last executing test programs:

13.523982076s ago: executing program 2 (id=1355):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'xfrm0\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000000000000000000000950000000000000033b2084a5504b3c6566f57a7ee6120a7f2b7a5cadc217d4c5d9158043633c6e037a2384b41"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x60, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='scsi_dispatch_cmd_start\x00', r2, 0x0, 0x2}, 0x18)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xd, 0x0, 0x0, 0x8000}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r5}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='kvm_dirty_ring_push\x00', r4, 0x0, 0x80000001}, 0x18)
r6 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r6, 0x29, 0x36, &(0x7f0000001440)=ANY=[], 0xc0)
setsockopt$inet6_IPV6_RTHDR(r6, 0x29, 0x39, 0x0, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000740)='scsi_dispatch_cmd_start\x00', r7}, 0x10)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000040)={'vcan0\x00'})
write$tun(0xffffffffffffffff, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"], 0xfce)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x18)
r8 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$VT_RESIZE(r8, 0x5609, &(0x7f0000000080)={0x8, 0x4690, 0x4})
pipe(&(0x7f00000002c0)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
fsetxattr$security_selinux(r9, &(0x7f00000000c0), &(0x7f0000000040)='system_u:object_r:dhcp_state_t:s0\x00', 0x1e, 0x0)
sendmsg$RDMA_NLDEV_CMD_RES_MR_GET(r9, &(0x7f0000000840)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2844d4b468d60e1b}, 0xc, &(0x7f0000000800)={&(0x7f00000007c0)={0x28, 0x140d, 0x2, 0x70bd28, 0x25dfdbff, "", [@RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x4}, @RDMA_NLDEV_ATTR_RES_MRN={0x8}, @RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x10)
connect$vsock_stream(r9, &(0x7f00000002c0)={0x28, 0x0, 0x0, @hyper}, 0x10)
syz_open_dev$mouse(&(0x7f0000000880), 0xf2b, 0x107001)
r10 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TCSETSW2(r10, 0x402c542c, &(0x7f00000002c0)={0x89, 0x0, 0xfffc0000, 0x981, 0x47, "0436780000000000dd9acaec29002000", 0x5, 0x800200})
ioctl$TIOCSTI(r10, 0x5412, &(0x7f0000000180)=0x4)

13.169734894s ago: executing program 2 (id=1361):
set_mempolicy(0x6005, &(0x7f0000000080)=0xfffffffffffffffd, 0x4)
syz_clone(0x42000000, 0x0, 0x0, 0x0, 0x0, 0x0)

13.083544902s ago: executing program 2 (id=1363):
chdir(&(0x7f0000000480)='./cgroup\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x0, 0x0)
open_by_handle_at(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="08000000020001009a"], 0x0)
r1 = openat$selinux_member(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001080)=ANY=[@ANYRES16=r2], 0x50)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000900)={{r3}, &(0x7f0000000880), &(0x7f00000008c0)='%ps    \x00'}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x12, 0x8, 0x4, 0x7cb4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000900)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000580)='kfree\x00', r4}, 0x18)
unshare(0x64000600)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000680)=ANY=[@ANYBLOB="0df851de93b17ab477e128d36a1dbc2bcec8765dd61eb05ab2637e87d14473429fae7f1728d8a787930ec40d0000005f713dc33d56e2b61c263410a9f5be91f50109a0d2ac8b6c8e82d405abc6907b486eb01ef20e84f2489f7326d5734260b5a65912f834", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kmem_cache_free\x00', r6}, 0x10)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
set_mempolicy_home_node(&(0x7f0000146000/0x1000)=nil, 0x1000, 0x0, 0x0)
write$selinux_access(r1, &(0x7f0000000b00)=ANY=[@ANYBLOB="73797374656d5f753a6f62947577eefd258c75ea897556a06a6563745f723a6770675f6167656e745f657865635f743a73302075"], 0x46)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000c40)={&(0x7f0000000640)=ANY=[@ANYRESDEC=r6], 0x0, 0x29, 0x0, 0x1}, 0x28)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000850000000f00000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
mount(&(0x7f0000000000)=@filename='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)='nfs4\x00', 0x14050, &(0x7f00000001c0)='$\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r7}, 0x10)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000002180)='blkio.bfq.io_merged\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r8, 0x0)

12.790500515s ago: executing program 2 (id=1364):
r0 = socket$kcm(0x10, 0x2, 0x0)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r0, 0x8982, 0x0)
sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73f72cc9f0ba1f848140000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
r1 = socket$kcm(0x10, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="5e04000000ff00000000000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
uname(0x0)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000040)="2e00000010008108040f80ecdb4cb92e0a480e000f000000e8bd6efb250314000e000100240248ff05000500", 0x2c}, {&(0x7f00000019c0)="06bb", 0x2}], 0x2}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
io_uring_register$IORING_REGISTER_MEM_REGION(0xffffffffffffffff, 0x22, 0x0, 0x1)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x1208002, &(0x7f0000000100)={[{@grpquota}, {@delalloc}, {@resuid}, {@debug}, {@dioread_nolock}, {}, {@nomblk_io_submit}, {@noauto_da_alloc}]}, 0x1, 0x5d8, &(0x7f00000005c0)="$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")
lchown(&(0x7f00000006c0)='./file0\x00', 0x0, 0xee01)

12.422607855s ago: executing program 2 (id=1367):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014800000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r2, 0x1, 0xf, &(0x7f0000000000)=0x6, 0x4)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x33, &(0x7f0000000040)={0x1, &(0x7f00000001c0)=[{0x6, 0x4, 0x8, 0xa}]}, 0x10)

12.296654525s ago: executing program 2 (id=1370):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={<r0=>0xffffffffffffffff})
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15) (async)
r1 = dup(r0)
pipe2(&(0x7f0000000180)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000100), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3, @ANYBLOB])
splice(r2, 0x0, r1, 0x0, 0x4000000000000091, 0x4)
socket$kcm(0x2, 0x1000000000000002, 0x0) (async)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
socket$inet_sctp(0x2, 0x1, 0x84)
ioprio_set$pid(0x3, 0x0, 0x0)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000000), 0x103902, 0x0) (async)
r4 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xec25, 0x400, 0x1, 0x40000333}, &(0x7f00000006c0)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000040)=[{0x0}, {0x0}], 0x2}) (async)
io_uring_enter(r4, 0x847ba, 0x0, 0xe, 0x0, 0x0) (async)
openat$tun(0xffffffffffffff9c, 0x0, 0x1c1341, 0x0) (async)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3c, &(0x7f0000000240)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
r8 = socket$kcm(0x10, 0x2, 0x0) (async)
r9 = socket$inet6(0xa, 0x1, 0x0) (async)
r10 = syz_io_uring_setup(0x8d3, &(0x7f00000000c0)={0x0, 0x951a, 0x4000, 0x0, 0xfffffffe}, &(0x7f0000000040)=<r11=>0x0, &(0x7f00000001c0)=<r12=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r11, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) (async)
syz_io_uring_submit(r11, r12, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r9, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="10000000000000000100000001"], 0xe8}, 0x0, 0x24040092})
io_uring_enter(r10, 0x47ba, 0x3e80, 0x0, 0x0, 0x0) (async)
r13 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r13, 0x84, 0x7b, &(0x7f0000000300)={0x0, 0x3}, 0x8)
r14 = dup(r13)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r14, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @loopback, 0x3}], 0x1c)
sendmsg$inet6(r13, &(0x7f0000000100)={&(0x7f0000000080)={0xa, 0x4e24, 0x8, @loopback, 0x4}, 0x1c, &(0x7f0000000380)=[{&(0x7f0000000140)="88", 0x1}], 0x1}, 0x0) (async)
sendmsg$kcm(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f848290000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x80)

1.577832762s ago: executing program 3 (id=1609):
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000540))
flistxattr(0xffffffffffffffff, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x10)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000b80)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0xffffffff}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xf, &(0x7f0000000440)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)={0x2, 0x13, 0x0, 0x0, 0x2, 0x0, 0x100}, 0x10}}, 0x0)

1.520523437s ago: executing program 3 (id=1612):
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
getrandom(0x0, 0x0, 0x3)
munlockall()
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000840)={0x0, {0x2, 0x0, @broadcast}, {0x4, 0x4e24, @loopback}, {0x2, 0x0, @remote}, 0x184, 0x0, 0x0, 0xfdffffffffffffff, 0x4, &(0x7f0000000180)='lo\x00', 0x0, 0x0, 0x6})
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000001000000000000000000851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000100006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000a80)='kfree\x00', r1, 0x0, 0xfffffffffffffffd}, 0x18)
r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/sys/net/ipv4/vs/sync_persist_mode\x00', 0x2, 0x0)
statx(r2, 0x0, 0x7d00, 0x3ff7a9721f23b969, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000001c0)={'sit0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=@newqdisc={0x12c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r4, {0x0, 0x6}, {0x6, 0xffff}}, [@TCA_EGRESS_BLOCK={0x8, 0xe, 0x7fff}, @TCA_STAB={0x100, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x7, 0x7, 0x2, 0x0, 0x2, 0x5, 0xfffffffa, 0x5}}, {0xe, 0x2, [0x8, 0xf, 0x437, 0x8, 0x3]}}, {{0x1c, 0x1, {0x62, 0x8, 0xf, 0x9, 0x1, 0x2, 0x6, 0x9}}, {0x16, 0x2, [0x0, 0x0, 0x9, 0x1, 0x2, 0x8, 0x7ff, 0x7fff, 0x2d0]}}, {{0x1c, 0x1, {0x3, 0x7, 0x0, 0x10000, 0x2, 0x96, 0x0, 0x6}}, {0x10, 0x2, [0xe, 0xaa30, 0x5, 0x5, 0x9, 0xa850]}}, {{0x1c, 0x1, {0x80, 0x3, 0x6, 0x6d4a, 0x2, 0xc17, 0xfffff2a8, 0x4}}, {0xc, 0x2, [0x8, 0x4, 0xc, 0x3]}}, {{0x1c, 0x1, {0x1, 0x8, 0x401, 0x0, 0x1, 0xe, 0xd8, 0x2}}, {0x8, 0x2, [0x4, 0xc70]}}, {{0x1c, 0x1, {0xc, 0x4, 0x9, 0xaf, 0x1, 0x8000, 0x2747, 0x2}}, {0x8, 0x2, [0x7, 0xef99]}}]}]}, 0x12c}, 0x1, 0x0, 0x0, 0x48801}, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r0, 0x89f8, &(0x7f0000000140)={'syztnl1\x00', &(0x7f00000006c0)={'ip_vti0\x00', r4, 0x700, 0x80, 0x80000001, 0x7, {{0xb, 0x4, 0x0, 0x2a, 0x2c, 0x66, 0x0, 0x3, 0x2f, 0x0, @empty, @rand_addr=0x64010102, {[@lsrr={0x83, 0x17, 0x40, [@initdev={0xac, 0x1e, 0x0, 0x0}, @loopback, @rand_addr=0x64010102, @multicast1, @loopback]}]}}}}})
r5 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
write$UHID_CREATE2(r5, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
r6 = syz_open_dev$hidraw(&(0x7f00000004c0), 0x0, 0x14a042)
socket(0x1e, 0x4, 0x0)
r7 = dup(r6)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r7, 0x8983, &(0x7f0000000100)={0x0, 'ip6_vti0\x00', {0x2}, 0x3})
fsmount(0xffffffffffffffff, 0x0, 0x5)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r7, 0x0, 0xff2, 0x5d, &(0x7f0000000ac0)="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", &(0x7f0000000200)=""/93, 0x0, 0x0, 0x7e, 0x65, &(0x7f0000000280)="f1e4096016ace525a6025202992405035e55714343b9c18bef210ac2671b454284dd01fb861846ed51feea066f417bfafb6e8e8a621f912226a303b14983da27598a799124f7d6a55c47391601af479ce50be22dcd372ff39a70c2eb12db214201db8b429ae8a75ab7be41176dfd805739dc22c54ae2685ae1264900efaf", &(0x7f0000000340)="dc20f11d5458a2b268fcf04a1746e62811a9db3254bc9c543435da32b55b44519db950490320473b932d07826aeeeae0dc3d80c67899cec8f253a7ce0e5ad5af461d8b927adf8007628b4e4718462bae4526aad0bc20f2a4f50bd01dfebe46d70355ebf328", 0x3, 0x0, 0x81}, 0x50)
ftruncate(0xffffffffffffffff, 0x2007ffb)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=@ipv4_newroute={0x2c, 0x1a, 0x1, 0x70bd27, 0x25dfdbf9, {0x2, 0x20, 0x20, 0xfe, 0x0, 0x0, 0x0, 0x0, 0x2000}, [@RTA_UID={0x8}, @RTA_MARK={0x8, 0x10, 0x3}]}, 0x2c}}, 0x48010)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1000000201005)

1.290159456s ago: executing program 1 (id=1616):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000040)={0x0, 0x7, 0xfa00, {0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r0, &(0x7f0000000280)={0x15, 0x110, 0xfa00, {r1, 0x0, 0x0, 0x30, 0x0, @ib={0x1b, 0x5, 0x200, {"0b05bbc5147b8b0000005c798ecdbb00"}, 0x5, 0x0, 0xffffffffffffff94}, @ib={0x1b, 0x0, 0xc, {"7d735931001016095e000303ff010001"}, 0x4, 0x40000000}}}, 0x118) (fail_nth: 1)

1.204923062s ago: executing program 1 (id=1618):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000040000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000040000008500000006000000850000005000000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x7a, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000340), &(0x7f0000000300)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901)
fchdir(r2)
close(r2)
shutdown(r2, 0x0)
ioctl$BLKSECDISCARD(r2, 0x127d, &(0x7f00000003c0)=0x10000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r1}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000700)='signal_generate\x00', r3}, 0x18)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000600)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000280)=0x14)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='qdisc_create\x00', r7}, 0x10)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffffff000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}, 0x1, 0x0, 0x0, 0xc000}, 0x0)

975.011791ms ago: executing program 1 (id=1620):
r0 = socket$kcm(0x10, 0x2, 0x0)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r0, 0x8982, &(0x7f0000000400)={0x0, 'batadv0\x00', {0xb}})
sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73f72cc9f0ba1f848140000005e140602000000000e000a", 0x23}], 0x1}, 0x0)
r1 = socket$kcm(0x10, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="5e04000000ff00000000000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
uname(0x0)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000040)="2e00000010008108040f80ecdb4cb92e0a480e000f000000e8bd6efb250314000e000100240248ff05000500", 0x2c}, {&(0x7f00000019c0)="06bb", 0x2}], 0x2}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
io_uring_register$IORING_REGISTER_MEM_REGION(0xffffffffffffffff, 0x22, 0x0, 0x1)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x1208002, &(0x7f0000000100)={[{@grpquota}, {@delalloc}, {@resuid}, {@debug}, {@dioread_nolock}, {}, {@nomblk_io_submit}, {@noauto_da_alloc}]}, 0x1, 0x5d8, &(0x7f00000005c0)="$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")
lchown(&(0x7f00000006c0)='./file0\x00', 0x0, 0xee01)

940.793644ms ago: executing program 0 (id=1621):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000000001000001"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x7}, 0x18)
sendmsg$nl_route(r0, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="240000001800090400000000000000000a000000000000030000000008001e0001"], 0x24}}, 0x0)

926.204945ms ago: executing program 3 (id=1622):
openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480), 0x4)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x5, @none, 0x0, 0x2}, 0xe)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x101, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x0, 0x2}, 0xe)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00'}, 0x18)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
sendmmsg$sock(0xffffffffffffffff, 0x0, 0x0, 0x40010)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$netlink(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000004fadbdf25250000000e0001006e657464657673696d3e98bd7f0002006e657464657673696d300000"], 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
unshare(0x2000400)
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
sendmsg$DEVLINK_CMD_RATE_NEW(r2, &(0x7f00000006c0)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000680)={&(0x7f00000005c0)={0x90, r4, 0x410, 0x70bd2a, 0x25dfdbfc, {}, [@DEVLINK_ATTR_RATE_TX_SHARE={0xc, 0xa6, 0x7fffffffffffffff}, @DEVLINK_ATTR_RATE_TX_SHARE={0xc, 0xa6, 0x8}, @DEVLINK_ATTR_RATE_NODE_NAME={0x4e, 0xa8, @random="5019a9faba96b0d7e38a8dae54d8374db1a5788139770fb2dd798411bc3f8218e2b538634026f135e15ec71be6f656a4993baa037a82623f3de0fd103217cab2a30afff941a4f8bcf7c5"}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x2}, @DEVLINK_ATTR_RATE_TX_SHARE={0xc, 0xa6, 0x2}]}, 0x90}}, 0x40040)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'lo\x00', <r6=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x60, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r6, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x34, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0x4, 0x2, 0x0, 0x0, 0x7, 0x8}, {0x12, 0x3, 0x0, 0x1, 0x1, 0x400}, 0xa5, 0x4, 0x10000000}}, @TCA_TBF_BURST={0x8, 0x6, 0x8057}]}}]}, 0x60}}, 0x44080)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000007c0)=@newtclass={0x7c, 0x28, 0x300, 0x70bd26, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0x6}, {0x5, 0xffe0}, {0xc, 0x6}}, [@tclass_kind_options=@c_cake={0x9}, @TCA_RATE={0x6, 0x5, {0xbf, 0x5}}, @TCA_RATE={0x6, 0x5, {0xa, 0x1}}, @TCA_RATE={0x6, 0x5, {0x8, 0x1}}, @TCA_RATE={0x6, 0x5, {0x5, 0x6}}, @tclass_kind_options=@c_cbs={0x8}, @tclass_kind_options=@c_tbf={0x8}, @TCA_RATE={0x6, 0x5, {0xc, 0x3}}, @tclass_kind_options=@c_multiq={0xb}, @TCA_RATE={0x6, 0x5, {0x5, 0x4}}]}, 0x7c}}, 0x4000)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x23}, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698d0a881c51852e4451b57d037ad3c045942824251d7d17b5191584bcd4fbe40a23424d", "bcfd56f1375461caaa2f19935e6996c7096ffeeb0300000000000064", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r8}, 0x10)
r9 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$PIO_UNIMAPCLR(r9, 0x4b68, 0x0)
ioctl$FS_IOC_ENABLE_VERITY(r7, 0x40806685, &(0x7f00000001c0)={0x1, 0x1, 0x1000, 0xcd, &(0x7f0000000280)="10114ca2d57797cd8ac90e309cc3088b293018a73ad254a4f89631f6d40ae5465c67f416886279deae7e3317543d5450bdf851cd8aa481d31b44d80b1b32de4869e39d224192a1a019287e1463af199f715eb93fb94779b5f34ea4785d7533da6c8f2e6d593174e8a960470a287daab7cf3cac86c6734d6fea3878f8bea448f2ca550da74dfc0a5501f7ed783802b347781dece7f80913fc41ac17079b2aab6cf13362ab6d04e931fcef298ca9c3214908a71ebbf5f2e75c34eaef878f34bfd70edb890249af6b67afc158ac0e", 0xb1, 0x0, &(0x7f0000000380)="321d2ccc4372a6ff5dc855a68a9c896200ef48a74ab0b70c41c4928f6ace210626978b88351222f98292ab216fe2577b3a4411964e799b62e465c08aaf32384996ac18f3d32d4b3a6d62e316e5c9a60b9e19dfc62d4eb6f68ead77cd39ed025e649604e4d125ba1fcf8134ec135cd8b8b14a37aee80b039fce636531b74353a4d8dcea47c0518bc2b2bfe7e92b70bc26b6dcd78f6c9ff40122d86fd3232a85682fdc830a73805f01b1a81e8f31f71e388a"})

924.526115ms ago: executing program 0 (id=1623):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x1, 0x6, 0x8, 0x8, 0x40}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)="0f30b3b1d7a78df57e4e8d21cfea81bae8e7d66f2e030a2bcd1cf709000000f7c2070000009268b292316cc9", &(0x7f0000000180), 0xce, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffff27}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_FLUSH(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="c0010000", @ANYRES16=r3, @ANYBLOB="010027bd0000fcdbdf2518"], 0x1c0}, 0x1, 0x0, 0x0, 0x20040080}, 0x0)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000700), 0x0)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
r6 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r6, 0x40089413, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r4, 0x4058534c, &(0x7f0000000000)={0x80, 0x0, {0x1, 0x2, 0xb, 0x0, 0xfffffffd}, 0xfffffffe})
syz_clone3(&(0x7f0000000640)={0x4000000, &(0x7f0000000300), &(0x7f0000000340), &(0x7f0000000380), {0x6}, &(0x7f00000004c0)=""/189, 0xbd, &(0x7f0000000580)=""/96, &(0x7f0000000600)=[0x0], 0x1}, 0x58)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='module_request\x00'}, 0x10)
socketpair(0x3, 0xa, 0x0, &(0x7f0000000040))
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000001000010028bd70000000000000000000", @ANYRES32=0x0, @ANYBLOB="6cf2040000000000140003006e657464657673696d30000000000000200016801c00018018000c80140001000700000037050000010000008100000008000a00", @ANYRES32=0x0, @ANYBLOB="e1e17898a0dc65343895d618d4047beedaf08e86b8b589e70562c9c7840fb99736f1ea1b4cff8d0e7950c3a3afa980170d51657b431dad40bdc74c41abdf27d870916d11af8af4e0ae1e61286a2788535134f08958ce8e52f84e5e8cfae7b88e5e15eb61c6a74f44ed585eefec511278a5d34bbf9843fd82be275399f121e4701ca8159e22656f1fa884d2e1d068654a7a1c3f446b8e28598bc0eef83d4ee1ea2c017ac6f8a08fb4474470be9f79d8dc"], 0x5c}, 0x1, 0x0, 0x0, 0x4090}, 0x40)

914.856066ms ago: executing program 1 (id=1624):
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = openat(0xffffffffffffff9c, 0x0, 0x42, 0x1ff)
close(r1)
execveat(0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x0)
socket$xdp(0x2c, 0x3, 0x0)
openat$random(0xffffffffffffff9c, 0x0, 0x40800, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000000100000100000028"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x7}, 0x18)
unlink(0x0)
sendmsg$nl_route(r0, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="240000001800090400000000000000000a000000000000030000000008001e0001"], 0x24}}, 0x0)

898.851677ms ago: executing program 1 (id=1625):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x90, 0x4, 0x8, 0x5, 0x0, 0x0, {0x3, 0x0, 0x3}, [@CTA_TIMEOUT_DATA={0x24, 0x4, 0x0, 0x1, @icmp=[@CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x7ff}, @CTA_TIMEOUT_ICMP_TIMEOUT={0x8}, @CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x6}, @CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x3ff}]}, @CTA_TIMEOUT_DATA={0xc, 0x4, 0x0, 0x1, @udp=[@CTA_TIMEOUT_UDP_REPLIED={0x8, 0x2, 0x1, 0x0, 0x40}]}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x6558}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x1}, @CTA_TIMEOUT_DATA={0xc, 0x4, 0x0, 0x1, @sctp=[@CTA_TIMEOUT_SCTP_COOKIE_WAIT={0x8, 0x2, 0x1, 0x0, 0x10001}]}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x6003}, @CTA_TIMEOUT_DATA={0x1c, 0x4, 0x0, 0x1, @udp=[@CTA_TIMEOUT_UDP_REPLIED={0x8, 0x2, 0x1, 0x0, 0x3ff}, @CTA_TIMEOUT_UDP_UNREPLIED={0x8}, @CTA_TIMEOUT_UDP_REPLIED={0x8, 0x2, 0x1, 0x0, 0xe5}]}, @CTA_TIMEOUT_DATA={0xc, 0x4, 0x0, 0x1, @tcp=[@CTA_TIMEOUT_TCP_SYN_SENT2={0x8, 0x9, 0x1, 0x0, 0x8}]}]}, 0x90}, 0x1, 0x0, 0x0, 0x8040}, 0x2044000) (async, rerun: 64)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'pimreg1\x00'}) (rerun: 64)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021100011800c000100636f756e746572009c0000000c0a01010000000000000000070000000900020073797a31000000000900010073797a3000000000700003806c000080080003400000000260000b"], 0x130}, 0x1, 0x0, 0x0, 0x8000}, 0x8880)

861.06289ms ago: executing program 3 (id=1626):
ioctl$PPPIOCNEWUNIT(0xffffffffffffffff, 0xc004743e, &(0x7f0000000000)=0x3)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
timer_create(0x5, &(0x7f0000000000)={0x0, 0x3, 0x0, @thr={&(0x7f0000000380), &(0x7f0000001080)="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"}}, &(0x7f0000000040))
clock_gettime(0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x14, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x64, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x10000, 0x1}, 0x8002, 0x0, 0x1003, 0x2, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
r1 = creat(&(0x7f0000010280)='./file0\x00', 0x182)
mount(&(0x7f00000001c0), &(0x7f0000000440)='./file0\x00', &(0x7f0000000200)='9p\x00', 0x0, &(0x7f0000000900)='trans=tcp,')
sendmmsg(0xffffffffffffffff, &(0x7f0000007fc0), 0x800001d, 0x0)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000040)={0x100000011, @multicast2, 0x0, 0x0, 'wlc\x00', 0x15, 0x88, 0xc000067}, 0x2c)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffff"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000400), 0x5, r2, 0x4}, 0x38)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000002080)=ANY=[@ANYBLOB="0088"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3, 0x0, 0x2}, 0x18)
ustat(0x3, 0x0)
r4 = shmget$private(0x0, 0x4000, 0x1000, &(0x7f0000ffb000/0x4000)=nil)
shmat(r4, &(0x7f0000ffc000/0x4000)=nil, 0x5000)
mlockall(0x3)
shmat(r4, &(0x7f0000ffd000/0x2000)=nil, 0x5000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00', r0}, 0x10)
r5 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
ioctl$PPPIOCSDEBUG(0xffffffffffffffff, 0x40047440, 0x0)
getdents64(0xffffffffffffffff, &(0x7f0000002f40)=""/4098, 0x1002)

820.555853ms ago: executing program 4 (id=1627):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xf, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff0000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000340)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
capget(&(0x7f0000000200)={0x19980330}, 0x0)

820.247814ms ago: executing program 4 (id=1628):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
get_robust_list(0x0, &(0x7f0000000480)=0x0, &(0x7f00000004c0))

763.660788ms ago: executing program 4 (id=1629):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014800000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r2, 0x1, 0xf, &(0x7f0000000000)=0x6, 0x4)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x33, 0x0, 0x0)

749.62517ms ago: executing program 0 (id=1630):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000800030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0xc4}, 0x890)
sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000880)=ANY=[@ANYRES16=r0], 0x64}, 0x1, 0x0, 0x0, 0x20000800}, 0x4004000)
sendmsg$NFT_MSG_GETOBJ(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYBLOB="34000000150a03000000000000000000020000000900020073797a31000000000800034000"], 0x34}}, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000004c0)={'ip6tnl0\x00', &(0x7f0000000740)={'syztnl1\x00', <r2=>0x0, 0x29, 0x0, 0x2, 0x0, 0x9, @empty, @rand_addr=' \x01\x00', 0x21e37ef8dc87fab9, 0x7, 0x202, 0x9}})
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a999850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f0000000600)={'ip6_vti0\x00', 0x0})
setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, &(0x7f00000004c0)={&(0x7f00000001c0)=""/114, 0x28000, 0x800, 0x80, 0x2}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0b00000005000000010001000900000001"], 0x48)
r5 = syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000a00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002000000000000001600000095", @ANYBLOB="6d9565357c778515c2aaccde8b296beb506ff17cbb650fba748d1e8d2a05c75bba87bd9773a17521babbc77ebc2b65c50d346011906561d17412947d8188bf80779a9c04a78d2a539aecbe8dca86477d39998b40bee63622d66b1379dd969b78e14817ad399a620e4ecd8a646b63ef9dfc98481b915a", @ANYRES64=r5, @ANYRES8=0x0, @ANYRES16=r2, @ANYRES32=r7, @ANYRES16=r4, @ANYRES32=r2, @ANYRES32=r6], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r8}, 0x10)
io_setup(0xfbd, &(0x7f00000002c0)=<r9=>0x0)
io_pgetevents(r9, 0x2, 0x2, &(0x7f0000001280)=[{}, {}], &(0x7f00000013c0), 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r10 = socket(0x10, 0x803, 0x0)
sendto(r10, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r10, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380), 0x0, &(0x7f0000000600)=""/191, 0xbf, 0xa1}}], 0x1, 0x2040000, &(0x7f0000003700)={0x77359400})
r11 = syz_open_dev$usbfs(&(0x7f0000003f00), 0x1ff, 0xa401)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r11, 0x8108551b, &(0x7f0000000000)={0x0, 0x0, "ec9fe44d4dbe56a60274fcffffffffffffff14e315eeb406bfdd73835e57efa94b1a0275781c647aa7e3470c6028643b17832b10b386a6f73791011c26a9aa141f406e312295ee620a9a46577b9249b738fe7750bec83bf6ed5b67213fa7d6c0823fd154ed29ede1ff379742c3f0b46caa357d70ee438f901d7645c3f87e4b21482b76f2ad8eaac090272081f98fd2e3e5a63e008104df635e731a5bfcd942f4529517454618de595cd179445b4bdbf698b9986356f0ebf7d25a57774ef474f86a3ad24ae9f0bf94b99e6b87de5f79d383d05bb32701daed400785a49788f08caecc9e0c48a3740bbe6e1c1fd4f6cfdfe756bc00d08e36655c00"})
ioctl$USBDEVFS_CONTROL(r11, 0xc0185500, &(0x7f00000004c0)={0x2, 0x0, 0x4, 0x1, 0xfc28, 0x5, 0x0})
r12 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f00000000c0)={'tunl0\x00', <r13=>0x0})
r14 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r14, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000540)=ANY=[@ANYBLOB="4000000010001fff000000000000000000060000", @ANYRES32=0x0, @ANYBLOB="81ffffff00000000180012800e0001007769726567756172640000000400028008000a00", @ANYRES32=r13, @ANYBLOB="b68e789dcb760c2b8ceb133b1c74ab70bcf45eb1afab"], 0x40}}, 0x0)

543.988356ms ago: executing program 4 (id=1631):
chdir(&(0x7f0000000480)='./cgroup\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x0, 0x0)
open_by_handle_at(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="08000000020001009a"], 0x0)
r1 = openat$selinux_member(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001080)=ANY=[@ANYRES16=r2], 0x50)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000900)={{r3}, &(0x7f0000000880), &(0x7f00000008c0)='%ps    \x00'}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x12, 0x8, 0x4, 0x7cb4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000900)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000580)='kfree\x00', r5}, 0x18)
unshare(0x64000600)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000680)=ANY=[@ANYBLOB="0df851de93b17ab477e128d36a1dbc2bcec8765dd61eb05ab2637e87d14473429fae7f1728d8a787930ec40d0000005f713dc33d56e2b61c263410a9f5be91f50109a0d2ac8b6c8e82d405abc6907b486eb01ef20e84f2489f7326d5734260b5a65912f834", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kmem_cache_free\x00', r7}, 0x10)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
set_mempolicy_home_node(&(0x7f0000146000/0x1000)=nil, 0x1000, 0x0, 0x0)
write$selinux_access(r1, &(0x7f0000000b00)=ANY=[@ANYBLOB="73797374656d5f753a6f62947577eefd258c75ea897556a06a6563745f723a6770675f6167656e745f657865635f743a73302075"], 0x46)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000c40)={&(0x7f0000000640)=ANY=[@ANYRESDEC=r7], 0x0, 0x29, 0x0, 0x1}, 0x28)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000850000000f00000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
mount(&(0x7f0000000000)=@filename='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)='nfs4\x00', 0x14050, &(0x7f00000001c0)='$\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r8}, 0x10)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000002180)='blkio.bfq.io_merged\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r9, 0x0)

223.243752ms ago: executing program 3 (id=1632):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000f1ffffff0000000000100000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000780)='mm_page_free\x00', r1}, 0x18)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x42073, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x1, 0x0, 0xfffe}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x30, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x4}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_USERDATA={0x4}]}], {0x14}}, 0x78}}, 0x4000040)

213.001953ms ago: executing program 0 (id=1633):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', 0xffffffffffffffff, 0x0, 0xfffffffffffff001}, 0x18)
kexec_load(0x4, 0xa, 0x0, 0x0)

182.145595ms ago: executing program 0 (id=1634):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000000001000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b7000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x7}, 0x18)
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000280)={'\x00', 0x7e, 0xffffffae, 0x5c8, 0x80000003, 0x6})

180.967656ms ago: executing program 3 (id=1635):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x4000, &(0x7f0000000640), 0x2, 0xbb8, &(0x7f00000017c0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./bus\x00', 0x42, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r0}, 0x4)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x1b, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x6, 0x4, 0x7, 0x8}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r6}, 0x10)
socket$inet6_mptcp(0xa, 0x1, 0x106)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000001480)=ANY=[@ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32, @ANYBLOB="002998443900000000e700000000006e848d4f1626c5c973f1000000"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000700200018120000", @ANYRES32=r8, @ANYBLOB="0000000000000000b703000000000000850000001b000000b7000000000000009500000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x6, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$nl_route_sched(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {0xf}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x0, 0x0, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x40080}, 0x4000c00)
ioctl$sock_inet_SIOCSARP(r1, 0x8955, &(0x7f0000000380)={{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x16}}, {0x0, @broadcast}, 0x2, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1}}, 'vlan0\x00'})
recvfrom$unix(0xffffffffffffffff, &(0x7f0000000040)=""/120, 0x78, 0x0, &(0x7f00000000c0)=@file={0x0, './file0\x00'}, 0x6e)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
socket$key(0xf, 0x3, 0x2)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x1018e58, &(0x7f00000002c0)={[{@nodioread_nolock}, {@minixdf}, {@data_err_ignore}, {@max_batch_time={'max_batch_time', 0x3d, 0x8c9}}, {@nodiscard}, {@inlinecrypt}, {@i_version}, {@test_dummy_encryption}]}, 0x6, 0x5fe, &(0x7f0000000c40)="$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")

137.138209ms ago: executing program 4 (id=1636):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, 0x0, &(0x7f0000003ff6)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000080000000000000000000850000007d00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$nl_route(0x10, 0x3, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket(0x10, 0x3, 0x6)
r3 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000040)={'team0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x88, 0x24, 0xf0b, 0x70bd26, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0xffff}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x2, [], 0x0, [0x4, 0x2, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c4, 0x0, 0x0, 0x0, 0x3dc], [0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000]}}}}]}, 0x88}}, 0x20000000)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {0xf}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x0, 0x0, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x40080}, 0x4000c00)

108.553151ms ago: executing program 0 (id=1637):
r0 = socket$inet6(0xa, 0x5, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x8037fffc, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c)

88.273043ms ago: executing program 4 (id=1638):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4000, &(0x7f0000000c00)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@mblk_io_submit}, {@resuid}, {@norecovery}]}, 0x8, 0x445, &(0x7f0000001dc0)="$eJzs28tvG0UYAPBv105KX8RU5dEHECiIikfSpKX0wAEQSBxAQoJDOYYkrUrdBjVBolUFBaFyRJW4I45I/AWc4IKAExJX4IwqVSiXFk5Ga+82jmunSbDrEP9+0tYzu+POfJ4de3YnG8DAGs3+SSJ2RMRvETHSyC4vMNp4ubF4cfrvxYvTSdRqb/6V1MtdX7w4XRQt3re9yJQj0k+T2Nem3vnzF05PVauz5/L8+MKZ98bnz1945tSZqZOzJ2fPTh47duTwxHNHJ5/tSpxZXNf3fji3f8+rb195ffr4lXd++iYp4m+Jo0tG2+4tN14er9W6XF1/7WxKJ+U+NoQ1KeWn5FB9/I9EKZY6byRe+aSvjQN6qlar1e7rfPhSDdjEkuh3C4D+KH7os+vfYrtDU48N4dqLjQugLO4b+dY4Uo40LzPUcn3bTaMRcfzSP19mW7Teh9jao0oBgIH2XTb/ebrd/C+N5vtCd+drKJWIuCcidkXE0YjYHRH3RtTL3h8RD6yx/tZFklvnn+nVdQW2Stn87/l8bWv5/K+Y/UWllOd21uMfSk6cqs4eyj+TgzG0JctPrFDH9y//+nmnY83zv2zL6i/mgnk7rpa3LH/PzNTC1H+Judm1jyP2ltvFn9xcCUgiYk9EvLDOOk49+fX+Tsc6xD+8qv+4C+tMta8inmj0/6Voib+QrLw+OX5XVGcPjRdnxa1+/uXyG53qv33/91bW/9vanv9F/H9Ukub12vm113H59886XlOu9/wfTt5atu+DqYWFcxMRw8lr9Xylef9kS7nJpfJZ/AcPtB//u2Lpk9gXEdlJ/GBEPBQRD+dtfyQiHo2IAyvE/+NLj727/vh7K4t/ZsX+j5b+X0oMR+ue9onS6R++XVZpZS3xZ/1/pJ46mO9Zzfffatq1vrMZAAAA/n/SiNgRSTp2M52mY2ONv+HfHdvS6tz8wlMn5t4/O9N4RqASQ2lxp2uk6X7oRH5ZX+QnW/KH8/vGX5S21vNj03PVmX4HDwNue4fxn/mz1O/WAT3neS0YXMY/DC7jHwaX8Q+Dq8349+gZDIh2v/8f9aEdwJ3XMv5XXPYzMYDNxfU/DC7jHwaX8Q8DaX5r3P4h+c2RSCNiAzRjsyQi3RDNkOhRot/fTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAN3xbwAAAP//ynflmQ==")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
write(r1, &(0x7f00000009c0)="3bf58d", 0x3)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7fffeffd)
accept$inet(r1, 0x0, &(0x7f0000000080))

0s ago: executing program 1 (id=1639):
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4000, &(0x7f0000000c00)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@mblk_io_submit}, {@resuid}, {@norecovery}]}, 0x8, 0x445, &(0x7f0000001dc0)="$eJzs28tvG0UYAPBv105KX8RU5dEHECiIikfSpKX0wAEQSBxAQoJDOYYkrUrdBjVBolUFBaFyRJW4I45I/AWc4IKAExJX4IwqVSiXFk5Ga+82jmunSbDrEP9+0tYzu+POfJ4de3YnG8DAGs3+SSJ2RMRvETHSyC4vMNp4ubF4cfrvxYvTSdRqb/6V1MtdX7w4XRQt3re9yJQj0k+T2Nem3vnzF05PVauz5/L8+MKZ98bnz1945tSZqZOzJ2fPTh47duTwxHNHJ5/tSpxZXNf3fji3f8+rb195ffr4lXd++iYp4m+Jo0tG2+4tN14er9W6XF1/7WxKJ+U+NoQ1KeWn5FB9/I9EKZY6byRe+aSvjQN6qlar1e7rfPhSDdjEkuh3C4D+KH7os+vfYrtDU48N4dqLjQugLO4b+dY4Uo40LzPUcn3bTaMRcfzSP19mW7Teh9jao0oBgIH2XTb/ebrd/C+N5vtCd+drKJWIuCcidkXE0YjYHRH3RtTL3h8RD6yx/tZFklvnn+nVdQW2Stn87/l8bWv5/K+Y/UWllOd21uMfSk6cqs4eyj+TgzG0JctPrFDH9y//+nmnY83zv2zL6i/mgnk7rpa3LH/PzNTC1H+Judm1jyP2ltvFn9xcCUgiYk9EvLDOOk49+fX+Tsc6xD+8qv+4C+tMta8inmj0/6Voib+QrLw+OX5XVGcPjRdnxa1+/uXyG53qv33/91bW/9vanv9F/H9Ukub12vm113H59886XlOu9/wfTt5atu+DqYWFcxMRw8lr9Xylef9kS7nJpfJZ/AcPtB//u2Lpk9gXEdlJ/GBEPBQRD+dtfyQiHo2IAyvE/+NLj727/vh7K4t/ZsX+j5b+X0oMR+ue9onS6R++XVZpZS3xZ/1/pJ46mO9Zzfffatq1vrMZAAAA/n/SiNgRSTp2M52mY2ONv+HfHdvS6tz8wlMn5t4/O9N4RqASQ2lxp2uk6X7oRH5ZX+QnW/KH8/vGX5S21vNj03PVmX4HDwNue4fxn/mz1O/WAT3neS0YXMY/DC7jHwaX8Q+Dq8349+gZDIh2v/8f9aEdwJ3XMv5XXPYzMYDNxfU/DC7jHwaX8Q8DaX5r3P4h+c2RSCNiAzRjsyQi3RDNkOhRot/fTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAN3xbwAAAP//ynflmQ==")
r4 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
write(r5, &(0x7f00000009c0)="3bf58d", 0x3)
sendfile(r5, r4, 0x0, 0x3ffff)
sendfile(r5, r4, 0x0, 0x7fffeffd)

kernel console output (not intermixed with test programs):

423840][ T6204]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[   84.423873][ T6204]  netlink_rcv_skb+0x120/0x220
[   84.423968][ T6204]  ? __pfx_genl_rcv_msg+0x10/0x10
[   84.424021][ T6204]  genl_rcv+0x28/0x40
[   84.424047][ T6204]  netlink_unicast+0x5c0/0x690
[   84.424144][ T6204]  netlink_sendmsg+0x58b/0x6b0
[   84.424229][ T6204]  ? __pfx_netlink_sendmsg+0x10/0x10
[   84.424250][ T6204]  __sock_sendmsg+0x142/0x180
[   84.424364][ T6204]  ____sys_sendmsg+0x31e/0x4e0
[   84.424398][ T6204]  ___sys_sendmsg+0x17b/0x1d0
[   84.424442][ T6204]  __x64_sys_sendmsg+0xd4/0x160
[   84.424470][ T6204]  x64_sys_call+0x191e/0x2ff0
[   84.424557][ T6204]  do_syscall_64+0xd2/0x200
[   84.424586][ T6204]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   84.424615][ T6204]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   84.424660][ T6204]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.424711][ T6204] RIP: 0033:0x7f626e5debe9
[   84.424728][ T6204] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.424792][ T6204] RSP: 002b:00007f626d047038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   84.424811][ T6204] RAX: ffffffffffffffda RBX: 00007f626e805fa0 RCX: 00007f626e5debe9
[   84.424823][ T6204] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000003
[   84.424835][ T6204] RBP: 00007f626d047090 R08: 0000000000000000 R09: 0000000000000000
[   84.424856][ T6204] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   84.424872][ T6204] R13: 00007f626e806038 R14: 00007f626e805fa0 R15: 00007ffc697076a8
[   84.424896][ T6204]  </TASK>
[   84.857115][ T6215] loop1: detected capacity change from 0 to 512
[   84.868423][ T6213] loop0: detected capacity change from 0 to 128
[   84.879300][ T6215] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   84.945462][ T6217] bio_check_eod: 120 callbacks suppressed
[   84.945481][ T6217] syz.0.928: attempt to access beyond end of device
[   84.945481][ T6217] loop0: rw=2049, sector=145, nr_sectors = 16 limit=128
[   84.977353][ T6215] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.929: Failed to acquire dquot type 1
[   84.984052][ T6217] syz.0.928: attempt to access beyond end of device
[   84.984052][ T6217] loop0: rw=2049, sector=169, nr_sectors = 8 limit=128
[   85.017634][ T6217] syz.0.928: attempt to access beyond end of device
[   85.017634][ T6217] loop0: rw=2049, sector=185, nr_sectors = 8 limit=128
[   85.048201][ T6215] EXT4-fs (loop1): 1 truncate cleaned up
[   85.094509][ T6217] syz.0.928: attempt to access beyond end of device
[   85.094509][ T6217] loop0: rw=2049, sector=201, nr_sectors = 8 limit=128
[   85.143440][ T6217] syz.0.928: attempt to access beyond end of device
[   85.143440][ T6217] loop0: rw=2049, sector=217, nr_sectors = 8 limit=128
[   85.188622][ T6224] loop1: detected capacity change from 0 to 512
[   85.205677][ T6224] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   85.213380][ T6217] syz.0.928: attempt to access beyond end of device
[   85.213380][ T6217] loop0: rw=2049, sector=233, nr_sectors = 8 limit=128
[   85.253386][ T6217] syz.0.928: attempt to access beyond end of device
[   85.253386][ T6217] loop0: rw=2049, sector=249, nr_sectors = 8 limit=128
[   85.255977][ T6224] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.931: Failed to acquire dquot type 1
[   85.283384][ T6217] syz.0.928: attempt to access beyond end of device
[   85.283384][ T6217] loop0: rw=2049, sector=265, nr_sectors = 8 limit=128
[   85.298118][ T6224] EXT4-fs (loop1): 1 truncate cleaned up
[   85.313347][ T6217] syz.0.928: attempt to access beyond end of device
[   85.313347][ T6217] loop0: rw=2049, sector=281, nr_sectors = 8 limit=128
[   85.337040][ T6217] syz.0.928: attempt to access beyond end of device
[   85.337040][ T6217] loop0: rw=2049, sector=297, nr_sectors = 8 limit=128
[   85.663393][   T29] kauditd_printk_skb: 923 callbacks suppressed
[   85.663412][   T29] audit: type=1400 audit(1755943360.676:3940): avc:  denied  { create } for  pid=6236 comm="syz.0.935" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[   85.729444][   T29] audit: type=1326 audit(1755943360.766:3941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6255 comm="syz.3.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96390aebe9 code=0x7ffc0000
[   85.753014][   T29] audit: type=1326 audit(1755943360.766:3942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6255 comm="syz.3.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=125 compat=0 ip=0x7f96390aebe9 code=0x7ffc0000
[   85.776531][   T29] audit: type=1326 audit(1755943360.766:3943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6255 comm="syz.3.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96390aebe9 code=0x7ffc0000
[   85.799919][   T29] audit: type=1326 audit(1755943360.766:3944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6255 comm="syz.3.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96390aebe9 code=0x7ffc0000
[   85.968472][ T6267] netdevsim netdevsim0 netdevsim0: entered allmulticast mode
[   85.976109][ T6267] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[   86.136421][ T6269] loop1: detected capacity change from 0 to 512
[   86.198330][ T6269] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   86.279686][   T29] audit: type=1326 audit(1755943360.846:3945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6242 comm="syz.1.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fadd437ebe9 code=0x7ffc0000
[   86.295988][ T6269] Quota error (device loop1): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[   86.303227][   T29] audit: type=1326 audit(1755943360.846:3946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6242 comm="syz.1.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fadd437ebe9 code=0x7ffc0000
[   86.313278][ T6269] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[   86.346468][ T6269] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.943: Failed to acquire dquot type 1
[   86.360846][ T6269] EXT4-fs (loop1): 1 truncate cleaned up
[   86.475050][   T29] audit: type=1326 audit(1755943361.516:3947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6282 comm="syz.4.948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53240debe9 code=0x7ffc0000
[   86.839665][ T6319] loop4: detected capacity change from 0 to 1024
[   86.880899][ T6319] ext4 filesystem being mounted at /215/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   86.932150][ T6327] loop0: detected capacity change from 0 to 128
[   87.050143][ T6334] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[   87.172627][ T6344] netlink: 28 bytes leftover after parsing attributes in process `syz.0.962'.
[   87.181722][ T6344] netlink: 8 bytes leftover after parsing attributes in process `syz.0.962'.
[   87.206071][ T6349] validate_nla: 8 callbacks suppressed
[   87.206084][ T6349] netlink: 'syz.3.965': attribute type 10 has an invalid length.
[   87.283638][ T6358] loop2: detected capacity change from 0 to 128
[   87.332634][ T6367] netlink: 32 bytes leftover after parsing attributes in process `syz.1.970'.
[   87.430951][ T6378] netlink: 'syz.2.972': attribute type 10 has an invalid length.
[   87.478662][ T6378] loop2: detected capacity change from 0 to 1024
[   87.494569][ T6378] EXT4-fs: Ignoring removed nomblk_io_submit option
[   87.518399][ T6378] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   87.536475][ T6378] System zones: 0-1, 3-36
[   87.716196][ T6387] loop4: detected capacity change from 0 to 512
[   87.724615][ T6387] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   87.770831][ T6387] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.975: Failed to acquire dquot type 1
[   87.794807][ T6387] EXT4-fs (loop4): 1 truncate cleaned up
[   87.886992][ T6397] netlink: 'syz.3.973': attribute type 13 has an invalid length.
[   87.896931][ T6401] netlink: 'syz.2.981': attribute type 10 has an invalid length.
[   87.915737][ T6405] loop1: detected capacity change from 0 to 128
[   87.932626][ T6401] loop2: detected capacity change from 0 to 1024
[   87.950225][ T6401] EXT4-fs: Ignoring removed nomblk_io_submit option
[   87.976462][ T6401] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   87.993400][ T6401] System zones: 0-1, 3-36
[   88.093896][ T6419] netlink: 4 bytes leftover after parsing attributes in process `syz.2.984'.
[   88.233802][ T6427] netlink: 32 bytes leftover after parsing attributes in process `syz.1.985'.
[   88.510505][ T6431] loop1: detected capacity change from 0 to 1024
[   88.528543][ T6431] ext4 filesystem being mounted at /203/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   88.862545][ T6442] macvlan1: entered promiscuous mode
[   88.868672][ T6442] ipvlan0: entered promiscuous mode
[   88.875960][ T6442] ipvlan0: left promiscuous mode
[   88.881122][ T6442] macvlan1: left promiscuous mode
[   88.971080][ T6447] loop2: detected capacity change from 0 to 1024
[   89.000775][ T6442] loop4: detected capacity change from 0 to 2048
[   89.055979][ T6447] ext4 filesystem being mounted at /181/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.099668][ T6442] Alternate GPT is invalid, using primary GPT.
[   89.106117][ T6442]  loop4: p2 p3 p7
[   89.156966][ T6456] loop0: detected capacity change from 0 to 128
[   89.226015][ T6460] netlink: 'syz.2.997': attribute type 13 has an invalid length.
[   89.272197][ T6460] loop2: detected capacity change from 0 to 512
[   89.297397][ T6460] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   89.341463][ T6460] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.997: Failed to acquire dquot type 1
[   89.375002][ T6460] EXT4-fs (loop2): 1 truncate cleaned up
[   89.430842][ T6472] netlink: 'syz.1.1001': attribute type 13 has an invalid length.
[   89.641087][ T6484] FAULT_INJECTION: forcing a failure.
[   89.641087][ T6484] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   89.654291][ T6484] CPU: 1 UID: 0 PID: 6484 Comm: syz.1.1006 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   89.654330][ T6484] Tainted: [W]=WARN
[   89.654339][ T6484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   89.654354][ T6484] Call Trace:
[   89.654430][ T6484]  <TASK>
[   89.654439][ T6484]  __dump_stack+0x1d/0x30
[   89.654465][ T6484]  dump_stack_lvl+0xe8/0x140
[   89.654489][ T6484]  dump_stack+0x15/0x1b
[   89.654510][ T6484]  should_fail_ex+0x265/0x280
[   89.654536][ T6484]  should_fail+0xb/0x20
[   89.654617][ T6484]  should_fail_usercopy+0x1a/0x20
[   89.654643][ T6484]  _copy_from_iter+0xd2/0xe80
[   89.654673][ T6484]  ? __build_skb_around+0x1a0/0x200
[   89.654715][ T6484]  ? __alloc_skb+0x223/0x320
[   89.654763][ T6484]  netlink_sendmsg+0x471/0x6b0
[   89.654790][ T6484]  ? __pfx_netlink_sendmsg+0x10/0x10
[   89.654901][ T6484]  __sock_sendmsg+0x142/0x180
[   89.654935][ T6484]  ____sys_sendmsg+0x31e/0x4e0
[   89.654964][ T6484]  ___sys_sendmsg+0x17b/0x1d0
[   89.655006][ T6484]  __x64_sys_sendmsg+0xd4/0x160
[   89.655114][ T6484]  x64_sys_call+0x191e/0x2ff0
[   89.655140][ T6484]  do_syscall_64+0xd2/0x200
[   89.655172][ T6484]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   89.655201][ T6484]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   89.655364][ T6484]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.655389][ T6484] RIP: 0033:0x7fadd437ebe9
[   89.655407][ T6484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   89.655429][ T6484] RSP: 002b:00007fadd2de7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   89.655452][ T6484] RAX: ffffffffffffffda RBX: 00007fadd45a5fa0 RCX: 00007fadd437ebe9
[   89.655514][ T6484] RDX: 0000000000000004 RSI: 00002000000000c0 RDI: 0000000000000003
[   89.655529][ T6484] RBP: 00007fadd2de7090 R08: 0000000000000000 R09: 0000000000000000
[   89.655544][ T6484] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   89.655558][ T6484] R13: 00007fadd45a6038 R14: 00007fadd45a5fa0 R15: 00007ffeee612568
[   89.655581][ T6484]  </TASK>
[   89.923092][ T6486] netlink: 428 bytes leftover after parsing attributes in process `+}[@'.
[   90.004820][ T6489] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[   90.077521][ T6495] loop4: detected capacity change from 0 to 128
[   90.158233][ T6495] bio_check_eod: 239 callbacks suppressed
[   90.158249][ T6495] syz.4.1009: attempt to access beyond end of device
[   90.158249][ T6495] loop4: rw=2049, sector=145, nr_sectors = 16 limit=128
[   90.179954][ T6495] syz.4.1009: attempt to access beyond end of device
[   90.179954][ T6495] loop4: rw=2049, sector=169, nr_sectors = 8 limit=128
[   90.201954][ T6495] syz.4.1009: attempt to access beyond end of device
[   90.201954][ T6495] loop4: rw=2049, sector=185, nr_sectors = 8 limit=128
[   90.217490][ T6495] syz.4.1009: attempt to access beyond end of device
[   90.217490][ T6495] loop4: rw=2049, sector=201, nr_sectors = 8 limit=128
[   90.231067][ T6495] syz.4.1009: attempt to access beyond end of device
[   90.231067][ T6495] loop4: rw=2049, sector=217, nr_sectors = 8 limit=128
[   90.280990][ T6495] syz.4.1009: attempt to access beyond end of device
[   90.280990][ T6495] loop4: rw=2049, sector=233, nr_sectors = 8 limit=128
[   90.296570][ T6495] syz.4.1009: attempt to access beyond end of device
[   90.296570][ T6495] loop4: rw=2049, sector=249, nr_sectors = 8 limit=128
[   90.323218][ T6495] syz.4.1009: attempt to access beyond end of device
[   90.323218][ T6495] loop4: rw=2049, sector=265, nr_sectors = 8 limit=128
[   90.338982][ T6495] syz.4.1009: attempt to access beyond end of device
[   90.338982][ T6495] loop4: rw=2049, sector=281, nr_sectors = 8 limit=128
[   90.352475][ T6517] netlink: 'syz.1.1014': attribute type 10 has an invalid length.
[   90.361736][ T6495] syz.4.1009: attempt to access beyond end of device
[   90.361736][ T6495] loop4: rw=2049, sector=297, nr_sectors = 8 limit=128
[   90.376721][ T6515] netlink: 'syz.0.1013': attribute type 13 has an invalid length.
[   90.384994][ T6517] loop1: detected capacity change from 0 to 1024
[   90.392106][ T6517] EXT4-fs: Ignoring removed nomblk_io_submit option
[   90.413937][ T6519] geneve2: entered promiscuous mode
[   90.419206][ T6519] geneve2: entered allmulticast mode
[   90.445735][ T6517] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   90.455605][ T3498] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 20000 - 0
[   90.474523][ T6517] System zones: 0-1, 3-36
[   90.483555][ T3498] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 20000 - 0
[   90.519434][ T6522] FAULT_INJECTION: forcing a failure.
[   90.519434][ T6522] name failslab, interval 1, probability 0, space 0, times 0
[   90.532176][ T6522] CPU: 0 UID: 0 PID: 6522 Comm: syz.0.1016 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   90.532215][ T6522] Tainted: [W]=WARN
[   90.532225][ T6522] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   90.532243][ T6522] Call Trace:
[   90.532251][ T6522]  <TASK>
[   90.532261][ T6522]  __dump_stack+0x1d/0x30
[   90.532341][ T6522]  dump_stack_lvl+0xe8/0x140
[   90.532368][ T6522]  dump_stack+0x15/0x1b
[   90.532386][ T6522]  should_fail_ex+0x265/0x280
[   90.532413][ T6522]  should_failslab+0x8c/0xb0
[   90.532448][ T6522]  __kmalloc_noprof+0xa5/0x3e0
[   90.532550][ T6522]  ? genl_family_rcv_msg_attrs_parse+0x75/0x190
[   90.532644][ T6522]  genl_family_rcv_msg_attrs_parse+0x75/0x190
[   90.532680][ T6522]  genl_family_rcv_msg_doit+0x48/0x1b0
[   90.532718][ T6522]  ? selinux_capable+0x31/0x40
[   90.532834][ T6522]  ? security_capable+0x83/0x90
[   90.532875][ T6522]  ? ns_capable+0x7d/0xb0
[   90.532904][ T6522]  genl_rcv_msg+0x422/0x460
[   90.532946][ T6522]  ? __pfx_netlbl_cipsov4_add+0x10/0x10
[   90.532980][ T6522]  netlink_rcv_skb+0x120/0x220
[   90.533015][ T6522]  ? __pfx_genl_rcv_msg+0x10/0x10
[   90.533058][ T6522]  genl_rcv+0x28/0x40
[   90.533089][ T6522]  netlink_unicast+0x5c0/0x690
[   90.533138][ T6522]  netlink_sendmsg+0x58b/0x6b0
[   90.533224][ T6522]  ? __pfx_netlink_sendmsg+0x10/0x10
[   90.533259][ T6522]  __sock_sendmsg+0x142/0x180
[   90.533296][ T6522]  ____sys_sendmsg+0x31e/0x4e0
[   90.533363][ T6522]  ___sys_sendmsg+0x17b/0x1d0
[   90.533406][ T6522]  __x64_sys_sendmsg+0xd4/0x160
[   90.533435][ T6522]  x64_sys_call+0x191e/0x2ff0
[   90.533495][ T6522]  do_syscall_64+0xd2/0x200
[   90.533525][ T6522]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   90.533588][ T6522]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   90.533623][ T6522]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.533699][ T6522] RIP: 0033:0x7f626e5debe9
[   90.533720][ T6522] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.533786][ T6522] RSP: 002b:00007f626d047038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   90.533853][ T6522] RAX: ffffffffffffffda RBX: 00007f626e805fa0 RCX: 00007f626e5debe9
[   90.533871][ T6522] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000000000000004
[   90.533955][ T6522] RBP: 00007f626d047090 R08: 0000000000000000 R09: 0000000000000000
[   90.534040][ T6522] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   90.534058][ T6522] R13: 00007f626e806038 R14: 00007f626e805fa0 R15: 00007ffc697076a8
[   90.534082][ T6522]  </TASK>
[   90.794152][ T3498] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 20000 - 0
[   90.817289][ T2001] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 20000 - 0
[   90.839520][   T29] kauditd_printk_skb: 312 callbacks suppressed
[   90.839537][   T29] audit: type=1326 audit(1755943365.876:4256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6527 comm="syz.1.1019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fadd437ebe9 code=0x7ffc0000
[   90.872822][ T6531] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[   90.883184][   T29] audit: type=1326 audit(1755943365.916:4257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6527 comm="syz.1.1019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fadd437ebe9 code=0x7ffc0000
[   90.906782][   T29] audit: type=1326 audit(1755943365.916:4258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6527 comm="syz.1.1019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fadd437ebe9 code=0x7ffc0000
[   90.906812][   T29] audit: type=1326 audit(1755943365.916:4259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6527 comm="syz.1.1019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fadd437ebe9 code=0x7ffc0000
[   90.953622][   T29] audit: type=1326 audit(1755943365.916:4260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6527 comm="syz.1.1019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fadd437ebe9 code=0x7ffc0000
[   90.977064][   T29] audit: type=1326 audit(1755943365.916:4261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6527 comm="syz.1.1019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fadd437ebe9 code=0x7ffc0000
[   91.000587][   T29] audit: type=1326 audit(1755943365.916:4262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6527 comm="syz.1.1019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fadd437ebe9 code=0x7ffc0000
[   91.024144][   T29] audit: type=1326 audit(1755943365.916:4263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6527 comm="syz.1.1019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fadd437ebe9 code=0x7ffc0000
[   91.047662][   T29] audit: type=1326 audit(1755943365.916:4264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6527 comm="syz.1.1019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fadd437ebe9 code=0x7ffc0000
[   91.071140][   T29] audit: type=1326 audit(1755943365.916:4265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6527 comm="syz.1.1019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fadd437ebe9 code=0x7ffc0000
[   91.112209][ T6544] netlink: 'syz.4.1025': attribute type 10 has an invalid length.
[   91.150723][ T6544] loop4: detected capacity change from 0 to 1024
[   91.159041][ T6544] EXT4-fs: Ignoring removed nomblk_io_submit option
[   91.177253][ T6544] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   91.186638][ T6544] System zones: 0-1, 3-36
[   91.227524][ T6550] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1026'.
[   91.306376][ T6556] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1029'.
[   91.601500][ T6567] netlink: 'syz.4.1033': attribute type 13 has an invalid length.
[   91.617962][ T6567] loop4: detected capacity change from 0 to 512
[   91.634889][ T6567] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   91.684393][ T6567] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.1033: Failed to acquire dquot type 1
[   91.702804][ T6574] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1034'.
[   91.734916][ T6567] EXT4-fs (loop4): 1 truncate cleaned up
[   91.837591][ T6580] loop0: detected capacity change from 0 to 1024
[   91.855722][ T6580] ext4 filesystem being mounted at /185/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   91.909670][ T6586] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1039'.
[   91.991668][ T6599] loop1: detected capacity change from 0 to 512
[   92.010148][ T6599] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   92.034849][ T6599] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.1044: Failed to acquire dquot type 1
[   92.048480][ T6599] EXT4-fs (loop1): 1 truncate cleaned up
[   92.193206][ T6616] loop1: detected capacity change from 0 to 512
[   92.204400][ T6616] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   92.225872][ T6616] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.1046: Failed to acquire dquot type 1
[   92.237929][ T6616] EXT4-fs (loop1): 1 truncate cleaned up
[   92.319559][ T6629] validate_nla: 1 callbacks suppressed
[   92.319636][ T6629] netlink: 'syz.4.1051': attribute type 13 has an invalid length.
[   92.347117][ T6629] loop4: detected capacity change from 0 to 512
[   92.355069][ T6629] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   92.372649][ T6632] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1052'.
[   92.398257][ T6629] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.1051: Failed to acquire dquot type 1
[   92.413218][ T6636] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1053'.
[   92.431964][ T6629] EXT4-fs (loop4): 1 truncate cleaned up
[   92.561147][ T6652] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1061'.
[   92.595190][ T6656] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1064'.
[   92.624775][ T6659] loop2: detected capacity change from 0 to 512
[   92.633054][ T6659] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[   92.634755][ T6664] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1067'.
[   92.655302][ T6663] netlink: 'syz.3.1066': attribute type 13 has an invalid length.
[   92.694259][ T6659] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1065'.
[   93.206447][ T6684] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1076'.
[   93.314076][ T6691] loop0: detected capacity change from 0 to 1024
[   93.326077][ T6691] ext4 filesystem being mounted at /193/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.347552][ T6698] geneve2: entered promiscuous mode
[   93.352811][ T6698] geneve2: entered allmulticast mode
[   93.445378][ T6703] loop2: detected capacity change from 0 to 512
[   93.452473][ T6703] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   93.471895][ T6704] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1082'.
[   93.482953][ T6703] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.1083: Failed to acquire dquot type 1
[   93.495669][ T6703] EXT4-fs (loop2): 1 truncate cleaned up
[   93.610356][ T6710] netlink: 428 bytes leftover after parsing attributes in process `+}[@'.
[   93.652261][ T6712] loop2: detected capacity change from 0 to 1024
[   93.662715][ T6714] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1087'.
[   93.675505][ T6712] ext4 filesystem being mounted at /196/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.741872][ T6724] loop4: detected capacity change from 0 to 512
[   93.750609][ T6724] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   93.765817][ T6724] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.1091: Failed to acquire dquot type 1
[   93.777727][ T6724] EXT4-fs (loop4): 1 truncate cleaned up
[   93.811390][ T6728] netlink: 'syz.4.1092': attribute type 13 has an invalid length.
[   93.826647][ T6728] loop4: detected capacity change from 0 to 512
[   93.834437][ T6728] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   93.854947][ T6728] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.1092: Failed to acquire dquot type 1
[   93.868087][ T6728] EXT4-fs (loop4): 1 truncate cleaned up
[   94.046118][ T6752] FAULT_INJECTION: forcing a failure.
[   94.046118][ T6752] name failslab, interval 1, probability 0, space 0, times 0
[   94.058869][ T6752] CPU: 0 UID: 0 PID: 6752 Comm: syz.2.1096 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   94.058939][ T6752] Tainted: [W]=WARN
[   94.058946][ T6752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   94.058975][ T6752] Call Trace:
[   94.059000][ T6752]  <TASK>
[   94.059009][ T6752]  __dump_stack+0x1d/0x30
[   94.059035][ T6752]  dump_stack_lvl+0xe8/0x140
[   94.059118][ T6752]  dump_stack+0x15/0x1b
[   94.059134][ T6752]  should_fail_ex+0x265/0x280
[   94.059155][ T6752]  ? rtnl_newlink+0x5c/0x12d0
[   94.059183][ T6752]  should_failslab+0x8c/0xb0
[   94.059223][ T6752]  __kmalloc_cache_noprof+0x4c/0x320
[   94.059260][ T6752]  rtnl_newlink+0x5c/0x12d0
[   94.059291][ T6752]  ? refill_stock+0x32f/0x390
[   94.059314][ T6752]  ? page_counter_try_charge+0x289/0x300
[   94.059422][ T6752]  ? try_charge_memcg+0x8a9/0x9e0
[   94.059469][ T6752]  ? __rcu_read_unlock+0x4f/0x70
[   94.059500][ T6752]  ? css_rstat_updated+0xb7/0x240
[   94.059531][ T6752]  ? __account_obj_stock+0x211/0x350
[   94.059553][ T6752]  ? __rcu_read_unlock+0x4f/0x70
[   94.059574][ T6752]  ? avc_has_perm_noaudit+0x1b1/0x200
[   94.059640][ T6752]  ? cred_has_capability+0x210/0x280
[   94.059729][ T6752]  ? selinux_capable+0x31/0x40
[   94.059756][ T6752]  ? security_capable+0x83/0x90
[   94.059780][ T6752]  ? ns_capable+0x7d/0xb0
[   94.059865][ T6752]  ? __pfx_rtnl_newlink+0x10/0x10
[   94.059893][ T6752]  rtnetlink_rcv_msg+0x5fb/0x6d0
[   94.059920][ T6752]  ? avc_has_perm_noaudit+0x1b1/0x200
[   94.059992][ T6752]  netlink_rcv_skb+0x120/0x220
[   94.060013][ T6752]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   94.060046][ T6752]  rtnetlink_rcv+0x1c/0x30
[   94.060113][ T6752]  netlink_unicast+0x5c0/0x690
[   94.060148][ T6752]  netlink_sendmsg+0x58b/0x6b0
[   94.060198][ T6752]  ? __pfx_netlink_sendmsg+0x10/0x10
[   94.060274][ T6752]  __sock_sendmsg+0x142/0x180
[   94.060374][ T6752]  ____sys_sendmsg+0x31e/0x4e0
[   94.060453][ T6752]  ___sys_sendmsg+0x17b/0x1d0
[   94.060489][ T6752]  __x64_sys_sendmsg+0xd4/0x160
[   94.060516][ T6752]  x64_sys_call+0x191e/0x2ff0
[   94.060537][ T6752]  do_syscall_64+0xd2/0x200
[   94.060595][ T6752]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   94.060706][ T6752]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   94.060750][ T6752]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.060772][ T6752] RIP: 0033:0x7fdbdd45ebe9
[   94.060787][ T6752] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   94.060806][ T6752] RSP: 002b:00007fdbdbebf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   94.060850][ T6752] RAX: ffffffffffffffda RBX: 00007fdbdd685fa0 RCX: 00007fdbdd45ebe9
[   94.060863][ T6752] RDX: 0000000000000082 RSI: 0000200000000000 RDI: 0000000000000003
[   94.060876][ T6752] RBP: 00007fdbdbebf090 R08: 0000000000000000 R09: 0000000000000000
[   94.060889][ T6752] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   94.060901][ T6752] R13: 00007fdbdd686038 R14: 00007fdbdd685fa0 R15: 00007fff9933fec8
[   94.060921][ T6752]  </TASK>
[   94.405217][ T6757] loop2: detected capacity change from 0 to 1024
[   94.448222][ T6767] netlink: 'syz.0.1103': attribute type 13 has an invalid length.
[   94.467372][ T1895] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 20000 - 0
[   94.481754][ T6767] loop0: detected capacity change from 0 to 512
[   94.486576][ T1895] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 20000 - 0
[   94.510575][ T6757] ext4 filesystem being mounted at /200/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.521142][ T1895] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 20000 - 0
[   94.530382][ T6767] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   94.531366][ T3498] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 20000 - 0
[   94.548833][ T6776] netlink: 'syz.1.1106': attribute type 13 has an invalid length.
[   94.558612][ T6767] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.1103: Failed to acquire dquot type 1
[   94.572220][ T6767] EXT4-fs (loop0): 1 truncate cleaned up
[   94.590735][ T6776] loop1: detected capacity change from 0 to 512
[   94.598340][ T6776] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   94.622188][ T6776] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.1106: Failed to acquire dquot type 1
[   94.635311][ T6776] EXT4-fs (loop1): 1 truncate cleaned up
[   94.660057][ T6791] loop0: detected capacity change from 0 to 1024
[   94.687245][ T6791] ext4 filesystem being mounted at /197/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.743579][ T6805] netlink: 'syz.2.1111': attribute type 13 has an invalid length.
[   94.949873][ T6817] loop2: detected capacity change from 0 to 512
[   94.957815][ T6817] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   94.974733][ T6817] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.1116: Failed to acquire dquot type 1
[   94.986600][ T6817] EXT4-fs (loop2): 1 truncate cleaned up
[   95.130931][ T6841] netlink: 'syz.3.1122': attribute type 10 has an invalid length.
[   95.711495][ T6884] netlink: 'syz.0.1132': attribute type 10 has an invalid length.
[   95.795101][ T6885] netlink: 'syz.3.1129': attribute type 13 has an invalid length.
[   95.844468][ T6892] loop2: detected capacity change from 0 to 512
[   95.863386][ T6892] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   95.872887][   T29] kauditd_printk_skb: 323 callbacks suppressed
[   95.872903][   T29] audit: type=1326 audit(1755943883.906:4569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6883 comm="syz.0.1132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f626e5debe9 code=0x7ffc0000
[   95.902694][   T29] audit: type=1326 audit(1755943883.906:4570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6883 comm="syz.0.1132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f626e5debe9 code=0x7ffc0000
[   95.962460][ T6892] Quota error (device loop2): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[   95.972575][ T6892] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[   95.982611][ T6892] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.1134: Failed to acquire dquot type 1
[   95.994546][ T6892] EXT4-fs (loop2): 1 truncate cleaned up
[   96.011223][   T29] audit: type=1326 audit(1755943884.046:4571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6899 comm="syz.0.1137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f626e5debe9 code=0x7ffc0000
[   96.034834][   T29] audit: type=1326 audit(1755943884.046:4572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6899 comm="syz.0.1137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f626e5debe9 code=0x7ffc0000
[   96.058691][   T29] audit: type=1326 audit(1755943884.056:4573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6899 comm="syz.0.1137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f626e5debe9 code=0x7ffc0000
[   96.082465][   T29] audit: type=1326 audit(1755943884.056:4574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6899 comm="syz.0.1137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f626e5debe9 code=0x7ffc0000
[   96.105976][   T29] audit: type=1326 audit(1755943884.056:4575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6899 comm="syz.0.1137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f626e5debe9 code=0x7ffc0000
[   96.129728][   T29] audit: type=1326 audit(1755943884.056:4576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6899 comm="syz.0.1137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f626e5debe9 code=0x7ffc0000
[   96.356237][ T6930] netlink: 'syz.2.1145': attribute type 13 has an invalid length.
[   96.764985][ T6974] loop1: detected capacity change from 0 to 4096
[   97.049571][ T7002] loop0: detected capacity change from 0 to 512
[   97.059934][ T7002] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   97.075816][ T7002] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.1170: Failed to acquire dquot type 1
[   97.087855][ T7002] EXT4-fs (loop0): 1 truncate cleaned up
[   97.314158][ T7026] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[   97.549369][ T7039] validate_nla: 6 callbacks suppressed
[   97.549390][ T7039] netlink: 'syz.0.1185': attribute type 13 has an invalid length.
[   97.586990][ T7039] loop0: detected capacity change from 0 to 512
[   97.602477][ T7039] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   97.628205][ T7039] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.1185: Failed to acquire dquot type 1
[   97.644888][ T7039] EXT4-fs (loop0): 1 truncate cleaned up
[   97.744704][ T7051] netlink: 'syz.2.1190': attribute type 13 has an invalid length.
[   97.759820][ T7047] loop0: detected capacity change from 0 to 1024
[   97.805001][ T7047] ext4 filesystem being mounted at /215/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   97.855800][ T7062] loop0: detected capacity change from 0 to 128
[   98.121302][ T7062] bio_check_eod: 63 callbacks suppressed
[   98.121321][ T7062] syz.0.1194: attempt to access beyond end of device
[   98.121321][ T7062] loop0: rw=2049, sector=145, nr_sectors = 16 limit=128
[   98.141887][ T7062] syz.0.1194: attempt to access beyond end of device
[   98.141887][ T7062] loop0: rw=2049, sector=169, nr_sectors = 8 limit=128
[   98.174456][ T7062] syz.0.1194: attempt to access beyond end of device
[   98.174456][ T7062] loop0: rw=2049, sector=185, nr_sectors = 8 limit=128
[   98.191660][ T7062] syz.0.1194: attempt to access beyond end of device
[   98.191660][ T7062] loop0: rw=2049, sector=201, nr_sectors = 8 limit=128
[   98.228240][ T7088] __nla_validate_parse: 14 callbacks suppressed
[   98.228259][ T7088] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1203'.
[   98.228553][ T7062] syz.0.1194: attempt to access beyond end of device
[   98.228553][ T7062] loop0: rw=2049, sector=217, nr_sectors = 8 limit=128
[   98.254624][ T7086] loop1: detected capacity change from 0 to 1024
[   98.264257][ T7086] EXT4-fs: Ignoring removed nomblk_io_submit option
[   98.278358][ T7086] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   98.280496][ T7062] syz.0.1194: attempt to access beyond end of device
[   98.280496][ T7062] loop0: rw=2049, sector=233, nr_sectors = 8 limit=128
[   98.288745][ T7086] System zones: 0-1, 3-36
[   98.321772][ T7091] FAULT_INJECTION: forcing a failure.
[   98.321772][ T7091] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   98.324480][ T7062] syz.0.1194: attempt to access beyond end of device
[   98.324480][ T7062] loop0: rw=2049, sector=249, nr_sectors = 8 limit=128
[   98.335122][ T7091] CPU: 0 UID: 0 PID: 7091 Comm: syz.4.1204 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   98.335198][ T7091] Tainted: [W]=WARN
[   98.335207][ T7091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   98.335225][ T7091] Call Trace:
[   98.335234][ T7091]  <TASK>
[   98.335245][ T7091]  __dump_stack+0x1d/0x30
[   98.335267][ T7091]  dump_stack_lvl+0xe8/0x140
[   98.335286][ T7091]  dump_stack+0x15/0x1b
[   98.335305][ T7091]  should_fail_ex+0x265/0x280
[   98.335369][ T7091]  should_fail+0xb/0x20
[   98.335394][ T7091]  should_fail_usercopy+0x1a/0x20
[   98.335427][ T7091]  _copy_from_user+0x1c/0xb0
[   98.335467][ T7091]  memdup_user+0x5e/0xd0
[   98.335516][ T7091]  autofs_dev_ioctl+0x167/0x6a0
[   98.335556][ T7091]  ? __pfx_autofs_dev_ioctl+0x10/0x10
[   98.335592][ T7091]  __se_sys_ioctl+0xce/0x140
[   98.335675][ T7091]  __x64_sys_ioctl+0x43/0x50
[   98.335721][ T7091]  x64_sys_call+0x1816/0x2ff0
[   98.335817][ T7091]  do_syscall_64+0xd2/0x200
[   98.335855][ T7091]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   98.335945][ T7091]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   98.335981][ T7091]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.336011][ T7091] RIP: 0033:0x7f53240debe9
[   98.336111][ T7091] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   98.336135][ T7091] RSP: 002b:00007f5322b47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   98.336162][ T7091] RAX: ffffffffffffffda RBX: 00007f5324305fa0 RCX: 00007f53240debe9
[   98.336180][ T7091] RDX: 0000200000000040 RSI: 00000000c0189374 RDI: 0000000000000004
[   98.336197][ T7091] RBP: 00007f5322b47090 R08: 0000000000000000 R09: 0000000000000000
[   98.336215][ T7091] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   98.336232][ T7091] R13: 00007f5324306038 R14: 00007f5324305fa0 R15: 00007ffd9ba0f168
[   98.336274][ T7091]  </TASK>
[   98.397372][ T7093] loop4: detected capacity change from 0 to 128
[   98.398096][ T7062] syz.0.1194: attempt to access beyond end of device
[   98.398096][ T7062] loop0: rw=2049, sector=265, nr_sectors = 8 limit=128
[   98.460452][ T7094] syz.4.1206: attempt to access beyond end of device
[   98.460452][ T7094] loop4: rw=2049, sector=145, nr_sectors = 16 limit=128
[   98.462851][ T7062] syz.0.1194: attempt to access beyond end of device
[   98.462851][ T7062] loop0: rw=2049, sector=281, nr_sectors = 8 limit=128
[   98.609658][ T7096] netlink: 428 bytes leftover after parsing attributes in process `+}[@'.
[   98.697823][ T7105] loop0: detected capacity change from 0 to 1024
[   98.743406][ T7115] loop1: detected capacity change from 0 to 1024
[   98.750440][ T7115] EXT4-fs: Ignoring removed nomblk_io_submit option
[   98.758883][ T7105] ext4 filesystem being mounted at /217/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   98.770521][ T7115] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   98.794226][ T7117] loop2: detected capacity change from 0 to 1024
[   98.800718][ T7110] bond1: entered promiscuous mode
[   98.805853][ T7110] bond1: entered allmulticast mode
[   98.811302][ T7110] 8021q: adding VLAN 0 to HW filter on device bond1
[   98.818073][ T7115] System zones: 0-1, 3-36
[   98.826202][ T7110] bond1 (unregistering): Released all slaves
[   98.848764][ T7117] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1216'.
[   98.875556][ T7129] loop1: detected capacity change from 0 to 128
[   98.900844][ T7117] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm +}[@: Allocating blocks 449-513 which overlap fs metadata
[   98.929087][ T7116] EXT4-fs (loop2): pa ffff8881072107e0: logic 48, phys. 177, len 21
[   98.937201][ T7116] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[   98.994688][ T7133] netlink: 'syz.2.1219': attribute type 13 has an invalid length.
[   99.046913][ T7133] loop2: detected capacity change from 0 to 512
[   99.059714][ T7139] vlan0: entered promiscuous mode
[   99.064831][ T7139] syz_tun: entered promiscuous mode
[   99.070407][ T7133] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   99.095146][ T7133] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.1219: Failed to acquire dquot type 1
[   99.107834][ T7147] ÿÿÿÿÿÿ: renamed from vlan1
[   99.112491][ T7147] FAULT_INJECTION: forcing a failure.
[   99.112491][ T7147] name failslab, interval 1, probability 0, space 0, times 0
[   99.125196][ T7147] CPU: 0 UID: 0 PID: 7147 Comm: syz.1.1224 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   99.125235][ T7147] Tainted: [W]=WARN
[   99.125244][ T7147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   99.125306][ T7147] Call Trace:
[   99.125313][ T7147]  <TASK>
[   99.125322][ T7147]  __dump_stack+0x1d/0x30
[   99.125342][ T7147]  dump_stack_lvl+0xe8/0x140
[   99.125360][ T7147]  dump_stack+0x15/0x1b
[   99.125378][ T7147]  should_fail_ex+0x265/0x280
[   99.125404][ T7147]  should_failslab+0x8c/0xb0
[   99.125539][ T7147]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   99.125578][ T7147]  ? kstrdup_const+0x3e/0x50
[   99.125607][ T7147]  ? _printk+0x79/0xa0
[   99.125663][ T7147]  kstrdup+0x3e/0xd0
[   99.125763][ T7147]  kstrdup_const+0x3e/0x50
[   99.125792][ T7147]  kernfs_rename_ns+0x22c/0x410
[   99.125831][ T7147]  sysfs_rename_link_ns+0xfc/0x120
[   99.125897][ T7147]  device_rename+0xd2/0x180
[   99.125921][ T7147]  netif_change_name+0x1eb/0x6b0
[   99.125954][ T7147]  ? cred_has_capability+0x210/0x280
[   99.125978][ T7147]  dev_change_name+0xc0/0x170
[   99.126009][ T7147]  dev_ifsioc+0x302/0xaa0
[   99.126033][ T7147]  dev_ioctl+0x4a7/0x960
[   99.126060][ T7147]  sock_do_ioctl+0x197/0x220
[   99.126174][ T7147]  sock_ioctl+0x41b/0x610
[   99.126200][ T7147]  ? __pfx_sock_ioctl+0x10/0x10
[   99.126288][ T7147]  __se_sys_ioctl+0xce/0x140
[   99.126333][ T7147]  __x64_sys_ioctl+0x43/0x50
[   99.126368][ T7147]  x64_sys_call+0x1816/0x2ff0
[   99.126395][ T7147]  do_syscall_64+0xd2/0x200
[   99.126503][ T7147]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   99.126534][ T7147]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.126554][ T7147] RIP: 0033:0x7fadd437ebe9
[   99.126592][ T7147] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   99.126613][ T7147] RSP: 002b:00007fadd2de7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   99.126635][ T7147] RAX: ffffffffffffffda RBX: 00007fadd45a5fa0 RCX: 00007fadd437ebe9
[   99.126686][ T7147] RDX: 0000200000000000 RSI: 0000000000008923 RDI: 0000000000000008
[   99.126707][ T7147] RBP: 00007fadd2de7090 R08: 0000000000000000 R09: 0000000000000000
[   99.126723][ T7147] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   99.126738][ T7147] R13: 00007fadd45a6038 R14: 00007fadd45a5fa0 R15: 00007ffeee612568
[   99.126762][ T7147]  </TASK>
[   99.137647][ T7133] EXT4-fs (loop2): 1 truncate cleaned up
[   99.235513][ T7152] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1225'.
[   99.285237][ T7156] netlink: 'syz.3.1227': attribute type 13 has an invalid length.
[   99.459814][ T7163] macvtap0: refused to change device tx_queue_len
[   99.460753][ T7165] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1231'.
[   99.532356][ T7167] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1232'.
[   99.742081][ T7182] loop2: detected capacity change from 0 to 512
[   99.749214][ T7182] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   99.766472][ T7182] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.1238: Failed to acquire dquot type 1
[   99.778892][ T7182] EXT4-fs (loop2): 1 truncate cleaned up
[   99.806303][ T7186] loop2: detected capacity change from 0 to 512
[   99.813507][ T7186] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   99.824498][ T7186] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.1239: Failed to acquire dquot type 1
[   99.836574][ T7186] EXT4-fs (loop2): 1 truncate cleaned up
[   99.853066][ T3311] EXT4-fs unmount: 120 callbacks suppressed
[   99.853080][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.892509][ T7192] loop2: detected capacity change from 0 to 512
[   99.899461][ T7192] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   99.914806][ T7192] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.1241: Failed to acquire dquot type 1
[   99.926734][ T7192] EXT4-fs (loop2): 1 truncate cleaned up
[   99.932865][ T7192] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.958006][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.020383][ T7202] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1243'.
[  100.324699][ T7225] netlink: 'syz.4.1248': attribute type 10 has an invalid length.
[  100.344703][ T7225] loop4: detected capacity change from 0 to 1024
[  100.351995][ T7225] EXT4-fs: Ignoring removed nomblk_io_submit option
[  100.360199][ T7225] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  100.369601][ T7225] System zones: 0-1, 3-36
[  100.375056][ T7225] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.408681][ T7230] loop1: detected capacity change from 0 to 1024
[  100.415768][ T7230] EXT4-fs: Ignoring removed nomblk_io_submit option
[  100.431638][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.452789][ T7230] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  100.470835][ T7235] loop2: detected capacity change from 0 to 512
[  100.473131][ T7230] System zones: 0-1, 3-36
[  100.482952][ T7230] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.489117][ T7237] loop4: detected capacity change from 0 to 1024
[  100.501862][ T7235] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  100.524241][ T7239] netlink: 'syz.3.1254': attribute type 10 has an invalid length.
[  100.544053][ T7235] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.1251: Failed to acquire dquot type 1
[  100.557115][ T7235] EXT4-fs (loop2): 1 truncate cleaned up
[  100.563098][ T7235] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.578017][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.586483][ T7245] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1255'.
[  100.587642][ T7237] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.643422][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.655157][ T7250] netlink: 7 bytes leftover after parsing attributes in process `syz.0.1257'.
[  100.680842][ T7237] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.1252: Allocating blocks 449-513 which overlap fs metadata
[  100.696136][ T7250] netlink: 7 bytes leftover after parsing attributes in process `syz.0.1257'.
[  100.709441][ T7236] EXT4-fs (loop4): pa ffff888107210770: logic 48, phys. 177, len 21
[  100.717555][ T7236] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  100.750626][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.819291][ T7265] netlink: 'syz.2.1263': attribute type 10 has an invalid length.
[  100.840002][ T7265] loop2: detected capacity change from 0 to 1024
[  100.851070][ T7265] EXT4-fs: Ignoring removed nomblk_io_submit option
[  100.859700][ T7265] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  100.868944][ T7265] System zones: 0-1, 3-36
[  100.874301][ T7265] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.888546][   T29] kauditd_printk_skb: 730 callbacks suppressed
[  100.888560][   T29] audit: type=1326 audit(1755945940.929:5293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7264 comm="syz.2.1263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fdbdd45d550 code=0x7ffc0000
[  100.920039][   T29] audit: type=1326 audit(1755945940.949:5294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7264 comm="syz.2.1263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7fdbdd45d937 code=0x7ffc0000
[  100.943416][   T29] audit: type=1326 audit(1755945940.949:5295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7264 comm="syz.2.1263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fdbdd45d550 code=0x7ffc0000
[  100.966881][   T29] audit: type=1326 audit(1755945940.949:5296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7264 comm="syz.2.1263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbdd45ebe9 code=0x7ffc0000
[  100.990401][   T29] audit: type=1326 audit(1755945940.949:5297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7264 comm="syz.2.1263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbdd45ebe9 code=0x7ffc0000
[  101.013886][   T29] audit: type=1326 audit(1755945940.949:5298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7264 comm="syz.2.1263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=94 compat=0 ip=0x7fdbdd45ebe9 code=0x7ffc0000
[  101.037312][   T29] audit: type=1326 audit(1755945940.949:5299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7264 comm="syz.2.1263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbdd45ebe9 code=0x7ffc0000
[  101.060891][   T29] audit: type=1326 audit(1755945940.949:5300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7264 comm="syz.2.1263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbdd45ebe9 code=0x7ffc0000
[  101.089412][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.101056][ T7270] syz.1.1260 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  101.153586][ T7274] netlink: 'syz.0.1266': attribute type 10 has an invalid length.
[  101.167936][ T7276] netlink: 'syz.2.1264': attribute type 13 has an invalid length.
[  101.183703][ T7276] loop2: detected capacity change from 0 to 512
[  101.191535][ T7276] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  101.228049][   T29] audit: type=1326 audit(1755945941.269:5301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7273 comm="syz.0.1266" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f626e5debe9 code=0x7ffc0000
[  101.251549][   T29] audit: type=1326 audit(1755945941.269:5302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7273 comm="syz.0.1266" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f626e5debe9 code=0x7ffc0000
[  101.288365][ T7278] loop0: detected capacity change from 0 to 1024
[  101.296891][ T7278] EXT4-fs: Ignoring removed nomblk_io_submit option
[  101.305815][ T7278] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  101.325422][ T7276] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.1264: Failed to acquire dquot type 1
[  101.339096][ T7278] System zones: 0-1, 3-36
[  101.348660][ T7276] EXT4-fs (loop2): 1 truncate cleaned up
[  101.353022][ T7278] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.357121][ T7276] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.417013][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.470926][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.506196][ T7292] loop4: detected capacity change from 0 to 1024
[  101.512902][ T7296] loop2: detected capacity change from 0 to 128
[  101.520244][ T7294] loop0: detected capacity change from 0 to 512
[  101.537202][ T7292] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.549562][ T7294] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  101.577494][ T7292] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.1272: Allocating blocks 449-513 which overlap fs metadata
[  101.596267][ T7294] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.1270: Failed to acquire dquot type 1
[  101.598260][ T7291] EXT4-fs (loop4): pa ffff8881071d9150: logic 48, phys. 177, len 21
[  101.615743][ T7291] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  101.626639][ T7294] EXT4-fs (loop0): 1 truncate cleaned up
[  101.632934][ T7294] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.648769][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.670258][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.695703][ T7305] netdevsim netdevsim3 netdevsim0: entered allmulticast mode
[  101.703445][ T7305] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  101.759169][ T7315] netlink: 'syz.3.1279': attribute type 13 has an invalid length.
[  101.803883][ T7321] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  101.860031][ T7327] loop0: detected capacity change from 0 to 1024
[  101.875930][ T7327] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.908582][ T7327] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4183: comm +}[@: Allocating blocks 449-513 which overlap fs metadata
[  101.925850][ T7326] EXT4-fs (loop0): pa ffff8881072107e0: logic 48, phys. 177, len 21
[  101.934072][ T7326] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  101.981110][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.995862][ T7325] loop2: detected capacity change from 0 to 1024
[  102.005435][ T7336] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  102.017988][ T7325] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.033379][ T7325] ext4 filesystem being mounted at /251/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  102.050792][ T7325] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  102.059365][ T7325] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  102.085610][ T7348] SELinux: failed to load policy
[  102.168349][ T7356] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  102.877552][ T7383] validate_nla: 2 callbacks suppressed
[  102.877571][ T7383] netlink: 'syz.4.1306': attribute type 13 has an invalid length.
[  102.890555][ T7385] loop0: detected capacity change from 0 to 512
[  102.898580][ T7385] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  102.915245][ T7385] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.1307: Failed to acquire dquot type 1
[  102.928664][ T7385] EXT4-fs (loop0): 1 truncate cleaned up
[  102.935106][ T7385] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.962267][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.985588][ T7393] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  103.012003][ T7395] tmpfs: Bad value for 'mpol'
[  103.022056][ T7395] serio: Serial port ttyS3
[  103.325505][ T7406] loop4: detected capacity change from 0 to 128
[  103.392011][ T7407] bio_check_eod: 302 callbacks suppressed
[  103.392033][ T7407] syz.4.1315: attempt to access beyond end of device
[  103.392033][ T7407] loop4: rw=2049, sector=145, nr_sectors = 16 limit=128
[  103.412981][ T7407] syz.4.1315: attempt to access beyond end of device
[  103.412981][ T7407] loop4: rw=2049, sector=169, nr_sectors = 8 limit=128
[  103.420458][ T7409] __nla_validate_parse: 8 callbacks suppressed
[  103.420478][ T7409] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1316'.
[  103.427947][ T7407] syz.4.1315: attempt to access beyond end of device
[  103.427947][ T7407] loop4: rw=2049, sector=185, nr_sectors = 8 limit=128
[  103.462791][ T7407] syz.4.1315: attempt to access beyond end of device
[  103.462791][ T7407] loop4: rw=2049, sector=201, nr_sectors = 8 limit=128
[  103.476383][ T7407] syz.4.1315: attempt to access beyond end of device
[  103.476383][ T7407] loop4: rw=2049, sector=217, nr_sectors = 8 limit=128
[  103.490120][ T7407] syz.4.1315: attempt to access beyond end of device
[  103.490120][ T7407] loop4: rw=2049, sector=233, nr_sectors = 8 limit=128
[  103.503624][ T7407] syz.4.1315: attempt to access beyond end of device
[  103.503624][ T7407] loop4: rw=2049, sector=249, nr_sectors = 8 limit=128
[  103.517169][ T7407] syz.4.1315: attempt to access beyond end of device
[  103.517169][ T7407] loop4: rw=2049, sector=265, nr_sectors = 8 limit=128
[  103.530674][ T7407] syz.4.1315: attempt to access beyond end of device
[  103.530674][ T7407] loop4: rw=2049, sector=281, nr_sectors = 8 limit=128
[  103.544290][ T7407] syz.4.1315: attempt to access beyond end of device
[  103.544290][ T7407] loop4: rw=2049, sector=297, nr_sectors = 8 limit=128
[  103.628980][ T7418] FAULT_INJECTION: forcing a failure.
[  103.628980][ T7418] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  103.642204][ T7418] CPU: 0 UID: 0 PID: 7418 Comm: syz.4.1320 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  103.642251][ T7418] Tainted: [W]=WARN
[  103.642259][ T7418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  103.642271][ T7418] Call Trace:
[  103.642277][ T7418]  <TASK>
[  103.642284][ T7418]  __dump_stack+0x1d/0x30
[  103.642310][ T7418]  dump_stack_lvl+0xe8/0x140
[  103.642379][ T7418]  dump_stack+0x15/0x1b
[  103.642459][ T7418]  should_fail_ex+0x265/0x280
[  103.642486][ T7418]  should_fail+0xb/0x20
[  103.642509][ T7418]  should_fail_usercopy+0x1a/0x20
[  103.642555][ T7418]  _copy_from_user+0x1c/0xb0
[  103.642600][ T7418]  memdup_user+0x5e/0xd0
[  103.642720][ T7418]  autofs_dev_ioctl+0x167/0x6a0
[  103.642755][ T7418]  ? __pfx_autofs_dev_ioctl+0x10/0x10
[  103.642784][ T7418]  __se_sys_ioctl+0xce/0x140
[  103.642824][ T7418]  __x64_sys_ioctl+0x43/0x50
[  103.642957][ T7418]  x64_sys_call+0x1816/0x2ff0
[  103.642986][ T7418]  do_syscall_64+0xd2/0x200
[  103.643021][ T7418]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  103.643126][ T7418]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  103.643159][ T7418]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.643187][ T7418] RIP: 0033:0x7f53240debe9
[  103.643206][ T7418] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  103.643364][ T7418] RSP: 002b:00007f5322b47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  103.643389][ T7418] RAX: ffffffffffffffda RBX: 00007f5324305fa0 RCX: 00007f53240debe9
[  103.643406][ T7418] RDX: 0000200000000040 RSI: 00000000c0189374 RDI: 0000000000000004
[  103.643422][ T7418] RBP: 00007f5322b47090 R08: 0000000000000000 R09: 0000000000000000
[  103.643438][ T7418] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  103.643454][ T7418] R13: 00007f5324306038 R14: 00007f5324305fa0 R15: 00007ffd9ba0f168
[  103.643479][ T7418]  </TASK>
[  103.846767][ T7420] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  103.887794][ T7422] netlink: 'syz.4.1322': attribute type 10 has an invalid length.
[  103.901382][ T7424] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1323'.
[  103.915646][ T7422] loop4: detected capacity change from 0 to 1024
[  103.927764][ T7422] EXT4-fs: Ignoring removed nomblk_io_submit option
[  103.937385][ T7422] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  103.954898][ T7426] loop1: detected capacity change from 0 to 1024
[  103.958525][ T7422] System zones: 0-1, 3-36
[  103.986923][ T7433] loop0: detected capacity change from 0 to 1024
[  103.991191][ T7422] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  104.020447][ T7426] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.033131][ T7433] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  104.034726][ T7426] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1324'.
[  104.046706][ T7433] ext4 filesystem being mounted at /234/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  104.080511][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.100632][ T7426] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4183: comm +}[@: Allocating blocks 449-513 which overlap fs metadata
[  104.126447][ T7425] EXT4-fs (loop1): pa ffff888107210770: logic 48, phys. 177, len 21
[  104.134579][ T7425] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  104.189825][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.235741][ T7454] loop1: detected capacity change from 0 to 1024
[  104.255499][ T7454] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.272554][ T7454] ext4 filesystem being mounted at /247/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  104.306197][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.328170][ T7466] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1333'.
[  104.368092][ T7474] netlink: 'syz.4.1336': attribute type 13 has an invalid length.
[  104.411214][ T7478] loop4: detected capacity change from 0 to 4096
[  104.420110][ T7478] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  104.578981][ T7482] netlink: 'syz.4.1338': attribute type 13 has an invalid length.
[  104.823986][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  104.849230][ T7484] netlink: 428 bytes leftover after parsing attributes in process `+}[@'.
[  104.892079][ T7484] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  104.909174][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.928218][ T7489] netlink: 'syz.0.1342': attribute type 10 has an invalid length.
[  104.945048][ T7489] loop0: detected capacity change from 0 to 1024
[  104.952168][ T7489] EXT4-fs: Ignoring removed nomblk_io_submit option
[  104.960256][ T7489] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  104.970715][ T7489] System zones: 0-1, 3-36
[  104.977197][ T7489] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.003284][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.159539][ T7509] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1345'.
[  105.208604][ T7513] nfs4: Unknown parameter '
'
[  105.289433][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.320345][ T7521] loop0: detected capacity change from 0 to 1024
[  105.343754][ T7526] FAULT_INJECTION: forcing a failure.
[  105.343754][ T7526] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  105.356912][ T7526] CPU: 0 UID: 0 PID: 7526 Comm: syz.4.1349 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  105.356974][ T7526] Tainted: [W]=WARN
[  105.356983][ T7526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  105.356996][ T7526] Call Trace:
[  105.357003][ T7526]  <TASK>
[  105.357011][ T7526]  __dump_stack+0x1d/0x30
[  105.357038][ T7526]  dump_stack_lvl+0xe8/0x140
[  105.357063][ T7526]  dump_stack+0x15/0x1b
[  105.357122][ T7526]  should_fail_ex+0x265/0x280
[  105.357150][ T7526]  should_fail+0xb/0x20
[  105.357172][ T7526]  should_fail_usercopy+0x1a/0x20
[  105.357277][ T7526]  _copy_from_user+0x1c/0xb0
[  105.357332][ T7526]  ___sys_recvmsg+0xaa/0x370
[  105.357361][ T7526]  ? 0xffffffff81000000
[  105.357378][ T7526]  ? __rcu_read_unlock+0x4f/0x70
[  105.357442][ T7526]  __x64_sys_recvmsg+0xd1/0x160
[  105.357485][ T7526]  x64_sys_call+0x2b42/0x2ff0
[  105.357513][ T7526]  do_syscall_64+0xd2/0x200
[  105.357603][ T7526]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  105.357636][ T7526]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  105.357663][ T7526]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.357719][ T7526] RIP: 0033:0x7f53240debe9
[  105.357738][ T7526] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.357761][ T7526] RSP: 002b:00007f5322b47038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  105.357785][ T7526] RAX: ffffffffffffffda RBX: 00007f5324305fa0 RCX: 00007f53240debe9
[  105.357800][ T7526] RDX: 0000000000000000 RSI: 00002000000004c0 RDI: 0000000000000003
[  105.357816][ T7526] RBP: 00007f5322b47090 R08: 0000000000000000 R09: 0000000000000000
[  105.357832][ T7526] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  105.357848][ T7526] R13: 00007f5324306038 R14: 00007f5324305fa0 R15: 00007ffd9ba0f168
[  105.357943][ T7526]  </TASK>
[  105.549503][ T7521] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  105.565018][ T7536] netlink: 'syz.3.1357': attribute type 13 has an invalid length.
[  105.579930][ T7521] ext4 filesystem being mounted at /240/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  105.660251][ T7540] loop4: detected capacity change from 0 to 4096
[  105.670243][ T7540] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.686007][ T7544] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1360'.
[  105.928980][ T7555] netlink: 'syz.4.1359': attribute type 13 has an invalid length.
[  106.099101][ T7558] netlink: 'syz.2.1364': attribute type 10 has an invalid length.
[  106.108129][   T29] kauditd_printk_skb: 425 callbacks suppressed
[  106.108145][   T29] audit: type=1326 audit(1755945946.149:5722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7557 comm="syz.2.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbdd45ebe9 code=0x7ffc0000
[  106.144205][   T29] audit: type=1326 audit(1755945946.179:5723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7557 comm="syz.2.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdbdd45ebe9 code=0x7ffc0000
[  106.167762][   T29] audit: type=1326 audit(1755945946.179:5724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7557 comm="syz.2.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbdd45ebe9 code=0x7ffc0000
[  106.185594][ T7558] loop2: detected capacity change from 0 to 1024
[  106.191281][   T29] audit: type=1326 audit(1755945946.179:5725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7557 comm="syz.2.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdbdd45ebe9 code=0x7ffc0000
[  106.221109][   T29] audit: type=1326 audit(1755945946.179:5726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7557 comm="syz.2.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbdd45ebe9 code=0x7ffc0000
[  106.226572][ T7558] EXT4-fs: Ignoring removed nomblk_io_submit option
[  106.244699][   T29] audit: type=1326 audit(1755945946.179:5727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7557 comm="syz.2.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdbdd45ebe9 code=0x7ffc0000
[  106.244738][   T29] audit: type=1326 audit(1755945946.179:5728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7557 comm="syz.2.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbdd45ebe9 code=0x7ffc0000
[  106.244770][   T29] audit: type=1326 audit(1755945946.179:5729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7557 comm="syz.2.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdbdd45ebe9 code=0x7ffc0000
[  106.253989][ T7558] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  106.275055][   T29] audit: type=1326 audit(1755945946.179:5730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7557 comm="syz.2.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbdd45ebe9 code=0x7ffc0000
[  106.298473][ T7558] System zones: 
[  106.321796][   T29] audit: type=1326 audit(1755945946.179:5731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7557 comm="syz.2.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=63 compat=0 ip=0x7fdbdd45ebe9 code=0x7ffc0000
[  106.329884][ T7558] 0-1, 3-36
[  106.384414][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  106.394521][ T7558] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.463079][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.475620][ T7563] netlink: 148 bytes leftover after parsing attributes in process `syz.0.1366'.
[  106.550240][ T7567] netlink: 428 bytes leftover after parsing attributes in process `+}[@'.
[  106.561662][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.592401][ T7567] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  106.620958][ T7572] Driver unsupported XDP return value 0 on prog  (id 1182) dev N/A, expect packet loss!
[  106.633485][ T7576] netlink: 'syz.3.1371': attribute type 10 has an invalid length.
[  106.683073][ T7582] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1373'.
[  106.938648][ T7603] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  106.967301][ T7605] loop4: detected capacity change from 0 to 512
[  106.986347][ T7605] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.999076][ T7605] ext4 filesystem being mounted at /320/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.014465][ T7605] FAULT_INJECTION: forcing a failure.
[  107.014465][ T7605] name failslab, interval 1, probability 0, space 0, times 0
[  107.027187][ T7605] CPU: 0 UID: 0 PID: 7605 Comm: syz.4.1383 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  107.027215][ T7605] Tainted: [W]=WARN
[  107.027221][ T7605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  107.027232][ T7605] Call Trace:
[  107.027238][ T7605]  <TASK>
[  107.027244][ T7605]  __dump_stack+0x1d/0x30
[  107.027263][ T7605]  dump_stack_lvl+0xe8/0x140
[  107.027296][ T7605]  dump_stack+0x15/0x1b
[  107.027309][ T7605]  should_fail_ex+0x265/0x280
[  107.027452][ T7605]  ? audit_log_d_path+0x8d/0x150
[  107.027563][ T7605]  should_failslab+0x8c/0xb0
[  107.027652][ T7605]  __kmalloc_cache_noprof+0x4c/0x320
[  107.027678][ T7605]  audit_log_d_path+0x8d/0x150
[  107.027703][ T7605]  audit_log_d_path_exe+0x42/0x70
[  107.027729][ T7605]  audit_log_task+0x1e9/0x250
[  107.027758][ T7605]  audit_seccomp+0x61/0x100
[  107.027893][ T7605]  ? __seccomp_filter+0x68c/0x10d0
[  107.027911][ T7605]  __seccomp_filter+0x69d/0x10d0
[  107.027929][ T7605]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  107.028042][ T7605]  ? vfs_write+0x7e8/0x960
[  107.028059][ T7605]  ? __rcu_read_unlock+0x4f/0x70
[  107.028087][ T7605]  ? __fget_files+0x184/0x1c0
[  107.028108][ T7605]  __secure_computing+0x82/0x150
[  107.028125][ T7605]  syscall_trace_enter+0xcf/0x1e0
[  107.028155][ T7605]  do_syscall_64+0xac/0x200
[  107.028176][ T7605]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  107.028218][ T7605]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  107.028239][ T7605]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.028309][ T7605] RIP: 0033:0x7f53240debe9
[  107.028321][ T7605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  107.028335][ T7605] RSP: 002b:00007f5322b47038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3
[  107.028350][ T7605] RAX: ffffffffffffffda RBX: 00007f5324305fa0 RCX: 00007f53240debe9
[  107.028360][ T7605] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00002000000121c0
[  107.028369][ T7605] RBP: 00007f5322b47090 R08: 0000000000000000 R09: 0000000000000000
[  107.028399][ T7605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  107.028409][ T7605] R13: 00007f5324306038 R14: 00007f5324305fa0 R15: 00007ffd9ba0f168
[  107.028424][ T7605]  </TASK>
[  107.262240][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.281372][ T7610] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  107.382840][ T7622] loop0: detected capacity change from 0 to 1024
[  107.396284][ T7622] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.433439][ T7622] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4183: comm +}[@: Allocating blocks 449-513 which overlap fs metadata
[  107.450772][ T7621] EXT4-fs (loop0): pa ffff888107210850: logic 48, phys. 177, len 21
[  107.458900][ T7621] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  107.526676][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.668406][ T7631] netlink: 'syz.1.1393': attribute type 13 has an invalid length.
[  108.410194][ T7659] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  108.749157][ T7685] loop4: detected capacity change from 0 to 512
[  108.756000][ T7685] EXT4-fs: Ignoring removed mblk_io_submit option
[  108.762779][ T7685] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  108.775946][ T7685] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  108.788128][ T7685] EXT4-fs (loop4): 1 truncate cleaned up
[  108.794581][ T7685] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  108.825036][ T7689] __nla_validate_parse: 6 callbacks suppressed
[  108.825055][ T7689] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1410'.
[  108.868151][ T7694] loop0: detected capacity change from 0 to 512
[  108.875660][ T7694] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  108.889734][ T7694] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #16: comm syz.0.1411: invalid indirect mapped block 83886080 (level 1)
[  108.910303][ T7694] EXT4-fs (loop0): Remounting filesystem read-only
[  108.919418][ T7697] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  108.920456][ T7694] EXT4-fs (loop0): 1 orphan inode deleted
[  108.932553][ T7694] EXT4-fs (loop0): 1 truncate cleaned up
[  108.938810][ T7694] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.974070][ T7701] macsec1: entered promiscuous mode
[  108.974086][ T7701] bridge0: entered promiscuous mode
[  108.974377][ T7701] bridge0: port 3(macsec1) entered blocking state
[  108.974474][ T7701] bridge0: port 3(macsec1) entered disabled state
[  108.976076][ T7701] macsec1: entered allmulticast mode
[  109.003898][ T7701] bridge0: entered allmulticast mode
[  109.026313][ T7706] netlink: 428 bytes leftover after parsing attributes in process `+}[@'.
[  109.027873][ T7701] macsec1: left allmulticast mode
[  109.040615][ T7701] bridge0: left allmulticast mode
[  109.048296][ T7701] bridge0: left promiscuous mode
[  109.061047][ T7704] netlink: 92 bytes leftover after parsing attributes in process `syz.0.1411'.
[  109.086739][ T7706] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  109.771438][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.795655][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.875422][ T7734] loop0: detected capacity change from 0 to 128
[  109.903572][ T7736] FAULT_INJECTION: forcing a failure.
[  109.903572][ T7736] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  109.916701][ T7736] CPU: 0 UID: 0 PID: 7736 Comm: syz.0.1424 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  109.916752][ T7736] Tainted: [W]=WARN
[  109.916761][ T7736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  109.916831][ T7736] Call Trace:
[  109.916839][ T7736]  <TASK>
[  109.916848][ T7736]  __dump_stack+0x1d/0x30
[  109.916869][ T7736]  dump_stack_lvl+0xe8/0x140
[  109.916888][ T7736]  dump_stack+0x15/0x1b
[  109.916976][ T7736]  should_fail_ex+0x265/0x280
[  109.917008][ T7736]  should_fail+0xb/0x20
[  109.917095][ T7736]  should_fail_usercopy+0x1a/0x20
[  109.917122][ T7736]  _copy_from_user+0x1c/0xb0
[  109.917159][ T7736]  ___sys_sendmsg+0xc1/0x1d0
[  109.917206][ T7736]  __x64_sys_sendmsg+0xd4/0x160
[  109.917302][ T7736]  x64_sys_call+0x191e/0x2ff0
[  109.917331][ T7736]  do_syscall_64+0xd2/0x200
[  109.917367][ T7736]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  109.917399][ T7736]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  109.917479][ T7736]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.917507][ T7736] RIP: 0033:0x7f626e5debe9
[  109.917525][ T7736] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.917546][ T7736] RSP: 002b:00007f626d047038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  109.917629][ T7736] RAX: ffffffffffffffda RBX: 00007f626e805fa0 RCX: 00007f626e5debe9
[  109.917645][ T7736] RDX: 0000000000000000 RSI: 0000200000001dc0 RDI: 0000000000000005
[  109.917686][ T7736] RBP: 00007f626d047090 R08: 0000000000000000 R09: 0000000000000000
[  109.917698][ T7736] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.917710][ T7736] R13: 00007f626e806038 R14: 00007f626e805fa0 R15: 00007ffc697076a8
[  109.917797][ T7736]  </TASK>
[  109.919352][ T7737] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1422'.
[  110.080547][ T7739] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1421'.
[  110.278605][ T7761] loop4: detected capacity change from 0 to 1024
[  110.291418][ T7763] random: crng reseeded on system resumption
[  110.304847][ T7761] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  110.320050][ T7763] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1430'.
[  110.329749][ T7761] ext4 filesystem being mounted at /331/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  110.363482][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.568229][ T7785] loop0: detected capacity change from 0 to 512
[  110.575415][ T7785] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  110.596856][ T7785] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.1440: Failed to acquire dquot type 1
[  110.608834][ T7787] netlink: 'syz.4.1441': attribute type 13 has an invalid length.
[  110.624593][ T7787] loop4: detected capacity change from 0 to 512
[  110.631411][ T7785] EXT4-fs (loop0): 1 truncate cleaned up
[  110.637822][ T7785] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.652258][ T7787] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  110.666726][ T7787] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.1441: Failed to acquire dquot type 1
[  110.685230][ T7787] EXT4-fs (loop4): 1 truncate cleaned up
[  110.693832][ T7787] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.718338][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.775377][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.803395][ T7800] netlink: 'syz.1.1447': attribute type 10 has an invalid length.
[  110.822064][ T7803] loop4: detected capacity change from 0 to 1024
[  110.856934][ T7803] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  110.869218][ T7803] ext4 filesystem being mounted at /336/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  110.893473][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.071565][ T7822] FAULT_INJECTION: forcing a failure.
[  111.071565][ T7822] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  111.084924][ T7822] CPU: 1 UID: 0 PID: 7822 Comm: syz.4.1454 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  111.084973][ T7822] Tainted: [W]=WARN
[  111.084982][ T7822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  111.084999][ T7822] Call Trace:
[  111.085008][ T7822]  <TASK>
[  111.085017][ T7822]  __dump_stack+0x1d/0x30
[  111.085089][ T7822]  dump_stack_lvl+0xe8/0x140
[  111.085110][ T7822]  dump_stack+0x15/0x1b
[  111.085129][ T7822]  should_fail_ex+0x265/0x280
[  111.085204][ T7822]  should_fail+0xb/0x20
[  111.085226][ T7822]  should_fail_usercopy+0x1a/0x20
[  111.085253][ T7822]  _copy_to_user+0x20/0xa0
[  111.085281][ T7822]  simple_read_from_buffer+0xb5/0x130
[  111.085399][ T7822]  proc_fail_nth_read+0x10e/0x150
[  111.085436][ T7822]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  111.085546][ T7822]  vfs_read+0x1a5/0x770
[  111.085573][ T7822]  ? __rcu_read_unlock+0x4f/0x70
[  111.085594][ T7822]  ? __fget_files+0x184/0x1c0
[  111.085663][ T7822]  ksys_read+0xda/0x1a0
[  111.085699][ T7822]  __x64_sys_read+0x40/0x50
[  111.085726][ T7822]  x64_sys_call+0x27bc/0x2ff0
[  111.085747][ T7822]  do_syscall_64+0xd2/0x200
[  111.085788][ T7822]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  111.085815][ T7822]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  111.085913][ T7822]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.085941][ T7822] RIP: 0033:0x7f53240dd5fc
[  111.085956][ T7822] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  111.086027][ T7822] RSP: 002b:00007f5322b26030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  111.086046][ T7822] RAX: ffffffffffffffda RBX: 00007f5324306090 RCX: 00007f53240dd5fc
[  111.086062][ T7822] RDX: 000000000000000f RSI: 00007f5322b260a0 RDI: 0000000000000006
[  111.086158][ T7822] RBP: 00007f5322b26090 R08: 0000000000000000 R09: 0000000000000000
[  111.086174][ T7822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  111.086190][ T7822] R13: 00007f5324306128 R14: 00007f5324306090 R15: 00007ffd9ba0f168
[  111.086215][ T7822]  </TASK>
[  111.309132][ T7824] netlink: 'syz.4.1455': attribute type 13 has an invalid length.
[  111.324792][ T7824] loop4: detected capacity change from 0 to 512
[  111.334416][ T7821] loop0: detected capacity change from 0 to 512
[  111.341962][ T7824] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  111.351776][ T7821] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  111.375517][ T7821] __quota_error: 352 callbacks suppressed
[  111.375546][ T7821] Quota error (device loop0): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  111.391456][ T7821] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  111.401586][ T7821] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.1453: Failed to acquire dquot type 1
[  111.419963][ T7824] Quota error (device loop4): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  111.430065][ T7824] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  111.440032][ T7824] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.1455: Failed to acquire dquot type 1
[  111.472658][ T7821] EXT4-fs (loop0): 1 truncate cleaned up
[  111.481690][   T29] audit: type=1400 audit(1755945951.519:6080): avc:  denied  { write } for  pid=7831 comm="syz.3.1457" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  111.501867][ T7821] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.515957][ T7824] EXT4-fs (loop4): 1 truncate cleaned up
[  111.516136][   T29] audit: type=1400 audit(1755945951.559:6081): avc:  denied  { ioctl } for  pid=7831 comm="syz.3.1457" path="socket:[21350]" dev="sockfs" ino=21350 ioctlcmd=0x48f0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  111.522206][ T7824] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.593147][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.632357][   T29] audit: type=1326 audit(1755945951.669:6082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7836 comm="syz.0.1458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f626e5debe9 code=0x7ffc0000
[  111.655921][   T29] audit: type=1326 audit(1755945951.669:6083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7836 comm="syz.0.1458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f626e5debe9 code=0x7ffc0000
[  111.679264][   T29] audit: type=1326 audit(1755945951.669:6084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7836 comm="syz.0.1458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f626e5debe9 code=0x7ffc0000
[  111.702708][   T29] audit: type=1326 audit(1755945951.669:6085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7836 comm="syz.0.1458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f626e5debe9 code=0x7ffc0000
[  111.802901][ T7850] netlink: 'syz.1.1463': attribute type 13 has an invalid length.
[  111.886713][ T7862] netlink: 'syz.1.1465': attribute type 10 has an invalid length.
[  111.959629][ T7872] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1470'.
[  111.992820][ T7877] netlink: 68 bytes leftover after parsing attributes in process `syz.4.1472'.
[  112.001408][ T7881] FAULT_INJECTION: forcing a failure.
[  112.001408][ T7881] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  112.014998][ T7881] CPU: 0 UID: 0 PID: 7881 Comm: syz.0.1474 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  112.015037][ T7881] Tainted: [W]=WARN
[  112.015046][ T7881] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  112.015118][ T7881] Call Trace:
[  112.015126][ T7881]  <TASK>
[  112.015135][ T7881]  __dump_stack+0x1d/0x30
[  112.015161][ T7881]  dump_stack_lvl+0xe8/0x140
[  112.015185][ T7881]  dump_stack+0x15/0x1b
[  112.015225][ T7881]  should_fail_ex+0x265/0x280
[  112.015252][ T7881]  should_fail+0xb/0x20
[  112.015302][ T7881]  should_fail_usercopy+0x1a/0x20
[  112.015331][ T7881]  _copy_to_user+0x20/0xa0
[  112.015436][ T7881]  simple_read_from_buffer+0xb5/0x130
[  112.015465][ T7881]  proc_fail_nth_read+0x10e/0x150
[  112.015513][ T7881]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  112.015543][ T7881]  vfs_read+0x1a5/0x770
[  112.015616][ T7881]  ? __rcu_read_unlock+0x4f/0x70
[  112.015639][ T7881]  ? __fget_files+0x184/0x1c0
[  112.015736][ T7881]  ? fput+0x8f/0xc0
[  112.015776][ T7881]  ksys_read+0xda/0x1a0
[  112.015802][ T7881]  __x64_sys_read+0x40/0x50
[  112.015825][ T7881]  x64_sys_call+0x27bc/0x2ff0
[  112.015925][ T7881]  do_syscall_64+0xd2/0x200
[  112.015997][ T7881]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  112.016026][ T7881]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  112.016058][ T7881]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.016084][ T7881] RIP: 0033:0x7f626e5dd5fc
[  112.016180][ T7881] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  112.016202][ T7881] RSP: 002b:00007f626d047030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  112.016278][ T7881] RAX: ffffffffffffffda RBX: 00007f626e805fa0 RCX: 00007f626e5dd5fc
[  112.016291][ T7881] RDX: 000000000000000f RSI: 00007f626d0470a0 RDI: 0000000000000005
[  112.016303][ T7881] RBP: 00007f626d047090 R08: 0000000000000000 R09: 0000000000000000
[  112.016314][ T7881] R10: 0000200000000100 R11: 0000000000000246 R12: 0000000000000001
[  112.016326][ T7881] R13: 00007f626e806038 R14: 00007f626e805fa0 R15: 00007ffc697076a8
[  112.016348][ T7881]  </TASK>
[  112.259175][ T7879] serio: Serial port ptm0
[  112.300552][ T7897] netlink: 'syz.0.1480': attribute type 10 has an invalid length.
[  112.308627][ T7892] loop4: detected capacity change from 0 to 512
[  112.320336][ T7897] loop0: detected capacity change from 0 to 1024
[  112.321533][ T7896] FAULT_INJECTION: forcing a failure.
[  112.321533][ T7896] name failslab, interval 1, probability 0, space 0, times 0
[  112.328400][ T7897] EXT4-fs: Ignoring removed nomblk_io_submit option
[  112.339615][ T7896] CPU: 1 UID: 0 PID: 7896 Comm: syz.3.1481 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  112.339655][ T7896] Tainted: [W]=WARN
[  112.339663][ T7896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  112.339690][ T7896] Call Trace:
[  112.339698][ T7896]  <TASK>
[  112.339708][ T7896]  __dump_stack+0x1d/0x30
[  112.339740][ T7896]  dump_stack_lvl+0xe8/0x140
[  112.339894][ T7896]  dump_stack+0x15/0x1b
[  112.339915][ T7896]  should_fail_ex+0x265/0x280
[  112.339943][ T7896]  should_failslab+0x8c/0xb0
[  112.339979][ T7896]  kmem_cache_alloc_node_noprof+0x57/0x320
[  112.340017][ T7896]  ? __alloc_skb+0x101/0x320
[  112.340078][ T7896]  __alloc_skb+0x101/0x320
[  112.340159][ T7896]  ? audit_log_start+0x365/0x6c0
[  112.340209][ T7896]  audit_log_start+0x380/0x6c0
[  112.340254][ T7896]  audit_seccomp+0x48/0x100
[  112.340288][ T7896]  ? __seccomp_filter+0x68c/0x10d0
[  112.340341][ T7896]  __seccomp_filter+0x69d/0x10d0
[  112.340372][ T7896]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  112.340409][ T7896]  ? vfs_write+0x7e8/0x960
[  112.340510][ T7896]  __secure_computing+0x82/0x150
[  112.340539][ T7896]  syscall_trace_enter+0xcf/0x1e0
[  112.340573][ T7896]  do_syscall_64+0xac/0x200
[  112.340617][ T7896]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  112.340651][ T7896]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  112.340686][ T7896]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.340715][ T7896] RIP: 0033:0x7f96390aebe9
[  112.340811][ T7896] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.340916][ T7896] RSP: 002b:00007f9637b0f038 EFLAGS: 00000246 ORIG_RAX: 000000000000000a
[  112.340942][ T7896] RAX: ffffffffffffffda RBX: 00007f96392d5fa0 RCX: 00007f96390aebe9
[  112.340979][ T7896] RDX: 0000000000000005 RSI: 0000000000800000 RDI: 0000200000000000
[  112.340996][ T7896] RBP: 00007f9637b0f090 R08: 0000000000000000 R09: 0000000000000000
[  112.341012][ T7896] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  112.341028][ T7896] R13: 00007f96392d6038 R14: 00007f96392d5fa0 R15: 00007ffc8df3c908
[  112.341054][ T7896]  </TASK>
[  112.442215][ T7892] ext4 filesystem being mounted at /346/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  112.458493][ T7897] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  112.579708][ T7897] System zones: 0-1, 3-36
[  112.648534][ T7913] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1486'.
[  112.657718][ T7913] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1486'.
[  112.854462][ T7926] netlink: 'syz.1.1490': attribute type 13 has an invalid length.
[  112.917692][ T7933] netlink: 'syz.3.1493': attribute type 13 has an invalid length.
[  113.087475][ T7947] loop0: detected capacity change from 0 to 512
[  113.096765][ T7947] EXT4-fs: Ignoring removed nobh option
[  113.116047][ T7947] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #3: comm syz.0.1499: corrupted inode contents
[  113.128279][ T7947] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #3: comm syz.0.1499: mark_inode_dirty error
[  113.141103][ T7947] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #3: comm syz.0.1499: corrupted inode contents
[  113.156825][ T7947] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #3: comm syz.0.1499: mark_inode_dirty error
[  113.165153][ T7958] netlink: 'syz.3.1503': attribute type 13 has an invalid length.
[  113.186884][ T7947] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.1499: Failed to acquire dquot type 0
[  113.210645][ T7947] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.1499: corrupted inode contents
[  113.224911][ T7947] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #16: comm syz.0.1499: mark_inode_dirty error
[  113.237215][ T7947] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.1499: corrupted inode contents
[  113.266067][ T7947] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #16: comm syz.0.1499: mark_inode_dirty error
[  113.290709][ T7947] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.1499: corrupted inode contents
[  113.304045][ T7947] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[  113.313467][ T7947] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.1499: corrupted inode contents
[  113.334048][ T7947] EXT4-fs error (device loop0): ext4_truncate:4666: inode #16: comm syz.0.1499: mark_inode_dirty error
[  113.352190][ T7947] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[  113.379014][ T7947] EXT4-fs (loop0): 1 truncate cleaned up
[  113.393764][ T7947] ext4 filesystem being mounted at /281/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  113.445881][ T7977] FAULT_INJECTION: forcing a failure.
[  113.445881][ T7977] name failslab, interval 1, probability 0, space 0, times 0
[  113.458567][ T7977] CPU: 1 UID: 0 PID: 7977 Comm: syz.4.1512 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  113.458654][ T7977] Tainted: [W]=WARN
[  113.458659][ T7977] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  113.458670][ T7977] Call Trace:
[  113.458675][ T7977]  <TASK>
[  113.458681][ T7977]  __dump_stack+0x1d/0x30
[  113.458699][ T7977]  dump_stack_lvl+0xe8/0x140
[  113.458716][ T7977]  dump_stack+0x15/0x1b
[  113.458752][ T7977]  should_fail_ex+0x265/0x280
[  113.458769][ T7977]  should_failslab+0x8c/0xb0
[  113.458789][ T7977]  kmem_cache_alloc_noprof+0x50/0x310
[  113.458917][ T7977]  ? alloc_empty_file+0x76/0x200
[  113.458977][ T7977]  alloc_empty_file+0x76/0x200
[  113.459002][ T7977]  dentry_open+0x2d/0x90
[  113.459088][ T7977]  __se_sys_fsmount+0x455/0x580
[  113.459110][ T7977]  __x64_sys_fsmount+0x43/0x50
[  113.459129][ T7977]  x64_sys_call+0x2ab3/0x2ff0
[  113.459147][ T7977]  do_syscall_64+0xd2/0x200
[  113.459169][ T7977]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  113.459265][ T7977]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  113.459286][ T7977]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.459345][ T7977] RIP: 0033:0x7f53240debe9
[  113.459357][ T7977] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.459372][ T7977] RSP: 002b:00007f5322b47038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b0
[  113.459407][ T7977] RAX: ffffffffffffffda RBX: 00007f5324305fa0 RCX: 00007f53240debe9
[  113.459418][ T7977] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000005
[  113.459429][ T7977] RBP: 00007f5322b47090 R08: 0000000000000000 R09: 0000000000000000
[  113.459480][ T7977] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  113.459490][ T7977] R13: 00007f5324306038 R14: 00007f5324305fa0 R15: 00007ffd9ba0f168
[  113.459530][ T7977]  </TASK>
[  113.655939][ T3412] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  113.673407][ T3412] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  113.741311][ T7988] netlink: 'syz.4.1516': attribute type 13 has an invalid length.
[  113.758576][ T7988] loop4: detected capacity change from 0 to 512
[  113.783365][ T7988] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  113.810439][ T7992] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  113.823526][ T7988] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.1516: Failed to acquire dquot type 1
[  113.838349][ T7988] EXT4-fs (loop4): 1 truncate cleaned up
[  113.864861][ T8001] loop0: detected capacity change from 0 to 1024
[  113.871961][ T8001] EXT4-fs: Ignoring removed nomblk_io_submit option
[  113.881387][ T8001] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  113.889608][ T8001] System zones: 0-1, 3-36
[  114.046951][ T3412] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  114.054805][ T3412] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  114.234949][ T8035] loop4: detected capacity change from 0 to 512
[  114.242155][ T8035] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  114.256909][ T8035] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.1534: Failed to acquire dquot type 1
[  114.268703][ T8039] loop0: detected capacity change from 0 to 1024
[  114.275826][ T8039] EXT4-fs: Ignoring removed nomblk_io_submit option
[  114.286796][ T8035] EXT4-fs (loop4): 1 truncate cleaned up
[  114.286906][ T8039] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  114.300744][ T8039] System zones: 0-1, 3-36
[  114.325665][ T8050] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  114.339339][ T8050] FAULT_INJECTION: forcing a failure.
[  114.339339][ T8050] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  114.352527][ T8050] CPU: 0 UID: 0 PID: 8050 Comm: syz.4.1539 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  114.352571][ T8050] Tainted: [W]=WARN
[  114.352580][ T8050] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  114.352598][ T8050] Call Trace:
[  114.352607][ T8050]  <TASK>
[  114.352648][ T8050]  __dump_stack+0x1d/0x30
[  114.352674][ T8050]  dump_stack_lvl+0xe8/0x140
[  114.352701][ T8050]  dump_stack+0x15/0x1b
[  114.352788][ T8050]  should_fail_ex+0x265/0x280
[  114.352819][ T8050]  should_fail+0xb/0x20
[  114.352844][ T8050]  should_fail_usercopy+0x1a/0x20
[  114.352953][ T8050]  _copy_from_user+0x1c/0xb0
[  114.352995][ T8050]  __copy_msghdr+0x244/0x300
[  114.353028][ T8050]  ___sys_sendmsg+0x109/0x1d0
[  114.353077][ T8050]  __x64_sys_sendmsg+0xd4/0x160
[  114.353115][ T8050]  x64_sys_call+0x191e/0x2ff0
[  114.353185][ T8050]  do_syscall_64+0xd2/0x200
[  114.353215][ T8050]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  114.353256][ T8050]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  114.353300][ T8050]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.353333][ T8050] RIP: 0033:0x7f53240debe9
[  114.353353][ T8050] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.353378][ T8050] RSP: 002b:00007f5322b47038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  114.353405][ T8050] RAX: ffffffffffffffda RBX: 00007f5324305fa0 RCX: 00007f53240debe9
[  114.353447][ T8050] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[  114.353465][ T8050] RBP: 00007f5322b47090 R08: 0000000000000000 R09: 0000000000000000
[  114.353483][ T8050] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  114.353500][ T8050] R13: 00007f5324306038 R14: 00007f5324305fa0 R15: 00007ffd9ba0f168
[  114.353527][ T8050]  </TASK>
[  114.541254][ T8055] loop0: detected capacity change from 0 to 2048
[  114.586201][ T8055] Alternate GPT is invalid, using primary GPT.
[  114.592758][ T8055]  loop0: p2 p3 p7
[  114.646117][ T8061] __nla_validate_parse: 3 callbacks suppressed
[  114.646137][ T8061] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1543'.
[  114.656986][ T8063] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1544'.
[  114.708970][ T8066] bridge0: port 3(macsec1) entered blocking state
[  114.715488][ T8066] bridge0: port 3(macsec1) entered disabled state
[  114.722428][ T8066] macsec1: entered allmulticast mode
[  114.727799][ T8066] bridge0: entered allmulticast mode
[  114.734139][ T8066] macsec1: left allmulticast mode
[  114.739261][ T8066] bridge0: left allmulticast mode
[  114.749423][ T8069] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  114.766031][ T8070] SELinux:  Context @ is not valid (left unmapped).
[  114.798857][ T8075] netlink: 428 bytes leftover after parsing attributes in process `+}[@'.
[  114.835591][ T8077] loop0: detected capacity change from 0 to 512
[  114.843517][ T8077] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  114.852806][ T8075] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  114.882114][ T8077] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.1550: Failed to acquire dquot type 1
[  114.894427][ T8077] EXT4-fs (loop0): 1 truncate cleaned up
[  114.912637][ T8088] loop4: detected capacity change from 0 to 512
[  114.919699][ T8086] openvswitch: netlink: Message has 6 unknown bytes.
[  114.923910][ T8088] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  114.937282][ T8088] EXT4-fs (loop4): orphan cleanup on readonly fs
[  114.944469][ T8088] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:517: comm syz.4.1554: Block bitmap for bg 0 marked uninitialized
[  114.958717][ T8088] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  114.970234][ T8088] EXT4-fs (loop4): 1 orphan inode deleted
[  114.980650][ T8088] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  114.990770][ T8088] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  114.999991][ T8091] loop0: detected capacity change from 0 to 512
[  115.000559][ T8088] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:517: comm syz.4.1554: Block bitmap for bg 0 marked uninitialized
[  115.020246][ T8088] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:517: comm syz.4.1554: Block bitmap for bg 0 marked uninitialized
[  115.033839][ T8088] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:517: comm syz.4.1554: Block bitmap for bg 0 marked uninitialized
[  115.048459][ T8088] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:517: comm syz.4.1554: Block bitmap for bg 0 marked uninitialized
[  115.051920][ T8091] ext4 filesystem being mounted at /292/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  115.072884][ T8088] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:517: comm syz.4.1554: Block bitmap for bg 0 marked uninitialized
[  115.087386][ T8088] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:517: comm syz.4.1554: Block bitmap for bg 0 marked uninitialized
[  115.117413][ T8088] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1554'.
[  115.130559][ T8097] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1556'.
[  115.168088][ T8099] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1557'.
[  115.187379][ T8103] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  115.224744][ T8107] loop0: detected capacity change from 0 to 1024
[  115.231901][ T8107] EXT4-fs: Ignoring removed nomblk_io_submit option
[  115.240105][ T8107] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  115.248392][ T8107] System zones: 0-1, 3-36
[  115.280687][ T8116] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  115.296921][ T8118] loop0: detected capacity change from 0 to 512
[  115.304259][ T8118] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  115.322019][ T8120] netlink: 428 bytes leftover after parsing attributes in process `+}[@'.
[  115.334304][ T8118] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.1565: Failed to acquire dquot type 1
[  115.347811][ T8118] EXT4-fs (loop0): 1 truncate cleaned up
[  115.381932][ T8120] netdevsim netdevsim4 netdevsim0: entered allmulticast mode
[  115.389595][ T8120] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  115.393353][ T8125] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1568'.
[  115.445170][ T8129] FAULT_INJECTION: forcing a failure.
[  115.445170][ T8129] name failslab, interval 1, probability 0, space 0, times 0
[  115.457978][ T8129] CPU: 0 UID: 0 PID: 8129 Comm: syz.4.1570 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  115.458007][ T8129] Tainted: [W]=WARN
[  115.458012][ T8129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  115.458023][ T8129] Call Trace:
[  115.458028][ T8129]  <TASK>
[  115.458039][ T8129]  __dump_stack+0x1d/0x30
[  115.458058][ T8129]  dump_stack_lvl+0xe8/0x140
[  115.458076][ T8129]  dump_stack+0x15/0x1b
[  115.458089][ T8129]  should_fail_ex+0x265/0x280
[  115.458107][ T8129]  ? cgw_create_job+0x139/0x6b0
[  115.458189][ T8129]  should_failslab+0x8c/0xb0
[  115.458212][ T8129]  __kmalloc_cache_noprof+0x4c/0x320
[  115.458239][ T8129]  cgw_create_job+0x139/0x6b0
[  115.458264][ T8129]  ? __pfx_cgw_create_job+0x10/0x10
[  115.458359][ T8129]  rtnetlink_rcv_msg+0x65a/0x6d0
[  115.458383][ T8129]  ? avc_has_perm_noaudit+0x1b1/0x200
[  115.458407][ T8129]  netlink_rcv_skb+0x120/0x220
[  115.458424][ T8129]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  115.458509][ T8129]  rtnetlink_rcv+0x1c/0x30
[  115.458529][ T8129]  netlink_unicast+0x5c0/0x690
[  115.458567][ T8129]  netlink_sendmsg+0x58b/0x6b0
[  115.458588][ T8129]  ? __pfx_netlink_sendmsg+0x10/0x10
[  115.458684][ T8129]  __sock_sendmsg+0x142/0x180
[  115.458708][ T8129]  ____sys_sendmsg+0x31e/0x4e0
[  115.458730][ T8129]  ___sys_sendmsg+0x17b/0x1d0
[  115.458763][ T8129]  __x64_sys_sendmsg+0xd4/0x160
[  115.458805][ T8129]  x64_sys_call+0x191e/0x2ff0
[  115.458822][ T8129]  do_syscall_64+0xd2/0x200
[  115.458856][ T8129]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  115.458888][ T8129]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  115.458967][ T8129]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.459072][ T8129] RIP: 0033:0x7f53240debe9
[  115.459085][ T8129] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.459100][ T8129] RSP: 002b:00007f5322b47038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  115.459198][ T8129] RAX: ffffffffffffffda RBX: 00007f5324305fa0 RCX: 00007f53240debe9
[  115.459213][ T8129] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  115.459227][ T8129] RBP: 00007f5322b47090 R08: 0000000000000000 R09: 0000000000000000
[  115.459302][ T8129] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  115.459314][ T8129] R13: 00007f5324306038 R14: 00007f5324305fa0 R15: 00007ffd9ba0f168
[  115.459331][ T8129]  </TASK>
[  115.756956][ T8135] FAULT_INJECTION: forcing a failure.
[  115.756956][ T8135] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  115.770175][ T8135] CPU: 1 UID: 0 PID: 8135 Comm: syz.0.1573 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  115.770410][ T8135] Tainted: [W]=WARN
[  115.770418][ T8135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  115.770432][ T8135] Call Trace:
[  115.770439][ T8135]  <TASK>
[  115.770447][ T8135]  __dump_stack+0x1d/0x30
[  115.770473][ T8135]  dump_stack_lvl+0xe8/0x140
[  115.770502][ T8135]  dump_stack+0x15/0x1b
[  115.770520][ T8135]  should_fail_ex+0x265/0x280
[  115.770546][ T8135]  should_fail+0xb/0x20
[  115.770651][ T8135]  should_fail_usercopy+0x1a/0x20
[  115.770714][ T8135]  _copy_from_iter+0xd2/0xe80
[  115.770748][ T8135]  ? __build_skb_around+0x1a0/0x200
[  115.770837][ T8135]  ? __alloc_skb+0x223/0x320
[  115.770898][ T8135]  netlink_sendmsg+0x471/0x6b0
[  115.770933][ T8135]  ? __pfx_netlink_sendmsg+0x10/0x10
[  115.771092][ T8135]  __sock_sendmsg+0x142/0x180
[  115.771134][ T8135]  ____sys_sendmsg+0x31e/0x4e0
[  115.771236][ T8135]  ___sys_sendmsg+0x17b/0x1d0
[  115.771277][ T8135]  __x64_sys_sendmsg+0xd4/0x160
[  115.771317][ T8135]  x64_sys_call+0x191e/0x2ff0
[  115.771348][ T8135]  do_syscall_64+0xd2/0x200
[  115.771388][ T8135]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  115.771440][ T8135]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  115.771478][ T8135]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.771504][ T8135] RIP: 0033:0x7f626e5debe9
[  115.771537][ T8135] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.771579][ T8135] RSP: 002b:00007f626d047038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  115.771606][ T8135] RAX: ffffffffffffffda RBX: 00007f626e805fa0 RCX: 00007f626e5debe9
[  115.771624][ T8135] RDX: 0000000000048044 RSI: 0000200000000200 RDI: 0000000000000003
[  115.771641][ T8135] RBP: 00007f626d047090 R08: 0000000000000000 R09: 0000000000000000
[  115.771658][ T8135] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  115.771670][ T8135] R13: 00007f626e806038 R14: 00007f626e805fa0 R15: 00007ffc697076a8
[  115.771691][ T8135]  </TASK>
[  116.098781][ T8149] loop4: detected capacity change from 0 to 1024
[  116.105768][ T8149] EXT4-fs: Ignoring removed oldalloc option
[  116.111682][ T8149] EXT4-fs: Ignoring removed nobh option
[  116.118359][ T8149] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  116.127437][ T8149] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  116.204543][ T8153] netlink: 428 bytes leftover after parsing attributes in process `+}[@'.
[  116.253778][ T8149] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  116.262056][ T8149] EXT4-fs (loop4): orphan cleanup on readonly fs
[  116.268938][ T8149] EXT4-fs warning (device loop4): ext4_enable_quotas:7172: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  116.283636][ T8149] EXT4-fs (loop4): Cannot turn on quotas: error -117
[  116.290856][ T8149] EXT4-fs error (device loop4): ext4_free_blocks:6696: comm syz.4.1571: Freeing blocks not in datazone - block = 0, count = 4096
[  116.305914][ T8149] EXT4-fs (loop4): 1 orphan inode deleted
[  116.434286][ T8160] FAULT_INJECTION: forcing a failure.
[  116.434286][ T8160] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  116.447487][ T8160] CPU: 0 UID: 0 PID: 8160 Comm: syz.0.1581 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  116.447527][ T8160] Tainted: [W]=WARN
[  116.447535][ T8160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  116.447550][ T8160] Call Trace:
[  116.447558][ T8160]  <TASK>
[  116.447567][ T8160]  __dump_stack+0x1d/0x30
[  116.447593][ T8160]  dump_stack_lvl+0xe8/0x140
[  116.447678][ T8160]  dump_stack+0x15/0x1b
[  116.447698][ T8160]  should_fail_ex+0x265/0x280
[  116.447724][ T8160]  should_fail+0xb/0x20
[  116.447826][ T8160]  should_fail_usercopy+0x1a/0x20
[  116.447900][ T8160]  _copy_to_user+0x20/0xa0
[  116.447938][ T8160]  simple_read_from_buffer+0xb5/0x130
[  116.447968][ T8160]  proc_fail_nth_read+0x10e/0x150
[  116.448029][ T8160]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  116.448064][ T8160]  vfs_read+0x1a5/0x770
[  116.448090][ T8160]  ? __rcu_read_unlock+0x4f/0x70
[  116.448118][ T8160]  ? __fget_files+0x184/0x1c0
[  116.448153][ T8160]  ksys_read+0xda/0x1a0
[  116.448237][ T8160]  __x64_sys_read+0x40/0x50
[  116.448271][ T8160]  x64_sys_call+0x27bc/0x2ff0
[  116.448291][ T8160]  do_syscall_64+0xd2/0x200
[  116.448317][ T8160]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  116.448365][ T8160]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  116.448395][ T8160]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.448422][ T8160] RIP: 0033:0x7f626e5dd5fc
[  116.448440][ T8160] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  116.448514][ T8160] RSP: 002b:00007f626d047030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  116.448538][ T8160] RAX: ffffffffffffffda RBX: 00007f626e805fa0 RCX: 00007f626e5dd5fc
[  116.448554][ T8160] RDX: 000000000000000f RSI: 00007f626d0470a0 RDI: 0000000000000004
[  116.448569][ T8160] RBP: 00007f626d047090 R08: 0000000000000000 R09: 0000000000000000
[  116.448585][ T8160] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  116.448681][ T8160] R13: 00007f626e806038 R14: 00007f626e805fa0 R15: 00007ffc697076a8
[  116.448706][ T8160]  </TASK>
[  116.451051][ T8153] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  116.523498][   T29] kauditd_printk_skb: 983 callbacks suppressed
[  116.523515][   T29] audit: type=1400 audit(1755945956.559:7056): avc:  denied  { mounton } for  pid=8164 comm="syz.0.1583" path="/306/file0" dev="tmpfs" ino=1654 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  116.625869][ T8169] bridge_slave_1: left allmulticast mode
[  116.691437][ T8170] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1585'.
[  116.701562][ T8169] bridge_slave_1: left promiscuous mode
[  116.702029][ T8169] bridge0: port 2(bridge_slave_1) entered disabled state
[  116.732118][ T8169] bridge_slave_0: left allmulticast mode
[  116.737842][ T8169] bridge_slave_0: left promiscuous mode
[  116.743840][ T8169] bridge0: port 1(bridge_slave_0) entered disabled state
[  116.782600][   T29] audit: type=1326 audit(1755945956.819:7057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8172 comm="syz.4.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53240debe9 code=0x7ffc0000
[  116.806796][   T29] audit: type=1326 audit(1755945956.819:7058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8172 comm="syz.4.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53240debe9 code=0x7ffc0000
[  116.830326][   T29] audit: type=1326 audit(1755945956.819:7059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8172 comm="syz.4.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=125 compat=0 ip=0x7f53240debe9 code=0x7ffc0000
[  116.853818][   T29] audit: type=1326 audit(1755945956.819:7060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8172 comm="syz.4.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53240debe9 code=0x7ffc0000
[  116.877310][   T29] audit: type=1326 audit(1755945956.819:7061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8172 comm="syz.4.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53240debe9 code=0x7ffc0000
[  116.990010][ T8187] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  117.011279][ T8189] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  117.083627][   T10] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  117.092344][   T10] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  117.128055][   T29] audit: type=1326 audit(1755945957.129:7062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8199 comm="syz.4.1598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53240debe9 code=0x7ffc0000
[  117.152063][   T29] audit: type=1326 audit(1755945957.129:7063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8199 comm="syz.4.1598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=125 compat=0 ip=0x7f53240debe9 code=0x7ffc0000
[  117.175669][   T29] audit: type=1326 audit(1755945957.129:7064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8199 comm="syz.4.1598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53240debe9 code=0x7ffc0000
[  117.258306][   T29] audit: type=1326 audit(1755945957.289:7065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8212 comm="syz.3.1604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96390aebe9 code=0x7ffc0000
[  117.308375][ T8219] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  117.317249][ T8206] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  117.365827][ T8228] FAULT_INJECTION: forcing a failure.
[  117.365827][ T8228] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  117.379006][ T8228] CPU: 0 UID: 0 PID: 8228 Comm: syz.0.1611 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  117.379081][ T8228] Tainted: [W]=WARN
[  117.379090][ T8228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  117.379106][ T8228] Call Trace:
[  117.379113][ T8228]  <TASK>
[  117.379122][ T8228]  __dump_stack+0x1d/0x30
[  117.379148][ T8228]  dump_stack_lvl+0xe8/0x140
[  117.379231][ T8228]  dump_stack+0x15/0x1b
[  117.379317][ T8228]  should_fail_ex+0x265/0x280
[  117.379338][ T8228]  should_fail+0xb/0x20
[  117.379357][ T8228]  should_fail_usercopy+0x1a/0x20
[  117.379443][ T8228]  _copy_from_user+0x1c/0xb0
[  117.379479][ T8228]  ___sys_sendmsg+0xc1/0x1d0
[  117.379558][ T8228]  __x64_sys_sendmsg+0xd4/0x160
[  117.379643][ T8228]  x64_sys_call+0x191e/0x2ff0
[  117.379670][ T8228]  do_syscall_64+0xd2/0x200
[  117.379703][ T8228]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  117.379734][ T8228]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  117.379793][ T8228]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.379821][ T8228] RIP: 0033:0x7f626e5debe9
[  117.379840][ T8228] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  117.379862][ T8228] RSP: 002b:00007f626d047038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  117.379886][ T8228] RAX: ffffffffffffffda RBX: 00007f626e805fa0 RCX: 00007f626e5debe9
[  117.379899][ T8228] RDX: 0000000000000000 RSI: 0000200000000180 RDI: 0000000000000007
[  117.379952][ T8228] RBP: 00007f626d047090 R08: 0000000000000000 R09: 0000000000000000
[  117.379968][ T8228] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  117.379980][ T8228] R13: 00007f626e806038 R14: 00007f626e805fa0 R15: 00007ffc697076a8
[  117.380046][ T8228]  </TASK>
[  117.605394][ T8237] validate_nla: 4 callbacks suppressed
[  117.605411][ T8237] netlink: 'syz.4.1615': attribute type 10 has an invalid length.
[  117.623904][ T8239] FAULT_INJECTION: forcing a failure.
[  117.623904][ T8239] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  117.637079][ T8239] CPU: 0 UID: 0 PID: 8239 Comm: syz.1.1616 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  117.637194][ T8239] Tainted: [W]=WARN
[  117.637203][ T8239] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  117.637218][ T8239] Call Trace:
[  117.637225][ T8239]  <TASK>
[  117.637233][ T8239]  __dump_stack+0x1d/0x30
[  117.637255][ T8239]  dump_stack_lvl+0xe8/0x140
[  117.637274][ T8239]  dump_stack+0x15/0x1b
[  117.637368][ T8239]  should_fail_ex+0x265/0x280
[  117.637389][ T8239]  should_fail+0xb/0x20
[  117.637476][ T8239]  should_fail_usercopy+0x1a/0x20
[  117.637531][ T8239]  _copy_from_user+0x1c/0xb0
[  117.637616][ T8239]  ucma_write+0xd9/0x250
[  117.637643][ T8239]  ? __pfx_ucma_write+0x10/0x10
[  117.637705][ T8239]  vfs_write+0x266/0x960
[  117.637733][ T8239]  ? __rcu_read_unlock+0x4f/0x70
[  117.637761][ T8239]  ? __fget_files+0x184/0x1c0
[  117.637798][ T8239]  ksys_write+0xda/0x1a0
[  117.637829][ T8239]  __x64_sys_write+0x40/0x50
[  117.637868][ T8239]  x64_sys_call+0x27fe/0x2ff0
[  117.637895][ T8239]  do_syscall_64+0xd2/0x200
[  117.637931][ T8239]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  117.638011][ T8239]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  117.638045][ T8239]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.638074][ T8239] RIP: 0033:0x7fadd437ebe9
[  117.638094][ T8239] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  117.638118][ T8239] RSP: 002b:00007fadd2de7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  117.638164][ T8239] RAX: ffffffffffffffda RBX: 00007fadd45a5fa0 RCX: 00007fadd437ebe9
[  117.638188][ T8239] RDX: 0000000000000118 RSI: 0000200000000280 RDI: 0000000000000003
[  117.638204][ T8239] RBP: 00007fadd2de7090 R08: 0000000000000000 R09: 0000000000000000
[  117.638298][ T8239] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  117.638314][ T8239] R13: 00007fadd45a6038 R14: 00007fadd45a5fa0 R15: 00007ffeee612568
[  117.638338][ T8239]  </TASK>
[  117.640080][ T8237] team0: Port device dummy0 added
[  117.704120][ T8242] loop4: detected capacity change from 0 to 512
[  117.709941][    T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  117.833833][ T8242] EXT4-fs error (device loop4): ext4_get_branch:178: inode #11: block 4294967295: comm syz.4.1615: invalid block
[  117.855169][    T9] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  117.863618][ T8242] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.1615: invalid indirect mapped block 4294967295 (level 1)
[  117.906789][ T8242] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.1615: invalid indirect mapped block 4294967295 (level 1)
[  117.960605][ T8242] EXT4-fs (loop4): 2 truncates cleaned up
[  117.972011][ T8257] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  118.037622][ T8261] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  118.213896][ T8295] usb usb1: check_ctrlrecip: process 8295 (syz.0.1630) requesting ep 01 but needs 81
[  118.421469][ T8295] wireguard0: entered promiscuous mode
[  118.427082][ T8295] wireguard0: entered allmulticast mode
[  118.715435][ T8340] block device autoloading is deprecated and will be removed.
[  118.762985][ T8347] netlink: 'syz.4.1636': attribute type 13 has an invalid length.
[  118.802569][ T8354] loop4: detected capacity change from 0 to 512
[  118.809856][ T8354] EXT4-fs: Ignoring removed mblk_io_submit option
[  118.819990][ T8354] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  118.851032][ T8354] EXT4-fs (loop4): 1 truncate cleaned up
[  119.069892][ T8364] netlink: 'syz.3.1635': attribute type 13 has an invalid length.
[  119.307323][ T8354] ==================================================================
[  119.315456][ T8354] BUG: KCSAN: data-race in __writeback_single_inode / xas_set_mark
[  119.323380][ T8354] 
[  119.325716][ T8354] write to 0xffff8881004b7254 of 4 bytes by task 8362 on cpu 1:
[  119.333360][ T8354]  xas_set_mark+0x12b/0x140
[  119.337889][ T8354]  __folio_start_writeback+0x1dd/0x440
[  119.343359][ T8354]  ext4_bio_write_folio+0x5ad/0x9f0
[  119.348578][ T8354]  mpage_process_page_bufs+0x4a1/0x620
[  119.354058][ T8354]  mpage_prepare_extent_to_map+0x786/0xc00
[  119.359903][ T8354]  ext4_do_writepages+0xa05/0x2750
[  119.365022][ T8354]  ext4_writepages+0x176/0x300
[  119.369793][ T8354]  do_writepages+0x1c3/0x310
[  119.374390][ T8354]  file_write_and_wait_range+0x156/0x2c0
[  119.380046][ T8354]  generic_buffers_fsync_noflush+0x45/0x120
[  119.385950][ T8354]  ext4_sync_file+0x1ab/0x690
[  119.390655][ T8354]  vfs_fsync_range+0x10a/0x130
[  119.395420][ T8354]  ext4_buffered_write_iter+0x34f/0x3c0
[  119.400989][ T8354]  ext4_file_write_iter+0xdbf/0xf00
[  119.406201][ T8354]  iter_file_splice_write+0x666/0xa60
[  119.411580][ T8354]  direct_splice_actor+0x156/0x2a0
[  119.416702][ T8354]  splice_direct_to_actor+0x312/0x680
[  119.422077][ T8354]  do_splice_direct+0xda/0x150
[  119.426842][ T8354]  do_sendfile+0x380/0x650
[  119.431264][ T8354]  __x64_sys_sendfile64+0x105/0x150
[  119.436466][ T8354]  x64_sys_call+0x2bb0/0x2ff0
[  119.441161][ T8354]  do_syscall_64+0xd2/0x200
[  119.445760][ T8354]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.451664][ T8354] 
[  119.454015][ T8354] read to 0xffff8881004b7254 of 4 bytes by task 8354 on cpu 0:
[  119.461632][ T8354]  __writeback_single_inode+0x1f9/0x7c0
[  119.467195][ T8354]  writeback_single_inode+0x167/0x3e0
[  119.472600][ T8354]  sync_inode_metadata+0x5b/0x90
[  119.477570][ T8354]  generic_buffers_fsync_noflush+0xd9/0x120
[  119.483470][ T8354]  ext4_sync_file+0x1ab/0x690
[  119.488176][ T8354]  vfs_fsync_range+0x10a/0x130
[  119.492950][ T8354]  ext4_buffered_write_iter+0x34f/0x3c0
[  119.498527][ T8354]  ext4_file_write_iter+0xdbf/0xf00
[  119.503749][ T8354]  iter_file_splice_write+0x666/0xa60
[  119.509137][ T8354]  direct_splice_actor+0x156/0x2a0
[  119.514255][ T8354]  splice_direct_to_actor+0x312/0x680
[  119.519644][ T8354]  do_splice_direct+0xda/0x150
[  119.524414][ T8354]  do_sendfile+0x380/0x650
[  119.528855][ T8354]  __x64_sys_sendfile64+0x105/0x150
[  119.534063][ T8354]  x64_sys_call+0x2bb0/0x2ff0
[  119.538769][ T8354]  do_syscall_64+0xd2/0x200
[  119.543290][ T8354]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.549198][ T8354] 
[  119.551545][ T8354] value changed: 0x0a000021 -> 0x04000021
[  119.557267][ T8354] 
[  119.559613][ T8354] Reported by Kernel Concurrency Sanitizer on:
[  119.566200][ T8354] CPU: 0 UID: 0 PID: 8354 Comm: syz.4.1638 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  119.577514][ T8354] Tainted: [W]=WARN
[  119.581438][ T8354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  119.591492][ T8354] ==================================================================
[  119.711527][ T8362] syz.4.1638 (8362) used greatest stack depth: 9656 bytes left