last executing test programs:

2.158218485s ago: executing program 1 (id=1393):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
sendmsg$NL80211_CMD_DEAUTHENTICATE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="c50f00000000000000001100000008000300", @ANYRES32=0x0, @ANYBLOB="b5002a0084210000"], 0x24}}, 0x0)

2.157553175s ago: executing program 0 (id=1394):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, 0x0, 0x0, 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000080000000000000000000850000007d00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$nl_route(0x10, 0x3, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket(0x10, 0x3, 0x6)
r3 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000040)={'team0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x88, 0x24, 0xf0b, 0x70bd26, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0xffff}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x2, [], 0x0, [0x4, 0x2, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c4, 0x0, 0x0, 0x0, 0x3dc], [0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000]}}}}]}, 0x88}}, 0x20000000)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {0xf}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x0, 0x0, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x40080}, 0x4000c00)

2.086003061s ago: executing program 1 (id=1396):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000200100000102000028"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a00000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x6, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
getgroups(0x3, &(0x7f0000000180)=[0x0, 0x0, 0x0])

2.051826514s ago: executing program 1 (id=1397):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xf, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000340)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
capget(&(0x7f0000000200)={0x19980330}, 0x0)

2.014958867s ago: executing program 1 (id=1398):
r0 = socket(0x400000000010, 0x3, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r1, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000200)={<r2=>0x0, 0x10, &(0x7f0000000080)=[@in={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x7d, &(0x7f0000000400)={r2, @in6={{0xa, 0x4e21, 0x800004, @empty, 0x9}}, 0x4, 0x4, 0x401, 0xa, 0x4, 0x7f}, 0x9c)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
r4 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
syz_usb_disconnect(r4)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000800000000101"], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r5}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r6}, 0x18)
r7 = gettid()
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x800000000004, @tid=r7}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r8 = timerfd_create(0x0, 0x0)
readv(r8, &(0x7f0000000380)=[{&(0x7f0000000040)=""/175, 0xaf}], 0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x400000, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r10}, 0x10)
setitimer(0x0, 0x0, 0x0)
syz_usb_connect(0x4, 0x24, &(0x7f0000000700)=ANY=[@ANYBLOB="0d9d6ec90a69b1c4d65383e432f588c0ac92e1d95b5eb6f58ef8f556eb42ea3dbf39681919681cd0d7beae31b05a3eeb74249e7861ce529879c220d003d2de61530af0b0d7b3fbe462f9295323a6b13c0ea92747bd4efd971e48b7c46d0a56564f45e1a5cf5b7cfd135b5ac17c8e04359641362d957a716154b82f7b7488878978497b23f2136ddc2588514a20d3df589fa0ba28c7e53237240bed8abf8952409df76dbc353ff326a0d8864ecedfd1ce4eadf2", @ANYRES64=r2, @ANYRES32, @ANYRESOCT=r4, @ANYBLOB="be4f36a0ac6dd51215e41b62398d7a404330ccbedd1311a5e0336122aa7ccbe9e7e8142dce9e5a41596e9f29671d0e5f9c35cc16315389ac4ad959954621b54e3935ec6ca61a7bf0ff1e36ea50faa5364d76d585997592e8cc377ac833f2254710d6754427e111e81c0d630983e3cc7dd2cb4b77fa75ad56fe437fd57dea7c7f50f84f7efc6f27e6a2cd8ada425838a62f545bcaf77decfe04cddcf6b8e69d2b5bc5c2ef2a139f402d5108080cace4efadb9b1e2cb81cf8657155e26b0ae4ef345eac86694fca57a33c266c097d2e265e4da9bd5b45a228a32e3068e9583726ed062e15f"], 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r11 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_procs(r11, &(0x7f00000002c0)='cgroup.procs\x00', 0x2, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0xfd4a, &(0x7f0000000300)='\x00@\x00\x00\xfd\xff\bn\x10\xc1\x1c\xe5W\xdf\xad\x96\x14D\a\fK\x9d\xb1y$\xe7\xc5\x049\xf0\x89\x9f\x9b\x04\"R@|I\x1efm\xb6G\xd3\xc2\x9c\xaa7\x83pt\x7f\xab\xd8[&U\xe3\xcfe\xbf\x1a\xbe\x88\xee\x9fz\x87>\x9fR\xc9@v3f'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)

2.013849837s ago: executing program 0 (id=1399):
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0xb, [@struct={0x4, 0x1, 0x0, 0x4, 0x1, 0x1, [{0xa, 0x3}]}]}, {0x0, [0x61, 0x0, 0x30, 0x2e, 0x61, 0x61, 0x61, 0x2e, 0x0]}}, 0x0, 0x3b}, 0x28) (fail_nth: 5)

1.899101336s ago: executing program 0 (id=1400):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f0000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000900)={{r0}, &(0x7f0000000880), &(0x7f00000008c0)='%ps    \x00'}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x12, 0x8, 0x4, 0x7cb4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000580)='kfree\x00', r2}, 0x18)
unshare(0x64000600)
set_mempolicy_home_node(&(0x7f0000146000/0x1000)=nil, 0x1000, 0x0, 0x0)

1.895234317s ago: executing program 2 (id=1401):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x7, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$unix(r1, &(0x7f0000000d80)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="14000000000000000100000001"], 0x18}, 0x0)
recvmmsg(r2, &(0x7f0000001140), 0x700, 0x2, 0x0)

1.60603201s ago: executing program 2 (id=1408):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xf, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000340)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
capget(&(0x7f0000000200)={0x19980330}, 0x0)

1.584678872s ago: executing program 2 (id=1409):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000000d80)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[], 0x18}, 0x0)
recvmmsg(r1, &(0x7f0000001140), 0x700, 0x2, 0x0)

1.410234986s ago: executing program 0 (id=1412):
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4000, &(0x7f0000000c00)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@mblk_io_submit}, {@resuid}, {@norecovery}]}, 0x8, 0x445, &(0x7f0000001dc0)="$eJzs28tvG0UYAPBv105KX8RU5dEHECiIikfSpKX0wAEQSBxAQoJDOYYkrUrdBjVBolUFBaFyRJW4I45I/AWc4IKAExJX4IwqVSiXFk5Ga+82jmunSbDrEP9+0tYzu+POfJ4de3YnG8DAGs3+SSJ2RMRvETHSyC4vMNp4ubF4cfrvxYvTSdRqb/6V1MtdX7w4XRQt3re9yJQj0k+T2Nem3vnzF05PVauz5/L8+MKZ98bnz1945tSZqZOzJ2fPTh47duTwxHNHJ5/tSpxZXNf3fji3f8+rb195ffr4lXd++iYp4m+Jo0tG2+4tN14er9W6XF1/7WxKJ+U+NoQ1KeWn5FB9/I9EKZY6byRe+aSvjQN6qlar1e7rfPhSDdjEkuh3C4D+KH7os+vfYrtDU48N4dqLjQugLO4b+dY4Uo40LzPUcn3bTaMRcfzSP19mW7Teh9jao0oBgIH2XTb/ebrd/C+N5vtCd+drKJWIuCcidkXE0YjYHRH3RtTL3h8RD6yx/tZFklvnn+nVdQW2Stn87/l8bWv5/K+Y/UWllOd21uMfSk6cqs4eyj+TgzG0JctPrFDH9y//+nmnY83zv2zL6i/mgnk7rpa3LH/PzNTC1H+Judm1jyP2ltvFn9xcCUgiYk9EvLDOOk49+fX+Tsc6xD+8qv+4C+tMta8inmj0/6Voib+QrLw+OX5XVGcPjRdnxa1+/uXyG53qv33/91bW/9vanv9F/H9Ukub12vm113H59886XlOu9/wfTt5atu+DqYWFcxMRw8lr9Xylef9kS7nJpfJZ/AcPtB//u2Lpk9gXEdlJ/GBEPBQRD+dtfyQiHo2IAyvE/+NLj727/vh7K4t/ZsX+j5b+X0oMR+ue9onS6R++XVZpZS3xZ/1/pJ46mO9Zzfffatq1vrMZAAAA/n/SiNgRSTp2M52mY2ONv+HfHdvS6tz8wlMn5t4/O9N4RqASQ2lxp2uk6X7oRH5ZX+QnW/KH8/vGX5S21vNj03PVmX4HDwNue4fxn/mz1O/WAT3neS0YXMY/DC7jHwaX8Q+Dq8349+gZDIh2v/8f9aEdwJ3XMv5XXPYzMYDNxfU/DC7jHwaX8Q8DaX5r3P4h+c2RSCNiAzRjsyQi3RDNkOhRot/fTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAN3xbwAAAP//ynflmQ==")
r4 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
write(r5, &(0x7f00000009c0)="3bf58d", 0x3)
sendfile(r5, r4, 0x0, 0x3ffff)
sendfile(r5, r4, 0x0, 0x7fffeffd)

1.253517468s ago: executing program 3 (id=1416):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
fadvise64(r0, 0x80, 0x2, 0x1)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000014007910480000000000690032000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x8, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0xa3}, 0x21)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x6}, 0x0, 0x10000, 0xda, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
pwritev(r1, 0x0, 0x0, 0x5, 0x3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000001c0), 0x1, 0x553, &(0x7f0000001080)="$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")
r2 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r2, 0x2007ffc)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021bc0000000c0a01010000000000000000070000000900020073797a31000000000900010073797a3000000000900003808c000080080003400000000280000b807c000180090001006c617374000000006c000280080001400000000508000140000000090c0002"], 0x140}}, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000280)='+}[@\x00')
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
sendfile(r2, r2, 0x0, 0x800000009)

1.099558121s ago: executing program 3 (id=1417):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
kexec_load(0x4, 0xa, 0x0, 0x0)

1.024156577s ago: executing program 3 (id=1418):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_io_uring_setup(0x45a5, &(0x7f00000002c0)={0x0, 0x1415, 0x4000, 0x3, 0x1e9}, &(0x7f0000000140), &(0x7f0000000200))
r2 = io_uring_setup(0x6d14, &(0x7f0000000400)={0x0, 0x6f46, 0x4000, 0x2, 0x162})
io_uring_register$IORING_REGISTER_RESIZE_RINGS(r1, 0x21, &(0x7f0000000480)={0x0, 0xf2c7, 0x8000, 0x0, 0x190, 0x0, r2}, 0x1)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3, 0x0, 0x7}, 0x18)
r4 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r4, 0x11b, 0x4, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r6, 0x8933, 0x0)
syz_open_procfs$namespace(0x0, 0x0)
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r5, 0x0, 0x20000004)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r7 = syz_open_procfs(0x0, 0x0)
mkdirat(r7, 0x0, 0x0)
r8 = socket$packet(0x11, 0x3, 0x300)
r9 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFBR(r9, 0x8940, &(0x7f00000001c0)=@add_del={0x2, 0x0})
setsockopt$packet_fanout(r8, 0x107, 0x12, &(0x7f0000000240)={0x3, 0x9004}, 0x4)
close(r8)
r10 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000009c0)=@ipv4_newroute={0x4c, 0x18, 0x35f32a6dfa7488dd, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, [@RTA_ENCAP_TYPE={0x6, 0x15, 0x5}, @RTA_ENCAP={0x28, 0x16, 0x0, 0x1, @SEG6_IPTUNNEL_SRH={0x24, 0x1, {{0x1, {0x2b}}, [@mcast2]}}}]}, 0x4c}}, 0x0)
sendmsg$NFNL_MSG_COMPAT_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x2c, 0x0, 0xb, 0x201, 0x0, 0x0, {0x1, 0x0, 0xa}, [@NFTA_COMPAT_REV={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_COMPAT_NAME={0x6, 0x1, '*\x00'}, @NFTA_COMPAT_TYPE={0x8, 0x3, 0x1, 0x0, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20044001}, 0x8000)
prctl$PR_SET_SECCOMP(0x16, 0x1, &(0x7f0000000080)={0x3, &(0x7f0000000000)=[{0x0, 0x80, 0x9, 0x1}, {0x7c, 0x0, 0xa, 0x400}, {0xff00, 0x9, 0x16, 0x4d09}]})

767.629517ms ago: executing program 1 (id=1419):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000000001000001"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r1, @ANYBLOB], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x7}, 0x18)
sendmsg$nl_route(r0, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="240000001800090400000000000000000a000000000000030000000008001e0001"], 0x24}}, 0x0)

745.967499ms ago: executing program 1 (id=1420):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSBRKP(r0, 0x5425, 0x0)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/partitions\x00', 0x0, 0x0)
tee(r1, r0, 0x8001, 0x8)
sendfile(r1, r2, 0x0, 0x20000023896)
socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xbb)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0xc, &(0x7f00000001c0)=0x741e, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r4}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
recvmsg(r5, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x41, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(r6, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b000000000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000003380)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000006cfa000018120000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', 0xffffffffffffffff, 0x0, 0xfffffffffffffffe}, 0x18)
add_key(&(0x7f0000000280)='rxrpc\x00', 0x0, &(0x7f0000000100)="01000000020000000000006bb57ae0fffc5a2a630b00c145", 0x18, 0xffffffffffffffff)
socket$nl_route(0x10, 0x3, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2b}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)

686.011704ms ago: executing program 2 (id=1422):
r0 = openat$selinux_validatetrans(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r1, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port1\x00', 0x72, 0x11cfa, 0x0, 0x8000007, 0x3, 0x4, 0x1, 0x0, 0x6})
ioctl$BTRFS_IOC_SNAP_CREATE(r0, 0x50009401, &(0x7f0000001780)={{r1}, "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"})
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
r3 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r4, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
getegid()
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="070000000400000008020000d900000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000004fe635645a21b009f00000000000000000000f371db00000000"], 0x50)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=ANY=[@ANYBLOB="02030003110000002cbd7000fcdbdd2503000900800000001cdc0dca1d9f68846960e56de42944af05000600002000000a000000000000000000000000000000000000000000000102000000000000000200010000000000000007160000000005000500000000000a"], 0x88}, 0x1, 0x7}, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000000000000000000e50000000018b3cddcdc621152e75e8220590ef957a97abb365d3d65b8793ffea11d3cbc977d2d014656b2fca7a47d7f520af290690c14942c0999b8270000000000", @ANYRES32=r5, @ANYBLOB="0000000000000000b703000000000000850000001b000000b7000000000000009500000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r7}, 0x18)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r2, 0x40505330, &(0x7f0000000140)={0x800100, 0xffffffff, 0x2, 0xe1db, 0x1101, 0xff})
socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000180)={'veth0_to_team\x00', <r8=>0x0})
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x6, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180200000000000000000000000000008500000036000000c50000002a00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={r9, r8, 0x25, 0x2}, 0x14)
pipe2(&(0x7f0000000040)={<r10=>0xffffffffffffffff}, 0x0)
close_range(r10, 0xffffffffffffffff, 0x0)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000280)={0xffffffffffffffff, 0x20, &(0x7f0000000200)={&(0x7f0000000080)=""/88, 0x58, <r11=>0x0, &(0x7f0000000100)=""/107, 0x6b}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x1e, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1800aee73a86875f9556d5a00000000000000000010000000000180100002020702500000000002020207b1af8ff00000000bfa10000000000000701"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r11, 0x0, 0xfffffffffffffe9d, 0x0, 0x0, 0x0}, 0x94)
r12 = bpf$OBJ_GET_PROG(0x7, &(0x7f00000003c0)=@generic={&(0x7f0000000240)='./file0\x00', 0x0, 0x8}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xb, 0x14, &(0x7f0000000300)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x44d, 0x0, 0x0, 0x0, 0x7}, {{0x18, 0x1, 0x1, 0x0, r5}}, {}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r5}}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffa}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000000)='syzkaller\x00', 0xc767, 0x1d, &(0x7f0000000080)=""/29, 0x41000, 0x36, '\x00', r8, @fallback, r10, 0x8, &(0x7f00000000c0)={0x7, 0x5}, 0x8, 0x10, &(0x7f0000000200)={0x1, 0x1, 0x1, 0x8}, 0x10, r11, r12, 0x6, &(0x7f0000000400)=[r5, r5, r5], &(0x7f0000000440)=[{0x1, 0x4, 0x1, 0x9}, {0x2, 0x2, 0x0, 0xa}, {0x0, 0x5, 0x9, 0x7}, {0x2, 0x5, 0x6, 0x3}, {0x1, 0x2, 0x6, 0x8}, {0x4, 0x2, 0xe, 0xd}], 0x10, 0xfffffff9}, 0x94)
close(r1)

490.82128ms ago: executing program 2 (id=1424):
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = openat(0xffffffffffffff9c, 0x0, 0x42, 0x1ff)
close(r1)
execveat(0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x0)
socket$xdp(0x2c, 0x3, 0x0)
openat$random(0xffffffffffffff9c, 0x0, 0x40800, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r3, 0x0, 0x7}, 0x18)
unlink(0x0)
sendmsg$nl_route(r0, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="240000001800090400000000000000000a000000000000030000000008001e0001"], 0x24}}, 0x0)

409.148007ms ago: executing program 2 (id=1425):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x4000, &(0x7f0000000640), 0x2, 0xbb8, &(0x7f00000017c0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./bus\x00', 0x42, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r0}, 0x4)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x1b, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x6, 0x4, 0x7, 0x8}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r6}, 0x10)
socket$inet6_mptcp(0xa, 0x1, 0x106)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000001480)=ANY=[@ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32, @ANYBLOB="002998443900000000e700000000006e848d4f1626c5c973f1000000"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000700200018120000", @ANYRES32=r8, @ANYBLOB="0000000000000000b703000000000000850000001b000000b7000000000000009500000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x6, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$nl_route_sched(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {0xf}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x0, 0x0, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x40080}, 0x4000c00)
ioctl$sock_inet_SIOCSARP(r1, 0x8955, &(0x7f0000000380)={{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x16}}, {0x0, @broadcast}, 0x2, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1}}, 'vlan0\x00'})
recvfrom$unix(0xffffffffffffffff, &(0x7f0000000040)=""/120, 0x78, 0x0, &(0x7f00000000c0)=@file={0x0, './file0\x00'}, 0x6e)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
socket$key(0xf, 0x3, 0x2)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x1018e58, &(0x7f00000002c0)={[{@nodioread_nolock}, {@minixdf}, {@data_err_ignore}, {@max_batch_time={'max_batch_time', 0x3d, 0x8c9}}, {@nodiscard}, {@inlinecrypt}, {@i_version}, {@test_dummy_encryption}]}, 0x6, 0x5fe, &(0x7f0000000c40)="$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")

372.192829ms ago: executing program 0 (id=1426):
r0 = openat$selinux_validatetrans(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r1, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port1\x00', 0x72, 0x11cfa, 0x0, 0x8000007, 0x3, 0x4, 0x1, 0x0, 0x6})
ioctl$BTRFS_IOC_SNAP_CREATE(r0, 0x50009401, &(0x7f0000001780)={{r1}, "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"})
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
r3 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r4, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
getegid()
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="070000000400000008020000d900000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000004fe635645a21b009f00000000000000000000f371db00000000"], 0x50)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=ANY=[@ANYBLOB="02030003110000002cbd7000fcdbdd2503000900800000001cdc0dca1d9f68846960e56de42944af05000600002000000a000000000000000000000000000000000000000000000102000000000000000200010000000000000007160000000005000500000000000a"], 0x88}, 0x1, 0x7}, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000000000000000000e50000000018b3cddcdc621152e75e8220590ef957a97abb365d3d65b8793ffea11d3cbc977d2d014656b2fca7a47d7f520af290690c14942c0999b8270000000000", @ANYRES32=r5, @ANYBLOB="0000000000000000b703000000000000850000001b000000b7000000000000009500000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r7}, 0x18)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r2, 0x40505330, &(0x7f0000000140)={0x800100, 0xffffffff, 0x2, 0xe1db, 0x1101, 0xff})
socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000180)={'veth0_to_team\x00', <r8=>0x0})
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x6, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180200000000000000000000000000008500000036000000c50000002a00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={r9, r8, 0x25, 0x2}, 0x14)
pipe2(&(0x7f0000000040)={<r10=>0xffffffffffffffff}, 0x0)
close_range(r10, 0xffffffffffffffff, 0x0)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000280)={0xffffffffffffffff, 0x20, &(0x7f0000000200)={&(0x7f0000000080)=""/88, 0x58, <r11=>0x0, &(0x7f0000000100)=""/107, 0x6b}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x1e, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1800aee73a86875f9556d5a00000000000000000010000000000180100002020702500000000002020207b1af8ff00000000bfa10000000000000701"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r11, 0x0, 0xfffffffffffffe9d, 0x0, 0x0, 0x0}, 0x94)
r12 = bpf$OBJ_GET_PROG(0x7, &(0x7f00000003c0)=@generic={&(0x7f0000000240)='./file0\x00', 0x0, 0x8}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xb, 0x14, &(0x7f0000000300)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x44d, 0x0, 0x0, 0x0, 0x7}, {{0x18, 0x1, 0x1, 0x0, r5}}, {}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r5}}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffa}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000000)='syzkaller\x00', 0xc767, 0x1d, &(0x7f0000000080)=""/29, 0x41000, 0x36, '\x00', r8, @fallback, r10, 0x8, &(0x7f00000000c0)={0x7, 0x5}, 0x8, 0x10, &(0x7f0000000200)={0x1, 0x1, 0x1, 0x8}, 0x10, r11, r12, 0x6, &(0x7f0000000400)=[r5, r5, r5], &(0x7f0000000440)=[{0x1, 0x4, 0x1, 0x9}, {0x2, 0x2, 0x0, 0xa}, {0x0, 0x5, 0x9, 0x7}, {0x2, 0x5, 0x6, 0x3}, {0x1, 0x2, 0x6, 0x8}, {0x4, 0x2, 0xe, 0xd}], 0x10, 0xfffffff9}, 0x94)
close(r1)

268.450978ms ago: executing program 4 (id=1428):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
kexec_load(0x4, 0xa, 0x0, 0x0)

268.004098ms ago: executing program 4 (id=1429):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB='\v\x00\x00\x00\a\x00\x00\x00\b'], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000aa40)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000ebff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000540)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x18)
r2 = socket(0x10, 0x3, 0x0)
unshare(0x2000400)
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x60, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, 0x0, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x34, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0x4, 0x2, 0x0, 0x0, 0x7, 0x8}, {0x12, 0x3, 0x0, 0x1, 0x1, 0x400}, 0xa5, 0x4, 0x10000000}}, @TCA_TBF_BURST={0x8, 0x6, 0x8057}]}}]}, 0x60}}, 0x44080)

264.777358ms ago: executing program 4 (id=1430):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
kexec_load(0x4, 0xa, 0x0, 0x0)

233.619461ms ago: executing program 4 (id=1431):
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
getrandom(0x0, 0x0, 0x3)
munlockall()
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000840)={0x0, {0x2, 0x0, @broadcast}, {0x4, 0x4e24, @loopback}, {0x2, 0x0, @remote}, 0x184, 0x0, 0x0, 0xfdffffffffffffff, 0x4, &(0x7f0000000180)='lo\x00', 0x0, 0x0, 0x6})
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000001000000000000000000851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000100006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000a80)='kfree\x00', r1, 0x0, 0xfffffffffffffffd}, 0x18)
r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/sys/net/ipv4/vs/sync_persist_mode\x00', 0x2, 0x0)
statx(r2, 0x0, 0x7d00, 0x3ff7a9721f23b969, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000001c0)={'sit0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=@newqdisc={0x12c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r4, {0x0, 0x6}, {0x6, 0xffff}}, [@TCA_EGRESS_BLOCK={0x8, 0xe, 0x7fff}, @TCA_STAB={0x100, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x7, 0x7, 0x2, 0x0, 0x2, 0x5, 0xfffffffa, 0x5}}, {0xe, 0x2, [0x8, 0xf, 0x437, 0x8, 0x3]}}, {{0x1c, 0x1, {0x62, 0x8, 0xf, 0x9, 0x1, 0x2, 0x6, 0x9}}, {0x16, 0x2, [0x0, 0x0, 0x9, 0x1, 0x2, 0x8, 0x7ff, 0x7fff, 0x2d0]}}, {{0x1c, 0x1, {0x3, 0x7, 0x0, 0x10000, 0x2, 0x96, 0x0, 0x6}}, {0x10, 0x2, [0xe, 0xaa30, 0x5, 0x5, 0x9, 0xa850]}}, {{0x1c, 0x1, {0x80, 0x3, 0x6, 0x6d4a, 0x2, 0xc17, 0xfffff2a8, 0x4}}, {0xc, 0x2, [0x8, 0x4, 0xc, 0x3]}}, {{0x1c, 0x1, {0x1, 0x8, 0x401, 0x0, 0x1, 0xe, 0xd8, 0x2}}, {0x8, 0x2, [0x4, 0xc70]}}, {{0x1c, 0x1, {0xc, 0x4, 0x9, 0xaf, 0x1, 0x8000, 0x2747, 0x2}}, {0x8, 0x2, [0x7, 0xef99]}}]}]}, 0x12c}, 0x1, 0x0, 0x0, 0x48801}, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r0, 0x89f8, &(0x7f0000000140)={'syztnl1\x00', &(0x7f00000006c0)={'ip_vti0\x00', r4, 0x700, 0x80, 0x80000001, 0x7, {{0xb, 0x4, 0x0, 0x2a, 0x2c, 0x66, 0x0, 0x3, 0x2f, 0x0, @empty, @rand_addr=0x64010102, {[@lsrr={0x83, 0x17, 0x40, [@initdev={0xac, 0x1e, 0x0, 0x0}, @loopback, @rand_addr=0x64010102, @multicast1, @loopback]}]}}}}})
r5 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
write$UHID_CREATE2(r5, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
r6 = syz_open_dev$hidraw(&(0x7f00000004c0), 0x0, 0x14a042)
socket(0x1e, 0x4, 0x0)
r7 = dup(r6)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r7, 0x8983, &(0x7f0000000100)={0x0, 'ip6_vti0\x00', {0x2}, 0x3})
fsmount(0xffffffffffffffff, 0x0, 0x5)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r7, 0x0, 0xff2, 0x5d, &(0x7f0000000ac0)="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", &(0x7f0000000200)=""/93, 0x0, 0x0, 0x7e, 0x65, &(0x7f0000000280)="f1e4096016ace525a6025202992405035e55714343b9c18bef210ac2671b454284dd01fb861846ed51feea066f417bfafb6e8e8a621f912226a303b14983da27598a799124f7d6a55c47391601af479ce50be22dcd372ff39a70c2eb12db214201db8b429ae8a75ab7be41176dfd805739dc22c54ae2685ae1264900efaf", &(0x7f0000000340)="dc20f11d5458a2b268fcf04a1746e62811a9db3254bc9c543435da32b55b44519db950490320473b932d07826aeeeae0dc3d80c67899cec8f253a7ce0e5ad5af461d8b927adf8007628b4e4718462bae4526aad0bc20f2a4f50bd01dfebe46d70355ebf328", 0x3, 0x0, 0x81}, 0x50)
ftruncate(0xffffffffffffffff, 0x2007ffb)
r8 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r8, 0x10e, 0xc, &(0x7f0000000040)={0x4, 0xffffffff, 0xfffffff8, 0xfffffffc}, 0x10)
sendmsg$nl_route(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=@ipv4_newroute={0x2c, 0x1a, 0x1, 0x70bd27, 0x25dfdbf9, {0x2, 0x20, 0x20, 0xfe, 0x0, 0x0, 0x0, 0x0, 0x2000}, [@RTA_UID={0x8}, @RTA_MARK={0x8, 0x10, 0x3}]}, 0x2c}}, 0x48010)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1000000201005)

212.991583ms ago: executing program 3 (id=1432):
socket$inet6_sctp(0xa, 0x1, 0x84)
r0 = memfd_secret(0x0)
ftruncate(r0, 0x51a9497)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000540)='./cgroup\x00', &(0x7f0000000580), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'prefer', '=relative'}}}]})
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x14, r2, 0x301, 0x70bd29, 0x25dfdbfc, {0x24}}, 0x14}, 0x1, 0x0, 0x0, 0x8041}, 0x0)

168.679356ms ago: executing program 0 (id=1433):
chdir(&(0x7f0000000480)='./cgroup\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x0, 0x0)
open_by_handle_at(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="08000000020001009a"], 0x0)
r1 = openat$selinux_member(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001080)=ANY=[@ANYRES16=r2], 0x50)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000900)={{r3}, &(0x7f0000000880), &(0x7f00000008c0)='%ps    \x00'}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x12, 0x8, 0x4, 0x7cb4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000900)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000580)='kfree\x00', r5}, 0x18)
unshare(0x64000600)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000680)=ANY=[@ANYBLOB="0df851de93b17ab477e128d36a1dbc2bcec8765dd61eb05ab2637e87d14473429fae7f1728d8a787930ec40d0000005f713dc33d56e2b61c263410a9f5be91f50109a0d2ac8b6c8e82d405abc6907b486eb01ef20e84f2489f7326d5734260b5a65912f834", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kmem_cache_free\x00', r7}, 0x10)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
set_mempolicy_home_node(&(0x7f0000146000/0x1000)=nil, 0x1000, 0x0, 0x0)
write$selinux_access(r1, &(0x7f0000000b00)=ANY=[@ANYBLOB="73797374656d5f753a6f62947577eefd258c75ea897556a06a6563745f723a6770675f6167656e745f657865635f743a73302075"], 0x46)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000c40)={&(0x7f0000000640)=ANY=[@ANYRESDEC=r7], 0x0, 0x29, 0x0, 0x1}, 0x28)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000850000000f00000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
mount(&(0x7f0000000000)=@filename='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)='nfs4\x00', 0x14050, &(0x7f00000001c0)='$\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r8}, 0x10)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000002180)='blkio.bfq.io_merged\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r9, 0x0)

168.150136ms ago: executing program 3 (id=1434):
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = openat(0xffffffffffffff9c, 0x0, 0x42, 0x1ff)
close(r1)
execveat(0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x0)
socket$xdp(0x2c, 0x3, 0x0)
openat$random(0xffffffffffffff9c, 0x0, 0x40800, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="070000000400000000"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r3, 0x0, 0x7}, 0x18)
unlink(0x0)
sendmsg$nl_route(r0, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="240000001800090400000000000000000a000000000000030000000008001e0001"], 0x24}}, 0x0)

140.355338ms ago: executing program 3 (id=1435):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4000, &(0x7f0000000c00)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@mblk_io_submit}, {@resuid}, {@norecovery}]}, 0x8, 0x445, &(0x7f0000001dc0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
write(r1, &(0x7f00000009c0)="3bf58d", 0x3)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7fffeffd)
accept$inet(r1, 0x0, &(0x7f0000000080))

19.817458ms ago: executing program 4 (id=1436):
r0 = socket$inet6(0xa, 0x2, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x6f4000)
socket$kcm(0x29, 0x2, 0x0)
r1 = eventfd(0x0)
setsockopt$inet6_int(r0, 0x29, 0x4b, &(0x7f0000000100)=0x4, 0x4)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000180)={@in6={{0xa, 0x4e21, 0x7ff, @mcast2, 0xe0000000}}, 0x0, 0x0, 0x27, 0x0, "fac3893f1e6f7a62de71625147b3e0aea8e86b6ebb6d955e5ad0f5efe43dd71601d3969771707830e4b92efc62e4c1631d7e06bb65222eae0dbb65016b5b528b22c33085cd3af8f1a3e6ea21c91c83c0"}, 0xd8)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x2}, 0x1c)
r2 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r2, 0xc0189374, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x6}}, './file0\x00'})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newlink={0x38, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x137b}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x8, 0x2, 0x0, 0x1, [@IFLA_GENEVE_COLLECT_METADATA={0x4}]}}}]}, 0x38}}, 0x40800)

0s ago: executing program 4 (id=1437):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
fadvise64(r0, 0x80, 0x2, 0x1)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000014007910480000000000690032000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x8, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0xa3}, 0x21)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x6}, 0x0, 0x10000, 0xda, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
pwritev(r1, 0x0, 0x0, 0x5, 0x3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000001c0), 0x1, 0x553, &(0x7f0000001080)="$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")
r2 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r2, 0x2007ffc)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021bc0000000c0a01010000000000000000070000000900020073797a31000000000900010073797a3000000000900003808c000080080003400000000280000b807c000180090001006c617374000000006c000280080001400000000508000140000000090c0002"], 0x140}}, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000280)='+}[@\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x7}, 0x18)
sendfile(r2, r2, 0x0, 0x800000009)

kernel console output (not intermixed with test programs):

9] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[   69.148117][ T4929] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[   69.160222][ T4929] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.485: bg 0: block 353: padding at end of block bitmap is not set
[   69.174871][ T4929] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   69.177078][ T4942] tipc: Started in network mode
[   69.188493][ T4942] tipc: Node identity 4eb998bf2b6c, cluster identity 4711
[   69.195668][ T4942] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   69.202632][ T4942] syzkaller0: entered promiscuous mode
[   69.208328][ T4942] syzkaller0: entered allmulticast mode
[   69.215374][ T3305] EXT4-fs unmount: 21 callbacks suppressed
[   69.215391][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.216128][ T4942] tipc: Resetting bearer <eth:syzkaller0>
[   69.237413][ T4941] tipc: Resetting bearer <eth:syzkaller0>
[   69.244137][ T4941] tipc: Disabling bearer <eth:syzkaller0>
[   69.255433][ T4948] loop0: detected capacity change from 0 to 1024
[   69.278582][ T4948] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.292043][ T4948] ext4 filesystem being mounted at /90/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   69.305138][ T4954] SELinux:  policydb table sizes (2,655368) do not match mine (8,7)
[   69.313351][ T4954] SELinux: failed to load policy
[   69.318878][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.688598][ T4985] loop3: detected capacity change from 0 to 512
[   69.717135][ T4985] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[   70.413154][ T5054] loop0: detected capacity change from 0 to 1024
[   70.430173][ T5054] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.442874][ T5054] ext4 filesystem being mounted at /99/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   70.472194][ T5065] FAULT_INJECTION: forcing a failure.
[   70.472194][ T5065] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   70.485392][ T5065] CPU: 0 UID: 0 PID: 5065 Comm: syz.2.538 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   70.485425][ T5065] Tainted: [W]=WARN
[   70.485433][ T5065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   70.485477][ T5065] Call Trace:
[   70.485483][ T5065]  <TASK>
[   70.485490][ T5065]  __dump_stack+0x1d/0x30
[   70.485511][ T5065]  dump_stack_lvl+0xe8/0x140
[   70.485535][ T5065]  dump_stack+0x15/0x1b
[   70.485554][ T5065]  should_fail_ex+0x265/0x280
[   70.485580][ T5065]  should_fail+0xb/0x20
[   70.485601][ T5065]  should_fail_usercopy+0x1a/0x20
[   70.485705][ T5065]  _copy_from_user+0x1c/0xb0
[   70.485738][ T5065]  __sys_connect+0xd0/0x2b0
[   70.485838][ T5065]  __x64_sys_connect+0x3f/0x50
[   70.485876][ T5065]  x64_sys_call+0x2c08/0x2ff0
[   70.485897][ T5065]  do_syscall_64+0xd2/0x200
[   70.485982][ T5065]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   70.486008][ T5065]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   70.486034][ T5065]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.486126][ T5065] RIP: 0033:0x7fae178aebe9
[   70.486141][ T5065] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.486195][ T5065] RSP: 002b:00007fae16317038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[   70.486214][ T5065] RAX: ffffffffffffffda RBX: 00007fae17ad5fa0 RCX: 00007fae178aebe9
[   70.486227][ T5065] RDX: 0000000000000010 RSI: 0000200000000000 RDI: 0000000000000007
[   70.486240][ T5065] RBP: 00007fae16317090 R08: 0000000000000000 R09: 0000000000000000
[   70.486254][ T5065] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   70.486266][ T5065] R13: 00007fae17ad6038 R14: 00007fae17ad5fa0 R15: 00007ffcabcf7e38
[   70.486372][ T5065]  </TASK>
[   70.662094][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.709480][ T5070] netlink: 'syz.1.541': attribute type 10 has an invalid length.
[   70.719301][ T5070] team0: Port device dummy0 added
[   70.797316][ T5081] netlink: 'syz.0.545': attribute type 10 has an invalid length.
[   70.817855][ T5081] 8021q: adding VLAN 0 to HW filter on device batadv0
[   70.828110][ T5081] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   70.856237][ T5081] loop0: detected capacity change from 0 to 1024
[   70.888504][ T5081] EXT4-fs: Ignoring removed nomblk_io_submit option
[   70.901091][ T5081] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   70.904888][ T5090] FAULT_INJECTION: forcing a failure.
[   70.904888][ T5090] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   70.922359][ T5081] System zones: 
[   70.922360][ T5090] CPU: 0 UID: 0 PID: 5090 Comm: syz.1.549 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   70.922369][ T5081] 0-1
[   70.922396][ T5090] Tainted: [W]=WARN
[   70.922412][ T5090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   70.922457][ T5090] Call Trace:
[   70.922465][ T5090]  <TASK>
[   70.922474][ T5090]  __dump_stack+0x1d/0x30
[   70.922549][ T5090]  dump_stack_lvl+0xe8/0x140
[   70.922639][ T5090]  dump_stack+0x15/0x1b
[   70.922659][ T5090]  should_fail_ex+0x265/0x280
[   70.922692][ T5090]  should_fail+0xb/0x20
[   70.922713][ T5090]  should_fail_usercopy+0x1a/0x20
[   70.922742][ T5090]  _copy_from_user+0x1c/0xb0
[   70.922798][ T5090]  ___sys_sendmsg+0xc1/0x1d0
[   70.922847][ T5090]  __x64_sys_sendmsg+0xd4/0x160
[   70.922880][ T5090]  x64_sys_call+0x191e/0x2ff0
[   70.922909][ T5090]  do_syscall_64+0xd2/0x200
[   70.923019][ T5090]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   70.923049][ T5090]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   70.923099][ T5090]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.923126][ T5090] RIP: 0033:0x7ff04b66ebe9
[   70.923144][ T5090] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.923166][ T5090] RSP: 002b:00007ff04a0d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   70.923235][ T5090] RAX: ffffffffffffffda RBX: 00007ff04b895fa0 RCX: 00007ff04b66ebe9
[   70.923250][ T5090] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000004
[   70.923265][ T5090] RBP: 00007ff04a0d7090 R08: 0000000000000000 R09: 0000000000000000
[   70.923281][ T5090] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   70.923294][ T5090] R13: 00007ff04b896038 R14: 00007ff04b895fa0 R15: 00007ffc7bc552f8
[   70.923319][ T5090]  </TASK>
[   71.103612][ T5081] , 3-36
[   71.111690][ T5081] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.124677][   T29] kauditd_printk_skb: 750 callbacks suppressed
[   71.124692][   T29] audit: type=1326 audit(1755942831.401:1990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5080 comm="syz.0.545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fdf07f7d550 code=0x7ffc0000
[   71.134616][ T5093] loop4: detected capacity change from 0 to 1024
[   71.180679][ T5095] loop3: detected capacity change from 0 to 1024
[   71.185373][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.197187][   T29] audit: type=1326 audit(1755942831.431:1991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5080 comm="syz.0.545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7fdf07f7d937 code=0x7ffc0000
[   71.220566][   T29] audit: type=1326 audit(1755942831.431:1992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5080 comm="syz.0.545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fdf07f7d550 code=0x7ffc0000
[   71.243905][   T29] audit: type=1326 audit(1755942831.431:1993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5080 comm="syz.0.545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf07f7ebe9 code=0x7ffc0000
[   71.267298][   T29] audit: type=1326 audit(1755942831.431:1994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5080 comm="syz.0.545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=94 compat=0 ip=0x7fdf07f7ebe9 code=0x7ffc0000
[   71.290568][   T29] audit: type=1400 audit(1755942831.431:1995): avc:  denied  { setattr } for  pid=5080 comm="syz.0.545" name="file0" dev="loop0" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   71.312832][   T29] audit: type=1326 audit(1755942831.431:1996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5080 comm="syz.0.545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf07f7ebe9 code=0x7ffc0000
[   71.336175][   T29] audit: type=1326 audit(1755942831.431:1997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5080 comm="syz.0.545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fdf07f7ebe9 code=0x7ffc0000
[   71.359441][   T29] audit: type=1326 audit(1755942831.431:1998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5080 comm="syz.0.545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf07f7ebe9 code=0x7ffc0000
[   71.383113][   T29] audit: type=1326 audit(1755942831.431:1999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5080 comm="syz.0.545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdf07f7ebe9 code=0x7ffc0000
[   71.386055][ T5095] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   71.421591][ T5093] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.433815][ T5093] ext4 filesystem being mounted at /109/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   71.445786][ T5095] ext4 filesystem being mounted at /107/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   71.469745][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.851127][ T5173] netlink: 'syz.4.573': attribute type 13 has an invalid length.
[   71.864342][ T5173] loop4: detected capacity change from 0 to 512
[   71.872463][ T5173] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   71.900956][ T5173] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.573: Failed to acquire dquot type 1
[   71.912597][ T5173] EXT4-fs (loop4): 1 truncate cleaned up
[   71.918818][ T5173] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.944492][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.020971][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   72.036059][ T5183] cgroup: Unknown subsys name '¬§@﬽æì¦4*oäÂÒ£hÓîºoþüíUÜ'
[   72.122883][ T5194] loop3: detected capacity change from 0 to 4096
[   72.139937][ T5197] loop4: detected capacity change from 0 to 2048
[   72.150640][ T5194] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.188912][ T5197] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.215069][ T5183] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   72.275018][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.376758][ T5220] __nla_validate_parse: 14 callbacks suppressed
[   72.376773][ T5220] netlink: 4 bytes leftover after parsing attributes in process `syz.4.584'.
[   72.395133][ T5219] netlink: 'syz.0.585': attribute type 13 has an invalid length.
[   72.410665][ T5219] loop0: detected capacity change from 0 to 512
[   72.418971][ T5219] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   72.435384][ T5223] geneve2: entered promiscuous mode
[   72.440727][ T5223] geneve2: entered allmulticast mode
[   72.450202][ T5219] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.585: Failed to acquire dquot type 1
[   72.462086][ T5219] EXT4-fs (loop0): 1 truncate cleaned up
[   72.463169][ T5217] netlink: 'syz.3.580': attribute type 13 has an invalid length.
[   72.469697][ T5219] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.504668][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.633937][ T5234] netlink: 'syz.1.589': attribute type 13 has an invalid length.
[   72.641743][ T5234] netlink: 80 bytes leftover after parsing attributes in process `syz.1.589'.
[   72.975583][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.001735][ T5242] netlink: 'syz.3.592': attribute type 13 has an invalid length.
[   73.016844][ T5242] loop3: detected capacity change from 0 to 512
[   73.023834][ T5242] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   73.038232][ T5242] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.592: Failed to acquire dquot type 1
[   73.049878][ T5242] EXT4-fs (loop3): 1 truncate cleaned up
[   73.055901][ T5242] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.080716][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.215658][ T5265] netlink: 'syz.4.597': attribute type 1 has an invalid length.
[   73.228665][ T5266] netlink: 132 bytes leftover after parsing attributes in process `syz.3.596'.
[   73.262289][ T5265] netlink: 32 bytes leftover after parsing attributes in process `syz.4.597'.
[   73.272809][ T5265] netlink: 44 bytes leftover after parsing attributes in process `syz.4.597'.
[   73.305558][ T5270] loop4: detected capacity change from 0 to 512
[   73.313523][ T5270] EXT4-fs (loop4): orphan cleanup on readonly fs
[   73.320260][ T5270] EXT4-fs warning (device loop4): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   73.335163][ T5270] EXT4-fs (loop4): Cannot turn on quotas: error -117
[   73.342453][ T5270] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.599: bg 0: block 248: padding at end of block bitmap is not set
[   73.344943][ T5274] netlink: 'syz.3.600': attribute type 13 has an invalid length.
[   73.365537][ T5270] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   73.374535][ T5270] EXT4-fs (loop4): 1 orphan inode deleted
[   73.380785][ T5270] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   73.408782][ T5274] loop3: detected capacity change from 0 to 512
[   73.415825][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.429510][ T5274] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   73.452624][ T5282] netlink: 132 bytes leftover after parsing attributes in process `syz.4.602'.
[   73.472168][ T5274] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.600: Failed to acquire dquot type 1
[   73.496971][ T5274] EXT4-fs (loop3): 1 truncate cleaned up
[   73.511983][ T5274] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.543229][ T5279] netlink: 20 bytes leftover after parsing attributes in process `syz.2.604'.
[   73.550123][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.579957][ T5298] netlink: 4 bytes leftover after parsing attributes in process `syz.4.605'.
[   73.620693][ T5303] netlink: 16 bytes leftover after parsing attributes in process `syz.3.606'.
[   73.630835][ T5303] netlink: 12 bytes leftover after parsing attributes in process `syz.3.606'.
[   73.656720][ T5310] FAULT_INJECTION: forcing a failure.
[   73.656720][ T5310] name failslab, interval 1, probability 0, space 0, times 0
[   73.669542][ T5310] CPU: 0 UID: 0 PID: 5310 Comm: syz.1.608 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   73.669577][ T5310] Tainted: [W]=WARN
[   73.669610][ T5310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   73.669622][ T5310] Call Trace:
[   73.669628][ T5310]  <TASK>
[   73.669635][ T5310]  __dump_stack+0x1d/0x30
[   73.669655][ T5310]  dump_stack_lvl+0xe8/0x140
[   73.669674][ T5310]  dump_stack+0x15/0x1b
[   73.669690][ T5310]  should_fail_ex+0x265/0x280
[   73.669775][ T5310]  ? rtnl_newlink+0x5c/0x12d0
[   73.669801][ T5310]  should_failslab+0x8c/0xb0
[   73.669827][ T5310]  __kmalloc_cache_noprof+0x4c/0x320
[   73.669863][ T5310]  rtnl_newlink+0x5c/0x12d0
[   73.669894][ T5310]  ? xas_load+0x413/0x430
[   73.669919][ T5310]  ? xas_load+0x413/0x430
[   73.669971][ T5310]  ? __rcu_read_unlock+0x4f/0x70
[   73.670032][ T5310]  ? xa_load+0xb1/0xe0
[   73.670057][ T5310]  ? __rcu_read_unlock+0x4f/0x70
[   73.670077][ T5310]  ? avc_has_perm_noaudit+0x1b1/0x200
[   73.670125][ T5310]  ? cred_has_capability+0x210/0x280
[   73.670184][ T5310]  ? selinux_capable+0x31/0x40
[   73.670212][ T5310]  ? security_capable+0x83/0x90
[   73.670236][ T5310]  ? ns_capable+0x7d/0xb0
[   73.670255][ T5310]  ? __pfx_rtnl_newlink+0x10/0x10
[   73.670281][ T5310]  rtnetlink_rcv_msg+0x5fb/0x6d0
[   73.670350][ T5310]  ? avc_has_perm_noaudit+0x1b1/0x200
[   73.670377][ T5310]  netlink_rcv_skb+0x120/0x220
[   73.670397][ T5310]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   73.670445][ T5310]  rtnetlink_rcv+0x1c/0x30
[   73.670469][ T5310]  netlink_unicast+0x5c0/0x690
[   73.670505][ T5310]  netlink_sendmsg+0x58b/0x6b0
[   73.670528][ T5310]  ? __pfx_netlink_sendmsg+0x10/0x10
[   73.670587][ T5310]  __sock_sendmsg+0x142/0x180
[   73.670616][ T5310]  ____sys_sendmsg+0x31e/0x4e0
[   73.670716][ T5310]  ___sys_sendmsg+0x17b/0x1d0
[   73.670778][ T5310]  __x64_sys_sendmsg+0xd4/0x160
[   73.670804][ T5310]  x64_sys_call+0x191e/0x2ff0
[   73.670826][ T5310]  do_syscall_64+0xd2/0x200
[   73.670852][ T5310]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   73.670937][ T5310]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   73.670963][ T5310]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.670990][ T5310] RIP: 0033:0x7ff04b66ebe9
[   73.671005][ T5310] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.671057][ T5310] RSP: 002b:00007ff04a0d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   73.671087][ T5310] RAX: ffffffffffffffda RBX: 00007ff04b895fa0 RCX: 00007ff04b66ebe9
[   73.671098][ T5310] RDX: 0000000000000040 RSI: 0000200000000280 RDI: 0000000000000003
[   73.671110][ T5310] RBP: 00007ff04a0d7090 R08: 0000000000000000 R09: 0000000000000000
[   73.671121][ T5310] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   73.671131][ T5310] R13: 00007ff04b896038 R14: 00007ff04b895fa0 R15: 00007ffc7bc552f8
[   73.671238][ T5310]  </TASK>
[   74.223717][ T5341] geneve2: entered promiscuous mode
[   74.229071][ T5341] geneve2: entered allmulticast mode
[   74.235618][ T4683] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 20000 - 0
[   74.262985][ T4683] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 20000 - 0
[   74.273588][ T4683] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 20000 - 0
[   74.293013][ T4683] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 20000 - 0
[   74.703892][ T5379] netlink: 'syz.4.632': attribute type 13 has an invalid length.
[   74.714808][ T5379] loop4: detected capacity change from 0 to 512
[   74.722542][ T5379] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   74.749038][ T5379] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.632: Failed to acquire dquot type 1
[   74.770605][ T5379] EXT4-fs (loop4): 1 truncate cleaned up
[   74.782239][ T5379] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.855553][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.992735][ T5411] loop4: detected capacity change from 0 to 512
[   75.001779][ T5411] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   75.017815][ T5411] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.639: Failed to acquire dquot type 1
[   75.029728][ T5411] EXT4-fs (loop4): 1 truncate cleaned up
[   75.036000][ T5411] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.091431][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.777071][ T5474] lo speed is unknown, defaulting to 1000
[   75.782921][ T5474] lo speed is unknown, defaulting to 1000
[   75.788946][ T5474] lo speed is unknown, defaulting to 1000
[   75.795094][ T5474] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   75.802760][ T5474] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[   75.813710][ T5474] lo speed is unknown, defaulting to 1000
[   75.833947][ T5474] lo speed is unknown, defaulting to 1000
[   75.840417][ T5474] lo speed is unknown, defaulting to 1000
[   75.848302][ T5474] lo speed is unknown, defaulting to 1000
[   75.854375][ T5474] lo speed is unknown, defaulting to 1000
[   75.914352][ T5491] validate_nla: 3 callbacks suppressed
[   75.914370][ T5491] netlink: 'syz.2.659': attribute type 13 has an invalid length.
[   75.952940][ T5494] loop3: detected capacity change from 0 to 4096
[   75.964454][ T5494] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.036324][ T5505] netlink: 'syz.4.662': attribute type 10 has an invalid length.
[   76.054027][ T5502] lo speed is unknown, defaulting to 1000
[   76.062737][ T5505] 8021q: adding VLAN 0 to HW filter on device batadv0
[   76.072649][ T5505] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   76.123453][ T5505] loop4: detected capacity change from 0 to 1024
[   76.131169][   T29] kauditd_printk_skb: 588 callbacks suppressed
[   76.131183][   T29] audit: type=1326 audit(1755942836.411:2575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5504 comm="syz.4.662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f46f91dd84a code=0x7ffc0000
[   76.167950][ T5507] netlink: 'syz.3.660': attribute type 13 has an invalid length.
[   76.188268][ T5505] EXT4-fs: Ignoring removed nomblk_io_submit option
[   76.217593][ T5505] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   76.225744][ T5505] System zones: 0-1, 3-36
[   76.228520][   T29] audit: type=1326 audit(1755942836.461:2576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5504 comm="syz.4.662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f46f91dd84a code=0x7ffc0000
[   76.253335][   T29] audit: type=1326 audit(1755942836.461:2577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5504 comm="syz.4.662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f46f91dd457 code=0x7ffc0000
[   76.255658][ T5505] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.276665][   T29] audit: type=1326 audit(1755942836.461:2578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5504 comm="syz.4.662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f46f91e038a code=0x7ffc0000
[   76.348357][   T29] audit: type=1326 audit(1755942836.571:2579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5504 comm="syz.4.662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f46f91dd550 code=0x7ffc0000
[   76.371815][   T29] audit: type=1326 audit(1755942836.571:2580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5504 comm="syz.4.662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f46f91dd937 code=0x7ffc0000
[   76.395125][   T29] audit: type=1326 audit(1755942836.571:2581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5504 comm="syz.4.662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f46f91dd550 code=0x7ffc0000
[   76.418509][   T29] audit: type=1326 audit(1755942836.571:2582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5504 comm="syz.4.662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46f91debe9 code=0x7ffc0000
[   76.441899][   T29] audit: type=1326 audit(1755942836.571:2583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5504 comm="syz.4.662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46f91debe9 code=0x7ffc0000
[   76.465230][   T29] audit: type=1326 audit(1755942836.611:2584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5504 comm="syz.4.662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=94 compat=0 ip=0x7f46f91debe9 code=0x7ffc0000
[   76.512059][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.558110][ T5529] loop4: detected capacity change from 0 to 512
[   76.564852][ T5529] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[   76.720700][ T5538] netlink: 'syz.2.675': attribute type 13 has an invalid length.
[   76.752072][ T5540] netlink: 'syz.2.676': attribute type 10 has an invalid length.
[   76.761197][ T5540] 8021q: adding VLAN 0 to HW filter on device batadv0
[   76.770862][ T5540] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   76.819381][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.856176][ T5548] netlink: 'syz.3.680': attribute type 10 has an invalid length.
[   76.865123][ T5548] 8021q: adding VLAN 0 to HW filter on device batadv0
[   76.873942][ T5548] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   76.904952][ T5550] geneve2: entered promiscuous mode
[   76.910193][ T5550] geneve2: entered allmulticast mode
[   76.935239][ T5552] netlink: 'syz.2.682': attribute type 13 has an invalid length.
[   77.016083][ T5560] netlink: 'syz.3.686': attribute type 13 has an invalid length.
[   77.035067][ T5560] loop3: detected capacity change from 0 to 512
[   77.042674][ T5560] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   77.062903][ T5560] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.686: Failed to acquire dquot type 1
[   77.092496][ T5560] EXT4-fs (loop3): 1 truncate cleaned up
[   77.098923][ T5560] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.125555][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.147313][ T5572] loop0: detected capacity change from 0 to 512
[   77.154211][ T5572] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[   77.225920][ T5576] loop3: detected capacity change from 0 to 512
[   77.238375][ T5576] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[   77.333746][ T5595] netlink: 'syz.2.695': attribute type 13 has an invalid length.
[   77.367635][ T5592] Falling back ldisc for ttyS3.
[   77.465273][ T5610] netlink: 'syz.2.701': attribute type 13 has an invalid length.
[   77.489418][ T5604] lo speed is unknown, defaulting to 1000
[   77.531440][ T5612] loop4: detected capacity change from 0 to 512
[   77.540042][ T5612] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   77.563835][ T5612] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.703: Failed to acquire dquot type 1
[   77.584613][ T5612] EXT4-fs (loop4): 1 truncate cleaned up
[   77.599389][ T5612] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.729903][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.750586][ T5624] __nla_validate_parse: 11 callbacks suppressed
[   77.750601][ T5624] netlink: 132 bytes leftover after parsing attributes in process `syz.3.706'.
[   77.831647][ T5626] lo speed is unknown, defaulting to 1000
[   77.855398][ T5634] loop3: detected capacity change from 0 to 512
[   77.870551][ T5634] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   77.908582][ T5634] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.710: Failed to acquire dquot type 1
[   77.930357][ T5634] EXT4-fs (loop3): 1 truncate cleaned up
[   77.945357][ T5634] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.998553][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.055885][ T5644] netlink: 8 bytes leftover after parsing attributes in process `syz.2.714'.
[   78.096252][ T5649] netlink: 132 bytes leftover after parsing attributes in process `syz.2.716'.
[   78.127326][ T5647] loop3: detected capacity change from 0 to 512
[   78.134372][ T5647] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   78.136117][ T5651] loop4: detected capacity change from 0 to 1024
[   78.157075][ T5651] EXT4-fs: Ignoring removed nomblk_io_submit option
[   78.165114][ T5647] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.715: Failed to acquire dquot type 1
[   78.178044][ T5651] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   78.178621][ T5647] EXT4-fs (loop3): 1 truncate cleaned up
[   78.192353][ T5647] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.192799][ T5651] System zones: 0-1, 3-36
[   78.210920][ T5651] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.239806][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.250447][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.296082][ T5660] loop3: detected capacity change from 0 to 512
[   78.310944][ T5660] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   78.339260][ T5660] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.720: Failed to acquire dquot type 1
[   78.361065][ T5660] EXT4-fs (loop3): 1 truncate cleaned up
[   78.368486][ T5660] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.378425][ T5665] loop4: detected capacity change from 0 to 512
[   78.393954][ T5667] netlink: 32 bytes leftover after parsing attributes in process `syz.0.721'.
[   78.398718][ T5665] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[   78.412575][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.464442][ T5671] loop0: detected capacity change from 0 to 512
[   78.480144][ T5671] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   78.499261][ T5671] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.724: Failed to acquire dquot type 1
[   78.511984][ T5671] EXT4-fs (loop0): 1 truncate cleaned up
[   78.518400][ T5671] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.531336][ T5673] loop3: detected capacity change from 0 to 4096
[   78.532389][ T5678] netlink: 8 bytes leftover after parsing attributes in process `syz.2.726'.
[   78.549473][ T5673] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.591216][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.603787][ T5679] netlink: 32 bytes leftover after parsing attributes in process `syz.4.727'.
[   78.647575][ T5688] netlink: 132 bytes leftover after parsing attributes in process `syz.0.728'.
[   78.677196][ T5690] loop4: detected capacity change from 0 to 512
[   78.694189][ T5690] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[   78.740301][ T5696] netlink: 32 bytes leftover after parsing attributes in process `syz.0.735'.
[   78.783450][ T5704] loop4: detected capacity change from 0 to 512
[   78.790703][ T5704] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[   78.794597][ T5706] netlink: 8 bytes leftover after parsing attributes in process `syz.0.739'.
[   78.836888][ T5704] netlink: 20 bytes leftover after parsing attributes in process `syz.4.738'.
[   78.978446][ T5723] lo speed is unknown, defaulting to 1000
[   79.038352][ T5734] loop4: detected capacity change from 0 to 1024
[   79.045377][ T5734] EXT4-fs: Ignoring removed nomblk_io_submit option
[   79.053501][ T5734] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   79.062791][ T5734] System zones: 0-1, 3-36
[   79.068823][ T5734] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.082994][ T4683] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 20000 - 0
[   79.098764][ T4683] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 20000 - 0
[   79.108006][ T4683] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 20000 - 0
[   79.117175][ T4659] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 20000 - 0
[   79.130192][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.145958][ T5739] loop0: detected capacity change from 0 to 512
[   79.152879][ T5739] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[   79.380791][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.407311][ T5774] loop0: detected capacity change from 0 to 1024
[   79.428299][ T5774] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.449468][ T5774] ext4 filesystem being mounted at /149/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   79.493368][ T5777] loop3: detected capacity change from 0 to 1024
[   79.504182][ T5777] EXT4-fs: Ignoring removed nomblk_io_submit option
[   79.513619][ T5786] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[   79.516898][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.545125][ T5777] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   79.553968][ T5777] System zones: 0-1, 3-36
[   79.560160][ T5777] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.586164][ T5789] lo speed is unknown, defaulting to 1000
[   79.616467][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.668509][ T5793] lo speed is unknown, defaulting to 1000
[   79.688431][ T5795] block device autoloading is deprecated and will be removed.
[   79.718264][ T5795] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   79.750521][ T5795] FAT-fs (loop1): unable to read boot sector
[   79.928718][ T5816] lo speed is unknown, defaulting to 1000
[   79.972115][ T5822] loop0: detected capacity change from 0 to 1024
[   79.997891][ T5822] EXT4-fs: Ignoring removed nomblk_io_submit option
[   80.030464][ T5822] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   80.048424][ T5819] lo speed is unknown, defaulting to 1000
[   80.057438][ T5822] System zones: 0-1, 3-36
[   80.068182][ T5822] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.138578][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.234578][ T5842] loop1: detected capacity change from 0 to 1024
[   80.259337][ T5842] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   80.271751][ T5842] ext4 filesystem being mounted at /133/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   80.377661][ T5851] lo speed is unknown, defaulting to 1000
[   80.382337][ T5855] loop3: detected capacity change from 0 to 1024
[   80.405423][ T5855] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.418499][ T5855] ext4 filesystem being mounted at /147/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   80.440856][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.820989][ T5911] lo speed is unknown, defaulting to 1000
[   80.975040][ T5913] validate_nla: 13 callbacks suppressed
[   80.975120][ T5913] netlink: 'syz.2.805': attribute type 13 has an invalid length.
[   81.069714][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   81.133008][ T5936] loop1: detected capacity change from 0 to 512
[   81.141879][ T5936] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   81.159031][ T5936] __quota_error: 1087 callbacks suppressed
[   81.159087][ T5936] Quota error (device loop1): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[   81.175029][ T5936] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[   81.185069][ T5936] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.821: Failed to acquire dquot type 1
[   81.196895][ T5936] EXT4-fs (loop1): 1 truncate cleaned up
[   81.203062][ T5936] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.249494][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.291416][ T5949] loop3: detected capacity change from 0 to 512
[   81.303403][ T5949] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   81.336758][ T5953] loop4: detected capacity change from 0 to 1024
[   81.338026][ T5955] lo speed is unknown, defaulting to 1000
[   81.350003][ T5949] Quota error (device loop3): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[   81.360133][ T5949] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[   81.370091][ T5949] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.826: Failed to acquire dquot type 1
[   81.396667][ T5949] EXT4-fs (loop3): 1 truncate cleaned up
[   81.402660][ T5949] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.418805][   T29] audit: type=1326 audit(1755942841.691:3660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5962 comm="syz.0.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf07f7ebe9 code=0x7ffc0000
[   81.443217][ T5953] ext4 filesystem being mounted at /175/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   81.450177][   T29] audit: type=1326 audit(1755942841.691:3661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5962 comm="syz.0.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=115 compat=0 ip=0x7fdf07f7ebe9 code=0x7ffc0000
[   81.477149][   T29] audit: type=1326 audit(1755942841.691:3662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5962 comm="syz.0.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf07f7ebe9 code=0x7ffc0000
[   81.548900][   T29] audit: type=1326 audit(1755942841.751:3663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5962 comm="syz.0.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf07f7ebe9 code=0x7ffc0000
[   81.584082][   T29] audit: type=1326 audit(1755942841.851:3664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5968 comm="syz.0.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf07f7ebe9 code=0x7ffc0000
[   81.607406][ T5971] netlink: 'syz.3.832': attribute type 10 has an invalid length.
[   81.620706][ T5971] loop3: detected capacity change from 0 to 1024
[   81.629337][ T5971] EXT4-fs: Ignoring removed nomblk_io_submit option
[   81.636133][   T29] audit: type=1326 audit(1755942841.881:3666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5969 comm="syz.3.832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f312b33ebe9 code=0x7ffc0000
[   81.646406][ T5971] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   81.692574][ T5971] System zones: 0-1, 3-36
[   81.892663][ T5991] lo speed is unknown, defaulting to 1000
[   81.898873][ T5995] loop1: detected capacity change from 0 to 512
[   81.905659][ T5995] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[   81.969700][ T6002] loop3: detected capacity change from 0 to 4096
[   82.164627][ T6008] netlink: 'syz.2.849': attribute type 10 has an invalid length.
[   82.179532][ T6004] netlink: 'syz.3.847': attribute type 13 has an invalid length.
[   82.234685][ T6010] lo speed is unknown, defaulting to 1000
[   82.669339][ T6072] lo speed is unknown, defaulting to 1000
[   82.683551][ T6076] loop4: detected capacity change from 0 to 4096
[   82.835661][ T6089] lo speed is unknown, defaulting to 1000
[   83.224448][ T6119] netlink: 'syz.4.869': attribute type 13 has an invalid length.
[   83.235401][ T6124] __nla_validate_parse: 24 callbacks suppressed
[   83.235420][ T6124] netlink: 8 bytes leftover after parsing attributes in process `syz.0.883'.
[   83.318503][ T6129] loop1: detected capacity change from 0 to 4096
[   83.575798][ T6145] loop0: detected capacity change from 0 to 512
[   83.584743][ T6145] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[   83.608348][ T6129] netlink: 'syz.1.885': attribute type 13 has an invalid length.
[   83.654198][ T6145] netlink: 20 bytes leftover after parsing attributes in process `syz.0.886'.
[   84.269181][ T6170] netlink: 8 bytes leftover after parsing attributes in process `syz.1.894'.
[   84.422456][ T6180] loop1: detected capacity change from 0 to 512
[   84.434362][ T6182] loop0: detected capacity change from 0 to 1024
[   84.442250][ T6180] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   84.468963][ T6180] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.896: Failed to acquire dquot type 1
[   84.481074][ T6180] EXT4-fs (loop1): 1 truncate cleaned up
[   84.488790][ T6182] ext4 filesystem being mounted at /188/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   84.557687][ T6188] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[   84.910095][ T6201] loop3: detected capacity change from 0 to 4096
[   84.917393][ T5828] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   84.935698][ T6204] netlink: 132 bytes leftover after parsing attributes in process `syz.4.904'.
[   84.961622][ T6207] netlink: 8 bytes leftover after parsing attributes in process `syz.4.905'.
[   85.007921][ T6211] netlink: 'syz.4.907': attribute type 10 has an invalid length.
[   85.027083][ T6211] loop4: detected capacity change from 0 to 1024
[   85.034258][ T6211] EXT4-fs: Ignoring removed nomblk_io_submit option
[   85.042525][ T6211] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   85.051836][ T6211] System zones: 0-1, 3-36
[   85.102159][ T6217] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[   85.112410][ T6213] netlink: 'syz.3.903': attribute type 13 has an invalid length.
[   85.296760][ T6225] loop0: detected capacity change from 0 to 512
[   85.303943][ T6225] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[   85.332692][ T6228] netlink: 'syz.0.913': attribute type 10 has an invalid length.
[   85.351954][ T6228] loop0: detected capacity change from 0 to 1024
[   85.359203][ T6228] EXT4-fs: Ignoring removed nomblk_io_submit option
[   85.367723][ T6228] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   85.375954][ T6228] System zones: 0-1, 3-36
[   85.419634][ T6232] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[   85.419634][ T6232]    program syz.0.914 not setting count and/or reply_len properly
[   85.531853][ T6236] netlink: 8 bytes leftover after parsing attributes in process `syz.1.916'.
[   85.643352][ T6260] loop0: detected capacity change from 0 to 512
[   85.654440][ T6260] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   85.672113][ T6260] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.923: Failed to acquire dquot type 1
[   85.688498][ T6260] EXT4-fs (loop0): 1 truncate cleaned up
[   85.788131][ T6277] netlink: 8 bytes leftover after parsing attributes in process `syz.2.929'.
[   85.809121][ T6279] netlink: 32 bytes leftover after parsing attributes in process `syz.3.930'.
[   85.834559][ T6282] netlink: 'syz.2.931': attribute type 10 has an invalid length.
[   85.843403][ T6283] netlink: 132 bytes leftover after parsing attributes in process `syz.3.932'.
[   85.984008][ T6305] lo speed is unknown, defaulting to 1000
[   86.007166][ T6308] validate_nla: 1 callbacks suppressed
[   86.007182][ T6308] netlink: 'syz.2.938': attribute type 13 has an invalid length.
[   86.062483][ T6314] netlink: 8 bytes leftover after parsing attributes in process `syz.2.941'.
[   86.101242][ T6316] loop4: detected capacity change from 0 to 4096
[   86.131927][ T6325] netlink: 'syz.3.946': attribute type 13 has an invalid length.
[   86.239966][ T6325] loop3: detected capacity change from 0 to 512
[   86.250264][ T6325] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   86.268153][ T6329] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[   86.277660][ T6325] __quota_error: 696 callbacks suppressed
[   86.277672][ T6325] Quota error (device loop3): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[   86.293529][ T6325] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[   86.303448][ T6325] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.946: Failed to acquire dquot type 1
[   86.318689][ T6325] EXT4-fs (loop3): 1 truncate cleaned up
[   86.324734][ T6333] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[   86.368985][   T29] audit: type=1326 audit(1755942846.641:4358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6334 comm="syz.0.949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf07f7ebe9 code=0x7ffc0000
[   86.397904][   T29] audit: type=1326 audit(1755942846.671:4359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6334 comm="syz.0.949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdf07f7ebe9 code=0x7ffc0000
[   86.421233][   T29] audit: type=1326 audit(1755942846.671:4360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6334 comm="syz.0.949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf07f7ebe9 code=0x7ffc0000
[   86.444574][   T29] audit: type=1326 audit(1755942846.671:4361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6334 comm="syz.0.949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdf07f7ebe9 code=0x7ffc0000
[   86.467878][   T29] audit: type=1326 audit(1755942846.671:4362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6334 comm="syz.0.949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf07f7ebe9 code=0x7ffc0000
[   86.491188][   T29] audit: type=1326 audit(1755942846.671:4363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6334 comm="syz.0.949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdf07f7ebe9 code=0x7ffc0000
[   86.514597][   T29] audit: type=1326 audit(1755942846.671:4364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6334 comm="syz.0.949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf07f7ebe9 code=0x7ffc0000
[   86.537983][   T29] audit: type=1326 audit(1755942846.671:4365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6334 comm="syz.0.949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdf07f7ebe9 code=0x7ffc0000
[   86.539020][ T6337] netlink: 'syz.4.940': attribute type 13 has an invalid length.
[   86.700997][ T6353] lo speed is unknown, defaulting to 1000
[   86.710039][ T6374] netlink: 'syz.1.961': attribute type 10 has an invalid length.
[   86.753752][ T6374] loop1: detected capacity change from 0 to 1024
[   86.774312][ T6374] EXT4-fs: Ignoring removed nomblk_io_submit option
[   86.803793][ T6374] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   86.813825][ T6374] System zones: 0-1, 3-36
[   86.948421][ T6386] lo speed is unknown, defaulting to 1000
[   86.977663][ T6392] netdevsim netdevsim4 netdevsim0: entered allmulticast mode
[   86.985230][ T6392] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[   87.156234][ T6405] loop0: detected capacity change from 0 to 128
[   87.257172][ T6405] bio_check_eod: 175 callbacks suppressed
[   87.257191][ T6405] syz.0.972: attempt to access beyond end of device
[   87.257191][ T6405] loop0: rw=2049, sector=145, nr_sectors = 16 limit=128
[   87.277732][ T6405] syz.0.972: attempt to access beyond end of device
[   87.277732][ T6405] loop0: rw=2049, sector=169, nr_sectors = 8 limit=128
[   87.293501][ T6405] syz.0.972: attempt to access beyond end of device
[   87.293501][ T6405] loop0: rw=2049, sector=185, nr_sectors = 8 limit=128
[   87.311162][ T6405] syz.0.972: attempt to access beyond end of device
[   87.311162][ T6405] loop0: rw=2049, sector=201, nr_sectors = 8 limit=128
[   87.324829][ T6405] syz.0.972: attempt to access beyond end of device
[   87.324829][ T6405] loop0: rw=2049, sector=217, nr_sectors = 8 limit=128
[   87.341692][ T6405] syz.0.972: attempt to access beyond end of device
[   87.341692][ T6405] loop0: rw=2049, sector=233, nr_sectors = 8 limit=128
[   87.370112][ T6405] syz.0.972: attempt to access beyond end of device
[   87.370112][ T6405] loop0: rw=2049, sector=249, nr_sectors = 8 limit=128
[   87.377814][ T6421] netlink: 'syz.3.976': attribute type 10 has an invalid length.
[   87.383990][ T6405] syz.0.972: attempt to access beyond end of device
[   87.383990][ T6405] loop0: rw=2049, sector=265, nr_sectors = 8 limit=128
[   87.416469][ T6405] syz.0.972: attempt to access beyond end of device
[   87.416469][ T6405] loop0: rw=2049, sector=281, nr_sectors = 8 limit=128
[   87.430345][ T6421] loop3: detected capacity change from 0 to 1024
[   87.440423][ T6405] syz.0.972: attempt to access beyond end of device
[   87.440423][ T6405] loop0: rw=2049, sector=297, nr_sectors = 8 limit=128
[   87.454721][ T6421] EXT4-fs: Ignoring removed nomblk_io_submit option
[   87.467290][ T6429] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[   87.475035][ T6427] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[   87.489558][ T6421] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   87.497964][ T6421] System zones: 0-1, 3-36
[   87.549395][ T6441] loop3: detected capacity change from 0 to 512
[   87.558586][ T6441] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   87.578620][ T6441] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.985: Failed to acquire dquot type 1
[   87.592238][ T6441] EXT4-fs (loop3): 1 truncate cleaned up
[   87.787936][ T6477] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[   87.881154][ T6483] FAULT_INJECTION: forcing a failure.
[   87.881154][ T6483] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   87.894318][ T6483] CPU: 1 UID: 0 PID: 6483 Comm: syz.3.991 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   87.894373][ T6483] Tainted: [W]=WARN
[   87.894381][ T6483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   87.894396][ T6483] Call Trace:
[   87.894403][ T6483]  <TASK>
[   87.894412][ T6483]  __dump_stack+0x1d/0x30
[   87.894433][ T6483]  dump_stack_lvl+0xe8/0x140
[   87.894474][ T6483]  dump_stack+0x15/0x1b
[   87.894491][ T6483]  should_fail_ex+0x265/0x280
[   87.894516][ T6483]  should_fail+0xb/0x20
[   87.894538][ T6483]  should_fail_usercopy+0x1a/0x20
[   87.894601][ T6483]  _copy_from_iter+0xd2/0xe80
[   87.894625][ T6483]  ? __build_skb_around+0x1a0/0x200
[   87.894658][ T6483]  ? __alloc_skb+0x223/0x320
[   87.894731][ T6483]  netlink_sendmsg+0x471/0x6b0
[   87.894757][ T6483]  ? __pfx_netlink_sendmsg+0x10/0x10
[   87.894790][ T6483]  __sock_sendmsg+0x142/0x180
[   87.894818][ T6483]  ____sys_sendmsg+0x31e/0x4e0
[   87.894845][ T6483]  ___sys_sendmsg+0x17b/0x1d0
[   87.894953][ T6483]  __x64_sys_sendmsg+0xd4/0x160
[   87.894982][ T6483]  x64_sys_call+0x191e/0x2ff0
[   87.895002][ T6483]  do_syscall_64+0xd2/0x200
[   87.895029][ T6483]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   87.895080][ T6483]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   87.895108][ T6483]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.895128][ T6483] RIP: 0033:0x7f312b33ebe9
[   87.895142][ T6483] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.895164][ T6483] RSP: 002b:00007f3129d5d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   87.895239][ T6483] RAX: ffffffffffffffda RBX: 00007f312b566180 RCX: 00007f312b33ebe9
[   87.895251][ T6483] RDX: 0000000000000000 RSI: 0000200000000480 RDI: 0000000000000008
[   87.895264][ T6483] RBP: 00007f3129d5d090 R08: 0000000000000000 R09: 0000000000000000
[   87.895275][ T6483] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   87.895290][ T6483] R13: 00007f312b566218 R14: 00007f312b566180 R15: 00007ffdd15e0ca8
[   87.895320][ T6483]  </TASK>
[   88.248445][ T6489] lo speed is unknown, defaulting to 1000
[   88.319729][ T6492] loop0: detected capacity change from 0 to 512
[   88.327487][ T6492] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   88.364792][ T6492] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.998: Failed to acquire dquot type 1
[   88.393288][ T6492] EXT4-fs (loop0): 1 truncate cleaned up
[   88.462062][ T6503] __nla_validate_parse: 13 callbacks suppressed
[   88.462075][ T6503] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1002'.
[   88.477385][ T6503] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1002'.
[   88.575426][ T6512] loop0: detected capacity change from 0 to 1024
[   88.590197][ T6512] ext4 filesystem being mounted at /219/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   88.602067][ T6518] loop1: detected capacity change from 0 to 1024
[   88.624855][ T6518] ext4 filesystem being mounted at /167/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   88.641704][ T6528] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1009'.
[   88.723300][ T6535] lo speed is unknown, defaulting to 1000
[   89.042557][ T6542] lo speed is unknown, defaulting to 1000
[   89.253575][ T6546] netlink: 'syz.2.1017': attribute type 13 has an invalid length.
[   89.290261][ T6548] macvlan1: entered promiscuous mode
[   89.296300][ T6548] ipvlan0: entered promiscuous mode
[   89.302051][ T6548] ipvlan0: left promiscuous mode
[   89.307552][ T6548] macvlan1: left promiscuous mode
[   89.479374][ T6553] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1020'.
[   89.527695][ T6555] lo speed is unknown, defaulting to 1000
[   89.572836][ T6562] block device autoloading is deprecated and will be removed.
[   89.592040][ T6563] netlink: 'syz.0.1023': attribute type 13 has an invalid length.
[   89.640684][ T6571] geneve2: entered promiscuous mode
[   89.645968][ T6571] geneve2: entered allmulticast mode
[   89.668238][ T6567] lo speed is unknown, defaulting to 1000
[   89.707894][ T6576] loop0: detected capacity change from 0 to 1024
[   89.721238][ T6576] ext4 filesystem being mounted at /224/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.832910][ T6586] netlink: 'syz.3.1034': attribute type 10 has an invalid length.
[   89.851796][ T6586] loop3: detected capacity change from 0 to 1024
[   89.858928][ T6586] EXT4-fs: Ignoring removed nomblk_io_submit option
[   89.886708][ T6586] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   89.911699][ T6586] System zones: 0-1, 3-36
[   89.986479][ T6596] loop4: detected capacity change from 0 to 512
[   89.987630][ T6594] lo speed is unknown, defaulting to 1000
[   89.998771][ T6596] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   90.029504][ T6596] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.1038: Failed to acquire dquot type 1
[   90.041423][ T6596] EXT4-fs (loop4): 1 truncate cleaned up
[   90.090982][ T6604] netlink: 'syz.4.1040': attribute type 13 has an invalid length.
[   90.309640][ T6619] loop1: detected capacity change from 0 to 4096
[   90.354231][ T6633] netlink: 'syz.2.1048': attribute type 10 has an invalid length.
[   90.378549][ T6633] loop2: detected capacity change from 0 to 1024
[   90.390968][ T6633] EXT4-fs: Ignoring removed nomblk_io_submit option
[   90.417130][ T6633] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   90.425895][ T6633] System zones: 0-1, 3-36
[   90.570788][ T6654] lo speed is unknown, defaulting to 1000
[   90.684177][ T6673] loop0: detected capacity change from 0 to 1024
[   90.694689][ T6673] EXT4-fs: Ignoring removed nomblk_io_submit option
[   90.702771][ T6673] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   90.712120][ T6673] System zones: 0-1, 3-36
[   90.769149][ T6682] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[   90.838982][ T6686] loop0: detected capacity change from 0 to 1024
[   90.868070][ T6691] netlink: 428 bytes leftover after parsing attributes in process `+}[@'.
[   90.882676][ T6686] ext4 filesystem being mounted at /229/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   90.918907][ T6691] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[   90.964850][ T6700] loop3: detected capacity change from 0 to 512
[   90.972534][ T6700] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #15: comm syz.3.1072: iget: bad i_size value: 38620345925642
[   90.986517][ T6700] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.1072: couldn't read orphan inode 15 (err -117)
[   90.999967][ T6700] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.1072: bg 0: block 5: invalid block bitmap
[   91.012683][ T6700] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[   91.024948][ T6700] EXT4-fs (loop3): This should not happen!! Data will be lost
[   91.024948][ T6700] 
[   91.034670][ T6700] EXT4-fs (loop3): Total free blocks count 0
[   91.040679][ T6700] EXT4-fs (loop3): Free/Dirty block details
[   91.046592][ T6700] EXT4-fs (loop3): free_blocks=0
[   91.051539][ T6700] EXT4-fs (loop3): dirty_blocks=1
[   91.056596][ T6700] EXT4-fs (loop3): Block reservation details
[   91.062573][ T6700] EXT4-fs (loop3): i_reserved_data_blocks=1
[   91.090986][ T6706] loop3: detected capacity change from 0 to 512
[   91.098045][ T6706] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   91.117858][ T6706] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.1074: Failed to acquire dquot type 1
[   91.131185][ T6706] EXT4-fs (loop3): 1 truncate cleaned up
[   91.226756][ T6724] loop1: detected capacity change from 0 to 1024
[   91.252233][ T6723] lo speed is unknown, defaulting to 1000
[   91.259146][ T6724] ext4 filesystem being mounted at /178/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   91.335934][ T6732] validate_nla: 3 callbacks suppressed
[   91.335969][ T6732] netlink: 'syz.1.1085': attribute type 13 has an invalid length.
[   91.354291][   T29] kauditd_printk_skb: 540 callbacks suppressed
[   91.354307][   T29] audit: type=1400 audit(1755942851.631:4898): avc:  denied  { recv } for  pid=6721 comm="syz.3.1081" saddr=10.128.0.163 src=30036 daddr=10.128.0.27 dest=46884 netif=eth0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[   91.357947][ T6732] loop1: detected capacity change from 0 to 512
[   91.393950][ T6732] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   91.408932][ T6732] Quota error (device loop1): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[   91.418983][ T6732] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[   91.428950][ T6732] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.1085: Failed to acquire dquot type 1
[   91.450639][ T6732] EXT4-fs (loop1): 1 truncate cleaned up
[   91.500709][ T6739] loop3: detected capacity change from 0 to 512
[   91.507766][ T6737] loop1: detected capacity change from 0 to 4096
[   91.514570][ T6739] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   91.542973][ T6739] Quota error (device loop3): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[   91.553192][ T6739] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[   91.563237][ T6739] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.1087: Failed to acquire dquot type 1
[   91.575221][ T6739] EXT4-fs (loop3): 1 truncate cleaned up
[   91.681100][   T29] audit: type=1326 audit(1755942851.951:4899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6752 comm="syz.2.1092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae178aebe9 code=0x7ffc0000
[   91.706136][ T6747] netlink: 'syz.1.1086': attribute type 13 has an invalid length.
[   91.713105][   T29] audit: type=1326 audit(1755942851.951:4900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6752 comm="syz.2.1092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae178aebe9 code=0x7ffc0000
[   91.737447][   T29] audit: type=1326 audit(1755942851.951:4901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6752 comm="syz.2.1092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=115 compat=0 ip=0x7fae178aebe9 code=0x7ffc0000
[   91.761127][   T29] audit: type=1326 audit(1755942851.951:4902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6752 comm="syz.2.1092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae178aebe9 code=0x7ffc0000
[   91.811179][ T6761] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1096'.
[   91.820664][ T6758] netlink: 'syz.2.1094': attribute type 10 has an invalid length.
[   91.861639][   T29] audit: type=1326 audit(1755942852.121:4903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6765 comm="syz.4.1098" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46f91debe9 code=0x7ffc0000
[   91.885402][ T6758] loop2: detected capacity change from 0 to 1024
[   91.908515][ T6758] EXT4-fs: Ignoring removed nomblk_io_submit option
[   91.918465][ T6769] loop4: detected capacity change from 0 to 512
[   91.924603][ T6768] lo speed is unknown, defaulting to 1000
[   91.926139][ T6758] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   91.939548][ T6769] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   91.946461][ T6758] System zones: 0-1, 3-36
[   92.005435][ T6769] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.1099: Failed to acquire dquot type 1
[   92.016910][ T6775] loop3: detected capacity change from 0 to 1024
[   92.030182][ T6769] EXT4-fs (loop4): 1 truncate cleaned up
[   92.040054][ T6775] ext4 filesystem being mounted at /207/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   92.079140][ T6764] lo speed is unknown, defaulting to 1000
[   92.217290][ T6804] netlink: 'syz.4.1112': attribute type 13 has an invalid length.
[   92.242763][ T6805] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1110'.
[   92.262826][ T6804] loop4: detected capacity change from 0 to 512
[   92.281760][ T6804] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   92.309695][ T6804] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.1112: Failed to acquire dquot type 1
[   92.370349][ T6804] EXT4-fs (loop4): 1 truncate cleaned up
[   92.437214][ T6822] netlink: 'syz.1.1114': attribute type 13 has an invalid length.
[   92.472713][ T6822] loop1: detected capacity change from 0 to 512
[   92.480836][ T6822] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   92.523891][ T6822] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.1114: Failed to acquire dquot type 1
[   92.540866][ T6822] EXT4-fs (loop1): 1 truncate cleaned up
[   92.547895][ T6832] loop4: detected capacity change from 0 to 1024
[   92.559693][ T6837] FAULT_INJECTION: forcing a failure.
[   92.559693][ T6837] name failslab, interval 1, probability 0, space 0, times 0
[   92.572353][ T6837] CPU: 1 UID: 0 PID: 6837 Comm: syz.2.1119 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   92.572386][ T6837] Tainted: [W]=WARN
[   92.572403][ T6837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   92.572482][ T6837] Call Trace:
[   92.572489][ T6837]  <TASK>
[   92.572497][ T6837]  __dump_stack+0x1d/0x30
[   92.572523][ T6837]  dump_stack_lvl+0xe8/0x140
[   92.572546][ T6837]  dump_stack+0x15/0x1b
[   92.572617][ T6837]  should_fail_ex+0x265/0x280
[   92.572688][ T6837]  ? rtnl_newlink+0x5c/0x12d0
[   92.572715][ T6837]  should_failslab+0x8c/0xb0
[   92.572739][ T6837]  __kmalloc_cache_noprof+0x4c/0x320
[   92.572896][ T6837]  rtnl_newlink+0x5c/0x12d0
[   92.572973][ T6837]  ? sysvec_call_function_single+0xe/0x80
[   92.573008][ T6837]  ? xas_load+0x413/0x430
[   92.573044][ T6837]  ? xas_load+0x413/0x430
[   92.573114][ T6837]  ? __rcu_read_unlock+0x4f/0x70
[   92.573140][ T6837]  ? xa_load+0xb1/0xe0
[   92.573171][ T6837]  ? __rcu_read_unlock+0x4f/0x70
[   92.573190][ T6837]  ? avc_has_perm_noaudit+0x1b1/0x200
[   92.573233][ T6837]  ? cred_has_capability+0x210/0x280
[   92.573335][ T6837]  ? selinux_capable+0x31/0x40
[   92.573391][ T6837]  ? security_capable+0x83/0x90
[   92.573437][ T6837]  ? ns_capable+0x7d/0xb0
[   92.573463][ T6837]  ? __pfx_rtnl_newlink+0x10/0x10
[   92.573520][ T6837]  rtnetlink_rcv_msg+0x5fb/0x6d0
[   92.573618][ T6837]  netlink_rcv_skb+0x120/0x220
[   92.573641][ T6837]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   92.573679][ T6837]  rtnetlink_rcv+0x1c/0x30
[   92.573775][ T6837]  netlink_unicast+0x5c0/0x690
[   92.573809][ T6837]  netlink_sendmsg+0x58b/0x6b0
[   92.573846][ T6837]  ? __pfx_netlink_sendmsg+0x10/0x10
[   92.573945][ T6837]  __sock_sendmsg+0x142/0x180
[   92.574019][ T6837]  ____sys_sendmsg+0x31e/0x4e0
[   92.574113][ T6837]  ___sys_sendmsg+0x17b/0x1d0
[   92.574153][ T6837]  __x64_sys_sendmsg+0xd4/0x160
[   92.574184][ T6837]  x64_sys_call+0x191e/0x2ff0
[   92.574251][ T6837]  do_syscall_64+0xd2/0x200
[   92.574300][ T6837]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   92.574328][ T6837]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   92.574410][ T6837]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.574512][ T6837] RIP: 0033:0x7fae178aebe9
[   92.574530][ T6837] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   92.574566][ T6837] RSP: 002b:00007fae16317038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   92.574589][ T6837] RAX: ffffffffffffffda RBX: 00007fae17ad5fa0 RCX: 00007fae178aebe9
[   92.574605][ T6837] RDX: 0000000000008000 RSI: 00002000000006c0 RDI: 0000000000000003
[   92.574621][ T6837] RBP: 00007fae16317090 R08: 0000000000000000 R09: 0000000000000000
[   92.574637][ T6837] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   92.574650][ T6837] R13: 00007fae17ad6038 R14: 00007fae17ad5fa0 R15: 00007ffcabcf7e38
[   92.574668][ T6837]  </TASK>
[   92.945561][ T6832] ext4 filesystem being mounted at /224/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   92.968408][ T6847] netlink: 'syz.0.1123': attribute type 13 has an invalid length.
[   93.003648][ T6851] netlink: 'syz.3.1127': attribute type 10 has an invalid length.
[   93.025053][ T6851] loop3: detected capacity change from 0 to 1024
[   93.038015][ T6851] EXT4-fs: Ignoring removed nomblk_io_submit option
[   93.047950][ T6851] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   93.056046][ T6851] System zones: 0-1, 3-36
[   93.060666][ T6853] loop1: detected capacity change from 0 to 4096
[   93.354399][ T6885] loop0: detected capacity change from 0 to 512
[   93.361457][ T6885] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[   93.384118][ T6883] netlink: 'syz.1.1124': attribute type 13 has an invalid length.
[   93.399929][ T6885] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1131'.
[   93.580247][ T6887] loop3: detected capacity change from 0 to 1024
[   93.609137][ T6887] ext4 filesystem being mounted at /211/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.925777][ T6894] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1134'.
[   93.988417][ T6899] lo speed is unknown, defaulting to 1000
[   94.005224][ T6900] lo speed is unknown, defaulting to 1000
[   94.056653][ T6205] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   94.161910][ T6903] lo speed is unknown, defaulting to 1000
[   94.203778][ T6906] netlink: 'syz.1.1139': attribute type 10 has an invalid length.
[   94.215457][ T6907] netlink: 428 bytes leftover after parsing attributes in process `+}[@'.
[   94.239677][ T6906] loop1: detected capacity change from 0 to 1024
[   94.252215][ T6906] EXT4-fs: Ignoring removed nomblk_io_submit option
[   94.272777][ T6906] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   94.281409][ T6907] netdevsim netdevsim0 netdevsim0: entered allmulticast mode
[   94.282555][ T6906] System zones: 0-1, 3-36
[   94.288872][ T6907] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[   94.312023][ T6912] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1140'.
[   94.455107][ T6924] loop3: detected capacity change from 0 to 4096
[   94.610415][ T6945] geneve2: entered promiscuous mode
[   94.615623][ T6945] geneve2: entered allmulticast mode
[   94.647054][ T6943] netlink: 'syz.3.1145': attribute type 13 has an invalid length.
[   94.703214][ T6948] lo speed is unknown, defaulting to 1000
[   94.822374][ T6952] loop2: detected capacity change from 0 to 512
[   94.843418][ T6952] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   94.858852][ T6952] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.1150: Failed to acquire dquot type 1
[   94.870872][ T6952] EXT4-fs (loop2): 1 truncate cleaned up
[   94.918745][ T6957] loop2: detected capacity change from 0 to 1024
[   94.927923][ T6957] ext4 filesystem being mounted at /272/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.967451][ T6963] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1153'.
[   94.992341][ T6965] pim6reg: entered allmulticast mode
[   95.017507][ T6969] loop2: detected capacity change from 0 to 128
[   95.068885][ T6971] loop4: detected capacity change from 0 to 512
[   95.075915][ T6971] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   95.098826][ T6971] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.1156: Failed to acquire dquot type 1
[   95.113987][ T6969] bio_check_eod: 71 callbacks suppressed
[   95.114003][ T6969] syz.2.1155: attempt to access beyond end of device
[   95.114003][ T6969] loop2: rw=2049, sector=145, nr_sectors = 16 limit=128
[   95.114135][ T6971] EXT4-fs (loop4): 1 truncate cleaned up
[   95.119846][ T6969] syz.2.1155: attempt to access beyond end of device
[   95.119846][ T6969] loop2: rw=2049, sector=169, nr_sectors = 8 limit=128
[   95.152303][ T6969] syz.2.1155: attempt to access beyond end of device
[   95.152303][ T6969] loop2: rw=2049, sector=185, nr_sectors = 8 limit=128
[   95.165755][ T6969] syz.2.1155: attempt to access beyond end of device
[   95.165755][ T6969] loop2: rw=2049, sector=201, nr_sectors = 8 limit=128
[   95.182007][ T6969] syz.2.1155: attempt to access beyond end of device
[   95.182007][ T6969] loop2: rw=2049, sector=217, nr_sectors = 8 limit=128
[   95.195484][ T6969] syz.2.1155: attempt to access beyond end of device
[   95.195484][ T6969] loop2: rw=2049, sector=233, nr_sectors = 8 limit=128
[   95.210133][ T6969] syz.2.1155: attempt to access beyond end of device
[   95.210133][ T6969] loop2: rw=2049, sector=249, nr_sectors = 8 limit=128
[   95.223624][ T6969] syz.2.1155: attempt to access beyond end of device
[   95.223624][ T6969] loop2: rw=2049, sector=265, nr_sectors = 8 limit=128
[   95.238657][ T6969] syz.2.1155: attempt to access beyond end of device
[   95.238657][ T6969] loop2: rw=2049, sector=281, nr_sectors = 8 limit=128
[   95.252175][ T6969] syz.2.1155: attempt to access beyond end of device
[   95.252175][ T6969] loop2: rw=2049, sector=297, nr_sectors = 8 limit=128
[   95.430466][ T6990] lo speed is unknown, defaulting to 1000
[   95.472533][ T6988] lo speed is unknown, defaulting to 1000
[   95.536912][ T6998] loop1: detected capacity change from 0 to 1024
[   95.547303][ T6998] EXT4-fs: Ignoring removed nomblk_io_submit option
[   95.559880][ T7001] geneve2: entered promiscuous mode
[   95.565137][ T7001] geneve2: entered allmulticast mode
[   95.571181][ T4671] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 20000 - 0
[   95.581334][ T6998] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   95.592849][ T6998] System zones: 0-1, 3-36
[   95.596512][ T4671] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 20000 - 0
[   95.629086][ T7004] loop4: detected capacity change from 0 to 512
[   95.636298][ T4671] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 20000 - 0
[   95.646900][ T7004] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   95.677862][ T4671] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 20000 - 0
[   95.700141][ T7004] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.1169: Failed to acquire dquot type 1
[   95.721995][ T7004] EXT4-fs (loop4): 1 truncate cleaned up
[   95.855689][ T7021] loop4: detected capacity change from 0 to 4096
[   95.866853][ T7025] lo speed is unknown, defaulting to 1000
[   96.080407][ T7038] loop2: detected capacity change from 0 to 1024
[   96.088914][ T7038] EXT4-fs: Ignoring removed nomblk_io_submit option
[   96.097447][ T7038] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   96.105637][ T7038] System zones: 0-1, 3-36
[   96.192272][ T7045] loop0: detected capacity change from 0 to 512
[   96.201756][ T7045] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   96.218634][ T7049] loop2: detected capacity change from 0 to 512
[   96.225689][ T7049] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   96.243440][ T7045] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.1182: Failed to acquire dquot type 1
[   96.247829][ T7049] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.1183: Failed to acquire dquot type 1
[   96.256096][ T7045] EXT4-fs (loop0): 1 truncate cleaned up
[   96.275548][ T7049] EXT4-fs (loop2): 1 truncate cleaned up
[   96.352192][ T7073] geneve2: entered promiscuous mode
[   96.357479][ T7073] geneve2: entered allmulticast mode
[   96.363608][ T4683] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 20000 - 0
[   96.382223][ T4683] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 20000 - 0
[   96.391074][ T4683] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 20000 - 0
[   96.400041][ T4683] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 20000 - 0
[   96.400842][   T29] kauditd_printk_skb: 461 callbacks suppressed
[   96.400857][   T29] audit: type=1326 audit(1755943369.654:5349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7077 comm="syz.2.1190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae178aebe9 code=0x7ffc0000
[   96.438176][   T29] audit: type=1326 audit(1755943369.654:5350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7077 comm="syz.2.1190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae178aebe9 code=0x7ffc0000
[   96.461670][   T29] audit: type=1326 audit(1755943369.654:5351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7077 comm="syz.2.1190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fae178aebe9 code=0x7ffc0000
[   96.485141][   T29] audit: type=1326 audit(1755943369.654:5352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7077 comm="syz.2.1190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae178aebe9 code=0x7ffc0000
[   96.508675][   T29] audit: type=1326 audit(1755943369.654:5353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7077 comm="syz.2.1190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fae178aebe9 code=0x7ffc0000
[   96.532148][   T29] audit: type=1326 audit(1755943369.654:5354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7077 comm="syz.2.1190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae178aebe9 code=0x7ffc0000
[   96.555588][   T29] audit: type=1326 audit(1755943369.654:5355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7077 comm="syz.2.1190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fae178aebe9 code=0x7ffc0000
[   96.579024][   T29] audit: type=1326 audit(1755943369.654:5356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7077 comm="syz.2.1190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae178aebe9 code=0x7ffc0000
[   96.602488][   T29] audit: type=1326 audit(1755943369.654:5357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7077 comm="syz.2.1190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fae178aebe9 code=0x7ffc0000
[   96.625973][   T29] audit: type=1326 audit(1755943369.654:5358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7077 comm="syz.2.1190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae178aebe9 code=0x7ffc0000
[   96.678508][ T7081] validate_nla: 8 callbacks suppressed
[   96.678521][ T7081] netlink: 'syz.2.1191': attribute type 10 has an invalid length.
[   96.860315][ T7086] lo speed is unknown, defaulting to 1000
[   96.913227][ T7101] netlink: 'syz.3.1200': attribute type 13 has an invalid length.
[   96.923206][ T7105] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1202'.
[   96.958437][ T7101] loop3: detected capacity change from 0 to 512
[   96.976658][ T7101] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   96.985878][ T7108] loop2: detected capacity change from 0 to 1024
[   97.013554][ T7101] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.1200: Failed to acquire dquot type 1
[   97.031244][ T7101] EXT4-fs (loop3): 1 truncate cleaned up
[   97.041115][ T7116] loop4: detected capacity change from 0 to 512
[   97.052988][ T7116] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   97.071885][ T7108] ext4 filesystem being mounted at /289/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   97.099977][ T7116] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.1206: Failed to acquire dquot type 1
[   97.127881][ T7116] EXT4-fs (loop4): 1 truncate cleaned up
[   97.142138][ T7131] netlink: 'syz.2.1209': attribute type 10 has an invalid length.
[   97.160123][ T7131] loop2: detected capacity change from 0 to 1024
[   97.167258][ T7131] EXT4-fs: Ignoring removed nomblk_io_submit option
[   97.174779][ T7130] FAULT_INJECTION: forcing a failure.
[   97.174779][ T7130] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   97.188132][ T7130] CPU: 0 UID: 0 PID: 7130 Comm: syz.3.1211 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   97.188169][ T7130] Tainted: [W]=WARN
[   97.188181][ T7130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   97.188197][ T7130] Call Trace:
[   97.188205][ T7130]  <TASK>
[   97.188214][ T7130]  __dump_stack+0x1d/0x30
[   97.188241][ T7130]  dump_stack_lvl+0xe8/0x140
[   97.188286][ T7130]  dump_stack+0x15/0x1b
[   97.188308][ T7130]  should_fail_ex+0x265/0x280
[   97.188335][ T7130]  should_fail_alloc_page+0xf2/0x100
[   97.188422][ T7130]  __alloc_frozen_pages_noprof+0xff/0x360
[   97.188472][ T7130]  alloc_pages_mpol+0xb3/0x250
[   97.188597][ T7130]  vma_alloc_folio_noprof+0x1aa/0x300
[   97.188702][ T7130]  handle_mm_fault+0xec2/0x2c20
[   97.188725][ T7130]  ? __rcu_read_unlock+0x4f/0x70
[   97.188844][ T7130]  do_user_addr_fault+0x3fe/0x1090
[   97.188948][ T7130]  exc_page_fault+0x62/0xa0
[   97.188975][ T7130]  asm_exc_page_fault+0x26/0x30
[   97.188994][ T7130] RIP: 0010:rep_movs_alternative+0x4a/0x90
[   97.189037][ T7130] Code: f6 01 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[   97.189101][ T7130] RSP: 0018:ffffc9000f03f9e8 EFLAGS: 00050206
[   97.189119][ T7130] RAX: ffff88810ba16da0 RBX: ffffc9000f03fe90 RCX: 0000000000000e58
[   97.189133][ T7130] RDX: 0000000000000000 RSI: ffff88811aa26044 RDI: 00002000000021c0
[   97.189148][ T7130] RBP: 0000000000000e58 R08: 000000000000010c R09: 0000000000000000
[   97.189164][ T7130] R10: 000188811aa26044 R11: 000188811aa26e9b R12: ffffc9000f03fe78
[   97.189180][ T7130] R13: 0000000000000044 R14: 0000000000000e58 R15: ffff88811aa26044
[   97.189223][ T7130]  _copy_to_iter+0x40c/0xe70
[   97.189260][ T7130]  ? _raw_spin_unlock_irqrestore+0x2b/0x60
[   97.189295][ T7130]  ? __pfx_simple_copy_to_iter+0x10/0x10
[   97.189353][ T7130]  __skb_datagram_iter+0xc6/0x690
[   97.189399][ T7130]  ? __pfx_simple_copy_to_iter+0x10/0x10
[   97.189484][ T7130]  skb_copy_datagram_iter+0x3d/0x110
[   97.189512][ T7130]  netlink_recvmsg+0x1a8/0x550
[   97.189598][ T7130]  ? __pfx_netlink_recvmsg+0x10/0x10
[   97.189619][ T7130]  sock_recvmsg+0x139/0x170
[   97.189649][ T7130]  ____sys_recvmsg+0xf5/0x280
[   97.189750][ T7130]  ___sys_recvmsg+0x11f/0x370
[   97.189853][ T7130]  __x64_sys_recvmsg+0xd1/0x160
[   97.189882][ T7130]  x64_sys_call+0x2b42/0x2ff0
[   97.189972][ T7130]  do_syscall_64+0xd2/0x200
[   97.190007][ T7130]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   97.190032][ T7130]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   97.190107][ T7130]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.190178][ T7130] RIP: 0033:0x7f312b33ebe9
[   97.190193][ T7130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   97.190210][ T7130] RSP: 002b:00007f3129d9f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[   97.190230][ T7130] RAX: ffffffffffffffda RBX: 00007f312b565fa0 RCX: 00007f312b33ebe9
[   97.190246][ T7130] RDX: 0000000000010002 RSI: 00002000000004c0 RDI: 0000000000000003
[   97.190262][ T7130] RBP: 00007f3129d9f090 R08: 0000000000000000 R09: 0000000000000000
[   97.190277][ T7130] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   97.190352][ T7130] R13: 00007f312b566038 R14: 00007f312b565fa0 R15: 00007ffdd15e0ca8
[   97.190373][ T7130]  </TASK>
[   97.195008][ T7131] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   97.278831][ T7140] netlink: 'syz.3.1215': attribute type 13 has an invalid length.
[   97.282146][ T7131] System zones: 
[   97.316351][ T7140] loop3: detected capacity change from 0 to 512
[   97.322509][ T7131] 0-1, 3-36
[   97.556516][ T7140] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   97.578651][ T7156] netlink: 'syz.2.1216': attribute type 10 has an invalid length.
[   97.579246][ T7140] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.1215: Failed to acquire dquot type 1
[   97.598355][ T7156] loop2: detected capacity change from 0 to 1024
[   97.606069][ T7156] EXT4-fs: Ignoring removed nomblk_io_submit option
[   97.606896][ T7140] EXT4-fs (loop3): 1 truncate cleaned up
[   97.620748][ T7156] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   97.638102][ T7156] System zones: 0-1, 3-36
[   97.676202][ T7166] loop2: detected capacity change from 0 to 1024
[   97.692013][ T7167] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1221'.
[   97.701461][ T7167] vlan0: entered promiscuous mode
[   97.727412][ T7166] ext4 filesystem being mounted at /292/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   97.768843][ T7175] lo speed is unknown, defaulting to 1000
[   97.811929][ T7181] netlink: 'syz.3.1226': attribute type 10 has an invalid length.
[   97.834986][ T7181] loop3: detected capacity change from 0 to 1024
[   97.842112][ T7181] EXT4-fs: Ignoring removed nomblk_io_submit option
[   97.851172][ T7181] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   97.868831][ T7181] System zones: 0-1, 3-36
[   97.917733][ T7190] netlink: 'syz.3.1230': attribute type 13 has an invalid length.
[   97.943654][ T7190] loop3: detected capacity change from 0 to 512
[   97.952230][ T7194] netlink: 'syz.2.1232': attribute type 10 has an invalid length.
[   97.960606][ T7190] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   97.982115][ T7194] loop2: detected capacity change from 0 to 1024
[   97.990671][ T7194] EXT4-fs: Ignoring removed nomblk_io_submit option
[   97.999280][ T7190] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.1230: Failed to acquire dquot type 1
[   98.021382][ T7194] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   98.031140][ T7194] System zones: 0-1, 3-36
[   98.034979][ T7190] EXT4-fs (loop3): 1 truncate cleaned up
[   98.071151][ T7203] FAULT_INJECTION: forcing a failure.
[   98.071151][ T7203] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   98.084264][ T7203] CPU: 0 UID: 0 PID: 7203 Comm: syz.0.1236 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   98.084409][ T7203] Tainted: [W]=WARN
[   98.084417][ T7203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   98.084437][ T7203] Call Trace:
[   98.084444][ T7203]  <TASK>
[   98.084452][ T7203]  __dump_stack+0x1d/0x30
[   98.084477][ T7203]  dump_stack_lvl+0xe8/0x140
[   98.084499][ T7203]  dump_stack+0x15/0x1b
[   98.084515][ T7203]  should_fail_ex+0x265/0x280
[   98.084545][ T7203]  should_fail+0xb/0x20
[   98.084561][ T7203]  should_fail_usercopy+0x1a/0x20
[   98.084588][ T7203]  _copy_to_user+0x20/0xa0
[   98.084643][ T7203]  simple_read_from_buffer+0xb5/0x130
[   98.084665][ T7203]  proc_fail_nth_read+0x10e/0x150
[   98.084696][ T7203]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   98.084750][ T7203]  vfs_read+0x1a5/0x770
[   98.084776][ T7203]  ? __fput+0x555/0x650
[   98.084812][ T7203]  ? __rcu_read_unlock+0x4f/0x70
[   98.084857][ T7203]  ? __fget_files+0x184/0x1c0
[   98.084972][ T7203]  ksys_read+0xda/0x1a0
[   98.084995][ T7203]  __x64_sys_read+0x40/0x50
[   98.085019][ T7203]  x64_sys_call+0x27bc/0x2ff0
[   98.085093][ T7203]  do_syscall_64+0xd2/0x200
[   98.085123][ T7203]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   98.085146][ T7203]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   98.085179][ T7203]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.085297][ T7203] RIP: 0033:0x7fdf07f7d5fc
[   98.085316][ T7203] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   98.085339][ T7203] RSP: 002b:00007fdf069e7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   98.085390][ T7203] RAX: ffffffffffffffda RBX: 00007fdf081a5fa0 RCX: 00007fdf07f7d5fc
[   98.085463][ T7203] RDX: 000000000000000f RSI: 00007fdf069e70a0 RDI: 0000000000000005
[   98.085476][ T7203] RBP: 00007fdf069e7090 R08: 0000000000000000 R09: 0000000000000000
[   98.085487][ T7203] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   98.085498][ T7203] R13: 00007fdf081a6038 R14: 00007fdf081a5fa0 R15: 00007fff18215978
[   98.085516][ T7203]  </TASK>
[   98.318907][ T7207] loop2: detected capacity change from 0 to 512
[   98.325977][ T7207] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   98.374707][ T7223] netlink: 'syz.0.1241': attribute type 10 has an invalid length.
[   98.394354][ T7223] loop0: detected capacity change from 0 to 1024
[   98.401522][ T7223] EXT4-fs: Ignoring removed nomblk_io_submit option
[   98.408838][ T7207] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.1235: Failed to acquire dquot type 1
[   98.423270][ T7207] EXT4-fs (loop2): 1 truncate cleaned up
[   98.423823][ T7223] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   98.447588][ T7223] System zones: 0-1, 3-36
[   98.450757][ T7228] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1243'.
[   98.472859][ T7230] netlink: 'syz.4.1245': attribute type 13 has an invalid length.
[   98.489958][ T7230] loop4: detected capacity change from 0 to 512
[   98.495501][ T7232] lo speed is unknown, defaulting to 1000
[   98.502227][ T7230] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   98.539826][ T7230] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.1245: Failed to acquire dquot type 1
[   98.551659][ T7230] EXT4-fs (loop4): 1 truncate cleaned up
[   98.668067][ T7245] FAULT_INJECTION: forcing a failure.
[   98.668067][ T7245] name failslab, interval 1, probability 0, space 0, times 0
[   98.680884][ T7245] CPU: 1 UID: 0 PID: 7245 Comm: syz.4.1249 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   98.680925][ T7245] Tainted: [W]=WARN
[   98.680934][ T7245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   98.680950][ T7245] Call Trace:
[   98.680958][ T7245]  <TASK>
[   98.680966][ T7245]  __dump_stack+0x1d/0x30
[   98.680993][ T7245]  dump_stack_lvl+0xe8/0x140
[   98.681061][ T7245]  dump_stack+0x15/0x1b
[   98.681081][ T7245]  should_fail_ex+0x265/0x280
[   98.681107][ T7245]  ? rtnl_newlink+0x5c/0x12d0
[   98.681141][ T7245]  should_failslab+0x8c/0xb0
[   98.681171][ T7245]  __kmalloc_cache_noprof+0x4c/0x320
[   98.681208][ T7245]  rtnl_newlink+0x5c/0x12d0
[   98.681254][ T7245]  ? xas_load+0x413/0x430
[   98.681285][ T7245]  ? xas_load+0x413/0x430
[   98.681315][ T7245]  ? __rcu_read_unlock+0x4f/0x70
[   98.681419][ T7245]  ? xa_load+0xb1/0xe0
[   98.681450][ T7245]  ? __rcu_read_unlock+0x4f/0x70
[   98.681476][ T7245]  ? avc_has_perm_noaudit+0x1b1/0x200
[   98.681530][ T7245]  ? cred_has_capability+0x210/0x280
[   98.681562][ T7245]  ? selinux_capable+0x31/0x40
[   98.681669][ T7245]  ? security_capable+0x83/0x90
[   98.681699][ T7245]  ? ns_capable+0x7d/0xb0
[   98.681723][ T7245]  ? __pfx_rtnl_newlink+0x10/0x10
[   98.681756][ T7245]  rtnetlink_rcv_msg+0x5fb/0x6d0
[   98.681821][ T7245]  ? avc_has_perm_noaudit+0x1b1/0x200
[   98.681856][ T7245]  netlink_rcv_skb+0x120/0x220
[   98.681880][ T7245]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   98.681944][ T7245]  rtnetlink_rcv+0x1c/0x30
[   98.681976][ T7245]  netlink_unicast+0x5c0/0x690
[   98.682030][ T7245]  netlink_sendmsg+0x58b/0x6b0
[   98.682059][ T7245]  ? __pfx_netlink_sendmsg+0x10/0x10
[   98.682126][ T7245]  __sock_sendmsg+0x142/0x180
[   98.682152][ T7245]  ____sys_sendmsg+0x31e/0x4e0
[   98.682181][ T7245]  ___sys_sendmsg+0x17b/0x1d0
[   98.682241][ T7245]  __x64_sys_sendmsg+0xd4/0x160
[   98.682281][ T7245]  x64_sys_call+0x191e/0x2ff0
[   98.682328][ T7245]  do_syscall_64+0xd2/0x200
[   98.682384][ T7245]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   98.682411][ T7245]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   98.682440][ T7245]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.682465][ T7245] RIP: 0033:0x7f46f91debe9
[   98.682502][ T7245] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   98.682518][ T7245] RSP: 002b:00007f46f7c47038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   98.682540][ T7245] RAX: ffffffffffffffda RBX: 00007f46f9405fa0 RCX: 00007f46f91debe9
[   98.682554][ T7245] RDX: 0000000000008000 RSI: 00002000000006c0 RDI: 0000000000000003
[   98.682569][ T7245] RBP: 00007f46f7c47090 R08: 0000000000000000 R09: 0000000000000000
[   98.682601][ T7245] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   98.682617][ T7245] R13: 00007f46f9406038 R14: 00007f46f9405fa0 R15: 00007ffed30250d8
[   98.682638][ T7245]  </TASK>
[   99.005361][ T7251] geneve2: entered promiscuous mode
[   99.010698][ T7251] geneve2: entered allmulticast mode
[   99.031496][ T7241] netlink: 5 bytes leftover after parsing attributes in process `syz.1.1250'.
[   99.051780][ T7241] 0ªî{X¹¦: renamed from gretap0
[   99.066180][ T7241] 0ªî{X¹¦: entered allmulticast mode
[   99.089670][ T7241] A link change request failed with some changes committed already. Interface 
30ªî{X¹¦ may have been left with an inconsistent configuration, please check.
[   99.116333][ T7257] loop2: detected capacity change from 0 to 128
[   99.149905][ T7260] lo speed is unknown, defaulting to 1000
[   99.156036][ T7246] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1250'.
[   99.220701][ T4683] Buffer I/O error on dev loop2, logical block 632, lost async page write
[   99.262556][ T7269] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1259'.
[   99.401359][ T7282] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[   99.418587][ T7287] geneve2: entered promiscuous mode
[   99.423824][ T7287] geneve2: entered allmulticast mode
[   99.500156][ T7294] lo speed is unknown, defaulting to 1000
[   99.514672][ T7296] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1272'.
[   99.542791][ T7298] loop2: detected capacity change from 0 to 4096
[   99.564598][ T7298] EXT4-fs mount: 131 callbacks suppressed
[   99.564613][ T7298] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.619721][ T7302] lo speed is unknown, defaulting to 1000
[   99.853431][ T7315] loop4: detected capacity change from 0 to 4096
[   99.861820][ T7315] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.979259][ T4683] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 20000 - 0
[   99.996116][ T7321] lo speed is unknown, defaulting to 1000
[  100.007432][ T4683] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 20000 - 0
[  100.027694][ T4683] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 20000 - 0
[  100.060899][ T4683] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 20000 - 0
[  100.352914][ T7327] loop3: detected capacity change from 0 to 512
[  100.362377][ T7327] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  100.388712][ T7327] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.1282: Failed to acquire dquot type 1
[  100.400511][ T7327] EXT4-fs (loop3): 1 truncate cleaned up
[  100.408029][ T7327] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.432780][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.454189][ T7331] loop3: detected capacity change from 0 to 512
[  100.461074][ T7331] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  100.477722][ T7331] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.1283: Failed to acquire dquot type 1
[  100.491267][ T7331] EXT4-fs (loop3): 1 truncate cleaned up
[  100.497415][ T7331] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.522589][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.590778][ T7337] lo speed is unknown, defaulting to 1000
[  100.729936][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.874234][ T7357] siw: device registration error -23
[  100.901497][ T7362] lo speed is unknown, defaulting to 1000
[  101.023469][ T7369] loop1: detected capacity change from 0 to 512
[  101.046543][ T7369] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  101.088034][ T7369] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.1294: Failed to acquire dquot type 1
[  101.126741][ T7369] EXT4-fs (loop1): 1 truncate cleaned up
[  101.151103][ T7369] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.179812][ T7374] loop3: detected capacity change from 0 to 1024
[  101.191907][ T7350] lo speed is unknown, defaulting to 1000
[  101.193551][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.222376][ T7374] EXT4-fs: Ignoring removed nomblk_io_submit option
[  101.237315][ T7374] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  101.256450][ T7374] System zones: 0-1, 3-36
[  101.268924][ T7374] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.300929][ T7378] loop1: detected capacity change from 0 to 1024
[  101.360329][ T7378] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.404545][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.429163][ T7378] ext4 filesystem being mounted at /209/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  101.492442][ T7382] loop0: detected capacity change from 0 to 512
[  101.515344][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.535507][ T7382] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  101.583062][ T7382] __quota_error: 811 callbacks suppressed
[  101.583091][ T7382] Quota error (device loop0): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  101.599150][ T7382] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  101.609175][ T7382] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.1298: Failed to acquire dquot type 1
[  101.628110][ T7382] EXT4-fs (loop0): 1 truncate cleaned up
[  101.634335][ T7382] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.635731][ T7389] loop1: detected capacity change from 0 to 4096
[  101.672339][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.681495][ T7391] netlink: 428 bytes leftover after parsing attributes in process `+}[@'.
[  101.714533][ T7398] loop3: detected capacity change from 0 to 128
[  101.733327][ T7389] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.812553][ T7400] bio_check_eod: 171 callbacks suppressed
[  101.812572][ T7400] syz.3.1303: attempt to access beyond end of device
[  101.812572][ T7400] loop3: rw=2049, sector=145, nr_sectors = 16 limit=128
[  101.850040][ T7404] netlink: 428 bytes leftover after parsing attributes in process `+}[@'.
[  101.889127][ T7405] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1304'.
[  101.900166][ T7400] syz.3.1303: attempt to access beyond end of device
[  101.900166][ T7400] loop3: rw=2049, sector=169, nr_sectors = 8 limit=128
[  101.935087][ T7400] syz.3.1303: attempt to access beyond end of device
[  101.935087][ T7400] loop3: rw=2049, sector=185, nr_sectors = 8 limit=128
[  101.969328][ T7400] syz.3.1303: attempt to access beyond end of device
[  101.969328][ T7400] loop3: rw=2049, sector=201, nr_sectors = 8 limit=128
[  101.986083][ T7400] syz.3.1303: attempt to access beyond end of device
[  101.986083][ T7400] loop3: rw=2049, sector=217, nr_sectors = 8 limit=128
[  102.003430][ T7400] syz.3.1303: attempt to access beyond end of device
[  102.003430][ T7400] loop3: rw=2049, sector=233, nr_sectors = 8 limit=128
[  102.017215][ T7400] syz.3.1303: attempt to access beyond end of device
[  102.017215][ T7400] loop3: rw=2049, sector=249, nr_sectors = 8 limit=128
[  102.031092][ T7400] syz.3.1303: attempt to access beyond end of device
[  102.031092][ T7400] loop3: rw=2049, sector=265, nr_sectors = 8 limit=128
[  102.044624][ T7400] syz.3.1303: attempt to access beyond end of device
[  102.044624][ T7400] loop3: rw=2049, sector=281, nr_sectors = 8 limit=128
[  102.058364][ T7408] netlink: 5 bytes leftover after parsing attributes in process `syz.0.1306'.
[  102.067848][ T7389] validate_nla: 6 callbacks suppressed
[  102.067922][ T7389] netlink: 'syz.1.1299': attribute type 13 has an invalid length.
[  102.071798][ T7408] 0ªî{X¹¦: renamed from gretap0
[  102.076521][ T7400] syz.3.1303: attempt to access beyond end of device
[  102.076521][ T7400] loop3: rw=2049, sector=297, nr_sectors = 8 limit=128
[  102.100840][ T7408] 0ªî{X¹¦: entered allmulticast mode
[  102.108240][ T7408] A link change request failed with some changes committed already. Interface 
30ªî{X¹¦ may have been left with an inconsistent configuration, please check.
[  102.133511][ T7413] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7413 comm=syz.0.1306
[  102.155129][   T29] audit: type=1326 audit(1755945940.428:6152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7414 comm="syz.3.1307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f312b33ebe9 code=0x7ffc0000
[  102.185176][   T29] audit: type=1326 audit(1755945940.458:6153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7414 comm="syz.3.1307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f312b33ebe9 code=0x7ffc0000
[  102.208677][   T29] audit: type=1326 audit(1755945940.458:6154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7414 comm="syz.3.1307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=125 compat=0 ip=0x7f312b33ebe9 code=0x7ffc0000
[  102.232367][   T29] audit: type=1326 audit(1755945940.458:6155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7414 comm="syz.3.1307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f312b33ebe9 code=0x7ffc0000
[  102.255893][   T29] audit: type=1326 audit(1755945940.458:6156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7414 comm="syz.3.1307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f312b33ebe9 code=0x7ffc0000
[  102.280189][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.349099][ T7424] macvtap0: refused to change device tx_queue_len
[  102.389810][   T29] audit: type=1400 audit(1755945940.668:6157): avc:  denied  { bind } for  pid=7426 comm="syz.2.1312" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  102.409294][   T29] audit: type=1400 audit(1755945940.668:6158): avc:  denied  { node_bind } for  pid=7426 comm="syz.2.1312" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[  102.420329][ T7417] lo speed is unknown, defaulting to 1000
[  102.488654][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.543191][   T29] audit: type=1326 audit(1755945940.818:6159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7430 comm="syz.3.1314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f312b33ebe9 code=0x7ffc0000
[  102.668639][ T7438] loop4: detected capacity change from 0 to 1024
[  102.679468][ T7438] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.691602][ T7438] ext4 filesystem being mounted at /270/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  102.714278][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.746968][ T7444] loop4: detected capacity change from 0 to 4096
[  102.755753][ T7444] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.845963][ T7448] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  102.891911][ T7451] loop2: detected capacity change from 0 to 1024
[  102.900052][ T7451] EXT4-fs: Ignoring removed nomblk_io_submit option
[  102.902768][ T7453] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1322'.
[  102.910431][ T7451] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  102.925051][ T7451] System zones: 0-1, 3-36
[  102.943424][ T7451] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.984526][ T7457] netlink: 'syz.0.1323': attribute type 13 has an invalid length.
[  103.002748][ T7457] loop0: detected capacity change from 0 to 512
[  103.011154][ T7457] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  103.021130][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.028175][ T7458] netlink: 'syz.4.1318': attribute type 13 has an invalid length.
[  103.048637][ T7457] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.1323: Failed to acquire dquot type 1
[  103.064756][ T7457] EXT4-fs (loop0): 1 truncate cleaned up
[  103.072248][ T7457] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.101085][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.165309][ T7470] loop2: detected capacity change from 0 to 1024
[  103.172595][ T7470] EXT4-fs: Ignoring removed nomblk_io_submit option
[  103.180296][ T7470] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  103.188566][ T7470] System zones: 0-1, 3-36
[  103.194842][ T7470] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.242108][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.278251][ T7474] netlink: 'syz.2.1329': attribute type 13 has an invalid length.
[  103.291068][ T7474] loop2: detected capacity change from 0 to 512
[  103.299705][ T7474] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  103.347187][ T7474] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.1329: Failed to acquire dquot type 1
[  103.360312][ T7474] EXT4-fs (loop2): 1 truncate cleaned up
[  103.366844][ T7474] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.399641][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.421891][ T7478] loop3: detected capacity change from 0 to 1024
[  103.451797][ T7478] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  103.479470][ T7478] ext4 filesystem being mounted at /254/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  103.491811][ T7486] tmpfs: Bad value for 'mpol'
[  103.503747][ T7486] serio: Serial port ttyS3
[  104.042109][ T7498] lo speed is unknown, defaulting to 1000
[  104.264459][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  104.305841][ T7503] netlink: 'syz.0.1340': attribute type 13 has an invalid length.
[  104.321880][ T7503] loop0: detected capacity change from 0 to 512
[  104.328840][ T7503] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  104.355170][ T7503] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.1340: Failed to acquire dquot type 1
[  104.367639][ T7501] lo speed is unknown, defaulting to 1000
[  104.377128][ T7503] EXT4-fs (loop0): 1 truncate cleaned up
[  104.388012][ T7503] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  104.446381][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.492340][ T7512] loop0: detected capacity change from 0 to 128
[  104.560355][ T7514] loop1: detected capacity change from 0 to 512
[  104.577621][ T7514] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  104.613014][ T7520] loop0: detected capacity change from 0 to 512
[  104.640215][ T7520] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  104.715495][ T7514] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1344'.
[  104.769085][ T7520] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.1345: Failed to acquire dquot type 1
[  104.781837][ T7520] EXT4-fs (loop0): 1 truncate cleaned up
[  104.791327][ T7525] netlink: 100 bytes leftover after parsing attributes in process `syz.3.1346'.
[  104.807673][ T7520] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  104.836818][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.910334][ T7531] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1347'.
[  104.911009][ T7530] loop3: detected capacity change from 0 to 4096
[  104.930133][ T7530] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.046261][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.067269][ T7535] loop4: detected capacity change from 0 to 128
[  105.111949][ T7533] netlink: 'syz.3.1348': attribute type 13 has an invalid length.
[  105.386809][ T7562] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1355'.
[  105.404199][ T7562] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1355'.
[  105.433841][ T7567] loop1: detected capacity change from 0 to 512
[  105.440840][ T7567] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  105.469866][ T7567] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.1356: Failed to acquire dquot type 1
[  105.482899][ T7567] EXT4-fs (loop1): 1 truncate cleaned up
[  105.488994][ T7567] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.512662][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.528833][ T7573] netlink: 'syz.1.1358': attribute type 10 has an invalid length.
[  105.545029][ T7573] loop1: detected capacity change from 0 to 1024
[  105.552146][ T7573] EXT4-fs: Ignoring removed nomblk_io_submit option
[  105.562340][ T7573] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  105.570584][ T7573] System zones: 0-1, 3-36
[  105.576157][ T7573] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.600672][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.650828][ T7576] lo speed is unknown, defaulting to 1000
[  105.794046][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.836302][ T7591] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  105.969052][ T7604] loop1: detected capacity change from 0 to 512
[  105.975717][ T7604] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  106.010216][ T7604] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1365'.
[  106.163002][ T7608] loop4: detected capacity change from 0 to 512
[  106.170488][ T7608] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  106.197882][ T7608] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.1367: Failed to acquire dquot type 1
[  106.210857][ T7608] EXT4-fs (loop4): 1 truncate cleaned up
[  106.217058][ T7608] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.244441][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.268149][ T7614] netlink: 'syz.4.1368': attribute type 13 has an invalid length.
[  106.299195][ T7618] netlink: 'syz.0.1370': attribute type 13 has an invalid length.
[  106.314234][ T7620] netlink: 428 bytes leftover after parsing attributes in process `+}[@'.
[  106.322984][ T7618] loop0: detected capacity change from 0 to 512
[  106.329933][ T7618] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  106.350274][ T7618] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.1370: Failed to acquire dquot type 1
[  106.363852][ T7618] EXT4-fs (loop0): 1 truncate cleaned up
[  106.364571][ T7620] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  106.370194][ T7618] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.402955][ T7625] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  106.414109][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.447860][ T7630] netlink: 'syz.0.1373': attribute type 13 has an invalid length.
[  106.465581][ T7630] loop0: detected capacity change from 0 to 512
[  106.473568][ T7630] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  106.488683][ T7630] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.1373: Failed to acquire dquot type 1
[  106.500639][ T7630] EXT4-fs (loop0): 1 truncate cleaned up
[  106.507789][ T7630] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.520429][ T7633] lo speed is unknown, defaulting to 1000
[  106.537884][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.625475][   T29] kauditd_printk_skb: 420 callbacks suppressed
[  106.625490][   T29] audit: type=1326 audit(1755946970.895:6564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7626 comm="syz.2.1374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae178aebe9 code=0x7ffc0000
[  106.632903][ T7644] lo speed is unknown, defaulting to 1000
[  106.655266][   T29] audit: type=1326 audit(1755946970.895:6565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7626 comm="syz.2.1374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae178aebe9 code=0x7ffc0000
[  106.740149][ T7655] Driver unsupported XDP return value 0 on prog  (id 1057) dev N/A, expect packet loss!
[  106.803092][ T7660] loop2: detected capacity change from 0 to 512
[  106.814606][   T29] audit: type=1326 audit(1755946971.085:6566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7661 comm="syz.1.1382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff04b66ebe9 code=0x7ffc0000
[  106.838146][   T29] audit: type=1326 audit(1755946971.085:6567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7661 comm="syz.1.1382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff04b66ebe9 code=0x7ffc0000
[  106.866772][ T7663] lo speed is unknown, defaulting to 1000
[  106.876722][ T7660] EXT4-fs: Ignoring removed mblk_io_submit option
[  106.896738][ T7660] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  106.936693][   T29] audit: type=1326 audit(1755946971.135:6568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7661 comm="syz.1.1382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=115 compat=0 ip=0x7ff04b66ebe9 code=0x7ffc0000
[  106.960186][   T29] audit: type=1326 audit(1755946971.135:6569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7661 comm="syz.1.1382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff04b66ebe9 code=0x7ffc0000
[  106.983608][   T29] audit: type=1326 audit(1755946971.135:6570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7661 comm="syz.1.1382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff04b66ebe9 code=0x7ffc0000
[  107.009639][ T7660] EXT4-fs (loop2): 1 truncate cleaned up
[  107.015952][ T7660] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.034972][ T7667] loop1: detected capacity change from 0 to 512
[  107.043382][ T7667] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  107.114855][ T7667] Quota error (device loop1): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  107.124993][ T7667] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  107.135137][ T7667] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.1383: Failed to acquire dquot type 1
[  107.187984][ T7667] EXT4-fs (loop1): 1 truncate cleaned up
[  107.216984][ T7667] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  107.257801][ T7684] netlink: 428 bytes leftover after parsing attributes in process `+}[@'.
[  107.276542][   T29] audit: type=1326 audit(1755946971.545:6571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7681 comm="syz.0.1390" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf07f7ebe9 code=0x7ffc0000
[  107.313066][ T7685] loop4: detected capacity change from 0 to 1024
[  107.323258][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.338832][ T7687] validate_nla: 1 callbacks suppressed
[  107.338847][ T7687] netlink: 'syz.0.1391': attribute type 10 has an invalid length.
[  107.362120][ T7687] loop0: detected capacity change from 0 to 1024
[  107.370021][ T7687] EXT4-fs: Ignoring removed nomblk_io_submit option
[  107.386872][ T7685] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.401907][ T7687] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  107.411021][ T7685] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1389'.
[  107.424417][ T7687] System zones: 0-1, 3-36
[  107.430843][ T7687] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  107.472823][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.483592][ T7684] netdevsim netdevsim3 netdevsim0: entered allmulticast mode
[  107.491181][ T7684] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  107.494907][ T7696] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1393'.
[  107.551528][ T7700] netlink: 'syz.0.1394': attribute type 13 has an invalid length.
[  107.580054][ T7699] loop3: detected capacity change from 0 to 1024
[  107.599867][ T7685] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm +}[@: Allocating blocks 449-513 which overlap fs metadata
[  107.617423][ T7680] EXT4-fs (loop4): pa ffff888106a101c0: logic 48, phys. 177, len 21
[  107.620886][ T7706] FAULT_INJECTION: forcing a failure.
[  107.620886][ T7706] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  107.625569][ T7680] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5434: group 0, 
[  107.638662][ T7706] CPU: 1 UID: 0 PID: 7706 Comm: syz.0.1399 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  107.638690][ T7706] Tainted: [W]=WARN
[  107.638695][ T7706] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  107.638650][ T7680] free 0, pa_free 4
[  107.638789][ T7706] Call Trace:
[  107.638798][ T7706]  <TASK>
[  107.638809][ T7706]  __dump_stack+0x1d/0x30
[  107.638854][ T7706]  dump_stack_lvl+0xe8/0x140
[  107.638881][ T7706]  dump_stack+0x15/0x1b
[  107.638942][ T7706]  should_fail_ex+0x265/0x280
[  107.639048][ T7706]  should_fail+0xb/0x20
[  107.639070][ T7706]  should_fail_usercopy+0x1a/0x20
[  107.639099][ T7706]  _copy_from_user+0x1c/0xb0
[  107.639135][ T7706]  btf_new_fd+0x20a/0x790
[  107.639182][ T7706]  bpf_btf_load+0x112/0x130
[  107.639245][ T7706]  __sys_bpf+0x352/0x7b0
[  107.639288][ T7706]  __x64_sys_bpf+0x41/0x50
[  107.639319][ T7706]  x64_sys_call+0x2aea/0x2ff0
[  107.639345][ T7706]  do_syscall_64+0xd2/0x200
[  107.639426][ T7706]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  107.639473][ T7706]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  107.639506][ T7706]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.639584][ T7706] RIP: 0033:0x7fdf07f7ebe9
[  107.639609][ T7706] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  107.639706][ T7706] RSP: 002b:00007fdf069e7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  107.639729][ T7706] RAX: ffffffffffffffda RBX: 00007fdf081a5fa0 RCX: 00007fdf07f7ebe9
[  107.639745][ T7706] RDX: 0000000000000028 RSI: 00002000000000c0 RDI: 0000000000000012
[  107.639760][ T7706] RBP: 00007fdf069e7090 R08: 0000000000000000 R09: 0000000000000000
[  107.639775][ T7706] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  107.639854][ T7706] R13: 00007fdf081a6038 R14: 00007fdf081a5fa0 R15: 00007fff18215978
[  107.639879][ T7706]  </TASK>
[  107.680849][ T7699] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.810981][ T7713] lo speed is unknown, defaulting to 1000
[  107.818010][ T7699] ext4 filesystem being mounted at /263/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.863972][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.882643][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.903098][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.025463][ T7712] lo speed is unknown, defaulting to 1000
[  108.142345][ T7732] syz.1.1398 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  108.192945][ T7750] loop3: detected capacity change from 0 to 128
[  108.228721][ T7752] loop0: detected capacity change from 0 to 512
[  108.235677][ T7752] EXT4-fs: Ignoring removed mblk_io_submit option
[  108.246915][ T7752] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  108.274963][ T7752] EXT4-fs (loop0): 1 truncate cleaned up
[  108.281234][ T7752] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  108.315902][ T7759] loop3: detected capacity change from 0 to 1024
[  108.339152][ T7759] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  108.352083][ T7759] ext4 filesystem being mounted at /270/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  108.375937][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.415531][ T7764] loop3: detected capacity change from 0 to 1024
[  108.429048][ T7764] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  108.462584][ T7764] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4183: comm +}[@: Allocating blocks 449-513 which overlap fs metadata
[  108.478574][ T7763] EXT4-fs (loop3): pa ffff888106a102a0: logic 48, phys. 177, len 21
[  108.486977][ T7763] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  108.530726][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.571279][ T7770] nft_compat: unsupported protocol 1
[  108.929034][ T7776] loop4: detected capacity change from 0 to 512
[  108.947991][ T7776] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  108.994250][ T7776] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.1421: Failed to acquire dquot type 1
[  109.029173][ T7776] EXT4-fs (loop4): 1 truncate cleaned up
[  109.035298][ T7776] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.198642][ T7797] loop4: detected capacity change from 0 to 1024
[  109.205770][ T7797] EXT4-fs: Ignoring removed nomblk_io_submit option
[  109.246031][ T7803] loop2: detected capacity change from 0 to 4096
[  109.252801][ T7797] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  109.262131][ T7797] System zones: 0-1, 3-36
[  109.434072][ T7835] tmpfs: Bad value for 'mpol'
[  109.468377][ T7830] netlink: 'syz.2.1425': attribute type 13 has an invalid length.
[  109.490838][ T7841] loop3: detected capacity change from 0 to 512
[  109.506881][ T7841] EXT4-fs: Ignoring removed mblk_io_submit option
[  109.514291][ T7841] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  109.530392][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  109.537044][ T7842] lo speed is unknown, defaulting to 1000
[  109.539734][   T10] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  109.555656][ T7841] EXT4-fs (loop3): 1 truncate cleaned up
[  109.633781][ T7846] ==================================================================
[  109.641919][ T7846] BUG: KCSAN: data-race in filemap_write_and_wait_range / xas_set_mark
[  109.650177][ T7846] 
[  109.652496][ T7846] write to 0xffff88811ad7828c of 4 bytes by task 7841 on cpu 0:
[  109.660120][ T7846]  xas_set_mark+0x12b/0x140
[  109.664634][ T7846]  __folio_start_writeback+0x1dd/0x440
[  109.670106][ T7846]  ext4_bio_write_folio+0x5ad/0x9f0
[  109.675330][ T7846]  mpage_process_page_bufs+0x4a1/0x620
[  109.680817][ T7846]  mpage_prepare_extent_to_map+0x786/0xc00
[  109.686623][ T7846]  ext4_do_writepages+0xa05/0x2750
[  109.691750][ T7846]  ext4_writepages+0x176/0x300
[  109.696521][ T7846]  do_writepages+0x1c3/0x310
[  109.701130][ T7846]  file_write_and_wait_range+0x156/0x2c0
[  109.706779][ T7846]  generic_buffers_fsync_noflush+0x45/0x120
[  109.712680][ T7846]  ext4_sync_file+0x1ab/0x690
[  109.717366][ T7846]  vfs_fsync_range+0x10a/0x130
[  109.722144][ T7846]  ext4_buffered_write_iter+0x34f/0x3c0
[  109.727706][ T7846]  ext4_file_write_iter+0xdbf/0xf00
[  109.732915][ T7846]  iter_file_splice_write+0x666/0xa60
[  109.738298][ T7846]  direct_splice_actor+0x156/0x2a0
[  109.743416][ T7846]  splice_direct_to_actor+0x312/0x680
[  109.748794][ T7846]  do_splice_direct+0xda/0x150
[  109.753565][ T7846]  do_sendfile+0x380/0x650
[  109.757996][ T7846]  __x64_sys_sendfile64+0x105/0x150
[  109.763220][ T7846]  x64_sys_call+0x2bb0/0x2ff0
[  109.767895][ T7846]  do_syscall_64+0xd2/0x200
[  109.772405][ T7846]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.778296][ T7846] 
[  109.780626][ T7846] read to 0xffff88811ad7828c of 4 bytes by task 7846 on cpu 1:
[  109.788243][ T7846]  filemap_write_and_wait_range+0xfc/0x340
[  109.794059][ T7846]  filemap_invalidate_pages+0xa4/0x1a0
[  109.799526][ T7846]  kiocb_invalidate_pages+0x6e/0x80
[  109.804750][ T7846]  __iomap_dio_rw+0x5d4/0x1250
[  109.809527][ T7846]  iomap_dio_rw+0x40/0x90
[  109.813857][ T7846]  ext4_file_write_iter+0xad9/0xf00
[  109.819073][ T7846]  iter_file_splice_write+0x666/0xa60
[  109.824546][ T7846]  direct_splice_actor+0x156/0x2a0
[  109.829756][ T7846]  splice_direct_to_actor+0x312/0x680
[  109.835142][ T7846]  do_splice_direct+0xda/0x150
[  109.839917][ T7846]  do_sendfile+0x380/0x650
[  109.844348][ T7846]  __x64_sys_sendfile64+0x105/0x150
[  109.849559][ T7846]  x64_sys_call+0x2bb0/0x2ff0
[  109.854241][ T7846]  do_syscall_64+0xd2/0x200
[  109.858759][ T7846]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.864654][ T7846] 
[  109.867237][ T7846] value changed: 0x0a000021 -> 0x04000021
[  109.872946][ T7846] 
[  109.875378][ T7846] Reported by Kernel Concurrency Sanitizer on:
[  109.881529][ T7846] CPU: 1 UID: 0 PID: 7846 Comm: syz.3.1435 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  109.892812][ T7846] Tainted: [W]=WARN
[  109.896610][ T7846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  109.906669][ T7846] ==================================================================
[  110.004816][ T7849] loop4: detected capacity change from 0 to 1024
[  110.021641][ T7849] __nla_validate_parse: 1 callbacks suppressed
[  110.021657][ T7849] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1437'.
[  110.063087][ T7849] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm +}[@: Allocating blocks 449-513 which overlap fs metadata
[  110.089839][ T7847] EXT4-fs (loop4): pa ffff888106a10230: logic 48, phys. 177, len 21
[  110.097920][ T7847] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  110.321695][ T7841] syz.3.1435 (7841) used greatest stack depth: 9312 bytes left