last executing test programs:

21.73938915s ago: executing program 0 (id=1485):
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000001580)=ANY=[@ANYBLOB="61158c000000000061137a0000000000bfa00000000000001705000008004ef02d3501000000000095000000000000006916000000000000bf67000000000000350604000fff07206706000004000000160302000ee60060bf500000000000000f650000000000006507f9ff0100000007070000cddfffff1e75000000000000bf54000000000000070400000400f9ffad4301000000000095000000000000001500000000000000950000000000000032ed3c12dc8c27df8ecf264e0f84f9f17d3c30e32f1754558f2278af6d71d79a5e12814cb1d8a5d4601d295c45a6a0b9bdb7dd3997f9c9c4f6f3be4b369289aa6812b8e007e733a9a4f1b0af3dda82ee45a010fb94fe9d0cc7d3b4814261bdb94a050000a28a404be266df76965947c73c00c6c60bf70d742a81762bab8395fa64810b5b40d893ea8fe0185473d51b540dcfc7ad0500c4063b3b8754c0686cad3f1d5ab2af27546e7c955ccefa1f6ab689b555202da2e0ec2871b4a7e65836429a527dc47ebe84a423b6c8d345dc8da3085b0ab71ca1b901627b562ed04ae76002d4519af619e3cca4d69e0dee5eb106774a8f3e6916dfec88158f0200000000c8fb730a5c1bf2b2bb71a629361997a75fd552bdc206438b8ef4901fd03c16dfda44e2a2235c8ac86d8a297dff0445a15f21dce431e56723888fb126a163f16f920ae2fb494059bba8e3b680324a188090eb685d55c4e9b2ad9bc1172ba7cbebe174aba210d739a018f9bbec63222d20cecac4d03723f1c932b3a6aa57f1ad2e99e0e67ab93716d20000009f0f53acbb40b4f8e2738270b31562ed834f2af97787f696649a462e7ee4bcf8b07a10d6735154beb40000000000000000000000000040007abf9c20d89cbc00f679629709e7e78f4ddc211bc3ebe6bd9d42ca0140a7afaab43176e65ec1118d50d1e827f3472f4445d253880800000000000000690884f800031e03a651bb96589a7e2e509bcc1d161347623cb5e7ac4629c8ab04871bc47287cd31cc43010000007b40407d000000210000000000000000005f37d83f84e98a523d80bd970d703f37ca364a601ae899a56715a0a62a34c6c94cce6994521629ab028acfc1d926a0f6a5489af8dc2f17923f3c40dfd1970a55c22fe3a5ac000000000000000000000000000000c1eb2d91fb79ea00000000000000bb0d00000000000000000000e4007be511fe32fbc90e2364a55e9bb66ac64423d2d00fea2594e190deae46e26c596f84eb29000000000000003cc3aa39ee4b1386bab561cda886fa64ffffff7f473b543ccb5f0d7b63924f17c67b13631d22a11dc3c693962895496d4f6e9cc54db6c7205a6b068fff496d2da7d632bd1f61b007e1ff5f1be1969a1ba791ad46d800000000c7f26a0337302f3b41eae59801fd05d12f6186f117b062df67d3a63f3265dd1410eea68208a3f26b2989b832d8b34a34a4f08b34b3042065acaa10856e858d27adee7daf32903d3fc78700d429a2d4c8b6d803eb83eecfe4c7ff9e6ab5a52e83d089dad7a8710e0254f1b11cced7bc3c8da0c44d2ebf9f6f3ff3be4d1458077c2253b0c7c7a0a9fdd63bf910dc20e5cb2a88e59febc47f1212a21f631dbaa74f22bad050e9856b48ae3a03a497c37758537650fe6db88aa3c41fdc3d78e046f6160e1741299e8dc29906870e6431ed1eab5d067a183f064b060a8ec12725d42e3a74863d66bee966b1574f8e01b3f34a267ff0afa1e1c758a0079b747067312e9815a21cb3f1f8150d999d00000000d3114dbc7e2bf2402a75fd7a5573336004088000000000000000fb38c7f84d9d87b27f8a5d91217b728f13e3ee20e69e0ffb2780b1a7af137ff7b4ff139604faf0a4da65396174b4563d54b52f06c870edf0c5d744b5272b44c23488b2bdbff947c4dfa108cbb88202eeb81f428a5b3c299848649e1a6bff52f657a67463d7dbf85ae9321fc2b517dc4a29b9cba8ded5de8206c812439ab129ae818837ee1562078fc524b3baf49a0be9bb7d958d5e87c6c09bf73400000000000000cc308e936d7637e07c0acd5db6538824c600d9ef418cf19e7a8c4c328be0ce91798adc2dca871073f6bd61d1f5b2a443faa9bda0577383dc18402cde8bf777b2eaa45c940aabc86b94f8cbde4d470667bee722a6a2af483ad0d3415ed0f9db009acaba9eaea90000d154ba10a8e51489a614e69722bac30000000000000000000000000000c5dfd188ff555285b9743d3aac000583f42d168613151d681a2f71373f20d92c9048407c91fabecfe8a10300004d127edab14ba61ba1cfc4336324c86f3dcb43e9a58208077e90f6ec1c7ac756f61dcc372cdd30b82507489f0bbfbd3c3f21752e81319c0161e154ceb16e00bc7f5a6962dff317f4d014786e432817064874d69a39cb0da31bcc5f81894d8a80756447322207b4007dff12eb95066cc6bc256f0a12282224bb031bbee6d23cef7074f6d718b06ca80b57aa183dd0c39e9d8547c666b6764a3c7dd62a94eee45881441f2b89b4c67aa9882281393954972046974f18df232cd7fca610e33f51c2d062020f403d85ff36c26e2f6bd1d82f4d3ceb3472d9a77e0057a3bfe697d9ab7585f4a1b381343d2cf855689232f4fc5135790662dc1419a365b5b11df7216652b5703f31e078ecdefe8e6bfc45a9980a7a8de863e3477dd47d0f11611ca92d89641a183c8f629f17cfc28fde209a793d9c0cf6e3bb3f82670d33396982988b9f5207a732908fdf1506f307ccae47a69319ee2242272e4f7ceb7a40e49a21ce6405af3ecb3381bf0668749c81fc6c2d97e68a693e3e622af52e572f4fa7b20d5c72cf5ff8016461130a46803de45029489921a48bd7688dd593e4a3e9803263ecbd8ae8570293508ebe5fabc1842cbc01ae8fabbf41820c31b7bb83a3439d4540f839ed5c23828a33d7645baa1ec32bb7aa8a786bb0997ccf6bba0a2cf6ef2157a63974d5e525a3f3f7f993ea9e82732ccc2e12c631012175d5d474bef818bdf8f27a7e563684a225dee6ca5f5ff18a89ac6c627ff0e0e4769b6fbcfc847b20960704a4b13e962333bddb966de8bcade6f6bd3915a580ddec2e1bd88fbfdb749789cdc946822212f1cbacb03ba8d3e51e48ccdae20a43bf79ca0131b830620a97877242989e78dfec1d6df5f97ca5cddece50d0cae5d6eabbc1913aa3660e0b00000000000000000000000000bc16b71cb118d93461aa2914d6e454ef05c41beab7382787ba46b68c8d8b35da9fb58b259b4447b59c667ddcac0bb2d066eb0579be84bdca8ed5d693411b7e5b21efaceddacef03daa9772f2715b5613ae0d88f8d109e36f8b8871b646d9ebbcc25d527ad3f828c92cb6597f82ed4d496a511007781be0c7cac07fc508a585f415ef81a887475286df80fb6ff9c6524d0e22d50f88ca15545bc688063b04eb8e0248aca60b9983dd5966216499ccfc0551f6e0323859ae64f55e4d496a695f8e6382aa714b92f95dcfd0b456d9ce7a24f736e4009ef64230e8f83f8283a4cc5f178d4698b94ccd8d0e0e3e2e35e1a7ac0cb3ee52013e8c2802d2f89b3f708fb53c17c3e4fbe0326ee510c4317b5f5f1eb34ca8441c23755acfc469909b16fba134de01d484c1b380622d37"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffb1}, 0x48)
syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000100)='./file1\x00', 0x200000, &(0x7f0000000280)=ANY=[], 0x11, 0x736, &(0x7f0000000b40)="$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")
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0)
get_mempolicy(0x0, 0x0, 0x0, &(0x7f0000a88000/0x2000)=nil, 0x3)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x50032, 0xffffffffffffffff, 0x0)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000200)=@o_path={&(0x7f0000000000)='./file0\x00', 0x0, 0x4010}, 0x18)

21.681106611s ago: executing program 0 (id=1487):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000002001000001"], 0x50)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000180)={0xfffffffb, <r1=>0x0}, 0x8)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x18)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000680)={0x1b, 0x0, 0x0, 0x400, 0x0, r0, 0x200, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x1, 0x3}, 0x50)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fa540000850000008200000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x6, 0x2, &(0x7f0000000300)=@raw=[@alu={0x7, 0x1, 0x7, 0xa, 0x3, 0xffffffffffffffe0, 0xfffffffffffffff0}, @alu={0x7, 0x0, 0x8, 0x9, 0xb, 0x6, 0x10}], &(0x7f0000000340)='GPL\x00', 0x0, 0xb6, &(0x7f0000000500)=""/182, 0x1f00, 0x44, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x8, &(0x7f0000000400)={0x7, 0x4}, 0x8, 0x10, 0x0, 0x0, r1, r2, 0x6, &(0x7f0000000700)=[r0, 0xffffffffffffffff, r0, r0, r0, 0xffffffffffffffff, r0, r4, r5, r0], &(0x7f0000000740)=[{0x0, 0x2, 0xc, 0x1}, {0x1, 0x1, 0xc, 0x9}, {0x3, 0x5, 0x10}, {0x3, 0x4, 0xd, 0x5}, {0x2, 0x4, 0x9, 0x8}, {0x3, 0x3, 0xf, 0x5}], 0x10, 0x5}, 0x94)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r3, 0x28, 0x1, &(0x7f0000000380)=0xffffffff00000041, 0x8)
bind$vsock_stream(r3, &(0x7f0000000940), 0x10)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r7}, 0x18)
statfs(&(0x7f0000000200)='.\x00', 0x0)
listen(r3, 0x0)
mknod(&(0x7f0000000000)='./bus\x00', 0x10, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x301040, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
r9 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0xfffffffffffffdd0, 0x0, 0x41000}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000880)=ANY=[], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x3, '\x00', 0x0, @fallback=0x2c, r9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r10}, 0x10)
mount(&(0x7f00000000c0), &(0x7f0000000440)='./bus\x00', 0x0, 0x8c7c88, 0x0)
open(&(0x7f00000002c0)='./bus\x00', 0x0, 0x0)
r11 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r11, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r11, &(0x7f00000002c0)=[{&(0x7f0000000080)='?', 0x20000081}], 0x1)

21.589866543s ago: executing program 0 (id=1488):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000010a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000001afc180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000090000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sendmsg$netlink(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f00000005c0)=ANY=[@ANYBLOB="140100002800010004000080f8dbdf2503"], 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x33)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000dc0)={{r3, <r4=>0xffffffffffffffff}, &(0x7f0000000500), &(0x7f00000000c0)='%ps    \x00'}, 0x20)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000003c0)={r4}, 0x4)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f00000004c0)={'wg2\x00', <r5=>0x0})
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000340)={'veth0_to_hsr\x00', <r8=>0x0})
r9 = socket$nl_route(0x10, 0x3, 0x0)
bind$packet(r7, &(0x7f0000000080)={0x11, 0x4, r8, 0x1, 0x6, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3e}}, 0x14)
sendmsg$nl_route_sched(r9, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000540)=@getchain={0x24, 0x11, 0x1, 0x70bd2c, 0x25dfdbff, {0x0, 0x0, 0x0, r8, {0xfff1}, {0xfff1, 0xfff3}, {0xb, 0x7}}}, 0x24}, 0x1, 0x0, 0x0, 0x4008010}, 0x2400c000)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000800)={'wg0\x00', <r10=>0x0})
getsockopt$PNPIPE_IFINDEX(r4, 0x113, 0x2, &(0x7f0000000840)=<r11=>0x0, &(0x7f0000000980)=0x4)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000a40)={'wg2\x00', <r12=>0x0})
sendmsg$ETHTOOL_MSG_LINKSTATE_GET(0xffffffffffffffff, &(0x7f0000002480)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000002440)={&(0x7f0000000600)=ANY=[@ANYBLOB="5c010000", @ANYRES16=0x0, @ANYBLOB="000829bd7000fbdbdf250600000070000180080003000100000008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="080003000300000008000300010000001400020076657468315f746f5f626f6e640000001400020076657468305f746f5f6272696467650008000100", @ANYRES32=0x0, @ANYBLOB="140002006970766c616e300000000000000000003c0001801400020076657468305f6d61637674617000000008000100", @ANYRES32=r5, @ANYBLOB="08000100", @ANYRES32=r8, @ANYBLOB="1400020076657468315f746f5f68737200000000180001801400020070696d726567310000000000000000001c000180080003000300000008000100", @ANYRES32=r10, @ANYBLOB="08000300000000006800018008001100", @ANYRES32=r11, @ANYRES64=r4, @ANYRES32, @ANYBLOB="08000100", @ANYRES32=r12, @ANYBLOB="08000300030000001400020064756d6d7930000000000000000000001400020077673200000000000000000000000000140002006d616373656330000000000000000000"], 0x15c}, 0x1, 0x0, 0x0, 0x40000}, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00'}, 0x18)
ioctl$BTRFS_IOC_BALANCE_V2(r0, 0xc4009420, &(0x7f0000000ac0)={0x0, 0x2, {0x8000000000000000, @usage=0x9, 0x0, 0x9, 0x8000000000000001, 0x6, 0x8001, 0x8, 0x449, @usage=0xa320, 0x3, 0x1000, [0x7fff, 0x6, 0x7fffffff, 0x6, 0x100000000, 0xc]}, {0xc, @usage, 0x0, 0x3, 0x3, 0x10, 0x4, 0x5, 0x40, @struct={0x7, 0x9}, 0x8, 0xa6, [0x0, 0x80000000, 0x800, 0x7ff, 0x709e316, 0xffffffffffffff81]}, {0x290498f9, @struct={0x8, 0x100005}, <r13=>0x0, 0x6, 0xb, 0x3, 0x850, 0x2, 0x32, @usage=0x1, 0xdf42, 0x80000000, [0xfffffffffffffff7, 0x58d, 0xffffffff, 0xffffffffffffffff, 0x4736, 0x5]}, {0x1, 0x9, 0xffffffffffffffcd}})
ioctl$BTRFS_IOC_BALANCE_V2(0xffffffffffffffff, 0xc4009420, &(0x7f0000001ec0)={0x8, 0x1, {0x4, @struct={0x6}, r13, 0x80000001, 0x1, 0x8000000000000000, 0xb, 0xfffffffffffffffd, 0x484, @struct={0xb, 0x8000}, 0x200, 0x80000001, [0x5bc3, 0x0, 0x6, 0x4, 0x9, 0x6]}, {0x4, @struct={0x1, 0xff}, 0x0, 0x9, 0x7602, 0x2, 0x8, 0x4154, 0x80, @usage=0xffffffffffffffff, 0x3, 0x3, [0x7fffffffffffffff, 0x100000000, 0x4, 0xca6, 0x1d, 0x2]}, {0x1000000000003, @struct={0x3, 0x2a}, 0x0, 0x7fffffff, 0x7fff, 0x7, 0x4, 0x3, 0x20, @usage=0x4, 0x4, 0x9, [0x3, 0x9, 0x80000000, 0x80, 0x2, 0xa5f]}, {0x7d, 0x9, 0x4}})
creat(&(0x7f0000000100)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x37, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x6}, 0x0, 0xfffd, 0x0, 0x1, 0xa, 0x20002, 0x1, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r14 = open(&(0x7f0000000540)='./bus\x00', 0x4000, 0x0)
preadv2(r14, 0x0, 0x0, 0x0, 0x0, 0x0)

21.486608674s ago: executing program 0 (id=1489):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000001000000e27f000001"], 0x48)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x2014800, 0x0)
r1 = creat(&(0x7f00000001c0)='./file0/bus\x00', 0xa8)
acct(&(0x7f0000000100)='./file0/bus\x00')
close(r1)
umount2(&(0x7f0000000280)='./file0\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x200000, &(0x7f0000000040), 0x1, 0xbaf, &(0x7f0000002f00)="$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")
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="000000000000000000000000001a110000000000700c49c25cb9975c91cef65fdb76ee0c7ea9c4d7cf15513ed003c619b305dce5de0f3f1e37cd3d1471b6766897973c26ff5b53540aa7ce81c27fdb4169ca1debd2363a99db4ece36fc2ecc3c24aefef5637dc894e009b7d818184a33c5ba45bac623b6b541efa8f0c43f3dc51bbb010c69a42940a696f35aab7f0c4697f59550f6c2a279de239ac34ee76b87ee9b50fea0b8af6f988488a3df9d05ae8f76e58cca8a269a986309c0fd5bc4dc22b6c99d03fe58a51b6440a3ff00ab83bab3f90be0ec30a72ac2cb65f0429512", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000100000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x5c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000))
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000040)='proc\x00', 0x0, &(0x7f0000003cc0)='gid=1\x00nk]e')
r4 = syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pread64(r4, &(0x7f0000001b80)=""/4084, 0xff4, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r2, 0x400c6615, &(0x7f0000000180)={0x0, @aes256, 0x0, @desc4})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
syz_open_dev$usbfs(&(0x7f0000000000), 0x205, 0x44680)

21.386397886s ago: executing program 0 (id=1490):
socket$packet(0x11, 0x3, 0x300)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0xe, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000340), 0x10}, 0x94)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000100)={0x0, 0x7}, 0x4)
setsockopt$packet_int(r0, 0x107, 0x16, &(0x7f0000000000)=0x4, 0x4)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r2 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
write$tun(r1, &(0x7f0000001800)={@val={0x8, 0x800}, @val={0x3, 0x0, 0x0, 0x0, 0x14}, @ipv4=@generic={{0x5, 0x4, 0x1, 0x2b, 0x22, 0x68, 0x0, 0x60, 0x67, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast}, "21f3305280f125e6e11a9314b296"}}, 0x30)

21.12339225s ago: executing program 0 (id=1493):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x44, 0x86}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000480)=0x4007)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000000)={'macvtap0\x00', &(0x7f0000000b00)=@ethtool_per_queue_op={0x4b, 0x21, [0x8, 0x1, 0x2, 0xc, 0x9, 0xf94, 0x1, 0x37, 0x409, 0x6, 0x1, 0x6, 0x1, 0x5, 0x7f, 0x2, 0x80000000, 0x2, 0x0, 0x9, 0x8, 0x5, 0x8, 0x2, 0x6, 0x1675, 0x5, 0xff, 0x9, 0x200, 0x3, 0x4107a2b1, 0x358827d1, 0x6, 0x2, 0x1, 0x82000001, 0xc0010, 0x9c, 0x8, 0x2, 0x1000, 0x3, 0xfffffffc, 0x200, 0x5, 0x2, 0x5, 0x0, 0x1, 0x1, 0x0, 0x4928, 0x3, 0xffffffff, 0x7, 0x4, 0x2, 0x80000004, 0x0, 0x9737, 0x6, 0x80000001, 0x8, 0x9fd8, 0x5, 0x9, 0x8, 0x8, 0x4, 0x101, 0x9, 0x71, 0x0, 0x0, 0x2000000, 0x3, 0x5, 0x165, 0x9, 0x6, 0x4, 0x9, 0x8, 0x5, 0x6, 0x8, 0x4, 0x0, 0x3, 0x400002, 0x2, 0x0, 0xa, 0xffffffff, 0x0, 0x1a4, 0x1000, 0x7, 0x8003, 0x6, 0x1000, 0x3, 0x2, 0xb, 0xffff, 0x80, 0x4, 0x4, 0x2, 0x40, 0x8, 0xfffffffd, 0x5, 0x7, 0x4, 0x2, 0x2, 0x0, 0x7, 0x5, 0x8000, 0x1, 0xa, 0x200ffff, 0xa4, 0x2, 0x9], "976169e56badbcba379dfd849ee10ec29b12d9d74c625026335e271b2112fab2555088592242adcae4affde5d45c53c2dbc767010656065800b8ca5096d9dadc51aa80a288c9bfeee5d4"}})
recvmmsg(r1, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
pipe2(&(0x7f00000000c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x80000)
vmsplice(r4, 0x0, 0x0, 0x0)
fcntl$setpipe(r4, 0x407, 0x2000000)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0b000000080000000c0000000400000001000000", @ANYRES32=<r6=>0x0], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYRESDEC=r6], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000100)='kfree\x00', r7, 0x0, 0x447}, 0x18)
r8 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r8, 0x6, 0x0, 0x0, 0x0)
r9 = fsmount(r8, 0x0, 0x20)
symlinkat(&(0x7f0000000000)='.\x00', r9, &(0x7f0000000140)='./file0\x00')
openat(r9, &(0x7f00000000c0)='./file0\x00', 0x515a02, 0x52abe154ad664fa4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="2d6ff800000011000000000000000000000000000400", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$tipc(0x1e, 0x5, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r10}, 0x10)
close(0xffffffffffffffff)
socket$inet6(0xa, 0x1, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000d80)={[{@grpid}, {@journal_dev}], [{@obj_user}, {@fsmagic={'fsmagic', 0x3d, 0x1}}, {@context={'context', 0x3d, 'unconfined_u'}}]}, 0x4, 0x4eb, &(0x7f0000000540)="$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")

21.12271847s ago: executing program 32 (id=1493):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x44, 0x86}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000480)=0x4007)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000000)={'macvtap0\x00', &(0x7f0000000b00)=@ethtool_per_queue_op={0x4b, 0x21, [0x8, 0x1, 0x2, 0xc, 0x9, 0xf94, 0x1, 0x37, 0x409, 0x6, 0x1, 0x6, 0x1, 0x5, 0x7f, 0x2, 0x80000000, 0x2, 0x0, 0x9, 0x8, 0x5, 0x8, 0x2, 0x6, 0x1675, 0x5, 0xff, 0x9, 0x200, 0x3, 0x4107a2b1, 0x358827d1, 0x6, 0x2, 0x1, 0x82000001, 0xc0010, 0x9c, 0x8, 0x2, 0x1000, 0x3, 0xfffffffc, 0x200, 0x5, 0x2, 0x5, 0x0, 0x1, 0x1, 0x0, 0x4928, 0x3, 0xffffffff, 0x7, 0x4, 0x2, 0x80000004, 0x0, 0x9737, 0x6, 0x80000001, 0x8, 0x9fd8, 0x5, 0x9, 0x8, 0x8, 0x4, 0x101, 0x9, 0x71, 0x0, 0x0, 0x2000000, 0x3, 0x5, 0x165, 0x9, 0x6, 0x4, 0x9, 0x8, 0x5, 0x6, 0x8, 0x4, 0x0, 0x3, 0x400002, 0x2, 0x0, 0xa, 0xffffffff, 0x0, 0x1a4, 0x1000, 0x7, 0x8003, 0x6, 0x1000, 0x3, 0x2, 0xb, 0xffff, 0x80, 0x4, 0x4, 0x2, 0x40, 0x8, 0xfffffffd, 0x5, 0x7, 0x4, 0x2, 0x2, 0x0, 0x7, 0x5, 0x8000, 0x1, 0xa, 0x200ffff, 0xa4, 0x2, 0x9], "976169e56badbcba379dfd849ee10ec29b12d9d74c625026335e271b2112fab2555088592242adcae4affde5d45c53c2dbc767010656065800b8ca5096d9dadc51aa80a288c9bfeee5d4"}})
recvmmsg(r1, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
pipe2(&(0x7f00000000c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x80000)
vmsplice(r4, 0x0, 0x0, 0x0)
fcntl$setpipe(r4, 0x407, 0x2000000)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0b000000080000000c0000000400000001000000", @ANYRES32=<r6=>0x0], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYRESDEC=r6], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000100)='kfree\x00', r7, 0x0, 0x447}, 0x18)
r8 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r8, 0x6, 0x0, 0x0, 0x0)
r9 = fsmount(r8, 0x0, 0x20)
symlinkat(&(0x7f0000000000)='.\x00', r9, &(0x7f0000000140)='./file0\x00')
openat(r9, &(0x7f00000000c0)='./file0\x00', 0x515a02, 0x52abe154ad664fa4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="2d6ff800000011000000000000000000000000000400", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$tipc(0x1e, 0x5, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r10}, 0x10)
close(0xffffffffffffffff)
socket$inet6(0xa, 0x1, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000d80)={[{@grpid}, {@journal_dev}], [{@obj_user}, {@fsmagic={'fsmagic', 0x3d, 0x1}}, {@context={'context', 0x3d, 'unconfined_u'}}]}, 0x4, 0x4eb, &(0x7f0000000540)="$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")

1.791997813s ago: executing program 3 (id=1739):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000002001000001"], 0x50)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000180)={0xfffffffb, <r1=>0x0}, 0x8)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x18)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000680)={0x1b, 0x0, 0x0, 0x400, 0x0, r0, 0x200, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x1, 0x3}, 0x50)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fa540000850000008200000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x6, 0x2, &(0x7f0000000300)=@raw=[@alu={0x7, 0x1, 0x7, 0xa, 0x3, 0xffffffffffffffe0, 0xfffffffffffffff0}, @alu={0x7, 0x0, 0x8, 0x9, 0xb, 0x6, 0x10}], &(0x7f0000000340)='GPL\x00', 0x0, 0xb6, &(0x7f0000000500)=""/182, 0x1f00, 0x44, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x8, &(0x7f0000000400)={0x7, 0x4}, 0x8, 0x10, 0x0, 0x0, r1, r2, 0x6, &(0x7f0000000700)=[r0, 0xffffffffffffffff, r0, r0, r0, 0xffffffffffffffff, r0, r4, r5, r0], &(0x7f0000000740)=[{0x0, 0x2, 0xc, 0x1}, {0x1, 0x1, 0xc, 0x9}, {0x3, 0x5, 0x10}, {0x3, 0x4, 0xd, 0x5}, {0x2, 0x4, 0x9, 0x8}, {0x3, 0x3, 0xf, 0x5}], 0x10, 0x5}, 0x94)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r3, 0x28, 0x1, &(0x7f0000000380)=0xffffffff00000041, 0x8)
bind$vsock_stream(r3, &(0x7f0000000940), 0x10)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r7}, 0x18)
listen(r3, 0x0)
r8 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r8, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r8, &(0x7f00000002c0)=[{&(0x7f0000000080)='?', 0x20000081}], 0x1)

1.677111255s ago: executing program 3 (id=1741):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000dd0000000000003b810000850000006d000000a50000005000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0x7, 0x4, 0x8, 0xd9, 0x0, 0xffffffffffffffff, 0x9, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x4}, 0x50)
r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000480)={&(0x7f00000008c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xb4, 0xb4, 0x5, [@volatile={0xf, 0x0, 0x0, 0x9, 0x4}, @enum={0xb, 0x3, 0x0, 0x6, 0x4, [{0x10, 0x109ed57a}, {0x3, 0x2}, {0x9, 0x8}]}, @struct={0xb, 0x9, 0x0, 0x4, 0x1, 0x2, [{0x7, 0x3, 0x5}, {0x9, 0x1, 0x1}, {0x5, 0x2, 0x6}, {0xa, 0x4, 0x7}, {0x8, 0x2, 0x5}, {0x10, 0x5, 0x6}, {0x0, 0x0, 0x89}, {0x4, 0x2, 0x1ff}, {0xf, 0x2, 0xffffff81}]}, @func={0xf, 0x0, 0x0, 0xc, 0x1}]}, {0x0, [0x30, 0x0, 0x61]}}, &(0x7f00000009c0)=""/185, 0xd1, 0xb9, 0x0, 0x7dc, 0x10000}, 0x28)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xe, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000010bc0)='kfree\x00', r3}, 0x18)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x12, 0x8, 0x4, 0x2}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r4}, 0x0, &(0x7f0000000140)}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000080)={r4, &(0x7f0000000040)}, 0x20)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
ioctl$PPPIOCNEWUNIT(r5, 0xc004743e, &(0x7f0000000380)=0x7ffd)
r6 = syz_io_uring_setup(0x24c, &(0x7f0000000840)={0x0, 0xba56, 0x80, 0x3, 0xbfdffffc}, &(0x7f0000000000)=<r7=>0x0, &(0x7f00000002c0))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0xc0, 0x0, 0x0, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00'}, 0x10)
r8 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={0x38, 0x1403, 0x1, 0x70bd2d, 0x25dfdbff, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'veth0_to_bridge\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x8081}, 0x20000010)
io_uring_enter(r6, 0x47f6, 0x0, 0x0, 0x0, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000004000000850000002300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r9}, 0x10)
socket(0x11, 0x800000003, 0x0)
shmget(0x1, 0x4000, 0x200, &(0x7f0000ffb000/0x4000)=nil)
socket$l2tp6(0xa, 0x2, 0x73)
syz_io_uring_setup(0x24f8, &(0x7f0000000300)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000080))

1.664793635s ago: executing program 2 (id=1742):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=@base={0x7, 0x4, 0x100, 0x1, 0x28}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
r2 = memfd_create(&(0x7f0000001880)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85Q\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~Mx\x02\x00(v\xe6`\x026\xfcgC\xb5\xf0\x13.zb\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x80\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F91 ^x\x85\x80[\xa3B\n#!\xc2R\xdd\xf4)\xba\x1e\xfb6U\xabc\xda\x9a)\xc3\x9a\x06\xc5\xccP)\xdf.\xa7-\x84\xdf8\xbf\xfc1^}B\xee\xccR/z\x1e\xe8\x1e\x99\x99\n\xf4u\xd4\xbd^L\xb2j\xda\xff\x1d\x10\xc8\xad\xbd_OI\xb1\xe8y\x003\a\x06\x92\x8e\n\x8b\xf3\xd4G\x85\xbd\x1a\x81+3\x99jq\xd1\xacK^\xef\xb6!8\xcd?\x1e\\\x16W2\xbd4$zn\xa9\x7f\x9dE\xaf\x0f\xdb\xe0\xfa\x10\xc3\xb2\xf8\x80\x8c\xec$\xda\xc0\x94y1\t\xc5`\xda\xca\xd1\xab:\x18\x10\x9b\xd0w', 0x0)
write$binfmt_misc(r2, &(0x7f0000000180)="e502", 0x2)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000800)='./file0\x00', 0x0, &(0x7f0000000980)=ANY=[@ANYBLOB="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", @ANYRESHEX=0x0, @ANYRESHEX], 0x2, 0x699, &(0x7f0000000140)="$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")
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x2020000, 0x0, 0x0, 0x0, 0x4}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x6, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.events\x00', 0x275a, 0x0)

1.587078156s ago: executing program 3 (id=1744):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000a519f35895"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r0}, 0x10)
faccessat2(0xffffffffffffffff, 0x0, 0x100, 0x300)
socket$nl_generic(0x10, 0x3, 0x10)
kexec_load(0x0, 0x1, &(0x7f0000000140)=[{0x0, 0x3e00, 0x116094000, 0x41000000}], 0x0)

1.546322227s ago: executing program 2 (id=1745):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000410, &(0x7f0000000080), 0x80, 0x7a5, &(0x7f0000000f80)="$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")
futex(0x0, 0x3, 0x801, 0x0, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000300)=0xffffff7f, 0x4)
getsockopt$SO_TIMESTAMP(r0, 0x1, 0x3f, 0x0, &(0x7f00000000c0)=0x12)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003500)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffd4d}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000140)='tlb_flush\x00', r1, 0x0, 0x2}, 0x18)
mremap(&(0x7f0000000000/0x9000)=nil, 0x200003, 0x600000, 0x3, &(0x7f0000a00000/0x600000)=nil)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x1000c15, &(0x7f0000000300)=ANY=[@ANYBLOB="73686f77657865632c756e695f786c6174653d312c6e6f6e756d7461696c3d302c726f6469722c757466383d312c09006e756d7461696c3d302c756e695f786c6174653d312c71756965742c716e695f786c6174653d302c757566383d312c756e695f786c6174653d302c73686f72746e616d653d77696e6e742c74696d655f6f66667365743d30783030303030303030b553b99225ca3030303030353465496c3d302c73686f72746e616d653d6d697865642c617466383d302c000000000000000000"], 0xf5, 0x2e5, &(0x7f0000000540)="$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")
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000040), 0x208e24b)
syz_emit_ethernet(0x74, &(0x7f00000000c0)=ANY=[@ANYBLOB="aaaaaaaaaabbaaaaaaaaaabb88a8430081003500884800000000000000000000000077b166fd350c9dda6644e9c2e32defb9159df3238142c7a693841b0fa53a6f82380bded7d0bc38cb2cb3836aaca03c4bb535b14b7dffaf66032a529e6368c15b7dba6ec29f3983266ff4cf037c435a913a98"], &(0x7f0000000180)={0x1, 0x1, [0xae, 0xf9c, 0xab7, 0xffc]})
r3 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x8401)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000400)='kfree\x00', r4}, 0x18)
ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000b40)={'\x00', 0x7ff, 0x5, 0xc, 0xfffffffffffffffd, 0x59c, 0xffffffffffffffff})
ioctl$SG_BLKTRACETEARDOWN(r3, 0x1276, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

1.533076007s ago: executing program 3 (id=1746):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$unix(r0, 0x0, 0xc800)
setsockopt$sock_int(r1, 0x1, 0x2a, 0x0, 0x0)
bpf$PROG_BIND_MAP(0x23, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$packet(0x11, 0x2, 0x300)
poll(0x0, 0x0, 0xfffffffe)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b700000000000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
ppoll(&(0x7f0000000500)=[{r2}], 0x1, 0x0, 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
recvmmsg(r1, &(0x7f0000001140), 0x700, 0x2, 0x0)

1.36578599s ago: executing program 1 (id=1749):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'veth0_to_bridge\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000140)=ANY=[@ANYBLOB="440000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800c0001006d616376746170000400028008000500", @ANYRES32=<r4=>r3, @ANYBLOB='\b\x00'], 0x44}}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000b80)=ANY=[@ANYBLOB="9feb01a663350018000000000000003400000034000000050000400b000000000000110200000001000000030000000000000904000000ffffffff000000120100000009000000000000080200000000305f6100f3a862f5dbb04d4a19489b450d6f4acb2b5d6ec3d433e1a60f6054e466e4a643a838b73a7176c7b2202ac4e8e46b82183b282427b6fd094ba1763b89ba074749281c30b1024b853ba7bcca"], &(0x7f0000000480)=""/162, 0x51, 0xa2, 0x0, 0xfffffffd, 0x10000}, 0x28)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'ipvlan0\x00'})
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800b0001006d616373656300000400038008000500", @ANYRES8=r1], 0x3c}, 0x1, 0x0, 0x0, 0x240480d4}, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000002c0)={0x9, <r6=>0x0}, 0x8)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000d40)={0x5, 0xc, &(0x7f0000000e00)=ANY=[@ANYBLOB="c9e2975d3ef5bdd59dd159e5011b2455375f26bbcf0a4f1fcd8f027c87d5207a4e0c0081f180f68db9777c968341ac5c73acacc44c726286e944353f73bba241a8315a9d0fe5e26a1b565fff89b6046e8ffadc3c6b0af0c2fc1e4e2fef6ceba4553402562f6899433b236ed8daa32a30387cd554b00c6b98bf22518143e68cbf0f1b709318", @ANYBLOB="b1a79d986ec7b4338181e9378fd3acf13de1a63eed6384d13c8802d87430f1eb2f79d8294847d67154cb199d3b9eb230b4", @ANYRES16=r0, @ANYBLOB="cfe037acb9af5ec1a8d78cde8b0b3623ea0ef8cd178c5b104cc9ddf06009745447646c61b9e4c5aab1d96d0ab1287ce40ff1873c854bdbc4afd423d95a50256ef2c684e065c50448eb64c39f6506d1b5883a4a39c8f1acbc", @ANYRES8, @ANYRES16, @ANYRESDEC=r4], 0x0, 0x16, 0x0, 0x0, 0x0, 0x9, '\x00', r3, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={0x0, r7}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000600)={[{@grpid}]}, 0x1, 0x521, &(0x7f0000000640)="$eJzs3d9rZFcdAPDvvcmkyW5qpiqyFmyLrewW3ZmksRpF2gqiTwW1vq8xmYSQSSZkJnUTiqb4BwgiKvgH+CL44KMg/RNEWNB3UVFEd/VR98qdudH8mEnGZJJZJ58PnMw598f5nnPJ3Lk/DvcGcG29EBFvRMRYRLwcETPF9LRIsd9J+XKPHr6zlKcksuytvyaRFNMO6srL4xFxs1htMiK++qWIbyQn4zZ399YX6/XadlGutja2qs3dvbtrG4urtdXa5vz83M8j4tWF2axwoX6WI+K1L/zxB9/9yRdf++Unvvm7e3++8628WZ/7UKfdEbF0oQA9dOoutbfFgXwbbV9GsCHJ+1MaG3YrAADoR36M//6I+Gj7+H8mxtpHcwAAAMAoyV6fjn8mERkAAAAwstKImI4krRRjAaYjTSuVzhjeD8aNtN5otj6+0tjZXM7nRZSjlK6s1WuzxVjhcpSSvDxXjLE9KL9yrDwfEc9ExPdnptrlylKjvjzsix8AAABwTdx8/uj5/z9m0nYeAAAAGDHlngUAAABgVDjlBwAAgNHn/B8AAABG2pfffDNP2cF7vJff3t1Zb7x9d7nWXK9s7CxVlhrbW5XVRmO1/cy+jbPqqzcaW5+MzZ371Vat2ao2d/fubTR2Nlv31o68AhsAAAC4Qs88/95vk4jY/+xUO0XxHECAI/4w7AYAgzQ27AYAQzM+7AYAQ1M6cwl7CBh1yRnzTw7e6VwrjF9dTnsAAIDBu/3hk/f/J4p5Z18bAP6fGesDANfP0bt7U0NrB3D1SucdAXhr0C0BhuV9nY+nes3v+fCOPu7/d64xZNm5GgYAAAzMdDslaaU4Tp+ONK1UIp6Ox1k5SsnKWr02W5wf/Gam9FRenmuvmZw5ZhgAAAAAAAAAAAAAAAAAAAAAAAAA6MiyJDIAAABgpEWkf0raT/OPuD3z0vTRqwPH3vr147d+eH+x1dqei5hI/jaTT5qIiNaPiumvZF4JAAAAAMM1lf/pnKcXn3PDbhIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAo+bRw3eWDtJVxv3L5yOi3C3+eEy2PyejFBE3/p7E+KH1kogYG0D8/Xcj4la3+Ek8zrKsXLSiW/ypS45fbm+a7vHTiLg5gPhwnb2X73/e6Pb9S+OF9mf37994kS6q9/4v/c/+b6zH/ufpY+Venn3ws2rP+O9GPDveff9zED/pxD8SIi+82Gcfv/61vb2uMw5V2S3+4VjV1sZWtbm7d3dtY3G1tlrbnJ+f+9TCpxdeXZitrqzVa8XfrmG+95FfPD6t/zd6xC8f7f+J7f9SX73P4l8P7j/8QKdQ6hb/zovdf39v9YifFr99Hyvy+fzbB/n9Tv6w53766+dO6/9yj/5PntH/O331Pz7z8le+8/uuc05sDQDgKjR399YX6/Xa9imZyT6W+Z8yERet5/WBtudJyMTZy0w+IU29jEz27c7/48XqueDqJzLZRVYfjwE0Y+LE93QszlthErGf19XnPyQAADBi/nvQf9odJAAAAAAAAAAAAAAAAAAAAOAynfOxZJMR0ffCx2PuD6erAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACn+ncAAAD//+8b0g8=")
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000400)=ANY=[@ANYBLOB="a118890ba14df4fc72a1ad19592d64e612d601", @ANYRES8=r3], &(0x7f0000000080)='GPL\x00', 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r8}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r9 = gettid()
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x800000000004, @tid=r9}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r10 = timerfd_create(0x0, 0x0)
readv(r10, &(0x7f00000003c0)=[{&(0x7f0000000000)=""/33, 0x21}], 0x1)
pipe(&(0x7f0000000400))
r11 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41000}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040))

1.212232352s ago: executing program 5 (id=1753):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='kmem_cache_free\x00', r0}, 0x18)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1/file2\x00', 0x81c0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
renameat2(0xffffffffffffff9c, &(0x7f0000000480)='./file1/file2\x00', 0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x2)

1.182939872s ago: executing program 5 (id=1754):
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x800)
ioctl$SG_GET_VERSION_NUM(r0, 0x2284, &(0x7f0000000080))

1.156481963s ago: executing program 2 (id=1755):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x18, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0900000004000000e27f00000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES64=r1, @ANYBLOB="0000000000000000000000000000000000000000000000000000000049a586a619950aa1c1f1d674d97427b4c2ad69abf36a882168d61b3405d6c565c128ea354aaebc6eac10b63df2d1e32bff885108926b592aeef3a6af51ec73640a231b8c1a4641d10457b1bb828a7c20adad823426b38d2cf222232f1fbefa713dab789628e67d5a137e42f7d11fa90343ef035ecc458eec3eef9aea35ce67c65e338ea12f"], 0x48)
r2 = syz_io_uring_setup(0x83f, &(0x7f00000000c0)={0x0, 0xa9ee, 0x0, 0x3, 0x8002ae}, &(0x7f0000000140)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x109880})
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x3014850, &(0x7f0000000700)={[{@quota}, {@max_batch_time={'max_batch_time', 0x3d, 0xb1}}, {@grpjquota}, {@norecovery}, {@dioread_lock}]}, 0x3, 0x4de, &(0x7f0000001080)="$eJzs3d9rXFkdAPDvnSRt0qYmVR9q0Vq0khbtTNLYNvhQI4g+Faz1PcZkEkImmZCZtE0okuIfIIi/0CeffBF8FkH6J6hQ0HcRUYrbdh92YXdnmcmdbZudSSbb+dEmnw+c3HPuvZPv92SYkzn3Xu4N4Mg6HxHTEdEXEZciYiRdn0lLbO+U6n5Pn9yfq5YkKpXb/08iSdfVf1eSLk+mLxuMiO9/N+JHycfjlja3lmcLhfx62s6VV9Zypc2ty0srs4v5xfzq9OTEtanrU1enxtvW1xvf/s8vf/r779z4y9fu/mvmfxd/XE1rOI7Vtr3Yj1Zst7jfTtcHan+Luv6IWD9IsNdYX9qfgV4nAgBAS6rf8T8dEV+KiGe/6XU2AAAAQCdUvjkc7yURFQAAAODQytSugU0y2fRagOHIZLLZnWt4PxsnMoViqfzVheLG6nx1W8RoDGQWlgr58fRa4dEYSKrtiVr9efvKrvZkRJyOiJ+PDNXa2bliYb7XBz8AAADgiDi5a/7/9sjO/B8AAAA4ZEZ7nQAAAADQceb/AAAAcPg1nf8n/d1NBAAAAOiE7928WS2V+vOv5+9sbiwX71yez5eWsysbc9m54vpadrFYXKzds29lv99XKBbXvh6rG/dy5XypnCttbs2sFDdWyzO153rP5D0nGgAAALrv9Bcf/jOJiO1vDNVK1bF0Wwtz9enOZgd0UuZguyedygPovr5eJwD0zD4X+P7t891KBOg65+OBfSb2v9jVPuBhAwAA4HUw9rlXOv/vfCC8wUzk4ej6ROf/T7U/D6D73OALjq6mc3wTAzgaju+/y2CzDX9tcy4AAEDHDNdKksmmU/7hyGSy2Z1D/KMxkCwsFfLjEfGpiPjHyMDxanui10kDAAAAAAAAAAAAAAAAAAAAAAAAwBumUkmiAgAAABxqEZn/JumD/MdGLgzvPj5wLHlnpLaMiLu/vf2re7Pl8vpEdf1bH60v/zpdf6UXRzAAAACA3erz9Po8HgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADa6emT+3P10s24j78VEaON4vfHYG05+KeRiDjxLIn+F16XRERfG+JvP4iIM43iJ9W0YjTNYnf8TEQM9Tj+yTbEh6PsYXX8mW70+cvE+dqy8eevPy2v6vH5ZuNfpj7+1ca5RuPfqRZjnH30x1zT+A8izvY3Hn/q8ZNXHH9/+IOtrWbbKr+LGGv4/yd5KVauvLKWK21uXV5amV3ML+ZXJycnrk1dn7o6NZ5bWCrk058NY/zsC3/+YK/+n2gSf3Sf/l9osf/vP7r35DN7xL/45d3x3629/2f2iF/9238l/T9Q3T5Wr2/v1F907g9/P7dX/+eb9H+/9/9ii/2/dOsn/25xVwCgC0qbW8uzhUJ+XeWNrAx4B9tcGYrXIo12VW6lH/QDv7zHAxMAANB2z7/09zoTAAAAAAAAAAAAAAAAAAAAOLo6fhOy4y/fWWCwd10FAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANjThwEAAP//sxnTZg==")
io_uring_enter(r2, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf)

1.152151343s ago: executing program 5 (id=1756):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000010a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000001afc180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000090000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sendmsg$netlink(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f00000005c0)=ANY=[@ANYBLOB="140100002800010004000080f8dbdf2503"], 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x33)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000dc0)={{r3, <r4=>0xffffffffffffffff}, &(0x7f0000000500), &(0x7f00000000c0)='%ps    \x00'}, 0x20)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000003c0)={r4}, 0x4)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f00000004c0)={'wg2\x00', <r5=>0x0})
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000340)={'veth0_to_hsr\x00', <r8=>0x0})
r9 = socket$nl_route(0x10, 0x3, 0x0)
bind$packet(r7, &(0x7f0000000080)={0x11, 0x4, r8, 0x1, 0x6, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3e}}, 0x14)
sendmsg$nl_route_sched(r9, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000540)=@getchain={0x24, 0x11, 0x1, 0x70bd2c, 0x25dfdbff, {0x0, 0x0, 0x0, r8, {0xfff1}, {0xfff1, 0xfff3}, {0xb, 0x7}}}, 0x24}, 0x1, 0x0, 0x0, 0x4008010}, 0x2400c000)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000800)={'wg0\x00', <r10=>0x0})
getsockopt$PNPIPE_IFINDEX(r4, 0x113, 0x2, &(0x7f0000000840)=<r11=>0x0, &(0x7f0000000980)=0x4)
sendmsg$ETHTOOL_MSG_LINKSTATE_GET(0xffffffffffffffff, &(0x7f0000002480)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000002440)={&(0x7f0000000600)=ANY=[@ANYBLOB="5c010000", @ANYRES16=0x0, @ANYBLOB="000829bd7000fbdbdf250600000070000180080003000100000008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="080003000300000008000300010000001400020076657468315f746f5f626f6e640000001400020076657468305f746f5f6272696467650008000100", @ANYRES32=0x0, @ANYBLOB="140002006970766c616e300000000000000000003c0001801400020076657468305f6d61637674617000000008000100", @ANYRES32=r5, @ANYBLOB="08000100", @ANYRES32=r8, @ANYBLOB="1400020076657468315f746f5f68737200000000180001801400020070696d726567310000000000000000001c000180080003000300000008000100", @ANYRES32=r10, @ANYBLOB="08000300000000006800018008001100", @ANYRES32=r11, @ANYRES64=r4, @ANYRES32, @ANYBLOB="08000100", @ANYRES32, @ANYBLOB="08000300030000001400020064756d6d7930000000000000000000001400020077673200000000000000000000000000140002006d616373656330000000000000000000"], 0x15c}, 0x1, 0x0, 0x0, 0x40000}, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00'}, 0x18)
ioctl$BTRFS_IOC_BALANCE_V2(r0, 0xc4009420, &(0x7f0000000ac0)={0x0, 0x2, {0x8000000000000000, @usage=0x9, 0x0, 0x9, 0x8000000000000001, 0x6, 0x8001, 0x8, 0x449, @usage=0xa320, 0x3, 0x1000, [0x7fff, 0x6, 0x7fffffff, 0x6, 0x100000000, 0xc]}, {0xc, @usage, 0x0, 0x3, 0x3, 0x10, 0x4, 0x5, 0x40, @struct={0x7, 0x9}, 0x8, 0xa6, [0x0, 0x80000000, 0x800, 0x7ff, 0x709e316, 0xffffffffffffff81]}, {0x290498f9, @struct={0x8, 0x100005}, <r12=>0x0, 0x6, 0xb, 0x3, 0x850, 0x2, 0x32, @usage=0x1, 0xdf42, 0x80000000, [0xfffffffffffffff7, 0x58d, 0xffffffff, 0xffffffffffffffff, 0x4736, 0x5]}, {0x1, 0x9, 0xffffffffffffffcd}})
ioctl$BTRFS_IOC_BALANCE_V2(0xffffffffffffffff, 0xc4009420, &(0x7f0000001ec0)={0x8, 0x1, {0x4, @struct={0x6}, r12, 0x80000001, 0x1, 0x8000000000000000, 0xb, 0xfffffffffffffffd, 0x484, @struct={0xb, 0x8000}, 0x200, 0x80000001, [0x5bc3, 0x0, 0x6, 0x4, 0x9, 0x6]}, {0x4, @struct={0x1, 0xff}, 0x0, 0x9, 0x7602, 0x2, 0x8, 0x4154, 0x80, @usage=0xffffffffffffffff, 0x3, 0x3, [0x7fffffffffffffff, 0x100000000, 0x4, 0xca6, 0x1d, 0x2]}, {0x1000000000003, @struct={0x3, 0x2a}, 0x0, 0x7fffffff, 0x7fff, 0x7, 0x4, 0x3, 0x20, @usage=0x4, 0x4, 0x9, [0x3, 0x9, 0x80000000, 0x80, 0x2, 0xa5f]}, {0x7d, 0x9, 0x4}})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
creat(&(0x7f0000000100)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x37, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x6}, 0x0, 0xfffd, 0x0, 0x1, 0xa, 0x20002, 0x1, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r13 = open(&(0x7f0000000540)='./bus\x00', 0x4000, 0x0)
preadv2(r13, 0x0, 0x0, 0x0, 0x0, 0x0)

1.015517015s ago: executing program 5 (id=1760):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='kmem_cache_free\x00', r0}, 0x18)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1/file2\x00', 0x81c0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
renameat2(0xffffffffffffff9c, &(0x7f0000000480)='./file1/file2\x00', 0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x2)

988.039036ms ago: executing program 5 (id=1761):
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r1 = timerfd_create(0x0, 0x800)
timerfd_settime(r1, 0x3, &(0x7f0000000080), 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000004000000450000008814"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000300000207b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x8, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x35, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0xf2de1000)
r4 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x2, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESDEC=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x52, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r5}, &(0x7f0000000180), &(0x7f00000001c0)=r4}, 0xfffffffffffffefc)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x1)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r3}, 0x10)
sync()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0x2}, 0x18)
r6 = socket$can_bcm(0x1d, 0x2, 0x2)
close(r6)
syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x2)

914.788757ms ago: executing program 2 (id=1762):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17}, 0x94)
perf_event_open(&(0x7f0000000580)={0x2, 0x80, 0x1, 0x1, 0x0, 0x0, 0x0, 0x200000000007, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x4, @perf_config_ext={0x6, 0x8}, 0x6e58, 0x5, 0x4, 0x4, 0x200000087, 0x9, 0xb, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
dup(r1)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7020000140000e5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
openat$tun(0xffffffffffffff9c, 0x0, 0x1, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000040)={'macsec0\x00', @local})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'macsec0\x00', 0xca58c30f81b6079f})
syz_clone3(&(0x7f0000000340)={0x14000, &(0x7f0000000000), 0x0, 0x0, {0x2}, 0x0, 0x0, &(0x7f00000006c0)=""/254, &(0x7f00000004c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x6}, 0x58)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x3b, 0x2}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x47f2, 0x5})
sync()
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
write(0xffffffffffffffff, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000080050005000200000011000300686173683a69702c706f7274"], 0x4c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$IPSET_CMD_ADD(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="50000000090601020000000000000000020000840900020073797a31000000000500010007000000280007800c00018008000140fffffff70500070084000000060004404e22000006000540"], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="020000000400000008", @ANYRES32], 0x50)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000000000000000000400000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x4000800)
sendmsg$NFT_BATCH(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="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"], 0x1ec}, 0x1, 0x0, 0x0, 0x4000840}, 0x0)
connect$netlink(r7, &(0x7f0000000040)=@unspec, 0xc)

752.250829ms ago: executing program 2 (id=1766):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000410, &(0x7f0000000080), 0x80, 0x7a5, &(0x7f0000000f80)="$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")
futex(0x0, 0x3, 0x801, 0x0, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000300)=0xffffff7f, 0x4)
getsockopt$SO_TIMESTAMP(r0, 0x1, 0x3f, 0x0, &(0x7f00000000c0)=0x12)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003500)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffd4d}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000140)='tlb_flush\x00', r1, 0x0, 0x2}, 0x18)
mremap(&(0x7f0000000000/0x9000)=nil, 0x200003, 0x600000, 0x3, &(0x7f0000a00000/0x600000)=nil)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x1000c15, &(0x7f0000000300)=ANY=[@ANYBLOB="73686f77657865632c756e695f786c6174653d312c6e6f6e756d7461696c3d302c726f6469722c757466383d312c09006e756d7461696c3d302c756e695f786c6174653d312c71756965742c716e695f786c6174653d302c757566383d312c756e695f786c6174653d302c73686f72746e616d653d77696e6e742c74696d655f6f66667365743d30783030303030303030b553b99225ca3030303030353465496c3d302c73686f72746e616d653d6d697865642c617466383d302c000000000000000000"], 0xf5, 0x2e5, &(0x7f0000000540)="$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")
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000040), 0x208e24b)
syz_emit_ethernet(0x74, &(0x7f00000000c0)=ANY=[@ANYBLOB="aaaaaaaaaabbaaaaaaaaaabb88a8430081003500884800000000000000000000000077b166fd350c9dda6644e9c2e32defb9159df3238142c7a693841b0fa53a6f82380bded7d0bc38cb2cb3836aaca03c4bb535b14b7dffaf66032a529e6368c15b7dba6ec29f3983266ff4cf037c435a913a98"], &(0x7f0000000180)={0x1, 0x1, [0xae, 0xf9c, 0xab7, 0xffc]})
r3 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x8401)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000400)='kfree\x00', r4}, 0x18)
ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000b40)={'\x00', 0x7ff, 0x5, 0xc, 0xfffffffffffffffd, 0x59c, 0xffffffffffffffff})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

458.415263ms ago: executing program 3 (id=1768):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000010a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000001afc180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000090000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sendmsg$netlink(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f00000005c0)=ANY=[@ANYBLOB="140100002800010004000080f8dbdf2503"], 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x33)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000dc0)={{r3, <r4=>0xffffffffffffffff}, &(0x7f0000000500), &(0x7f00000000c0)='%ps    \x00'}, 0x20)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000003c0)={r4}, 0x4)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f00000004c0)={'wg2\x00', <r5=>0x0})
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000340)={'veth0_to_hsr\x00', <r8=>0x0})
r9 = socket$nl_route(0x10, 0x3, 0x0)
bind$packet(r7, &(0x7f0000000080)={0x11, 0x4, r8, 0x1, 0x6, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3e}}, 0x14)
sendmsg$nl_route_sched(r9, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000540)=@getchain={0x24, 0x11, 0x1, 0x70bd2c, 0x25dfdbff, {0x0, 0x0, 0x0, r8, {0xfff1}, {0xfff1, 0xfff3}, {0xb, 0x7}}}, 0x24}, 0x1, 0x0, 0x0, 0x4008010}, 0x2400c000)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000800)={'wg0\x00', <r10=>0x0})
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000a40)={'wg2\x00', <r11=>0x0})
sendmsg$ETHTOOL_MSG_LINKSTATE_GET(0xffffffffffffffff, &(0x7f0000002480)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000002440)={&(0x7f0000000600)=ANY=[@ANYBLOB="5c010000", @ANYRES16=0x0, @ANYBLOB="000829bd7000fbdbdf250600000070000180080003000100000008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="080003000300000008000300010000001400020076657468315f746f5f626f6e640000001400020076657468305f746f5f6272696467650008000100", @ANYRES32=0x0, @ANYBLOB="140002006970766c616e300000000000000000003c0001801400020076657468305f6d61637674617000000008000100", @ANYRES32=r5, @ANYBLOB="08000100", @ANYRES32=r8, @ANYBLOB="1400020076657468315f746f5f68737200000000180001801400020070696d726567310000000000000000001c000180080003000300000008000100", @ANYRES32=r10, @ANYBLOB="08000300000000006800018008001100", @ANYRES32, @ANYRES64=r4, @ANYRES32, @ANYBLOB="08000100", @ANYRES32=r11, @ANYBLOB="08000300030000001400020064756d6d7930000000000000000000001400020077673200000000000000000000000000140002006d616373656330000000000000000000"], 0x15c}, 0x1, 0x0, 0x0, 0x40000}, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00'}, 0x18)
ioctl$BTRFS_IOC_BALANCE_V2(r0, 0xc4009420, &(0x7f0000000ac0)={0x0, 0x2, {0x8000000000000000, @usage=0x9, 0x0, 0x9, 0x8000000000000001, 0x6, 0x8001, 0x8, 0x449, @usage=0xa320, 0x3, 0x1000, [0x7fff, 0x6, 0x7fffffff, 0x6, 0x100000000, 0xc]}, {0xc, @usage, 0x0, 0x3, 0x3, 0x10, 0x4, 0x5, 0x40, @struct={0x7, 0x9}, 0x8, 0xa6, [0x0, 0x80000000, 0x800, 0x7ff, 0x709e316, 0xffffffffffffff81]}, {0x290498f9, @struct={0x8, 0x100005}, <r12=>0x0, 0x6, 0xb, 0x3, 0x850, 0x2, 0x32, @usage=0x1, 0xdf42, 0x80000000, [0xfffffffffffffff7, 0x58d, 0xffffffff, 0xffffffffffffffff, 0x4736, 0x5]}, {0x1, 0x9, 0xffffffffffffffcd}})
ioctl$BTRFS_IOC_BALANCE_V2(0xffffffffffffffff, 0xc4009420, &(0x7f0000001ec0)={0x8, 0x1, {0x4, @struct={0x6}, r12, 0x80000001, 0x1, 0x8000000000000000, 0xb, 0xfffffffffffffffd, 0x484, @struct={0xb, 0x8000}, 0x200, 0x80000001, [0x5bc3, 0x0, 0x6, 0x4, 0x9, 0x6]}, {0x4, @struct={0x1, 0xff}, 0x0, 0x9, 0x7602, 0x2, 0x8, 0x4154, 0x80, @usage=0xffffffffffffffff, 0x3, 0x3, [0x7fffffffffffffff, 0x100000000, 0x4, 0xca6, 0x1d, 0x2]}, {0x1000000000003, @struct={0x3, 0x2a}, 0x0, 0x7fffffff, 0x7fff, 0x7, 0x4, 0x3, 0x20, @usage=0x4, 0x4, 0x9, [0x3, 0x9, 0x80000000, 0x80, 0x2, 0xa5f]}, {0x7d, 0x9, 0x4}})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
creat(&(0x7f0000000100)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x37, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x6}, 0x0, 0xfffd, 0x0, 0x1, 0xa, 0x20002, 0x1, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r13 = open(&(0x7f0000000540)='./bus\x00', 0x4000, 0x0)
preadv2(r13, 0x0, 0x0, 0x0, 0x0, 0x0)

457.279343ms ago: executing program 1 (id=1769):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="02000000040000000400000001"], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0c0000000400000004000000070007ff00000000", @ANYRES32=r0], 0x50)

413.016394ms ago: executing program 5 (id=1770):
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r1 = timerfd_create(0x0, 0x800)
timerfd_settime(r1, 0x3, &(0x7f0000000080), 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000004000000450000008814"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000300000207b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x8, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x35, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0xf2de1000)
r4 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x2, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESDEC=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x52, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r5}, &(0x7f0000000180), &(0x7f00000001c0)=r4}, 0xfffffffffffffefc)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x1)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r3}, 0x10)
sync()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0x2}, 0x18)
r6 = socket$can_bcm(0x1d, 0x2, 0x2)
fcntl$dupfd(r1, 0x0, r5)
connect$can_bcm(r6, &(0x7f0000001200), 0x10)
close(r6)

361.318625ms ago: executing program 4 (id=1771):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))

360.896785ms ago: executing program 1 (id=1772):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x39, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3b, 0x1, 0x0, 0x0, 0x0, 0x8, 0xdd18b, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, @perf_config_ext={0x4, 0x100000003}, 0x3323, 0x4, 0x3, 0x0, 0x9, 0x800001, 0xfff7, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r1, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @loopback}}, 0x80, 0x0, 0x0, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x0)

340.144015ms ago: executing program 4 (id=1773):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=@base={0x7, 0x4, 0x100, 0x1, 0x28}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
r2 = memfd_create(&(0x7f0000001880)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85Q\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~Mx\x02\x00(v\xe6`\x026\xfcgC\xb5\xf0\x13.zb\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x80\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F91 ^x\x85\x80[\xa3B\n#!\xc2R\xdd\xf4)\xba\x1e\xfb6U\xabc\xda\x9a)\xc3\x9a\x06\xc5\xccP)\xdf.\xa7-\x84\xdf8\xbf\xfc1^}B\xee\xccR/z\x1e\xe8\x1e\x99\x99\n\xf4u\xd4\xbd^L\xb2j\xda\xff\x1d\x10\xc8\xad\xbd_OI\xb1\xe8y\x003\a\x06\x92\x8e\n\x8b\xf3\xd4G\x85\xbd\x1a\x81+3\x99jq\xd1\xacK^\xef\xb6!8\xcd?\x1e\\\x16W2\xbd4$zn\xa9\x7f\x9dE\xaf\x0f\xdb\xe0\xfa\x10\xc3\xb2\xf8\x80\x8c\xec$\xda\xc0\x94y1\t\xc5`\xda\xca\xd1\xab:\x18\x10\x9b\xd0w', 0x0)
write$binfmt_misc(r2, &(0x7f0000000180)="e502", 0x2)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000800)='./file0\x00', 0x0, &(0x7f0000000980)=ANY=[@ANYBLOB="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", @ANYRESHEX=0x0, @ANYRESHEX], 0x2, 0x699, &(0x7f0000000140)="$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")
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x2020000, 0x0, 0x0, 0x0, 0x4}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x6, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10)
unshare(0x2040400)
execveat(r2, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

314.294926ms ago: executing program 3 (id=1774):
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r1 = timerfd_create(0x0, 0x800)
timerfd_settime(r1, 0x3, &(0x7f0000000080), 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000040000"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x8, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x35, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0xf2de1000)
r3 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x2, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESDEC=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x52, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r4}, &(0x7f0000000180), &(0x7f00000001c0)=r3}, 0xfffffffffffffefc)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x1)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
sync()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0x2}, 0x18)
r5 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r5, &(0x7f0000001200), 0x10)
close(r5)
syz_open_dev$usbfs(0x0, 0x1ff, 0x2)

277.407486ms ago: executing program 1 (id=1775):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000004900)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000240)="af", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000b80)="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", 0x374}, {&(0x7f00000003c0)="439e9c06fc666cabc8569d63a866b31ff3ceda1e28f23f455e96a02001fc3fb089ed9e5234", 0x25}], 0x2}}], 0x2, 0x0)

272.665586ms ago: executing program 4 (id=1776):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r1=>0x0})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r2, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000001940)=ANY=[@ANYRES16=r3, @ANYRES32=r1], 0x20}}, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000300)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x9, '\x00', r1, 0xffffffffffffffff, 0x0, 0x1}, 0x50)

219.989317ms ago: executing program 4 (id=1777):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x4000, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

185.255667ms ago: executing program 4 (id=1778):
socket$packet(0x11, 0x3, 0x300)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0xe, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000340), 0x10}, 0x94)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000100)={0x0, 0x7}, 0x4)
setsockopt$packet_int(r0, 0x107, 0x16, &(0x7f0000000000)=0x4, 0x4)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r2 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
write$tun(r1, &(0x7f0000001800)={@val={0x8, 0x800}, @val={0x3, 0x0, 0x0, 0x0, 0x14}, @ipv4=@generic={{0x5, 0x4, 0x1, 0x2b, 0x22, 0x68, 0x0, 0x60, 0x67, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast}, "21f3305280f125e6e11a9314b296"}}, 0x30)

183.886787ms ago: executing program 1 (id=1779):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000100000000000000040000850000006d00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000340)='kmem_cache_free\x00', r2}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r5, r6, 0x5}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r5}, &(0x7f00000006c0), &(0x7f0000000700)=r4}, 0x20)
sendmsg$inet(r3, &(0x7f0000000980)={0x0, 0x6000, &(0x7f0000000900)=[{&(0x7f0000000640)='U', 0xa00120}], 0x1}, 0x3)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000140)='kmem_cache_free\x00', r7}, 0x18)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r8}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f00000001c0)='w\xde\xa3\x05\xff\a\x00\x00\x00\x00\x00\x00\x8f\xc0\x9b\x86\xef\\\xc0\x89\av\x9f\xd6\xd1\x98,\xc8\x18E/\x8c\x1a\xe3\xbd')
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r9 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x800)
r10 = socket$kcm(0x2d, 0x2, 0x0)
r11 = socket$kcm(0x2d, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r11, 0x89e2, &(0x7f0000000380)={<r12=>r10})
bind$xdp(r12, &(0x7f0000000080)={0x2d, 0x0, 0x0, 0xa}, 0x10)
close(r12)
ioctl$SG_GET_VERSION_NUM(r9, 0x2284, &(0x7f0000000080))
r13 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r13, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r13, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x56)
connect$inet(r13, &(0x7f0000000380)={0x2, 0x4e25, @dev={0xac, 0x14, 0x14, 0x3e}}, 0x10)

53.15864ms ago: executing program 4 (id=1780):
openat$selinux_attr(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/thread-self/attr/sockcreate\x00', 0x2, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6e, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x40, &(0x7f0000000100)={[{@errors_remount}, {@min_batch_time={'min_batch_time', 0x3d, 0x5}}, {@dioread_nolock}]}, 0x1, 0x573, &(0x7f0000000ec0)="$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")
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r4, &(0x7f00000005c0)='\"', 0x1, 0x4fed0)
sendfile(r4, r4, 0x0, 0xe3aa6ea)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x18)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r5, 0x0, 0x2}, 0x2d)
socket$kcm(0x10, 0x2, 0x0)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014000000b7030000010000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r7}, 0x10)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4)
r8 = syz_open_procfs(0x0, &(0x7f0000000480)='task\x00')
r9 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r9, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=@updpolicy={0xfc, 0x19, 0x1, 0x0, 0x0, {{@in6=@rand_addr=' \x01\x00', @in6=@dev={0xfe, 0x80, '\x00', 0x31}, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa9, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa00, 0x40800000000000, 0x800000000000000}}, [@tmpl={0x44, 0x5, [{{@in6=@private0={0xfc, 0x0, '\x00', 0x1}, 0x0, 0x3c}, 0x0, @in=@broadcast, 0x0, 0x0, 0x3}]}]}, 0xfc}}, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r8, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000740)=@migrate={0x50, 0x21, 0x1, 0xfffffffc, 0x0, {{@in=@private=0xa010101, @in6=@private2, 0x0, 0x0, 0x0, 0x1, 0xa}, 0x100004}}, 0x50}, 0x1, 0x0, 0x0, 0x800c}, 0x0)
fchdir(r8)
bind$inet(r8, &(0x7f0000000100)={0x2, 0x4e22, @multicast2}, 0x10)
ioctl$SG_GET_VERSION_NUM(0xffffffffffffffff, 0x2284, &(0x7f0000000080))

25.15697ms ago: executing program 1 (id=1781):
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000010a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000001afc180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'veth0_to_hsr\x00', <r3=>0x0})
bind$packet(r2, &(0x7f0000000080)={0x11, 0x4, r3, 0x1, 0x6, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3e}}, 0x14)

0s ago: executing program 2 (id=1782):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000280)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r1)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x20800, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket(0x400000000010, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x22004004, &(0x7f0000000140)={[{@jqfmt_vfsold}, {@errors_remount}, {@noload}, {@nombcache}, {@usrjquota}, {@grpjquota, 0x2e}]}, 0x81, 0x46c, &(0x7f00000004c0)="$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")
r4 = socket$kcm(0x11, 0x2, 0x0)
setsockopt$sock_attach_bpf(r4, 0x107, 0x17, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
creat(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x50)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtfilter={0x70, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r6, {0xf, 0xf}, {}, {0x7, 0xd}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x40, 0x2, [@TCA_CGROUP_EMATCHES={0x3c, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x30, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x2c, 0x1, 0x0, 0x0, {{0x800, 0x7, 0x1}, {{0x0, 0x0, 0x1}, {0x3, 0x1, 0x1}}}}, @TCF_EM_CMP={0x18, 0x2, 0x0, 0x0, {{0xe85, 0x1, 0xc}, {0x4, 0x80000000, 0x3, 0x1, 0x0, 0x1}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x8}}]}]}}]}, 0x70}, 0x1, 0x0, 0x0, 0x10}, 0x0)

kernel console output (not intermixed with test programs):

: UNKNOWN
[   96.108703][ T6969] vhci_hcd vhci_hcd.0: pdev(2) rhport(4) sockfd(22)
[   96.115356][ T6969] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   96.123027][ T6969] vhci_hcd vhci_hcd.0: Device attached
[   96.135960][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.150391][ T6969] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(24)
[   96.157026][ T6969] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[   96.164743][ T6969] vhci_hcd vhci_hcd.0: Device attached
[   96.175064][ T6983] netlink: 256 bytes leftover after parsing attributes in process `syz.0.1342'.
[   96.178139][ T6969] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[   96.193513][ T6969] vhci_hcd vhci_hcd.0: pdev(2) rhport(6) sockfd(27)
[   96.200139][ T6969] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   96.207749][ T6969] vhci_hcd vhci_hcd.0: Device attached
[   96.241735][ T6969] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[   96.270938][ T6969] vhci_hcd vhci_hcd.0: port 0 already used
[   96.278517][   T36] usb 5-1: new low-speed USB device number 2 using vhci_hcd
[   96.317683][ T6987] vhci_hcd: connection closed
[   96.317904][   T51] vhci_hcd: stop threads
[   96.327139][   T51] vhci_hcd: release socket
[   96.331671][   T51] vhci_hcd: disconnect device
[   96.337958][ T6976] vhci_hcd: connection closed
[   96.338147][ T6970] vhci_hcd: connection reset by peer
[   96.348198][ T6978] vhci_hcd: connection closed
[   96.348926][ T6984] vhci_hcd: connection closed
[   96.353689][ T6980] vhci_hcd: connection closed
[   96.488021][   T12] vhci_hcd: stop threads
[   96.488741][ T7006] netlink: 'syz.3.1346': attribute type 29 has an invalid length.
[   96.492747][   T12] vhci_hcd: release socket
[   96.499271][ T7006] netlink: 'syz.3.1346': attribute type 29 has an invalid length.
[   96.504824][   T12] vhci_hcd: disconnect device
[   96.600897][ T7011] lo speed is unknown, defaulting to 1000
[   96.683119][ T7013] bridge0: port 2(bridge_slave_1) entered disabled state
[   96.690448][ T7013] bridge0: port 1(bridge_slave_0) entered disabled state
[   96.700722][ T7013] bridge0: port 2(bridge_slave_1) entered blocking state
[   96.708120][ T7013] bridge0: port 2(bridge_slave_1) entered forwarding state
[   96.715416][ T7013] bridge0: port 1(bridge_slave_0) entered blocking state
[   96.722507][ T7013] bridge0: port 1(bridge_slave_0) entered forwarding state
[   96.747159][   T12] vhci_hcd: stop threads
[   96.751476][   T12] vhci_hcd: release socket
[   96.755944][   T12] vhci_hcd: disconnect device
[   96.841980][   T12] vhci_hcd: stop threads
[   96.846272][   T12] vhci_hcd: release socket
[   96.850792][   T12] vhci_hcd: disconnect device
[   96.857697][ T7017] pimreg: entered allmulticast mode
[   96.882745][   T12] vhci_hcd: stop threads
[   96.887079][   T12] vhci_hcd: release socket
[   96.891559][   T12] vhci_hcd: disconnect device
[   96.913213][   T12] vhci_hcd: stop threads
[   96.917501][   T12] vhci_hcd: release socket
[   96.921945][   T12] vhci_hcd: disconnect device
[   96.927209][ T7017] pimreg: left allmulticast mode
[   96.953746][ T7019] loop1: detected capacity change from 0 to 512
[   96.963905][ T7019] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   96.995833][ T7022] hsr_slave_0 (unregistering): left promiscuous mode
[   97.003826][ T7029] loop3: detected capacity change from 0 to 2048
[   97.009848][ T7019] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   97.024952][ T7019] ext4 filesystem being mounted at /272/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   97.038009][   T29] kauditd_printk_skb: 545 callbacks suppressed
[   97.038021][   T29] audit: type=1400 audit(1753724907.456:5696): avc:  denied  { read } for  pid=7018 comm="iou-wrk-7019" name="file0" dev="loop1" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   97.072079][ T7029] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   97.090092][   T29] audit: type=1400 audit(1753724907.456:5697): avc:  denied  { open } for  pid=7018 comm="iou-wrk-7019" path="/272/file1/file0" dev="loop1" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   97.125304][ T7029] lo speed is unknown, defaulting to 1000
[   97.195443][   T29] audit: type=1326 audit(1753724907.596:5698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7028 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43c6efe9a9 code=0x7ffc0000
[   97.218521][   T29] audit: type=1326 audit(1753724907.596:5699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7028 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43c6efe9a9 code=0x7ffc0000
[   97.241793][   T29] audit: type=1326 audit(1753724907.596:5700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7028 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f43c6efe9a9 code=0x7ffc0000
[   97.264807][   T29] audit: type=1326 audit(1753724907.596:5701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7028 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43c6efe9a9 code=0x7ffc0000
[   97.287744][   T29] audit: type=1326 audit(1753724907.596:5702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7028 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43c6efe9a9 code=0x7ffc0000
[   97.310657][   T29] audit: type=1326 audit(1753724907.596:5703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7028 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f43c6efe9a9 code=0x7ffc0000
[   97.333536][   T29] audit: type=1326 audit(1753724907.596:5704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7028 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43c6efe9a9 code=0x7ffc0000
[   97.356562][   T29] audit: type=1326 audit(1753724907.596:5705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7028 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43c6efe9a9 code=0x7ffc0000
[   97.431150][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.437451][ T7056] loop0: detected capacity change from 0 to 512
[   97.463698][ T7056] EXT4-fs (loop0): 1 orphan inode deleted
[   97.473436][ T7056] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   97.486040][ T3475] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:7: Failed to release dquot type 1
[   97.494068][ T7056] ext4 filesystem being mounted at /229/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   97.516931][ T7056] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[   97.517261][ T7054] 9pnet: Could not find request transport: t
[   97.555124][ T7063] loop4: detected capacity change from 0 to 512
[   97.565805][ T7063] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   97.604799][ T7070] mmap: syz.1.1367 (7070) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   97.641979][ T7077] FAULT_INJECTION: forcing a failure.
[   97.641979][ T7077] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   97.655128][ T7077] CPU: 1 UID: 0 PID: 7077 Comm: syz.1.1369 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[   97.655155][ T7077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   97.655233][ T7077] Call Trace:
[   97.655241][ T7077]  <TASK>
[   97.655249][ T7077]  __dump_stack+0x1d/0x30
[   97.655269][ T7077]  dump_stack_lvl+0xe8/0x140
[   97.655304][ T7077]  dump_stack+0x15/0x1b
[   97.655319][ T7077]  should_fail_ex+0x265/0x280
[   97.655348][ T7077]  should_fail+0xb/0x20
[   97.655374][ T7077]  should_fail_usercopy+0x1a/0x20
[   97.655415][ T7077]  _copy_from_user+0x1c/0xb0
[   97.655434][ T7077]  autofs_dev_ioctl+0xdd/0x6a0
[   97.655451][ T7077]  ? __pfx_autofs_dev_ioctl+0x10/0x10
[   97.655467][ T7077]  __se_sys_ioctl+0xce/0x140
[   97.655495][ T7077]  __x64_sys_ioctl+0x43/0x50
[   97.655510][ T7077]  x64_sys_call+0x19a8/0x2fb0
[   97.655522][ T7077]  do_syscall_64+0xd2/0x200
[   97.655534][ T7077]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   97.655665][ T7077]  ? clear_bhb_loop+0x40/0x90
[   97.655687][ T7077]  ? clear_bhb_loop+0x40/0x90
[   97.655703][ T7077]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.655715][ T7077] RIP: 0033:0x7f0357e6e9a9
[   97.655779][ T7077] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   97.655789][ T7077] RSP: 002b:00007f03564d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   97.655801][ T7077] RAX: ffffffffffffffda RBX: 00007f0358095fa0 RCX: 00007f0357e6e9a9
[   97.655808][ T7077] RDX: 0000200000000240 RSI: 00000000c0189374 RDI: 0000000000000003
[   97.655815][ T7077] RBP: 00007f03564d7090 R08: 0000000000000000 R09: 0000000000000000
[   97.655893][ T7077] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   97.655900][ T7077] R13: 0000000000000000 R14: 00007f0358095fa0 R15: 00007ffeac06ea18
[   97.655911][ T7077]  </TASK>
[   97.869125][ T3314] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[   97.884970][ T3314] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6548: Corrupt filesystem
[   97.898983][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.930449][ T7086] loop3: detected capacity change from 0 to 2048
[   97.950264][ T7086] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   97.964018][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.978276][ T7086] lo speed is unknown, defaulting to 1000
[   98.060304][ T7101] loop9: detected capacity change from 0 to 7
[   98.066831][ T7101] Buffer I/O error on dev loop9, logical block 0, async page read
[   98.075002][ T7101] Buffer I/O error on dev loop9, logical block 0, async page read
[   98.082987][ T7101]  loop9: unable to read partition table
[   98.088941][ T7101] loop_reread_partitions: partition scan of loop9 (þ被xüŸÑø éÚ¬§½dG¤´à–ƒÝ¡¯ �â·û
[   98.088941][ T7101] 
) failed (rc=-5)
[   98.090669][ T3295] Buffer I/O error on dev loop9, logical block 0, async page read
[   98.131285][ T3295] Buffer I/O error on dev loop9, logical block 0, async page read
[   98.139856][ T3295] Buffer I/O error on dev loop9, logical block 0, async page read
[   98.148037][ T3295] Buffer I/O error on dev loop9, logical block 0, async page read
[   98.156388][ T3295] Buffer I/O error on dev loop9, logical block 0, async page read
[   98.184856][ T7104] FAULT_INJECTION: forcing a failure.
[   98.184856][ T7104] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   98.197978][ T7104] CPU: 1 UID: 0 PID: 7104 Comm: syz.4.1379 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[   98.198001][ T7104] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   98.198012][ T7104] Call Trace:
[   98.198018][ T7104]  <TASK>
[   98.198025][ T7104]  __dump_stack+0x1d/0x30
[   98.198097][ T7104]  dump_stack_lvl+0xe8/0x140
[   98.198118][ T7104]  dump_stack+0x15/0x1b
[   98.198137][ T7104]  should_fail_ex+0x265/0x280
[   98.198166][ T7104]  should_fail+0xb/0x20
[   98.198198][ T7104]  should_fail_usercopy+0x1a/0x20
[   98.198274][ T7104]  _copy_from_user+0x1c/0xb0
[   98.198292][ T7104]  __ia32_sys_rt_sigreturn+0x128/0x350
[   98.198324][ T7104]  x64_sys_call+0x2e8a/0x2fb0
[   98.198348][ T7104]  do_syscall_64+0xd2/0x200
[   98.198371][ T7104]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   98.198399][ T7104]  ? clear_bhb_loop+0x40/0x90
[   98.198421][ T7104]  ? clear_bhb_loop+0x40/0x90
[   98.198467][ T7104]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.198491][ T7104] RIP: 0033:0x7f5ed8a1ab89
[   98.198506][ T7104] Code: 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 04 25
[   98.198522][ T7104] RSP: 002b:00007f5ed70dea80 EFLAGS: 00000202 ORIG_RAX: 000000000000000f
[   98.198539][ T7104] RAX: ffffffffffffffda RBX: 00007f5ed8ca5fa0 RCX: 00007f5ed8a1ab89
[   98.198549][ T7104] RDX: 00007f5ed70dea80 RSI: 00007f5ed70debb0 RDI: 0000000000000021
[   98.198609][ T7104] RBP: 00007f5ed70df090 R08: 0000000000000000 R09: 0000000000000000
[   98.198622][ T7104] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000001
[   98.198635][ T7104] R13: 0000000000000000 R14: 00007f5ed8ca5fa0 R15: 00007ffe9c1e9818
[   98.198654][ T7104]  </TASK>
[   98.405124][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.454865][ T7110] loop9: detected capacity change from 0 to 7
[   98.461173][ T7110] Buffer I/O error on dev loop9, logical block 0, async page read
[   98.468996][ T7110] Buffer I/O error on dev loop9, logical block 0, async page read
[   98.476786][ T7110]  loop9: unable to read partition table
[   98.491280][ T7110] loop_reread_partitions: partition scan of loop9 (þ被xüŸÑø éÚ¬§½dG¤´à–ƒÝ¡¯ �â·û
[   98.491280][ T7110] 
) failed (rc=-5)
[   98.492922][ T3295] Buffer I/O error on dev loop9, logical block 0, async page read
[   98.528753][ T7112] __nla_validate_parse: 16 callbacks suppressed
[   98.528769][ T7112] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1382'.
[   98.576148][ T7116] netlink: 256 bytes leftover after parsing attributes in process `syz.0.1384'.
[   98.638086][ T7128] netlink: 256 bytes leftover after parsing attributes in process `syz.0.1388'.
[   98.651586][ T7128] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1388'.
[   98.695209][ T7135] netlink: 256 bytes leftover after parsing attributes in process `syz.4.1391'.
[   98.777710][ T7135] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1391'.
[   98.778017][ T3314] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[   98.801993][ T3314] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6548: Corrupt filesystem
[   98.864664][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.886675][ T7147] lo speed is unknown, defaulting to 1000
[   98.953403][ T7149] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1394'.
[   99.134600][ T7157] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1393'.
[   99.211280][ T7154] xt_CT: You must specify a L4 protocol and not use inversions on it
[   99.279948][ T7164] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1398'.
[   99.294060][ T7168] netlink: 256 bytes leftover after parsing attributes in process `syz.3.1400'.
[   99.566724][ T7187] loop1: detected capacity change from 0 to 2048
[   99.606337][ T7193] loop4: detected capacity change from 0 to 512
[   99.615246][ T7187] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   99.628409][ T7193] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   99.659949][ T7193] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.692655][ T7187] lo speed is unknown, defaulting to 1000
[   99.703117][ T7193] ext4 filesystem being mounted at /325/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   99.829283][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.858638][ T7208] loop0: detected capacity change from 0 to 764
[   99.890545][ T7208] rock: directory entry would overflow storage
[   99.896742][ T7208] rock: sig=0x4f50, size=4, remaining=3
[   99.902420][ T7208] iso9660: Corrupted directory entry in block 4 of inode 1792
[   99.912608][ T7208] rock: directory entry would overflow storage
[   99.918814][ T7208] rock: sig=0x4f50, size=4, remaining=3
[   99.924380][ T7208] iso9660: Corrupted directory entry in block 4 of inode 1792
[  100.091361][ T7219] loop0: detected capacity change from 0 to 2048
[  100.125777][ T7219] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.162343][ T7219] FAULT_INJECTION: forcing a failure.
[  100.162343][ T7219] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  100.175479][ T7219] CPU: 0 UID: 0 PID: 7219 Comm: syz.0.1417 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  100.175503][ T7219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  100.175514][ T7219] Call Trace:
[  100.175519][ T7219]  <TASK>
[  100.175595][ T7219]  __dump_stack+0x1d/0x30
[  100.175614][ T7219]  dump_stack_lvl+0xe8/0x140
[  100.175630][ T7219]  dump_stack+0x15/0x1b
[  100.175645][ T7219]  should_fail_ex+0x265/0x280
[  100.175719][ T7219]  should_fail+0xb/0x20
[  100.175749][ T7219]  should_fail_usercopy+0x1a/0x20
[  100.175790][ T7219]  strncpy_from_user+0x25/0x230
[  100.175894][ T7219]  ? kmem_cache_alloc_noprof+0x186/0x310
[  100.175921][ T7219]  ? getname_flags+0x80/0x3b0
[  100.175941][ T7219]  getname_flags+0xae/0x3b0
[  100.175959][ T7219]  do_sys_openat2+0x60/0x110
[  100.176025][ T7219]  __x64_sys_creat+0x65/0x90
[  100.176054][ T7219]  x64_sys_call+0x114d/0x2fb0
[  100.176167][ T7219]  do_syscall_64+0xd2/0x200
[  100.176187][ T7219]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  100.176286][ T7219]  ? clear_bhb_loop+0x40/0x90
[  100.176309][ T7219]  ? clear_bhb_loop+0x40/0x90
[  100.176333][ T7219]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.176432][ T7219] RIP: 0033:0x7f8fe9e1e9a9
[  100.176448][ T7219] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.176499][ T7219] RSP: 002b:00007f8fe847f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
[  100.176516][ T7219] RAX: ffffffffffffffda RBX: 00007f8fea045fa0 RCX: 00007f8fe9e1e9a9
[  100.176528][ T7219] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000100
[  100.176542][ T7219] RBP: 00007f8fe847f090 R08: 0000000000000000 R09: 0000000000000000
[  100.176555][ T7219] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  100.176568][ T7219] R13: 0000000000000000 R14: 00007f8fea045fa0 R15: 00007ffd87c933a8
[  100.176625][ T7219]  </TASK>
[  100.381728][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.493840][ T3304] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  100.524730][ T3304] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  100.551909][ T7232] loop3: detected capacity change from 0 to 1024
[  100.559580][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.580499][ T7232] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.597352][ T7232] ext4 filesystem being mounted at /277/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  100.653065][ T7232] sd 0:0:1:0: device reset
[  100.668639][ T7232] netlink: 'syz.3.1422': attribute type 21 has an invalid length.
[  100.718986][   T58] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  100.747076][   T58] EXT4-fs (loop3): Remounting filesystem read-only
[  100.770753][ T1986] EXT4-fs warning (device loop3): ext4_convert_unwritten_extents:4940: inode #15: block 1: len 15: ext4_ext_map_blocks returned -30
[  100.797692][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.839177][ T7249] netlink: 'syz.3.1426': attribute type 29 has an invalid length.
[  100.857968][ T7249] netlink: 'syz.3.1426': attribute type 29 has an invalid length.
[  100.889349][ T7251] siw: device registration error -23
[  100.912897][ T7253] loop1: detected capacity change from 0 to 2048
[  100.940746][ T7253] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.331101][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.447291][   T36] usb 5-1: enqueue for inactive port 0
[  101.468055][   T36] usb 5-1: enqueue for inactive port 0
[  101.538229][   T36] vhci_hcd: vhci_device speed not set
[  101.569627][ T7290] lo speed is unknown, defaulting to 1000
[  101.787475][ T7295] siw: device registration error -23
[  102.061615][ T7297] lo speed is unknown, defaulting to 1000
[  102.351594][   T29] kauditd_printk_skb: 865 callbacks suppressed
[  102.351651][   T29] audit: type=1326 audit(1753724912.766:6570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7304 comm="syz.1.1443" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0357e6e9a9 code=0x7ffc0000
[  102.391432][   T29] audit: type=1326 audit(1753724912.766:6571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7306 comm="syz.4.1445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ed8a7e9a9 code=0x7ffc0000
[  102.414889][   T29] audit: type=1326 audit(1753724912.766:6572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7306 comm="syz.4.1445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ed8a7e9a9 code=0x7ffc0000
[  102.438448][   T29] audit: type=1326 audit(1753724912.766:6573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7306 comm="syz.4.1445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=316 compat=0 ip=0x7f5ed8a7e9a9 code=0x7ffc0000
[  102.461843][   T29] audit: type=1326 audit(1753724912.766:6574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7306 comm="syz.4.1445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ed8a7e9a9 code=0x7ffc0000
[  102.485374][   T29] audit: type=1326 audit(1753724912.796:6575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7304 comm="syz.1.1443" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f0357e6e9a9 code=0x7ffc0000
[  102.508880][   T29] audit: type=1326 audit(1753724912.796:6576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7304 comm="syz.1.1443" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0357e6e9a9 code=0x7ffc0000
[  102.532302][   T29] audit: type=1326 audit(1753724912.796:6577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7304 comm="syz.1.1443" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0357e6e9a9 code=0x7ffc0000
[  102.555776][   T29] audit: type=1326 audit(1753724912.796:6578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7304 comm="syz.1.1443" exe="/root/syz-executor" sig=0 arch=c000003e syscall=286 compat=0 ip=0x7f0357e6e9a9 code=0x7ffc0000
[  102.579199][   T29] audit: type=1326 audit(1753724912.796:6579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7304 comm="syz.1.1443" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0357e6e9a9 code=0x7ffc0000
[  102.619180][ T7309] netlink: '+}[@': attribute type 14 has an invalid length.
[  102.669694][ T7316] bridge0: port 2(bridge_slave_1) entered disabled state
[  102.676892][ T7316] bridge0: port 1(bridge_slave_0) entered disabled state
[  102.712714][ T7316] bridge0: port 2(bridge_slave_1) entered blocking state
[  102.719837][ T7316] bridge0: port 2(bridge_slave_1) entered forwarding state
[  102.727284][ T7316] bridge0: port 1(bridge_slave_0) entered blocking state
[  102.734490][ T7316] bridge0: port 1(bridge_slave_0) entered forwarding state
[  102.784974][ T7327] bridge0: port 2(bridge_slave_1) entered disabled state
[  102.792193][ T7327] bridge0: port 1(bridge_slave_0) entered disabled state
[  102.820682][ T7327] bridge0: port 2(bridge_slave_1) entered blocking state
[  102.827855][ T7327] bridge0: port 2(bridge_slave_1) entered forwarding state
[  102.835342][ T7327] bridge0: port 1(bridge_slave_0) entered blocking state
[  102.842459][ T7327] bridge0: port 1(bridge_slave_0) entered forwarding state
[  102.950805][ T7334] netlink: 'syz.3.1454': attribute type 29 has an invalid length.
[  102.965014][ T7334] netlink: 'syz.3.1454': attribute type 29 has an invalid length.
[  103.018343][ T7336] FAULT_INJECTION: forcing a failure.
[  103.018343][ T7336] name failslab, interval 1, probability 0, space 0, times 0
[  103.031088][ T7336] CPU: 0 UID: 0 PID: 7336 Comm: syz.3.1455 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  103.031116][ T7336] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  103.031158][ T7336] Call Trace:
[  103.031164][ T7336]  <TASK>
[  103.031172][ T7336]  __dump_stack+0x1d/0x30
[  103.031198][ T7336]  dump_stack_lvl+0xe8/0x140
[  103.031217][ T7336]  dump_stack+0x15/0x1b
[  103.031238][ T7336]  should_fail_ex+0x265/0x280
[  103.031270][ T7336]  should_failslab+0x8c/0xb0
[  103.031293][ T7336]  __kmalloc_noprof+0xa5/0x3e0
[  103.031319][ T7336]  ? security_tun_dev_alloc_security+0x3f/0x130
[  103.031388][ T7336]  ? should_fail_ex+0xdb/0x280
[  103.031420][ T7336]  security_tun_dev_alloc_security+0x3f/0x130
[  103.031458][ T7336]  tun_net_init+0x58/0x2b0
[  103.031538][ T7336]  register_netdevice+0x284/0xf00
[  103.031579][ T7336]  ? dev_addr_mod+0x1a4/0x1d0
[  103.031610][ T7336]  tun_set_iff+0x5f1/0x890
[  103.031644][ T7336]  __tun_chr_ioctl+0x5f0/0x14c0
[  103.031675][ T7336]  ? __pfx_tun_chr_ioctl+0x10/0x10
[  103.031712][ T7336]  tun_chr_ioctl+0x27/0x40
[  103.031738][ T7336]  __se_sys_ioctl+0xce/0x140
[  103.031852][ T7336]  __x64_sys_ioctl+0x43/0x50
[  103.031930][ T7336]  x64_sys_call+0x19a8/0x2fb0
[  103.031952][ T7336]  do_syscall_64+0xd2/0x200
[  103.031976][ T7336]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  103.032072][ T7336]  ? clear_bhb_loop+0x40/0x90
[  103.032153][ T7336]  ? clear_bhb_loop+0x40/0x90
[  103.032178][ T7336]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.032231][ T7336] RIP: 0033:0x7f43c6efe9a9
[  103.032246][ T7336] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  103.032318][ T7336] RSP: 002b:00007f43c5567038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  103.032338][ T7336] RAX: ffffffffffffffda RBX: 00007f43c7125fa0 RCX: 00007f43c6efe9a9
[  103.032352][ T7336] RDX: 0000200000000100 RSI: 00000000400454ca RDI: 0000000000000005
[  103.032365][ T7336] RBP: 00007f43c5567090 R08: 0000000000000000 R09: 0000000000000000
[  103.032376][ T7336] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  103.032387][ T7336] R13: 0000000000000000 R14: 00007f43c7125fa0 R15: 00007ffee0d71378
[  103.032402][ T7336]  </TASK>
[  103.315745][ T7339] netlink: 'syz.1.1456': attribute type 3 has an invalid length.
[  103.345254][ T7344] loop4: detected capacity change from 0 to 764
[  103.357193][ T7345] loop3: detected capacity change from 0 to 2048
[  103.382969][ T7345] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.411690][ T7345] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[  103.418391][ T7353] syzkaller1: entered promiscuous mode
[  103.426915][ T7345] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  103.431748][ T7353] syzkaller1: entered allmulticast mode
[  103.449632][ T7345] EXT4-fs (loop3): This should not happen!! Data will be lost
[  103.449632][ T7345] 
[  103.459429][ T7345] EXT4-fs (loop3): Total free blocks count 0
[  103.465430][ T7345] EXT4-fs (loop3): Free/Dirty block details
[  103.471386][ T7345] EXT4-fs (loop3): free_blocks=66060288
[  103.476940][ T7345] EXT4-fs (loop3): dirty_blocks=32
[  103.482315][ T7345] EXT4-fs (loop3): Block reservation details
[  103.488322][ T7345] EXT4-fs (loop3): i_reserved_data_blocks=2
[  103.524016][ T7360] netlink: 'syz.1.1465': attribute type 29 has an invalid length.
[  103.532750][ T7360] netlink: 'syz.1.1465': attribute type 29 has an invalid length.
[  103.607493][ T7364] __nla_validate_parse: 14 callbacks suppressed
[  103.607537][ T7364] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1467'.
[  103.638341][ T1986] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 65537 with max blocks 1 with error 28
[  103.766303][ T7382] netlink: 256 bytes leftover after parsing attributes in process `syz.3.1474'.
[  103.769230][ T7381] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1473'.
[  103.803409][ T7382] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1474'.
[  103.828959][ T7387] FAULT_INJECTION: forcing a failure.
[  103.828959][ T7387] name failslab, interval 1, probability 0, space 0, times 0
[  103.841760][ T7387] CPU: 0 UID: 0 PID: 7387 Comm: syz.0.1475 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  103.841795][ T7387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  103.841808][ T7387] Call Trace:
[  103.841814][ T7387]  <TASK>
[  103.841821][ T7387]  __dump_stack+0x1d/0x30
[  103.841844][ T7387]  dump_stack_lvl+0xe8/0x140
[  103.841920][ T7387]  dump_stack+0x15/0x1b
[  103.842016][ T7387]  should_fail_ex+0x265/0x280
[  103.842049][ T7387]  should_failslab+0x8c/0xb0
[  103.842072][ T7387]  kmem_cache_alloc_lru_noprof+0x55/0x310
[  103.842128][ T7387]  ? shmem_alloc_inode+0x34/0x50
[  103.842210][ T7387]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  103.842242][ T7387]  shmem_alloc_inode+0x34/0x50
[  103.842296][ T7387]  alloc_inode+0x40/0x170
[  103.842326][ T7387]  new_inode+0x1d/0xe0
[  103.842372][ T7387]  shmem_get_inode+0x244/0x750
[  103.842408][ T7387]  __shmem_file_setup+0x113/0x210
[  103.842437][ T7387]  shmem_file_setup+0x3b/0x50
[  103.842467][ T7387]  __se_sys_memfd_create+0x2c3/0x590
[  103.842501][ T7387]  __x64_sys_memfd_create+0x31/0x40
[  103.842533][ T7387]  x64_sys_call+0x122f/0x2fb0
[  103.842628][ T7387]  do_syscall_64+0xd2/0x200
[  103.842655][ T7387]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  103.842684][ T7387]  ? clear_bhb_loop+0x40/0x90
[  103.842706][ T7387]  ? clear_bhb_loop+0x40/0x90
[  103.842743][ T7387]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.842763][ T7387] RIP: 0033:0x7f8fe9e1e9a9
[  103.842778][ T7387] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  103.842832][ T7387] RSP: 002b:00007f8fe847ee18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  103.842852][ T7387] RAX: ffffffffffffffda RBX: 0000000000000512 RCX: 00007f8fe9e1e9a9
[  103.842874][ T7387] RDX: 00007f8fe847eef0 RSI: 0000000000000000 RDI: 00007f8fe9ea16fc
[  103.842888][ T7387] RBP: 0000200000000380 R08: 00007f8fe847ebb7 R09: 00007f8fe847ee40
[  103.842901][ T7387] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000980
[  103.842914][ T7387] R13: 00007f8fe847eef0 R14: 00007f8fe847eeb0 R15: 0000200000000100
[  103.842932][ T7387]  </TASK>
[  104.056262][ T7382] hsr_slave_0 (unregistering): left promiscuous mode
[  104.079485][ T7390] bridge0: port 2(bridge_slave_1) entered disabled state
[  104.086742][ T7390] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.097285][ T7390] bridge0: port 2(bridge_slave_1) entered blocking state
[  104.104410][ T7390] bridge0: port 2(bridge_slave_1) entered forwarding state
[  104.111881][ T7390] bridge0: port 1(bridge_slave_0) entered blocking state
[  104.118949][ T7390] bridge0: port 1(bridge_slave_0) entered forwarding state
[  104.151830][ T7392] syzkaller1: entered promiscuous mode
[  104.157341][ T7392] syzkaller1: entered allmulticast mode
[  104.259965][ T7394] loop3: detected capacity change from 0 to 2048
[  104.292960][ T7394] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.329351][ T7394] lo speed is unknown, defaulting to 1000
[  104.375617][ T7405] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1482'.
[  104.434279][ T7409] FAULT_INJECTION: forcing a failure.
[  104.434279][ T7409] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  104.447393][ T7409] CPU: 1 UID: 0 PID: 7409 Comm: syz.0.1483 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  104.447421][ T7409] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  104.447478][ T7409] Call Trace:
[  104.447484][ T7409]  <TASK>
[  104.447491][ T7409]  __dump_stack+0x1d/0x30
[  104.447510][ T7409]  dump_stack_lvl+0xe8/0x140
[  104.447528][ T7409]  dump_stack+0x15/0x1b
[  104.447546][ T7409]  should_fail_ex+0x265/0x280
[  104.447597][ T7409]  should_fail+0xb/0x20
[  104.447621][ T7409]  should_fail_usercopy+0x1a/0x20
[  104.447845][ T7409]  _copy_from_user+0x1c/0xb0
[  104.447911][ T7409]  memdup_user+0x5e/0xd0
[  104.447938][ T7409]  strndup_user+0x68/0xb0
[  104.447961][ T7409]  __se_sys_mount+0x8e/0x2e0
[  104.448025][ T7409]  ? fput+0x8f/0xc0
[  104.448046][ T7409]  ? ksys_write+0x192/0x1a0
[  104.448118][ T7409]  __x64_sys_mount+0x67/0x80
[  104.448149][ T7409]  x64_sys_call+0xd36/0x2fb0
[  104.448168][ T7409]  do_syscall_64+0xd2/0x200
[  104.448247][ T7409]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  104.448281][ T7409]  ? clear_bhb_loop+0x40/0x90
[  104.448304][ T7409]  ? clear_bhb_loop+0x40/0x90
[  104.448328][ T7409]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.448391][ T7409] RIP: 0033:0x7f8fe9e1e9a9
[  104.448404][ T7409] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  104.448422][ T7409] RSP: 002b:00007f8fe847f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  104.448443][ T7409] RAX: ffffffffffffffda RBX: 00007f8fea045fa0 RCX: 00007f8fe9e1e9a9
[  104.448472][ T7409] RDX: 0000000000000000 RSI: 0000200000000440 RDI: 0000200000000240
[  104.448485][ T7409] RBP: 00007f8fe847f090 R08: 0000000000000000 R09: 0000000000000000
[  104.448498][ T7409] R10: 00000000008c7c88 R11: 0000000000000246 R12: 0000000000000001
[  104.448509][ T7409] R13: 0000000000000000 R14: 00007f8fea045fa0 R15: 00007ffd87c933a8
[  104.448525][ T7409]  </TASK>
[  104.639196][ T7401] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 234: padding at end of block bitmap is not set
[  104.684514][ T7416] loop0: detected capacity change from 0 to 764
[  104.691055][ T7417] loop4: detected capacity change from 0 to 512
[  104.716696][ T7417] EXT4-fs (loop4): 1 orphan inode deleted
[  104.726931][ T7417] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  104.740152][ T3475] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:7: Failed to release dquot type 1
[  104.752830][ T7417] ext4 filesystem being mounted at /343/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  104.767265][ T7417] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  104.829792][ T7425] netlink: 256 bytes leftover after parsing attributes in process `syz.0.1488'.
[  104.857067][ T7425] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1488'.
[  104.933328][ T3393] Process accounting resumed
[  104.950481][ T7432] loop0: detected capacity change from 0 to 4096
[  104.962644][ T7432] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  104.988375][ T3306] EXT4-fs error (device loop0): ext4_lookup:1787: inode #14: comm syz-executor: invalid fast symlink length 131109
[  105.000856][ T3306] EXT4-fs error (device loop0): ext4_lookup:1787: inode #14: comm syz-executor: invalid fast symlink length 131109
[  105.068295][   T23] usb usb6-port1: attempt power cycle
[  105.089828][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.220292][ T7438] loop3: detected capacity change from 0 to 512
[  105.229276][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.239836][   T60] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.245513][ T7438] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.268617][ T7438] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  105.289518][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.310069][   T60] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.379745][   T60] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.396984][ T7441] lo speed is unknown, defaulting to 1000
[  105.431177][   T60] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.476210][ T7441] chnl_net:caif_netlink_parms(): no params data found
[  105.548316][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.608038][   T60] bridge_slave_1: left allmulticast mode
[  105.610689][ T7462] loop1: detected capacity change from 0 to 764
[  105.613710][   T60] bridge_slave_1: left promiscuous mode
[  105.625650][   T60] bridge0: port 2(bridge_slave_1) entered disabled state
[  105.640104][   T60] bridge_slave_0: left allmulticast mode
[  105.645826][   T60] bridge_slave_0: left promiscuous mode
[  105.651788][   T60] bridge0: port 1(bridge_slave_0) entered disabled state
[  105.840735][   T60] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  105.869614][   T60] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  105.906198][   T60] bond0 (unregistering): Released all slaves
[  105.933827][ T7441] bridge0: port 1(bridge_slave_0) entered blocking state
[  105.940986][ T7441] bridge0: port 1(bridge_slave_0) entered disabled state
[  105.982434][ T7441] bridge_slave_0: entered allmulticast mode
[  106.008761][ T7441] bridge_slave_0: entered promiscuous mode
[  106.025753][ T7441] bridge0: port 2(bridge_slave_1) entered blocking state
[  106.032882][ T7441] bridge0: port 2(bridge_slave_1) entered disabled state
[  106.048181][ T7476] loop3: detected capacity change from 0 to 512
[  106.065040][ T7476] EXT4-fs: Ignoring removed nobh option
[  106.071143][ T7441] bridge_slave_1: entered allmulticast mode
[  106.088204][ T7441] bridge_slave_1: entered promiscuous mode
[  106.095707][ T7476] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #3: comm syz.3.1501: corrupted inode contents
[  106.109987][   T60] tipc: Left network mode
[  106.133242][ T7476] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #3: comm syz.3.1501: mark_inode_dirty error
[  106.153809][ T7476] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #3: comm syz.3.1501: corrupted inode contents
[  106.170054][ T7441] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  106.181236][ T7476] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #3: comm syz.3.1501: mark_inode_dirty error
[  106.198836][   T60] hsr_slave_1: left promiscuous mode
[  106.206055][   T60] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  106.210472][ T7476] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.1501: Failed to acquire dquot type 0
[  106.213503][   T60] batman_adv: batadv0: Removing interface: batadv_slave_0
[  106.247619][   T60] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  106.255150][   T60] batman_adv: batadv0: Removing interface: batadv_slave_1
[  106.263165][ T7476] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #16: comm syz.3.1501: corrupted inode contents
[  106.277099][ T7476] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #16: comm syz.3.1501: mark_inode_dirty error
[  106.289473][ T7476] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #16: comm syz.3.1501: corrupted inode contents
[  106.301449][   T60] veth1_macvtap: left promiscuous mode
[  106.303596][ T7476] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #16: comm syz.3.1501: mark_inode_dirty error
[  106.308972][   T60] veth0_macvtap: left promiscuous mode
[  106.336167][ T7476] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #16: comm syz.3.1501: corrupted inode contents
[  106.353528][   T60] veth1_vlan: left promiscuous mode
[  106.358885][   T60] veth0_vlan: left promiscuous mode
[  106.366755][ T7476] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[  106.375527][ T7476] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #16: comm syz.3.1501: corrupted inode contents
[  106.388507][ T7476] EXT4-fs error (device loop3): ext4_truncate:4597: inode #16: comm syz.3.1501: mark_inode_dirty error
[  106.400758][ T7476] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[  106.410686][ T7476] EXT4-fs (loop3): 1 truncate cleaned up
[  106.416811][ T7476] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.429493][ T7476] ext4 filesystem being mounted at /300/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  106.452864][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.470164][   T60] team0 (unregistering): Port device team_slave_1 removed
[  106.473393][ T7504] FAULT_INJECTION: forcing a failure.
[  106.473393][ T7504] name failslab, interval 1, probability 0, space 0, times 0
[  106.489957][ T7504] CPU: 1 UID: 0 PID: 7504 Comm: syz.3.1504 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  106.489985][ T7504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  106.489998][ T7504] Call Trace:
[  106.490005][ T7504]  <TASK>
[  106.490013][ T7504]  __dump_stack+0x1d/0x30
[  106.490060][ T7504]  dump_stack_lvl+0xe8/0x140
[  106.490094][ T7504]  dump_stack+0x15/0x1b
[  106.490109][ T7504]  should_fail_ex+0x265/0x280
[  106.490136][ T7504]  should_failslab+0x8c/0xb0
[  106.490156][ T7504]  kmem_cache_alloc_lru_noprof+0x55/0x310
[  106.490238][ T7504]  ? shmem_alloc_inode+0x34/0x50
[  106.490269][ T7504]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  106.490401][ T7504]  shmem_alloc_inode+0x34/0x50
[  106.490456][ T7504]  alloc_inode+0x40/0x170
[  106.490495][ T7504]  new_inode+0x1d/0xe0
[  106.490514][ T7504]  shmem_get_inode+0x244/0x750
[  106.490622][ T7504]  __shmem_file_setup+0x113/0x210
[  106.490664][ T7504]  shmem_file_setup+0x3b/0x50
[  106.490679][ T7504]  __se_sys_memfd_create+0x2c3/0x590
[  106.490757][ T7504]  __x64_sys_memfd_create+0x31/0x40
[  106.490773][ T7504]  x64_sys_call+0x122f/0x2fb0
[  106.490785][ T7504]  do_syscall_64+0xd2/0x200
[  106.490796][ T7504]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  106.490877][ T7504]  ? clear_bhb_loop+0x40/0x90
[  106.490889][ T7504]  ? clear_bhb_loop+0x40/0x90
[  106.490901][ T7504]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.490914][ T7504] RIP: 0033:0x7f43c6efe9a9
[  106.490978][ T7504] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  106.490989][ T7504] RSP: 002b:00007f43c5566e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  106.491006][ T7504] RAX: ffffffffffffffda RBX: 0000000000000512 RCX: 00007f43c6efe9a9
[  106.491014][ T7504] RDX: 00007f43c5566ef0 RSI: 0000000000000000 RDI: 00007f43c6f816fc
[  106.491098][ T7504] RBP: 0000200000000380 R08: 00007f43c5566bb7 R09: 00007f43c5566e40
[  106.491105][ T7504] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000980
[  106.491112][ T7504] R13: 00007f43c5566ef0 R14: 00007f43c5566eb0 R15: 0000200000000100
[  106.491141][ T7504]  </TASK>
[  106.491447][   T60] team0 (unregistering): Port device team_slave_0 removed
[  106.623539][ T7508] loop3: detected capacity change from 0 to 512
[  106.716305][ T7441] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  106.727772][ T7496] syzkaller1: entered promiscuous mode
[  106.733288][ T7496] syzkaller1: entered allmulticast mode
[  106.741275][ T7508] EXT4-fs (loop3): 1 orphan inode deleted
[  106.747437][ T7508] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.760242][ T1986] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:6: Failed to release dquot type 1
[  106.761411][ T7508] ext4 filesystem being mounted at /302/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  106.800206][ T7441] team0: Port device team_slave_0 added
[  106.806835][ T7441] team0: Port device team_slave_1 added
[  106.813535][ T7506] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  106.858373][ T7441] batman_adv: batadv0: Adding interface: batadv_slave_0
[  106.865376][ T7441] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  106.891348][ T7441] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  106.902427][ T7441] batman_adv: batadv0: Adding interface: batadv_slave_1
[  106.909534][ T7441] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  106.912222][ T7517] FAULT_INJECTION: forcing a failure.
[  106.912222][ T7517] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  106.935599][ T7441] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  106.936139][   T23] usb usb6-port1: unable to enumerate USB device
[  106.948662][ T7517] CPU: 0 UID: 0 PID: 7517 Comm: syz.4.1508 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  106.948767][ T7517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  106.948840][ T7517] Call Trace:
[  106.948847][ T7517]  <TASK>
[  106.948913][ T7517]  __dump_stack+0x1d/0x30
[  106.948935][ T7517]  dump_stack_lvl+0xe8/0x140
[  106.948954][ T7517]  dump_stack+0x15/0x1b
[  106.948971][ T7517]  should_fail_ex+0x265/0x280
[  106.949128][ T7517]  should_fail+0xb/0x20
[  106.949155][ T7517]  should_fail_usercopy+0x1a/0x20
[  106.949192][ T7517]  strncpy_from_user+0x25/0x230
[  106.949215][ T7517]  ? kmem_cache_alloc_noprof+0x186/0x310
[  106.949241][ T7517]  ? getname_flags+0x80/0x3b0
[  106.949263][ T7517]  getname_flags+0xae/0x3b0
[  106.949286][ T7517]  user_path_create+0x27/0x130
[  106.949314][ T7517]  bpf_obj_pin_user+0xe0/0x230
[  106.949335][ T7517]  bpf_obj_pin+0xac/0xd0
[  106.949364][ T7517]  __sys_bpf+0x6a7/0x790
[  106.949446][ T7517]  __x64_sys_bpf+0x41/0x50
[  106.949473][ T7517]  x64_sys_call+0x2478/0x2fb0
[  106.949495][ T7517]  do_syscall_64+0xd2/0x200
[  106.949514][ T7517]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  106.949571][ T7517]  ? clear_bhb_loop+0x40/0x90
[  106.949593][ T7517]  ? clear_bhb_loop+0x40/0x90
[  106.949622][ T7517]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.949643][ T7517] RIP: 0033:0x7f5ed8a7e9a9
[  106.949660][ T7517] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  106.949781][ T7517] RSP: 002b:00007f5ed70df038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  106.949799][ T7517] RAX: ffffffffffffffda RBX: 00007f5ed8ca5fa0 RCX: 00007f5ed8a7e9a9
[  106.949812][ T7517] RDX: 0000000000000018 RSI: 0000200000000640 RDI: 0000000000000006
[  106.949824][ T7517] RBP: 00007f5ed70df090 R08: 0000000000000000 R09: 0000000000000000
[  106.949836][ T7517] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  106.949849][ T7517] R13: 0000000000000000 R14: 00007f5ed8ca5fa0 R15: 00007ffe9c1e9818
[  106.949938][ T7517]  </TASK>
[  107.310469][ T7441] hsr_slave_0: entered promiscuous mode
[  107.316743][ T7441] hsr_slave_1: entered promiscuous mode
[  107.322703][ T7441] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  107.331395][ T7441] Cannot create hsr debugfs directory
[  107.419398][ T7544] lo speed is unknown, defaulting to 1000
[  107.464350][   T29] kauditd_printk_skb: 566 callbacks suppressed
[  107.464397][   T29] audit: type=1326 audit(1753724917.876:7142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7541 comm="syz.4.1511" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ed8a7e9a9 code=0x7ffc0000
[  107.536245][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.705082][   T29] audit: type=1326 audit(1753724917.906:7143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7541 comm="syz.4.1511" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f5ed8a7e9a9 code=0x7ffc0000
[  107.728813][   T29] audit: type=1326 audit(1753724917.906:7144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7541 comm="syz.4.1511" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ed8a7e9a9 code=0x7ffc0000
[  107.752263][   T29] audit: type=1326 audit(1753724917.906:7145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7541 comm="syz.4.1511" exe="/root/syz-executor" sig=0 arch=c000003e syscall=286 compat=0 ip=0x7f5ed8a7e9a9 code=0x7ffc0000
[  107.775757][   T29] audit: type=1326 audit(1753724917.906:7146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7541 comm="syz.4.1511" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ed8a7e9a9 code=0x7ffc0000
[  107.782069][ T7441] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  107.799289][   T29] audit: type=1326 audit(1753724917.906:7147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7541 comm="syz.4.1511" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ed8a7e9a9 code=0x7ffc0000
[  107.829319][   T29] audit: type=1326 audit(1753724917.906:7148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7541 comm="syz.4.1511" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7f5ed8a7e9a9 code=0x7ffc0000
[  107.852727][   T29] audit: type=1326 audit(1753724917.906:7149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7541 comm="syz.4.1511" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ed8a7e9a9 code=0x7ffc0000
[  107.876202][   T29] audit: type=1326 audit(1753724917.906:7150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7541 comm="syz.4.1511" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5ed8a7e9a9 code=0x7ffc0000
[  107.899664][   T29] audit: type=1326 audit(1753724917.906:7151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7541 comm="syz.4.1511" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ed8a7e9a9 code=0x7ffc0000
[  107.931833][ T7441] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  107.943879][ T7441] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  107.956831][ T7441] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  108.006596][ T7577] FAULT_INJECTION: forcing a failure.
[  108.006596][ T7577] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  108.019906][ T7577] CPU: 1 UID: 0 PID: 7577 Comm: syz.4.1514 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  108.019936][ T7577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  108.019949][ T7577] Call Trace:
[  108.019956][ T7577]  <TASK>
[  108.019963][ T7577]  __dump_stack+0x1d/0x30
[  108.020009][ T7577]  dump_stack_lvl+0xe8/0x140
[  108.020030][ T7577]  dump_stack+0x15/0x1b
[  108.020047][ T7577]  should_fail_ex+0x265/0x280
[  108.020107][ T7577]  should_fail+0xb/0x20
[  108.020186][ T7577]  should_fail_usercopy+0x1a/0x20
[  108.020215][ T7577]  strncpy_from_user+0x25/0x230
[  108.020237][ T7577]  ? kmem_cache_alloc_noprof+0x186/0x310
[  108.020275][ T7577]  ? getname_flags+0x80/0x3b0
[  108.020306][ T7577]  getname_flags+0xae/0x3b0
[  108.020344][ T7577]  io_unlinkat_prep+0x14f/0x1b0
[  108.020371][ T7577]  io_submit_sqes+0x5e2/0xfd0
[  108.020406][ T7577]  __se_sys_io_uring_enter+0x1c1/0x1b70
[  108.020506][ T7577]  ? 0xffffffff81000000
[  108.020519][ T7577]  ? __rcu_read_unlock+0x4f/0x70
[  108.020541][ T7577]  ? get_pid_task+0x96/0xd0
[  108.020561][ T7577]  ? proc_fail_nth_write+0x12d/0x160
[  108.020640][ T7577]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  108.020673][ T7577]  ? vfs_write+0x75e/0x8e0
[  108.020841][ T7577]  ? __rcu_read_unlock+0x4f/0x70
[  108.020861][ T7577]  ? __fget_files+0x184/0x1c0
[  108.020878][ T7577]  ? fput+0x8f/0xc0
[  108.020900][ T7577]  __x64_sys_io_uring_enter+0x78/0x90
[  108.020930][ T7577]  x64_sys_call+0x28c8/0x2fb0
[  108.020995][ T7577]  do_syscall_64+0xd2/0x200
[  108.021082][ T7577]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  108.021165][ T7577]  ? clear_bhb_loop+0x40/0x90
[  108.021184][ T7577]  ? clear_bhb_loop+0x40/0x90
[  108.021269][ T7577]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.021303][ T7577] RIP: 0033:0x7f5ed8a7e9a9
[  108.021316][ T7577] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.021332][ T7577] RSP: 002b:00007f5ed70df038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  108.021353][ T7577] RAX: ffffffffffffffda RBX: 00007f5ed8ca5fa0 RCX: 00007f5ed8a7e9a9
[  108.021367][ T7577] RDX: 00000000000004c1 RSI: 0000000000000627 RDI: 0000000000000003
[  108.021425][ T7577] RBP: 00007f5ed70df090 R08: 0000000000000000 R09: 0000000000000000
[  108.021439][ T7577] R10: 0000000000000043 R11: 0000000000000246 R12: 0000000000000001
[  108.021449][ T7577] R13: 0000000000000000 R14: 00007f5ed8ca5fa0 R15: 00007ffe9c1e9818
[  108.021464][ T7577]  </TASK>
[  108.027543][ T7441] 8021q: adding VLAN 0 to HW filter on device bond0
[  108.224460][ T7591] siw: device registration error -23
[  108.281496][ T7441] 8021q: adding VLAN 0 to HW filter on device team0
[  108.316532][ T1986] bridge0: port 1(bridge_slave_0) entered blocking state
[  108.323687][ T1986] bridge0: port 1(bridge_slave_0) entered forwarding state
[  108.352418][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[  108.359549][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[  108.377840][ T7441] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  108.388297][ T7441] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  108.466230][ T7606] loop4: detected capacity change from 0 to 764
[  108.543896][ T7606] rock: directory entry would overflow storage
[  108.550138][ T7606] rock: sig=0x4f50, size=4, remaining=3
[  108.555798][ T7606] iso9660: Corrupted directory entry in block 4 of inode 1792
[  108.581710][ T7441] 8021q: adding VLAN 0 to HW filter on device batadv0
[  108.711741][ T7639] loop4: detected capacity change from 0 to 764
[  108.714683][ T7636] netlink: 256 bytes leftover after parsing attributes in process `syz.3.1524'.
[  108.838360][ T7658] netlink: 256 bytes leftover after parsing attributes in process `syz.4.1526'.
[  108.854589][ T7636] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1524'.
[  108.904479][ T7441] veth0_vlan: entered promiscuous mode
[  108.920024][ T7441] veth1_vlan: entered promiscuous mode
[  108.940708][ T7658] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1526'.
[  108.948122][ T7441] veth0_macvtap: entered promiscuous mode
[  108.966843][ T7441] veth1_macvtap: entered promiscuous mode
[  108.997420][ T7441] batman_adv: batadv0: Interface activated: batadv_slave_0
[  109.009154][ T7441] batman_adv: batadv0: Interface activated: batadv_slave_1
[  109.018609][ T7441] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  109.027400][ T7441] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  109.036204][ T7441] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  109.045016][ T7441] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  109.087215][ T7678] loop4: detected capacity change from 0 to 1024
[  109.129289][ T7678] EXT4-fs: inline encryption not supported
[  109.152392][ T7678] EXT4-fs: Ignoring removed bh option
[  109.162985][ T7686] FAULT_INJECTION: forcing a failure.
[  109.162985][ T7686] name failslab, interval 1, probability 0, space 0, times 0
[  109.175829][ T7686] CPU: 0 UID: 0 PID: 7686 Comm: syz.3.1527 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  109.175858][ T7686] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  109.175871][ T7686] Call Trace:
[  109.175878][ T7686]  <TASK>
[  109.175961][ T7686]  __dump_stack+0x1d/0x30
[  109.175984][ T7686]  dump_stack_lvl+0xe8/0x140
[  109.176005][ T7686]  dump_stack+0x15/0x1b
[  109.176022][ T7686]  should_fail_ex+0x265/0x280
[  109.176053][ T7686]  should_failslab+0x8c/0xb0
[  109.176143][ T7686]  kmem_cache_alloc_lru_noprof+0x55/0x310
[  109.176171][ T7686]  ? hugetlbfs_alloc_inode+0xbc/0x100
[  109.176207][ T7686]  hugetlbfs_alloc_inode+0xbc/0x100
[  109.176322][ T7686]  ? __pfx_hugetlbfs_alloc_inode+0x10/0x10
[  109.176354][ T7686]  alloc_inode+0x40/0x170
[  109.176382][ T7686]  new_inode+0x1d/0xe0
[  109.176398][ T7686]  hugetlbfs_get_inode+0x7b/0x370
[  109.176506][ T7686]  hugetlb_file_setup+0x192/0x3d0
[  109.176534][ T7686]  ksys_mmap_pgoff+0x157/0x310
[  109.176630][ T7686]  x64_sys_call+0x1602/0x2fb0
[  109.176652][ T7686]  do_syscall_64+0xd2/0x200
[  109.176668][ T7686]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  109.176694][ T7686]  ? clear_bhb_loop+0x40/0x90
[  109.176715][ T7686]  ? clear_bhb_loop+0x40/0x90
[  109.176751][ T7686]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.176777][ T7686] RIP: 0033:0x7f43c6efe9a9
[  109.176836][ T7686] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.176853][ T7686] RSP: 002b:00007f43c5546038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  109.176871][ T7686] RAX: ffffffffffffffda RBX: 00007f43c7126080 RCX: 00007f43c6efe9a9
[  109.176882][ T7686] RDX: 000000000000000b RSI: 0000000000c00000 RDI: 0000200000400000
[  109.176895][ T7686] RBP: 00007f43c5546090 R08: ffffffffffffffff R09: 0000000000000000
[  109.176907][ T7686] R10: 0000000000059032 R11: 0000000000000246 R12: 0000000000000001
[  109.176919][ T7686] R13: 0000000000000001 R14: 00007f43c7126080 R15: 00007ffee0d71378
[  109.176935][ T7686]  </TASK>
[  109.390911][ T7678] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.578046][ T7705] FAULT_INJECTION: forcing a failure.
[  109.578046][ T7705] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  109.591171][ T7705] CPU: 0 UID: 0 PID: 7705 Comm: syz.1.1530 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  109.591196][ T7705] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  109.591208][ T7705] Call Trace:
[  109.591283][ T7705]  <TASK>
[  109.591289][ T7705]  __dump_stack+0x1d/0x30
[  109.591349][ T7705]  dump_stack_lvl+0xe8/0x140
[  109.591367][ T7705]  dump_stack+0x15/0x1b
[  109.591381][ T7705]  should_fail_ex+0x265/0x280
[  109.591475][ T7705]  should_fail+0xb/0x20
[  109.591579][ T7705]  should_fail_usercopy+0x1a/0x20
[  109.591611][ T7705]  _copy_from_user+0x1c/0xb0
[  109.591631][ T7705]  ___sys_sendmsg+0xc1/0x1d0
[  109.591658][ T7705]  __x64_sys_sendmsg+0xd4/0x160
[  109.591678][ T7705]  x64_sys_call+0x2999/0x2fb0
[  109.591758][ T7705]  do_syscall_64+0xd2/0x200
[  109.591907][ T7705]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  109.591933][ T7705]  ? clear_bhb_loop+0x40/0x90
[  109.591953][ T7705]  ? clear_bhb_loop+0x40/0x90
[  109.591972][ T7705]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.592045][ T7705] RIP: 0033:0x7f0357e6e9a9
[  109.592058][ T7705] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.592079][ T7705] RSP: 002b:00007f03564d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  109.592096][ T7705] RAX: ffffffffffffffda RBX: 00007f0358095fa0 RCX: 00007f0357e6e9a9
[  109.592107][ T7705] RDX: 0000000000008010 RSI: 0000200000000700 RDI: 0000000000000003
[  109.592119][ T7705] RBP: 00007f03564d7090 R08: 0000000000000000 R09: 0000000000000000
[  109.592130][ T7705] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.592142][ T7705] R13: 0000000000000000 R14: 00007f0358095fa0 R15: 00007ffeac06ea18
[  109.592177][ T7705]  </TASK>
[  109.785644][ T7709] loop3: detected capacity change from 0 to 512
[  109.801851][ T7709] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  109.828681][ T7709] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.861528][ T7709] ext4 filesystem being mounted at /308/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  109.907841][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.979133][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.041240][ T7727] FAULT_INJECTION: forcing a failure.
[  110.041240][ T7727] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  110.054521][ T7727] CPU: 1 UID: 0 PID: 7727 Comm: syz.5.1536 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  110.054547][ T7727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  110.054560][ T7727] Call Trace:
[  110.054564][ T7727]  <TASK>
[  110.054571][ T7727]  __dump_stack+0x1d/0x30
[  110.054589][ T7727]  dump_stack_lvl+0xe8/0x140
[  110.054606][ T7727]  dump_stack+0x15/0x1b
[  110.054679][ T7727]  should_fail_ex+0x265/0x280
[  110.054712][ T7727]  should_fail+0xb/0x20
[  110.054740][ T7727]  should_fail_usercopy+0x1a/0x20
[  110.054775][ T7727]  _copy_from_user+0x1c/0xb0
[  110.054843][ T7727]  ___sys_recvmsg+0xaa/0x370
[  110.054864][ T7727]  ? _parse_integer+0x27/0x40
[  110.054962][ T7727]  do_recvmmsg+0x1ef/0x540
[  110.055024][ T7727]  ? fput+0x8f/0xc0
[  110.055051][ T7727]  __x64_sys_recvmmsg+0xe5/0x170
[  110.055069][ T7727]  x64_sys_call+0x1c6a/0x2fb0
[  110.055090][ T7727]  do_syscall_64+0xd2/0x200
[  110.055142][ T7727]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  110.055171][ T7727]  ? clear_bhb_loop+0x40/0x90
[  110.055193][ T7727]  ? clear_bhb_loop+0x40/0x90
[  110.055216][ T7727]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.055240][ T7727] RIP: 0033:0x7f55dae9e9a9
[  110.055309][ T7727] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  110.055328][ T7727] RSP: 002b:00007f55d94ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  110.055347][ T7727] RAX: ffffffffffffffda RBX: 00007f55db0c5fa0 RCX: 00007f55dae9e9a9
[  110.055419][ T7727] RDX: 0000000000000001 RSI: 0000200000004400 RDI: 0000000000000003
[  110.055431][ T7727] RBP: 00007f55d94ff090 R08: 0000000000000000 R09: 0000000000000000
[  110.055444][ T7727] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  110.055458][ T7727] R13: 0000000000000000 R14: 00007f55db0c5fa0 R15: 00007ffd0e186668
[  110.055475][ T7727]  </TASK>
[  110.314330][ T7735] loop3: detected capacity change from 0 to 764
[  110.352193][ T7740] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1538'.
[  110.400822][ T7740] hsr_slave_0 (unregistering): left promiscuous mode
[  110.473328][ T7751] loop3: detected capacity change from 0 to 256
[  110.510239][ T7754] hub 9-0:1.0: USB hub found
[  110.518074][ T7754] hub 9-0:1.0: 8 ports detected
[  110.754611][ T7762] loop3: detected capacity change from 0 to 128
[  110.773281][ T7762] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  110.820750][ T7762] ext4 filesystem being mounted at /314/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  110.911740][ T3314] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  111.041155][ T7771] loop4: detected capacity change from 0 to 512
[  111.049948][ T7771] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  111.073124][ T7771] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.088172][ T7771] ext4 filesystem being mounted at /359/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  111.129446][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.164427][ T7780] loop4: detected capacity change from 0 to 128
[  111.212382][ T7784] netlink: 256 bytes leftover after parsing attributes in process `syz.4.1551'.
[  111.253312][ T7784] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1551'.
[  111.641469][ T7804] loop1: detected capacity change from 0 to 764
[  111.692167][ T7806] FAULT_INJECTION: forcing a failure.
[  111.692167][ T7806] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  111.705316][ T7806] CPU: 0 UID: 0 PID: 7806 Comm: syz.1.1557 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  111.705345][ T7806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  111.705358][ T7806] Call Trace:
[  111.705365][ T7806]  <TASK>
[  111.705372][ T7806]  __dump_stack+0x1d/0x30
[  111.705419][ T7806]  dump_stack_lvl+0xe8/0x140
[  111.705512][ T7806]  dump_stack+0x15/0x1b
[  111.705601][ T7806]  should_fail_ex+0x265/0x280
[  111.705634][ T7806]  should_fail+0xb/0x20
[  111.705663][ T7806]  should_fail_usercopy+0x1a/0x20
[  111.705697][ T7806]  _copy_from_user+0x1c/0xb0
[  111.705756][ T7806]  memdup_user+0x5e/0xd0
[  111.705781][ T7806]  strndup_user+0x68/0xb0
[  111.705809][ T7806]  __se_sys_mount+0x4d/0x2e0
[  111.705843][ T7806]  ? fput+0x8f/0xc0
[  111.705867][ T7806]  ? ksys_write+0x192/0x1a0
[  111.705951][ T7806]  __x64_sys_mount+0x67/0x80
[  111.706049][ T7806]  x64_sys_call+0xd36/0x2fb0
[  111.706071][ T7806]  do_syscall_64+0xd2/0x200
[  111.706093][ T7806]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  111.706121][ T7806]  ? clear_bhb_loop+0x40/0x90
[  111.706167][ T7806]  ? clear_bhb_loop+0x40/0x90
[  111.706186][ T7806]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.706209][ T7806] RIP: 0033:0x7f0357e6e9a9
[  111.706225][ T7806] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.706250][ T7806] RSP: 002b:00007f03564d7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  111.706270][ T7806] RAX: ffffffffffffffda RBX: 00007f0358095fa0 RCX: 00007f0357e6e9a9
[  111.706339][ T7806] RDX: 0000200000000080 RSI: 0000200000000000 RDI: 0000000000000000
[  111.706352][ T7806] RBP: 00007f03564d7090 R08: 0000200000000340 R09: 0000000000000000
[  111.706365][ T7806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  111.706379][ T7806] R13: 0000000000000000 R14: 00007f0358095fa0 R15: 00007ffeac06ea18
[  111.706422][ T7806]  </TASK>
[  111.988140][ T7815] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1560'.
[  112.029622][ T7816] siw: device registration error -23
[  112.050996][ T7825] FAULT_INJECTION: forcing a failure.
[  112.050996][ T7825] name failslab, interval 1, probability 0, space 0, times 0
[  112.063741][ T7825] CPU: 0 UID: 0 PID: 7825 Comm: syz.1.1565 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  112.063789][ T7825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  112.063803][ T7825] Call Trace:
[  112.063809][ T7825]  <TASK>
[  112.063817][ T7825]  __dump_stack+0x1d/0x30
[  112.063839][ T7825]  dump_stack_lvl+0xe8/0x140
[  112.063855][ T7825]  dump_stack+0x15/0x1b
[  112.063938][ T7825]  should_fail_ex+0x265/0x280
[  112.063965][ T7825]  should_failslab+0x8c/0xb0
[  112.063988][ T7825]  kmem_cache_alloc_lru_noprof+0x55/0x310
[  112.064036][ T7825]  ? __d_alloc+0x3d/0x350
[  112.064062][ T7825]  __d_alloc+0x3d/0x350
[  112.064099][ T7825]  ? obj_cgroup_charge_account+0x122/0x1a0
[  112.064128][ T7825]  d_alloc_parallel+0x53/0xc40
[  112.064150][ T7825]  ? selinux_inode_permission+0x532/0x620
[  112.064199][ T7825]  ? make_vfsuid+0x49/0xa0
[  112.064265][ T7825]  ? lockref_get_not_dead+0x120/0x1c0
[  112.064288][ T7825]  ? __rcu_read_unlock+0x4f/0x70
[  112.064308][ T7825]  __lookup_slow+0x8c/0x250
[  112.064370][ T7825]  lookup_slow+0x3c/0x60
[  112.064393][ T7825]  walk_component+0x1ec/0x220
[  112.064414][ T7825]  path_lookupat+0xfe/0x2a0
[  112.064435][ T7825]  filename_lookup+0x147/0x340
[  112.064486][ T7825]  kern_path+0x3b/0x130
[  112.064507][ T7825]  unix_find_other+0xe9/0x760
[  112.064534][ T7825]  unix_dgram_connect+0x213/0x810
[  112.064565][ T7825]  ? __pfx_unix_dgram_connect+0x10/0x10
[  112.064646][ T7825]  __sys_connect+0x1f2/0x2b0
[  112.064683][ T7825]  __x64_sys_connect+0x3f/0x50
[  112.064718][ T7825]  x64_sys_call+0x1daa/0x2fb0
[  112.064789][ T7825]  do_syscall_64+0xd2/0x200
[  112.064810][ T7825]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  112.064837][ T7825]  ? clear_bhb_loop+0x40/0x90
[  112.064861][ T7825]  ? clear_bhb_loop+0x40/0x90
[  112.064884][ T7825]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.064969][ T7825] RIP: 0033:0x7f0357e6e9a9
[  112.064986][ T7825] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.065003][ T7825] RSP: 002b:00007f03564d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  112.065019][ T7825] RAX: ffffffffffffffda RBX: 00007f0358095fa0 RCX: 00007f0357e6e9a9
[  112.065030][ T7825] RDX: 000000000000006e RSI: 0000200000000180 RDI: 0000000000000003
[  112.065042][ T7825] RBP: 00007f03564d7090 R08: 0000000000000000 R09: 0000000000000000
[  112.065054][ T7825] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  112.065143][ T7825] R13: 0000000000000000 R14: 00007f0358095fa0 R15: 00007ffeac06ea18
[  112.065162][ T7825]  </TASK>
[  112.482413][ T7834] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1569'.
[  112.486143][   T29] kauditd_printk_skb: 361 callbacks suppressed
[  112.486195][   T29] audit: type=1400 audit(1753724922.896:7513): avc:  denied  { setopt } for  pid=7841 comm="syz.4.1570" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  112.552492][ T7844] loop1: detected capacity change from 0 to 2048
[  112.577884][ T7848] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1573'.
[  112.584018][   T29] audit: type=1400 audit(1753724922.986:7514): avc:  denied  { mounton } for  pid=7843 comm="syz.1.1571" path="/322/file0" dev="tmpfs" ino=1757 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  112.609469][   T29] audit: type=1400 audit(1753724922.986:7515): avc:  denied  { ioctl } for  pid=7847 comm="syz.4.1573" path="socket:[21728]" dev="sockfs" ino=21728 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  112.646990][   T29] audit: type=1400 audit(1753724923.056:7516): avc:  denied  { create } for  pid=7847 comm="syz.4.1573" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  112.667826][   T29] audit: type=1400 audit(1753724923.056:7517): avc:  denied  { write } for  pid=7847 comm="syz.4.1573" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  112.688439][   T29] audit: type=1400 audit(1753724923.056:7518): avc:  denied  { setopt } for  pid=7849 comm="syz.3.1574" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  112.708092][   T29] audit: type=1400 audit(1753724923.056:7519): avc:  denied  { bind } for  pid=7849 comm="syz.3.1574" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  112.727491][   T29] audit: type=1400 audit(1753724923.056:7520): avc:  denied  { name_bind } for  pid=7849 comm="syz.3.1574" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[  112.749252][   T29] audit: type=1400 audit(1753724923.056:7521): avc:  denied  { node_bind } for  pid=7849 comm="syz.3.1574" saddr=::1 src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=sctp_socket permissive=1
[  112.770967][   T29] audit: type=1400 audit(1753724923.056:7522): avc:  denied  { write } for  pid=7849 comm="syz.3.1574" laddr=::1 lport=20003 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  112.799812][ T7844] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  112.869770][ T7844] lo speed is unknown, defaulting to 1000
[  112.934778][ T7860] FAULT_INJECTION: forcing a failure.
[  112.934778][ T7860] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  112.947936][ T7860] CPU: 1 UID: 0 PID: 7860 Comm: syz.4.1576 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  112.947962][ T7860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  112.948031][ T7860] Call Trace:
[  112.948037][ T7860]  <TASK>
[  112.948045][ T7860]  __dump_stack+0x1d/0x30
[  112.948066][ T7860]  dump_stack_lvl+0xe8/0x140
[  112.948085][ T7860]  dump_stack+0x15/0x1b
[  112.948132][ T7860]  should_fail_ex+0x265/0x280
[  112.948164][ T7860]  should_fail+0xb/0x20
[  112.948290][ T7860]  should_fail_usercopy+0x1a/0x20
[  112.948324][ T7860]  _copy_to_user+0x20/0xa0
[  112.948346][ T7860]  simple_read_from_buffer+0xb5/0x130
[  112.948396][ T7860]  proc_fail_nth_read+0x100/0x140
[  112.948428][ T7860]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  112.948462][ T7860]  vfs_read+0x1a0/0x6f0
[  112.948499][ T7860]  ? __rcu_read_unlock+0x4f/0x70
[  112.948519][ T7860]  ? __fget_files+0x184/0x1c0
[  112.948538][ T7860]  ksys_read+0xda/0x1a0
[  112.948568][ T7860]  __x64_sys_read+0x40/0x50
[  112.948677][ T7860]  x64_sys_call+0x2d77/0x2fb0
[  112.948736][ T7860]  do_syscall_64+0xd2/0x200
[  112.948756][ T7860]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  112.948840][ T7860]  ? clear_bhb_loop+0x40/0x90
[  112.948859][ T7860]  ? clear_bhb_loop+0x40/0x90
[  112.948880][ T7860]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.948949][ T7860] RIP: 0033:0x7f5ed8a7d3bc
[  112.948964][ T7860] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  112.949034][ T7860] RSP: 002b:00007f5ed70df030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  112.949052][ T7860] RAX: ffffffffffffffda RBX: 00007f5ed8ca5fa0 RCX: 00007f5ed8a7d3bc
[  112.949063][ T7860] RDX: 000000000000000f RSI: 00007f5ed70df0a0 RDI: 0000000000000003
[  112.949077][ T7860] RBP: 00007f5ed70df090 R08: 0000000000000000 R09: 0000000000000000
[  112.949088][ T7860] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  112.949176][ T7860] R13: 0000000000000001 R14: 00007f5ed8ca5fa0 R15: 00007ffe9c1e9818
[  112.949194][ T7860]  </TASK>
[  113.228995][ T7866] lo speed is unknown, defaulting to 1000
[  113.365332][ T7855] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 234: padding at end of block bitmap is not set
[  113.511431][ T3304] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  113.538268][ T7873] loop3: detected capacity change from 0 to 764
[  113.552063][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.614416][ T7876] loop1: detected capacity change from 0 to 764
[  113.630094][ T7873] rock: directory entry would overflow storage
[  113.636317][ T7873] rock: sig=0x4f50, size=4, remaining=3
[  113.641910][ T7873] iso9660: Corrupted directory entry in block 4 of inode 1792
[  113.748218][ T7879] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1582'.
[  113.792542][ T7864] lo speed is unknown, defaulting to 1000
[  113.929923][ T7891] loop1: detected capacity change from 0 to 1024
[  113.946139][ T7891] EXT4-fs: Ignoring removed nobh option
[  113.978202][ T7891] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  113.989210][ T7891] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  114.043084][ T7891] JBD2: no valid journal superblock found
[  114.049055][ T7891] EXT4-fs (loop1): Could not load journal inode
[  114.059403][ T7893] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  114.190364][ T7900] loop1: detected capacity change from 0 to 512
[  114.220932][ T7902] loop2: detected capacity change from 0 to 512
[  114.238325][ T7900] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  114.246299][ T7902] EXT4-fs: Ignoring removed nobh option
[  114.290852][ T7902] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #3: comm syz.2.1589: corrupted inode contents
[  114.312882][ T7902] EXT4-fs error (device loop2): ext4_dirty_inode:6459: inode #3: comm syz.2.1589: mark_inode_dirty error
[  114.316788][ T7900] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  114.336809][ T7902] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #3: comm syz.2.1589: corrupted inode contents
[  114.362659][ T7902] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #3: comm syz.2.1589: mark_inode_dirty error
[  114.408938][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.422498][ T7902] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.1589: Failed to acquire dquot type 0
[  114.477790][ T7902] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #16: comm syz.2.1589: corrupted inode contents
[  114.518467][ T7902] EXT4-fs error (device loop2): ext4_dirty_inode:6459: inode #16: comm syz.2.1589: mark_inode_dirty error
[  114.548690][ T7902] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #16: comm syz.2.1589: corrupted inode contents
[  114.572208][ T7910] FAULT_INJECTION: forcing a failure.
[  114.572208][ T7910] name failslab, interval 1, probability 0, space 0, times 0
[  114.584951][ T7910] CPU: 1 UID: 0 PID: 7910 Comm: syz.1.1591 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  114.584983][ T7910] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  114.584997][ T7910] Call Trace:
[  114.585003][ T7910]  <TASK>
[  114.585046][ T7910]  __dump_stack+0x1d/0x30
[  114.585066][ T7910]  dump_stack_lvl+0xe8/0x140
[  114.585086][ T7910]  dump_stack+0x15/0x1b
[  114.585103][ T7910]  should_fail_ex+0x265/0x280
[  114.585195][ T7910]  should_failslab+0x8c/0xb0
[  114.585214][ T7910]  kmem_cache_alloc_node_noprof+0x57/0x320
[  114.585240][ T7910]  ? __alloc_skb+0x101/0x320
[  114.585273][ T7910]  __alloc_skb+0x101/0x320
[  114.585299][ T7910]  tipc_buf_acquire+0x2c/0xb0
[  114.585326][ T7910]  tipc_named_withdraw+0x13b/0x360
[  114.585392][ T7910]  tipc_nametbl_withdraw+0x114/0x200
[  114.585493][ T7910]  tipc_sk_withdraw+0x1ca/0x2e0
[  114.585519][ T7910]  tipc_sk_bind+0x175/0x1b0
[  114.585615][ T7910]  tipc_bind+0x5e/0x190
[  114.585679][ T7910]  __sys_bind+0x1d1/0x2a0
[  114.585741][ T7910]  __x64_sys_bind+0x3f/0x50
[  114.585805][ T7910]  x64_sys_call+0x2086/0x2fb0
[  114.585836][ T7910]  do_syscall_64+0xd2/0x200
[  114.585904][ T7910]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  114.585929][ T7910]  ? clear_bhb_loop+0x40/0x90
[  114.585959][ T7910]  ? clear_bhb_loop+0x40/0x90
[  114.585984][ T7910]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.586006][ T7910] RIP: 0033:0x7f0357e6e9a9
[  114.586029][ T7910] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.586049][ T7910] RSP: 002b:00007f03564d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[  114.586070][ T7910] RAX: ffffffffffffffda RBX: 00007f0358095fa0 RCX: 00007f0357e6e9a9
[  114.586161][ T7910] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  114.586174][ T7910] RBP: 00007f03564d7090 R08: 0000000000000000 R09: 0000000000000000
[  114.586188][ T7910] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  114.586201][ T7910] R13: 0000000000000000 R14: 00007f0358095fa0 R15: 00007ffeac06ea18
[  114.586220][ T7910]  </TASK>
[  114.586228][ T7910] tipc: Withdrawal distribution failure
[  114.617155][ T7902] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #16: comm syz.2.1589: mark_inode_dirty error
[  114.812693][ T7902] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #16: comm syz.2.1589: corrupted inode contents
[  114.827645][ T7902] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  114.849414][ T7902] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #16: comm syz.2.1589: corrupted inode contents
[  114.878779][ T7902] EXT4-fs error (device loop2): ext4_truncate:4597: inode #16: comm syz.2.1589: mark_inode_dirty error
[  114.893260][ T7918] loop1: detected capacity change from 0 to 764
[  114.910650][ T7902] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  114.932899][ T7918] rock: directory entry would overflow storage
[  114.939111][ T7918] rock: sig=0x4f50, size=4, remaining=3
[  114.944665][ T7918] iso9660: Corrupted directory entry in block 4 of inode 1792
[  114.952524][ T7902] EXT4-fs (loop2): 1 truncate cleaned up
[  114.958821][ T7902] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  114.985027][ T7902] ext4 filesystem being mounted at /289/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  115.025411][ T7923] loop1: detected capacity change from 0 to 128
[  115.033036][ T7902] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.097501][ T7919] lo speed is unknown, defaulting to 1000
[  115.132745][ T7928] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[  115.140635][ T7928] FAT-fs (loop1): Filesystem has been set read-only
[  115.168107][ T7930] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1598'.
[  115.183257][ T7928] syz.1.1596: attempt to access beyond end of device
[  115.183257][ T7928] loop1: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  115.223229][ T7937] loop2: detected capacity change from 0 to 512
[  115.229780][ T7928] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[  115.237688][ T7928] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[  115.251987][ T7930] lo speed is unknown, defaulting to 1000
[  115.263909][ T7937] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  115.278739][ T7928] syz.1.1596: attempt to access beyond end of device
[  115.278739][ T7928] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[  115.295758][ T7939] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[  115.320615][ T7937] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  115.335754][ T7939] loop4: detected capacity change from 0 to 512
[  115.345460][ T7928] syz.1.1596: attempt to access beyond end of device
[  115.345460][ T7928] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[  115.368042][ T7937] ext4 filesystem being mounted at /291/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  115.386022][ T7928] syz.1.1596: attempt to access beyond end of device
[  115.386022][ T7928] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[  115.388742][ T7939] EXT4-fs (loop4): orphan cleanup on readonly fs
[  115.399437][ T7928] syz.1.1596: attempt to access beyond end of device
[  115.399437][ T7928] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[  115.419260][ T7928] syz.1.1596: attempt to access beyond end of device
[  115.419260][ T7928] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[  115.432966][ T7928] syz.1.1596: attempt to access beyond end of device
[  115.432966][ T7928] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[  115.446301][ T7928] syz.1.1596: attempt to access beyond end of device
[  115.446301][ T7928] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[  115.452106][ T7939] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1598: bg 0: block 248: padding at end of block bitmap is not set
[  115.461586][ T7928] syz.1.1596: attempt to access beyond end of device
[  115.461586][ T7928] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[  115.508191][ T7939] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.1598: Failed to acquire dquot type 1
[  115.523552][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.543675][ T7939] EXT4-fs (loop4): 1 truncate cleaned up
[  115.550387][ T7939] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  115.595034][ T7928] syz.1.1596: attempt to access beyond end of device
[  115.595034][ T7928] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[  115.671608][ T7950] loop2: detected capacity change from 0 to 2048
[  115.713880][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.730294][ T7950] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.805185][ T7958] bridge0: port 2(bridge_slave_1) entered disabled state
[  115.812480][ T7958] bridge0: port 1(bridge_slave_0) entered disabled state
[  115.858948][ T7950] lo speed is unknown, defaulting to 1000
[  115.865317][ T7962] bridge0: port 2(bridge_slave_1) entered blocking state
[  115.872537][ T7962] bridge0: port 2(bridge_slave_1) entered forwarding state
[  115.879891][ T7962] bridge0: port 1(bridge_slave_0) entered blocking state
[  115.887100][ T7962] bridge0: port 1(bridge_slave_0) entered forwarding state
[  115.905960][ T7965] loop4: detected capacity change from 0 to 764
[  115.923806][ T7965] rock: directory entry would overflow storage
[  115.930179][ T7965] rock: sig=0x4f50, size=4, remaining=3
[  115.935791][ T7965] iso9660: Corrupted directory entry in block 4 of inode 1792
[  116.012385][ T7969] loop3: detected capacity change from 0 to 764
[  116.064317][ T3311] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  116.099791][ T7977] loop3: detected capacity change from 0 to 764
[  116.099981][ T7975] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  116.106535][ T3311] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  116.183283][ T7980] netlink: 272 bytes leftover after parsing attributes in process `syz.3.1614'.
[  116.200341][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.206719][ T7982] lo speed is unknown, defaulting to 1000
[  116.220963][ T7975] loop1: detected capacity change from 0 to 512
[  116.258238][ T7988] loop5: detected capacity change from 0 to 1024
[  116.268154][ T7975] EXT4-fs error (device loop1): ext4_orphan_get:1393: inode #15: comm syz.1.1611: casefold flag without casefold feature
[  116.284261][ T7988] EXT4-fs: Ignoring removed orlov option
[  116.294443][ T7975] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.1611: couldn't read orphan inode 15 (err -117)
[  116.308842][ T7975] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.325055][ T7988] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  116.349748][ T7994] SELinux: failed to load policy
[  116.398665][ T8000] bridge0: port 2(bridge_slave_1) entered disabled state
[  116.405813][ T8000] bridge0: port 1(bridge_slave_0) entered disabled state
[  116.416367][ T7441] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.426910][ T8000] bridge0: port 2(bridge_slave_1) entered blocking state
[  116.434030][ T8000] bridge0: port 2(bridge_slave_1) entered forwarding state
[  116.441394][ T8000] bridge0: port 1(bridge_slave_0) entered blocking state
[  116.448528][ T8000] bridge0: port 1(bridge_slave_0) entered forwarding state
[  116.468105][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.503819][ T8008] FAULT_INJECTION: forcing a failure.
[  116.503819][ T8008] name failslab, interval 1, probability 0, space 0, times 0
[  116.516634][ T8008] CPU: 0 UID: 0 PID: 8008 Comm: syz.4.1623 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  116.516659][ T8008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  116.516670][ T8008] Call Trace:
[  116.516676][ T8008]  <TASK>
[  116.516683][ T8008]  __dump_stack+0x1d/0x30
[  116.516706][ T8008]  dump_stack_lvl+0xe8/0x140
[  116.516824][ T8008]  dump_stack+0x15/0x1b
[  116.516858][ T8008]  should_fail_ex+0x265/0x280
[  116.516891][ T8008]  should_failslab+0x8c/0xb0
[  116.516918][ T8008]  __kvmalloc_node_noprof+0x123/0x4e0
[  116.516947][ T8008]  ? file_tty_write+0x1a8/0x670
[  116.516979][ T8008]  file_tty_write+0x1a8/0x670
[  116.517010][ T8008]  ? __pfx_tty_write+0x10/0x10
[  116.517079][ T8008]  tty_write+0x25/0x30
[  116.517227][ T8008]  vfs_write+0x4a0/0x8e0
[  116.517273][ T8008]  ksys_write+0xda/0x1a0
[  116.517303][ T8008]  __x64_sys_write+0x40/0x50
[  116.517336][ T8008]  x64_sys_call+0x2cdd/0x2fb0
[  116.517360][ T8008]  do_syscall_64+0xd2/0x200
[  116.517381][ T8008]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  116.517429][ T8008]  ? clear_bhb_loop+0x40/0x90
[  116.517450][ T8008]  ? clear_bhb_loop+0x40/0x90
[  116.517473][ T8008]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.517505][ T8008] RIP: 0033:0x7f5ed8a7e9a9
[  116.517521][ T8008] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  116.517541][ T8008] RSP: 002b:00007f5ed70df038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  116.517561][ T8008] RAX: ffffffffffffffda RBX: 00007f5ed8ca5fa0 RCX: 00007f5ed8a7e9a9
[  116.517654][ T8008] RDX: 0000000000001006 RSI: 0000200000001980 RDI: 0000000000000005
[  116.517668][ T8008] RBP: 00007f5ed70df090 R08: 0000000000000000 R09: 0000000000000000
[  116.517681][ T8008] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  116.517693][ T8008] R13: 0000000000000000 R14: 00007f5ed8ca5fa0 R15: 00007ffe9c1e9818
[  116.517708][ T8008]  </TASK>
[  116.730413][ T8015] loop3: detected capacity change from 0 to 764
[  116.957649][ T8027] lo speed is unknown, defaulting to 1000
[  117.391759][ T8035] loop4: detected capacity change from 0 to 512
[  117.425717][ T8035] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  117.470716][ T8035] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  117.507032][ T8035] ext4 filesystem being mounted at /379/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  117.579621][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.612709][   T29] kauditd_printk_skb: 578 callbacks suppressed
[  117.612723][   T29] audit: type=1326 audit(1753724928.016:8097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8023 comm="syz.2.1628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3e672e9a9 code=0x7ffc0000
[  117.642413][   T29] audit: type=1326 audit(1753724928.026:8098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8023 comm="syz.2.1628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3e672e9a9 code=0x7ffc0000
[  117.811179][   T29] audit: type=1326 audit(1753724928.226:8099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8041 comm="syz.1.1634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0357e6e9a9 code=0x7ffc0000
[  117.898503][   T29] audit: type=1326 audit(1753724928.226:8100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8032 comm="syz.3.1631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43c6efe9a9 code=0x7ffc0000
[  117.922042][   T29] audit: type=1326 audit(1753724928.226:8101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8032 comm="syz.3.1631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43c6efe9a9 code=0x7ffc0000
[  117.945519][   T29] audit: type=1326 audit(1753724928.256:8102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8041 comm="syz.1.1634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=282 compat=0 ip=0x7f0357e6e9a9 code=0x7ffc0000
[  117.969085][   T29] audit: type=1326 audit(1753724928.256:8103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8041 comm="syz.1.1634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0357e6e9a9 code=0x7ffc0000
[  117.989125][ T8042] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1634'.
[  117.992468][   T29] audit: type=1326 audit(1753724928.256:8104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8041 comm="syz.1.1634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0357e6e9a9 code=0x7ffc0000
[  118.020481][ T8042] macvlan2: entered promiscuous mode
[  118.024678][   T29] audit: type=1326 audit(1753724928.276:8105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8041 comm="syz.1.1634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7f0357e6e9a9 code=0x7ffc0000
[  118.029966][ T8042] bond0: entered promiscuous mode
[  118.053326][   T29] audit: type=1326 audit(1753724928.276:8106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8041 comm="syz.1.1634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0357e6e9a9 code=0x7ffc0000
[  118.106697][ T8042] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  118.151615][ T8051] loop3: detected capacity change from 0 to 512
[  118.213124][ T8055] loop5: detected capacity change from 0 to 764
[  118.213308][ T8057] loop2: detected capacity change from 0 to 512
[  118.242999][ T8051] EXT4-fs (loop3): 1 orphan inode deleted
[  118.259494][ T3475] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:7: Failed to release dquot type 1
[  118.259999][ T8051] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  118.284277][ T8057] EXT4-fs (loop2): 1 orphan inode deleted
[  118.298121][ T8067] netlink: 'syz.1.1642': attribute type 3 has an invalid length.
[  118.299421][ T8057] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  118.305948][ T8067] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1642'.
[  118.345307][ T8057] ext4 filesystem being mounted at /299/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  118.345385][ T8051] ext4 filesystem being mounted at /337/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  118.355891][ T3475] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:7: Failed to release dquot type 1
[  118.404454][ T8070] loop4: detected capacity change from 0 to 4096
[  118.415554][ T8070] ext4: Unknown parameter 'smackfshat'
[  118.508006][ T8057] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  118.525176][ T8051] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  118.790722][ T8102] loop5: detected capacity change from 0 to 764
[  118.806262][ T8102] rock: directory entry would overflow storage
[  118.812538][ T8102] rock: sig=0x4f50, size=4, remaining=3
[  118.818164][ T8102] iso9660: Corrupted directory entry in block 4 of inode 1792
[  118.913630][ T8106] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1650'.
[  118.963266][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.002679][ T8116] netlink: 256 bytes leftover after parsing attributes in process `syz.3.1652'.
[  119.065957][ T8122] loop4: detected capacity change from 0 to 512
[  119.079897][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.081384][ T8125] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1651'.
[  119.102995][ T8125] bond_slave_0: entered promiscuous mode
[  119.108685][ T8125] bond_slave_1: entered promiscuous mode
[  119.108750][ T8116] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1652'.
[  119.122944][ T8125] macvlan2: entered promiscuous mode
[  119.128582][ T8125] bond0: entered promiscuous mode
[  119.133178][ T8122] EXT4-fs (loop4): 1 orphan inode deleted
[  119.140893][ T8125] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  119.140923][ T8122] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  119.150699][ T8129] GUP no longer grows the stack in syz.2.1654 (8129): 200000005000-200000008000 (200000004000)
[  119.170697][ T8129] CPU: 0 UID: 0 PID: 8129 Comm: syz.2.1654 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  119.170741][ T8129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  119.170754][ T8129] Call Trace:
[  119.170774][ T8129]  <TASK>
[  119.170781][ T8129]  __dump_stack+0x1d/0x30
[  119.170804][ T8129]  dump_stack_lvl+0xe8/0x140
[  119.170869][ T8129]  dump_stack+0x15/0x1b
[  119.170889][ T8129]  fixup_user_fault+0x50e/0x560
[  119.170912][ T8129]  fault_in_user_writeable+0x5d/0xd0
[  119.170940][ T8129]  futex_lock_pi+0x1bf/0x710
[  119.171016][ T8129]  ? __pfx_futex_wake_mark+0x10/0x10
[  119.171114][ T8129]  do_futex+0x21f/0x380
[  119.171148][ T8129]  __se_sys_futex+0x2ed/0x360
[  119.171176][ T8129]  ? xfd_validate_state+0x45/0xf0
[  119.171217][ T8129]  __x64_sys_futex+0x78/0x90
[  119.171294][ T8129]  x64_sys_call+0x1331/0x2fb0
[  119.171315][ T8129]  do_syscall_64+0xd2/0x200
[  119.171333][ T8129]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  119.171397][ T8129]  ? clear_bhb_loop+0x40/0x90
[  119.171422][ T8129]  ? clear_bhb_loop+0x40/0x90
[  119.171447][ T8129]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.171533][ T8129] RIP: 0033:0x7fe3e672e9a9
[  119.171548][ T8129] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  119.171626][ T8129] RSP: 002b:00007fe3e4d8f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  119.171645][ T8129] RAX: ffffffffffffffda RBX: 00007fe3e6955fa0 RCX: 00007fe3e672e9a9
[  119.171657][ T8129] RDX: 00000000fffffffd RSI: 000000000000008d RDI: 0000200000004000
[  119.171679][ T8129] RBP: 00007fe3e67b0d69 R08: 0000000000000000 R09: 0000000000000000
[  119.171731][ T8129] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  119.171743][ T8129] R13: 0000000000000000 R14: 00007fe3e6955fa0 R15: 00007fff74d15028
[  119.171759][ T8129]  </TASK>
[  119.171907][   T60] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:5: Failed to release dquot type 1
[  119.200875][ T8122] ext4 filesystem being mounted at /384/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  119.233585][ T8131] loop2: detected capacity change from 0 to 164
[  119.398383][ T8122] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  119.415317][ T8131] iso9660: Corrupted directory entry in block 4 of inode 1792
[  119.435130][ T8148] netlink: 256 bytes leftover after parsing attributes in process `syz.3.1656'.
[  119.466698][ T8152] netlink: 256 bytes leftover after parsing attributes in process `syz.5.1657'.
[  119.507878][ T8158] loop2: detected capacity change from 0 to 764
[  119.514804][ T8148] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1656'.
[  119.534235][ T8158] rock: directory entry would overflow storage
[  119.540531][ T8158] rock: sig=0x4f50, size=4, remaining=3
[  119.546265][ T8158] iso9660: Corrupted directory entry in block 4 of inode 1792
[  119.554388][ T8152] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1657'.
[  119.618619][ T8167] loop2: detected capacity change from 0 to 2048
[  119.641675][ T8167] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  119.694266][ T8167] lo speed is unknown, defaulting to 1000
[  119.829298][ T8182] loop1: detected capacity change from 0 to 2048
[  119.844083][ T3311] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  119.902932][ T3311] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  119.962286][ T8182] lo speed is unknown, defaulting to 1000
[  119.981526][ T8192] loop4: detected capacity change from 0 to 512
[  120.032184][ T8192] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  120.059023][ T8204] loop2: detected capacity change from 0 to 164
[  120.095212][ T8204] iso9660: Corrupted directory entry in block 4 of inode 1792
[  120.107479][ T3304] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  120.138850][ T8204] process 'syz.2.1668' launched '/dev/fd/6' with NULL argv: empty string added
[  120.151398][ T3304] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  120.193541][ T8209] loop4: detected capacity change from 0 to 512
[  120.214536][ T8209] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -13
[  120.253400][ T8209] EXT4-fs error (device loop4): ext4_orphan_get:1393: inode #13: comm syz.4.1670: iget: bad i_size value: 12154757448730
[  120.285736][ T8220] netlink: 256 bytes leftover after parsing attributes in process `syz.5.1673'.
[  120.289175][ T8217] loop2: detected capacity change from 0 to 2048
[  120.297501][ T8209] EXT4-fs (loop4): Remounting filesystem read-only
[  120.337493][ T8220] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1673'.
[  120.392960][ T8209] netlink: 'syz.4.1670': attribute type 3 has an invalid length.
[  120.472889][ T8209] EXT4-fs warning (device loop4): ext4_lookup:1799: Inconsistent encryption contexts: 2/12
[  120.495971][ T8240] loop2: detected capacity change from 0 to 512
[  120.559587][ T8240] EXT4-fs (loop2): 1 orphan inode deleted
[  120.588937][ T1986] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:6: Failed to release dquot type 1
[  120.605498][ T8240] ext4 filesystem being mounted at /308/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  120.670395][ T8240] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  121.139237][ T8292] loop3: detected capacity change from 0 to 2048
[  121.391784][ T8310] loop2: detected capacity change from 0 to 512
[  121.419594][ T8310] EXT4-fs (loop2): orphan cleanup on readonly fs
[  121.447283][ T8310] EXT4-fs error (device loop2): ext4_orphan_get:1419: comm syz.2.1684: bad orphan inode 13
[  121.502831][ T8310] ext4_test_bit(bit=12, block=18) = 1
[  121.508283][ T8310] is_bad_inode(inode)=0
[  121.512444][ T8310] NEXT_ORPHAN(inode)=2130706432
[  121.517294][ T8310] max_ino=32
[  121.520702][ T8310] i_nlink=1
[  121.583092][ T8325] syzkaller1: entered promiscuous mode
[  121.588699][ T8325] syzkaller1: entered allmulticast mode
[  121.605041][ T8328] loop4: detected capacity change from 0 to 164
[  121.662137][ T8333] loop2: detected capacity change from 0 to 764
[  121.668623][ T8328] iso9660: Corrupted directory entry in block 4 of inode 1792
[  121.723897][ T8333] rock: directory entry would overflow storage
[  121.730190][ T8333] rock: sig=0x4f50, size=4, remaining=3
[  121.735805][ T8333] iso9660: Corrupted directory entry in block 4 of inode 1792
[  121.744514][ T8337] loop3: detected capacity change from 0 to 764
[  121.785547][ T8339] loop4: detected capacity change from 0 to 512
[  121.834595][ T8339] EXT4-fs (loop4): 1 orphan inode deleted
[  121.848497][ T1986] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:6: Failed to release dquot type 1
[  121.868446][ T8339] ext4 filesystem being mounted at /390/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  121.895286][ T8339] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  121.952437][ T8352] veth1_macvtap: left promiscuous mode
[  121.958914][ T8352] macsec0: entered allmulticast mode
[  121.984315][ T8361] FAULT_INJECTION: forcing a failure.
[  121.984315][ T8361] name failslab, interval 1, probability 0, space 0, times 0
[  121.996989][ T8361] CPU: 1 UID: 0 PID: 8361 Comm: syz.3.1701 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  121.997070][ T8361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  121.997078][ T8361] Call Trace:
[  121.997082][ T8361]  <TASK>
[  121.997086][ T8361]  __dump_stack+0x1d/0x30
[  121.997106][ T8361]  dump_stack_lvl+0xe8/0x140
[  121.997117][ T8361]  dump_stack+0x15/0x1b
[  121.997139][ T8361]  should_fail_ex+0x265/0x280
[  121.997224][ T8361]  ? audit_log_d_path+0x8d/0x150
[  121.997315][ T8361]  should_failslab+0x8c/0xb0
[  121.997327][ T8361]  __kmalloc_cache_noprof+0x4c/0x320
[  121.997408][ T8361]  audit_log_d_path+0x8d/0x150
[  121.997425][ T8361]  audit_log_d_path_exe+0x42/0x70
[  121.997442][ T8361]  audit_log_task+0x1e9/0x250
[  121.997512][ T8361]  audit_seccomp+0x61/0x100
[  121.997525][ T8361]  ? __seccomp_filter+0x68c/0x10d0
[  121.997538][ T8361]  __seccomp_filter+0x69d/0x10d0
[  121.997562][ T8361]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  121.997580][ T8361]  ? vfs_write+0x75e/0x8e0
[  121.997598][ T8361]  ? __rcu_read_unlock+0x4f/0x70
[  121.997612][ T8361]  __secure_computing+0x82/0x150
[  121.997624][ T8361]  syscall_trace_enter+0xcf/0x1e0
[  121.997638][ T8361]  do_syscall_64+0xac/0x200
[  121.997649][ T8361]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  121.997732][ T8361]  ? clear_bhb_loop+0x40/0x90
[  121.997747][ T8361]  ? clear_bhb_loop+0x40/0x90
[  121.997758][ T8361]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.997770][ T8361] RIP: 0033:0x7f43c6efe9a9
[  121.997780][ T8361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.997790][ T8361] RSP: 002b:00007f43c5567038 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[  121.997801][ T8361] RAX: ffffffffffffffda RBX: 00007f43c7125fa0 RCX: 00007f43c6efe9a9
[  121.997866][ T8361] RDX: 0400000002000000 RSI: 0000000000000000 RDI: 0000000000000005
[  121.997873][ T8361] RBP: 00007f43c5567090 R08: 0000000000000000 R09: 0000000000000000
[  121.997880][ T8361] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  121.997886][ T8361] R13: 0000000000000000 R14: 00007f43c7125fa0 R15: 00007ffee0d71378
[  121.997897][ T8361]  </TASK>
[  122.267967][ T8370] loop3: detected capacity change from 0 to 128
[  122.284497][ T8368] syzkaller1: entered promiscuous mode
[  122.290180][ T8368] syzkaller1: entered allmulticast mode
[  122.383532][ T8383] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[  122.391518][ T8383] FAT-fs (loop3): Filesystem has been set read-only
[  122.416151][ T8383] bio_check_eod: 4786 callbacks suppressed
[  122.416166][ T8383] syz.3.1702: attempt to access beyond end of device
[  122.416166][ T8383] loop3: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  122.427138][ T8386] loop1: detected capacity change from 0 to 512
[  122.452363][ T8383] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[  122.460271][ T8383] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[  122.480819][ T8386] EXT4-fs (loop1): 1 orphan inode deleted
[  122.494368][ T8386] ext4 filesystem being mounted at /352/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.509029][ T8383] syz.3.1702: attempt to access beyond end of device
[  122.509029][ T8383] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[  122.523634][   T12] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:0: Failed to release dquot type 1
[  122.552583][ T8386] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  122.555081][ T8383] syz.3.1702: attempt to access beyond end of device
[  122.555081][ T8383] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[  122.574939][ T8383] syz.3.1702: attempt to access beyond end of device
[  122.574939][ T8383] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[  122.588340][ T8383] syz.3.1702: attempt to access beyond end of device
[  122.588340][ T8383] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[  122.602691][ T8383] syz.3.1702: attempt to access beyond end of device
[  122.602691][ T8383] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[  122.616208][ T8383] syz.3.1702: attempt to access beyond end of device
[  122.616208][ T8383] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[  122.641336][ T8383] syz.3.1702: attempt to access beyond end of device
[  122.641336][ T8383] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[  122.669633][ T8383] syz.3.1702: attempt to access beyond end of device
[  122.669633][ T8383] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[  122.692294][   T29] kauditd_printk_skb: 530 callbacks suppressed
[  122.692309][   T29] audit: type=1326 audit(1753724933.096:8631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8405 comm="syz.4.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ed8a7e9a9 code=0x7ffc0000
[  122.716142][ T8383] syz.3.1702: attempt to access beyond end of device
[  122.716142][ T8383] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[  122.721918][   T29] audit: type=1326 audit(1753724933.096:8632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8405 comm="syz.4.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ed8a7e9a9 code=0x7ffc0000
[  122.758834][   T29] audit: type=1326 audit(1753724933.096:8633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8405 comm="syz.4.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f5ed8a7e9a9 code=0x7ffc0000
[  122.782332][   T29] audit: type=1326 audit(1753724933.096:8634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8405 comm="syz.4.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ed8a7e9a9 code=0x7ffc0000
[  122.806858][   T29] audit: type=1326 audit(1753724933.096:8635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8405 comm="syz.4.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ed8a7e9a9 code=0x7ffc0000
[  122.830334][   T29] audit: type=1326 audit(1753724933.096:8636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8405 comm="syz.4.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=286 compat=0 ip=0x7f5ed8a7e9a9 code=0x7ffc0000
[  122.853763][   T29] audit: type=1326 audit(1753724933.096:8637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8405 comm="syz.4.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ed8a7e9a9 code=0x7ffc0000
[  122.877640][   T29] audit: type=1326 audit(1753724933.096:8638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8405 comm="syz.4.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ed8a7e9a9 code=0x7ffc0000
[  122.901589][   T29] audit: type=1326 audit(1753724933.096:8639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8405 comm="syz.4.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7f5ed8a7e9a9 code=0x7ffc0000
[  122.925696][   T29] audit: type=1326 audit(1753724933.096:8640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8405 comm="syz.4.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ed8a7e9a9 code=0x7ffc0000
[  123.053701][ T8409] loop2: detected capacity change from 0 to 164
[  123.090637][ T8409] iso9660: Corrupted directory entry in block 4 of inode 1792
[  123.194426][ T8423] siw: device registration error -23
[  123.220297][ T8427] loop5: detected capacity change from 0 to 164
[  123.262753][ T8427] iso9660: Corrupted directory entry in block 4 of inode 1792
[  123.272281][ T8429] loop1: detected capacity change from 0 to 1024
[  123.317582][ T8429] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4113: comm +}[@: Allocating blocks 385-513 which overlap fs metadata
[  123.321774][ T8435] syzkaller1: entered promiscuous mode
[  123.336441][ T8435] syzkaller1: entered allmulticast mode
[  123.375823][ T8447] FAULT_INJECTION: forcing a failure.
[  123.375823][ T8447] name failslab, interval 1, probability 0, space 0, times 0
[  123.389185][ T8447] CPU: 1 UID: 0 PID: 8447 Comm: syz.1.1713 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  123.389211][ T8447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  123.389222][ T8447] Call Trace:
[  123.389228][ T8447]  <TASK>
[  123.389235][ T8447]  __dump_stack+0x1d/0x30
[  123.389255][ T8447]  dump_stack_lvl+0xe8/0x140
[  123.389273][ T8447]  dump_stack+0x15/0x1b
[  123.389292][ T8447]  should_fail_ex+0x265/0x280
[  123.389349][ T8447]  ? alloc_pipe_info+0xae/0x350
[  123.389379][ T8447]  should_failslab+0x8c/0xb0
[  123.389403][ T8447]  __kmalloc_cache_noprof+0x4c/0x320
[  123.389436][ T8447]  alloc_pipe_info+0xae/0x350
[  123.389567][ T8447]  splice_direct_to_actor+0x592/0x680
[  123.389599][ T8447]  ? kstrtouint_from_user+0x9f/0xf0
[  123.389702][ T8447]  ? __pfx_direct_splice_actor+0x10/0x10
[  123.389730][ T8447]  ? __rcu_read_unlock+0x4f/0x70
[  123.389760][ T8447]  ? get_pid_task+0x96/0xd0
[  123.389780][ T8447]  ? avc_policy_seqno+0x15/0x30
[  123.389844][ T8447]  ? selinux_file_permission+0x1e4/0x320
[  123.389871][ T8447]  do_splice_direct+0xda/0x150
[  123.389898][ T8447]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  123.389982][ T8447]  do_sendfile+0x380/0x650
[  123.390047][ T8447]  __x64_sys_sendfile64+0x105/0x150
[  123.390068][ T8447]  x64_sys_call+0xb39/0x2fb0
[  123.390090][ T8447]  do_syscall_64+0xd2/0x200
[  123.390112][ T8447]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  123.390190][ T8447]  ? clear_bhb_loop+0x40/0x90
[  123.390210][ T8447]  ? clear_bhb_loop+0x40/0x90
[  123.390291][ T8447]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.390310][ T8447] RIP: 0033:0x7f0357e6e9a9
[  123.390367][ T8447] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  123.390458][ T8447] RSP: 002b:00007f03564b6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  123.390477][ T8447] RAX: ffffffffffffffda RBX: 00007f0358096080 RCX: 00007f0357e6e9a9
[  123.390518][ T8447] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 0000000000000009
[  123.390531][ T8447] RBP: 00007f03564b6090 R08: 0000000000000000 R09: 0000000000000000
[  123.390545][ T8447] R10: 0000000800000009 R11: 0000000000000246 R12: 0000000000000001
[  123.390557][ T8447] R13: 0000000000000000 R14: 00007f0358096080 R15: 00007ffeac06ea18
[  123.390573][ T8447]  </TASK>
[  123.696266][ T8461] loop4: detected capacity change from 0 to 164
[  123.721073][ T8461] iso9660: Corrupted directory entry in block 4 of inode 1792
[  123.772133][ T8469] loop5: detected capacity change from 0 to 2048
[  123.805637][ T8473] loop4: detected capacity change from 0 to 1024
[  123.830557][ T8469] lo speed is unknown, defaulting to 1000
[  123.837039][ T8428] EXT4-fs (loop1): pa ffff888106a18930: logic 16, phys. 129, len 24
[  123.844355][ T8473] ext4 filesystem being mounted at /395/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  123.845136][ T8428] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[  123.899185][ T8473] sd 0:0:1:0: device reset
[  123.940149][ T7441] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  123.972751][ T7441] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  123.974655][   T31] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  124.000365][   T31] EXT4-fs (loop4): Remounting filesystem read-only
[  124.009382][   T60] EXT4-fs warning (device loop4): ext4_convert_unwritten_extents:4940: inode #15: block 1: len 15: ext4_ext_map_blocks returned -30
[  124.057836][ T8491] siw: device registration error -23
[  124.148552][ T8496] loop4: detected capacity change from 0 to 512
[  124.160915][ T8496] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  124.208329][ T8507] netlink: 'syz.1.1734': attribute type 21 has an invalid length.
[  124.216829][ T8507] __nla_validate_parse: 6 callbacks suppressed
[  124.216851][ T8507] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1734'.
[  124.308835][ T8516] FAULT_INJECTION: forcing a failure.
[  124.308835][ T8516] name failslab, interval 1, probability 0, space 0, times 0
[  124.321552][ T8516] CPU: 1 UID: 0 PID: 8516 Comm: syz.1.1737 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  124.321580][ T8516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  124.321593][ T8516] Call Trace:
[  124.321598][ T8516]  <TASK>
[  124.321606][ T8516]  __dump_stack+0x1d/0x30
[  124.321672][ T8516]  dump_stack_lvl+0xe8/0x140
[  124.321693][ T8516]  dump_stack+0x15/0x1b
[  124.321708][ T8516]  should_fail_ex+0x265/0x280
[  124.321736][ T8516]  should_failslab+0x8c/0xb0
[  124.321759][ T8516]  kmem_cache_alloc_noprof+0x50/0x310
[  124.321821][ T8516]  ? getname_flags+0x80/0x3b0
[  124.321845][ T8516]  getname_flags+0x80/0x3b0
[  124.321889][ T8516]  user_path_at+0x28/0x130
[  124.321916][ T8516]  __se_sys_inotify_add_watch+0x102/0x7b0
[  124.321953][ T8516]  ? __bpf_trace_sys_enter+0x10/0x30
[  124.321976][ T8516]  ? trace_sys_enter+0xd0/0x110
[  124.322044][ T8516]  __x64_sys_inotify_add_watch+0x43/0x50
[  124.322078][ T8516]  x64_sys_call+0x29a4/0x2fb0
[  124.322122][ T8516]  do_syscall_64+0xd2/0x200
[  124.322142][ T8516]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  124.322176][ T8516]  ? clear_bhb_loop+0x40/0x90
[  124.322199][ T8516]  ? clear_bhb_loop+0x40/0x90
[  124.322277][ T8516]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.322299][ T8516] RIP: 0033:0x7f0357e6e9a9
[  124.322379][ T8516] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  124.322397][ T8516] RSP: 002b:00007f03564d7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fe
[  124.322416][ T8516] RAX: ffffffffffffffda RBX: 00007f0358095fa0 RCX: 00007f0357e6e9a9
[  124.322450][ T8516] RDX: 000000008500017e RSI: 0000200000000000 RDI: 0000000000000003
[  124.322475][ T8516] RBP: 00007f03564d7090 R08: 0000000000000000 R09: 0000000000000000
[  124.322488][ T8516] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  124.322501][ T8516] R13: 0000000000000000 R14: 00007f0358095fa0 R15: 00007ffeac06ea18
[  124.322520][ T8516]  </TASK>
[  124.611976][ T8524] loop1: detected capacity change from 0 to 1024
[  124.649891][ T8524] ext4 filesystem being mounted at /362/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  124.689871][ T8524] netlink: 'syz.1.1738': attribute type 21 has an invalid length.
[  124.707438][ T8524] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1738'.
[  124.751597][ T8531] siw: device registration error -23
[  124.761506][   T31] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  124.782793][   T31] EXT4-fs (loop1): Remounting filesystem read-only
[  124.791366][   T60] EXT4-fs warning (device loop1): ext4_convert_unwritten_extents:4940: inode #15: block 1: len 15: ext4_ext_map_blocks returned -30
[  124.801542][ T8533] loop2: detected capacity change from 0 to 164
[  124.830202][ T8533] iso9660: Corrupted directory entry in block 4 of inode 1792
[  124.890731][ T8538] loop2: detected capacity change from 0 to 2048
[  124.917560][ T8541] lo speed is unknown, defaulting to 1000
[  125.004766][ T8549] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1748'.
[  125.060347][ T8562] bridge0: port 2(bridge_slave_1) entered disabled state
[  125.067580][ T8562] bridge0: port 1(bridge_slave_0) entered disabled state
[  125.075208][ T8562] bridge0: entered promiscuous mode
[  125.076693][ T8563] netlink: 256 bytes leftover after parsing attributes in process `syz.4.1750'.
[  125.080467][ T8562] bridge0: entered allmulticast mode
[  125.101671][ T8562] bridge0: port 2(bridge_slave_1) entered blocking state
[  125.108864][ T8562] bridge0: port 2(bridge_slave_1) entered forwarding state
[  125.116218][ T8562] bridge0: port 1(bridge_slave_0) entered blocking state
[  125.123312][ T8562] bridge0: port 1(bridge_slave_0) entered forwarding state
[  125.144138][ T8560] loop1: detected capacity change from 0 to 512
[  125.176717][ T8563] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1750'.
[  125.192065][ T8560] EXT4-fs (loop1): 1 orphan inode deleted
[  125.204682][ T8560] ext4 filesystem being mounted at /364/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  125.216390][   T31] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:1: Failed to release dquot type 1
[  125.249314][ T8560] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  125.280972][ T8578] netlink: 256 bytes leftover after parsing attributes in process `syz.5.1756'.
[  125.300047][ T8580] loop2: detected capacity change from 0 to 512
[  125.329487][ T8580] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  125.345615][ T8578] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1756'.
[  125.371788][ T8580] ext4 filesystem being mounted at /321/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  125.531252][ T8604] bridge0: port 2(bridge_slave_1) entered disabled state
[  125.538405][ T8604] bridge0: port 1(bridge_slave_0) entered disabled state
[  125.553697][ T8602] veth1_macvtap: left promiscuous mode
[  125.559386][ T8602] macsec0: entered allmulticast mode
[  125.566796][ T8604] bridge0: port 2(bridge_slave_1) entered blocking state
[  125.573974][ T8604] bridge0: port 2(bridge_slave_1) entered forwarding state
[  125.581378][ T8604] bridge0: port 1(bridge_slave_0) entered blocking state
[  125.588474][ T8604] bridge0: port 1(bridge_slave_0) entered forwarding state
[  125.609017][ T8602] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1762'.
[  125.628940][ T8602] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1762'.
[  125.682085][ T8611] loop2: detected capacity change from 0 to 2048
[  125.689218][ T8613] FAULT_INJECTION: forcing a failure.
[  125.689218][ T8613] name failslab, interval 1, probability 0, space 0, times 0
[  125.702536][ T8613] CPU: 0 UID: 0 PID: 8613 Comm: syz.4.1767 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  125.702561][ T8613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  125.702592][ T8613] Call Trace:
[  125.702599][ T8613]  <TASK>
[  125.702605][ T8613]  __dump_stack+0x1d/0x30
[  125.702651][ T8613]  dump_stack_lvl+0xe8/0x140
[  125.702672][ T8613]  dump_stack+0x15/0x1b
[  125.702690][ T8613]  should_fail_ex+0x265/0x280
[  125.702795][ T8613]  should_failslab+0x8c/0xb0
[  125.702816][ T8613]  kmem_cache_alloc_node_noprof+0x57/0x320
[  125.702846][ T8613]  ? __alloc_skb+0x101/0x320
[  125.702909][ T8613]  __alloc_skb+0x101/0x320
[  125.702965][ T8613]  netlink_alloc_large_skb+0xba/0xf0
[  125.703008][ T8613]  netlink_sendmsg+0x3cf/0x6b0
[  125.703028][ T8613]  ? __pfx_netlink_sendmsg+0x10/0x10
[  125.703047][ T8613]  __sock_sendmsg+0x142/0x180
[  125.703136][ T8613]  ____sys_sendmsg+0x31e/0x4e0
[  125.703254][ T8613]  ___sys_sendmsg+0x17b/0x1d0
[  125.703302][ T8613]  __x64_sys_sendmsg+0xd4/0x160
[  125.703325][ T8613]  x64_sys_call+0x2999/0x2fb0
[  125.703403][ T8613]  do_syscall_64+0xd2/0x200
[  125.703520][ T8613]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  125.703549][ T8613]  ? clear_bhb_loop+0x40/0x90
[  125.703645][ T8613]  ? clear_bhb_loop+0x40/0x90
[  125.703669][ T8613]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.703692][ T8613] RIP: 0033:0x7f5ed8a7e9a9
[  125.703708][ T8613] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  125.703726][ T8613] RSP: 002b:00007f5ed70df038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  125.703743][ T8613] RAX: ffffffffffffffda RBX: 00007f5ed8ca5fa0 RCX: 00007f5ed8a7e9a9
[  125.703769][ T8613] RDX: 0000000020000004 RSI: 0000200000000040 RDI: 0000000000000004
[  125.703780][ T8613] RBP: 00007f5ed70df090 R08: 0000000000000000 R09: 0000000000000000
[  125.703791][ T8613] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  125.703802][ T8613] R13: 0000000000000000 R14: 00007f5ed8ca5fa0 R15: 00007ffe9c1e9818
[  125.703820][ T8613]  </TASK>
[  125.931128][ T8618] netlink: 256 bytes leftover after parsing attributes in process `syz.3.1768'.
[  126.090544][ T8635] loop4: detected capacity change from 0 to 164
[  126.228327][ T8645] syzkaller1: entered promiscuous mode
[  126.233865][ T8645] syzkaller1: entered allmulticast mode
[  126.397817][ T8652] loop4: detected capacity change from 0 to 1024
[  126.420537][ T2995] ==================================================================
[  126.428666][ T2995] BUG: KCSAN: data-race in set_nlink / set_nlink
[  126.435037][ T2995] 
[  126.437362][ T2995] read to 0xffff88810696a518 of 4 bytes by task 3762 on cpu 0:
[  126.444906][ T2995]  set_nlink+0x29/0xb0
[  126.448997][ T2995]  kernfs_iop_permission+0x1e2/0x220
[  126.454294][ T2995]  inode_permission+0x1ca/0x310
[  126.459148][ T2995]  link_path_walk+0x162/0x900
[  126.463831][ T2995]  path_openat+0x1de/0x2170
[  126.468338][ T2995]  do_filp_open+0x109/0x230
[  126.472860][ T2995]  do_sys_openat2+0xa6/0x110
[  126.477446][ T2995]  __x64_sys_openat+0xf2/0x120
[  126.482207][ T2995]  x64_sys_call+0x1af/0x2fb0
[  126.486790][ T2995]  do_syscall_64+0xd2/0x200
[  126.491284][ T2995]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.497173][ T2995] 
[  126.499487][ T2995] write to 0xffff88810696a518 of 4 bytes by task 2995 on cpu 1:
[  126.507114][ T2995]  set_nlink+0x99/0xb0
[  126.511186][ T2995]  kernfs_iop_permission+0x1e2/0x220
[  126.516472][ T2995]  inode_permission+0x1ca/0x310
[  126.521318][ T2995]  link_path_walk+0x162/0x900
[  126.525989][ T2995]  path_lookupat+0x63/0x2a0
[  126.530496][ T2995]  filename_lookup+0x147/0x340
[  126.535257][ T2995]  vfs_statx+0x9d/0x390
[  126.539408][ T2995]  vfs_fstatat+0x115/0x170
[  126.543821][ T2995]  __se_sys_newfstatat+0x55/0x260
[  126.548853][ T2995]  __x64_sys_newfstatat+0x55/0x70
[  126.553891][ T2995]  x64_sys_call+0x2c22/0x2fb0
[  126.558579][ T2995]  do_syscall_64+0xd2/0x200
[  126.563081][ T2995]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.568968][ T2995] 
[  126.571276][ T2995] value changed: 0x00000009 -> 0x00000008
[  126.576981][ T2995] 
[  126.579290][ T2995] Reported by Kernel Concurrency Sanitizer on:
[  126.585428][ T2995] CPU: 1 UID: 0 PID: 2995 Comm: udevd Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  126.595314][ T2995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  126.605363][ T2995] ==================================================================
[  126.624738][ T8659] loop2: detected capacity change from 0 to 512
[  126.644305][ T8659] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -13
[  126.654734][ T8652] ext4 filesystem being mounted at /412/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  126.685687][ T8659] EXT4-fs error (device loop2): ext4_orphan_get:1393: inode #13: comm syz.2.1782: iget: bad i_size value: 12154757448730
[  126.730352][ T8659] EXT4-fs (loop2): Remounting filesystem read-only
[  126.738359][   T60] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  126.755710][   T60] EXT4-fs (loop4): Remounting filesystem read-only
[  126.762625][ T3475] EXT4-fs warning (device loop4): ext4_convert_unwritten_extents:4940: inode #15: block 1: len 15: ext4_ext_map_blocks returned -30