last executing test programs:

4m25.211611992s ago: executing program 2 (id=5758):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x4, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="180200000100000000000000000000008500000087000000850000007d00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000040)="2b1c52ac82e71ea05b0c5e43ede4", 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000fc0)}, 0x50)

4m25.114472111s ago: executing program 2 (id=5759):
socket$inet_sctp(0x2, 0x1, 0x84)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0)
socket$kcm(0x2b, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
write$UHID_CREATE(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = dup(r2)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @empty, 0x7}], 0x1c)
r4 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000040)='hugetlb.1GB.limit_in_bytes\x00', 0x2, 0x0)
sendfile(r4, 0xffffffffffffffff, 0x0, 0x1000a3)
sendmsg$inet6(r2, &(0x7f0000000800)={&(0x7f0000000380)={0xa, 0x4e24, 0x8, @loopback, 0x4}, 0x1c, &(0x7f0000000080)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x4048043)
shutdown(r2, 0x1)

4m24.208157341s ago: executing program 2 (id=5763):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, 0x0, 0x2)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x48, 0x9, 0x6, 0x801, 0x0, 0x0, {0x5}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x20, 0x7, 0x0, 0x1, [@IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e21}, @IPSET_ATTR_PROTO={0x5, 0x7, 0xff}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @private=0xa010101}}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x10004893}, 0x80)
socket$nl_netfilter(0x10, 0x3, 0xc)

4m23.817612037s ago: executing program 2 (id=5766):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x8, &(0x7f0000000580), 0x5, 0x4f3, &(0x7f00000005c0)="$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")
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x1208002, &(0x7f0000000100)={[{@grpquota}, {@delalloc}, {@resuid}, {@debug}, {@dioread_nolock}, {}, {@nomblk_io_submit}, {@noauto_da_alloc}]}, 0x1, 0x5d8, &(0x7f00000005c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r3)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r3, 0x0, 0x4000054)
preadv2(0xffffffffffffffff, &(0x7f00000002c0)=[{0x0}, {&(0x7f0000001380)=""/121, 0x79}], 0x2, 0x0, 0x0, 0x0)

4m20.768737118s ago: executing program 2 (id=5771):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000100)={0x0, 0x1c, &(0x7f00000001c0)=[@in6={0xa, 0x0, 0x0, @private0}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x66, 0x0, &(0x7f00000000c0))
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r1 = io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0x7a22, 0xc000, 0x3, 0x337})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0x5}, {}, {0x0, 0xffff}}}, 0x24}}, 0x4040000)
r2 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000300)=0x8)
sendmsg(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)='9', 0x1}], 0x1, 0x0, 0x0, 0x2c}, 0x4000845)
io_uring_enter(r1, 0x2219, 0x7721, 0x16, 0x0, 0x0)

4m19.724518091s ago: executing program 2 (id=5776):
socket(0x10, 0x3, 0x4)
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000002640)=@newtaction={0xe68, 0x30, 0x3f, 0x0, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{}, 0x2}, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, {0xfffffffc, 0x0, 0x0, 0x0, 0x100}, {0x0, 0x0, 0x0, 0x0, 0x3}, {}, {0x5943}, {0x0, 0x800000, 0x0, 0xfffffffc}, {}, {}, {0x0, 0x0, 0x0, 0x10}, {}, {}, {0x0, 0xa2}, {0x0, 0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x1cbe}, {0x0, 0x0, 0x0, 0x5}, {}, {}, {}, {0x2}, {0x8}, {}, {0x0, 0xfffffffe, 0x400000}, {0x0, 0xfffffffc}, {}, {}, {}, {0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x0, 0x4, 0xffffff6a}, {0x0, 0x0, 0x0, 0x0, 0x5}, {}, {}, {0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x0, 0x0, 0x0, 0x100}, {}, {}, {0x0, 0x4}, {0x0, 0x0, 0x0, 0x0, 0x800000}, {0x0, 0x0, 0x0, 0xe54b}, {0x0, 0x3}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x0, 0x7fffffff}, {0x0, 0x0, 0x0, 0x0, 0x4}, {0x0, 0x0, 0x0, 0x0, 0x27a}, {0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, {}, {}, {0x0, 0x4}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {0x0, 0x0, 0x0, 0xfffffffd}, {}, {}, {}, {0x0, 0x4}, {0x0, 0x0, 0x0, 0x0, 0xffffffff}, {0x0, 0xfffffffc, 0x0, 0x0, 0xfffffffc}, {}, {0x0, 0x2}, {}, {}, {}, {0x0, 0x0, 0xa}, {0x0, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x0, 0x0, 0x0, 0x0, 0x1}, {0xc}, {}, {0x0, 0x0, 0x2b7f}, {0x3ff, 0x0, 0x0, 0x0, 0x8}, {0x0, 0x6}, {}, {}, {0x0, 0x0, 0x0, 0x8}, {}, {0x0, 0xcfc, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x70}, {}, {0xfffffffd, 0x0, 0x0, 0x0, 0xa92}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x40000000, 0x1, 0x0, 0x10001}, {0x0, 0x0, 0x20}, {}, {0x80000}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}, {0xfffffffc}, {}, {}, {}, {0x0, 0xa, 0xfffffffc}, {0x0, 0x0, 0x0, 0x8}, {}, {0x0, 0x0, 0x0, 0x3}, {0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x8}, {0x0, 0x0, 0x40, 0x0, 0x0, 0x3}, {}, {}, {}, {0x0, 0x0, 0x0, 0x1, 0x2}], [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x2}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {0x2}, {0x5}, {}, {}, {}, {}, {}, {0x7, 0x1}, {}, {}, {0x0, 0x1}, {}, {}, {0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0)
mbind(&(0x7f00001fa000/0x2000)=nil, 0x2000, 0x1, 0x0, 0x0, 0x0)
socket$xdp(0x2c, 0x3, 0x0)
openat$sndseq(0xffffff9c, &(0x7f0000001240), 0x0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
sendmsg$nl_route(r0, &(0x7f0000002fc0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="240000001a000100000000000000000002000000750200060030000008000100ac1414ff"], 0x24}}, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

4m3.754475254s ago: executing program 32 (id=5776):
socket(0x10, 0x3, 0x4)
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000002640)=@newtaction={0xe68, 0x30, 0x3f, 0x0, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{}, 0x2}, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, {0xfffffffc, 0x0, 0x0, 0x0, 0x100}, {0x0, 0x0, 0x0, 0x0, 0x3}, {}, {0x5943}, {0x0, 0x800000, 0x0, 0xfffffffc}, {}, {}, {0x0, 0x0, 0x0, 0x10}, {}, {}, {0x0, 0xa2}, {0x0, 0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x1cbe}, {0x0, 0x0, 0x0, 0x5}, {}, {}, {}, {0x2}, {0x8}, {}, {0x0, 0xfffffffe, 0x400000}, {0x0, 0xfffffffc}, {}, {}, {}, {0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x0, 0x4, 0xffffff6a}, {0x0, 0x0, 0x0, 0x0, 0x5}, {}, {}, {0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x0, 0x0, 0x0, 0x100}, {}, {}, {0x0, 0x4}, {0x0, 0x0, 0x0, 0x0, 0x800000}, {0x0, 0x0, 0x0, 0xe54b}, {0x0, 0x3}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x0, 0x7fffffff}, {0x0, 0x0, 0x0, 0x0, 0x4}, {0x0, 0x0, 0x0, 0x0, 0x27a}, {0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, {}, {}, {0x0, 0x4}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {0x0, 0x0, 0x0, 0xfffffffd}, {}, {}, {}, {0x0, 0x4}, {0x0, 0x0, 0x0, 0x0, 0xffffffff}, {0x0, 0xfffffffc, 0x0, 0x0, 0xfffffffc}, {}, {0x0, 0x2}, {}, {}, {}, {0x0, 0x0, 0xa}, {0x0, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x0, 0x0, 0x0, 0x0, 0x1}, {0xc}, {}, {0x0, 0x0, 0x2b7f}, {0x3ff, 0x0, 0x0, 0x0, 0x8}, {0x0, 0x6}, {}, {}, {0x0, 0x0, 0x0, 0x8}, {}, {0x0, 0xcfc, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x70}, {}, {0xfffffffd, 0x0, 0x0, 0x0, 0xa92}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x40000000, 0x1, 0x0, 0x10001}, {0x0, 0x0, 0x20}, {}, {0x80000}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}, {0xfffffffc}, {}, {}, {}, {0x0, 0xa, 0xfffffffc}, {0x0, 0x0, 0x0, 0x8}, {}, {0x0, 0x0, 0x0, 0x3}, {0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x8}, {0x0, 0x0, 0x40, 0x0, 0x0, 0x3}, {}, {}, {}, {0x0, 0x0, 0x0, 0x1, 0x2}], [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x2}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {0x2}, {0x5}, {}, {}, {}, {}, {}, {0x7, 0x1}, {}, {}, {0x0, 0x1}, {}, {}, {0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0)
mbind(&(0x7f00001fa000/0x2000)=nil, 0x2000, 0x1, 0x0, 0x0, 0x0)
socket$xdp(0x2c, 0x3, 0x0)
openat$sndseq(0xffffff9c, &(0x7f0000001240), 0x0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
sendmsg$nl_route(r0, &(0x7f0000002fc0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="240000001a000100000000000000000002000000750200060030000008000100ac1414ff"], 0x24}}, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

5.663339125s ago: executing program 4 (id=7150):
bpf$MAP_CREATE(0x0, &(0x7f0000010880)=@base={0x6, 0x4, 0x8, 0xc}, 0x3d)
bpf$PROG_LOAD(0x5, &(0x7f0000010400)={0x11, 0x3, &(0x7f0000000280)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8684, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x6}, 0x0, 0xfff, 0x40000, 0x6, 0x8, 0x7d, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
pipe(&(0x7f0000001040))
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket(0x2, 0x80805, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="180000000200"/15], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4000}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
socket$inet6_sctp(0xa, 0x5, 0x84)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), r0)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000001400000008000a00fc00000018000180140002006e657464657673696d300000000000000800080000fcffff0800090000000000080011000000000008000e00800000000800", @ANYRES8=r1], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0)

4.863193596s ago: executing program 4 (id=7156):
syz_mount_image$msdos(&(0x7f00000002c0), &(0x7f0000000280)='./file1\x00', 0x4, &(0x7f0000001180)=ANY=[@ANYBLOB="648d73636172642cc37280409fc4d4ebd35d6e66732c4d6f74732c63642cb0c99ec21612646f74732c6e6f646f74732c01000000"], 0x1, 0x22d, &(0x7f0000000300)="$eJzs3b2KE1EYBuDP3exu2MatxWLAxiqodzDICuKAEJlCKwdWm10RZpvRKpfhNXhJXsZW6UbMhPwZbTQes/M8EOaFl8B3mpwU5yRv73+4vPh4/b799iWGwywGEZOYRpzFQRxG5878eTDLx7FqEgDAvhmPqzz1DOxWXefVUUSc/NSUX5MMBAAAAAAAAAAAwB9z/h8A+sf5/9uvrvPqdP79bZ3z/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEA607a92/7mlXo+AODvs/8DQP/Y/wGgf+z/ANA/r16/eZEXxfk4y4YRN5OmbMru2fXPnhfnj7KZs+W7bpqmPFz0j7s+W++P4nTeP9naH8fDB13/o3v6stjoT+Ji98sHAAAAAAAAAAAAAAAAAACA/8IoW9h6v380+lXfpZXfB9i4vz+Ie4N/tgwAAAAAAAAAAAAAAAAAAADYa9efPl9WV1fvakEQhEVI/ckEAAAAAAAAAAAAAAAAAAD9s7z0m3oSAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEhn+f//uwup1wgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD0w/cAAAD//wu+k9A=")
arch_prctl$ARCH_SHSTK_LOCK(0x5003, 0x0)
truncate(&(0x7f0000000080)='./file1\x00', 0x400000f002)
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000000)={0xd2f0, 0x2000, 0x8, 0xadea})
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xfd01}, 0x8)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
r2 = epoll_create1(0x80000)
r3 = fcntl$dupfd(r1, 0x0, r1)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000040)={0x20000000})
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x2b, 0x1, 0x0, 0x0, 0x0, 0x9, 0x80552, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x4, @perf_bp={0x0, 0xa}, 0x102260, 0x10000, 0x0, 0x1, 0x5, 0xfffffffb, 0x0, 0x0, 0x0, 0x0, 0x2000000020000005}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
getrlimit(0xc73be9cdcf0e8bf5, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f00000001c0)={0x10000014})

2.80533734s ago: executing program 1 (id=7166):
bpf$MAP_CREATE(0x0, &(0x7f0000010880)=@base={0x6, 0x4, 0x8, 0xc}, 0x3d)
bpf$PROG_LOAD(0x5, &(0x7f0000010400)={0x11, 0x3, &(0x7f0000000280)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8684, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x6}, 0x0, 0xfff, 0x40000, 0x6, 0x8, 0x7d, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
pipe(&(0x7f0000001040))
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket(0x2, 0x80805, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="180000000200"/15], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4000}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
socket$inet6_sctp(0xa, 0x5, 0x84)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), r0)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000001400000008000a00fc00000018000180140002006e657464657673696d300000000000000800080000fcffff0800090000000000080011000000000008000e00800000000800", @ANYRES8=r1], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0)

2.513272026s ago: executing program 3 (id=7172):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2}, &(0x7f0000000300))
syz_open_dev$tty1(0xc, 0x4, 0x1)
fstatfs(0xffffffffffffffff, 0x0)
socket$inet_sctp(0x2, 0x1, 0x84)
r0 = syz_io_uring_setup(0x49a, &(0x7f0000000400)={0x0, 0x79af, 0x800, 0x0, 0x400250}, &(0x7f0000000340)=<r1=>0x0, &(0x7f00000002c0))
perf_event_open(&(0x7f0000000340)={0xc, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0xf8c, 0x510, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, @perf_config_ext={0x8006, 0x6}, 0x0, 0x10001, 0xda, 0x5, 0xabca, 0x5, 0xa, 0x0, 0x0, 0x0, 0x20000004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x8000}, 0x800)
sendmsg$NFT_BATCH(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="140000001000010000000000000000002000000a70000000060a0b0400000000000000000200000044000480200001800e000100636f6e6e6c696d69740000000c000280080001400000000010000180090001006c61737400000000100001800a00010072656469720000000900010073797a30000000000900020073797a32"], 0x98}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_setup(0x10a, &(0x7f0000000680)={0x0, 0x80334c, 0x10, 0x3, 0x3d3}, &(0x7f0000000200), &(0x7f0000000240))
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x1, 0x7})
write$UHID_CREATE2(r3, &(0x7f00000001c0)=ANY=[@ANYBLOB="06"], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r3, 0x0)
io_uring_enter(r0, 0x627, 0xc1040000, 0x43, 0x0, 0x0)

2.47206846s ago: executing program 3 (id=7173):
perf_event_open$cgroup(&(0x7f00000003c0)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0xa480}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
socketpair(0x1, 0x1, 0x0, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0x8, 0x4}, 0x24, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x4, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10150, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x9}, 0x0, 0x0, 0x1, 0x8, 0x0, 0x2, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0xa, 0x2, 0x0)
setsockopt$sock_attach_bpf(r0, 0x29, 0x23, &(0x7f0000000040), 0xcf)
r1 = socket$kcm(0xf, 0x3, 0x2)
sendmsg$inet(r1, &(0x7f0000003780)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="0213020902000000e4a17c4e2ca18baa", 0x10}], 0x1}, 0x0)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x40000, 0x40)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600600, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil)
getdents64(r2, &(0x7f00000002c0)=""/33, 0x21)

2.457685241s ago: executing program 4 (id=7175):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x218004, &(0x7f00000005c0)={[{@block_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@norecovery}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
setxattr$security_ima(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000200), &(0x7f0000000000)=ANY=[], 0x700, 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file0/file0\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc093, 0x2, @perf_bp={0x0, 0x8}, 0x4, 0x0, 0x10000, 0x0, 0x2, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x1)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket(0x40000000015, 0x5, 0x0)
bind$inet(r0, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
socket$nl_route(0x10, 0x3, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0/file0\x00'}, 0x6e)
sched_setaffinity(r1, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@newtaction={0xb0, 0x30, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [{0x9c, 0x1, [@m_skbedit={0x50, 0x1, 0x0, 0x0, {{0xc}, {0x24, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PARMS={0x18, 0x2, {0x2, 0x9, 0x4, 0x8be6, 0x5}}, @TCA_SKBEDIT_PTYPE={0x6, 0x7, 0x1}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}, @m_skbedit={0x48, 0x2, 0x0, 0x0, {{0xc}, {0x1c, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PARMS={0x18, 0x2, {0x2, 0x0, 0x6, 0xffffffff, 0x3}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x3}}}}]}]}, 0xb0}, 0x1, 0x0, 0x0, 0x4081}, 0x2400c800)

2.398421276s ago: executing program 1 (id=7176):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x4801})
ioctl$TUNSETLINK(r0, 0x400454cd, 0x118)
write$cgroup_devices(r0, &(0x7f0000000200)=ANY=[@ANYBLOB="1b23000d"], 0xffdd)

2.335873592s ago: executing program 3 (id=7178):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x7c}, 0x1, 0x0, 0x0, 0x8000}, 0x800)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="140000001000010000000000000000002000000a70000000060a0b0400000000000000000200000044000480200001800e000100636f6e6e6c696d69740000000c000280080001400000000010000180090001006c61737400000000100001800a00010072656469720000000900010073797a30000000000900020073797a32"], 0x98}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

2.301937035s ago: executing program 0 (id=7180):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
sendmsg(r0, 0x0, 0x4040)

2.255093489s ago: executing program 3 (id=7181):
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004"], 0x0, 0x26}, 0x28)

2.24647009s ago: executing program 0 (id=7182):
r0 = socket(0x2, 0x80805, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000240)={0x84, @empty, 0x4e20, 0x3, 'sh\x00', 0x1d, 0x80, 0x70}, 0x2c)

2.24594399s ago: executing program 1 (id=7183):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000080)={0x0, 0x0, 0xfffffff9, 0x7fff, 0x16, "0062007d82000000000000002240f7ffffff00"})
r1 = syz_open_pts(r0, 0x0)
r2 = socket$key(0xf, 0x3, 0x2)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f00000001c0), 0x4)
sendmsg$key(r2, 0x0, 0x0)
sendmsg$key(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x2, 0xa, 0x0, 0x0, 0x2}, 0x10}}, 0x0)
recvmmsg(r2, &(0x7f0000000f00), 0x274, 0x10000, &(0x7f0000001000)={0x77359400})
r3 = dup3(r1, r0, 0x0)
ioctl$TCXONC(r0, 0x540a, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$HIDIOCGRAWNAME(r3, 0x80404804, &(0x7f0000000000))
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000280)='./file1\x00', 0x200000, &(0x7f0000000040)=ANY=[@ANYBLOB="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", @ANYRES8], 0x3, 0x232, &(0x7f0000000640)="$eJzs2r+LHGUYB/BnzsSLFy574i8SEF+0UJshd7VFDklAXFA0K0RBMvFmddlx99hZDlbEbKWtf4K1WNoJktLmGv8CC7trrkwhjmz21GzYFEHNJfHzaeaBd77M+zLvvDzFHLz29af9bp13i3GsZFmsXIhp3MxiI1biT9N49eUrPz3/7pX339xuty++k9Kl7cubWymlMy/8+MHn3714Y3z6ve/P/LAa+xsfHhxu/br/7P7Zg98vf9KrU69Og+E4FenacDgurlVl2unV/Tylt6uyqMvUG9TlaGG8Ww13dyepGOysr+2OyrpOxWCS+uUkjYdpPJqk4uOiN0h5nqf1teCf6Hx7s2nisDl5NZqmeeKbOH0j1n+JVmRPpuypC9kzV7PnptnZw6ZpHfdU+U94//9vtx3qpyKqr/Y6e535dT6+3Y1eVFHG+WjFbzHbJkfm9aU32hfPp1s24svq+lH++l7nscX8ZrRiY3l+c55Pi/nVWIs4GXGU34pWPL08v7U0fypeeem25+fRip8/imFUsROz7N/5LzZTev2t9h35c7fuAwB41OTpL0v7tzy/2/g8fw/94R391Yk4d+J4105EPfmsX1RVOXpki9kqH4BpKP7NYjXuKZVFTGf74IGY/OMPx6d3rMcS98niOQkAAAAAAAAAAMDD4n79gQsAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHA3fwQAAP//rHDMJg==")
accept(0xffffffffffffffff, &(0x7f0000002d40)=@sco={0x1f, @fixed}, &(0x7f0000002dc0)=0x80)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB="210000000000000000000000000010000004"], 0x48)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x3000001, 0x11, r4, 0x0)
msgctl$IPC_SET(0x0, 0x1, &(0x7f0000258f88)={{0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x96, 0x200}, 0x0, 0x0, 0x0, 0x80004, 0x0, 0x0, 0xffffffffffffffff})
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x3, 0x972, &(0x7f0000006680))
lstat(&(0x7f0000002ec0)='./file1\x00', 0x0)

2.179479196s ago: executing program 3 (id=7185):
socket(0x10, 0x3, 0x4)
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000002640)=@newtaction={0xe68, 0x30, 0x3f, 0x0, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{}, 0x2}, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, {0xfffffffc, 0x0, 0x0, 0x0, 0x100}, {0x0, 0x0, 0x0, 0x0, 0x3}, {}, {0x5943}, {0x0, 0x800000, 0x0, 0xfffffffc}, {}, {}, {0x0, 0x0, 0x0, 0x10}, {}, {}, {0x0, 0xa2}, {0x0, 0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x1cbe}, {0x0, 0x0, 0x0, 0x5}, {}, {}, {}, {0x2}, {0x8}, {}, {0x0, 0xfffffffe, 0x400000}, {0x0, 0xfffffffc}, {}, {}, {}, {0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x0, 0x4, 0xffffff6a}, {0x0, 0x0, 0x0, 0x0, 0x5}, {}, {}, {0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x0, 0x0, 0x0, 0x100}, {}, {}, {0x0, 0x4}, {0x0, 0x0, 0x0, 0x0, 0x800000}, {0x0, 0x0, 0x0, 0xe54b}, {0x0, 0x3}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x0, 0x7fffffff}, {0x0, 0x0, 0x0, 0x0, 0x4}, {0x0, 0x0, 0x0, 0x0, 0x27a}, {0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, {}, {}, {0x0, 0x4}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {0x0, 0x0, 0x0, 0xfffffffd}, {}, {}, {}, {0x0, 0x4}, {0x0, 0x0, 0x0, 0x0, 0xffffffff}, {0x0, 0xfffffffc, 0x0, 0x0, 0xfffffffc}, {}, {0x0, 0x2}, {}, {}, {}, {0x0, 0x0, 0xa}, {0x0, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x0, 0x0, 0x0, 0x0, 0x1}, {0xc}, {}, {0x0, 0x0, 0x2b7f}, {0x3ff, 0x0, 0x0, 0x0, 0x8}, {0x0, 0x6}, {}, {}, {0x0, 0x0, 0x0, 0x8}, {}, {0x0, 0xcfc, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x70}, {}, {0xfffffffd, 0x0, 0x0, 0x0, 0xa92}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x40000000, 0x1, 0x0, 0x10001}, {0x0, 0x0, 0x20}, {}, {0x80000}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}, {0xfffffffc}, {}, {}, {}, {0x0, 0xa, 0xfffffffc}, {0x0, 0x0, 0x0, 0x8}, {}, {0x0, 0x0, 0x0, 0x3}, {0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x8}, {0x0, 0x0, 0x40, 0x0, 0x0, 0x3}, {}, {}, {}, {0x0, 0x0, 0x0, 0x1, 0x2}], [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x2}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {0x2}, {0x5}, {}, {}, {}, {}, {}, {0x7, 0x1}, {}, {}, {0x0, 0x1}, {}, {}, {0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0)
mbind(&(0x7f00001fa000/0x2000)=nil, 0x2000, 0x1, 0x0, 0x0, 0x0)
r5 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r5, 0x11b, 0x4, 0x0, 0x0)
mount$9p_virtio(0x0, 0x0, &(0x7f00000004c0), 0x8c, 0x0)
openat$sndseq(0xffffff9c, &(0x7f0000001240), 0x0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002fc0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="240000001a000100000000000000000002000000750200060030000008000100ac1414ff"], 0x24}}, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

2.147853118s ago: executing program 0 (id=7186):
bpf$MAP_CREATE(0x0, &(0x7f0000010880)=@base={0x6, 0x4, 0x8, 0xc}, 0x3d)
bpf$PROG_LOAD(0x5, &(0x7f0000010400)={0x11, 0x3, &(0x7f0000000280)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8684, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x6}, 0x0, 0xfff, 0x40000, 0x6, 0x8, 0x7d, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
pipe(&(0x7f0000001040))
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket(0x2, 0x80805, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="180000000200"/16], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4000}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
socket$inet6_sctp(0xa, 0x5, 0x84)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), r0)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000001400000008000a00fc00000018000180140002006e657464657673696d300000000000000800080000fcffff0800090000000000080011000000000008000e00800000000800", @ANYRES8=r1], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0)

2.119705011s ago: executing program 5 (id=7187):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x5, 0xf4261, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x147b7e, 0x0, @perf_bp={0x0, 0x6}, 0x19996, 0x20000, 0x43a1bd76, 0x2, 0x2c9, 0x2, 0x2, 0x0, 0x0, 0x0, 0x200b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$inet6(0xa, 0x80803, 0x87)
syz_emit_ethernet(0x5e, &(0x7f00000004c0)=ANY=[], 0x0)

1.871352043s ago: executing program 4 (id=7188):
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r0, &(0x7f0000001600)={&(0x7f00000001c0)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000100)=[@fadd={0x58, 0x114, 0x6, {{0x5, 0x6}, &(0x7f0000000400)=0x7, 0x0, 0xf, 0x4, 0x9, 0xfffffffffffffff9, 0x22, 0x7}}, @fadd={0x58, 0x114, 0x6, {{0x4, 0xffff}, 0x0, 0x0, 0x200, 0xffffffffffff0000, 0xf1, 0x6, 0x12, 0x7}}], 0xb0, 0x8000}, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x3, @perf_bp={0x0, 0x6}, 0x4, 0x9, 0xfff, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
pread64(0xffffffffffffffff, &(0x7f0000000180)=""/181, 0xb5, 0x4)
r1 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'ip6gre0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0x58, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28}}}]}, 0x58}}, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r4, 0x6, 0x4, &(0x7f0000000280)=0x3077, 0x4)
setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r1, 0x84, 0x21, &(0x7f0000000240), 0x4)
r5 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r5, &(0x7f0000000000)={0x2, 0x4000, @loopback}, 0x10)
sendmsg$rds(r5, &(0x7f0000000080)={&(0x7f00000017c0)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000100)=[@rdma_map={0x24, 0x114, 0x3, {{&(0x7f0000000140)=""/14, 0xe}, &(0x7f0000000440), 0x40}}], 0x30}, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)

1.657778482s ago: executing program 1 (id=7189):
perf_event_open$cgroup(&(0x7f00000003c0)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0xa480}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
socketpair(0x1, 0x1, 0x0, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0x8, 0x4}, 0x24, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x4, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10150, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x9}, 0x0, 0x0, 0x1, 0x8, 0x0, 0x2, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0xa, 0x2, 0x0)
setsockopt$sock_attach_bpf(r1, 0x29, 0x23, &(0x7f0000000040), 0xcf)
r2 = socket$kcm(0xf, 0x3, 0x2)
sendmsg$inet(r2, &(0x7f0000003780)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="0213020902000000e4a17c4e2ca18baa", 0x10}], 0x1}, 0x0)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000044, &(0x7f00000003c0), 0x1, 0x55e, &(0x7f0000001bc0)="$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")
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f00000007c0)='./file0\x00', 0x982822, &(0x7f0000000ec0)=ANY=[@ANYRES8=r0, @ANYRESDEC=0x0, @ANYRESDEC=0x0], 0xfd, 0x1b1, &(0x7f0000000d00)="$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")
mremap(&(0x7f0000000000/0x9000)=nil, 0x600600, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil)
getdents64(0xffffffffffffffff, &(0x7f00000002c0)=""/33, 0x21)

942.572586ms ago: executing program 0 (id=7190):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000010400)={0x11, 0xc, &(0x7f0000000280)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8684, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x6}, 0x0, 0xfff, 0x40000, 0x6, 0x8, 0x7d, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket(0x2, 0x80805, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4000}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), r1)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000001400000008000a00fc00000018000180140002006e657464657673696d300000000000000800080000fcffff0800090000000000080011000000000008000e00800000000800", @ANYRES8=r2], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0)

941.818916ms ago: executing program 5 (id=7191):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x7c}, 0x1, 0x0, 0x0, 0x8000}, 0x800)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="140000001000010000000000000000002000000a70000000060a0b0400000000000000000200000044000480200001800e000100636f6e6e6c696d69740000000c000280080001400000000010000180090001006c61737400000000100001800a00010072656469720000000900010073797a30000000000900020073797a32"], 0x98}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

918.290598ms ago: executing program 1 (id=7192):
socket$inet(0x10, 0x3, 0xfffffffc)
unshare(0x22020600)
ioctl$USBDEVFS_CLEAR_HALT(0xffffffffffffffff, 0xc0105502, 0x0)

876.644242ms ago: executing program 4 (id=7193):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
sendmsg(r0, 0x0, 0x4040)

856.588833ms ago: executing program 5 (id=7194):
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'ip6gre0\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0x58, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28}}}]}, 0x58}}, 0x0)

831.462906ms ago: executing program 5 (id=7195):
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)

766.591322ms ago: executing program 5 (id=7196):
r0 = perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0xa1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, 0x0)

766.388172ms ago: executing program 4 (id=7197):
sendmsg$BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x800}, 0x0)
socket$netlink(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
timer_create(0x7, &(0x7f0000000240)={0x0, 0xb, 0x4, @tid=0xffffffffffffffff}, &(0x7f00000001c0)=<r3=>0x0)
timer_gettime(r3, &(0x7f0000000100))
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x1)
r4 = creat(&(0x7f00000000c0)='./file0\x00', 0xc9028ba210c11f8b)
ioctl$BLKTRACESETUP(r4, 0xc0481273, 0x0)
ioctl$BLKTRACESTOP(r4, 0x1275, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r5, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'})
syz_emit_ethernet(0x3e, &(0x7f0000000440)={@link_local, @local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "430093", 0x8, 0x3a, 0xff, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @mcast2, {[], @ndisc_rs}}}}}, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x143042, 0x80)
pwritev2(r6, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfe}], 0x1, 0x5405, 0x0, 0x0)
sendfile(r6, r6, 0x0, 0x7a080000)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)

72.964553ms ago: executing program 0 (id=7198):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2}, &(0x7f0000000300))
syz_open_dev$tty1(0xc, 0x4, 0x1)
fstatfs(0xffffffffffffffff, 0x0)
socket$inet_sctp(0x2, 0x1, 0x84)
r0 = syz_io_uring_setup(0x49a, &(0x7f0000000400)={0x0, 0x79af, 0x800, 0x0, 0x400250}, &(0x7f0000000340)=<r1=>0x0, &(0x7f00000002c0))
perf_event_open(&(0x7f0000000340)={0xc, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0xf8c, 0x510, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, @perf_config_ext={0x8006, 0x6}, 0x0, 0x10001, 0xda, 0x5, 0xabca, 0x5, 0xa, 0x0, 0x0, 0x0, 0x20000004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x8000}, 0x800)
sendmsg$NFT_BATCH(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="140000001000010000000000000000002000000a70000000060a0b0400000000000000000200000044000480200001800e000100636f6e6e6c696d69740000000c000280080001400000000010000180090001006c61737400000000100001800a00010072656469720000000900010073797a30000000000900020073797a32"], 0x98}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_setup(0x10a, &(0x7f0000000680)={0x0, 0x80334c, 0x10, 0x3, 0x3d3}, &(0x7f0000000200), &(0x7f0000000240))
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x1, 0x7})
write$UHID_CREATE2(r3, &(0x7f00000001c0)=ANY=[@ANYBLOB="06"], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r3, 0x0)
io_uring_enter(r0, 0x627, 0xc1040000, 0x43, 0x0, 0x0)

32.994597ms ago: executing program 3 (id=7199):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000080)={0x0, 0x0, 0xfffffff9, 0x7fff, 0x16, "0062007d82000000000000002240f7ffffff00"})
r1 = syz_open_pts(r0, 0x0)
r2 = socket$key(0xf, 0x3, 0x2)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f00000001c0), 0x4)
sendmsg$key(r2, 0x0, 0x0)
sendmsg$key(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x2, 0xa, 0x0, 0x0, 0x2}, 0x10}}, 0x0)
recvmmsg(r2, &(0x7f0000000f00), 0x274, 0x10000, &(0x7f0000001000)={0x77359400})
r3 = dup3(r1, r0, 0x0)
ioctl$TCXONC(r0, 0x540a, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$HIDIOCGRAWNAME(r3, 0x80404804, &(0x7f0000000000))
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000280)='./file1\x00', 0x200000, &(0x7f0000000040)=ANY=[@ANYBLOB="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", @ANYRES8], 0x3, 0x232, &(0x7f0000000640)="$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")
accept(0xffffffffffffffff, &(0x7f0000002d40)=@sco={0x1f, @fixed}, &(0x7f0000002dc0)=0x80)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB="210000000000000000000000000010000004"], 0x48)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x3000001, 0x11, r4, 0x0)
msgctl$IPC_SET(0x0, 0x1, &(0x7f0000258f88)={{0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x96, 0x200}, 0x0, 0x0, 0x0, 0x80004, 0x0, 0x0, 0xffffffffffffffff})
lstat(&(0x7f0000002ec0)='./file1\x00', 0x0)

271.57µs ago: executing program 5 (id=7200):
r0 = fsopen(0x0, 0x0)
r1 = fsmount(r0, 0x1, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
r2 = socket(0x10, 0x3, 0x0)
r3 = getpgrp(0x0)
r4 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
kcmp(r3, r4, 0x0, r2, r2)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x6, 0xf44b5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x147b7e, 0x0, @perf_config_ext={0x807, 0xf60d}, 0xd00, 0x3802, 0x43a1bd76, 0x4, 0x9, 0x3, 0x2, 0x0, 0x0, 0x0, 0x200b}, r4, 0x3ffffffffd, r1, 0x2)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x8, 0x40008, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x9, 0x6}, 0x0, 0x0, 0x800000, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x3008011, &(0x7f0000000000), 0x0, 0x51a, &(0x7f0000001200)="$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")
r5 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x63, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x0, 0x0, 0x800000, 0x6, 0x2, 0xcb, 0xffff, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xfff7ffffffffffff, 0xffffffffffffffff, 0x8)
gettid()
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x6000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x4, 0x1, 0x0, 0x0, 0x0, 0x6, 0x510, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_bp={0x0}, 0x101, 0x1, 0x2, 0x5, 0x8, 0xd9c, 0x2, 0x0, 0x0, 0x0, 0x2000000020000006}, 0x0, 0xffffffffffffffff, r5, 0x2)
timer_create(0x3, 0x0, &(0x7f0000000100))
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
timer_settime(0x0, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
syz_read_part_table(0x407c, &(0x7f000000db40)="$eJzs079KemEYB/BHh98ParHoAt4tAqnjnySnqGhoMAenxgoLQQzSwqWlu+mSuoCuw8AM5FSDFgTx+UzPOd/3efku7+rL00FEFHbuBr1x5BQjYjKd9osRhYioz5JC/ujwutc/v+j237aK+ZiFlb74//A4G/4tfufmWsRpioiV0fPG0Xfa8Uf83zqb/5xMfXzfyzk5bKX2cStljUa1U6mmd7VUyz7fyLJsLvmhGktZL3Wuxum+ezvs3QzS7natnNqXo1TZK6dKs1n/xWYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPDKDhwIAAAAAAD5vzZCVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVFXbgQAAAAAAAyP+1EaqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqwA8cCAAAAAML8rZPo3AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAG4FAAD//xQHINw=")

117.11µs ago: executing program 1 (id=7201):
bpf$MAP_CREATE(0x0, &(0x7f0000010880)=@base={0x6, 0x4, 0x8, 0xc}, 0x3d)
bpf$PROG_LOAD(0x5, &(0x7f0000010400)={0x11, 0x3, &(0x7f0000000280)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8684, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x6}, 0x0, 0xfff, 0x40000, 0x6, 0x8, 0x7d, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
pipe(&(0x7f0000001040))
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket(0x2, 0x80805, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="180000000200"/16], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4000}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
socket$inet6_sctp(0xa, 0x5, 0x84)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), r0)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000001400000008000a00fc00000018000180140002006e657464657673696d300000000000000800080000fcffff0800090000000000080011000000000008000e00800000000800", @ANYRES8=r1], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0)

0s ago: executing program 0 (id=7202):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000400), 0x5}, 0x106200, 0x10004, 0x20da, 0x5, 0xa, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000040000a3c000000120a09000000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000914"], 0x64}}, 0x0)

kernel console output (not intermixed with test programs):

an_socket permissive=1
[ 1343.263499][T25653] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6688'.
[ 1343.284387][T25656] netlink: 'syz.1.6690': attribute type 2 has an invalid length.
[ 1343.301745][   T28] audit: type=1400 audit(1771397167.721:339): avc:  denied  { read } for  pid=25647 comm="syz.0.6688" name="rtc0" dev="devtmpfs" ino=245 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[ 1343.326427][T25656] netlink: 16174 bytes leftover after parsing attributes in process `syz.1.6690'.
[ 1343.336407][T25660] netlink: 'syz.1.6690': attribute type 2 has an invalid length.
[ 1343.344216][T25660] netlink: 16174 bytes leftover after parsing attributes in process `syz.1.6690'.
[ 1343.415157][T25656] netlink: 56 bytes leftover after parsing attributes in process `syz.1.6690'.
[ 1343.424600][T25660] netlink: 56 bytes leftover after parsing attributes in process `syz.1.6690'.
[ 1343.434210][   T28] audit: type=1400 audit(1771397167.721:340): avc:  denied  { open } for  pid=25647 comm="syz.0.6688" path="/dev/rtc0" dev="devtmpfs" ino=245 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[ 1343.457836][   T28] audit: type=1400 audit(1771397167.721:341): avc:  denied  { ioctl } for  pid=25647 comm="syz.0.6688" path="/dev/rtc0" dev="devtmpfs" ino=245 ioctlcmd=0x700a scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[ 1343.511578][T25669] loop1: detected capacity change from 0 to 256
[ 1343.850352][T25683] loop4: detected capacity change from 0 to 512
[ 1343.956314][T25683] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1344.126416][T25683] ext4 filesystem being mounted at /115/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1344.185663][T25683] EXT4-fs error (device loop4): ext4_do_update_inode:5569: inode #2: comm syz.4.6696: corrupted inode contents
[ 1344.206519][T25683] EXT4-fs error (device loop4): ext4_dirty_inode:6450: inode #2: comm syz.4.6696: mark_inode_dirty error
[ 1344.236518][T25683] EXT4-fs error (device loop4): ext4_do_update_inode:5569: inode #2: comm syz.4.6696: corrupted inode contents
[ 1344.282374][T25683] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #2: comm syz.4.6696: mark_inode_dirty error
[ 1344.304838][T25696] loop3: detected capacity change from 0 to 128
[ 1344.326098][T25697] EXT4-fs warning (device loop4): ext4_es_cache_extent:1082: inode #2: comm syz.4.6696: ES cache extent failed: add [0,1,21,0x1] conflict with existing [0,8,576460752303423487,0x18]
[ 1344.326098][T25697] 
[ 1344.353638][   T28] audit: type=1400 audit(1771397168.751:342): avc:  denied  { create } for  pid=25677 comm="syz.4.6696" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=chr_file permissive=1
[ 1344.401611][   T28] audit: type=1400 audit(1771397168.821:343): avc:  denied  { unlink } for  pid=25677 comm="syz.4.6696" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=chr_file permissive=1
[ 1344.493272][   T28] audit: type=1400 audit(1771397168.821:344): avc:  denied  { write } for  pid=25677 comm="syz.4.6696" dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=chr_file permissive=1
[ 1344.554257][T23636] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1344.576877][   T28] audit: type=1400 audit(1771397168.821:345): avc:  denied  { open } for  pid=25677 comm="syz.4.6696" path=2F3131352F6275732F66696C65306161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161202864656C6574656429 dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=chr_file permissive=1
[ 1344.647723][T25703] FAULT_INJECTION: forcing a failure.
[ 1344.647723][T25703] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1344.675997][T25703] CPU: 0 UID: 0 PID: 25703 Comm: syz.3.6701 Not tainted syzkaller #0 PREEMPT(full) 
[ 1344.676076][T25703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1344.676093][T25703] Call Trace:
[ 1344.676101][T25703]  <TASK>
[ 1344.676108][T25703]  __dump_stack+0x1d/0x30
[ 1344.676135][T25703]  dump_stack_lvl+0x95/0xd0
[ 1344.676179][T25703]  dump_stack+0x15/0x1b
[ 1344.676215][T25703]  should_fail_ex+0x263/0x280
[ 1344.676313][T25703]  should_fail+0xb/0x20
[ 1344.676334][T25703]  should_fail_usercopy+0x1a/0x20
[ 1344.676360][T25703]  _copy_to_user+0x20/0xa0
[ 1344.676460][T25703]  simple_read_from_buffer+0xb5/0x130
[ 1344.676501][T25703]  proc_fail_nth_read+0x10e/0x150
[ 1344.676536][T25703]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1344.676619][T25703]  vfs_read+0x1ab/0x7f0
[ 1344.676683][T25703]  ? __rcu_read_unlock+0x4e/0x70
[ 1344.676705][T25703]  ? __fget_files+0x184/0x1c0
[ 1344.676725][T25703]  ? mutex_lock+0x57/0x90
[ 1344.676797][T25703]  ksys_read+0xdc/0x1a0
[ 1344.676827][T25703]  __x64_sys_read+0x40/0x50
[ 1344.676855][T25703]  x64_sys_call+0x2886/0x3020
[ 1344.676915][T25703]  do_syscall_64+0x12c/0x370
[ 1344.676950][T25703]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1344.676975][T25703] RIP: 0033:0x7eff2323cece
[ 1344.676996][T25703] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1344.677077][T25703] RSP: 002b:00007eff21cadfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1344.677098][T25703] RAX: ffffffffffffffda RBX: 00007eff21cae6c0 RCX: 00007eff2323cece
[ 1344.677112][T25703] RDX: 000000000000000f RSI: 00007eff21cae0a0 RDI: 000000000000000a
[ 1344.677124][T25703] RBP: 00007eff21cae090 R08: 0000000000000000 R09: 0000000000000000
[ 1344.677141][T25703] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1344.677163][T25703] R13: 00007eff234f6128 R14: 00007eff234f6090 R15: 00007ffc2fbe62f8
[ 1344.677197][T25703]  </TASK>
[ 1344.983480][   T28] audit: type=1400 audit(1771397169.411:346): avc:  denied  { ioctl } for  pid=25705 comm="syz.4.6703" path="socket:[92120]" dev="sockfs" ino=92120 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[ 1345.028704][   T28] audit: type=1400 audit(1771397169.451:347): avc:  denied  { getopt } for  pid=25705 comm="syz.4.6703" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 1345.039948][T25704] loop1: detected capacity change from 0 to 256
[ 1345.074044][T25704] FAT-fs (loop1): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[ 1345.268574][T25731] FAULT_INJECTION: forcing a failure.
[ 1345.268574][T25731] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1345.287140][T25733] loop3: detected capacity change from 0 to 256
[ 1345.294035][T25731] CPU: 0 UID: 0 PID: 25731 Comm: syz.1.6714 Not tainted syzkaller #0 PREEMPT(full) 
[ 1345.294149][T25731] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1345.294165][T25731] Call Trace:
[ 1345.294178][T25731]  <TASK>
[ 1345.294188][T25731]  __dump_stack+0x1d/0x30
[ 1345.294216][T25731]  dump_stack_lvl+0x95/0xd0
[ 1345.294238][T25731]  dump_stack+0x15/0x1b
[ 1345.294328][T25731]  should_fail_ex+0x263/0x280
[ 1345.294363][T25731]  should_fail+0xb/0x20
[ 1345.294384][T25731]  should_fail_usercopy+0x1a/0x20
[ 1345.294412][T25731]  _copy_to_user+0x20/0xa0
[ 1345.294487][T25731]  simple_read_from_buffer+0xb5/0x130
[ 1345.294601][T25731]  proc_fail_nth_read+0x10e/0x150
[ 1345.294680][T25731]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1345.294705][T25731]  vfs_read+0x1ab/0x7f0
[ 1345.294733][T25731]  ? __rcu_read_unlock+0x4e/0x70
[ 1345.294790][T25731]  ? __fget_files+0x184/0x1c0
[ 1345.294811][T25731]  ? mutex_lock+0x57/0x90
[ 1345.294837][T25731]  ksys_read+0xdc/0x1a0
[ 1345.294895][T25731]  __x64_sys_read+0x40/0x50
[ 1345.294933][T25731]  x64_sys_call+0x2886/0x3020
[ 1345.294962][T25731]  do_syscall_64+0x12c/0x370
[ 1345.294994][T25731]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1345.295054][T25731] RIP: 0033:0x7fb218d3cece
[ 1345.295076][T25731] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1345.295144][T25731] RSP: 002b:00007fb2177d6fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1345.295169][T25731] RAX: ffffffffffffffda RBX: 00007fb2177d76c0 RCX: 00007fb218d3cece
[ 1345.295184][T25731] RDX: 000000000000000f RSI: 00007fb2177d70a0 RDI: 0000000000000004
[ 1345.295197][T25731] RBP: 00007fb2177d7090 R08: 0000000000000000 R09: 0000000000000000
[ 1345.295238][T25731] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1345.295250][T25731] R13: 00007fb218ff6038 R14: 00007fb218ff5fa0 R15: 00007fff9240ff38
[ 1345.295269][T25731]  </TASK>
[ 1345.593322][T25739] loop4: detected capacity change from 0 to 1024
[ 1345.603717][T25739] EXT4-fs: Ignoring removed i_version option
[ 1345.634934][T25741] netlink: 104 bytes leftover after parsing attributes in process `syz.1.6718'.
[ 1345.648228][T25739] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1345.656594][T25741] netlink: 104 bytes leftover after parsing attributes in process `syz.1.6718'.
[ 1345.675239][T25739] EXT4-fs error (device loop4): ext4_acquire_dquot:7003: comm syz.4.6717: Failed to acquire dquot type 0
[ 1345.723283][T25739] loop4: lost filesystem error report for type 5 error -117
[ 1345.733216][    C1] EXT4-fs (loop4): error count since last fsck: 1
[ 1345.747034][    C1] EXT4-fs (loop4): initial error at time 1771397170: ext4_acquire_dquot:7003
[ 1345.755889][    C1] EXT4-fs (loop4): last error at time 1771397170: ext4_acquire_dquot:7003
[ 1345.767323][T25739] EXT4-fs error (device loop4): mb_free_blocks:2047: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[ 1345.785476][T25739] EXT4-fs error (device loop4): ext4_do_update_inode:5569: inode #13: comm syz.4.6717: corrupted inode contents
[ 1345.834584][T25739] loop4: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1345.834746][T25739] EXT4-fs error (device loop4): ext4_dirty_inode:6450: inode #13: comm syz.4.6717: mark_inode_dirty error
[ 1345.883270][T25750] FAULT_INJECTION: forcing a failure.
[ 1345.883270][T25750] name failslab, interval 1, probability 0, space 0, times 0
[ 1345.896110][T25750] CPU: 0 UID: 0 PID: 25750 Comm: syz.5.6721 Not tainted syzkaller #0 PREEMPT(full) 
[ 1345.896141][T25750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1345.896155][T25750] Call Trace:
[ 1345.896164][T25750]  <TASK>
[ 1345.896172][T25750]  __dump_stack+0x1d/0x30
[ 1345.896280][T25750]  dump_stack_lvl+0x95/0xd0
[ 1345.896305][T25750]  dump_stack+0x15/0x1b
[ 1345.896406][T25750]  should_fail_ex+0x263/0x280
[ 1345.896491][T25750]  should_failslab+0x8c/0xb0
[ 1345.896567][T25750]  __kmalloc_noprof+0xb8/0x4e0
[ 1345.896588][T25750]  ? kernfs_fop_write_iter+0xe2/0x300
[ 1345.896694][T25750]  kernfs_fop_write_iter+0xe2/0x300
[ 1345.896749][T25750]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 1345.896798][T25750]  vfs_write+0x5a6/0x9f0
[ 1345.896836][T25750]  ksys_write+0xdc/0x1a0
[ 1345.896883][T25750]  __x64_sys_write+0x40/0x50
[ 1345.896915][T25750]  x64_sys_call+0x27e1/0x3020
[ 1345.896957][T25750]  do_syscall_64+0x12c/0x370
[ 1345.896994][T25750]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1345.897018][T25750] RIP: 0033:0x7f9ff099c629
[ 1345.897034][T25750] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1345.897136][T25750] RSP: 002b:00007f9fef3ef028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1345.897158][T25750] RAX: ffffffffffffffda RBX: 00007f9ff0c15fa0 RCX: 00007f9ff099c629
[ 1345.897173][T25750] RDX: 000000000000000a RSI: 0000200000000200 RDI: 0000000000000004
[ 1345.897187][T25750] RBP: 00007f9fef3ef090 R08: 0000000000000000 R09: 0000000000000000
[ 1345.897201][T25750] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1345.897223][T25750] R13: 00007f9ff0c16038 R14: 00007f9ff0c15fa0 R15: 00007fff1fbf6738
[ 1345.897245][T25750]  </TASK>
[ 1345.940727][T25739] loop4: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1346.200215][T25739] EXT4-fs error (device loop4): ext4_do_update_inode:5569: inode #13: comm syz.4.6717: corrupted inode contents
[ 1346.293876][T25739] loop4: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1346.316495][T25760] netlink: 68 bytes leftover after parsing attributes in process `syz.5.6725'.
[ 1346.351672][T25739] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #13: comm syz.4.6717: mark_inode_dirty error
[ 1346.541835][T25739] loop4: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1346.543128][T25739] EXT4-fs error (device loop4): ext4_do_update_inode:5569: inode #13: comm syz.4.6717: corrupted inode contents
[ 1346.713439][T25739] loop4: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1346.713607][T25739] EXT4-fs error (device loop4) in ext4_orphan_del:303: Corrupt filesystem
[ 1346.793286][T25739] loop4: lost filesystem error report for type 5 error -117
[ 1346.793593][T25739] EXT4-fs error (device loop4): ext4_do_update_inode:5569: inode #13: comm syz.4.6717: corrupted inode contents
[ 1346.854594][T25772] loop0: detected capacity change from 0 to 512
[ 1346.878117][T25739] loop4: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1346.878258][T25739] EXT4-fs error (device loop4): ext4_truncate:4587: inode #13: comm syz.4.6717: mark_inode_dirty error
[ 1346.912235][T25772] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1346.964313][T25772] ext4 filesystem being mounted at /197/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1346.979506][T25739] loop4: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1346.979747][T25739] EXT4-fs error (device loop4) in ext4_process_orphan:345: Corrupt filesystem
[ 1347.038790][T22966] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1347.055521][T25739] loop4: lost filesystem error report for type 5 error -117
[ 1347.055993][T25739] EXT4-fs (loop4): 1 truncate cleaned up
[ 1347.094975][T25739] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1347.227371][T23636] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1347.247804][T25776] loop0: detected capacity change from 0 to 764
[ 1347.317706][T25776] iso9660: Unknown parameter 'euid>00000000000000000000'
[ 1347.343030][T25780] FAULT_INJECTION: forcing a failure.
[ 1347.343030][T25780] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1347.403332][T25780] CPU: 0 UID: 0 PID: 25780 Comm: syz.4.6732 Not tainted syzkaller #0 PREEMPT(full) 
[ 1347.403420][T25780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1347.403435][T25780] Call Trace:
[ 1347.403443][T25780]  <TASK>
[ 1347.403451][T25780]  __dump_stack+0x1d/0x30
[ 1347.403514][T25780]  dump_stack_lvl+0x95/0xd0
[ 1347.403541][T25780]  dump_stack+0x15/0x1b
[ 1347.403563][T25780]  should_fail_ex+0x263/0x280
[ 1347.403626][T25780]  should_fail+0xb/0x20
[ 1347.403642][T25780]  should_fail_usercopy+0x1a/0x20
[ 1347.403699][T25780]  _copy_from_user+0x1c/0xb0
[ 1347.403730][T25780]  do_sock_getsockopt+0xf1/0x210
[ 1347.403801][T25780]  __x64_sys_getsockopt+0x11d/0x1a0
[ 1347.403837][T25780]  x64_sys_call+0x2dcf/0x3020
[ 1347.403947][T25780]  do_syscall_64+0x12c/0x370
[ 1347.403993][T25780]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1347.404094][T25780] RIP: 0033:0x7fa141edc629
[ 1347.404113][T25780] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1347.404137][T25780] RSP: 002b:00007fa14092f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[ 1347.404210][T25780] RAX: ffffffffffffffda RBX: 00007fa142155fa0 RCX: 00007fa141edc629
[ 1347.404228][T25780] RDX: 000000000000000f RSI: 0000000000000084 RDI: 0000000000000003
[ 1347.404245][T25780] RBP: 00007fa14092f090 R08: 00002000000000c0 R09: 0000000000000000
[ 1347.404262][T25780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1347.404278][T25780] R13: 00007fa142156038 R14: 00007fa142155fa0 R15: 00007ffd50348268
[ 1347.404351][T25780]  </TASK>
[ 1347.577415][T25783] loop5: detected capacity change from 0 to 1024
[ 1347.611140][T25783] EXT4-fs (loop5): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[ 1347.629580][T25783] ext4 filesystem being mounted at /186/file3 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1347.655966][T25782] EXT4-fs error (device loop5): ext4_map_blocks:818: inode #15: comm syz.5.6735: lblock 0 mapped to illegal pblock 0 (length 6)
[ 1347.682539][T25782] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 6 with error 117
[ 1347.706810][T25782] EXT4-fs (loop5): This should not happen!! Data will be lost
[ 1347.706810][T25782] 
[ 1347.766335][T25782] EXT4-fs error (device loop5): ext4_map_blocks:818: inode #15: block 8: comm syz.5.6735: lblock 8 mapped to illegal pblock 8 (length 8)
[ 1347.891370][T25798] netlink: 68 bytes leftover after parsing attributes in process `syz.4.6738'.
[ 1347.980150][T25782] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[ 1348.041440][T25782] EXT4-fs (loop5): This should not happen!! Data will be lost
[ 1348.041440][T25782] 
[ 1348.101267][T25782] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.6735: bg 0: block 112: padding at end of block bitmap is not set
[ 1348.349160][T25813] loop3: detected capacity change from 0 to 128
[ 1348.921987][T22490] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[ 1348.938518][   T28] kauditd_printk_skb: 8 callbacks suppressed
[ 1348.938532][   T28] audit: type=1400 audit(1771397173.361:354): avc:  denied  { append } for  pid=25812 comm="syz.3.6742" name="loop7" dev="devtmpfs" ino=107 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[ 1348.968865][T25811] loop2: detected capacity change from 0 to 7
[ 1349.106491][   T28] audit: type=1400 audit(1771397173.531:355): avc:  denied  { mount } for  pid=25817 comm="syz.4.6747" name="/" dev="hugetlbfs" ino=93381 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[ 1349.173034][T25819] loop4: detected capacity change from 0 to 128
[ 1349.198994][   T28] audit: type=1400 audit(1771397173.621:356): avc:  denied  { mounton } for  pid=25817 comm="syz.4.6747" path="/file0" dev="hugetlbfs" ino=93382 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=fifo_file permissive=1
[ 1349.282723][   T28] audit: type=1400 audit(1771397173.701:357): avc:  denied  { read } for  pid=25817 comm="syz.4.6747" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[ 1349.373306][   T28] audit: type=1400 audit(1771397173.791:358): avc:  denied  { getopt } for  pid=25823 comm="syz.3.6748" lport=8 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[ 1349.549819][T25832] loop0: detected capacity change from 0 to 256
[ 1349.560608][T25834] FAULT_INJECTION: forcing a failure.
[ 1349.560608][T25834] name failslab, interval 1, probability 0, space 0, times 0
[ 1349.592182][T25834] CPU: 0 UID: 0 PID: 25834 Comm: syz.5.6753 Not tainted syzkaller #0 PREEMPT(full) 
[ 1349.592210][T25834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1349.592223][T25834] Call Trace:
[ 1349.592231][T25834]  <TASK>
[ 1349.592240][T25834]  __dump_stack+0x1d/0x30
[ 1349.592266][T25834]  dump_stack_lvl+0x95/0xd0
[ 1349.592311][T25834]  dump_stack+0x15/0x1b
[ 1349.592381][T25834]  should_fail_ex+0x263/0x280
[ 1349.592432][T25834]  should_failslab+0x8c/0xb0
[ 1349.592560][T25834]  kmem_cache_alloc_node_noprof+0x6d/0x460
[ 1349.592599][T25834]  ? __alloc_skb+0x2d6/0x690
[ 1349.592624][T25834]  __alloc_skb+0x2d6/0x690
[ 1349.592695][T25834]  tcp_stream_alloc_skb+0x30/0x320
[ 1349.592740][T25834]  tcp_sendmsg_locked+0xd21/0x2de0
[ 1349.592785][T25834]  ? lockref_put_return+0xf7/0x130
[ 1349.592814][T25834]  ? __rcu_read_unlock+0x4e/0x70
[ 1349.592835][T25834]  ? avc_has_perm_noaudit+0xab/0x130
[ 1349.592872][T25834]  ? __pfx_tcp_sendmsg+0x10/0x10
[ 1349.592923][T25834]  tcp_sendmsg+0x2f/0x50
[ 1349.592963][T25834]  inet6_sendmsg+0x76/0xd0
[ 1349.592995][T25834]  sock_write_iter+0x23f/0x360
[ 1349.593079][T25834]  ? __pfx_sock_write_iter+0x10/0x10
[ 1349.593149][T25834]  vfs_write+0x5a6/0x9f0
[ 1349.593190][T25834]  ksys_write+0xdc/0x1a0
[ 1349.593223][T25834]  __x64_sys_write+0x40/0x50
[ 1349.593419][T25834]  x64_sys_call+0x27e1/0x3020
[ 1349.593521][T25834]  do_syscall_64+0x12c/0x370
[ 1349.593563][T25834]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1349.593622][T25834] RIP: 0033:0x7f9ff099c629
[ 1349.593666][T25834] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1349.593690][T25834] RSP: 002b:00007f9fef3ef028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1349.593788][T25834] RAX: ffffffffffffffda RBX: 00007f9ff0c15fa0 RCX: 00007f9ff099c629
[ 1349.593802][T25834] RDX: 00000000fffffdcf RSI: 00002000000004c0 RDI: 0000000000000004
[ 1349.593815][T25834] RBP: 00007f9fef3ef090 R08: 0000000000000000 R09: 0000000000000000
[ 1349.593830][T25834] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1349.593846][T25834] R13: 00007f9ff0c16038 R14: 00007f9ff0c15fa0 R15: 00007fff1fbf6738
[ 1349.593867][T25834]  </TASK>
[ 1349.940866][T25840] netlink: 'syz.5.6755': attribute type 12 has an invalid length.
[ 1350.138407][T22681] IPVS: starting estimator thread 0...
[ 1350.160100][   T28] audit: type=1400 audit(1771397174.581:359): avc:  denied  { read write } for  pid=22490 comm="syz-executor" name="loop5" dev="devtmpfs" ino=105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[ 1350.216608][   T28] audit: type=1400 audit(1771397174.611:360): avc:  denied  { open } for  pid=22490 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[ 1350.251277][T25848] FAULT_INJECTION: forcing a failure.
[ 1350.251277][T25848] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1350.267683][T25848] CPU: 1 UID: 0 PID: 25848 Comm: syz.5.6758 Not tainted syzkaller #0 PREEMPT(full) 
[ 1350.267716][T25848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1350.267728][T25848] Call Trace:
[ 1350.267735][T25848]  <TASK>
[ 1350.267743][T25848]  __dump_stack+0x1d/0x30
[ 1350.267777][T25848]  dump_stack_lvl+0x95/0xd0
[ 1350.267867][T25848]  dump_stack+0x15/0x1b
[ 1350.267894][T25848]  should_fail_ex+0x263/0x280
[ 1350.267939][T25848]  should_fail+0xb/0x20
[ 1350.267961][T25848]  should_fail_usercopy+0x1a/0x20
[ 1350.268008][T25848]  _copy_to_user+0x20/0xa0
[ 1350.268040][T25848]  simple_read_from_buffer+0xb5/0x130
[ 1350.268080][T25848]  proc_fail_nth_read+0x10e/0x150
[ 1350.268117][T25848]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1350.268222][T25848]  vfs_read+0x1ab/0x7f0
[ 1350.268260][T25848]  ? __rcu_read_unlock+0x4e/0x70
[ 1350.268283][T25848]  ? __fget_files+0x184/0x1c0
[ 1350.268316][T25848]  ? mutex_lock+0x57/0x90
[ 1350.268372][T25848]  ksys_read+0xdc/0x1a0
[ 1350.268403][T25848]  __x64_sys_read+0x40/0x50
[ 1350.268441][T25848]  x64_sys_call+0x2886/0x3020
[ 1350.268476][T25848]  do_syscall_64+0x12c/0x370
[ 1350.268548][T25848]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1350.268573][T25848] RIP: 0033:0x7f9ff095cece
[ 1350.268617][T25848] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1350.268642][T25848] RSP: 002b:00007f9fef3cdfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1350.268666][T25848] RAX: ffffffffffffffda RBX: 00007f9fef3ce6c0 RCX: 00007f9ff095cece
[ 1350.268714][T25848] RDX: 000000000000000f RSI: 00007f9fef3ce0a0 RDI: 0000000000000003
[ 1350.268732][T25848] RBP: 00007f9fef3ce090 R08: 0000000000000000 R09: 0000000000000000
[ 1350.268749][T25848] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1350.268765][T25848] R13: 00007f9ff0c16128 R14: 00007f9ff0c16090 R15: 00007fff1fbf6738
[ 1350.268792][T25848]  </TASK>
[ 1350.269085][   T28] audit: type=1400 audit(1771397174.611:361): avc:  denied  { ioctl } for  pid=22490 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=105 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[ 1350.313465][T25844] IPVS: using max 2256 ests per chain, 112800 per kthread
[ 1350.320373][T25843] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6756'.
[ 1350.505288][T25853] FAULT_INJECTION: forcing a failure.
[ 1350.505288][T25853] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1350.520974][T25853] CPU: 1 UID: 0 PID: 25853 Comm: syz.4.6757 Not tainted syzkaller #0 PREEMPT(full) 
[ 1350.521006][T25853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1350.521046][T25853] Call Trace:
[ 1350.521053][T25853]  <TASK>
[ 1350.521060][T25853]  __dump_stack+0x1d/0x30
[ 1350.521092][T25853]  dump_stack_lvl+0x95/0xd0
[ 1350.521118][T25853]  dump_stack+0x15/0x1b
[ 1350.521205][T25853]  should_fail_ex+0x263/0x280
[ 1350.521242][T25853]  should_fail+0xb/0x20
[ 1350.521263][T25853]  should_fail_usercopy+0x1a/0x20
[ 1350.521290][T25853]  _copy_from_user+0x1c/0xb0
[ 1350.521329][T25853]  ___sys_sendmsg+0xc1/0x1e0
[ 1350.521384][T25853]  __x64_sys_sendmsg+0xd4/0x160
[ 1350.521423][T25853]  x64_sys_call+0x194c/0x3020
[ 1350.521450][T25853]  do_syscall_64+0x12c/0x370
[ 1350.521561][T25853]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1350.521586][T25853] RIP: 0033:0x7fa141edc629
[ 1350.521603][T25853] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1350.521621][T25853] RSP: 002b:00007fa14092f028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1350.521712][T25853] RAX: ffffffffffffffda RBX: 00007fa142155fa0 RCX: 00007fa141edc629
[ 1350.521726][T25853] RDX: 0000000020040051 RSI: 0000200000002ac0 RDI: 0000000000000003
[ 1350.521742][T25853] RBP: 00007fa14092f090 R08: 0000000000000000 R09: 0000000000000000
[ 1350.521759][T25853] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1350.521775][T25853] R13: 00007fa142156038 R14: 00007fa142155fa0 R15: 00007ffd50348268
[ 1350.521801][T25853]  </TASK>
[ 1350.684994][   T28] audit: type=1400 audit(1771397174.621:362): avc:  denied  { open } for  pid=25842 comm="syz.1.6756" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[ 1350.716954][T25859] netlink: 'syz.1.6756': attribute type 3 has an invalid length.
[ 1350.718557][   T28] audit: type=1400 audit(1771397174.621:363): avc:  denied  { perfmon } for  pid=25842 comm="syz.1.6756" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[ 1350.742330][T25859] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=25859 comm=syz.1.6756
[ 1350.794806][T25861] loop5: detected capacity change from 0 to 128
[ 1350.828128][T25861] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6760'.
[ 1350.953453][T25864] netlink: 36 bytes leftover after parsing attributes in process `syz.5.6760'.
[ 1351.025343][T25878] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6765'.
[ 1351.063329][T25878] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1351.102054][T25878] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1351.257037][T25884] loop5: detected capacity change from 0 to 1024
[ 1351.326695][T25884] EXT4-fs (loop5): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[ 1351.500575][T25884] ext4 filesystem being mounted at /194/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1351.724881][T22490] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[ 1352.599147][T25900] netlink: 28 bytes leftover after parsing attributes in process `syz.5.6771'.
[ 1353.124623][T25905] netlink: 16 bytes leftover after parsing attributes in process `syz.1.6772'.
[ 1353.149778][T25905] netem: invalid attributes len -16
[ 1353.155557][T25905] netem: change failed
[ 1353.160796][T25905] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6772'.
[ 1353.172983][T25905] loop1: detected capacity change from 0 to 512
[ 1353.194608][T25909] loop2: detected capacity change from 0 to 7
[ 1353.224009][T25911] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=25911 comm=syz.5.6775
[ 1353.236972][T25911] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=2569 sclass=netlink_tcpdiag_socket pid=25911 comm=syz.5.6775
[ 1353.265489][T25905] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1353.327720][T25918] FAULT_INJECTION: forcing a failure.
[ 1353.327720][T25918] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1353.361243][T25905] ext4 filesystem being mounted at /176/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1353.403290][T25918] CPU: 1 UID: 0 PID: 25918 Comm: syz.0.6778 Not tainted syzkaller #0 PREEMPT(full) 
[ 1353.403396][T25918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1353.403409][T25918] Call Trace:
[ 1353.403416][T25918]  <TASK>
[ 1353.403424][T25918]  __dump_stack+0x1d/0x30
[ 1353.403458][T25918]  dump_stack_lvl+0x95/0xd0
[ 1353.403488][T25918]  dump_stack+0x15/0x1b
[ 1353.403598][T25918]  should_fail_ex+0x263/0x280
[ 1353.403674][T25918]  should_fail+0xb/0x20
[ 1353.403691][T25918]  should_fail_usercopy+0x1a/0x20
[ 1353.403719][T25918]  _copy_from_user+0x1c/0xb0
[ 1353.403776][T25918]  ___sys_sendmsg+0xc1/0x1e0
[ 1353.403804][T25918]  ? path_openat+0x1b01/0x2050
[ 1353.403849][T25918]  __sys_sendmmsg+0x185/0x320
[ 1353.403943][T25918]  __x64_sys_sendmmsg+0x57/0x70
[ 1353.403976][T25918]  x64_sys_call+0x27aa/0x3020
[ 1353.404070][T25918]  do_syscall_64+0x12c/0x370
[ 1353.404114][T25918]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1353.404144][T25918] RIP: 0033:0x7f3f5c13c629
[ 1353.404162][T25918] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1353.404196][T25918] RSP: 002b:00007f3f5ab97028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1353.404218][T25918] RAX: ffffffffffffffda RBX: 00007f3f5c3b5fa0 RCX: 00007f3f5c13c629
[ 1353.404237][T25918] RDX: 0000000000000002 RSI: 000020000000a700 RDI: 0000000000000003
[ 1353.404254][T25918] RBP: 00007f3f5ab97090 R08: 0000000000000000 R09: 0000000000000000
[ 1353.404267][T25918] R10: 0000000000000800 R11: 0000000000000246 R12: 0000000000000001
[ 1353.404279][T25918] R13: 00007f3f5c3b6038 R14: 00007f3f5c3b5fa0 R15: 00007ffd3ef48938
[ 1353.404300][T25918]  </TASK>
[ 1353.417112][T25905] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1353.920504][T25928] loop4: detected capacity change from 0 to 1024
[ 1354.021046][T25928] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[ 1354.054565][T25928] ext4 filesystem being mounted at /128/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1354.105379][   T28] kauditd_printk_skb: 153 callbacks suppressed
[ 1354.105398][   T28] audit: type=1400 audit(1771397178.521:517): avc:  denied  { add_name } for  pid=25927 comm="syz.4.6782" name="file2" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 1354.135206][   T28] audit: type=1400 audit(1771397178.531:518): avc:  denied  { create } for  pid=25927 comm="syz.4.6782" name="file2" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[ 1354.183229][   T28] audit: type=1400 audit(1771397178.591:519): avc:  denied  { read write } for  pid=25927 comm="syz.4.6782" name="file2" dev="loop4" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 1354.218304][   T28] audit: type=1400 audit(1771397178.631:520): avc:  denied  { open } for  pid=25927 comm="syz.4.6782" path="/128/file1/file2" dev="loop4" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 1354.373669][T23636] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[ 1354.435791][T25955] loop0: detected capacity change from 0 to 164
[ 1354.449105][   T28] audit: type=1400 audit(1771397178.871:521): avc:  denied  { mount } for  pid=25952 comm="syz.0.6789" name="/" dev="loop0" ino=1792 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[ 1354.477063][T25955] FAULT_INJECTION: forcing a failure.
[ 1354.477063][T25955] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1354.499939][T25957] loop4: detected capacity change from 0 to 164
[ 1354.503645][T25955] CPU: 1 UID: 0 PID: 25955 Comm: syz.0.6789 Not tainted syzkaller #0 PREEMPT(full) 
[ 1354.503731][T25955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1354.503772][T25955] Call Trace:
[ 1354.503802][T25955]  <TASK>
[ 1354.503825][T25955]  __dump_stack+0x1d/0x30
[ 1354.503915][T25955]  dump_stack_lvl+0x95/0xd0
[ 1354.504047][T25955]  dump_stack+0x15/0x1b
[ 1354.504156][T25955]  should_fail_ex+0x263/0x280
[ 1354.504262][T25955]  should_fail_alloc_page+0xf2/0x100
[ 1354.504488][T25955]  __alloc_frozen_pages_noprof+0x108/0x360
[ 1354.504585][T25955]  alloc_pages_mpol+0xb3/0x260
[ 1354.504679][T25955]  alloc_pages_noprof+0x8f/0x130
[ 1354.504791][T25955]  get_free_pages_noprof+0xc/0x40
[ 1354.504879][T25955]  isofs_readdir+0x3e/0xb40
[ 1354.504927][T25955]  ? __rcu_read_unlock+0x4e/0x70
[ 1354.505010][T25955]  ? avc_policy_seqno+0x15/0x30
[ 1354.505105][T25955]  ? selinux_file_permission+0x1f2/0x690
[ 1354.505292][T25955]  ? __pfx_proc_fail_nth_write+0x10/0x10
[ 1354.505389][T25955]  iterate_dir+0x114/0x330
[ 1354.505485][T25955]  __se_sys_getdents64+0xd2/0x230
[ 1354.505683][T25955]  ? __pfx_filldir64+0x10/0x10
[ 1354.505789][T25955]  __x64_sys_getdents64+0x43/0x50
[ 1354.505925][T25955]  x64_sys_call+0x2408/0x3020
[ 1354.506039][T25955]  do_syscall_64+0x12c/0x370
[ 1354.506179][T25955]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1354.506243][T25955] RIP: 0033:0x7f3f5c13c629
[ 1354.506263][T25955] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1354.506286][T25955] RSP: 002b:00007f3f5ab97028 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[ 1354.506310][T25955] RAX: ffffffffffffffda RBX: 00007f3f5c3b5fa0 RCX: 00007f3f5c13c629
[ 1354.506325][T25955] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1354.506425][T25955] RBP: 00007f3f5ab97090 R08: 0000000000000000 R09: 0000000000000000
[ 1354.506490][T25955] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1354.506553][T25955] R13: 00007f3f5c3b6038 R14: 00007f3f5c3b5fa0 R15: 00007ffd3ef48938
[ 1354.506617][T25955]  </TASK>
[ 1354.647774][   T28] audit: type=1400 audit(1771397179.071:522): avc:  denied  { unmount } for  pid=22966 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[ 1354.811479][T25959] syzkaller0: entered promiscuous mode
[ 1354.820128][T25959] syzkaller0: entered allmulticast mode
[ 1354.883711][   T28] audit: type=1400 audit(1771397179.301:523): avc:  denied  { relabelfrom } for  pid=25958 comm="syz.5.6791" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[ 1354.904291][T25968] dummy0: entered promiscuous mode
[ 1354.909465][T25968] macsec1: entered allmulticast mode
[ 1354.931002][T25968] dummy0: entered allmulticast mode
[ 1354.946936][   T28] audit: type=1400 audit(1771397179.301:524): avc:  denied  { relabelto } for  pid=25958 comm="syz.5.6791" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[ 1354.973565][T25968] dummy0: left allmulticast mode
[ 1354.979782][T25968] dummy0: left promiscuous mode
[ 1355.043385][T25963] loop0: detected capacity change from 0 to 164
[ 1355.057537][   T28] audit: type=1400 audit(1771397179.461:525): avc:  denied  { name_bind } for  pid=25962 comm="syz.0.6790" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[ 1355.130245][T25975] loop4: detected capacity change from 0 to 128
[ 1355.151900][   T28] audit: type=1400 audit(1771397179.471:526): avc:  denied  { remount } for  pid=25962 comm="syz.0.6790" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[ 1355.193960][T25975] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[ 1355.242770][T25975] ext4 filesystem being mounted at /131/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1355.422917][T23636] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1355.708596][T25981] FAULT_INJECTION: forcing a failure.
[ 1355.708596][T25981] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1355.723858][T25982] netlink: 14 bytes leftover after parsing attributes in process `syz.4.6798'.
[ 1355.756922][T25982] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1355.773247][T25981] CPU: 1 UID: 0 PID: 25981 Comm: syz.5.6799 Not tainted syzkaller #0 PREEMPT(full) 
[ 1355.773308][T25981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1355.773397][T25981] Call Trace:
[ 1355.773406][T25981]  <TASK>
[ 1355.773418][T25981]  __dump_stack+0x1d/0x30
[ 1355.773452][T25981]  dump_stack_lvl+0x95/0xd0
[ 1355.773561][T25981]  dump_stack+0x15/0x1b
[ 1355.773639][T25981]  should_fail_ex+0x263/0x280
[ 1355.773684][T25981]  should_fail+0xb/0x20
[ 1355.773706][T25981]  should_fail_usercopy+0x1a/0x20
[ 1355.773788][T25981]  copy_fpstate_to_sigframe+0x650/0x7f0
[ 1355.774036][T25981]  ? copy_fpstate_to_sigframe+0xe5/0x7f0
[ 1355.774078][T25981]  ? x86_task_fpu+0x36/0x60
[ 1355.774108][T25981]  get_sigframe+0x34c/0x470
[ 1355.774140][T25981]  ? get_signal+0xdc3/0xf60
[ 1355.774237][T25981]  x64_setup_rt_frame+0xa7/0x4e0
[ 1355.774276][T25981]  arch_do_signal_or_restart+0x24b/0x450
[ 1355.774320][T25981]  exit_to_user_mode_loop+0x6a/0x6f0
[ 1355.774396][T25981]  do_syscall_64+0x249/0x370
[ 1355.774437][T25981]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1355.774470][T25981] RIP: 0033:0x7f9ff095cece
[ 1355.774489][T25981] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1355.774511][T25981] RSP: 002b:00007f9fef3eefe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1355.774534][T25981] RAX: 0000000000000001 RBX: 00007f9fef3ef6c0 RCX: 00007f9ff095cece
[ 1355.774622][T25981] RDX: 0000000000000001 RSI: 00007f9fef3ef090 RDI: 0000000000000004
[ 1355.774635][T25981] RBP: 00007f9fef3ef090 R08: 0000000000000000 R09: 0000000000000000
[ 1355.774648][T25981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1355.774660][T25981] R13: 00007f9ff0c16038 R14: 00007f9ff0c15fa0 R15: 00007fff1fbf6738
[ 1355.774683][T25981]  </TASK>
[ 1355.965492][T25982] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1355.978775][T25985] loop4: detected capacity change from 0 to 512
[ 1355.987279][T25982] bond0 (unregistering): Released all slaves
[ 1356.068625][T25985] EXT4-fs warning (device loop4): ext4_enable_quotas:7238: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[ 1356.162008][T25985] EXT4-fs (loop4): mount failed
[ 1356.318055][T25999] loop0: detected capacity change from 0 to 4096
[ 1356.351249][T25999] EXT4-fs: Invalid want_extra_isize 3
[ 1356.443291][T25999] loop0: detected capacity change from 4096 to 64
[ 1356.580931][T26006] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6806'.
[ 1356.676511][T26013] loop3: detected capacity change from 0 to 1024
[ 1356.746891][T26014] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[ 1356.841648][T26016] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6810'.
[ 1356.870307][T26013] EXT4-fs error (device loop3): ext4_acquire_dquot:7003: comm syz.3.6809: Failed to acquire dquot type 0
[ 1356.917961][T26013] loop3: lost filesystem error report for type 5 error -117
[ 1356.919705][T26013] EXT4-fs error (device loop3): mb_free_blocks:2047: group 0, 
[ 1356.927269][    C1] EXT4-fs (loop3): error count since last fsck: 1
[ 1356.927286][    C1] EXT4-fs (loop3): initial error at time 1771397181: ext4_acquire_dquot:7003
[ 1356.927306][    C1] EXT4-fs (loop3): last error at time 1771397181: ext4_acquire_dquot:7003
[ 1356.958732][T26013] inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[ 1357.252298][T26013] EXT4-fs error (device loop3): ext4_do_update_inode:5569: inode #13: comm syz.3.6809: corrupted inode contents
[ 1357.285816][T26013] loop3: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1357.286030][T26013] EXT4-fs error (device loop3): ext4_dirty_inode:6450: inode #13: comm syz.3.6809: mark_inode_dirty error
[ 1357.306801][T26013] loop3: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1357.307000][T26013] EXT4-fs error (device loop3): ext4_do_update_inode:5569: inode #13: comm syz.3.6809: corrupted inode contents
[ 1357.331886][T26013] loop3: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1357.332283][T26013] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #13: comm syz.3.6809: mark_inode_dirty error
[ 1357.353611][T26013] loop3: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1357.353777][T26013] EXT4-fs error (device loop3): ext4_do_update_inode:5569: inode #13: comm syz.3.6809: corrupted inode contents
[ 1357.382912][T26013] loop3: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1357.383137][T26013] EXT4-fs error (device loop3) in ext4_orphan_del:303: Corrupt filesystem
[ 1357.401291][T26013] loop3: lost filesystem error report for type 5 error -117
[ 1357.401501][T26013] EXT4-fs error (device loop3): ext4_do_update_inode:5569: inode #13: comm syz.3.6809: corrupted inode contents
[ 1357.422405][T26013] loop3: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1357.422555][T26013] EXT4-fs error (device loop3): ext4_truncate:4587: inode #13: comm syz.3.6809: mark_inode_dirty error
[ 1357.444459][T26013] loop3: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1357.444606][T26013] EXT4-fs error (device loop3) in ext4_process_orphan:345: Corrupt filesystem
[ 1357.486496][T26013] loop3: lost filesystem error report for type 5 error -117
[ 1357.487767][T26013] EXT4-fs (loop3): 1 truncate cleaned up
[ 1357.516301][T26029] loop0: detected capacity change from 0 to 256
[ 1357.553752][T26013] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1357.574512][T26031] FAULT_INJECTION: forcing a failure.
[ 1357.574512][T26031] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1357.603474][T26031] CPU: 1 UID: 0 PID: 26031 Comm: syz.0.6815 Not tainted syzkaller #0 PREEMPT(full) 
[ 1357.603554][T26031] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1357.603567][T26031] Call Trace:
[ 1357.603587][T26031]  <TASK>
[ 1357.603597][T26031]  __dump_stack+0x1d/0x30
[ 1357.603636][T26031]  dump_stack_lvl+0x95/0xd0
[ 1357.603659][T26031]  dump_stack+0x15/0x1b
[ 1357.603706][T26031]  should_fail_ex+0x263/0x280
[ 1357.603808][T26031]  should_fail+0xb/0x20
[ 1357.603857][T26031]  should_fail_usercopy+0x1a/0x20
[ 1357.603950][T26031]  _copy_from_user+0x1c/0xb0
[ 1357.603974][T26031]  ___sys_sendmsg+0xc1/0x1e0
[ 1357.604023][T26031]  __x64_sys_sendmsg+0xd4/0x160
[ 1357.604058][T26031]  x64_sys_call+0x194c/0x3020
[ 1357.604156][T26031]  do_syscall_64+0x12c/0x370
[ 1357.604197][T26031]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1357.604226][T26031] RIP: 0033:0x7f3f5c13c629
[ 1357.604306][T26031] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1357.604325][T26031] RSP: 002b:00007f3f5ab97028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1357.604348][T26031] RAX: ffffffffffffffda RBX: 00007f3f5c3b5fa0 RCX: 00007f3f5c13c629
[ 1357.604367][T26031] RDX: 0000000000040004 RSI: 0000200000000200 RDI: 0000000000000003
[ 1357.604384][T26031] RBP: 00007f3f5ab97090 R08: 0000000000000000 R09: 0000000000000000
[ 1357.604401][T26031] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1357.604445][T26031] R13: 00007f3f5c3b6038 R14: 00007f3f5c3b5fa0 R15: 00007ffd3ef48938
[ 1357.604522][T26031]  </TASK>
[ 1357.675710][T26013] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1357.876813][T26013] loop3: detected capacity change from 0 to 128
[ 1358.173917][T26039] FAULT_INJECTION: forcing a failure.
[ 1358.173917][T26039] name failslab, interval 1, probability 0, space 0, times 0
[ 1358.206855][T26039] CPU: 0 UID: 0 PID: 26039 Comm: syz.5.6818 Not tainted syzkaller #0 PREEMPT(full) 
[ 1358.206891][T26039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1358.206908][T26039] Call Trace:
[ 1358.206918][T26039]  <TASK>
[ 1358.206928][T26039]  __dump_stack+0x1d/0x30
[ 1358.206959][T26039]  dump_stack_lvl+0x95/0xd0
[ 1358.207036][T26039]  dump_stack+0x15/0x1b
[ 1358.207065][T26039]  should_fail_ex+0x263/0x280
[ 1358.207105][T26039]  should_failslab+0x8c/0xb0
[ 1358.207158][T26039]  __kvmalloc_node_noprof+0x155/0x650
[ 1358.207234][T26039]  ? traverse+0xa2/0x3a0
[ 1358.207268][T26039]  ? path_openat+0x1ab2/0x2050
[ 1358.207297][T26039]  traverse+0xa2/0x3a0
[ 1358.207331][T26039]  seq_read_iter+0x85f/0x940
[ 1358.207423][T26039]  ? _parse_integer+0x27/0x40
[ 1358.207461][T26039]  seq_read+0x279/0x2c0
[ 1358.207535][T26039]  ? __pfx_seq_read+0x10/0x10
[ 1358.207562][T26039]  vfs_readv+0x432/0x6e0
[ 1358.207601][T26039]  __x64_sys_preadv+0xfd/0x1c0
[ 1358.207639][T26039]  x64_sys_call+0x2915/0x3020
[ 1358.207741][T26039]  do_syscall_64+0x12c/0x370
[ 1358.207783][T26039]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1358.207881][T26039] RIP: 0033:0x7f9ff099c629
[ 1358.207936][T26039] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1358.207994][T26039] RSP: 002b:00007f9fef3ef028 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1358.208043][T26039] RAX: ffffffffffffffda RBX: 00007f9ff0c15fa0 RCX: 00007f9ff099c629
[ 1358.208176][T26039] RDX: 0000000000000001 RSI: 0000200000000340 RDI: 0000000000000004
[ 1358.208189][T26039] RBP: 00007f9fef3ef090 R08: 00000000000000ca R09: 0000000000000000
[ 1358.208265][T26039] R10: 00000000000002c2 R11: 0000000000000246 R12: 0000000000000001
[ 1358.208304][T26039] R13: 00007f9ff0c16038 R14: 00007f9ff0c15fa0 R15: 00007fff1fbf6738
[ 1358.208363][T26039]  </TASK>
[ 1358.720851][T26055] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[ 1358.750325][T26055] ext4 filesystem being mounted at /138/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1358.773486][T23636] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1359.115905][   T28] kauditd_printk_skb: 38 callbacks suppressed
[ 1359.115925][   T28] audit: type=1400 audit(1771397183.541:562): avc:  denied  { write } for  pid=26070 comm="syz.4.6831" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[ 1359.745307][T26085] netlink: 'syz.3.6837': attribute type 1 has an invalid length.
[ 1359.956726][T26092] set_capacity_and_notify: 1 callbacks suppressed
[ 1359.956791][T26092] loop4: detected capacity change from 0 to 128
[ 1360.136500][   T28] audit: type=1400 audit(1771397184.491:563): avc:  denied  { bind } for  pid=26079 comm="syz.0.6835" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[ 1360.366258][   T28] audit: type=1400 audit(1771397184.491:564): avc:  denied  { name_bind } for  pid=26079 comm="syz.0.6835" src=20004 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1
[ 1360.570112][   T28] audit: type=1400 audit(1771397184.491:565): avc:  denied  { node_bind } for  pid=26079 comm="syz.0.6835" saddr=::ffff:0.0.0.0 src=20004 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[ 1360.576859][T26092] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[ 1360.593072][   T28] audit: type=1400 audit(1771397184.491:566): avc:  denied  { connect } for  pid=26079 comm="syz.0.6835" laddr=::ffff:0.0.0.0 lport=20004 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[ 1360.628210][   T28] audit: type=1400 audit(1771397184.581:567): avc:  denied  { write } for  pid=26082 comm="syz.1.6836" name="raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 1360.666694][T26092] ext4 filesystem being mounted at /143/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1360.685393][   T28] audit: type=1400 audit(1771397185.111:568): avc:  denied  { write } for  pid=26099 comm="syz.3.6842" name="001" dev="devtmpfs" ino=162 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[ 1360.721331][   T28] audit: type=1400 audit(1771397185.141:569): avc:  denied  { map } for  pid=26099 comm="syz.3.6842" path="/dev/bus/usb/006/001" dev="devtmpfs" ino=162 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[ 1360.762666][T23636] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1360.805491][T26100] erspan1: entered allmulticast mode
[ 1360.905703][   T28] audit: type=1400 audit(1771397185.331:570): avc:  denied  { open } for  pid=26112 comm="syz.1.6845" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[ 1360.938967][T23775] IPVS: starting estimator thread 0...
[ 1360.944661][   T28] audit: type=1400 audit(1771397185.331:571): avc:  denied  { perfmon } for  pid=26112 comm="syz.1.6845" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[ 1360.970640][T26117] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6846'.
[ 1360.982646][T26119] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6845'.
[ 1361.033255][T26118] IPVS: using max 2256 ests per chain, 112800 per kthread
[ 1361.060520][T26126] program syz.1.6849 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1361.283298][T26129] netlink: 68 bytes leftover after parsing attributes in process `syz.1.6851'.
[ 1361.403309][T26134] loop3: detected capacity change from 0 to 1024
[ 1361.423401][T26134] EXT4-fs error (device loop3): ext4_acquire_dquot:7003: comm syz.3.6853: Failed to acquire dquot type 0
[ 1361.449545][T26134] loop3: lost filesystem error report for type 5 error -117
[ 1361.450294][T26134] EXT4-fs error (device loop3): mb_free_blocks:2047: group 0, 
[ 1361.457744][    C0] EXT4-fs (loop3): error count since last fsck: 1
[ 1361.457790][    C0] EXT4-fs (loop3): initial error at time 1771397185: ext4_acquire_dquot:7003
[ 1361.457841][    C0] EXT4-fs (loop3): last error at time 1771397185: ext4_acquire_dquot:7003
[ 1361.489546][T26134] inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[ 1361.511113][T26134] EXT4-fs error (device loop3): ext4_do_update_inode:5569: inode #13: comm syz.3.6853: corrupted inode contents
[ 1361.523431][T26134] loop3: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1361.523728][T26134] EXT4-fs error (device loop3): ext4_dirty_inode:6450: inode #13: comm syz.3.6853: mark_inode_dirty error
[ 1361.544584][T26134] loop3: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1361.544848][T26134] EXT4-fs error (device loop3): ext4_do_update_inode:5569: inode #13: comm syz.3.6853: corrupted inode contents
[ 1361.574651][T26134] loop3: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1361.574958][T26134] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #13: comm syz.3.6853: mark_inode_dirty error
[ 1361.596053][T26134] EXT4-fs error (device loop3): ext4_do_update_inode:5569: inode #13: comm syz.3.6853: corrupted inode contents
[ 1361.608886][T26134] EXT4-fs error (device loop3) in ext4_orphan_del:303: Corrupt filesystem
[ 1361.620780][T26134] loop3: lost filesystem error report for type 5 error -117
[ 1361.621093][T26134] EXT4-fs error (device loop3): ext4_do_update_inode:5569: inode #13: comm syz.3.6853: corrupted inode contents
[ 1361.655561][T26134] EXT4-fs error (device loop3): ext4_truncate:4587: inode #13: comm syz.3.6853: mark_inode_dirty error
[ 1361.675495][T26134] EXT4-fs error (device loop3) in ext4_process_orphan:345: Corrupt filesystem
[ 1361.685168][T26134] loop3: lost filesystem error report for type 5 error -117
[ 1361.685752][T26134] EXT4-fs (loop3): 1 truncate cleaned up
[ 1361.700358][T26138] loop4: detected capacity change from 0 to 128
[ 1361.710421][T26138] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[ 1361.733814][T26134] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1361.763526][T26138] ext4 filesystem being mounted at /145/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1361.829823][T23744] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1361.840826][T26141] loop2: detected capacity change from 0 to 7
[ 1361.850556][T23636] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1361.927487][T26143] FAULT_INJECTION: forcing a failure.
[ 1361.927487][T26143] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1361.956382][T26143] CPU: 1 UID: 0 PID: 26143 Comm: syz.4.6857 Not tainted syzkaller #0 PREEMPT(full) 
[ 1361.956422][T26143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1361.956449][T26143] Call Trace:
[ 1361.956514][T26143]  <TASK>
[ 1361.956549][T26143]  __dump_stack+0x1d/0x30
[ 1361.956584][T26143]  dump_stack_lvl+0x95/0xd0
[ 1361.956612][T26143]  dump_stack+0x15/0x1b
[ 1361.956634][T26143]  should_fail_ex+0x263/0x280
[ 1361.956738][T26143]  should_fail+0xb/0x20
[ 1361.956754][T26143]  should_fail_usercopy+0x1a/0x20
[ 1361.956775][T26143]  _copy_from_user+0x1c/0xb0
[ 1361.956837][T26143]  ___sys_sendmsg+0xc1/0x1e0
[ 1361.956881][T26143]  __x64_sys_sendmsg+0xd4/0x160
[ 1361.956909][T26143]  x64_sys_call+0x194c/0x3020
[ 1361.957015][T26143]  do_syscall_64+0x12c/0x370
[ 1361.957048][T26143]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1361.957071][T26143] RIP: 0033:0x7fa141edc629
[ 1361.957165][T26143] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1361.957245][T26143] RSP: 002b:00007fa14092f028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1361.957267][T26143] RAX: ffffffffffffffda RBX: 00007fa142155fa0 RCX: 00007fa141edc629
[ 1361.957280][T26143] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000009
[ 1361.957293][T26143] RBP: 00007fa14092f090 R08: 0000000000000000 R09: 0000000000000000
[ 1361.957306][T26143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1361.957394][T26143] R13: 00007fa142156038 R14: 00007fa142155fa0 R15: 00007ffd50348268
[ 1361.957415][T26143]  </TASK>
[ 1362.298075][T26153] loop4: detected capacity change from 0 to 256
[ 1362.331667][T26153] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1362.688606][T26162] loop4: detected capacity change from 0 to 128
[ 1362.757090][T26166] loop0: detected capacity change from 0 to 4096
[ 1362.777530][T26166] EXT4-fs: Invalid want_extra_isize 3
[ 1362.812366][T26168] loop5: detected capacity change from 0 to 1024
[ 1362.878427][T26168] EXT4-fs error (device loop5): ext4_acquire_dquot:7003: comm syz.5.6867: Failed to acquire dquot type 0
[ 1362.960308][T26168] loop5: lost filesystem error report for type 5 error -117
[ 1362.963211][    C0] EXT4-fs (loop5): error count since last fsck: 1
[ 1362.977137][    C0] EXT4-fs (loop5): initial error at time 1771397187: ext4_acquire_dquot:7003
[ 1362.985991][    C0] EXT4-fs (loop5): last error at time 1771397187: ext4_acquire_dquot:7003
[ 1363.037401][T26168] EXT4-fs error (device loop5): mb_free_blocks:2047: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[ 1363.087107][T26168] EXT4-fs error (device loop5): ext4_do_update_inode:5569: inode #13: comm syz.5.6867: corrupted inode contents
[ 1363.105187][T26168] fserror_report: 4 callbacks suppressed
[ 1363.105261][T26168] loop5: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1363.114200][T26168] EXT4-fs error (device loop5): ext4_dirty_inode:6450: inode #13: comm syz.5.6867: mark_inode_dirty error
[ 1363.151392][T26168] loop5: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1363.151802][T26168] EXT4-fs error (device loop5): ext4_do_update_inode:5569: inode #13: comm syz.5.6867: corrupted inode contents
[ 1363.194824][T26168] loop5: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1363.195098][T26168] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #13: comm syz.5.6867: mark_inode_dirty error
[ 1363.243253][T26168] loop5: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1363.243623][T26168] EXT4-fs error (device loop5): ext4_do_update_inode:5569: inode #13: comm syz.5.6867: corrupted inode contents
[ 1363.285063][T26168] loop5: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1363.286136][T26168] EXT4-fs error (device loop5) in ext4_orphan_del:303: Corrupt filesystem
[ 1363.324355][T26168] loop5: lost filesystem error report for type 5 error -117
[ 1363.329256][T26168] EXT4-fs error (device loop5): ext4_do_update_inode:5569: inode #13: comm syz.5.6867: corrupted inode contents
[ 1363.473987][T26168] loop5: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1363.474218][T26168] EXT4-fs error (device loop5): ext4_truncate:4587: inode #13: comm syz.5.6867: mark_inode_dirty error
[ 1363.494950][T26168] loop5: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1363.504963][T26168] EXT4-fs error (device loop5) in ext4_process_orphan:345: Corrupt filesystem
[ 1363.530710][T26168] loop5: lost filesystem error report for type 5 error -117
[ 1363.531349][T26168] EXT4-fs (loop5): 1 truncate cleaned up
[ 1363.573695][T26168] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1363.721747][T22490] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1363.846401][T26194] FAULT_INJECTION: forcing a failure.
[ 1363.846401][T26194] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1363.892567][T26194] CPU: 0 UID: 0 PID: 26194 Comm: syz.0.6876 Not tainted syzkaller #0 PREEMPT(full) 
[ 1363.892605][T26194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1363.892648][T26194] Call Trace:
[ 1363.892658][T26194]  <TASK>
[ 1363.892668][T26194]  __dump_stack+0x1d/0x30
[ 1363.892718][T26194]  dump_stack_lvl+0x95/0xd0
[ 1363.892749][T26194]  dump_stack+0x15/0x1b
[ 1363.892779][T26194]  should_fail_ex+0x263/0x280
[ 1363.892824][T26194]  should_fail+0xb/0x20
[ 1363.892842][T26194]  should_fail_usercopy+0x1a/0x20
[ 1363.892870][T26194]  _copy_from_user+0x1c/0xb0
[ 1363.892931][T26194]  __sys_bpf+0x183/0x7e0
[ 1363.892962][T26194]  __x64_sys_bpf+0x41/0x50
[ 1363.893010][T26194]  x64_sys_call+0x10cb/0x3020
[ 1363.893045][T26194]  do_syscall_64+0x12c/0x370
[ 1363.893090][T26194]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1363.893126][T26194] RIP: 0033:0x7f3f5c13c629
[ 1363.893148][T26194] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1363.893172][T26194] RSP: 002b:00007f3f5ab97028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1363.893196][T26194] RAX: ffffffffffffffda RBX: 00007f3f5c3b5fa0 RCX: 00007f3f5c13c629
[ 1363.893224][T26194] RDX: 0000000000000094 RSI: 0000200000000440 RDI: 0000000000000005
[ 1363.893242][T26194] RBP: 00007f3f5ab97090 R08: 0000000000000000 R09: 0000000000000000
[ 1363.893259][T26194] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1363.893274][T26194] R13: 00007f3f5c3b6038 R14: 00007f3f5c3b5fa0 R15: 00007ffd3ef48938
[ 1363.893300][T26194]  </TASK>
[ 1363.901627][T26197] loop4: detected capacity change from 0 to 1024
[ 1364.073675][T26197] EXT4-fs: Ignoring removed orlov option
[ 1364.097129][T26197] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1364.370182][   T28] kauditd_printk_skb: 97 callbacks suppressed
[ 1364.370198][   T28] audit: type=1400 audit(1771397188.791:665): avc:  denied  { read } for  pid=26195 comm="syz.4.6877" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 1364.607532][   T28] audit: type=1400 audit(1771397188.861:666): avc:  denied  { ioctl } for  pid=26195 comm="syz.4.6877" path="socket:[94251]" dev="sockfs" ino=94251 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[ 1364.863652][   T28] audit: type=1400 audit(1771397188.891:667): avc:  denied  { create } for  pid=26204 comm="syz.1.6880" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[ 1364.918196][   T28] audit: type=1400 audit(1771397188.891:668): avc:  denied  { write } for  pid=26204 comm="syz.1.6880" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[ 1365.001983][   T28] audit: type=1400 audit(1771397188.901:669): avc:  denied  { name_bind } for  pid=26204 comm="syz.1.6880" src=20004 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[ 1365.024781][T23636] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1365.030133][   T28] audit: type=1400 audit(1771397188.921:670): avc:  denied  { remove_name } for  pid=26195 comm="syz.4.6877" name="file0" dev="loop4" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 1365.057058][   T28] audit: type=1400 audit(1771397188.921:671): avc:  denied  { rename } for  pid=26195 comm="syz.4.6877" name="file0" dev="loop4" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 1365.079709][   T28] audit: type=1400 audit(1771397188.921:672): avc:  denied  { add_name } for  pid=26195 comm="syz.4.6877" name="file1" dev="loop4" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 1365.113914][   T28] audit: type=1400 audit(1771397188.921:673): avc:  denied  { unlink } for  pid=26195 comm="syz.4.6877" name="file1" dev="loop4" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 1365.156968][   T28] audit: type=1400 audit(1771397189.011:674): avc:  denied  { shutdown } for  pid=26204 comm="syz.1.6880" laddr=::1 lport=20004 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[ 1365.257509][T26198] program syz.5.6878 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1365.396733][T26231] loop1: detected capacity change from 0 to 512
[ 1365.428924][T26231] msdos: Bad value for 'errors'
[ 1365.505634][T26237] sctp: [Deprecated]: syz.1.6888 (pid 26237) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1365.505634][T26237] Use struct sctp_sack_info instead
[ 1365.720351][T26238] netlink: 68 bytes leftover after parsing attributes in process `syz.3.6890'.
[ 1365.808305][T26241] loop5: detected capacity change from 0 to 1024
[ 1365.820013][T26241] EXT4-fs error (device loop5): ext4_acquire_dquot:7003: comm syz.5.6891: Failed to acquire dquot type 0
[ 1365.837560][T26241] loop5: lost filesystem error report for type 5 error -117
[ 1365.838141][T26241] EXT4-fs error (device loop5): mb_free_blocks:2047: group 0, 
[ 1365.845545][    C0] EXT4-fs (loop5): error count since last fsck: 1
[ 1365.845584][    C0] EXT4-fs (loop5): initial error at time 1771397190: ext4_acquire_dquot:7003
[ 1365.845615][    C0] EXT4-fs (loop5): last error at time 1771397190: ext4_acquire_dquot:7003
[ 1365.877813][T26241] inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[ 1365.894390][T26241] EXT4-fs error (device loop5): ext4_do_update_inode:5569: inode #13: comm syz.5.6891: corrupted inode contents
[ 1365.906663][T26241] loop5: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1365.906864][T26241] EXT4-fs error (device loop5): ext4_dirty_inode:6450: inode #13: comm syz.5.6891: mark_inode_dirty error
[ 1365.927948][T26241] loop5: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1365.928157][T26241] EXT4-fs error (device loop5): ext4_do_update_inode:5569: inode #13: comm syz.5.6891: corrupted inode contents
[ 1365.949609][T26241] loop5: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1365.949865][T26241] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #13: comm syz.5.6891: mark_inode_dirty error
[ 1365.970886][T26241] EXT4-fs error (device loop5): ext4_do_update_inode:5569: inode #13: comm syz.5.6891: corrupted inode contents
[ 1365.983467][T26241] EXT4-fs error (device loop5) in ext4_orphan_del:303: Corrupt filesystem
[ 1365.992136][T26241] loop5: lost filesystem error report for type 5 error -117
[ 1365.992331][T26241] EXT4-fs error (device loop5): ext4_do_update_inode:5569: inode #13: comm syz.5.6891: corrupted inode contents
[ 1366.014468][T26241] EXT4-fs error (device loop5): ext4_truncate:4587: inode #13: comm syz.5.6891: mark_inode_dirty error
[ 1366.026090][T26241] EXT4-fs error (device loop5) in ext4_process_orphan:345: Corrupt filesystem
[ 1366.035292][T26241] loop5: lost filesystem error report for type 5 error -117
[ 1366.035710][T26241] EXT4-fs (loop5): 1 truncate cleaned up
[ 1366.087714][T26241] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1366.122493][T26241] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1366.144152][T26246] FAULT_INJECTION: forcing a failure.
[ 1366.144152][T26246] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1366.158959][T26246] CPU: 0 UID: 0 PID: 26246 Comm: syz.4.6892 Not tainted syzkaller #0 PREEMPT(full) 
[ 1366.159017][T26246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1366.159034][T26246] Call Trace:
[ 1366.159043][T26246]  <TASK>
[ 1366.159054][T26246]  __dump_stack+0x1d/0x30
[ 1366.159086][T26246]  dump_stack_lvl+0x95/0xd0
[ 1366.159117][T26246]  dump_stack+0x15/0x1b
[ 1366.159221][T26246]  should_fail_ex+0x263/0x280
[ 1366.159266][T26246]  should_fail+0xb/0x20
[ 1366.159360][T26246]  should_fail_usercopy+0x1a/0x20
[ 1366.159381][T26246]  _copy_to_user+0x20/0xa0
[ 1366.159411][T26246]  simple_read_from_buffer+0xb5/0x130
[ 1366.159523][T26246]  proc_fail_nth_read+0x10e/0x150
[ 1366.159559][T26246]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1366.159593][T26246]  vfs_read+0x1ab/0x7f0
[ 1366.159629][T26246]  ? ldsem_up_read+0x8a/0xd0
[ 1366.159728][T26246]  ? __rcu_read_unlock+0x4e/0x70
[ 1366.159761][T26246]  ? __fget_files+0x184/0x1c0
[ 1366.159788][T26246]  ? tiocsti+0x19a/0x1d0
[ 1366.159808][T26246]  ? mutex_lock+0x57/0x90
[ 1366.159971][T26246]  ksys_read+0xdc/0x1a0
[ 1366.160010][T26246]  __x64_sys_read+0x40/0x50
[ 1366.160046][T26246]  x64_sys_call+0x2886/0x3020
[ 1366.160140][T26246]  do_syscall_64+0x12c/0x370
[ 1366.160182][T26246]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1366.160210][T26246] RIP: 0033:0x7fa141e9cece
[ 1366.160287][T26246] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1366.160310][T26246] RSP: 002b:00007fa14090dfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1366.160335][T26246] RAX: ffffffffffffffda RBX: 00007fa14090e6c0 RCX: 00007fa141e9cece
[ 1366.160354][T26246] RDX: 000000000000000f RSI: 00007fa14090e0a0 RDI: 0000000000000005
[ 1366.160371][T26246] RBP: 00007fa14090e090 R08: 0000000000000000 R09: 0000000000000000
[ 1366.160461][T26246] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1366.160532][T26246] R13: 00007fa142156128 R14: 00007fa142156090 R15: 00007ffd50348268
[ 1366.160557][T26246]  </TASK>
[ 1366.797129][T26272] syzkaller0: entered promiscuous mode
[ 1366.802761][T26272] syzkaller0: entered allmulticast mode
[ 1366.892243][T26277] loop5: detected capacity change from 0 to 1024
[ 1366.991570][T26279] FAULT_INJECTION: forcing a failure.
[ 1366.991570][T26279] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1367.017825][T26279] CPU: 0 UID: 0 PID: 26279 Comm: syz.0.6907 Not tainted syzkaller #0 PREEMPT(full) 
[ 1367.017896][T26279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1367.017913][T26279] Call Trace:
[ 1367.017919][T26279]  <TASK>
[ 1367.017926][T26279]  __dump_stack+0x1d/0x30
[ 1367.017997][T26279]  dump_stack_lvl+0x95/0xd0
[ 1367.018030][T26279]  dump_stack+0x15/0x1b
[ 1367.018059][T26279]  should_fail_ex+0x263/0x280
[ 1367.018134][T26279]  should_fail+0xb/0x20
[ 1367.018157][T26279]  should_fail_usercopy+0x1a/0x20
[ 1367.018185][T26279]  _copy_from_user+0x1c/0xb0
[ 1367.018218][T26279]  ___sys_sendmsg+0xc1/0x1e0
[ 1367.018330][T26279]  __sys_sendmmsg+0x185/0x320
[ 1367.018379][T26279]  __x64_sys_sendmmsg+0x57/0x70
[ 1367.018413][T26279]  x64_sys_call+0x27aa/0x3020
[ 1367.018490][T26279]  do_syscall_64+0x12c/0x370
[ 1367.018592][T26279]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1367.018619][T26279] RIP: 0033:0x7f3f5c13c629
[ 1367.018638][T26279] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1367.018657][T26279] RSP: 002b:00007f3f5ab97028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1367.018679][T26279] RAX: ffffffffffffffda RBX: 00007f3f5c3b5fa0 RCX: 00007f3f5c13c629
[ 1367.018703][T26279] RDX: 0000000000000300 RSI: 0000200000004d00 RDI: 0000000000000006
[ 1367.018856][T26279] RBP: 00007f3f5ab97090 R08: 0000000000000000 R09: 0000000000000000
[ 1367.018875][T26279] R10: 0000000000000f1c R11: 0000000000000246 R12: 0000000000000001
[ 1367.018892][T26279] R13: 00007f3f5c3b6038 R14: 00007f3f5c3b5fa0 R15: 00007ffd3ef48938
[ 1367.018924][T26279]  </TASK>
[ 1367.359129][T26282] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[ 1367.389001][T26284] loop3: detected capacity change from 0 to 128
[ 1367.665763][T26287] netlink: 68 bytes leftover after parsing attributes in process `syz.0.6909'.
[ 1368.163763][T26295] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[ 1368.676895][T26297] team_slave_0: entered promiscuous mode
[ 1368.799624][T26297] syzkaller0: entered promiscuous mode
[ 1368.809081][T26297] syzkaller0: entered allmulticast mode
[ 1368.830237][T26296] team_slave_0: left promiscuous mode
[ 1369.074239][T26305] FAULT_INJECTION: forcing a failure.
[ 1369.074239][T26305] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1369.113252][T26305] CPU: 1 UID: 0 PID: 26305 Comm: syz.3.6916 Not tainted syzkaller #0 PREEMPT(full) 
[ 1369.113345][T26305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1369.113359][T26305] Call Trace:
[ 1369.113367][T26305]  <TASK>
[ 1369.113378][T26305]  __dump_stack+0x1d/0x30
[ 1369.113412][T26305]  dump_stack_lvl+0x95/0xd0
[ 1369.113443][T26305]  dump_stack+0x15/0x1b
[ 1369.113555][T26305]  should_fail_ex+0x263/0x280
[ 1369.113617][T26305]  should_fail+0xb/0x20
[ 1369.113684][T26305]  should_fail_usercopy+0x1a/0x20
[ 1369.113705][T26305]  _copy_to_user+0x20/0xa0
[ 1369.113729][T26305]  simple_read_from_buffer+0xb5/0x130
[ 1369.113775][T26305]  proc_fail_nth_read+0x10e/0x150
[ 1369.113850][T26305]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1369.113880][T26305]  vfs_read+0x1ab/0x7f0
[ 1369.113917][T26305]  ? __rcu_read_unlock+0x4e/0x70
[ 1369.114001][T26305]  ? __fget_files+0x184/0x1c0
[ 1369.114029][T26305]  ? mutex_lock+0x57/0x90
[ 1369.114063][T26305]  ksys_read+0xdc/0x1a0
[ 1369.114175][T26305]  __x64_sys_read+0x40/0x50
[ 1369.114210][T26305]  x64_sys_call+0x2886/0x3020
[ 1369.114296][T26305]  do_syscall_64+0x12c/0x370
[ 1369.114481][T26305]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1369.114514][T26305] RIP: 0033:0x7eff2323cece
[ 1369.114530][T26305] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1369.114549][T26305] RSP: 002b:00007eff21ccefe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1369.114570][T26305] RAX: ffffffffffffffda RBX: 00007eff21ccf6c0 RCX: 00007eff2323cece
[ 1369.114591][T26305] RDX: 000000000000000f RSI: 00007eff21ccf0a0 RDI: 0000000000000005
[ 1369.114609][T26305] RBP: 00007eff21ccf090 R08: 0000000000000000 R09: 0000000000000000
[ 1369.114625][T26305] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1369.114690][T26305] R13: 00007eff234f6038 R14: 00007eff234f5fa0 R15: 00007ffc2fbe62f8
[ 1369.114762][T26305]  </TASK>
[ 1369.216191][T26307] syzkaller0: entered promiscuous mode
[ 1369.328498][T26307] syzkaller0: entered allmulticast mode
[ 1369.452767][T26313] loop4: detected capacity change from 0 to 1024
[ 1369.515365][T26313] __quota_error: 52 callbacks suppressed
[ 1369.515387][T26313] Quota error (device loop4): do_check_range: Getting block 64 out of range 1-5
[ 1369.543301][T26313] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[ 1369.573284][T26313] EXT4-fs error (device loop4): ext4_acquire_dquot:7003: comm syz.4.6920: Failed to acquire dquot type 0
[ 1369.633298][T26313] loop4: lost filesystem error report for type 5 error -117
[ 1369.640397][T26313] EXT4-fs error (device loop4): mb_free_blocks:2047: group 0, 
[ 1369.642096][   T28] audit: type=1400 audit(1771397194.061:725): avc:  denied  { create } for  pid=26310 comm="syz.3.6919" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[ 1369.647806][    C1] EXT4-fs (loop4): error count since last fsck: 1
[ 1369.647826][    C1] EXT4-fs (loop4): initial error at time 1771397194: ext4_acquire_dquot:7003
[ 1369.647869][    C1] EXT4-fs (loop4): last error at time 1771397194: ext4_acquire_dquot:7003
[ 1369.697907][T26320] loop5: detected capacity change from 0 to 128
[ 1369.699228][T26313] inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[ 1369.722201][T26321] loop1: detected capacity change from 0 to 1024
[ 1369.733281][T26313] EXT4-fs error (device loop4): ext4_do_update_inode:5569: inode #13: comm syz.4.6920: corrupted inode contents
[ 1369.746829][   T28] audit: type=1400 audit(1771397194.151:726): avc:  denied  { connect } for  pid=26310 comm="syz.3.6919" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[ 1369.793447][T26313] fserror_report: 4 callbacks suppressed
[ 1369.793465][T26313] loop4: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1369.805370][T26313] EXT4-fs error (device loop4): ext4_dirty_inode:6450: inode #13: comm syz.4.6920: mark_inode_dirty error
[ 1369.834032][   T28] audit: type=1400 audit(1771397194.151:727): avc:  denied  { ioctl } for  pid=26310 comm="syz.3.6919" path="socket:[94525]" dev="sockfs" ino=94525 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[ 1369.863264][T26321] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[ 1369.863373][T26313] loop4: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1369.881572][T26321] System zones: 
[ 1369.890955][   T28] audit: type=1400 audit(1771397194.261:728): avc:  denied  { kexec_image_load } for  pid=26319 comm="syz.5.6923" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[ 1369.914542][T26321] 0-1, 3-36
[ 1369.918043][   T28] audit: type=1400 audit(1771397194.261:729): avc:  denied  { kexec_image_load } for  pid=26319 comm="syz.5.6923" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[ 1369.923759][T26313] EXT4-fs error (device loop4): ext4_do_update_inode:5569: inode #13: comm syz.4.6920: corrupted inode contents
[ 1369.962854][T26321] EXT4-fs error (device loop1): ext4_orphan_get:1417: comm syz.1.6922: bad orphan inode 134217728
[ 1369.996671][T26321] loop1: lost filesystem error report for type 5 error -117
[ 1369.997262][T26321] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1370.003429][   T28] audit: type=1400 audit(1771397194.411:730): avc:  denied  { node_bind } for  pid=26319 comm="syz.5.6923" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[ 1370.039061][T26313] loop4: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1370.039247][T26313] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #13: comm syz.4.6920: mark_inode_dirty error
[ 1370.064419][   T28] audit: type=1400 audit(1771397194.491:731): avc:  denied  { create } for  pid=26317 comm="syz.1.6922" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[ 1370.084676][   T28] audit: type=1400 audit(1771397194.491:732): avc:  denied  { read open } for  pid=26317 comm="syz.1.6922" path="/197/bus/bus" dev="loop1" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[ 1370.107821][T26313] loop4: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1370.113421][T26313] EXT4-fs error (device loop4): ext4_do_update_inode:5569: inode #13: comm syz.4.6920: corrupted inode contents
[ 1370.135274][T26313] loop4: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1370.135484][T26313] EXT4-fs error (device loop4) in ext4_orphan_del:303: Corrupt filesystem
[ 1370.153453][T26313] loop4: lost filesystem error report for type 5 error -117
[ 1370.163749][T26313] EXT4-fs error (device loop4): ext4_do_update_inode:5569: inode #13: comm syz.4.6920: corrupted inode contents
[ 1370.192483][T26313] loop4: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1370.192641][T26313] EXT4-fs error (device loop4): ext4_truncate:4587: inode #13: comm syz.4.6920: mark_inode_dirty error
[ 1370.213742][ T1032] IPVS: starting estimator thread 0...
[ 1370.213800][T26313] loop4: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1370.219493][T26313] EXT4-fs error (device loop4) in ext4_process_orphan:345: Corrupt filesystem
[ 1370.238019][T26313] loop4: lost filesystem error report for type 5 error -117
[ 1370.240906][T26331] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6918'.
[ 1370.257575][T26313] EXT4-fs (loop4): 1 truncate cleaned up
[ 1370.263964][T26313] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1370.313240][T26334] IPVS: using max 1872 ests per chain, 93600 per kthread
[ 1370.341381][T26339] FAULT_INJECTION: forcing a failure.
[ 1370.341381][T26339] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1370.364524][T26339] CPU: 1 UID: 0 PID: 26339 Comm: syz.0.6927 Not tainted syzkaller #0 PREEMPT(full) 
[ 1370.364560][T26339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1370.364577][T26339] Call Trace:
[ 1370.364586][T26339]  <TASK>
[ 1370.364593][T26339]  __dump_stack+0x1d/0x30
[ 1370.364668][T26339]  dump_stack_lvl+0x95/0xd0
[ 1370.364702][T26339]  dump_stack+0x15/0x1b
[ 1370.364761][T26339]  should_fail_ex+0x263/0x280
[ 1370.364799][T26339]  should_fail+0xb/0x20
[ 1370.364819][T26339]  should_fail_usercopy+0x1a/0x20
[ 1370.364912][T26339]  _copy_from_user+0x1c/0xb0
[ 1370.364935][T26339]  ___sys_recvmsg+0xaa/0x3b0
[ 1370.364968][T26339]  ? __rcu_read_unlock+0x4e/0x70
[ 1370.364999][T26339]  __x64_sys_recvmsg+0xd1/0x160
[ 1370.365062][T26339]  x64_sys_call+0x2b1a/0x3020
[ 1370.365092][T26339]  do_syscall_64+0x12c/0x370
[ 1370.365152][T26339]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1370.365234][T26339] RIP: 0033:0x7f3f5c13c629
[ 1370.365295][T26339] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1370.365335][T26339] RSP: 002b:00007f3f5ab97028 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[ 1370.365358][T26339] RAX: ffffffffffffffda RBX: 00007f3f5c3b5fa0 RCX: 00007f3f5c13c629
[ 1370.365386][T26339] RDX: 0000000000010122 RSI: 0000200000000500 RDI: 0000000000000003
[ 1370.365403][T26339] RBP: 00007f3f5ab97090 R08: 0000000000000000 R09: 0000000000000000
[ 1370.365421][T26339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1370.365437][T26339] R13: 00007f3f5c3b6038 R14: 00007f3f5c3b5fa0 R15: 00007ffd3ef48938
[ 1370.365463][T26339]  </TASK>
[ 1370.679240][T23636] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1370.847697][T26347] netlink: 68 bytes leftover after parsing attributes in process `syz.3.6928'.
[ 1371.163070][T26350] FAULT_INJECTION: forcing a failure.
[ 1371.163070][T26350] name failslab, interval 1, probability 0, space 0, times 0
[ 1371.237235][T26350] CPU: 1 UID: 0 PID: 26350 Comm: syz.0.6932 Not tainted syzkaller #0 PREEMPT(full) 
[ 1371.237267][T26350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1371.237284][T26350] Call Trace:
[ 1371.237293][T26350]  <TASK>
[ 1371.237304][T26350]  __dump_stack+0x1d/0x30
[ 1371.237340][T26350]  dump_stack_lvl+0x95/0xd0
[ 1371.237387][T26350]  dump_stack+0x15/0x1b
[ 1371.237468][T26350]  should_fail_ex+0x263/0x280
[ 1371.237522][T26350]  should_failslab+0x8c/0xb0
[ 1371.237581][T26350]  __kvmalloc_node_noprof+0x155/0x650
[ 1371.237612][T26350]  ? path_openat+0x1ab2/0x2050
[ 1371.237678][T26350]  ? traverse+0xa2/0x3a0
[ 1371.237731][T26350]  traverse+0xa2/0x3a0
[ 1371.237766][T26350]  ? _parse_integer_limit+0x170/0x190
[ 1371.237809][T26350]  seq_read_iter+0x85f/0x940
[ 1371.237896][T26350]  ? _parse_integer+0x27/0x40
[ 1371.237930][T26350]  ? kstrtoull+0x111/0x140
[ 1371.237997][T26350]  seq_read+0x279/0x2c0
[ 1371.238032][T26350]  ? __pfx_seq_read+0x10/0x10
[ 1371.238229][T26350]  proc_reg_read+0x128/0x1c0
[ 1371.238270][T26350]  ? __pfx_proc_reg_read+0x10/0x10
[ 1371.238371][T26350]  vfs_read+0x1ab/0x7f0
[ 1371.238406][T26350]  ? __rcu_read_unlock+0x4e/0x70
[ 1371.238496][T26350]  ? __fget_files+0x184/0x1c0
[ 1371.238517][T26350]  ? mutex_unlock+0x4e/0x90
[ 1371.238552][T26350]  __x64_sys_pread64+0xfd/0x150
[ 1371.238591][T26350]  x64_sys_call+0x27b5/0x3020
[ 1371.238633][T26350]  do_syscall_64+0x12c/0x370
[ 1371.238675][T26350]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1371.238703][T26350] RIP: 0033:0x7f3f5c13c629
[ 1371.238719][T26350] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1371.238785][T26350] RSP: 002b:00007f3f5ab97028 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[ 1371.238810][T26350] RAX: ffffffffffffffda RBX: 00007f3f5c3b5fa0 RCX: 00007f3f5c13c629
[ 1371.238824][T26350] RDX: 000000000000fd8a RSI: 0000200000000180 RDI: 0000000000000003
[ 1371.238881][T26350] RBP: 00007f3f5ab97090 R08: 0000000000000000 R09: 0000000000000000
[ 1371.238898][T26350] R10: 000000000000003c R11: 0000000000000246 R12: 0000000000000001
[ 1371.238954][T26350] R13: 00007f3f5c3b6038 R14: 00007f3f5c3b5fa0 R15: 00007ffd3ef48938
[ 1371.238979][T26350]  </TASK>
[ 1371.579831][T26355] loop5: detected capacity change from 0 to 128
[ 1371.762103][T26360] loop0: detected capacity change from 0 to 1024
[ 1371.823928][T26360] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1371.897243][T22966] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1371.942591][T22741] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1371.980216][T26372] FAULT_INJECTION: forcing a failure.
[ 1371.980216][T26372] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1372.032321][T26372] CPU: 0 UID: 0 PID: 26372 Comm: syz.4.6939 Not tainted syzkaller #0 PREEMPT(full) 
[ 1372.032413][T26372] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1372.032431][T26372] Call Trace:
[ 1372.032447][T26372]  <TASK>
[ 1372.032457][T26372]  __dump_stack+0x1d/0x30
[ 1372.032492][T26372]  dump_stack_lvl+0x95/0xd0
[ 1372.032523][T26372]  dump_stack+0x15/0x1b
[ 1372.032548][T26372]  should_fail_ex+0x263/0x280
[ 1372.032619][T26372]  should_fail+0xb/0x20
[ 1372.032640][T26372]  should_fail_usercopy+0x1a/0x20
[ 1372.032667][T26372]  _copy_from_user+0x1c/0xb0
[ 1372.032718][T26372]  __sys_bpf+0x183/0x7e0
[ 1372.032745][T26372]  __x64_sys_bpf+0x41/0x50
[ 1372.032816][T26372]  x64_sys_call+0x10cb/0x3020
[ 1372.032852][T26372]  do_syscall_64+0x12c/0x370
[ 1372.032921][T26372]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1372.032950][T26372] RIP: 0033:0x7fa141edc629
[ 1372.032968][T26372] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1372.032990][T26372] RSP: 002b:00007fa14092f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1372.033077][T26372] RAX: ffffffffffffffda RBX: 00007fa142155fa0 RCX: 00007fa141edc629
[ 1372.033095][T26372] RDX: 0000000000000028 RSI: 0000200000000280 RDI: 0000000000000012
[ 1372.033113][T26372] RBP: 00007fa14092f090 R08: 0000000000000000 R09: 0000000000000000
[ 1372.033131][T26372] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1372.033148][T26372] R13: 00007fa142156038 R14: 00007fa142155fa0 R15: 00007ffd50348268
[ 1372.033227][T26372]  </TASK>
[ 1372.326054][T26388] loop0: detected capacity change from 0 to 256
[ 1372.548393][T26390] netlink: 68 bytes leftover after parsing attributes in process `syz.4.6944'.
[ 1372.620498][T26384] loop5: detected capacity change from 0 to 4096
[ 1372.705763][T26384] EXT4-fs: Invalid want_extra_isize 3
[ 1372.951910][T26399] FAULT_INJECTION: forcing a failure.
[ 1372.951910][T26399] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1373.026527][T26399] CPU: 1 UID: 0 PID: 26399 Comm: syz.4.6947 Not tainted syzkaller #0 PREEMPT(full) 
[ 1373.026555][T26399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1373.026571][T26399] Call Trace:
[ 1373.026581][T26399]  <TASK>
[ 1373.026649][T26399]  __dump_stack+0x1d/0x30
[ 1373.026682][T26399]  dump_stack_lvl+0x95/0xd0
[ 1373.026708][T26399]  dump_stack+0x15/0x1b
[ 1373.026802][T26399]  should_fail_ex+0x263/0x280
[ 1373.026846][T26399]  should_fail+0xb/0x20
[ 1373.026868][T26399]  should_fail_usercopy+0x1a/0x20
[ 1373.026933][T26399]  _copy_from_user+0x1c/0xb0
[ 1373.026957][T26399]  __sys_bpf+0x183/0x7e0
[ 1373.026986][T26399]  __x64_sys_bpf+0x41/0x50
[ 1373.027025][T26399]  x64_sys_call+0x10cb/0x3020
[ 1373.027160][T26399]  do_syscall_64+0x12c/0x370
[ 1373.027244][T26399]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1373.027272][T26399] RIP: 0033:0x7fa141edc629
[ 1373.027293][T26399] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1373.027318][T26399] RSP: 002b:00007fa14092f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1373.027340][T26399] RAX: ffffffffffffffda RBX: 00007fa142155fa0 RCX: 00007fa141edc629
[ 1373.027392][T26399] RDX: 0000000000000028 RSI: 0000200000000280 RDI: 0000000000000012
[ 1373.027409][T26399] RBP: 00007fa14092f090 R08: 0000000000000000 R09: 0000000000000000
[ 1373.027426][T26399] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1373.027442][T26399] R13: 00007fa142156038 R14: 00007fa142155fa0 R15: 00007ffd50348268
[ 1373.027509][T26399]  </TASK>
[ 1373.366553][T26405] syzkaller0: entered promiscuous mode
[ 1373.394872][T26407] loop4: detected capacity change from 0 to 128
[ 1373.409257][T26405] syzkaller0: entered allmulticast mode
[ 1373.902342][T26414] loop5: detected capacity change from 0 to 4096
[ 1373.923603][T26414] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1373.933984][T26414] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a802c018, mo2=0003]
[ 1373.942131][T26414] System zones: 0-5
[ 1373.963832][T26414] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1374.049895][T26414] 9p: Bad value for 'wfdno'
[ 1374.058000][T26421] loop1: detected capacity change from 0 to 4096
[ 1374.064874][T26421] EXT4-fs: Invalid want_extra_isize 3
[ 1374.171048][T22490] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1374.380766][T26425] netlink: 68 bytes leftover after parsing attributes in process `syz.1.6957'.
[ 1374.913997][T26431] FAULT_INJECTION: forcing a failure.
[ 1374.913997][T26431] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1374.947552][T26431] CPU: 0 UID: 0 PID: 26431 Comm: syz.4.6960 Not tainted syzkaller #0 PREEMPT(full) 
[ 1374.947588][T26431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1374.947604][T26431] Call Trace:
[ 1374.947664][T26431]  <TASK>
[ 1374.947674][T26431]  __dump_stack+0x1d/0x30
[ 1374.947708][T26431]  dump_stack_lvl+0x95/0xd0
[ 1374.947736][T26431]  dump_stack+0x15/0x1b
[ 1374.947762][T26431]  should_fail_ex+0x263/0x280
[ 1374.947870][T26431]  should_fail+0xb/0x20
[ 1374.947889][T26431]  should_fail_usercopy+0x1a/0x20
[ 1374.947915][T26431]  _copy_to_user+0x20/0xa0
[ 1374.947944][T26431]  simple_read_from_buffer+0xb5/0x130
[ 1374.948009][T26431]  proc_fail_nth_read+0x10e/0x150
[ 1374.948055][T26431]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1374.948086][T26431]  vfs_read+0x1ab/0x7f0
[ 1374.948120][T26431]  ? __rcu_read_unlock+0x4e/0x70
[ 1374.948144][T26431]  ? __fget_files+0x184/0x1c0
[ 1374.948262][T26431]  ? mutex_lock+0x57/0x90
[ 1374.948293][T26431]  ksys_read+0xdc/0x1a0
[ 1374.948360][T26431]  __x64_sys_read+0x40/0x50
[ 1374.948395][T26431]  x64_sys_call+0x2886/0x3020
[ 1374.948427][T26431]  do_syscall_64+0x12c/0x370
[ 1374.948536][T26431]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1374.948562][T26431] RIP: 0033:0x7fa141e9cece
[ 1374.948598][T26431] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1374.948620][T26431] RSP: 002b:00007fa14092efe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1374.948645][T26431] RAX: ffffffffffffffda RBX: 00007fa14092f6c0 RCX: 00007fa141e9cece
[ 1374.948662][T26431] RDX: 000000000000000f RSI: 00007fa14092f0a0 RDI: 0000000000000003
[ 1374.948678][T26431] RBP: 00007fa14092f090 R08: 0000000000000000 R09: 0000000000000000
[ 1374.948694][T26431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1374.948742][T26431] R13: 00007fa142156038 R14: 00007fa142155fa0 R15: 00007ffd50348268
[ 1374.948765][T26431]  </TASK>
[ 1375.167478][   T28] kauditd_printk_skb: 88 callbacks suppressed
[ 1375.167495][   T28] audit: type=1400 audit(1771397199.591:821): avc:  denied  { write } for  pid=26435 comm="syz.1.6962" lport=135 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[ 1375.204232][T26438] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[ 1375.216010][   T28] audit: type=1400 audit(1771397199.621:822): avc:  denied  { read } for  pid=26435 comm="syz.1.6962" name="mISDNtimer" dev="devtmpfs" ino=250 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 1375.274831][   T28] audit: type=1400 audit(1771397199.621:823): avc:  denied  { open } for  pid=26435 comm="syz.1.6962" path="/dev/mISDNtimer" dev="devtmpfs" ino=250 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 1375.298782][   T28] audit: type=1400 audit(1771397199.621:824): avc:  denied  { ioctl } for  pid=26435 comm="syz.1.6962" path="/dev/mISDNtimer" dev="devtmpfs" ino=250 ioctlcmd=0x4940 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 1375.364864][T26447] loop2: detected capacity change from 0 to 7
[ 1375.502006][   T28] audit: type=1400 audit(1771397199.621:825): avc:  denied  { create } for  pid=26435 comm="syz.1.6962" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[ 1375.613458][   T28] audit: type=1400 audit(1771397199.621:826): avc:  denied  { write } for  pid=26435 comm="syz.1.6962" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[ 1375.641401][T26459] FAULT_INJECTION: forcing a failure.
[ 1375.641401][T26459] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1375.669863][T26459] CPU: 0 UID: 0 PID: 26459 Comm: syz.0.6969 Not tainted syzkaller #0 PREEMPT(full) 
[ 1375.669898][T26459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1375.669915][T26459] Call Trace:
[ 1375.669923][T26459]  <TASK>
[ 1375.669931][T26459]  __dump_stack+0x1d/0x30
[ 1375.669962][T26459]  dump_stack_lvl+0x95/0xd0
[ 1375.670004][T26459]  dump_stack+0x15/0x1b
[ 1375.670048][T26459]  should_fail_ex+0x263/0x280
[ 1375.670089][T26459]  should_fail+0xb/0x20
[ 1375.670110][T26459]  should_fail_usercopy+0x1a/0x20
[ 1375.670207][T26459]  _copy_from_user+0x1c/0xb0
[ 1375.670239][T26459]  do_sock_getsockopt+0xf1/0x210
[ 1375.670319][T26459]  __x64_sys_getsockopt+0x11d/0x1a0
[ 1375.670346][T26459]  x64_sys_call+0x2dcf/0x3020
[ 1375.670433][T26459]  do_syscall_64+0x12c/0x370
[ 1375.670585][T26459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1375.670611][T26459] RIP: 0033:0x7f3f5c13c629
[ 1375.670627][T26459] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1375.670679][T26459] RSP: 002b:00007f3f5ab97028 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[ 1375.670702][T26459] RAX: ffffffffffffffda RBX: 00007f3f5c3b5fa0 RCX: 00007f3f5c13c629
[ 1375.670790][T26459] RDX: 0000000000000010 RSI: 000000000000011e RDI: 0000000000000003
[ 1375.670807][T26459] RBP: 00007f3f5ab97090 R08: 00002000000001c0 R09: 0000000000000000
[ 1375.670825][T26459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1375.670848][T26459] R13: 00007f3f5c3b6038 R14: 00007f3f5c3b5fa0 R15: 00007ffd3ef48938
[ 1375.670868][T26459]  </TASK>
[ 1375.673326][   T28] audit: type=1400 audit(1771397199.921:827): avc:  denied  { write } for  pid=26450 comm="syz.0.6967" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[ 1376.073242][   T28] audit: type=1400 audit(1771397199.951:828): avc:  denied  { write } for  pid=26451 comm="syz.4.6968" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[ 1376.116860][T26467] loop5: detected capacity change from 0 to 128
[ 1376.143302][   T28] audit: type=1400 audit(1771397199.951:829): avc:  denied  { open } for  pid=26451 comm="syz.4.6968" path="/dev/ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[ 1376.203236][   T28] audit: type=1400 audit(1771397199.951:830): avc:  denied  { ioctl } for  pid=26451 comm="syz.4.6968" path="/dev/ppp" dev="devtmpfs" ino=140 ioctlcmd=0x7452 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[ 1376.225386][T26469] loop0: detected capacity change from 0 to 4096
[ 1376.275400][T26469] EXT4-fs: Invalid want_extra_isize 3
[ 1376.475981][T26476] sctp: [Deprecated]: syz.4.6977 (pid 26476) Use of int in max_burst socket option deprecated.
[ 1376.475981][T26476] Use struct sctp_assoc_value instead
[ 1376.620471][T26482] set_capacity_and_notify: 2 callbacks suppressed
[ 1376.620526][T26482] loop2: detected capacity change from 0 to 7
[ 1376.841037][T26486] FAULT_INJECTION: forcing a failure.
[ 1376.841037][T26486] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1376.870070][T26486] CPU: 0 UID: 0 PID: 26486 Comm: syz.4.6979 Not tainted syzkaller #0 PREEMPT(full) 
[ 1376.870103][T26486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1376.870180][T26486] Call Trace:
[ 1376.870187][T26486]  <TASK>
[ 1376.870195][T26486]  __dump_stack+0x1d/0x30
[ 1376.870222][T26486]  dump_stack_lvl+0x95/0xd0
[ 1376.870305][T26486]  dump_stack+0x15/0x1b
[ 1376.870361][T26486]  should_fail_ex+0x263/0x280
[ 1376.870406][T26486]  should_fail+0xb/0x20
[ 1376.870423][T26486]  should_fail_usercopy+0x1a/0x20
[ 1376.870497][T26486]  copy_fpstate_to_sigframe+0x650/0x7f0
[ 1376.870533][T26486]  ? copy_fpstate_to_sigframe+0xe5/0x7f0
[ 1376.870566][T26486]  ? x86_task_fpu+0x36/0x60
[ 1376.870670][T26486]  get_sigframe+0x34c/0x470
[ 1376.870703][T26486]  ? get_signal+0xdc3/0xf60
[ 1376.870807][T26486]  x64_setup_rt_frame+0xa7/0x4e0
[ 1376.870842][T26486]  arch_do_signal_or_restart+0x24b/0x450
[ 1376.870908][T26486]  exit_to_user_mode_loop+0x6a/0x6f0
[ 1376.870944][T26486]  do_syscall_64+0x249/0x370
[ 1376.870992][T26486]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1376.871063][T26486] RIP: 0033:0x7fa141edc627
[ 1376.871084][T26486] Code: 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 <0f> 05 48 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89
[ 1376.871109][T26486] RSP: 002b:00007fa14090e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1376.871145][T26486] RAX: 0000000000000001 RBX: 00007fa142156090 RCX: 00007fa141edc629
[ 1376.871158][T26486] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1376.871171][T26486] RBP: 00007fa14090e090 R08: 0000000000000000 R09: 0000000000000000
[ 1376.871183][T26486] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1376.871195][T26486] R13: 00007fa142156128 R14: 00007fa142156090 R15: 00007ffd50348268
[ 1376.871219][T26486]  </TASK>
[ 1377.601971][T26509] loop5: detected capacity change from 0 to 4096
[ 1377.703610][T26509] EXT4-fs: Invalid want_extra_isize 3
[ 1377.786128][T26516] loop2: detected capacity change from 0 to 7
[ 1377.860728][T26520] 9p: Bad value for 'rfdno'
[ 1378.162538][T26522] loop3: detected capacity change from 0 to 128
[ 1379.043039][T26545] FAULT_INJECTION: forcing a failure.
[ 1379.043039][T26545] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1379.068705][T26543] loop3: detected capacity change from 0 to 128
[ 1379.188957][T26545] CPU: 1 UID: 0 PID: 26545 Comm: syz.5.6999 Not tainted syzkaller #0 PREEMPT(full) 
[ 1379.188990][T26545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1379.189007][T26545] Call Trace:
[ 1379.189015][T26545]  <TASK>
[ 1379.189024][T26545]  __dump_stack+0x1d/0x30
[ 1379.189135][T26545]  dump_stack_lvl+0x95/0xd0
[ 1379.189164][T26545]  dump_stack+0x15/0x1b
[ 1379.189234][T26545]  should_fail_ex+0x263/0x280
[ 1379.189279][T26545]  should_fail+0xb/0x20
[ 1379.189301][T26545]  should_fail_usercopy+0x1a/0x20
[ 1379.189325][T26545]  _copy_from_iter+0xcf/0xea0
[ 1379.189459][T26545]  ? __rcu_read_unlock+0x4e/0x70
[ 1379.189494][T26545]  ? __rcu_read_unlock+0x4e/0x70
[ 1379.189518][T26545]  rawv6_sendmsg+0x98c/0x1230
[ 1379.189562][T26545]  ? __pfx_rawv6_sendmsg+0x10/0x10
[ 1379.189588][T26545]  inet_sendmsg+0xc5/0xd0
[ 1379.189652][T26545]  sock_write_iter+0x2e0/0x360
[ 1379.189687][T26545]  ? __pfx_sock_write_iter+0x10/0x10
[ 1379.189815][T26545]  vfs_write+0x5a6/0x9f0
[ 1379.189858][T26545]  ksys_write+0xdc/0x1a0
[ 1379.189892][T26545]  __x64_sys_write+0x40/0x50
[ 1379.189989][T26545]  x64_sys_call+0x27e1/0x3020
[ 1379.190022][T26545]  do_syscall_64+0x12c/0x370
[ 1379.190129][T26545]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1379.190150][T26545] RIP: 0033:0x7f9ff099c629
[ 1379.190166][T26545] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1379.190196][T26545] RSP: 002b:00007f9fef3ef028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1379.190221][T26545] RAX: ffffffffffffffda RBX: 00007f9ff0c15fa0 RCX: 00007f9ff099c629
[ 1379.190239][T26545] RDX: 00000000000005ac RSI: 00002000000000c0 RDI: 0000000000000003
[ 1379.190323][T26545] RBP: 00007f9fef3ef090 R08: 0000000000000000 R09: 0000000000000000
[ 1379.190340][T26545] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1379.190356][T26545] R13: 00007f9ff0c16038 R14: 00007f9ff0c15fa0 R15: 00007fff1fbf6738
[ 1379.190378][T26545]  </TASK>
[ 1379.629659][T26556] loop2: detected capacity change from 0 to 7
[ 1379.917894][T26561] loop3: detected capacity change from 0 to 256
[ 1380.391250][T26559] syzkaller0: entered promiscuous mode
[ 1380.406447][T26569] loop0: detected capacity change from 0 to 512
[ 1380.417024][T26559] syzkaller0: entered allmulticast mode
[ 1380.512918][T26571] capability: warning: `syz.5.7008' uses deprecated v2 capabilities in a way that may be insecure
[ 1380.542591][T26559] PF_CAN: dropped non conform CAN FD skbuff: dev type 280, len 65487
[ 1380.608454][T26569] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1380.739847][T26569] ext4 filesystem being mounted at /251/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1381.032521][T26583] loop5: detected capacity change from 0 to 128
[ 1381.226922][T26588] FAULT_INJECTION: forcing a failure.
[ 1381.226922][T26588] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1381.240680][T26588] CPU: 1 UID: 0 PID: 26588 Comm: syz.0.7007 Not tainted syzkaller #0 PREEMPT(full) 
[ 1381.240707][T26588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1381.240719][T26588] Call Trace:
[ 1381.240727][T26588]  <TASK>
[ 1381.240737][T26588]  __dump_stack+0x1d/0x30
[ 1381.240777][T26588]  dump_stack_lvl+0x95/0xd0
[ 1381.240809][T26588]  dump_stack+0x15/0x1b
[ 1381.240867][T26588]  should_fail_ex+0x263/0x280
[ 1381.240902][T26588]  should_fail+0xb/0x20
[ 1381.240958][T26588]  should_fail_usercopy+0x1a/0x20
[ 1381.240986][T26588]  _copy_from_user+0x1c/0xb0
[ 1381.241058][T26588]  ___sys_sendmsg+0xc1/0x1e0
[ 1381.241099][T26588]  __x64_sys_sendmsg+0xd4/0x160
[ 1381.241167][T26588]  x64_sys_call+0x194c/0x3020
[ 1381.241268][T26588]  do_syscall_64+0x12c/0x370
[ 1381.241307][T26588]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1381.241329][T26588] RIP: 0033:0x7f3f5c13c629
[ 1381.241349][T26588] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1381.241398][T26588] RSP: 002b:00007f3f5ab55028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1381.241423][T26588] RAX: ffffffffffffffda RBX: 00007f3f5c3b6180 RCX: 00007f3f5c13c629
[ 1381.241443][T26588] RDX: 0000000004000054 RSI: 0000200000000480 RDI: 0000000000000006
[ 1381.241456][T26588] RBP: 00007f3f5ab55090 R08: 0000000000000000 R09: 0000000000000000
[ 1381.241469][T26588] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1381.241481][T26588] R13: 00007f3f5c3b6218 R14: 00007f3f5c3b6180 R15: 00007ffd3ef48938
[ 1381.241500][T26588]  </TASK>
[ 1381.455446][T26590] loop1: detected capacity change from 0 to 764
[ 1381.469056][T26590] rock: directory entry would overflow storage
[ 1381.475516][T26590] rock: sig=0x5245, size=8, remaining=5
[ 1381.513046][   T28] kauditd_printk_skb: 23 callbacks suppressed
[ 1381.513128][   T28] audit: type=1400 audit(1771397205.901:854): avc:  denied  { mount } for  pid=26589 comm="syz.1.7014" name="/" dev="loop1" ino=1792 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[ 1381.576243][   T28] audit: type=1400 audit(1771397205.901:855): avc:  denied  { create } for  pid=26589 comm="syz.1.7014" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[ 1381.600691][   T28] audit: type=1400 audit(1771397205.971:856): avc:  denied  { unmount } for  pid=22741 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[ 1381.625373][T26592] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1381.642348][   T28] audit: type=1400 audit(1771397205.991:857): avc:  denied  { cpu } for  pid=26591 comm="syz.3.7015" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[ 1381.678801][T22966] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1381.725552][T26597] set_capacity_and_notify: 1 callbacks suppressed
[ 1381.725638][T26597] loop1: detected capacity change from 0 to 4096
[ 1381.739958][T26597] EXT4-fs: Invalid want_extra_isize 3
[ 1381.763591][T23744] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1381.919446][T26611] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7022'.
[ 1381.938036][   T28] audit: type=1400 audit(1771397206.361:858): avc:  denied  { module_load } for  pid=26610 comm="syz.4.7022" path=2F6D656D66643A20C736BE918D183229219A25A2D238D606070EFCFE128F2613AE254054A3B03E5CECA9F951403641108C6E7C202864656C6574656429 dev="tmpfs" ino=4304 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=system permissive=1
[ 1381.973972][T26611] Invalid ELF header magic: != ELF
[ 1381.987522][   T28] audit: type=1326 audit(1771397206.411:859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26610 comm="syz.4.7022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa141edc629 code=0x7ffc0000
[ 1382.016127][T26617] loop3: detected capacity change from 0 to 512
[ 1382.039957][   T28] audit: type=1326 audit(1771397206.411:860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26610 comm="syz.4.7022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa141edc629 code=0x7ffc0000
[ 1382.065835][   T28] audit: type=1326 audit(1771397206.411:861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26610 comm="syz.4.7022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa141e9cece code=0x7ffc0000
[ 1382.120636][T26617] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1382.133399][T26617] ext4 filesystem being mounted at /159/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1382.146759][   T28] audit: type=1326 audit(1771397206.411:862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26610 comm="syz.4.7022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa141edc629 code=0x7ffc0000
[ 1382.172143][   T28] audit: type=1326 audit(1771397206.411:863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26610 comm="syz.4.7022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa141edc629 code=0x7ffc0000
[ 1382.308909][T26630] loop0: detected capacity change from 0 to 128
[ 1382.410034][T26638] netlink: 68 bytes leftover after parsing attributes in process `syz.0.7033'.
[ 1382.444360][T23744] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1382.496666][T26635] loop5: detected capacity change from 0 to 128
[ 1382.556077][T26650] geneve2: entered promiscuous mode
[ 1382.564068][   T30] netdevsim netdevsim3 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[ 1382.572966][   T30] netdevsim netdevsim3 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[ 1382.593234][   T30] netdevsim netdevsim3 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[ 1382.618910][   T57] netdevsim netdevsim3 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[ 1382.745423][T26661] loop3: detected capacity change from 0 to 128
[ 1382.831742][T26666] loop1: detected capacity change from 0 to 512
[ 1382.870734][T26670] FAULT_INJECTION: forcing a failure.
[ 1382.870734][T26670] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1382.886683][T26670] CPU: 0 UID: 0 PID: 26670 Comm: syz.3.7046 Not tainted syzkaller #0 PREEMPT(full) 
[ 1382.886717][T26670] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1382.886733][T26670] Call Trace:
[ 1382.886742][T26670]  <TASK>
[ 1382.886762][T26670]  __dump_stack+0x1d/0x30
[ 1382.886852][T26670]  dump_stack_lvl+0x95/0xd0
[ 1382.886879][T26670]  dump_stack+0x15/0x1b
[ 1382.886909][T26670]  should_fail_ex+0x263/0x280
[ 1382.886948][T26670]  should_fail+0xb/0x20
[ 1382.887037][T26670]  should_fail_usercopy+0x1a/0x20
[ 1382.887061][T26670]  _copy_from_user+0x1c/0xb0
[ 1382.887084][T26670]  ___sys_sendmsg+0xc1/0x1e0
[ 1382.887135][T26670]  __x64_sys_sendmsg+0xd4/0x160
[ 1382.887178][T26670]  x64_sys_call+0x194c/0x3020
[ 1382.887214][T26670]  do_syscall_64+0x12c/0x370
[ 1382.887258][T26670]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1382.887371][T26670] RIP: 0033:0x7eff2327c629
[ 1382.887391][T26670] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1382.887430][T26670] RSP: 002b:00007eff21ccf028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1382.887455][T26670] RAX: ffffffffffffffda RBX: 00007eff234f5fa0 RCX: 00007eff2327c629
[ 1382.887469][T26670] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000003
[ 1382.887528][T26670] RBP: 00007eff21ccf090 R08: 0000000000000000 R09: 0000000000000000
[ 1382.887550][T26670] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1382.887625][T26670] R13: 00007eff234f6038 R14: 00007eff234f5fa0 R15: 00007ffc2fbe62f8
[ 1382.887653][T26670]  </TASK>
[ 1382.889396][T26666] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1383.062839][T26666] ext4 filesystem being mounted at /226/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1383.092870][T26676] netlink: 68 bytes leftover after parsing attributes in process `syz.4.7049'.
[ 1383.173515][T26682] loop7: detected capacity change from 0 to 16384
[ 1383.179208][T26681] syzkaller0: entered promiscuous mode
[ 1383.189165][T26681] syzkaller0: entered allmulticast mode
[ 1383.234897][T22260] IPVS: starting estimator thread 0...
[ 1383.321681][T22681] IPVS: starting estimator thread 0...
[ 1383.353255][T26687] IPVS: using max 2208 ests per chain, 110400 per kthread
[ 1383.366129][T22741] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1383.379702][    C1] I/O error, dev loop7, sector 13824 op 0x0:(READ) flags 0x80700 phys_seg 16 prio class 1
[ 1383.394585][    C1] I/O error, dev loop7, sector 14080 op 0x0:(READ) flags 0x80700 phys_seg 26 prio class 1
[ 1383.404609][    C1] I/O error, dev loop7, sector 13824 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 1
[ 1383.414594][    C1] Buffer I/O error on dev loop7, logical block 1728, async page read
[ 1383.423054][T26688] loop7: detected capacity change from 16384 to 0
[ 1383.449822][T26699] loop1: detected capacity change from 0 to 512
[ 1383.454224][T26694] IPVS: using max 1920 ests per chain, 96000 per kthread
[ 1383.471298][T26699] msdos: Unknown parameter 'd�scard'
[ 1383.508532][T26701] loop3: detected capacity change from 0 to 128
[ 1383.974763][T26713] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1383.983518][T26713] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1384.740279][T26720] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7063'.
[ 1385.248744][T26730] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1385.257387][T26730] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1385.295803][T26735] EXT4-fs: Invalid want_extra_isize 3
[ 1385.429499][T26744] netlink: 36 bytes leftover after parsing attributes in process `syz.1.7072'.
[ 1385.547574][T26747] FAULT_INJECTION: forcing a failure.
[ 1385.547574][T26747] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1385.560785][T26747] CPU: 0 UID: 0 PID: 26747 Comm: syz.5.7067 Not tainted syzkaller #0 PREEMPT(full) 
[ 1385.560821][T26747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1385.560837][T26747] Call Trace:
[ 1385.560845][T26747]  <TASK>
[ 1385.560854][T26747]  __dump_stack+0x1d/0x30
[ 1385.560943][T26747]  dump_stack_lvl+0x95/0xd0
[ 1385.560973][T26747]  dump_stack+0x15/0x1b
[ 1385.561038][T26747]  should_fail_ex+0x263/0x280
[ 1385.561085][T26747]  should_fail+0xb/0x20
[ 1385.561107][T26747]  should_fail_usercopy+0x1a/0x20
[ 1385.561200][T26747]  _copy_to_user+0x20/0xa0
[ 1385.561229][T26747]  simple_read_from_buffer+0xb5/0x130
[ 1385.561334][T26747]  proc_fail_nth_read+0x10e/0x150
[ 1385.561368][T26747]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1385.561401][T26747]  vfs_read+0x1ab/0x7f0
[ 1385.561514][T26747]  ? __rcu_read_unlock+0x4e/0x70
[ 1385.561535][T26747]  ? __fget_files+0x184/0x1c0
[ 1385.561555][T26747]  ? mutex_lock+0x57/0x90
[ 1385.561682][T26747]  ksys_read+0xdc/0x1a0
[ 1385.561720][T26747]  __x64_sys_read+0x40/0x50
[ 1385.561748][T26747]  x64_sys_call+0x2886/0x3020
[ 1385.561782][T26747]  do_syscall_64+0x12c/0x370
[ 1385.561826][T26747]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1385.561891][T26747] RIP: 0033:0x7f9ff095cece
[ 1385.561912][T26747] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1385.561933][T26747] RSP: 002b:00007f9fef3acfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1385.561960][T26747] RAX: ffffffffffffffda RBX: 00007f9fef3ad6c0 RCX: 00007f9ff095cece
[ 1385.561979][T26747] RDX: 000000000000000f RSI: 00007f9fef3ad0a0 RDI: 000000000000000a
[ 1385.561991][T26747] RBP: 00007f9fef3ad090 R08: 0000000000000000 R09: 0000000000000000
[ 1385.562003][T26747] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1385.562015][T26747] R13: 00007f9ff0c16218 R14: 00007f9ff0c16180 R15: 00007fff1fbf6738
[ 1385.562097][T26747]  </TASK>
[ 1385.860919][T26750] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7074'.
[ 1386.126792][T26757] EXT4-fs: Invalid want_extra_isize 3
[ 1386.759896][T26768] set_capacity_and_notify: 6 callbacks suppressed
[ 1386.760378][T26768] loop3: detected capacity change from 0 to 1024
[ 1386.774328][T26767] loop5: detected capacity change from 0 to 1024
[ 1386.961273][T26777] loop2: detected capacity change from 0 to 7
[ 1386.974109][T26768] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1386.991933][T26767] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1387.040088][T22490] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1387.135244][T26781] loop0: detected capacity change from 0 to 128
[ 1387.158715][T26784] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7085'.
[ 1387.172832][T23744] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1387.478766][T26807] loop1: detected capacity change from 0 to 1024
[ 1387.502491][T26807] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1387.522673][T26810] loop5: detected capacity change from 0 to 128
[ 1387.623879][T22741] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1387.701528][T26814] loop1: detected capacity change from 0 to 1024
[ 1387.708488][T26814] EXT4-fs: Ignoring removed orlov option
[ 1387.735084][T26814] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1387.750466][   T28] kauditd_printk_skb: 65 callbacks suppressed
[ 1387.750559][   T28] audit: type=1400 audit(1771397212.171:929): avc:  denied  { setattr } for  pid=26813 comm="syz.1.7097" name="file0" dev="loop1" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 1387.780883][   T28] audit: type=1400 audit(1771397212.201:930): avc:  denied  { bind } for  pid=26813 comm="syz.1.7097" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 1387.954059][T26821] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7099'.
[ 1388.165610][T26841] loop5: detected capacity change from 0 to 1024
[ 1388.175484][T26841] EXT4-fs: Ignoring removed orlov option
[ 1388.205212][T26841] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1388.245827][T26848] loop0: detected capacity change from 0 to 128
[ 1388.361060][   T28] audit: type=1400 audit(1771397212.781:931): avc:  denied  { create } for  pid=26849 comm="syz.3.7111" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[ 1388.397312][   T28] audit: type=1400 audit(1771397212.811:932): avc:  denied  { ioctl } for  pid=26849 comm="syz.3.7111" path="socket:[96468]" dev="sockfs" ino=96468 ioctlcmd=0x5868 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[ 1388.442327][   T28] audit: type=1400 audit(1771397212.861:933): avc:  denied  { write } for  pid=26849 comm="syz.3.7111" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[ 1388.581789][T22741] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1388.643420][T26854] loop1: detected capacity change from 0 to 128
[ 1389.007601][T26873] EXT4-fs: Invalid want_extra_isize 3
[ 1389.058613][T26870] syzkaller0: entered promiscuous mode
[ 1389.064344][T26870] syzkaller0: entered allmulticast mode
[ 1389.072526][T22490] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1389.213285][T26880] EXT4-fs (loop5): orphan cleanup on readonly fs
[ 1389.222680][T26880] EXT4-fs error (device loop5): ext4_do_update_inode:5569: inode #16: comm syz.5.7121: corrupted inode contents
[ 1389.235715][T26880] loop5: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[ 1389.235991][T26880] EXT4-fs error (device loop5): ext4_dirty_inode:6450: inode #16: comm syz.5.7121: mark_inode_dirty error
[ 1389.245233][    C0] EXT4-fs (loop5): error count since last fsck: 1
[ 1389.245251][    C0] EXT4-fs (loop5): initial error at time 1771397213: ext4_do_update_inode:5569: inode 16
[ 1389.245290][    C0] EXT4-fs (loop5): last error at time 1771397213: ext4_do_update_inode:5569: inode 16
[ 1389.298470][T26880] loop5: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[ 1389.298754][T26880] EXT4-fs error (device loop5): ext4_do_update_inode:5569: inode #16: comm syz.5.7121: corrupted inode contents
[ 1389.357967][T26880] loop5: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[ 1389.359813][T26880] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #16: comm syz.5.7121: mark_inode_dirty error
[ 1389.388498][T26880] loop5: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[ 1389.388780][T26880] EXT4-fs error (device loop5): ext4_do_update_inode:5569: inode #16: comm syz.5.7121: corrupted inode contents
[ 1389.414929][T26880] loop5: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[ 1389.415318][T26880] EXT4-fs error (device loop5) in ext4_orphan_del:303: Corrupt filesystem
[ 1389.434248][T26880] loop5: lost filesystem error report for type 5 error -117
[ 1389.435232][T26880] EXT4-fs error (device loop5): ext4_do_update_inode:5569: inode #16: comm syz.5.7121: corrupted inode contents
[ 1389.622880][T26880] loop5: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[ 1389.627814][T26880] EXT4-fs error (device loop5): ext4_truncate:4587: inode #16: comm syz.5.7121: mark_inode_dirty error
[ 1389.849413][T26880] loop5: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[ 1389.850869][T26880] EXT4-fs error (device loop5) in ext4_process_orphan:345: Corrupt filesystem
[ 1389.911026][T26880] loop5: lost filesystem error report for type 5 error -117
[ 1389.921416][T26880] EXT4-fs (loop5): 1 truncate cleaned up
[ 1389.934808][   T57] Quota error (device loop5): do_check_range: Getting dqdh_entries 15 out of range 0-14
[ 1389.949148][   T57] EXT4-fs error (device loop5): ext4_release_dquot:7039: comm kworker/u8:4: Failed to release dquot type 1
[ 1389.961834][   T57] loop5: lost filesystem error report for type 5 error -117
[ 1389.970189][T26880] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1390.250481][T26909] EXT4-fs: Invalid want_extra_isize 3
[ 1391.147462][T22490] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1391.517068][T26945] 9pnet_fd: Insufficient options for proto=fd
[ 1391.579121][T26943] syzkaller0: entered promiscuous mode
[ 1391.608069][T26943] syzkaller0: entered allmulticast mode
[ 1392.397342][T26963] netlink: 'syz.1.7152': attribute type 11 has an invalid length.
[ 1392.764363][T26970] set_capacity_and_notify: 10 callbacks suppressed
[ 1392.764386][T26970] loop5: detected capacity change from 0 to 128
[ 1392.785882][T26972] loop4: detected capacity change from 0 to 512
[ 1392.806406][T26972] msdos: Unknown parameter 'd�scard'
[ 1392.923357][   T28] audit: type=1326 audit(1771397217.331:934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26971 comm="syz.4.7156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa141edc629 code=0x7ffc0000
[ 1392.992174][   T28] audit: type=1326 audit(1771397217.331:935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26971 comm="syz.4.7156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=97 compat=0 ip=0x7fa141edc629 code=0x7ffc0000
[ 1393.035667][   T28] audit: type=1326 audit(1771397217.331:936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26971 comm="syz.4.7156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa141edc629 code=0x7ffc0000
[ 1393.070017][   T28] audit: type=1326 audit(1771397217.331:937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26971 comm="syz.4.7156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7fa141edc629 code=0x7ffc0000
[ 1393.098100][   T28] audit: type=1326 audit(1771397217.331:938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26971 comm="syz.4.7156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa141edc629 code=0x7ffc0000
[ 1393.122596][   T28] audit: type=1326 audit(1771397217.331:939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26971 comm="syz.4.7156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa141edc629 code=0x7ffc0000
[ 1394.082829][T26992] 9pnet_fd: Insufficient options for proto=fd
[ 1394.916215][T27004] loop3: detected capacity change from 0 to 4096
[ 1394.925246][T27004] EXT4-fs: Invalid want_extra_isize 3
[ 1395.179430][T27018] netlink: 'syz.0.7174': attribute type 11 has an invalid length.
[ 1395.196085][T27020] loop4: detected capacity change from 0 to 1024
[ 1395.209445][T27020] EXT4-fs: Ignoring removed orlov option
[ 1395.261112][T27020] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1395.486573][T27047] loop1: detected capacity change from 0 to 128
[ 1395.785133][T23636] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1396.241365][T27056] loop1: detected capacity change from 0 to 1024
[ 1396.367235][T27056] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1396.640112][   T28] audit: type=1400 audit(1771397221.051:940): avc:  denied  { write } for  pid=27059 comm="syz.4.7188" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 1396.706232][T22741] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1396.726242][T27063] netlink: 'syz.0.7190': attribute type 11 has an invalid length.
[ 1397.631803][T27085] loop5: detected capacity change from 0 to 512
[ 1397.646112][  T307] ==================================================================
[ 1397.650190][T27089] loop3: detected capacity change from 0 to 128
[ 1397.654265][  T307] BUG: KCSAN: data-race in __stop_tty / n_tty_receive_char
[ 1397.654318][  T307] 
[ 1397.654324][  T307] write to 0xffff88810bad45bc of 1 bytes by task 27089 on cpu 1:
[ 1397.677957][  T307]  __stop_tty+0x36/0x90
[ 1397.682183][  T307]  n_tty_ioctl_helper+0x2d1/0x370
[ 1397.687276][  T307]  n_tty_ioctl+0x101/0x230
[ 1397.691739][  T307]  tty_ioctl+0x83e/0xb80
[ 1397.696020][  T307]  __se_sys_ioctl+0xce/0x140
[ 1397.700653][  T307]  __x64_sys_ioctl+0x43/0x50
[ 1397.705283][  T307]  x64_sys_call+0x1563/0x3020
[ 1397.710001][  T307]  do_syscall_64+0x12c/0x370
[ 1397.714645][  T307]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1397.720570][  T307] 
[ 1397.722919][  T307] read to 0xffff88810bad45bc of 1 bytes by task 307 on cpu 0:
[ 1397.730396][  T307]  n_tty_receive_char+0x3d/0x6d0
[ 1397.735377][  T307]  n_tty_receive_buf_standard+0x552/0x3f60
[ 1397.741229][  T307]  n_tty_receive_buf_common+0x7f3/0xc10
[ 1397.746839][  T307]  n_tty_receive_buf2+0x33/0x40
[ 1397.751741][  T307]  tty_ldisc_receive_buf+0x66/0xf0
[ 1397.756880][  T307]  tty_port_default_receive_buf+0x59/0x90
[ 1397.762635][  T307]  flush_to_ldisc+0x148/0x340
[ 1397.767352][  T307]  process_scheduled_works+0x4de/0x9e0
[ 1397.772848][  T307]  worker_thread+0x581/0x770
[ 1397.777481][  T307]  kthread+0x22a/0x280
[ 1397.781572][  T307]  ret_from_fork+0x150/0x360
[ 1397.786198][  T307]  ret_from_fork_asm+0x1a/0x30
[ 1397.791002][  T307] 
[ 1397.793340][  T307] value changed: 0x00 -> 0x01
[ 1397.798034][  T307] 
[ 1397.800372][  T307] Reported by Kernel Concurrency Sanitizer on:
[ 1397.806553][  T307] CPU: 0 UID: 0 PID: 307 Comm: kworker/u8:5 Not tainted syzkaller #0 PREEMPT(full) 
[ 1397.815967][  T307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1397.826047][  T307] Workqueue: events_unbound flush_to_ldisc
[ 1397.831888][  T307] ==================================================================
[ 1397.919677][T27085] EXT4-fs (loop5): orphan cleanup on readonly fs
[ 1397.956015][T27085] EXT4-fs error (device loop5): ext4_do_update_inode:5569: inode #16: comm syz.5.7200: corrupted inode contents
[ 1397.968241][T27085] loop5: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[ 1397.968567][T27085] EXT4-fs error (device loop5): ext4_dirty_inode:6450: inode #16: comm syz.5.7200: mark_inode_dirty error
[ 1397.977783][    C1] EXT4-fs (loop5): error count since last fsck: 1
[ 1397.977815][    C1] EXT4-fs (loop5): initial error at time 1771397222: ext4_do_update_inode:5569: inode 16
[ 1397.977853][    C1] EXT4-fs (loop5): last error at time 1771397222: ext4_do_update_inode:5569: inode 16
[ 1398.015827][T27085] loop5: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[ 1398.016019][T27085] EXT4-fs error (device loop5): ext4_do_update_inode:5569: inode #16: comm syz.5.7200: corrupted inode contents
[ 1398.037390][T27085] loop5: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[ 1398.037745][T27085] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #16: comm syz.5.7200: mark_inode_dirty error
[ 1398.058492][T27085] loop5: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[ 1398.058729][T27085] EXT4-fs error (device loop5): ext4_do_update_inode:5569: inode #16: comm syz.5.7200: corrupted inode contents
[ 1398.081092][T27085] loop5: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[ 1398.081297][T27085] EXT4-fs error (device loop5) in ext4_orphan_del:303: Corrupt filesystem
[ 1398.099410][T27085] loop5: lost filesystem error report for type 5 error -117
[ 1398.099671][T27085] EXT4-fs error (device loop5): ext4_do_update_inode:5569: inode #16: comm syz.5.7200: corrupted inode contents
[ 1398.119184][T27085] loop5: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[ 1398.119403][T27085] EXT4-fs error (device loop5): ext4_truncate:4587: inode #16: comm syz.5.7200: mark_inode_dirty error
[ 1398.140018][T27085] loop5: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[ 1398.140249][T27085] EXT4-fs error (device loop5) in ext4_process_orphan:345: Corrupt filesystem
[ 1398.158719][T27085] loop5: lost filesystem error report for type 5 error -117
[ 1398.159098][T27085] EXT4-fs (loop5): 1 truncate cleaned up
[ 1398.203708][T22937] Quota error (device loop5): do_check_range: Getting dqdh_entries 15 out of range 0-14
[ 1398.213656][T22937] EXT4-fs error (device loop5): ext4_release_dquot:7039: comm kworker/u8:12: Failed to release dquot type 1
[ 1398.225433][T22937] loop5: lost filesystem error report for type 5 error -117
[ 1398.226161][T27085] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1398.492814][T22490] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.