2}}}}}}, 0x0)
socket$inet(0xa, 0x1, 0x0)

451.238346ms ago: executing program 3 (id=1876):
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
listen(r0, 0xc)
setsockopt$sock_timeval(r0, 0x1, 0x42, &(0x7f0000000000)={0x0, 0xea60}, 0x10)
accept(r0, 0x0, 0x0)
unshare(0x28020480)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_io_uring_setup(0x7930, &(0x7f0000000200)={0x0, 0xcb1, 0x8000}, &(0x7f00000000c0), 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000b9bd597153b19b890000000000000000000000742c7f1b413109951ac24c4372f6ae2a9fe22c81376cfbbac56d31de4c0470c02d3397e1d63e586ed832243b8754b712e827d1f4bef327416607141be4df"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000300)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = memfd_create(&(0x7f0000000780)='/dev/loop#\x00\xee\b\xce\xde\xe9\x8d\xd3\xd4\xe2\xfd\x7f\xf5R%\xe8]l\xa1s\b\xa5\xd2\xd59\xe8\xda\b\xd6\xb2\x15\xf6F\xb8\xb4{r.\xd2\xea\xec\xdbXe&J \xe9\x16\x82\xe8=\x83\x88sN\x83N`\xf9\xec\xe1\xbb\x05vH\xdd\x01?k\x97\xa5\xbf\x89#=2G<r\xf8\xd56\xaf~Nh%\x14\xf4\x14\xa3\x88i*rR\x17\x1ay\xc4x\x82u\xa3c\x9ez7\x88\x15\xdbz\xd1&\xd1\xca\xcb\xc5C\xa6,\xc7~\x86\xee=\xae}\xeb\xe8N\x11\xef\xb2\xceP\xff\xed\xee\xd7x6}-y #\x17\x8d[~\xe2\xab\xe6\xe3\x17\xd2/&\xfb\x13\xf3\xd9\xf4O\xf2\xdb\x9b\x03)\xae\xde\xef\x06\x03W\xb5;\xa6\xb4\'\'\x17\t\x00\x00\xaa\xe8\x81\xc0\x85\xd2\xfe\xcf\x9bn\xee*\x15\x97#\'\xc4\x06h\x1f@\a\n=7\xeb2\xaa\x0e\xee\x03\xd1\xd4\xc2yT\x8a0\x06=\xe7R\x85\x02\xf3\x15\x99z0]\xc4\x04\xb0\xea^\xd9\x1e\xbf\xb6\xe9\x8a\xfe\xd9G\x82\x93\xbf,J}\xed\x06\x18\x86WQn`\xf1\x9b\xb5\x96\xfe\xcf\xeb\x9f\x878me\x02\x90\xa2\x13O\x9a\xd6\xd0\x12\xf2$7\xb4\x8f\xfaal\xb8\xaaV>\xb16\xfb*\xf5\xd5\\\xa7\xebe\xbe\x9d\xd7\xf5\xb9<\xb2\xc4\xf9:\xef\xc0g\xc3\xa6\x7f\xc0\xcck.5=\xcc\x10Y\xad^*;MVh\xd9\xcf )\x0e%\x84\x95bXy\x81;o\xc9\x94\xc5M\xaf\xdbr\xec\xf6', 0x6)
fallocate(r2, 0x0, 0x0, 0x200401)
fallocate(r2, 0x0, 0x0, 0x200401)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
syz_clone(0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=@bridge_getvlan={0x48, 0x72, 0x2, 0x70bd27, 0x25dfdbfc, {}, [@BRIDGE_VLANDB_DUMP_FLAGS={0x8, 0x1, 0x1}, @BRIDGE_VLANDB_DUMP_FLAGS={0x8, 0x1, 0x1}, @BRIDGE_VLANDB_DUMP_FLAGS={0x8}, @BRIDGE_VLANDB_DUMP_FLAGS={0x8}, @BRIDGE_VLANDB_DUMP_FLAGS={0x8, 0x1, 0x1}, @BRIDGE_VLANDB_DUMP_FLAGS={0x8, 0x1, 0x1}]}, 0x48}}, 0x80)
syz_usbip_server_init(0x1)
pread64(0xffffffffffffffff, &(0x7f0000001240)=""/102400, 0x200000, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000140)={0x2, 0x3, 0x0, 0x9, 0xe, 0x0, 0x70bd2a, 0x0, [@sadb_key={0x2, 0x8, 0x8, 0x0, '['}, @sadb_x_sa2={0x2, 0x13, 0xc, 0x0, 0x0, 0x70bd26, 0x34ff}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x2}, @sadb_address={0x5, 0x17, 0x33, 0x0, 0x0, @in6={0xa, 0x1, 0x10001, @mcast1}}, @sadb_key={0x1, 0x9}]}, 0x70}, 0x1, 0x7}, 0x0)
r3 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
fcntl$dupfd(r3, 0x0, r3)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000004c0)=0xe)
ioctl$TIOCVHANGUP(r4, 0x5437, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ff49ffb}]})
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x1}, 0x8002, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_open_procfs(0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)

434.319687ms ago: executing program 1 (id=1877):
open(&(0x7f00000000c0)='./bus\x00', 0x400141042, 0x0)
r0 = syz_io_uring_setup(0xd1, &(0x7f0000000480)={0x0, 0x8a73, 0x800, 0x22, 0xb35}, &(0x7f0000000080)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000000)=0x103, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000000c0)=[{0x0}, {&(0x7f0000000040)=""/15, 0xf}], 0x2})
io_uring_enter(r0, 0x47ba, 0x0, 0x0, 0x0, 0x0)

383.330467ms ago: executing program 4 (id=1878):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
stat(&(0x7f0000000080)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0x0)

373.578107ms ago: executing program 1 (id=1879):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c30000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2a}}, 0x10)
setsockopt$sock_int(r2, 0x1, 0x6, &(0x7f0000000140)=0x32, 0x4)
connect$inet(r2, &(0x7f0000000280)={0x2, 0x0, @broadcast}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x9}}}, 0x24}}, 0x0)
sendmmsg$inet(r2, &(0x7f0000008c80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x840)

304.543487ms ago: executing program 1 (id=1880):
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000002840), 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kfree\x00', r1}, 0x18)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000240)={'veth1_to_batadv\x00', <r3=>0x0})
bind$packet(r2, &(0x7f0000000080)={0x11, 0x2, r3, 0x1, 0x0, 0x6, @broadcast}, 0x14)
close_range(r0, 0xffffffffffffffff, 0x0)

270.243407ms ago: executing program 0 (id=1881):
open(&(0x7f00000000c0)='./bus\x00', 0x400141042, 0x0)
r0 = syz_io_uring_setup(0xd1, &(0x7f0000000480)={0x0, 0x8a73, 0x800, 0x22, 0xb35}, &(0x7f0000000080)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000000)=0x103, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000000c0)=[{0x0}, {&(0x7f0000000040)=""/15, 0xf}], 0x2})
io_uring_enter(r0, 0x47ba, 0x0, 0x0, 0x0, 0x0)

262.313268ms ago: executing program 4 (id=1882):
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', 0xffffffffffffffff, 0x0, 0x20000000}, 0x18)
ioctl$BTRFS_IOC_SCRUB(r0, 0xc400941b, &(0x7f0000000300)={<r1=>0x0, 0x4})
ioctl$BTRFS_IOC_GET_DEV_STATS(r0, 0xc4089434, &(0x7f0000000700)={r1, 0xffffffff, 0x1, [0x2, 0x3, 0x1, 0x6, 0x3], [0x8000, 0x4, 0xa4, 0x7, 0x7, 0xff, 0x0, 0x3, 0x9, 0xfffffffffffffff8, 0x1ff, 0x9, 0x6, 0xf, 0x8, 0x1000, 0x0, 0x9, 0x8, 0x8, 0x8, 0x9, 0x8, 0x2, 0x5d9, 0x923, 0x401, 0x0, 0x800, 0x2, 0x0, 0x16f6, 0x9, 0x4, 0x4, 0xfffffffffffffffb, 0x4edb, 0xe, 0xfffffffffffffff9, 0x5, 0x3, 0xf030, 0x3, 0x6, 0x0, 0x380, 0x401, 0xffffffffffff0ee5, 0x7, 0xfffffffffffffffd, 0x9, 0x2, 0x0, 0x7, 0x157, 0xe, 0x0, 0x4, 0x7, 0x9, 0x80000001, 0x7, 0x2, 0x4, 0x0, 0x2, 0x277, 0x0, 0x7, 0x81, 0x0, 0x3, 0x3ff, 0x8001, 0x5, 0x0, 0x3, 0xfe, 0x8, 0x3, 0x7, 0x8, 0x907, 0xfffffffffffffffe, 0x0, 0x6, 0xffffffffffffffff, 0x8000000000000001, 0x6, 0x7b7, 0x2, 0x400, 0x4, 0x2, 0x0, 0x1, 0xfff, 0x4, 0x7, 0x200, 0x6, 0x8, 0x109, 0x401, 0x4, 0xae3, 0xe, 0x5, 0x7, 0x6, 0x3, 0x10000, 0x70, 0x10000, 0x3, 0xf, 0xe8c, 0x2c, 0x4, 0x1, 0xf]})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet_udp(0x2, 0x2, 0x0)
socket(0x40000000015, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet(0x2, 0x4000000000000001, 0x0)
r3 = socket(0x11, 0x800000003, 0x0)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r5, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000100)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000001400000008000a00fc00000018000180140002006e657464657673696d300000000000000800060000fcffff08000900fc000000080011000700000008000e00800000000800", @ANYRES32=r3, @ANYRES16=r5], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
sendmsg$IPCTNL_MSG_CT_GET(r2, &(0x7f0000000000)={0x0, 0x40000, &(0x7f00000002c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="4400000002010101000000000000000002000000040001801800028014000180080001007f00000108000200ac1414aa140019800800010004000000080002"], 0x44}}, 0x0)

247.411478ms ago: executing program 1 (id=1883):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
symlinkat(0x0, 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
stat(&(0x7f0000000080)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0x0)

189.508178ms ago: executing program 1 (id=1884):
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x1000000, &(0x7f0000000340)=0x1, 0x4)

189.224588ms ago: executing program 4 (id=1885):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x2, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000240)={0x1, &(0x7f0000000040)=[{0x6, 0xf8, 0x0, 0x7fff0006}]})
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r3, 0x84, 0x81, &(0x7f0000000780)="1a0000000200", 0x6)
close_range(r2, 0xffffffffffffffff, 0x0)

174.934618ms ago: executing program 0 (id=1886):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
sched_rr_get_interval(0x0, &(0x7f00000008c0))
ioperm(0x0, 0x100000000004, 0x7)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB="000000000000000000000000000000000000f8ffffffffffffa5d5aa7b96540119eb4c7b7374ced9fea6d708c9888a93926a8950e6a0201c754e29616932ab26c6084a4d17ab44267670c51d8cf0e5e4421a34db3567", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r1, 0x0, 0x20000000}, 0x18)
get_robust_list(0x0, &(0x7f0000000100)=0x0, &(0x7f0000000140))
unshare(0x22020600)
stat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0})
getgroups(0x1, &(0x7f0000000180)=[r2])
syz_open_procfs(0x0, &(0x7f00000006c0)='fdinfo/3\x00')
pipe(&(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
vmsplice(r4, &(0x7f0000000380)=[{&(0x7f0000000180)="f256", 0x2}, {&(0x7f0000003180)="3a6bcee1c4ceacf13365afa8fe79d1480baccd6c3d2a43f3433f7bd84089fd75d4a1a290dde26a7426c0b3ce0ba0e26ee0081261ccd8547c7e50fafdb9247384f6e49aa8facaed0037effb1a1f7e5349e3c43d8f658a24ca7b07a824928d021ab9f597fa251a14ff7a46f9b9260588d11e10df77fd5709852ef42dcb3c766e472fb0f7bbf189ce854de1dcf367386027db2f0fd0dacf43d8c06c0f94c1e50eda4b5d9d2aa44f4a32c05d3a7816c01461f9b977c6462e4081636c785b68a0bd9079cb7be46fb60199f64fb99e9278aa1c23d7853b8a2e3fdfa1d2eb11ab64d6573ad13fd59b9b3fbaca159a1c679edee74bc7d2019b5285ba9279bde1cbd3454d81ec574bade7442a4e1301b2f687440a3f8ced8f29e66be0d9da0761296c97de6b9ca277902de6f0a26fbb8841d16b539cd0b8f1ed3973da12a1d65a9bfe344c8fb80f2558828afa8329d593980d6d0d58ea1295ee221a48c6c83cc81d552c8495338bd650fe238b21574adb4089e476470cb21d43f72908476532bccca9aa271c4697753e33f519373e447cf81af2e05bd045e0bd6999023c3cced5aa5a8ec87155b5fa1c788fe5148fb2d2c5cc926a9f7b93f27a28b715db0ff2abb0c588e557841deaafc2ea9dc9b6d794f2f7b5e1b014ae28d0b2cd84538cfdf6cb3a516c21528ed65489f6798b9c6842e818a69139c5d52efd9f3cbc73b0946881199bf7b573041c3c111eba18217bf458b1780c53db2bc541e5efd688b5a22ba55f2ab68bc844caf229acf61a7f898b5a276cf66eec2d2ee2a480dbf71e640a89c25590576b9580709dc8a6d07dc496c45ae1258d176e5b75cc19565d0874e42c8409a87926cbd6639a144eae76703b41ef9d3731639fc90193f266cb9d308b653efeb817ea9d8f00ae6c50c8fb343d5daf188a302fa8644e93b0746a313bfda06b9fe9c5f6783fabaa69d1f23757ee54fea4728dafe41b8541430aecbdb44560c7e74b603675b90c8f27325cd5c818b13996a6f637fc1a41b8481992f682130b603ee591a8d09fb19f371b65307f652e2c612c9c312268a59862b7e59a302927f7f3f1eed7ef797d47d2fc1aad28aa28967b95b02c394b4b7c928126907ce4941541f2d7cec09b7c437ee525425434a34f7c4d8e1003cef932094dc9059134f0307ea6c8aec1c8c9215f4af0923acca867a9a0582a6d30d3f5585b208d5e906a09a86212e5621b42b9f767695eba6a6c708f483466b6f5bcce7bed29b5d79aa7d9cd09d4d4da30f7e88495d68725715dd0919a88cfdb8bc974897ef19f55d03c91fca7433f5500e7d88d349e3fc4d40a0e79f7d3d78b6662c6f3309a2e007444818239a51886351aa8cd65613699f5ce443d2e581254b9b136976e988e9195c25c60b2ed8dad3a4d37d28058d7727b2efe419ab5d7898d094ba1745834062ac0bdf5d381522b3fe1347d7746986df5f6ba61926c82c969a2355dad0b0d59d96fb17bd319cd16e80d351a5c38fe256fdb4af7f20686f6914d49c7d27223391f6ef5bc9ea01ce65858efab94e931487a4d96c2b86b9ddcbf6806ded3fb85fbbce5445e5e135c47a942f1b0707c9c82b741e215fb3e3eaaa400318f7f1d0b8a60c996271a107830a91f69c5956db24132c114d03cf60102bcd577c47cb33b91af34b261e8061e504b29911a59fcb635192a1db78abeb19acacd002eea3c1224f05814b6f31e9fadee017615a2a70a6a4263e1b8b39c45e287c90d0f990391c2fe33cdfc5518f6a155681d86606accccee45dbe791e295f1fbcdfeab3cb194d413e7cde706902e163438731d94acaf235a2864308282666db181243f6934fbdecdbddd06c1c9e23cd5f9c967ba82d4260a120558710a15e858a1564fac53ba1230d01a2f899ad726a83085652d02f289684bd02258cfc3848cf1baa6912f1a5b6f714187b08f5b175a073a02f881232f245260d90f8b4da79226d573d601f98017cc83d5edcaffd927e77f17b5c272402eaf46e4b52b14472adb29b68e9affe7316340bb98eab8caccde35c2b50fed073a16dd53b913734f234181ec3be75a479f23d380ca7021cddc84c4689848f67c9061e75ceb5ad4956abd7c633e587ea5121c31eb8d877776d9704da2e52028031fcfc5688524f4826ac9f19c78ffc09c098041832bd03796d8d35a32497c7668df2160c4bbdd1b9578fa2ca4b7c2ad2367dbab9ed59b089b88594f8aa0a0cef0ad11fb0b5ed31e9ced0b9138ff481369e86673b845ffb74f368f74d6a784c635402f11b4e46023642ff4d2f9bd62081d492641a4a4aafb0266c16e31ed2a9c10512ad2d3f43359c5ba8f64e70e05dafc9fd5cd33f3dda136b5c84031abd527685c61c475dc74c0912770af5189d8fb91af236be484d2126c9f1986bda0c0e37935c725f92636c77732d2bc08bd3a0aa9ed7e753c67155a1d9114f1f269d76911898239cfbf081ac5ce0e144486a4d256462689026d648b7db4d38312d1f099b16726ec6de18e89334b5034ca5621b2d838d230ad6ea47440abfce44a982e35d9c72737cc42dc6b0264d902456e5ba067c0f3d754e25b8a0a96ee0fce4bc22cef8749945f3b1b7d90649568e88d3262cc237a0e5024557573040b92f1a2cc1502aec44d049bdbf1b31d343bb0883b58d91c0d1617451377579da31166a66c856346ae56c3270a18ac848b00d866e8086ace2e30949dd76f2ebe83f71e69e22be50fa42d3f3e09c5fad70c17ed8565e7573876904e10b39a68c1add6dd547c6264dd7f45c4b347579e5d5abf18edbb1b53ea764fd689824e217e6cd4b589e0692efc4e5885c7b5bdec436687c8f3625880de0c572799bfe241ad4d25c907f8e400068c0b3e2d81abb559dd8a12add0d8ca14a8e18557995855128012e9d94428ecef1626eac0e2f398812de82031f376d5fd9ba8023c63aa488628429a8e65d830c9a84fc2aeb7f0f5c813524d27ca673f0bb83422e6b3915601b2384e09b636829ce8e2947519d7e03df6a70af162681f83f04779d5d271ca877866852dffa337fb7dd2d2f561a8f052c947c8295390ed3ff14d2c5f30a6a105d315a17934d8b67cc93a8f68bb735c3a4fbcf7677d4c144b825d733ef658fb8a4b22bf714b9b27864a2b75af3318ca5c94a7933f5c99ac8a1e23ea6fae4abd60cc8bad428acb6d7dbd4a4309e24708b1e354e2bb64dd0804c9824b6269eb73b48398339d1acbb4e2a382349b595009b25c9eafa2038a932472708f113fee4bcee09b2bd290490d9239a108bb1e118b27cf89cf24e4ed166b64528e001aff85ac731f52f89b05ff57376a670a572878569a6dc83e60bc1f5752aabd263935a5c84c25233ec07bce65f82615b070e6dda6367d8e6fbc8e6e54cd965138ea5983dc22404039273c3046babc895540d5d5a389bdd5e1ce66642bd2d2b52d806c3edf6198928a56431836d4508947dcc00b366ebca2d4dc01fc308b1a5fe4dd2e7867cc415fc37d80fad99987f84e2fa9762fc5fc6bfac924b8359d627188268bb56d6efa4d00c5c0df5ae1e24af5885bce4860a5f1954af4999bae51e71b7811058ca802bec4e749ecad3208c0542764c37fcc711d988572042b72f192e735c212b78839f22b046768126a3724d768de4ca58ef889e6eee33483e10f2b8a0a408ff8fc8412b08d13ea64c4e91a43be0742ec343b13b4501be40caf5e0327ec99d6c57b6474c12361c3ac6291d83ed2ee8e83525ed2f4168b8f77467d7daf09c6f95db82056d298a87d847ab757342c82dab0c5427234affc3acbeebdf9ec00885bfee6244b3ab9fe300d7a95806c1d75345231afbf5cf2954fd06af6373cd932c2be6fbcc5580a5e9ee5131f8f78bcbe6c6e0fd633c22b9c03eb20135ccbc0f931ee964a2a6a9e011f36076f57d23016dd7fb43723a091b2ffd1a80d417a9b2960a25d021f266d017063d63dbaa28ed44b5548a0693b10fc956f0ba547b6ad22ee0f628be26934adf94e57e7a0c6ffff1fa65e1c794fc5b0f2873654a6d321253e19313b3a13b25b61f2cd25190dd112f1724cde40768d9618b3e6104b842f31bbc68467d92e8005fe878ee3f95d77f64c32642b06774bb685351cf2a2172d1ebc6e1f7d31633e241dc9184e399cc095eec8e688443bc0ae14e1d709b87233b12f4dcf183a0d3aaf54713556c7501578def66bae63acf7d95682b838bcb9a1c23d817855ee80d7c1fa47f680a7a723b6d9f83bfd2b82e679b36b7b65587ad13f9b8faf50105aff5ce3bea8a9699ca0959dbbac6b2bf8d1032cf208bc9dd83f6ff63f1847c17ae3a9e8d42131551e3ba760cf5effd6fb286a32fc7e352198d1073c1796a763e7bb0bd52ff603f477602452b40cce85ac8dece297b0c96fc752b56d8da0ab1d3e0fa50bd36981492e2ef06d9fbe22d085084cf70f43b540911ed79e9a740aa327c079434abca76573e8f2b08737a2005fa18431707921cb2f1f89add56b57570bdfb4c9f06d41ca0af679c34b66a864204672a8fed843d843dd4f8dea4df938d14eaa13d8cbf14c7679769d6489e3cc8b291ebb04d0397db4eaec3e5a5ae070860dba85b91390768fa72f468fdf4a4a040b673840c4742fb16e1c14921892d0c42a63fd2e23d39984fcacef61d12184c0563927d17ba1966924fc9483dff7a6e5f70110a7888829ba4d74c127efd8a4b40f327952ca586d2f51fd65cf8b2458e15ac64f451b0eaedd563d764beec9698f84bff7f54252cfb4719212e9ff363824aead22ea07089ca0de303522c5c44baef00f76b4e0abfce5578f92cba1dd493e8679afcd4cfe57cf666a2ce73ade46b42355e84ef0045e1395d7021312190b340c9bd289581ae8cb2f3f2f0cf1e4a61cbcd13b00441314ec303492f486a0bc167ba8647624f251aa56cfc2d9c98d70c567665efae817767ba7353c21cc63114d9127a64ae8c996f5ab361ea3856058bc3c93f0a2abb6a8a4ad649d650d11ae88292930518ffe11f0465ce4fb1a5ccd90723f45d537db45cd362cfabf790c2fbe6fabab5c2843f2ace203f2003242a39dbf4e84c8df4542cb7d8bf5397ddd587c750a7a70d3720091e52af6a0ccb7a63f5a0d32cbab74887f1df2cc259bff2468eb677d9f9fabee704a0e4dbf542b2f0a27daa02ba7a4e0db0fd4704e69863e2f57d8e398e536c9378cb75ef1cb77d971a9b8752e036e9628d6a281c38f9ec602c0f984df52e47bbf37e88b0ee198c69921ee328352c8e13a819ccdd0b70e23b6c2c7a4a4818e4242dc9dd451175726c46273b7a82b64837081f56937e46db4303fabb11aa14d8a5e6e58bd74c4ccc2b3d1c298206bb3f9b67e590b8afadd6c377006835de376c09e1e71af040d7131f5fbd12809946841ee3fd34731f4532d1c3b861711c78351bf43d39084a3469858dd2baf7b96a5f7dc98215e4de0a2c8b1584407985856d4e9fac41bd484c7e264e3ad4a3fe502236eadfabd0e329d7bd1a2583b559e45f9852c0d539e4620bf7ba21239f8413614136cde922cb6fb11260c388229b3d05f2e4fd1fc5f260e3b4e62d12baef153651a35f187ea1623593337f8fe913cb14ced664cee708df82d4ac1b7eec7312199ec514ad18b451abd744744d83a8cee68c06bb6bf929503bd13c5387b85507d739ad26f69752e6196ac3d124003a68233e9daaddca4162a21d88628f9a11eff602036706bcf8dcf01ce4ea44bf03a537f28f6ae65fd6fa1f92808ab06c870f862f1d3b06636a5c987ad9d5f484cfbe61298bd02ad11bf64189583998000293dfff958", 0x1001}], 0x2, 0x2)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r5, &(0x7f0000000140)={0x2, 0x0, @local}, 0x10)
connect$inet(r5, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10)
splice(r3, 0x0, r5, 0x0, 0x2000000002ffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000380)='sys_enter\x00'}, 0x10)
newfstatat(0xffffffffffffff9c, 0x0, 0x0, 0x2000)

139.651439ms ago: executing program 4 (id=1887):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000060000000000000000008500000007000000850000000e00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000012c0)={&(0x7f0000000040)='kfree\x00', r1, 0x0, 0xfffffffffffffffd}, 0x18)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xa2, 0x7}}, './file0\x00'})
r2 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x2000)
ioctl$SG_GET_VERSION_NUM(r2, 0x2284, &(0x7f0000000080))
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x65, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r4, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
dup(r4)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r6}, 0x10)
syz_emit_ethernet(0x52, &(0x7f0000000440)={@local, @local, @void, {@ipv4={0x800, @tcp={{0xc, 0x4, 0x0, 0x0, 0x44, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local, {[@timestamp_addr={0x44, 0x1c, 0xa, 0x1, 0x0, [{}, {@dev}, {@dev}]}]}}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0xc2}}}}}}, 0x0)
socket$inet(0xa, 0x1, 0x0)

79.318889ms ago: executing program 1 (id=1888):
creat(&(0x7f0000000080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x80)
ioctl$USBDEVFS_CLAIMINTERFACE(0xffffffffffffffff, 0x8004550f, &(0x7f0000000080)=0x6)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffe00}}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
syz_emit_ethernet(0x2a, &(0x7f0000000300)=ANY=[@ANYBLOB="bbbbbbbbbbbb5a01f3c2a93608060001080006040002"], 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x82, &(0x7f0000000080)=@assoc_value, &(0x7f0000000040)=0x8)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$netlink(0x10, 0x3, 0x10)
r4 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r4, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
syz_open_dev$tty1(0xc, 0x4, 0x1)
setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r4, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r5, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
close(0xffffffffffffffff)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1e000000000000000100000007"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x39, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0xc000, &(0x7f0000000380), 0x0, 0x273, &(0x7f0000000640)="$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")
lsetxattr$system_posix_acl(&(0x7f00000005c0)='./file0\x00', &(0x7f0000000600)='system.posix_acl_access\x00', &(0x7f00000009c0)={{}, {0x1, 0x6}, [], {0x4, 0x5}, [], {0x10, 0x7}, {0x20, 0x1}}, 0x24, 0x2)
lsetxattr$system_posix_acl(&(0x7f0000001c40)='./file0\x00', &(0x7f0000001c80)='system.posix_acl_access\x00', &(0x7f0000003f40)={{}, {0x1, 0x2}, [], {0x4, 0x1}, [], {0x10, 0x4}, {0x20, 0x1}}, 0x24, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
sendmsg$IPCTNL_MSG_EXP_GET(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="3800000001020103000000000000000002000003240001801400018008000100"], 0x38}, 0x1, 0x0, 0x0, 0xc005}, 0x10)

70.370529ms ago: executing program 0 (id=1889):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000008c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000fc850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000004c0)='kmem_cache_free\x00', r2}, 0x18)
r3 = socket(0x10, 0x3, 0x9)
connect$netlink(r3, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x25dfdbfc}, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000001c0)={&(0x7f0000000080), 0xc, &(0x7f0000000180)={&(0x7f0000000b00)=ANY=[@ANYBLOB="140000001000010000b800004a8522d0000000000000000a14000000110001000000000000000000"], 0x28}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0xfffffffffffffffc}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000f8ffffff850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000180)='kfree\x00', r4, 0x0, 0x7fffffff}, 0x18)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
syz_read_part_table(0x624, &(0x7f0000000640)="$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")
setsockopt$inet_MCAST_JOIN_GROUP(r5, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
setsockopt$inet_MCAST_MSFILTER(r5, 0x0, 0x30, &(0x7f0000000940)=ANY=[@ANYBLOB="020000000000000002004e22e00000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ac1414aa000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002004e20ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200"], 0x310)
setsockopt$inet_group_source_req(r5, 0x0, 0x2c, &(0x7f00000004c0)={0x2, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @empty}}}, 0x108)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
socket$kcm(0x10, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = getpid()
sched_setscheduler(r6, 0x2, 0x0)
syz_open_procfs(r6, &(0x7f0000000100)='net/ip6_tables_targets\x00')
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, 0x0, 0x0)
r8 = socket$inet6(0xa, 0x3, 0x87)
setsockopt$inet6_IPV6_XFRM_POLICY(r8, 0x29, 0x23, &(0x7f0000019080)={{{@in6=@remote, @in6=@dev={0xfe, 0x80, '\x00', 0x43}, 0x4e22, 0x0, 0x4e20, 0x20, 0x2}, {0x0, 0x4, 0x1, 0x0, 0x0, 0x9}, {0x1ff, 0xffffffffe, 0x4053e5, 0x20}, 0x6, 0x1, 0x1, 0x0, 0x1, 0x2}, {{@in=@empty, 0x1, 0x32}, 0xa, @in6=@private0, 0x3502, 0x1, 0x0, 0x0, 0x800000, 0xfffffffd}}, 0xe8)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, 0x0, 0x40)
sendmsg$NFT_BATCH(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="14000000100001000000000000fbff000000000a5c000000060a0b04000000000000000002000000300004802c0001800b0001006e75"], 0x84}}, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @local}, 0x9df}, 0x1c)

0s ago: executing program 4 (id=1890):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x40, &(0x7f0000000340), 0x1, 0x573, &(0x7f0000000ec0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x14a)
fallocate(r0, 0x20, 0x0, 0x8000)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
mknodat(0xffffffffffffffff, 0x0, 0x200, 0x0)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x810)
r2 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$sock_ifreq(r2, 0x8923, &(0x7f0000000040)={'lo\x00', @ifru_hwaddr=@multicast})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)
pwrite64(r3, &(0x7f0000000140)='2', 0xfdef, 0xe7c)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0xc2208, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, @perf_bp={0x0, 0x2}, 0x10c18a, 0x2, 0x8000, 0x5, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = socket(0x10, 0x3, 0x6)
ioctl$ifreq_SIOCGIFINDEX_team(r4, 0x8933, &(0x7f0000000040)={'team0\x00', <r5=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x38, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0x4}}, @TCA_RATE={0x6}]}, 0x38}}, 0x4080040)
r6 = syz_open_dev$usbfs(&(0x7f0000000040), 0x400000001fc, 0x301)
ioctl$USBDEVFS_ALLOC_STREAMS(r6, 0x8008551c, &(0x7f00000000c0)={0x961a, 0x1, [{0x6, 0x1}]})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0)
r7 = socket(0x2000000000000021, 0x2, 0x10000000000002)
connect$rxrpc(r7, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24)
sendmmsg(r7, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=[{0x18, 0x110, 0x1, "ec"}], 0x18, 0x7000000}, 0xf401}], 0x1, 0x0)

kernel console output (not intermixed with test programs):

th error 28
[   87.922901][ T6305] EXT4-fs (loop3): This should not happen!! Data will be lost
[   87.922901][ T6305] 
[   87.932792][ T6305] EXT4-fs (loop3): Total free blocks count 0
[   87.939064][ T6305] EXT4-fs (loop3): Free/Dirty block details
[   87.945102][ T6305] EXT4-fs (loop3): free_blocks=4293918720
[   87.951086][ T6305] EXT4-fs (loop3): dirty_blocks=64
[   87.956304][ T6305] EXT4-fs (loop3): Block reservation details
[   87.963187][ T6305] EXT4-fs (loop3): i_reserved_data_blocks=4
[   87.985096][ T3416] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   88.001283][ T6321] loop1: detected capacity change from 0 to 512
[   88.017444][ T6321] EXT4-fs error (device loop1): ext4_xattr_block_get:596: inode #2: comm syz.1.1024: corrupted xattr block 255: invalid header
[   88.032029][ T6321] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117
[   88.049280][ T6321] EXT4-fs error (device loop1): ext4_xattr_block_get:596: inode #2: comm syz.1.1024: corrupted xattr block 255: invalid header
[   88.065779][ T6321] SELinux: (dev loop1, type ext4) getxattr errno 117
[   88.177606][   T37] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 48 with max blocks 20 with error 28
[   88.190309][   T37] EXT4-fs (loop3): This should not happen!! Data will be lost
[   88.190309][   T37] 
[   88.271384][ T6351] loop3: detected capacity change from 0 to 512
[   88.284479][ T6353] loop1: detected capacity change from 0 to 1024
[   88.292269][ T6351] EXT4-fs (loop3): orphan cleanup on readonly fs
[   88.300383][ T6351] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1035: bg 0: block 248: padding at end of block bitmap is not set
[   88.316908][ T6351] EXT4-fs error (device loop3): ext4_acquire_dquot:6927: comm syz.3.1035: Failed to acquire dquot type 1
[   88.331221][ T6353] ext4 filesystem being mounted at /209/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   88.339111][ T6351] EXT4-fs (loop3): 1 truncate cleaned up
[   88.391220][ T6351] IPv6: Can't replace route, no match found
[   88.417416][ T6353] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   88.420040][ T6363] loop0: detected capacity change from 0 to 512
[   88.436118][ T6353] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 29 with error 28
[   88.450790][ T6353] EXT4-fs (loop1): This should not happen!! Data will be lost
[   88.450790][ T6353] 
[   88.460481][ T6353] EXT4-fs (loop1): Total free blocks count 0
[   88.470722][ T6353] EXT4-fs (loop1): Free/Dirty block details
[   88.476732][ T6353] EXT4-fs (loop1): free_blocks=4293918720
[   88.482476][ T6353] EXT4-fs (loop1): dirty_blocks=64
[   88.487910][ T6353] EXT4-fs (loop1): Block reservation details
[   88.494099][ T6353] EXT4-fs (loop1): i_reserved_data_blocks=4
[   88.501415][ T6351] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[   88.504129][ T6363] EXT4-fs error (device loop0): ext4_xattr_block_get:596: inode #2: comm syz.0.1040: corrupted xattr block 255: invalid header
[   88.524225][ T6363] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -117
[   88.533174][ T6363] EXT4-fs error (device loop0): ext4_xattr_block_get:596: inode #2: comm syz.0.1040: corrupted xattr block 255: invalid header
[   88.546811][ T6351] EXT4-fs error (device loop3): ext4_acquire_dquot:6927: comm syz.3.1035: Failed to acquire dquot type 1
[   88.560501][ T6363] SELinux: (dev loop0, type ext4) getxattr errno 117
[   88.567389][ T6351] EXT4-fs warning (device loop3): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-28, ino=4). Please run e2fsck to fix.
[   88.592987][   T51] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 48 with max blocks 20 with error 28
[   88.605478][   T51] EXT4-fs (loop1): This should not happen!! Data will be lost
[   88.605478][   T51] 
[   88.652564][ T6377] xt_l2tp: wrong L2TP version: 0
[   88.676491][ T6381] loop3: detected capacity change from 0 to 1024
[   88.691322][ T6381] ext4 filesystem being mounted at /186/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   88.744481][ T6388] __nla_validate_parse: 5 callbacks suppressed
[   88.744502][ T6388] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1048'.
[   88.769297][ T6381] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   88.791317][ T6388] loop1: detected capacity change from 0 to 128
[   88.799168][ T6388] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   88.811568][ T6388] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   88.821821][ T6381] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 29 with error 28
[   88.824028][ T6388] usb usb2: usbfs: process 6388 (syz.1.1048) did not claim interface 63 before use
[   88.834290][ T6381] EXT4-fs (loop3): This should not happen!! Data will be lost
[   88.834290][ T6381] 
[   88.853312][ T6381] EXT4-fs (loop3): Total free blocks count 0
[   88.859410][ T6381] EXT4-fs (loop3): Free/Dirty block details
[   88.865499][ T6381] EXT4-fs (loop3): free_blocks=4293918720
[   88.871444][ T6381] EXT4-fs (loop3): dirty_blocks=64
[   88.876844][ T6381] EXT4-fs (loop3): Block reservation details
[   88.882844][ T6381] EXT4-fs (loop3): i_reserved_data_blocks=4
[   88.900413][ T6400] loop0: detected capacity change from 0 to 512
[   88.903208][ T3416] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   88.937218][ T6400] ext4 filesystem being mounted at /217/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   88.955299][ T6400] EXT4-fs error (device loop0): ext4_do_update_inode:5154: inode #2: comm syz.0.1054: corrupted inode contents
[   88.978583][ T6400] EXT4-fs error (device loop0): ext4_dirty_inode:6042: inode #2: comm syz.0.1054: mark_inode_dirty error
[   89.002759][ T6400] EXT4-fs error (device loop0): ext4_do_update_inode:5154: inode #2: comm syz.0.1054: corrupted inode contents
[   89.031850][ T6400] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #2: comm syz.0.1054: mark_inode_dirty error
[   89.061107][   T37] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 48 with max blocks 20 with error 28
[   89.073768][   T37] EXT4-fs (loop3): This should not happen!! Data will be lost
[   89.073768][   T37] 
[   89.116007][ T6410] xt_hashlimit: max too large, truncated to 1048576
[   89.194737][ T6411] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1054'.
[   89.203727][ T6411] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1054'.
[   89.301092][ T6418] FAULT_INJECTION: forcing a failure.
[   89.301092][ T6418] name failslab, interval 1, probability 0, space 0, times 0
[   89.314100][ T6418] CPU: 1 UID: 0 PID: 6418 Comm: syz.3.1060 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[   89.314126][ T6418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   89.314145][ T6418] Call Trace:
[   89.314152][ T6418]  <TASK>
[   89.314214][ T6418]  dump_stack_lvl+0xf2/0x150
[   89.314248][ T6418]  dump_stack+0x15/0x1a
[   89.314268][ T6418]  should_fail_ex+0x24a/0x260
[   89.314298][ T6418]  should_failslab+0x8f/0xb0
[   89.314369][ T6418]  kmem_cache_alloc_node_noprof+0x59/0x320
[   89.314397][ T6418]  ? __alloc_skb+0x10b/0x310
[   89.314455][ T6418]  __alloc_skb+0x10b/0x310
[   89.314476][ T6418]  ? audit_log_start+0x34c/0x6b0
[   89.314674][ T6418]  audit_log_start+0x368/0x6b0
[   89.314719][ T6418]  audit_seccomp+0x4b/0x130
[   89.314798][ T6418]  __seccomp_filter+0x6fa/0x1180
[   89.314831][ T6418]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   89.314861][ T6418]  ? vfs_write+0x644/0x920
[   89.314917][ T6418]  ? putname+0xcf/0xf0
[   89.314945][ T6418]  __secure_computing+0x9f/0x1c0
[   89.314972][ T6418]  syscall_trace_enter+0xd1/0x1f0
[   89.314995][ T6418]  ? fpregs_assert_state_consistent+0x83/0xa0
[   89.315024][ T6418]  do_syscall_64+0xaa/0x1c0
[   89.315057][ T6418]  ? clear_bhb_loop+0x55/0xb0
[   89.315170][ T6418]  ? clear_bhb_loop+0x55/0xb0
[   89.315271][ T6418]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.315303][ T6418] RIP: 0033:0x7f04df29d169
[   89.315323][ T6418] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   89.315343][ T6418] RSP: 002b:00007f04dd907038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[   89.315398][ T6418] RAX: ffffffffffffffda RBX: 00007f04df4b5fa0 RCX: 00007f04df29d169
[   89.315413][ T6418] RDX: 0000000000000014 RSI: 0000400000000080 RDI: 0000000000000006
[   89.315428][ T6418] RBP: 00007f04dd907090 R08: 0000000000000000 R09: 0000000000000000
[   89.315441][ T6418] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   89.315453][ T6418] R13: 0000000000000000 R14: 00007f04df4b5fa0 R15: 00007ffd111aefb8
[   89.315474][ T6418]  </TASK>
[   89.525834][ T6418] audit_log_lost: 449 callbacks suppressed
[   89.525849][ T6418] audit: audit_lost=1 audit_rate_limit=0 audit_backlog_limit=64
[   89.539853][ T6418] audit: out of memory in audit_log_start
[   89.595672][   T30] audit: type=1326 audit(1742124065.895:5907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6416 comm="syz.3.1060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f04df29bb7c code=0x7ffc0000
[   89.619010][   T30] audit: type=1326 audit(1742124065.895:5908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6416 comm="syz.3.1060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f04df29bc1f code=0x7ffc0000
[   89.642330][   T30] audit: type=1326 audit(1742124065.895:5909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6416 comm="syz.3.1060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f04df29bdca code=0x7ffc0000
[   89.665739][   T30] audit: type=1326 audit(1742124065.895:5910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6416 comm="syz.3.1060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04df29d169 code=0x7ffc0000
[   89.689173][   T30] audit: type=1326 audit(1742124065.895:5911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6416 comm="syz.3.1060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04df29d169 code=0x7ffc0000
[   89.757781][ T6426] loop3: detected capacity change from 0 to 1024
[   89.764816][ T6426] EXT4-fs: Ignoring removed nobh option
[   89.770508][ T6426] EXT4-fs: Ignoring removed bh option
[   90.000039][ T6446] loop0: detected capacity change from 0 to 1024
[   90.055875][ T6446] ext4 filesystem being mounted at /219/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   90.110086][ T6446] »»»»»»: renamed from lo
[   90.129504][ T6444] loop4: detected capacity change from 0 to 2048
[   90.183003][ T6446] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   90.206348][ T6446] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 29 with error 28
[   90.218740][ T6446] EXT4-fs (loop0): This should not happen!! Data will be lost
[   90.218740][ T6446] 
[   90.228412][ T6446] EXT4-fs (loop0): Total free blocks count 0
[   90.234410][ T6446] EXT4-fs (loop0): Free/Dirty block details
[   90.240365][ T6446] EXT4-fs (loop0): free_blocks=4293918720
[   90.246205][ T6446] EXT4-fs (loop0): dirty_blocks=64
[   90.251407][ T6446] EXT4-fs (loop0): Block reservation details
[   90.257440][ T6446] EXT4-fs (loop0): i_reserved_data_blocks=4
[   90.316362][ T6468] FAULT_INJECTION: forcing a failure.
[   90.316362][ T6468] name failslab, interval 1, probability 0, space 0, times 0
[   90.329064][ T6468] CPU: 1 UID: 0 PID: 6468 Comm: syz.1.1078 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[   90.329094][ T6468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   90.329110][ T6468] Call Trace:
[   90.329118][ T6468]  <TASK>
[   90.329126][ T6468]  dump_stack_lvl+0xf2/0x150
[   90.329186][ T6468]  dump_stack+0x15/0x1a
[   90.329212][ T6468]  should_fail_ex+0x24a/0x260
[   90.329249][ T6468]  should_failslab+0x8f/0xb0
[   90.329284][ T6468]  __kmalloc_noprof+0xab/0x3f0
[   90.329373][ T6468]  ? nla_strdup+0x7b/0xc0
[   90.329406][ T6468]  nla_strdup+0x7b/0xc0
[   90.329437][ T6468]  nf_tables_newtable+0x3e7/0xee0
[   90.329480][ T6468]  nfnetlink_rcv+0xb3e/0x15d0
[   90.329543][ T6468]  netlink_unicast+0x599/0x670
[   90.329574][ T6468]  netlink_sendmsg+0x5cc/0x6e0
[   90.329692][ T6468]  ? __pfx_netlink_sendmsg+0x10/0x10
[   90.329764][ T6468]  __sock_sendmsg+0x140/0x180
[   90.329807][ T6468]  ____sys_sendmsg+0x326/0x4b0
[   90.329838][ T6468]  __sys_sendmsg+0x19d/0x230
[   90.329879][ T6468]  __x64_sys_sendmsg+0x46/0x50
[   90.329950][ T6468]  x64_sys_call+0x2734/0x2dc0
[   90.330027][ T6468]  do_syscall_64+0xc9/0x1c0
[   90.330060][ T6468]  ? clear_bhb_loop+0x55/0xb0
[   90.330088][ T6468]  ? clear_bhb_loop+0x55/0xb0
[   90.330117][ T6468]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.330202][ T6468] RIP: 0033:0x7f7a2c2ad169
[   90.330219][ T6468] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.330240][ T6468] RSP: 002b:00007f7a2a917038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   90.330338][ T6468] RAX: ffffffffffffffda RBX: 00007f7a2c4c5fa0 RCX: 00007f7a2c2ad169
[   90.330352][ T6468] RDX: 0000000000000000 RSI: 00004000000000c0 RDI: 0000000000000003
[   90.330365][ T6468] RBP: 00007f7a2a917090 R08: 0000000000000000 R09: 0000000000000000
[   90.330377][ T6468] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   90.330423][ T6468] R13: 0000000000000000 R14: 00007f7a2c4c5fa0 R15: 00007fff55e82348
[   90.330446][ T6468]  </TASK>
[   90.574952][   T30] audit: type=1326 audit(1742124066.895:5912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6474 comm="syz.2.1081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f219122d169 code=0x7ffc0000
[   90.599217][   T30] audit: type=1326 audit(1742124066.895:5913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6474 comm="syz.2.1081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f219122d169 code=0x7ffc0000
[   90.622795][   T30] audit: type=1326 audit(1742124066.895:5914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6474 comm="syz.2.1081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f219122d169 code=0x7ffc0000
[   90.650142][ T6473] loop1: detected capacity change from 0 to 1024
[   90.661178][ T4129] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 48 with max blocks 20 with error 28
[   90.663235][ T6473] EXT4-fs: Ignoring removed nobh option
[   90.673675][ T4129] EXT4-fs (loop0): This should not happen!! Data will be lost
[   90.673675][ T4129] 
[   90.689170][ T6473] EXT4-fs: Ignoring removed bh option
[   90.828423][ T6498] loop0: detected capacity change from 0 to 764
[   91.304472][ T6520] loop0: detected capacity change from 0 to 764
[   91.336566][ T6520] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   91.386945][ T6527] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1101'.
[   91.395906][ T6527] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1101'.
[   91.411321][ T6527] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   91.420151][ T6527] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   91.428908][ T6527] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   91.437626][ T6527] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   91.631152][ T6537] loop3: detected capacity change from 0 to 764
[   91.943852][ T6546] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1109'.
[   91.949678][ T6542] »»»»»» speed is unknown, defaulting to 1000
[   91.966969][ T6544] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1108'.
[   91.968047][ T6546] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[   91.977766][ T6544] loop2: detected capacity change from 0 to 128
[   91.992472][ T6544] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   92.015917][ T6544] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   92.071335][ T6544] usb usb2: usbfs: process 6544 (syz.2.1108) did not claim interface 63 before use
[   92.098434][ T6549] loop0: detected capacity change from 0 to 512
[   92.107298][   T37] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   92.115963][ T6549] EXT4-fs: Ignoring removed bh option
[   92.121955][ T6549] EXT4-fs: Ignoring removed mblk_io_submit option
[   92.135941][ T6542] wg1 speed is unknown, defaulting to 1000
[   92.140527][ T6557] loop2: detected capacity change from 0 to 764
[   92.169440][ T6549] ext4 filesystem being mounted at /225/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   92.212706][ T6565] FAULT_INJECTION: forcing a failure.
[   92.212706][ T6565] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   92.225884][ T6565] CPU: 1 UID: 0 PID: 6565 Comm: syz.4.1115 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[   92.225916][ T6565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   92.225931][ T6565] Call Trace:
[   92.225940][ T6565]  <TASK>
[   92.225949][ T6565]  dump_stack_lvl+0xf2/0x150
[   92.225985][ T6565]  dump_stack+0x15/0x1a
[   92.226011][ T6565]  should_fail_ex+0x24a/0x260
[   92.226049][ T6565]  should_fail+0xb/0x10
[   92.226135][ T6565]  should_fail_usercopy+0x1a/0x20
[   92.226176][ T6565]  _copy_from_user+0x1c/0xa0
[   92.226200][ T6565]  snd_seq_ioctl+0x11b/0x2a0
[   92.226288][ T6565]  ? __pfx_snd_seq_ioctl+0x10/0x10
[   92.226322][ T6565]  __se_sys_ioctl+0xc9/0x140
[   92.226351][ T6565]  __x64_sys_ioctl+0x43/0x50
[   92.226408][ T6565]  x64_sys_call+0x1690/0x2dc0
[   92.226437][ T6565]  do_syscall_64+0xc9/0x1c0
[   92.226472][ T6565]  ? clear_bhb_loop+0x55/0xb0
[   92.226504][ T6565]  ? clear_bhb_loop+0x55/0xb0
[   92.226531][ T6565]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.226575][ T6565] RIP: 0033:0x7f0fad06d169
[   92.226592][ T6565] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   92.226624][ T6565] RSP: 002b:00007f0fab6d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   92.226646][ T6565] RAX: ffffffffffffffda RBX: 00007f0fad285fa0 RCX: 00007f0fad06d169
[   92.226660][ T6565] RDX: 0000400000000180 RSI: 000000004058534c RDI: 0000000000000003
[   92.226674][ T6565] RBP: 00007f0fab6d7090 R08: 0000000000000000 R09: 0000000000000000
[   92.226704][ T6565] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   92.226717][ T6565] R13: 0000000000000000 R14: 00007f0fad285fa0 R15: 00007ffe73c58f58
[   92.226736][ T6565]  </TASK>
[   93.807238][ T6589] loop0: detected capacity change from 0 to 512
[   93.830811][ T6589] ext4: Unknown parameter 'euid<00000000000000000000'
[   94.098195][ T6609] loop1: detected capacity change from 0 to 512
[   94.129069][ T6609] EXT4-fs error (device loop1): ext4_xattr_block_get:596: inode #2: comm syz.1.1132: corrupted xattr block 255: invalid header
[   94.158364][ T6609] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117
[   94.166792][ T6613] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1134'.
[   94.168920][ T6613] loop3: detected capacity change from 0 to 128
[   94.176933][ T6609] EXT4-fs error (device loop1): ext4_xattr_block_get:596: inode #2: comm syz.1.1132: corrupted xattr block 255: invalid header
[   94.195935][ T6605] loop4: detected capacity change from 0 to 2048
[   94.204190][ T6609] SELinux: (dev loop1, type ext4) getxattr errno 117
[   94.208412][ T6613] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   94.224261][ T6613] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   94.262812][ T6613] usb usb2: usbfs: process 6613 (syz.3.1134) did not claim interface 63 before use
[   94.307234][   T29] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   94.697383][ T6643] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1144'.
[   94.724301][ T6643] loop4: detected capacity change from 0 to 128
[   94.738286][   T30] kauditd_printk_skb: 267 callbacks suppressed
[   94.738314][   T30] audit: type=1326 audit(1742124071.065:6182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6644 comm="syz.2.1145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f219122d169 code=0x7ffc0000
[   94.768230][   T30] audit: type=1326 audit(1742124071.065:6183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6644 comm="syz.2.1145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f219122d169 code=0x7ffc0000
[   94.792699][ T6643] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   94.843893][ T6643] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   94.890104][ T6643] usb usb2: usbfs: process 6643 (syz.4.1144) did not claim interface 63 before use
[   94.960592][   T30] audit: type=1326 audit(1742124071.135:6184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6644 comm="syz.2.1145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f219122d169 code=0x7ffc0000
[   94.984051][   T30] audit: type=1326 audit(1742124071.135:6185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6644 comm="syz.2.1145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f219122d169 code=0x7ffc0000
[   95.007571][   T30] audit: type=1326 audit(1742124071.135:6186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6644 comm="syz.2.1145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f219122d169 code=0x7ffc0000
[   95.030999][   T30] audit: type=1326 audit(1742124071.135:6187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6644 comm="syz.2.1145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f219122d169 code=0x7ffc0000
[   95.054444][   T30] audit: type=1326 audit(1742124071.135:6188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6644 comm="syz.2.1145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f219122d169 code=0x7ffc0000
[   95.077881][   T30] audit: type=1326 audit(1742124071.135:6189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6644 comm="syz.2.1145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f219122d169 code=0x7ffc0000
[   95.101910][   T30] audit: type=1326 audit(1742124071.135:6190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6644 comm="syz.2.1145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f219122d169 code=0x7ffc0000
[   95.125403][   T30] audit: type=1326 audit(1742124071.135:6191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6644 comm="syz.2.1145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f219122d169 code=0x7ffc0000
[   95.181954][ T6653] loop1: detected capacity change from 0 to 1024
[   95.232050][   T51] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   95.246187][ T6653] ext4 filesystem being mounted at /236/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   95.298318][ T6660] loop4: detected capacity change from 0 to 764
[   95.299131][ T6653] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   95.346549][ T6653] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 29 with error 28
[   95.358947][ T6653] EXT4-fs (loop1): This should not happen!! Data will be lost
[   95.358947][ T6653] 
[   95.368749][ T6653] EXT4-fs (loop1): Total free blocks count 0
[   95.374785][ T6653] EXT4-fs (loop1): Free/Dirty block details
[   95.380697][ T6653] EXT4-fs (loop1): free_blocks=4293918720
[   95.386582][ T6653] EXT4-fs (loop1): dirty_blocks=64
[   95.391928][ T6653] EXT4-fs (loop1): Block reservation details
[   95.397972][ T6653] EXT4-fs (loop1): i_reserved_data_blocks=4
[   95.444592][ T6671] »»»»»» speed is unknown, defaulting to 1000
[   95.501826][ T4129] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 48 with max blocks 20 with error 28
[   95.514566][ T4129] EXT4-fs (loop1): This should not happen!! Data will be lost
[   95.514566][ T4129] 
[   95.585803][ T6671] wg1 speed is unknown, defaulting to 1000
[   95.714881][ T6696] loop4: detected capacity change from 0 to 764
[   95.850155][ T6706] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1170'.
[   96.216451][ T6725] loop4: detected capacity change from 0 to 764
[   96.277702][ T6731] loop2: detected capacity change from 0 to 1024
[   96.284638][ T6731] EXT4-fs: Ignoring removed nobh option
[   96.290579][ T6731] EXT4-fs: Ignoring removed bh option
[   96.309829][ T6733] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   96.326739][   T25] Process accounting resumed
[   96.339947][ T6735] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[   96.353735][ T6735] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   96.387547][ T6743] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1186'.
[   96.461613][ T6751] »»»»»» speed is unknown, defaulting to 1000
[   96.549749][ T6751] wg1 speed is unknown, defaulting to 1000
[   96.790267][ T6767] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1194'.
[   96.819828][ T6769] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   96.832290][   T10] Process accounting resumed
[   96.954202][ T6781] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1202'.
[   97.068857][ T6789] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1205'.
[   97.271059][ T6796] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   97.302527][ T1108] Process accounting resumed
[   97.460785][ T6816] loop1: detected capacity change from 0 to 512
[   97.483543][ T6816] EXT4-fs error (device loop1): ext4_xattr_block_get:596: inode #2: comm syz.1.1215: corrupted xattr block 255: invalid header
[   97.501436][ T6816] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117
[   97.510428][ T6816] EXT4-fs error (device loop1): ext4_xattr_block_get:596: inode #2: comm syz.1.1215: corrupted xattr block 255: invalid header
[   97.532597][ T6816] SELinux: (dev loop1, type ext4) getxattr errno 117
[   97.709930][ T6834] pim6reg1: entered promiscuous mode
[   97.715607][ T6834] pim6reg1: entered allmulticast mode
[   97.879969][ T6850] loop0: detected capacity change from 0 to 1024
[   97.955245][ T6858] loop2: detected capacity change from 0 to 1024
[   97.967607][ T6858] ext4 filesystem being mounted at /272/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   97.979115][ T6850] ext4 filesystem being mounted at /246/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   98.065554][ T6850] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   98.080623][ T6858] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   98.132848][ T6850] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 29 with error 28
[   98.145234][ T6850] EXT4-fs (loop0): This should not happen!! Data will be lost
[   98.145234][ T6850] 
[   98.154912][ T6850] EXT4-fs (loop0): Total free blocks count 0
[   98.160979][ T6850] EXT4-fs (loop0): Free/Dirty block details
[   98.166907][ T6850] EXT4-fs (loop0): free_blocks=4293918720
[   98.172740][ T6850] EXT4-fs (loop0): dirty_blocks=64
[   98.177877][ T6850] EXT4-fs (loop0): Block reservation details
[   98.183876][ T6850] EXT4-fs (loop0): i_reserved_data_blocks=4
[   98.194486][ T6858] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 29 with error 28
[   98.206891][ T6858] EXT4-fs (loop2): This should not happen!! Data will be lost
[   98.206891][ T6858] 
[   98.216596][ T6858] EXT4-fs (loop2): Total free blocks count 0
[   98.222615][ T6858] EXT4-fs (loop2): Free/Dirty block details
[   98.228540][ T6858] EXT4-fs (loop2): free_blocks=4293918720
[   98.234406][ T6858] EXT4-fs (loop2): dirty_blocks=64
[   98.239629][ T6858] EXT4-fs (loop2): Block reservation details
[   98.245726][ T6858] EXT4-fs (loop2): i_reserved_data_blocks=4
[   98.351077][ T3416] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 48 with max blocks 20 with error 28
[   98.363686][ T3416] EXT4-fs (loop0): This should not happen!! Data will be lost
[   98.363686][ T3416] 
[   98.471650][ T3416] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 48 with max blocks 20 with error 28
[   98.484399][ T3416] EXT4-fs (loop2): This should not happen!! Data will be lost
[   98.484399][ T3416] 
[   98.840815][ T6900] sg_write: data in/out 122/14 bytes for SCSI command 0x0-- guessing data in;
[   98.840815][ T6900]    program syz.1.1246 not setting count and/or reply_len properly
[   98.928725][ T6914] loop3: detected capacity change from 0 to 764
[   98.980922][ T6916] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1253'.
[   99.010818][ T6916] loop2: detected capacity change from 0 to 128
[   99.020034][ T6916] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   99.035601][ T6916] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   99.048198][ T6916] usb usb2: usbfs: process 6916 (syz.2.1253) did not claim interface 63 before use
[   99.084646][   T51] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   99.218425][ T6939] FAULT_INJECTION: forcing a failure.
[   99.218425][ T6939] name failslab, interval 1, probability 0, space 0, times 0
[   99.231137][ T6939] CPU: 0 UID: 0 PID: 6939 Comm: syz.4.1263 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[   99.231164][ T6939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   99.231173][ T6944] loop3: detected capacity change from 0 to 512
[   99.231281][ T6939] Call Trace:
[   99.231292][ T6939]  <TASK>
[   99.231303][ T6939]  dump_stack_lvl+0xf2/0x150
[   99.231340][ T6939]  dump_stack+0x15/0x1a
[   99.231378][ T6939]  should_fail_ex+0x24a/0x260
[   99.231437][ T6939]  should_failslab+0x8f/0xb0
[   99.231477][ T6939]  kmem_cache_alloc_noprof+0x52/0x320
[   99.231506][ T6939]  ? audit_log_start+0x34c/0x6b0
[   99.231605][ T6939]  audit_log_start+0x34c/0x6b0
[   99.231645][ T6939]  ? kmem_cache_free+0xdc/0x2d0
[   99.231676][ T6939]  audit_seccomp+0x4b/0x130
[   99.231715][ T6939]  __seccomp_filter+0x6fa/0x1180
[   99.231810][ T6939]  ? selinux_capable+0x1f2/0x260
[   99.231853][ T6939]  __secure_computing+0x9f/0x1c0
[   99.231902][ T6939]  syscall_trace_enter+0xd1/0x1f0
[   99.231933][ T6939]  ? fpregs_assert_state_consistent+0x83/0xa0
[   99.231963][ T6939]  do_syscall_64+0xaa/0x1c0
[   99.232004][ T6939]  ? clear_bhb_loop+0x55/0xb0
[   99.232048][ T6939]  ? clear_bhb_loop+0x55/0xb0
[   99.232082][ T6939]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.232196][ T6939] RIP: 0033:0x7f0fad06bb7c
[   99.232215][ T6939] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   99.232238][ T6939] RSP: 002b:00007f0fab6d7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   99.232263][ T6939] RAX: ffffffffffffffda RBX: 00007f0fad285fa0 RCX: 00007f0fad06bb7c
[   99.232331][ T6939] RDX: 000000000000000f RSI: 00007f0fab6d70a0 RDI: 0000000000000003
[   99.232347][ T6939] RBP: 00007f0fab6d7090 R08: 0000000000000000 R09: 0000000000000000
[   99.232362][ T6939] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   99.232376][ T6939] R13: 0000000000000000 R14: 00007f0fad285fa0 R15: 00007ffe73c58f58
[   99.232400][ T6939]  </TASK>
[   99.266507][ T6946] loop2: detected capacity change from 0 to 1024
[   99.361640][ T6948] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1267'.
[   99.446205][ T6948] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1267'.
[   99.458456][ T6944] EXT4-fs error (device loop3): ext4_xattr_block_get:596: inode #2: comm syz.3.1265: corrupted xattr block 255: invalid header
[   99.490477][ T6946] EXT4-fs mount: 42 callbacks suppressed
[   99.490501][ T6946] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   99.514826][ T6944] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117
[   99.550687][ T6944] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.561486][ T6946] ext4 filesystem being mounted at /278/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   99.576370][ T6944] EXT4-fs error (device loop3): ext4_xattr_block_get:596: inode #2: comm syz.3.1265: corrupted xattr block 255: invalid header
[   99.592130][ T6944] SELinux: (dev loop3, type ext4) getxattr errno 117
[   99.605242][ T6944] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.633101][ T6958] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1269'.
[   99.644722][ T6958] loop4: detected capacity change from 0 to 128
[   99.651574][ T6958] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   99.669502][ T6962] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1271'.
[   99.676696][ T6946] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   99.678778][ T6958] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   99.709748][ T6962] loop0: detected capacity change from 0 to 128
[   99.710669][ T6946] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 29 with error 28
[   99.719254][ T6962] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   99.728504][ T6946] EXT4-fs (loop2): This should not happen!! Data will be lost
[   99.728504][ T6946] 
[   99.749839][ T6946] EXT4-fs (loop2): Total free blocks count 0
[   99.750634][ T6958] usb usb2: usbfs: process 6958 (syz.4.1269) did not claim interface 63 before use
[   99.755906][ T6946] EXT4-fs (loop2): Free/Dirty block details
[   99.755924][ T6946] EXT4-fs (loop2): free_blocks=4293918720
[   99.755940][ T6946] EXT4-fs (loop2): dirty_blocks=64
[   99.755953][ T6946] EXT4-fs (loop2): Block reservation details
[   99.755963][ T6946] EXT4-fs (loop2): i_reserved_data_blocks=4
[   99.797999][ T6962] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   99.819235][ T6962] usb usb2: usbfs: process 6962 (syz.0.1271) did not claim interface 63 before use
[   99.878015][   T29] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   99.900441][ T3416] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   99.940263][   T30] kauditd_printk_skb: 603 callbacks suppressed
[   99.940279][   T30] audit: type=1326 audit(1742124076.265:6793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6975 comm="syz.0.1275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a20cd169 code=0x7ffc0000
[   99.992784][   T30] audit: type=1326 audit(1742124076.305:6794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6975 comm="syz.0.1275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7ff4a20cd169 code=0x7ffc0000
[  100.016353][   T30] audit: type=1326 audit(1742124076.305:6795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6975 comm="syz.0.1275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a20cd169 code=0x7ffc0000
[  100.040001][   T30] audit: type=1326 audit(1742124076.305:6796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6975 comm="syz.0.1275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a20cd169 code=0x7ffc0000
[  100.063505][   T30] audit: type=1326 audit(1742124076.305:6797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6975 comm="syz.0.1275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=286 compat=0 ip=0x7ff4a20cd169 code=0x7ffc0000
[  100.086972][   T30] audit: type=1326 audit(1742124076.305:6798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6975 comm="syz.0.1275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a20cd169 code=0x7ffc0000
[  100.110621][   T30] audit: type=1326 audit(1742124076.305:6799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6975 comm="syz.0.1275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a20cd169 code=0x7ffc0000
[  100.134116][   T30] audit: type=1326 audit(1742124076.305:6800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6975 comm="syz.0.1275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff4a20cd169 code=0x7ffc0000
[  100.157500][   T30] audit: type=1326 audit(1742124076.305:6801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6975 comm="syz.0.1275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a20cd169 code=0x7ffc0000
[  100.180947][   T30] audit: type=1326 audit(1742124076.305:6802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6975 comm="syz.0.1275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a20cd169 code=0x7ffc0000
[  100.248966][ T3416] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 48 with max blocks 20 with error 28
[  100.602844][ T6989] loop3: detected capacity change from 0 to 764
[  100.831425][ T6996] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1286'.
[  100.870997][ T6996] loop0: detected capacity change from 0 to 128
[  100.905579][ T6996] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  100.943623][ T6996] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  100.968271][ T6996] usb usb2: usbfs: process 6996 (syz.0.1286) did not claim interface 63 before use
[  100.983478][ T7003] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1289'.
[  100.992580][ T7003] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1289'.
[  101.003627][ T7004] loop2: detected capacity change from 0 to 764
[  101.024070][   T51] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  101.053535][ T7006] loop0: detected capacity change from 0 to 764
[  101.093341][ T7008] loop2: detected capacity change from 0 to 1024
[  101.101446][ T7008] EXT4-fs: Ignoring removed nobh option
[  101.107171][ T7008] EXT4-fs: Ignoring removed bh option
[  101.130600][ T7008] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.198187][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.249747][ T7030] loop1: detected capacity change from 0 to 512
[  101.268663][ T7030] EXT4-fs error (device loop1): ext4_xattr_block_get:596: inode #2: comm syz.1.1300: corrupted xattr block 255: invalid header
[  101.285379][ T7030] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117
[  101.299634][ T7030] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.314075][ T7030] EXT4-fs error (device loop1): ext4_xattr_block_get:596: inode #2: comm syz.1.1300: corrupted xattr block 255: invalid header
[  101.332419][ T7030] SELinux: (dev loop1, type ext4) getxattr errno 117
[  101.343228][ T7030] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.540741][ T7060] sg_write: data in/out 122/14 bytes for SCSI command 0x0-- guessing data in;
[  101.540741][ T7060]    program syz.1.1314 not setting count and/or reply_len properly
[  101.582681][ T7066] sg_write: data in/out 122/14 bytes for SCSI command 0x0-- guessing data in;
[  101.582681][ T7066]    program syz.4.1317 not setting count and/or reply_len properly
[  101.667789][ T7076] loop4: detected capacity change from 0 to 512
[  101.690720][ T7076] EXT4-fs error (device loop4): ext4_xattr_block_get:596: inode #2: comm syz.4.1322: corrupted xattr block 255: invalid header
[  101.691272][ T7075] pim6reg: entered allmulticast mode
[  101.719866][ T7076] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[  101.729422][ T7076] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.741430][ T7075] pim6reg: left allmulticast mode
[  101.756060][ T7076] EXT4-fs error (device loop4): ext4_xattr_block_get:596: inode #2: comm syz.4.1322: corrupted xattr block 255: invalid header
[  101.774380][ T7076] SELinux: (dev loop4, type ext4) getxattr errno 117
[  101.783080][ T7076] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.934940][ T7092] loop2: detected capacity change from 0 to 1024
[  101.957929][ T7092] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.979789][ T7092] ext4 filesystem being mounted at /295/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  102.017968][ T7097] loop3: detected capacity change from 0 to 1024
[  102.061292][ T7097] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.087542][ T7092] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  102.112413][ T7097] ext4 filesystem being mounted at /242/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  102.123127][ T7092] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 29 with error 28
[  102.135497][ T7092] EXT4-fs (loop2): This should not happen!! Data will be lost
[  102.135497][ T7092] 
[  102.145225][ T7092] EXT4-fs (loop2): Total free blocks count 0
[  102.151383][ T7092] EXT4-fs (loop2): Free/Dirty block details
[  102.157356][ T7092] EXT4-fs (loop2): free_blocks=4293918720
[  102.163127][ T7092] EXT4-fs (loop2): dirty_blocks=64
[  102.168366][ T7092] EXT4-fs (loop2): Block reservation details
[  102.174685][ T7092] EXT4-fs (loop2): i_reserved_data_blocks=4
[  102.221898][ T7097] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  102.264526][ T7117] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1336'.
[  102.285493][   T51] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 48 with max blocks 20 with error 28
[  102.308398][ T7097] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 29 with error 28
[  102.320919][ T7097] EXT4-fs (loop3): This should not happen!! Data will be lost
[  102.320919][ T7097] 
[  102.330735][ T7097] EXT4-fs (loop3): Total free blocks count 0
[  102.336834][ T7097] EXT4-fs (loop3): Free/Dirty block details
[  102.342809][ T7097] EXT4-fs (loop3): free_blocks=4293918720
[  102.348596][ T7097] EXT4-fs (loop3): dirty_blocks=64
[  102.353740][ T7097] EXT4-fs (loop3): Block reservation details
[  102.359790][ T7097] EXT4-fs (loop3): i_reserved_data_blocks=4
[  102.425955][   T51] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 48 with max blocks 20 with error 28
[  102.451122][ T7122] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1339'.
[  102.473933][ T7122] loop1: detected capacity change from 0 to 128
[  102.492675][ T7122] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  102.510526][ T7122] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  102.540912][ T7128] Invalid ELF header magic: != ELF
[  102.547706][ T7122] usb usb2: usbfs: process 7122 (syz.1.1339) did not claim interface 63 before use
[  102.622983][   T51] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  102.628482][ T7145] loop3: detected capacity change from 0 to 512
[  102.637365][ T7143] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1347'.
[  102.681466][ T7149] loop2: detected capacity change from 0 to 1024
[  102.699389][ T7153] loop1: detected capacity change from 0 to 2048
[  102.795350][ T7149] EXT4-fs: Ignoring removed nobh option
[  102.801077][ T7149] EXT4-fs: Ignoring removed bh option
[  102.827099][ T7153] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.839568][ T7153] ext4 filesystem being mounted at /266/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  102.840579][ T7149] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.905461][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.035911][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.547322][ T7203] loop0: detected capacity change from 0 to 128
[  103.567902][ T7203] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  103.605720][ T7203] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  103.656213][ T7203] usb usb2: usbfs: process 7203 (syz.0.1367) did not claim interface 63 before use
[  103.697796][ T3403] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  103.754629][ T7207] loop0: detected capacity change from 0 to 1024
[  103.780667][ T7207] EXT4-fs: Ignoring removed nobh option
[  103.786438][ T7207] EXT4-fs: Ignoring removed bh option
[  103.817668][ T7207] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  104.022683][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.104814][ T7229] loop1: detected capacity change from 0 to 1024
[  104.167531][ T7229] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.203802][ T7229] ext4 filesystem being mounted at /272/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  104.301388][ T7229] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  104.336791][ T7229] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 29 with error 28
[  104.349279][ T7229] EXT4-fs (loop1): This should not happen!! Data will be lost
[  104.349279][ T7229] 
[  104.359154][ T7229] EXT4-fs (loop1): Total free blocks count 0
[  104.365261][ T7229] EXT4-fs (loop1): Free/Dirty block details
[  104.371261][ T7229] EXT4-fs (loop1): free_blocks=4293918720
[  104.377171][ T7229] EXT4-fs (loop1): dirty_blocks=64
[  104.382313][ T7229] EXT4-fs (loop1): Block reservation details
[  104.388435][ T7229] EXT4-fs (loop1): i_reserved_data_blocks=4
[  104.452533][   T51] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 48 with max blocks 20 with error 28
[  104.579149][ T7255] loop4: detected capacity change from 0 to 764
[  104.671530][ T7263] Invalid ELF header magic: != ELF
[  104.750918][ T7269] loop4: detected capacity change from 0 to 1024
[  104.763411][ T7271] sd 0:0:1:0: device reset
[  104.770512][ T7269] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.783025][ T7269] ext4 filesystem being mounted at /286/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  104.803078][ T7275] __nla_validate_parse: 6 callbacks suppressed
[  104.803099][ T7275] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1396'.
[  104.828758][ T7275] loop0: detected capacity change from 0 to 128
[  104.842333][ T7271] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1395'.
[  104.852074][ T7275] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  104.854467][ T7269] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  104.879847][ T7269] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 29 with error 28
[  104.884700][ T7275] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  104.892338][ T7269] EXT4-fs (loop4): This should not happen!! Data will be lost
[  104.892338][ T7269] 
[  104.911196][ T7269] EXT4-fs (loop4): Total free blocks count 0
[  104.917384][ T7269] EXT4-fs (loop4): Free/Dirty block details
[  104.922450][ T7275] usb usb2: usbfs: process 7275 (syz.0.1396) did not claim interface 63 before use
[  104.923336][ T7269] EXT4-fs (loop4): free_blocks=4293918720
[  104.938721][ T7269] EXT4-fs (loop4): dirty_blocks=64
[  104.943854][ T7269] EXT4-fs (loop4): Block reservation details
[  104.949919][ T7269] EXT4-fs (loop4): i_reserved_data_blocks=4
[  104.972721][ T7271] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1395'.
[  104.992727][ T3416] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 48 with max blocks 20 with error 28
[  105.006528][ T4129] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  105.033947][ T7271] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1395'.
[  105.047030][ T7286] loop3: detected capacity change from 0 to 764
[  105.091646][ T7294] loop4: detected capacity change from 0 to 764
[  105.155305][ T7301] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1404'.
[  105.180038][ T7307] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1407'.
[  105.189157][ T7307] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1407'.
[  105.258720][ T7311] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1409'.
[  105.279133][ T7311] loop2: detected capacity change from 0 to 128
[  105.289845][ T7311] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  105.312766][ T7311] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  105.315726][ T7320] loop3: detected capacity change from 0 to 764
[  105.330160][   T30] kauditd_printk_skb: 366 callbacks suppressed
[  105.330213][   T30] audit: type=1400 audit(1742124081.655:7169): avc:  denied  { getopt } for  pid=7316 comm="syz.0.1412" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  105.333403][ T7311] usb usb2: usbfs: process 7311 (syz.2.1409) did not claim interface 63 before use
[  105.379643][ T4129] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  105.428552][ T7332] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1420'.
[  105.484188][ T7336] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1421'.
[  105.553007][ T7346] loop2: detected capacity change from 0 to 1024
[  105.568648][ T7341] loop4: detected capacity change from 0 to 2048
[  105.594184][ T7346] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.606463][ T7350] loop3: detected capacity change from 0 to 1024
[  105.614016][ T7346] ext4 filesystem being mounted at /311/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  105.629054][ T7350] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.648350][   T30] audit: type=1326 audit(1742124081.975:7170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7343 comm="syz.0.1425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a20cd169 code=0x7ffc0000
[  105.675960][ T7348] loop1: detected capacity change from 0 to 128
[  105.678423][   T30] audit: type=1326 audit(1742124081.975:7171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7343 comm="syz.0.1425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a20cd169 code=0x7ffc0000
[  105.710865][ T7348] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  105.723106][ T7357] loop4: detected capacity change from 0 to 764
[  105.723338][ T7348] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  105.759969][ T7348] usb usb2: usbfs: process 7348 (syz.1.1427) did not claim interface 63 before use
[  105.777394][ T7350] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.1428: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  105.805318][ T7346] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  105.827759][ T7346] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 29 with error 28
[  105.840385][ T7346] EXT4-fs (loop2): This should not happen!! Data will be lost
[  105.840385][ T7346] 
[  105.850243][ T7346] EXT4-fs (loop2): Total free blocks count 0
[  105.856285][ T7346] EXT4-fs (loop2): Free/Dirty block details
[  105.862247][ T7346] EXT4-fs (loop2): free_blocks=4293918720
[  105.868020][ T7346] EXT4-fs (loop2): dirty_blocks=64
[  105.872762][ T7364] GUP no longer grows the stack in syz.3.1428 (7364): 400000004000-400000009000 (400000002000)
[  105.873162][ T7346] EXT4-fs (loop2): Block reservation details
[  105.883520][ T7364] CPU: 1 UID: 0 PID: 7364 Comm: syz.3.1428 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  105.883552][ T7364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  105.883582][ T7364] Call Trace:
[  105.883592][ T7364]  <TASK>
[  105.883602][ T7364]  dump_stack_lvl+0xf2/0x150
[  105.883685][ T7364]  dump_stack+0x15/0x1a
[  105.883713][ T7364]  __get_user_pages+0x1de5/0x2350
[  105.883768][ T7364]  ? __rcu_read_unlock+0x4e/0x70
[  105.883800][ T7364]  get_user_pages_remote+0x1df/0x790
[  105.883838][ T7364]  __access_remote_vm+0x15b/0x580
[  105.883871][ T7364]  access_remote_vm+0x34/0x50
[  105.883898][ T7364]  proc_pid_cmdline_read+0x3e5/0x6b0
[  105.884018][ T7364]  vfs_readv+0x3e2/0x660
[  105.884041][ T7364]  ? __pfx_proc_pid_cmdline_read+0x10/0x10
[  105.884089][ T7364]  __x64_sys_preadv+0xf4/0x1c0
[  105.884197][ T7364]  x64_sys_call+0x2680/0x2dc0
[  105.884232][ T7364]  do_syscall_64+0xc9/0x1c0
[  105.884280][ T7364]  ? clear_bhb_loop+0x55/0xb0
[  105.884315][ T7364]  ? clear_bhb_loop+0x55/0xb0
[  105.884368][ T7364]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.884403][ T7364] RIP: 0033:0x7f04df29d169
[  105.884424][ T7364] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.884527][ T7364] RSP: 002b:00007f04dd8e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  105.884551][ T7364] RAX: ffffffffffffffda RBX: 00007f04df4b6080 RCX: 00007f04df29d169
[  105.884598][ T7364] RDX: 0000000000000001 RSI: 0000400000000040 RDI: 000000000000000c
[  105.884613][ T7364] RBP: 00007f04df31e2a0 R08: 0000000000000000 R09: 0000000000000000
[  105.884629][ T7364] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  105.884642][ T7364] R13: 0000000000000000 R14: 00007f04df4b6080 R15: 00007ffd111aefb8
[  105.884695][ T7364]  </TASK>
[  105.953839][   T30] audit: type=1400 audit(1742124082.195:7172): avc:  denied  { setattr } for  pid=7349 comm="syz.3.1428" name="bus" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  105.956915][ T7346] EXT4-fs (loop2): i_reserved_data_blocks=4
[  105.983518][ T3416] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  106.123145][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.154679][ T4129] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 48 with max blocks 20 with error 28
[  106.189835][ T7385] loop1: detected capacity change from 0 to 764
[  106.203951][   T30] audit: type=1326 audit(1742124082.525:7173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7380 comm="syz.3.1436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04df29d169 code=0x7ffc0000
[  106.227517][   T30] audit: type=1326 audit(1742124082.525:7174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7380 comm="syz.3.1436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04df29d169 code=0x7ffc0000
[  106.251226][   T30] audit: type=1326 audit(1742124082.525:7175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7380 comm="syz.3.1436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f04df29d169 code=0x7ffc0000
[  106.274913][   T30] audit: type=1326 audit(1742124082.525:7176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7380 comm="syz.3.1436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04df29d169 code=0x7ffc0000
[  106.298447][   T30] audit: type=1326 audit(1742124082.525:7177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7380 comm="syz.3.1436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04df29d169 code=0x7ffc0000
[  106.322278][   T30] audit: type=1326 audit(1742124082.525:7178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7380 comm="syz.3.1436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f04df29d169 code=0x7ffc0000
[  106.371148][ T7394] loop1: detected capacity change from 0 to 1024
[  106.393700][ T7394] EXT4-fs: Ignoring removed nobh option
[  106.399465][ T7394] EXT4-fs: Ignoring removed bh option
[  106.436252][ T7394] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.482967][ T7407] loop0: detected capacity change from 0 to 1024
[  106.515711][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.532499][ T7407] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  106.551322][ T7407] ext4 filesystem being mounted at /294/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  106.559922][ T7414] loop4: detected capacity change from 0 to 764
[  106.667408][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.955656][ T7437] loop0: detected capacity change from 0 to 2048
[  106.988438][ T7439] loop0: detected capacity change from 0 to 1024
[  106.995722][ T7439] EXT4-fs: Ignoring removed nobh option
[  107.001884][ T7439] EXT4-fs: Ignoring removed bh option
[  107.027307][ T7439] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  107.069807][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.198321][ T7450] loop3: detected capacity change from 0 to 128
[  107.206316][ T7450] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  107.219072][ T7450] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  107.259289][ T7450] usb usb2: usbfs: process 7450 (syz.3.1465) did not claim interface 63 before use
[  107.288825][   T51] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  107.423368][ T7463] loop3: detected capacity change from 0 to 2048
[  107.467500][ T7469] loop2: detected capacity change from 0 to 128
[  107.493011][ T7469] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  107.520767][ T7469] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  107.558436][ T7474] loop3: detected capacity change from 0 to 2048
[  107.577874][ T7469] usb usb2: usbfs: process 7469 (syz.2.1474) did not claim interface 63 before use
[  107.611716][ T7474] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.626944][ T7474] ext4 filesystem being mounted at /261/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.640789][ T7478] loop4: detected capacity change from 0 to 764
[  107.649788][   T51] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  107.954315][ T7497] loop2: detected capacity change from 0 to 1024
[  107.980559][ T7497] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.068623][ T7497] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.1485: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  108.136050][ T7510] loop4: detected capacity change from 0 to 1024
[  108.163057][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.177777][ T7510] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  108.190227][ T7508] loop1: detected capacity change from 0 to 128
[  108.197194][ T7508] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  108.209348][ T7510] ext4 filesystem being mounted at /313/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  108.220550][ T7508] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  108.232548][ T7485] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1476: bg 0: block 345: padding at end of block bitmap is not set
[  108.253636][ T7485] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 16 with error 117
[  108.266209][ T7485] EXT4-fs (loop3): This should not happen!! Data will be lost
[  108.266209][ T7485] 
[  108.278261][ T7508] usb usb2: usbfs: process 7508 (syz.1.1489) did not claim interface 63 before use
[  108.322082][ T3403] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  108.455234][ T3297] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.621020][ T7544] loop4: detected capacity change from 0 to 128
[  108.638777][ T7544] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  108.651103][ T7544] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  108.666415][ T7544] usb usb2: usbfs: process 7544 (syz.4.1504) did not claim interface 63 before use
[  108.702243][ T3403] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  108.923301][ T7557] FAULT_INJECTION: forcing a failure.
[  108.923301][ T7557] name failslab, interval 1, probability 0, space 0, times 0
[  108.936075][ T7557] CPU: 0 UID: 0 PID: 7557 Comm: syz.4.1508 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  108.936107][ T7557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  108.936120][ T7557] Call Trace:
[  108.936142][ T7557]  <TASK>
[  108.936152][ T7557]  dump_stack_lvl+0xf2/0x150
[  108.936185][ T7557]  dump_stack+0x15/0x1a
[  108.936206][ T7557]  should_fail_ex+0x24a/0x260
[  108.936314][ T7557]  should_failslab+0x8f/0xb0
[  108.936353][ T7557]  kmem_cache_alloc_node_noprof+0x59/0x320
[  108.936389][ T7557]  ? __alloc_skb+0x10b/0x310
[  108.936418][ T7557]  __alloc_skb+0x10b/0x310
[  108.936446][ T7557]  alloc_skb_with_frags+0x80/0x450
[  108.936523][ T7557]  ? is_bpf_text_address+0x138/0x150
[  108.936557][ T7557]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  108.936598][ T7557]  ? kernel_text_address+0x96/0xb0
[  108.936660][ T7557]  sock_alloc_send_pskb+0x435/0x4f0
[  108.936692][ T7557]  ? stack_depot_save_flags+0x7b0/0x820
[  108.936730][ T7557]  __ip_append_data+0x1975/0x24c0
[  108.936791][ T7557]  ? __x64_sys_sendmmsg+0x57/0x70
[  108.936872][ T7557]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  108.936896][ T7557]  ? dst_init+0x208/0x260
[  108.936927][ T7557]  ? _raw_spin_unlock_bh+0x36/0x40
[  108.936956][ T7557]  ? rt_set_nexthop+0x4c7/0x560
[  108.936988][ T7557]  ? __rcu_read_unlock+0x4e/0x70
[  108.937043][ T7557]  ip_make_skb+0x13f/0x2c0
[  108.937072][ T7557]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  108.937100][ T7557]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  108.937123][ T7557]  udp_sendmsg+0x12cb/0x1390
[  108.937250][ T7557]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  108.937289][ T7557]  ? __pfx_udp_sendmsg+0x10/0x10
[  108.937332][ T7557]  inet_sendmsg+0xaf/0xd0
[  108.937363][ T7557]  __sock_sendmsg+0x102/0x180
[  108.937407][ T7557]  ____sys_sendmsg+0x326/0x4b0
[  108.937466][ T7557]  __sys_sendmmsg+0x227/0x4b0
[  108.937523][ T7557]  __x64_sys_sendmmsg+0x57/0x70
[  108.937622][ T7557]  x64_sys_call+0x29aa/0x2dc0
[  108.937656][ T7557]  do_syscall_64+0xc9/0x1c0
[  108.937699][ T7557]  ? clear_bhb_loop+0x55/0xb0
[  108.937733][ T7557]  ? clear_bhb_loop+0x55/0xb0
[  108.937833][ T7557]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.937860][ T7557] RIP: 0033:0x7f0fad06d169
[  108.937878][ T7557] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.937978][ T7557] RSP: 002b:00007f0fab6d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  108.937997][ T7557] RAX: ffffffffffffffda RBX: 00007f0fad285fa0 RCX: 00007f0fad06d169
[  108.938009][ T7557] RDX: 000000000800001d RSI: 0000400000007fc0 RDI: 0000000000000003
[  108.938021][ T7557] RBP: 00007f0fab6d7090 R08: 0000000000000000 R09: 0000000000000000
[  108.938087][ T7557] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  108.938101][ T7557] R13: 0000000000000000 R14: 00007f0fad285fa0 R15: 00007ffe73c58f58
[  108.938120][ T7557]  </TASK>
[  109.476914][ T7562] loop1: detected capacity change from 0 to 1024
[  109.477528][   T36] IPVS: starting estimator thread 0...
[  109.514431][ T7562] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.533394][ T7562] ext4 filesystem being mounted at /290/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  109.552580][ T7574] loop4: detected capacity change from 0 to 512
[  109.570317][ T7574] EXT4-fs error (device loop4): ext4_xattr_block_get:596: inode #2: comm syz.4.1515: corrupted xattr block 255: invalid header
[  109.594815][ T7558] IPVS: using max 2304 ests per chain, 115200 per kthread
[  109.604154][ T7574] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[  109.623223][ T7574] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.642332][ T7583] loop0: detected capacity change from 0 to 1024
[  109.645031][ T7574] EXT4-fs error (device loop4): ext4_xattr_block_get:596: inode #2: comm syz.4.1515: corrupted xattr block 255: invalid header
[  109.664356][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.675184][ T7574] SELinux: (dev loop4, type ext4) getxattr errno 117
[  109.681153][ T7583] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.682372][ T7574] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.694577][ T7583] ext4 filesystem being mounted at /313/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  109.891838][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.990840][ T7614] __nla_validate_parse: 11 callbacks suppressed
[  109.990863][ T7614] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1526'.
[  110.038931][ T7614] loop2: detected capacity change from 0 to 128
[  110.046236][ T7614] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  110.133539][ T7614] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  110.360049][ T7626] sd 0:0:1:0: device reset
[  110.532824][ T7485] syz.3.1476 (7485) used greatest stack depth: 9152 bytes left
[  110.714206][   T29] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 2048 with error 117
[  110.727137][   T29] EXT4-fs (loop3): This should not happen!! Data will be lost
[  110.727137][   T29] 
[  110.848718][ T3403] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  110.850143][ T4129] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 2081 with max blocks 2024 with error 28
[  110.870850][ T4129] EXT4-fs (loop3): This should not happen!! Data will be lost
[  110.870850][ T4129] 
[  110.880831][ T4129] EXT4-fs (loop3): Total free blocks count 0
[  110.886847][ T4129] EXT4-fs (loop3): Free/Dirty block details
[  110.892788][ T4129] EXT4-fs (loop3): free_blocks=0
[  110.908323][ T7638] loop2: detected capacity change from 0 to 512
[  110.939627][ T7638] EXT4-fs error (device loop2): ext4_xattr_block_get:596: inode #2: comm syz.2.1540: corrupted xattr block 255: invalid header
[  110.954991][ T7638] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -117
[  110.974037][ T7638] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.990502][   T30] kauditd_printk_skb: 102 callbacks suppressed
[  110.990518][   T30] audit: type=1326 audit(1742124087.315:7281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7636 comm="syz.4.1539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fad06d169 code=0x7ffc0000
[  110.995132][ T7638] EXT4-fs error (device loop2): ext4_xattr_block_get:596: inode #2: comm syz.2.1540: corrupted xattr block 255: invalid header
[  111.024842][   T30] audit: type=1326 audit(1742124087.325:7282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7636 comm="syz.4.1539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0fad06d169 code=0x7ffc0000
[  111.056971][   T30] audit: type=1326 audit(1742124087.325:7283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7636 comm="syz.4.1539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fad06d169 code=0x7ffc0000
[  111.065065][ T7638] SELinux: (dev loop2, type ext4) getxattr errno 117
[  111.080439][   T30] audit: type=1326 audit(1742124087.325:7284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7636 comm="syz.4.1539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=115 compat=0 ip=0x7f0fad06d169 code=0x7ffc0000
[  111.087960][ T7638] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.110824][   T30] audit: type=1326 audit(1742124087.325:7285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7636 comm="syz.4.1539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fad06d169 code=0x7ffc0000
[  111.143278][   T30] audit: type=1326 audit(1742124087.325:7286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7636 comm="syz.4.1539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0fad06d169 code=0x7ffc0000
[  111.166659][   T30] audit: type=1326 audit(1742124087.325:7287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7636 comm="syz.4.1539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fad06d169 code=0x7ffc0000
[  111.190251][   T30] audit: type=1326 audit(1742124087.325:7288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7636 comm="syz.4.1539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0fad06d169 code=0x7ffc0000
[  111.213599][   T30] audit: type=1326 audit(1742124087.325:7289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7636 comm="syz.4.1539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fad06d169 code=0x7ffc0000
[  111.237220][   T30] audit: type=1326 audit(1742124087.325:7290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7636 comm="syz.4.1539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f0fad06d169 code=0x7ffc0000
[  111.278465][ T7644] loop3: detected capacity change from 0 to 1024
[  111.318694][ T7644] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  111.340302][ T7644] ext4 filesystem being mounted at /262/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  111.398402][ T7655] loop0: detected capacity change from 0 to 764
[  111.462825][ T7661] loop4: detected capacity change from 0 to 764
[  111.499687][ T7666] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1557'.
[  111.516641][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.650957][ T7671] loop4: detected capacity change from 0 to 764
[  111.736997][ T7679] loop4: detected capacity change from 0 to 512
[  111.764558][ T7679] EXT4-fs error (device loop4): ext4_xattr_block_get:596: inode #2: comm syz.4.1552: corrupted xattr block 255: invalid header
[  111.870308][ T7679] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[  111.916149][ T7679] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.937862][ T7679] EXT4-fs error (device loop4): ext4_xattr_block_get:596: inode #2: comm syz.4.1552: corrupted xattr block 255: invalid header
[  111.960842][ T7679] SELinux: (dev loop4, type ext4) getxattr errno 117
[  111.993126][ T7679] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.102060][ T7704] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1563'.
[  112.367907][ T7733] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1576'.
[  112.640206][ T7747] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  112.665288][ T7747] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  112.781159][ T7758] loop4: detected capacity change from 0 to 1024
[  112.805426][ T1108] IPVS: starting estimator thread 0...
[  112.815417][ T7758] EXT4-fs: Ignoring removed nobh option
[  112.821055][ T7758] EXT4-fs: Ignoring removed bh option
[  112.864328][ T7758] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.904948][ T7762] IPVS: using max 2304 ests per chain, 115200 per kthread
[  112.939979][ T7758] siw: device registration error -23
[  113.018921][ T3297] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.115849][ T7783] sd 0:0:1:0: device reset
[  113.734073][ T7851] loop0: detected capacity change from 0 to 764
[  113.797052][ T7858] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1599'.
[  113.817839][ T7858] batadv0: entered promiscuous mode
[  113.832412][ T7858] macvtap1: entered promiscuous mode
[  113.839487][ T7858] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  113.874017][ T7858] batadv0: left promiscuous mode
[  114.050021][ T7890] loop2: detected capacity change from 0 to 2048
[  114.239263][ T7928] sg_write: data in/out 122/14 bytes for SCSI command 0x0-- guessing data in;
[  114.239263][ T7928]    program syz.2.1608 not setting count and/or reply_len properly
[  114.645972][ T7970] loop4: detected capacity change from 0 to 1024
[  114.659355][ T7970] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  114.690805][ T7970] ext4 filesystem being mounted at /351/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  114.808724][ T7981] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1623'.
[  114.823067][ T7979] loop1: detected capacity change from 0 to 2048
[  114.824384][ T3297] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.913339][ T7988] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1626'.
[  114.931723][ T7992] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1628'.
[  114.943601][ T7992] loop3: detected capacity change from 0 to 128
[  114.953349][ T7992] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  114.987038][ T7992] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  115.005159][ T7992] usb usb2: usbfs: process 7992 (syz.3.1628) did not claim interface 63 before use
[  115.044333][ T3416] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  115.109738][ T8002] loop3: detected capacity change from 0 to 1024
[  115.136196][ T8002] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.158192][ T8002] ext4 filesystem being mounted at /272/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  115.204035][ T8015] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1638'.
[  115.218664][ T8015] bond0: option miimon: invalid value (18446744073537628286)
[  115.226314][ T8015] bond0: option miimon: allowed values 0 - 2147483647
[  115.237355][ T8023] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1640'.
[  115.238199][ T8002] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  115.262176][ T8002] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 29 with error 28
[  115.274683][ T8002] EXT4-fs (loop3): This should not happen!! Data will be lost
[  115.274683][ T8002] 
[  115.284417][ T8002] EXT4-fs (loop3): Total free blocks count 0
[  115.290563][ T8002] EXT4-fs (loop3): Free/Dirty block details
[  115.296559][ T8002] EXT4-fs (loop3): free_blocks=4293918720
[  115.302303][ T8002] EXT4-fs (loop3): dirty_blocks=64
[  115.307531][ T8002] EXT4-fs (loop3): Block reservation details
[  115.313606][ T8002] EXT4-fs (loop3): i_reserved_data_blocks=4
[  115.320557][ T8024] loop1: detected capacity change from 0 to 2048
[  115.338748][ T8029] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1641'.
[  115.362462][   T12] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 48 with max blocks 20 with error 28
[  115.400009][ T8034] loop4: detected capacity change from 0 to 1024
[  115.407811][ T8034] EXT4-fs: Ignoring removed nobh option
[  115.413429][ T8034] EXT4-fs: Ignoring removed bh option
[  115.451595][ T8034] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  115.456101][ T8044] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1643'.
[  115.481337][ T8047] netlink: 100 bytes leftover after parsing attributes in process `syz.2.1649'.
[  115.484579][ T8044] loop3: detected capacity change from 0 to 128
[  115.502125][ T8044] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  115.513830][ T8034] siw: device registration error -23
[  115.521021][ T8044] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  115.552740][ T8044] usb usb2: usbfs: process 8044 (syz.3.1643) did not claim interface 63 before use
[  115.572977][ T3297] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.585901][ T8052] loop2: detected capacity change from 0 to 1024
[  115.609991][   T12] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  115.619733][ T8052] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  115.677612][ T8063] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1655'.
[  115.693351][ T8061] loop1: detected capacity change from 0 to 2048
[  115.739117][ T8052] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.1651: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  115.824393][ T8086] loop4: detected capacity change from 0 to 1764
[  115.841563][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.849314][ T8086] netlink: 200 bytes leftover after parsing attributes in process `syz.4.1666'.
[  115.861396][ T8084] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5 sclass=netlink_route_socket pid=8084 comm=syz.3.1665
[  115.883290][ T8086] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1666'.
[  115.911109][ T8086] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1666'.
[  115.942862][ T8086] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  115.950384][ T8086] batman_adv: batadv0: Removing interface: batadv_slave_0
[  115.965074][ T8099] FAULT_INJECTION: forcing a failure.
[  115.965074][ T8099] name failslab, interval 1, probability 0, space 0, times 0
[  115.977750][ T8099] CPU: 0 UID: 0 PID: 8099 Comm: syz.2.1667 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  115.977777][ T8099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  115.977866][ T8099] Call Trace:
[  115.977873][ T8099]  <TASK>
[  115.977881][ T8099]  dump_stack_lvl+0xf2/0x150
[  115.977912][ T8099]  dump_stack+0x15/0x1a
[  115.978004][ T8099]  should_fail_ex+0x24a/0x260
[  115.978066][ T8099]  should_failslab+0x8f/0xb0
[  115.978095][ T8099]  kmem_cache_alloc_noprof+0x52/0x320
[  115.978137][ T8099]  ? skb_clone+0x154/0x1f0
[  115.978168][ T8099]  skb_clone+0x154/0x1f0
[  115.978259][ T8099]  dev_queue_xmit_nit+0x14b/0x680
[  115.978284][ T8099]  dev_hard_start_xmit+0xcc/0x3f0
[  115.978315][ T8099]  __dev_queue_xmit+0x100a/0x2090
[  115.978434][ T8099]  ? __dev_queue_xmit+0x186/0x2090
[  115.978481][ T8099]  ? __skb_clone+0x2d0/0x2f0
[  115.978511][ T8099]  __netlink_deliver_tap+0x3be/0x4f0
[  115.978559][ T8099]  netlink_unicast+0x64a/0x670
[  115.978594][ T8099]  netlink_sendmsg+0x5cc/0x6e0
[  115.978633][ T8099]  ? __pfx_netlink_sendmsg+0x10/0x10
[  115.978684][ T8099]  __sock_sendmsg+0x140/0x180
[  115.978720][ T8099]  ____sys_sendmsg+0x326/0x4b0
[  115.978749][ T8099]  __sys_sendmsg+0x19d/0x230
[  115.978789][ T8099]  __x64_sys_sendmsg+0x46/0x50
[  115.978901][ T8099]  x64_sys_call+0x2734/0x2dc0
[  115.978933][ T8099]  do_syscall_64+0xc9/0x1c0
[  115.978964][ T8099]  ? clear_bhb_loop+0x55/0xb0
[  115.979064][ T8099]  ? clear_bhb_loop+0x55/0xb0
[  115.979090][ T8099]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.979115][ T8099] RIP: 0033:0x7f219122d169
[  115.979131][ T8099] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.979153][ T8099] RSP: 002b:00007f218f876038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  115.979297][ T8099] RAX: ffffffffffffffda RBX: 00007f2191446080 RCX: 00007f219122d169
[  115.979314][ T8099] RDX: 0000000000000000 RSI: 0000400000000040 RDI: 0000000000000003
[  115.979326][ T8099] RBP: 00007f218f876090 R08: 0000000000000000 R09: 0000000000000000
[  115.979340][ T8099] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  115.979354][ T8099] R13: 0000000000000001 R14: 00007f2191446080 R15: 00007ffef745dae8
[  115.979375][ T8099]  </TASK>
[  115.979471][ T8099] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1667'.
[  116.213392][ T8086] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  116.220979][ T8086] batman_adv: batadv0: Removing interface: batadv_slave_1
[  116.348637][ T8110] loop1: detected capacity change from 0 to 2048
[  116.423476][ T8123] loop4: detected capacity change from 0 to 1024
[  116.482055][ T8123] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  116.507758][ T8136] loop3: detected capacity change from 0 to 1024
[  116.522784][ T8123] ext4 filesystem being mounted at /366/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  116.553707][ T8136] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.594318][ T8136] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.1683: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  116.622572][ T8123] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  116.661559][ T8123] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 29 with error 28
[  116.674251][ T8123] EXT4-fs (loop4): This should not happen!! Data will be lost
[  116.674251][ T8123] 
[  116.684050][ T8123] EXT4-fs (loop4): Total free blocks count 0
[  116.690316][ T8123] EXT4-fs (loop4): Free/Dirty block details
[  116.696316][ T8123] EXT4-fs (loop4): free_blocks=4293918720
[  116.702289][ T8123] EXT4-fs (loop4): dirty_blocks=64
[  116.707502][ T8123] EXT4-fs (loop4): Block reservation details
[  116.713604][ T8123] EXT4-fs (loop4): i_reserved_data_blocks=4
[  116.792053][ T3403] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 48 with max blocks 20 with error 28
[  116.870293][ T8155] FAULT_INJECTION: forcing a failure.
[  116.870293][ T8155] name failslab, interval 1, probability 0, space 0, times 0
[  116.883042][ T8155] CPU: 1 UID: 0 PID: 8155 Comm: syz.2.1691 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  116.883127][ T8155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  116.883150][ T8155] Call Trace:
[  116.883157][ T8155]  <TASK>
[  116.883165][ T8155]  dump_stack_lvl+0xf2/0x150
[  116.883196][ T8155]  dump_stack+0x15/0x1a
[  116.883223][ T8155]  should_fail_ex+0x24a/0x260
[  116.883259][ T8155]  should_failslab+0x8f/0xb0
[  116.883359][ T8155]  kmem_cache_alloc_node_noprof+0x59/0x320
[  116.883382][ T8155]  ? __alloc_skb+0x10b/0x310
[  116.883408][ T8155]  __alloc_skb+0x10b/0x310
[  116.883430][ T8155]  netlink_alloc_large_skb+0xad/0xe0
[  116.883500][ T8155]  netlink_sendmsg+0x3b4/0x6e0
[  116.883546][ T8155]  ? __pfx_netlink_sendmsg+0x10/0x10
[  116.883586][ T8155]  __sock_sendmsg+0x140/0x180
[  116.883656][ T8155]  ____sys_sendmsg+0x326/0x4b0
[  116.883692][ T8155]  __sys_sendmsg+0x19d/0x230
[  116.883780][ T8155]  __x64_sys_sendmsg+0x46/0x50
[  116.883810][ T8155]  x64_sys_call+0x2734/0x2dc0
[  116.883917][ T8155]  do_syscall_64+0xc9/0x1c0
[  116.883949][ T8155]  ? clear_bhb_loop+0x55/0xb0
[  116.884050][ T8155]  ? clear_bhb_loop+0x55/0xb0
[  116.884076][ T8155]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.884105][ T8155] RIP: 0033:0x7f219122d169
[  116.884123][ T8155] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  116.884183][ T8155] RSP: 002b:00007f218f897038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  116.884206][ T8155] RAX: ffffffffffffffda RBX: 00007f2191445fa0 RCX: 00007f219122d169
[  116.884220][ T8155] RDX: 0000000000000000 RSI: 0000400000000140 RDI: 0000000000000007
[  116.884231][ T8155] RBP: 00007f218f897090 R08: 0000000000000000 R09: 0000000000000000
[  116.884243][ T8155] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  116.884254][ T8155] R13: 0000000000000000 R14: 00007f2191445fa0 R15: 00007ffef745dae8
[  116.884273][ T8155]  </TASK>
[  117.098862][ T8158] loop4: detected capacity change from 0 to 1024
[  117.105951][ T8158] EXT4-fs: Ignoring removed nobh option
[  117.111612][ T8158] EXT4-fs: Ignoring removed bh option
[  117.126660][ T8159] loop3: detected capacity change from 0 to 2048
[  117.231594][ T8158] siw: device registration error -23
[  117.302905][ T8173] loop2: detected capacity change from 0 to 764
[  117.315205][ T8175] loop4: detected capacity change from 0 to 1024
[  117.340975][   T30] kauditd_printk_skb: 117 callbacks suppressed
[  117.340992][   T30] audit: type=1326 audit(1742124094.669:7408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8180 comm="syz.1.1699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a2c2ad169 code=0x7ffc0000
[  117.346054][ T8175] ext4 filesystem being mounted at /368/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  117.371941][   T30] audit: type=1326 audit(1742124094.699:7409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8180 comm="syz.1.1699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a2c2ad169 code=0x7ffc0000
[  117.405055][   T30] audit: type=1326 audit(1742124094.699:7410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8180 comm="syz.1.1699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=148 compat=0 ip=0x7f7a2c2ad169 code=0x7ffc0000
[  117.428508][   T30] audit: type=1326 audit(1742124094.699:7411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8180 comm="syz.1.1699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a2c2ad169 code=0x7ffc0000
[  117.452079][   T30] audit: type=1326 audit(1742124094.699:7412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8180 comm="syz.1.1699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a2c2ad169 code=0x7ffc0000
[  117.487621][ T8175] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  117.509516][   T30] audit: type=1326 audit(1742124094.809:7413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8180 comm="syz.1.1699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=173 compat=0 ip=0x7f7a2c2ad169 code=0x7ffc0000
[  117.533239][   T30] audit: type=1326 audit(1742124094.809:7414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8180 comm="syz.1.1699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a2c2ad169 code=0x7ffc0000
[  117.556747][   T30] audit: type=1326 audit(1742124094.809:7415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8180 comm="syz.1.1699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a2c2ad169 code=0x7ffc0000
[  117.560804][ T8175] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 29 with error 28
[  117.585097][   T30] audit: type=1326 audit(1742124094.809:7416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8180 comm="syz.1.1699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7a2c2ad169 code=0x7ffc0000
[  117.592593][ T8175] EXT4-fs (loop4): This should not happen!! Data will be lost
[  117.592593][ T8175] 
[  117.615989][   T30] audit: type=1326 audit(1742124094.809:7417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8180 comm="syz.1.1699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a2c2ad169 code=0x7ffc0000
[  117.625565][ T8175] EXT4-fs (loop4): Total free blocks count 0
[  117.625582][ T8175] EXT4-fs (loop4): Free/Dirty block details
[  117.625594][ T8175] EXT4-fs (loop4): free_blocks=4293918720
[  117.625610][ T8175] EXT4-fs (loop4): dirty_blocks=64
[  117.625624][ T8175] EXT4-fs (loop4): Block reservation details
[  117.625638][ T8175] EXT4-fs (loop4): i_reserved_data_blocks=4
[  117.797541][ T4129] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 48 with max blocks 20 with error 28
[  117.810097][ T4129] EXT4-fs (loop4): This should not happen!! Data will be lost
[  117.810097][ T4129] 
[  117.889709][ T8211] sd 0:0:1:0: device reset
[  117.931502][ T8217] sd 0:0:1:0: device reset
[  117.989050][ T8225] loop2: detected capacity change from 0 to 1024
[  117.996003][ T8225] EXT4-fs: Ignoring removed nobh option
[  118.001753][ T8225] EXT4-fs: Ignoring removed bh option
[  118.060381][ T8225] siw: device registration error -23
[  118.153635][ T8248] loop4: detected capacity change from 0 to 764
[  118.199089][ T8252] sd 0:0:1:0: device reset
[  118.207863][ T8250] loop0: detected capacity change from 0 to 2048
[  118.286610][ T8262] FAULT_INJECTION: forcing a failure.
[  118.286610][ T8262] name failslab, interval 1, probability 0, space 0, times 0
[  118.299477][ T8262] CPU: 1 UID: 0 PID: 8262 Comm: syz.0.1734 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  118.299543][ T8262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  118.299555][ T8262] Call Trace:
[  118.299563][ T8262]  <TASK>
[  118.299572][ T8262]  dump_stack_lvl+0xf2/0x150
[  118.299604][ T8262]  dump_stack+0x15/0x1a
[  118.299630][ T8262]  should_fail_ex+0x24a/0x260
[  118.299745][ T8262]  should_failslab+0x8f/0xb0
[  118.299786][ T8262]  __kmalloc_node_noprof+0xad/0x410
[  118.299813][ T8262]  ? __kvmalloc_node_noprof+0x72/0x170
[  118.299843][ T8262]  ? __rmqueue_pcplist+0xf7e/0x1110
[  118.299882][ T8262]  __kvmalloc_node_noprof+0x72/0x170
[  118.299922][ T8262]  seq_read_iter+0x144/0x930
[  118.299948][ T8262]  ? should_fail_ex+0xd7/0x260
[  118.299984][ T8262]  kernfs_fop_read_iter+0xc0/0x310
[  118.300047][ T8262]  copy_splice_read+0x383/0x5b0
[  118.300078][ T8262]  ? __pfx_copy_splice_read+0x10/0x10
[  118.300104][ T8262]  splice_direct_to_actor+0x269/0x670
[  118.300159][ T8262]  ? __pfx_direct_splice_actor+0x10/0x10
[  118.300196][ T8262]  do_splice_direct+0xd7/0x150
[  118.300227][ T8262]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  118.300294][ T8262]  do_sendfile+0x398/0x660
[  118.300366][ T8262]  __x64_sys_sendfile64+0x110/0x150
[  118.300447][ T8262]  x64_sys_call+0xfbd/0x2dc0
[  118.300479][ T8262]  do_syscall_64+0xc9/0x1c0
[  118.300588][ T8262]  ? clear_bhb_loop+0x55/0xb0
[  118.300615][ T8262]  ? clear_bhb_loop+0x55/0xb0
[  118.300648][ T8262]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.300680][ T8262] RIP: 0033:0x7ff4a20cd169
[  118.300697][ T8262] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  118.300741][ T8262] RSP: 002b:00007ff4a0737038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  118.300764][ T8262] RAX: ffffffffffffffda RBX: 00007ff4a22e5fa0 RCX: 00007ff4a20cd169
[  118.300779][ T8262] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000007
[  118.300793][ T8262] RBP: 00007ff4a0737090 R08: 0000000000000000 R09: 0000000000000000
[  118.300806][ T8262] R10: 000000007ffff000 R11: 0000000000000246 R12: 0000000000000001
[  118.300820][ T8262] R13: 0000000000000000 R14: 00007ff4a22e5fa0 R15: 00007fff874dd528
[  118.300858][ T8262]  </TASK>
[  118.549958][ T8266] loop2: detected capacity change from 0 to 1024
[  118.558806][ T8266] EXT4-fs: Ignoring removed nobh option
[  118.564550][ T8266] EXT4-fs: Ignoring removed bh option
[  118.596391][ T8266] siw: device registration error -23
[  118.622133][ T8277] loop0: detected capacity change from 0 to 1024
[  118.678316][ T8277] ext4 filesystem being mounted at /348/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  118.713012][ T8277] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  118.728108][ T8277] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 29 with error 28
[  118.740569][ T8277] EXT4-fs (loop0): This should not happen!! Data will be lost
[  118.740569][ T8277] 
[  118.750712][ T8277] EXT4-fs (loop0): Total free blocks count 0
[  118.756851][ T8277] EXT4-fs (loop0): Free/Dirty block details
[  118.762911][ T8277] EXT4-fs (loop0): free_blocks=4293918720
[  118.768694][ T8277] EXT4-fs (loop0): dirty_blocks=64
[  118.773857][ T8277] EXT4-fs (loop0): Block reservation details
[  118.773873][ T8277] EXT4-fs (loop0): i_reserved_data_blocks=4
[  118.796461][ T8287] loop1: detected capacity change from 0 to 2048
[  118.831524][ T4129] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 48 with max blocks 20 with error 28
[  118.844003][ T4129] EXT4-fs (loop0): This should not happen!! Data will be lost
[  118.844003][ T4129] 
[  118.906874][ T8299] loop3: detected capacity change from 0 to 512
[  118.913618][ T8299] EXT4-fs: Ignoring removed nobh option
[  118.936603][ T8295] loop2: detected capacity change from 0 to 1024
[  118.993018][ T8299] EXT4-fs error (device loop3): ext4_do_update_inode:5154: inode #3: comm syz.3.1748: corrupted inode contents
[  119.006976][ T8295] ext4 filesystem being mounted at /372/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  119.029507][ T8299] EXT4-fs (loop3): Remounting filesystem read-only
[  119.047494][ T8299] EXT4-fs (loop3): 1 truncate cleaned up
[  119.068794][ T8299] SELinux: (dev loop3, type ext4) getxattr errno 5
[  119.085388][ T8295] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  119.110319][ T8295] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 29 with error 28
[  119.123238][ T8295] EXT4-fs (loop2): This should not happen!! Data will be lost
[  119.123238][ T8295] 
[  119.132925][ T8295] EXT4-fs (loop2): Total free blocks count 0
[  119.139020][ T8295] EXT4-fs (loop2): Free/Dirty block details
[  119.144973][ T8295] EXT4-fs (loop2): free_blocks=4293918720
[  119.150709][ T8295] EXT4-fs (loop2): dirty_blocks=64
[  119.155911][ T8295] EXT4-fs (loop2): Block reservation details
[  119.162000][ T8295] EXT4-fs (loop2): i_reserved_data_blocks=4
[  119.212965][ T3416] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 48 with max blocks 20 with error 28
[  119.225578][ T3416] EXT4-fs (loop2): This should not happen!! Data will be lost
[  119.225578][ T3416] 
[  120.114304][ T8322] loop3: detected capacity change from 0 to 512
[  120.162472][ T8322] EXT4-fs error (device loop3): ext4_acquire_dquot:6927: comm syz.3.1752: Failed to acquire dquot type 1
[  120.176797][ T8322] EXT4-fs (loop3): 1 truncate cleaned up
[  120.179511][ T8324] sg_write: data in/out 122/14 bytes for SCSI command 0x0-- guessing data in;
[  120.179511][ T8324]    program syz.1.1754 not setting count and/or reply_len properly
[  120.183261][ T8322] ext4 filesystem being mounted at /298/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  120.313538][ T8346] __nla_validate_parse: 4 callbacks suppressed
[  120.313558][ T8346] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1762'.
[  120.408853][ T8352] loop4: detected capacity change from 0 to 1024
[  120.449672][ T8352] ext4 filesystem being mounted at /381/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  120.491539][ T8361] FAULT_INJECTION: forcing a failure.
[  120.491539][ T8361] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  120.504812][ T8361] CPU: 0 UID: 0 PID: 8361 Comm: syz.2.1768 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  120.504837][ T8361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  120.504915][ T8361] Call Trace:
[  120.504922][ T8361]  <TASK>
[  120.504930][ T8361]  dump_stack_lvl+0xf2/0x150
[  120.504988][ T8361]  dump_stack+0x15/0x1a
[  120.505015][ T8361]  should_fail_ex+0x24a/0x260
[  120.505091][ T8361]  should_fail+0xb/0x10
[  120.505200][ T8361]  should_fail_usercopy+0x1a/0x20
[  120.505238][ T8361]  _copy_to_user+0x20/0xa0
[  120.505260][ T8361]  rng_dev_read+0x3e8/0x700
[  120.505304][ T8361]  vfs_readv+0x3e2/0x660
[  120.505327][ T8361]  ? __pfx_rng_dev_read+0x10/0x10
[  120.505365][ T8361]  __x64_sys_preadv+0xf4/0x1c0
[  120.505400][ T8361]  x64_sys_call+0x2680/0x2dc0
[  120.505489][ T8361]  do_syscall_64+0xc9/0x1c0
[  120.505519][ T8361]  ? clear_bhb_loop+0x55/0xb0
[  120.505549][ T8361]  ? clear_bhb_loop+0x55/0xb0
[  120.505644][ T8361]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.505680][ T8361] RIP: 0033:0x7f219122d169
[  120.505709][ T8361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  120.505731][ T8361] RSP: 002b:00007f218f897038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  120.505760][ T8361] RAX: ffffffffffffffda RBX: 00007f2191445fa0 RCX: 00007f219122d169
[  120.505774][ T8361] RDX: 0000000000000001 RSI: 0000400000000240 RDI: 0000000000000006
[  120.505789][ T8361] RBP: 00007f218f897090 R08: 0000000000000000 R09: 0000000000000000
[  120.505846][ T8361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  120.505893][ T8361] R13: 0000000000000000 R14: 00007f2191445fa0 R15: 00007ffef745dae8
[  120.505917][ T8361]  </TASK>
[  120.701702][ T8365] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  120.744982][ T8365] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 29 with error 28
[  120.757555][ T8365] EXT4-fs (loop4): This should not happen!! Data will be lost
[  120.757555][ T8365] 
[  120.767245][ T8365] EXT4-fs (loop4): Total free blocks count 0
[  120.773251][ T8365] EXT4-fs (loop4): Free/Dirty block details
[  120.779271][ T8365] EXT4-fs (loop4): free_blocks=4293918720
[  120.785131][ T8365] EXT4-fs (loop4): dirty_blocks=64
[  120.790323][ T8365] EXT4-fs (loop4): Block reservation details
[  120.796427][ T8365] EXT4-fs (loop4): i_reserved_data_blocks=4
[  120.896887][   T29] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 48 with max blocks 20 with error 28
[  120.909436][   T29] EXT4-fs (loop4): This should not happen!! Data will be lost
[  120.909436][   T29] 
[  120.996605][ T8370] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1771'.
[  121.015217][ T8372] tipc: Started in network mode
[  121.020147][ T8372] tipc: Node identity 7f000001, cluster identity 4711
[  121.033336][ T8370] loop3: detected capacity change from 0 to 128
[  121.044959][ T8372] tipc: Enabled bearer <udp:syz2>, priority 10
[  121.054728][ T8370] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  121.072798][ T8370] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  121.100676][ T8370] usb usb2: usbfs: process 8370 (syz.3.1771) did not claim interface 63 before use
[  121.134040][   T12] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  121.469551][ T8391] loop3: detected capacity change from 0 to 1024
[  121.501306][ T8391] EXT4-fs: Ignoring removed nobh option
[  121.507097][ T8391] EXT4-fs: Ignoring removed bh option
[  121.605283][ T8391] siw: device registration error -23
[  121.813278][ T8378] loop4: detected capacity change from 0 to 1024
[  121.967246][ T8407] loop3: detected capacity change from 0 to 512
[  122.011248][ T8407] journal_path: Non-blockdev passed as './bus'
[  122.017629][ T8407] EXT4-fs: error: could not find journal device path
[  122.109633][ T8422] loop2: detected capacity change from 0 to 1024
[  122.164884][   T36] tipc: Node number set to 2130706433
[  122.176569][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  122.176776][ T8424] loop1: detected capacity change from 0 to 512
[  122.184035][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  122.184128][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  122.190786][ T8420] loop4: detected capacity change from 0 to 512
[  122.191091][ T8420] EXT4-fs: Ignoring removed i_version option
[  122.231749][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  122.239434][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  122.247142][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  122.254621][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  122.262543][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  122.270086][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  122.277547][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  122.285116][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  122.292535][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  122.300009][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  122.307506][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  122.312760][ T8420] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  122.325137][ T8424] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  122.371720][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  122.376982][ T8420] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e028, mo2=0002]
[  122.379458][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  122.394652][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  122.402229][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  122.409812][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  122.417378][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  122.425099][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  122.432824][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  122.440291][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  122.440401][ T8420] System zones: 1-12
[  122.447727][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  122.447734][ T8420] 
[  122.447756][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  122.447852][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  122.464414][ T8424] EXT4-fs (loop1): 1 truncate cleaned up
[  122.468889][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  122.468932][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  122.499358][ T8443] loop0: detected capacity change from 0 to 512
[  122.509267][ T8420] EXT4-fs (loop4): orphan cleanup on readonly fs
[  122.520586][ T8420] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.1792: invalid indirect mapped block 12 (level 1)
[  122.535575][ T8420] EXT4-fs (loop4): Remounting filesystem read-only
[  122.542156][ T8420] EXT4-fs (loop4): 1 truncate cleaned up
[  122.552088][ T8443] journal_path: Non-blockdev passed as './bus'
[  122.558381][ T8443] EXT4-fs: error: could not find journal device path
[  122.559273][ T8420] SELinux: (dev loop4, type ext4) getxattr errno 5
[  122.565734][ T8437] netlink: 20 bytes leftover after parsing attributes in process `¾]q.<{¼ÝcôÕÑÈ�Ð'.
[  122.594332][   T36] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  122.637900][ T8437] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  122.655206][ T8448] loop0: detected capacity change from 0 to 1024
[  122.664203][   T30] kauditd_printk_skb: 141 callbacks suppressed
[  122.664221][   T30] audit: type=1400 audit(1742124099.989:7555): avc:  denied  { unlink } for  pid=8423 comm="syz.1.1794" name="file1" dev="loop1" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  122.702306][ T8437] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  122.733161][   T30] audit: type=1326 audit(1742124100.059:7556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8454 comm="syz.2.1806" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f219122d169 code=0x7ffc0000
[  122.740067][ T8448] ext4 filesystem being mounted at /353/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.763959][   T30] audit: type=1326 audit(1742124100.059:7557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8454 comm="syz.2.1806" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f219122d169 code=0x7ffc0000
[  122.795285][   T30] audit: type=1326 audit(1742124100.059:7558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8454 comm="syz.2.1806" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f219122d169 code=0x7ffc0000
[  122.819049][   T30] audit: type=1326 audit(1742124100.059:7559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8454 comm="syz.2.1806" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f219122d169 code=0x7ffc0000
[  122.842644][   T30] audit: type=1326 audit(1742124100.059:7560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8454 comm="syz.2.1806" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f219122d169 code=0x7ffc0000
[  122.866382][   T30] audit: type=1326 audit(1742124100.059:7561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8454 comm="syz.2.1806" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f219122d169 code=0x7ffc0000
[  122.889884][   T30] audit: type=1326 audit(1742124100.059:7562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8454 comm="syz.2.1806" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f219122d169 code=0x7ffc0000
[  122.913334][   T30] audit: type=1326 audit(1742124100.059:7563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8454 comm="syz.2.1806" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f219122d169 code=0x7ffc0000
[  122.922833][ T8460] loop2: detected capacity change from 0 to 2048
[  122.936887][   T30] audit: type=1326 audit(1742124100.059:7564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8454 comm="syz.2.1806" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f219122d169 code=0x7ffc0000
[  123.001116][ T8463] loop0: detected capacity change from 0 to 1024
[  123.014484][ T8460] Alternate GPT is invalid, using primary GPT.
[  123.021027][ T8460]  loop2: p1 p2 p3
[  123.083426][ T8458] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1806'.
[  123.150137][ T8478] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1814'.
[  123.186107][ T8476] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1813'.
[  123.206903][ T8476] loop2: detected capacity change from 0 to 128
[  123.217529][ T8476] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  123.229924][ T8476] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  123.243618][ T8476] usb usb2: usbfs: process 8476 (syz.2.1813) did not claim interface 63 before use
[  123.271168][ T3416] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  123.294054][ T8490] loop4: detected capacity change from 0 to 1024
[  123.314343][ T8493] loop2: detected capacity change from 0 to 1024
[  123.323181][ T8490] ext4 filesystem being mounted at /396/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  123.339655][ T8493] ext4 filesystem being mounted at /389/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  123.407541][ T8490] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  123.433588][ T8490] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 29 with error 28
[  123.446217][ T8490] EXT4-fs (loop4): This should not happen!! Data will be lost
[  123.446217][ T8490] 
[  123.456062][ T8490] EXT4-fs (loop4): Total free blocks count 0
[  123.462178][ T8490] EXT4-fs (loop4): Free/Dirty block details
[  123.468317][ T8490] EXT4-fs (loop4): free_blocks=4293918720
[  123.474265][ T8490] EXT4-fs (loop4): dirty_blocks=64
[  123.475193][ T8514] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1827'.
[  123.479448][ T8490] EXT4-fs (loop4): Block reservation details
[  123.479462][ T8490] EXT4-fs (loop4): i_reserved_data_blocks=4
[  123.518977][ T8514] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1827'.
[  123.551584][ T8514] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1827'.
[  123.563442][ T8523] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1829'.
[  123.593261][   T12] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 48 with max blocks 20 with error 28
[  123.605911][   T12] EXT4-fs (loop4): This should not happen!! Data will be lost
[  123.605911][   T12] 
[  123.662802][ T8525] loop2: detected capacity change from 0 to 128
[  123.680500][ T8525] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  123.699351][ T8532] loop1: detected capacity change from 0 to 128
[  123.700368][ T8525] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  123.706777][ T8532] EXT4-fs: Ignoring removed nobh option
[  123.727450][ T8525] usb usb2: usbfs: process 8525 (syz.2.1831) did not claim interface 63 before use
[  123.744127][ T8532] ext4 filesystem being mounted at /359/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  123.764689][ T3416] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  123.852849][ T8543] FAULT_INJECTION: forcing a failure.
[  123.852849][ T8543] name failslab, interval 1, probability 0, space 0, times 0
[  123.865905][ T8543] CPU: 0 UID: 0 PID: 8543 Comm: syz.3.1838 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  123.865937][ T8543] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  123.865952][ T8543] Call Trace:
[  123.865959][ T8543]  <TASK>
[  123.865967][ T8543]  dump_stack_lvl+0xf2/0x150
[  123.866077][ T8543]  dump_stack+0x15/0x1a
[  123.866103][ T8543]  should_fail_ex+0x24a/0x260
[  123.866166][ T8543]  should_failslab+0x8f/0xb0
[  123.866204][ T8543]  __kmalloc_node_track_caller_noprof+0xa8/0x410
[  123.866236][ T8543]  ? sidtab_sid2str_get+0xb8/0x140
[  123.866275][ T8543]  kmemdup_noprof+0x2b/0x70
[  123.866376][ T8543]  sidtab_sid2str_get+0xb8/0x140
[  123.866479][ T8543]  security_sid_to_context_core+0x1eb/0x2f0
[  123.866513][ T8543]  security_sid_to_context+0x27/0x30
[  123.866610][ T8543]  selinux_lsmprop_to_secctx+0x68/0xf0
[  123.866644][ T8543]  security_lsmprop_to_secctx+0x40/0x80
[  123.866669][ T8543]  audit_log_task_context+0x76/0x180
[  123.866769][ T8543]  audit_log_task+0xf9/0x250
[  123.866803][ T8543]  audit_seccomp+0x68/0x130
[  123.866898][ T8543]  __seccomp_filter+0x6fa/0x1180
[  123.866924][ T8543]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  123.866956][ T8543]  ? vfs_write+0x644/0x920
[  123.866990][ T8543]  __secure_computing+0x9f/0x1c0
[  123.867014][ T8543]  syscall_trace_enter+0xd1/0x1f0
[  123.867111][ T8543]  ? fpregs_assert_state_consistent+0x83/0xa0
[  123.867134][ T8543]  do_syscall_64+0xaa/0x1c0
[  123.867242][ T8543]  ? clear_bhb_loop+0x55/0xb0
[  123.867271][ T8543]  ? clear_bhb_loop+0x55/0xb0
[  123.867298][ T8543]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.867332][ T8543] RIP: 0033:0x7f04df29d169
[  123.867349][ T8543] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  123.867367][ T8543] RSP: 002b:00007f04dd907038 EFLAGS: 00000246 ORIG_RAX: 0000000000000118
[  123.867407][ T8543] RAX: ffffffffffffffda RBX: 00007f04df4b5fa0 RCX: 00007f04df29d169
[  123.867419][ T8543] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffffffff9c
[  123.867431][ T8543] RBP: 00007f04dd907090 R08: 0000000000000000 R09: 0000000000000000
[  123.867476][ T8543] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  123.867488][ T8543] R13: 0000000000000000 R14: 00007f04df4b5fa0 R15: 00007ffd111aefb8
[  123.867511][ T8543]  </TASK>
[  124.220064][ T8559] loop0: detected capacity change from 0 to 1024
[  124.231026][ T8554] sg_write: data in/out 122/14 bytes for SCSI command 0x0-- guessing data in;
[  124.231026][ T8554]    program syz.2.1844 not setting count and/or reply_len properly
[  124.253916][ T8559] ext4 filesystem being mounted at /361/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  124.293777][ T8559] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  124.316179][ T8559] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 29 with error 28
[  124.328785][ T8559] EXT4-fs (loop0): This should not happen!! Data will be lost
[  124.328785][ T8559] 
[  124.338703][ T8559] EXT4-fs (loop0): Total free blocks count 0
[  124.344808][ T8559] EXT4-fs (loop0): Free/Dirty block details
[  124.350956][ T8559] EXT4-fs (loop0): free_blocks=4293918720
[  124.356755][ T8559] EXT4-fs (loop0): dirty_blocks=64
[  124.361939][ T8559] EXT4-fs (loop0): Block reservation details
[  124.368065][ T8559] EXT4-fs (loop0): i_reserved_data_blocks=4
[  124.472858][   T12] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 48 with max blocks 20 with error 28
[  124.485303][   T12] EXT4-fs (loop0): This should not happen!! Data will be lost
[  124.485303][   T12] 
[  124.514638][ T8571] loop0: detected capacity change from 0 to 1024
[  124.680101][ T8578] loop0: detected capacity change from 0 to 1024
[  124.876338][ T8589] loop0: detected capacity change from 0 to 512
[  125.794688][ T8613] loop0: detected capacity change from 0 to 512
[  125.805170][ T8616] __nla_validate_parse: 1 callbacks suppressed
[  125.805183][ T8616] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1865'.
[  125.848870][ T8613] EXT4-fs error (device loop0): ext4_orphan_get:1389: inode #15: comm syz.0.1864: casefold flag without casefold feature
[  125.905733][ T8616] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1865'.
[  125.946973][ T8613] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.1864: couldn't read orphan inode 15 (err -117)
[  126.015443][ T8616] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1865'.
[  126.065228][ T8623] FAULT_INJECTION: forcing a failure.
[  126.065228][ T8623] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  126.078506][ T8623] CPU: 0 UID: 0 PID: 8623 Comm: syz.1.1866 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  126.078544][ T8623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  126.078595][ T8623] Call Trace:
[  126.078604][ T8623]  <TASK>
[  126.078614][ T8623]  dump_stack_lvl+0xf2/0x150
[  126.078649][ T8623]  dump_stack+0x15/0x1a
[  126.078676][ T8623]  should_fail_ex+0x24a/0x260
[  126.078759][ T8623]  should_fail+0xb/0x10
[  126.078785][ T8623]  should_fail_usercopy+0x1a/0x20
[  126.078864][ T8623]  _copy_from_user+0x1c/0xa0
[  126.078888][ T8623]  memdup_user+0x64/0xc0
[  126.078924][ T8623]  strndup_user+0x68/0xa0
[  126.078971][ T8623]  __se_sys_mount+0x4e/0x2d0
[  126.079009][ T8623]  ? fput+0x1c4/0x200
[  126.079034][ T8623]  ? ksys_write+0x176/0x1b0
[  126.079066][ T8623]  __x64_sys_mount+0x67/0x80
[  126.079097][ T8623]  x64_sys_call+0x2c84/0x2dc0
[  126.079135][ T8623]  do_syscall_64+0xc9/0x1c0
[  126.079175][ T8623]  ? clear_bhb_loop+0x55/0xb0
[  126.079247][ T8623]  ? clear_bhb_loop+0x55/0xb0
[  126.079276][ T8623]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.079317][ T8623] RIP: 0033:0x7f7a2c2ad169
[  126.079387][ T8623] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.079409][ T8623] RSP: 002b:00007f7a2a917038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  126.079434][ T8623] RAX: ffffffffffffffda RBX: 00007f7a2c4c5fa0 RCX: 00007f7a2c2ad169
[  126.079449][ T8623] RDX: 00004000000002c0 RSI: 0000400000000080 RDI: 0000000000000000
[  126.079464][ T8623] RBP: 00007f7a2a917090 R08: 0000400000000400 R09: 0000000000000000
[  126.079479][ T8623] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  126.079494][ T8623] R13: 0000000000000000 R14: 00007f7a2c4c5fa0 R15: 00007fff55e82348
[  126.079516][ T8623]  </TASK>
[  126.491608][ T8625] sg_write: data in/out 122/14 bytes for SCSI command 0x0-- guessing data in;
[  126.491608][ T8625]    program syz.1.1867 not setting count and/or reply_len properly
[  127.026747][ T8634] loop4: detected capacity change from 0 to 2048
[  127.183891][ T8642] sd 0:0:1:0: device reset
[  127.186030][ T8640] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1874'.
[  127.217263][ T8640] loop4: detected capacity change from 0 to 128
[  127.233361][ T8640] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  127.263015][ T8640] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  127.290933][ T8640] usb usb2: usbfs: process 8640 (syz.4.1874) did not claim interface 63 before use
[  127.340751][ T3416] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  127.427818][ T8644] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[  127.434033][ T8649] »»»»»» speed is unknown, defaulting to 1000
[  127.434375][ T8644] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  127.448027][ T8644] vhci_hcd vhci_hcd.0: Device attached
[  127.619690][ T8672] sd 0:0:1:0: device reset
[  127.649812][ T8671] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  127.676193][   T30] kauditd_printk_skb: 7578 callbacks suppressed
[  127.676209][   T30] audit: type=1326 audit(1742124104.989:15142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8610 comm="syz.2.1863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2191224127 code=0x7ffc0000
[  127.706712][   T36] usb 7-1: new low-speed USB device number 2 using vhci_hcd
[  127.716922][ T8675] loop1: detected capacity change from 0 to 128
[  127.732808][ T8674] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=8674 comm=syz.0.1889
[  127.753447][   T30] audit: type=1326 audit(1742124105.009:15143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8610 comm="syz.2.1863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f21911c9359 code=0x7ffc0000
[  127.759968][ T8677] loop4: detected capacity change from 0 to 1024
[  127.777138][   T30] audit: type=1326 audit(1742124105.009:15144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8610 comm="syz.2.1863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2191224127 code=0x7ffc0000
[  127.807064][   T30] audit: type=1326 audit(1742124105.009:15145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8610 comm="syz.2.1863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f21911c9359 code=0x7ffc0000
[  127.830675][   T30] audit: type=1326 audit(1742124105.009:15146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8610 comm="syz.2.1863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2191224127 code=0x7ffc0000
[  127.841431][ T8649] wg1 speed is unknown, defaulting to 1000
[  127.854247][   T30] audit: type=1326 audit(1742124105.009:15147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8610 comm="syz.2.1863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f21911c9359 code=0x7ffc0000
[  127.883399][   T30] audit: type=1326 audit(1742124105.009:15148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8610 comm="syz.2.1863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2191224127 code=0x7ffc0000
[  127.907395][   T30] audit: type=1326 audit(1742124105.009:15149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8610 comm="syz.2.1863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f21911c9359 code=0x7ffc0000
[  127.930135][ T8678] loop0: detected capacity change from 0 to 2048
[  127.930950][   T30] audit: type=1326 audit(1742124105.009:15150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8610 comm="syz.2.1863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2191224127 code=0x7ffc0000
[  127.960786][   T30] audit: type=1326 audit(1742124105.009:15151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8610 comm="syz.2.1863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f21911c9359 code=0x7ffc0000
[  127.993903][ T8675] ext4 filesystem being mounted at /372/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  128.023600][ T8675] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1888'.
[  128.025542][ T8671] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.032710][ T8675] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1888'.
[  128.062889][ T8678]  loop0: p1 < > p4 < >
[  128.072507][ T8677] ext4 filesystem being mounted at /410/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  128.091961][ T8652] vhci_hcd: connection reset by peer
[  128.100006][   T51] ==================================================================
[  128.100028][ T8671] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.108146][   T51] BUG: KCSAN: data-race in batadv_hard_if_event / batadv_mcast_mla_update
[  128.108194][   T51] 
[  128.108200][   T51] write to 0xffff88811889c810 of 1 bytes by task 8671 on cpu 1:
[  128.108219][   T51]  batadv_hard_if_event+0x896/0xfb0
[  128.141792][   T51]  raw_notifier_call_chain+0x6f/0x1d0
[  128.147196][   T51]  call_netdevice_notifiers_info+0xae/0x100
[  128.153133][   T51]  unregister_netdevice_many_notify+0x98a/0x1280
[  128.159502][   T51]  unregister_netdevice_queue+0x1f4/0x220
[  128.164940][ T3416] vhci_hcd: stop threads
[  128.165239][   T51]  nsim_destroy+0xbd/0x330
[  128.169503][ T3416] vhci_hcd: release socket
[  128.173886][   T51]  __nsim_dev_port_del+0xcd/0x100
[  128.178364][ T3416] vhci_hcd: disconnect device
[  128.183300][   T51]  nsim_dev_reload_destroy+0x1a6/0x2d0
[  128.193488][   T51]  nsim_dev_reload_down+0x77/0xa0
[  128.198530][   T51]  devlink_reload+0xab/0x5a0
[  128.203156][   T51]  devlink_nl_reload_doit+0x4dd/0x8f0
[  128.208562][   T51]  genl_rcv_msg+0x620/0x6d0
[  128.213103][   T51]  netlink_rcv_skb+0x12c/0x230
[  128.217912][   T51]  genl_rcv+0x28/0x40
[  128.221974][   T51]  netlink_unicast+0x599/0x670
[  128.226772][   T51]  netlink_sendmsg+0x5cc/0x6e0
[  128.231569][   T51]  __sock_sendmsg+0x140/0x180
[  128.236290][   T51]  ____sys_sendmsg+0x326/0x4b0
[  128.241102][   T51]  __sys_sendmsg+0x19d/0x230
[  128.245721][   T51]  __x64_sys_sendmsg+0x46/0x50
[  128.250512][   T51]  x64_sys_call+0x2734/0x2dc0
[  128.255229][   T51]  do_syscall_64+0xc9/0x1c0
[  128.259936][   T51]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.266197][   T51] 
[  128.268574][   T51] read to 0xffff88811889c810 of 1 bytes by task 51 on cpu 0:
[  128.275949][   T51]  batadv_mcast_mla_update+0x21b/0x1700
[  128.281517][   T51]  process_scheduled_works+0x4db/0xa20
[  128.286996][   T51]  worker_thread+0x51d/0x6f0
[  128.291616][   T51]  kthread+0x4ae/0x520
[  128.295708][   T51]  ret_from_fork+0x4b/0x60
[  128.300143][   T51]  ret_from_fork_asm+0x1a/0x30
[  128.304923][   T51] 
[  128.307278][   T51] value changed: 0x00 -> 0x01
[  128.311954][   T51] 
[  128.314278][   T51] Reported by Kernel Concurrency Sanitizer on:
[  128.320465][   T51] CPU: 0 UID: 0 PID: 51 Comm: kworker/u8:3 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  128.331144][   T51] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  128.341233][   T51] Workqueue: bat_events batadv_mcast_mla_update
[  128.347502][   T51] ==================================================================
[  128.371142][ T8674] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1889'.
[  128.380194][ T8674] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1889'.
[  128.417585][ T8671] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.527491][ T8671] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  128.545548][ T8671] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  128.560115][ T8671] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  128.571973][ T8671] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  132.774943][   T36] usb 7-1: enqueue for inactive port 0
[  132.780473][   T36] usb 7-1: enqueue for inactive port 0
[  132.854913][   T36] vhci_hcd: vhci_device speed not set