last executing test programs:

3.496237298s ago: executing program 2 (id=739):
r0 = syz_mount_image$ext4(&(0x7f00000007c0)='ext4\x00', &(0x7f00000006c0)='./file1\x00', 0x40, &(0x7f00000000c0)={[{@user_xattr}, {@nodioread_nolock}]}, 0x5, 0x576, &(0x7f0000000140)="$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")
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000a40)={0x11, 0x17, &(0x7f0000000800)=@raw=[@tail_call={{0x18, 0x2, 0x1, 0x0, 0x1}}, @map_val={0x18, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0xe08f}, @generic={0x5, 0x9, 0x3, 0xffff, 0x3}, @printk={@u, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1}}, @map_idx_val={0x18, 0x9, 0x6, 0x0, 0xc, 0x0, 0x0, 0x0, 0x4}, @tail_call={{0x18, 0x2, 0x1, 0x0, r0}}], &(0x7f0000000700)='syzkaller\x00', 0x10000, 0xf1, &(0x7f00000008c0)=""/241, 0x41000, 0x23, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000740)={0x1, 0x1}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f00000009c0)=[r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0xffffffffffffffff], &(0x7f0000000a00)=[{0x4, 0x2, 0x10, 0x3}, {0x2, 0x3, 0x4, 0x2}], 0x10, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={0x0, r1, 0x0, 0x2}, 0x18)
r2 = socket$inet6(0xa, 0x80002, 0x88)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_emit_ethernet(0x83, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r3, &(0x7f0000000780)="c86865718f13b6253132917de50893b2389f396dfb8d670798a35fc1c88ac2e737a8571a7a663f6c", 0x28, 0x4fed0)
sendfile(r3, r3, 0x0, 0xe3aa6ea)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4}, 0x50)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0x1}, 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b703000021000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x6, 0x4, 0x1}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000008c0)={{r6}, &(0x7f0000000840), &(0x7f0000000880)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f00000007c0)='./file1\x00', 0xffffffffffffff9c, &(0x7f00000005c0)='./file3\x00', 0x4)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r7, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c04, &(0x7f0000000340), 0x1, 0x779, &(0x7f0000001900)="$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")
ioctl$EXT4_IOC_SWAP_BOOT(r7, 0x6611)

2.97082299s ago: executing program 2 (id=743):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000080000085000000d0000000a50000009700000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000000)='sys_enter\x00', r1, 0x0, 0x680}, 0x18)
waitid(0x1, 0x0, 0x0, 0x4, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
socketpair(0x6, 0x6, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCX25CALLACCPTAPPRV(r3, 0x89e8)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000003000), r2)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000003040)={'batadv0\x00', <r5=>0x0})
sendmsg$BATADV_CMD_TP_METER(r2, &(0x7f0000003140)={0x0, 0x0, &(0x7f0000003100)={&(0x7f00000001c0)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002bbd7000fbdbdf25020000000a000900aaaaaaaaaa44000008000300", @ANYRES32=r5, @ANYBLOB='\b\x00\v'], 0x30}, 0x1, 0x0, 0x0, 0x20000050}, 0x20040084)

2.85286542s ago: executing program 2 (id=745):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_open_dev$vcsa(&(0x7f00000001c0), 0x7fffffffffffffff, 0x101000)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x1b, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000030000000000000020bf0900000000000055090100000000b702000001000000850000008f"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000940)={'filter\x00', 0x7, 0x4, 0x3a0, 0x0, 0x1d0, 0x0, 0x2b8, 0x2b8, 0x2b8, 0x4, &(0x7f0000000280), {[{{@uncond, 0xc0, 0xe8}, @unspec=@NFQUEUE1={0x28, 'NFQUEUE\x00', 0x1, {0x1, 0xfff}}}, {{@uncond, 0xc0, 0xe8}, @unspec=@STANDARD={0x28}}, {{@uncond, 0xc0, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00', 0x0, {0x1}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x3f0)
sendmsg$netlink(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000220041"], 0x1c}], 0x1}, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000080000000c"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002300000018110000", @ANYRES32=r2], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r3}, 0x18)
ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, &(0x7f0000000440)={'veth0\x00', 0xba9})
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="4c000000020601080000000000000000000000400500010006200000050005000a00000005000400000000000900020073797a310000000011000300686173683a69702c6d61726b"], 0x4c}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)={0x4c, 0x9, 0x6, 0x401, 0x0, 0x0, {0x5, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x24, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @local}}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x2}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x4c}}, 0x4000080)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000400)={0x24, 0x3, 0x6, 0x3, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x24044011}, 0x20000880)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x2}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x4, 0x0, 0x7ffc0005}]})
set_robust_list(&(0x7f00000003c0)={0x0, 0xfffffffffffffff7}, 0x18)
dup3(r0, r1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000800)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xe4, 0xe4, 0x6, [@enum64={0xc, 0x4, 0x0, 0x13, 0x0, 0x9, [{0x1, 0x8000, 0x8}, {0xb, 0x5, 0xa}, {0xc, 0x800, 0x5cbc}, {0x3, 0x80000000, 0xffff}]}, @type_tag={0xd, 0x0, 0x0, 0x12, 0x5}, @int={0xe, 0x0, 0x0, 0x1, 0x0, 0x58, 0x0, 0x68, 0x5}, @func={0x4, 0x0, 0x0, 0xc, 0x2}, @enum64={0x4, 0x3, 0x0, 0x13, 0x1, 0x6, [{0xa, 0xf66, 0xd268}, {0x8, 0xb2cb394, 0x10000}, {0x3, 0xe63f, 0x40}]}, @func_proto={0x0, 0x5, 0x0, 0xd, 0x0, [{0xb, 0x4}, {0x8, 0x1}, {0x2}, {0x4}, {0x4, 0x3}]}, @var={0x10, 0x0, 0x0, 0xe, 0x3, 0x1}, @float={0x4, 0x0, 0x0, 0x10, 0x4}]}, {0x0, [0x30, 0x61, 0x5f, 0x0]}}, &(0x7f0000001180)=""/4096, 0x102, 0x1000, 0x0, 0xfffffffd, 0x10000}, 0x28)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000200)={'wlan0\x00'})
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001140)={&(0x7f0000000080)='sched_switch\x00', r7, 0x0, 0x10001}, 0x14)
r8 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x800)
ioctl$SG_GET_VERSION_NUM(r8, 0x2284, &(0x7f0000000080))

2.799447814s ago: executing program 2 (id=749):
openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x80000, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb01001800000000000000100000001000000006000000020000000000000e0300000e00000000005f5f307f00d273a2670f77e0c9a1da62771e4e9665543ce6e02a144faa32e4b2ad6fc2c2f549141f"], 0x0, 0x2e, 0x0, 0x1, 0xc1e}, 0x28)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r2}, 0x10)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)="d8000000100081046881f782db44b9090000000b01000000e8fe55a1180015000600140000000012080004003e000000a80016000a00001c06000200036010fab94dcf5c0461c1a6ced67f6f94007134cf6ee08000a0e408e8d8ef52878516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d95322fe7c9ffeffffff16a4683f1aeb4edbb57a5025ccca9e02360db70100000040fad95667e006dcffff951f215ce3bb9ad809d5e1cace81c639df2d04c343eb7a9db9596bb727ed0bffece0b42a9ecbee5de6ccd4", 0xd8}], 0x1}, 0x20004080)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r4}, 0x10)
setitimer(0x0, 0x0, 0x0)

2.702745382s ago: executing program 2 (id=752):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2d}})
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='neigh_create\x00'}, 0x18)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0x8, &(0x7f0000002a00)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x800, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x1, 0x5}, 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, r2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r3}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, 0x2}, 0x94)
r4 = socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00'}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYRESHEX=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffffd}, 0x18)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000a00)=ANY=[@ANYBLOB="442300003b0007010100000000000000017c00000400fc802b2301"], 0x2344}, 0x1, 0x0, 0x0, 0x20000000}, 0x4c000)

2.393206967s ago: executing program 2 (id=756):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r1, 0x29, 0xc9, &(0x7f0000000000)=0x5, 0x4)
bind$inet6(r1, &(0x7f0000000280)={0xa, 0x4e22, 0xd, @loopback, 0x6}, 0x1c)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000080)=0x40, 0x4)
connect$inet6(r1, &(0x7f0000000140)={0xa, 0x4e22, 0x23, @loopback, 0x23}, 0x1c)
sendmmsg$inet6(r1, &(0x7f00000012c0)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000440)="1d3b", 0x2}], 0x1}}, {{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000a00)="dd2f36e83faa56d51540cf7c5f58b61006c8677445bcfdd885a8c03611cf78c2b746cbdb", 0x24}, {&(0x7f0000000a40)="d122e32587b4d7078a1b9626feffdbe50ca1ab34e9d3a25b03bf5fb1efb3095b77b831d137d67a447c06bac419fc4e494926b999e53628d91d5bab8e181e03cdbd626c285353305ad977270ddb9c9260d8ec41cb82ec252ef6eb7cd6ceeaa3dc2722a9bb7d17ce07f1329ded096b5175077b8bd3c866e5a6d20bbbd2cfeb9693c9957632be4aada0efbb818d25e35507f19aee422f0e2dc94badb054960796fcb59789b51bd957bef3002a22aaaf71", 0xaf}, {&(0x7f0000000b00)="7efb15c0927062496a0395599b05e9b99c7e5b51ab66bc64161370f0d4eb7f30ffa4e9d06965dca5b237786e64eaa32657878d0f9d02a935f7b48bd7862216e07d355426a4d4f65aafe768af54a0b16fbda99ece25ad09b66250db5145df7a71479e0bc97fa43d3a654513321e4311da5f6859865a9d4bfad4416354c26c3b3517cc63eacd721770d30b52b57e50bb7f4b4cf9aca6c874270024bd4c29f225108fc8f2556bc4786b70888ab7622f837a3564e5cdcf3d5d3560c5", 0xba}, {&(0x7f0000000bc0)="73f2ec1fc891995d5e8a9405bf0ac3b5d36bd8ad1b0d4e60711deb99b42c641266b2697bc3e582e50e7d161d63ec0d16fcaecdcd6091dfa25e9e1fada4bd3f5a8198a4ae9897b6e99dba8b6f05f51391354e5e65e03b6acb68319d9e1842c314fbc95534e14ebd9a06a391a0", 0x6c}], 0x4}}], 0x2, 0x4000001)
r2 = dup(r1)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0x82}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
epoll_pwait2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
pipe(&(0x7f00000001c0)={<r3=>0xffffffffffffffff})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000940)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
pipe(&(0x7f0000000340)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r4, 0x0, r5, 0x0, 0xf3a, 0x0)
write$cgroup_pid(r5, &(0x7f0000000000), 0xffffff98)
splice(r3, 0x0, r5, 0x0, 0x80, 0x4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x6, 0x12, &(0x7f0000000580)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x8}, [@func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffc}, @tail_call={{0x18, 0x2, 0x1, 0x0, r2}}, @map_val={0x18, 0x5, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0x1}, @tail_call={{0x18, 0x2, 0x1, 0x0, r2}}, @map_fd={0x18, 0x6, 0x1, 0x0, r2}]}, &(0x7f0000000040)='GPL\x00', 0x20, 0x6b, &(0x7f0000000200)=""/107, 0x41100, 0x3c, '\x00', 0x0, 0x25, r3, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000100)={0x5, 0x10, 0x7ff, 0x2}, 0x10, 0x0, 0x0, 0x4, 0x0, &(0x7f0000000180)=[{0x5, 0x1, 0x7, 0x2}, {0x0, 0x5, 0x10, 0x5}, {0x1, 0x5, 0x4, 0xc}, {0x5, 0x4, 0xa, 0x5}], 0x10, 0x8}, 0x94)

2.287338776s ago: executing program 1 (id=762):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = openat$binfmt(0xffffffffffffff9c, 0x0, 0x41, 0x1ff)
write$binfmt_aout(r1, &(0x7f0000000340)={{0x107, 0x3, 0x7, 0x357, 0x85, 0x8, 0x1e8, 0x5}, "78d5c09c9efd4734ee08d1e0172085bead3fc1b5dff8f5d121abadb9f696aeef69665dea3eff792e936277c462e4fb54b5797cb611ca398376e0e6e4950e6ba320be32bb0da1043cec3aac3ad7dc5224626c80de786e7a665b474d379b9be0f1c66410af9ef48ae2edf5cc5cbc7ca41a5baad7ea3a280cd593bc1eaaddbd616b5d3728aa1fc143cdc93ba16993f720d13933e2abbc8a08ed"}, 0xb8)
waitid(0x0, r0, 0x0, 0x4, 0x0)
r2 = syz_pidfd_open(r0, 0x0)
pidfd_send_signal(r2, 0x2, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000600)='./file0\x00', 0xc8d0, &(0x7f0000000140)=ANY=[@ANYRES8=0x0], 0x1, 0x30e, &(0x7f0000000f00)="$eJzs3E1rE10UwPGTNEnTlHayeHhEQXrRjW6GNu7FIC2IAUttxBcQp81EQ8akZEIlIrZduXEhfggXpcvuCtov0I07V27cdSO4sAtxJDOTl7aJrWnSWPv/QZlD7j0z9+Y24dyBzPbdN0/zWVvPGmUJRpUERER2ROISlJqAfwy6cUSaLcvl4W+fzt++d/9mMpWanFFqKjl7JaGUGh17/+zFkN9tY1C24g+3vya+bP2/dXb75+yTnK1ytioUy8pQc8XPZWPOMlUmZ+d1paYt07BNlSvYZslrd5ZELFNlreLCQkUZhcxIbKFk2rYyChWVNyuqXFTlUkUZj41cQem6rkZigoOkV2dmjGSHyfNdHgx6pFRKGgMiMrSvJb3alwEBAIC+8uv/erUfrJb0ndT/oZb1/9qFzfLwnfVRv/7fiFTrf5Gm+v9R41ymygTr9X9URBr1f9HbH3S7/t9fEZ1sr3cvjjhOPYy06n+k+h8nRLX+j/mfX9fKg7VxN6D+BwAAAAAAAAAAAAAAAAAAAADgJNhxHM1xHM07DvivOtqgiETdX5B47X0eJnpk9/o3/lj/06Hx4I7QqIj1ajG9mPaOfodNEbHElHHR5If7/+CrxpFl5XZSVXH5YC35+UuLae+7JJmVnJs/IZrE9+Y7ztSN1OSE8uzOD0usOT8hmvzXOj+xNz9cPUbk0sWmfF00+TgvRbEk4/8yrpb/ckKp67dSe64/5PYDAAAAAOBfoKu6+v59sLld39/u7Y+9dm9/HZLW9we8/fV4y/19SM6F+jVrAAAAAABOF7vyPG9YllnqUbAiIj2+RJugNsPDZtUekNumT0AC7Zq6ENQu3ll6dWxdG0/4UO9YsKOhjkX+cFFaBrXbRu36yHQnZ3Y0kaO+h2fevvv++z7enTGRw5zw6nr0gJl2GkQOmmn42L6AAAAAABybRtFfe+VafwcEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMApdByP4uv3HAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIC/xa8AAAD//46ZAFE=")
r3 = socket$kcm(0x10, 0x2, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b34, &(0x7f0000000000)={'wlan1\x00', @random="0000230c1100"})
write$cgroup_subtree(r3, &(0x7f0000000000)=ANY=[@ANYBLOB="25390000290003"], 0x33fe0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x12)
write(r5, &(0x7f0000004200)='t', 0x1)
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00')
preadv(r6, &(0x7f0000001880)=[{&(0x7f0000001a80)=""/102400, 0xfffffffffffffe15}], 0x1, 0x3fe, 0x6)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r6, 0x84, 0x71, &(0x7f00000001c0), &(0x7f0000000200)=0x8)
sendfile(r5, r4, 0x0, 0x3ffff)
getsockopt$IP_VS_SO_GET_SERVICE(r6, 0x0, 0x483, &(0x7f0000000240), &(0x7f0000000080)=0x68)
r7 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r7, 0x29, 0x20, &(0x7f0000000180)={@loopback={0x200000000000000}, 0x800, 0x0, 0x3, 0x1}, 0x20)
setsockopt$inet6_int(r7, 0x29, 0x1000000000021, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r7, &(0x7f0000000100)={0xa, 0x0, 0x380000, @loopback={0x80fe}}, 0x1c)
sendfile(r5, r4, 0x0, 0x7ffff000)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300))
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
r8 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r8, 0x84, 0x64, &(0x7f0000000900)=[@in={0x2, 0x4e23, @loopback}, @in6={0xa, 0x0, 0x0, @loopback, 0x7ff}], 0x2c)

2.266985937s ago: executing program 0 (id=763):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = openat$binfmt(0xffffffffffffff9c, 0x0, 0x41, 0x1ff)
write$binfmt_aout(r1, &(0x7f0000000340)={{0x107, 0x3, 0x7, 0x357, 0x85, 0x8, 0x1e8, 0x5}, "78d5c09c9efd4734ee08d1e0172085bead3fc1b5dff8f5d121abadb9f696aeef69665dea3eff792e936277c462e4fb54b5797cb611ca398376e0e6e4950e6ba320be32bb0da1043cec3aac3ad7dc5224626c80de786e7a665b474d379b9be0f1c66410af9ef48ae2edf5cc5cbc7ca41a5baad7ea3a280cd593bc1eaaddbd616b5d3728aa1fc143cdc93ba16993f720d13933e2abbc8a08ed"}, 0xb8)
waitid(0x0, r0, 0x0, 0x4, 0x0)
r2 = syz_pidfd_open(r0, 0x0)
pidfd_send_signal(r2, 0x2, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000600)='./file0\x00', 0xc8d0, &(0x7f0000000140)=ANY=[@ANYRES8=0x0], 0x1, 0x30e, &(0x7f0000000f00)="$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")
r3 = socket$kcm(0x10, 0x2, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b34, &(0x7f0000000000)={'wlan1\x00', @random="0000230c1100"})
write$cgroup_subtree(r3, &(0x7f0000000000)=ANY=[@ANYBLOB="25390000290003"], 0x33fe0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x12)
write(r5, &(0x7f0000004200)='t', 0x1)
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00')
preadv(r6, &(0x7f0000001880)=[{&(0x7f0000001a80)=""/102400, 0xfffffffffffffe15}], 0x1, 0x3fe, 0x6)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r6, 0x84, 0x71, &(0x7f00000001c0), &(0x7f0000000200)=0x8)
sendfile(r5, r4, 0x0, 0x3ffff)
getsockopt$IP_VS_SO_GET_SERVICE(r6, 0x0, 0x483, &(0x7f0000000240), &(0x7f0000000080)=0x68)
r7 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r7, 0x29, 0x1000000000021, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r7, &(0x7f0000000100)={0xa, 0x0, 0x380000, @loopback={0x80fe}}, 0x1c)
sendfile(r5, r4, 0x0, 0x7ffff000)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300))
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x42, 0x1c4)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x11070b32}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$inet6_sctp(0xa, 0x1, 0x84)

1.49586952s ago: executing program 4 (id=769):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x387131d88c629875, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001240)={&(0x7f0000000200)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'ipvlan0\x00', <r3=>0x0})
sendmsg$ETHTOOL_MSG_DEBUG_SET(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000fedbdf25080000001800028014000380100001800400030008000100050000000c00018008000100", @ANYRES32=r3], 0x38}, 0x1, 0x0, 0x0, 0x4000814}, 0x0)

1.380247909s ago: executing program 4 (id=770):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000160000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x6}, 0x18)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x1008c54, &(0x7f0000000640)={[{@fat=@usefree}, {@iocharset={'iocharset', 0x3d, 'cp737'}}, {@numtail}, {@shortname_win95}, {@shortname_mixed}, {@uni_xlateno}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'cp865'}}, {@fat=@umask={'umask', 0x3d, 0x7}}, {@utf8}, {@shortname_mixed}, {@utf8no}, {@utf8no}, {@fat=@codepage={'codepage', 0x3d, '861'}}, {@numtail}, {@utf8}, {@shortname_lower}, {@utf8no}]}, 0x1, 0x310, &(0x7f0000000200)="$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")
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000006000000000000000000850000000700000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, 0x2}, 0x94)

1.379509329s ago: executing program 1 (id=771):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000200), &(0x7f0000000240)=r1}, 0x20)
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x7, &(0x7f0000000240)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000380)=[{0x200000000006, 0x1, 0x7, 0x7ffc1ffb}]})

1.3673765s ago: executing program 0 (id=772):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0xfffffffffffffffe}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x1, 0x2, &(0x7f0000000140)=ANY=[@ANYBLOB], &(0x7f00000000c0)='GPL\x00'}, 0x94)

1.324236973s ago: executing program 1 (id=773):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_open_dev$vcsa(&(0x7f00000001c0), 0x7fffffffffffffff, 0x101000)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x1b, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000030000000000000020bf0900000000000055090100000000b702000001000000850000008f"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000940)={'filter\x00', 0x7, 0x4, 0x3a0, 0x0, 0x1d0, 0x0, 0x2b8, 0x2b8, 0x2b8, 0x4, &(0x7f0000000280), {[{{@uncond, 0xc0, 0xe8}, @unspec=@NFQUEUE1={0x28, 'NFQUEUE\x00', 0x1, {0x1, 0xfff}}}, {{@uncond, 0xc0, 0xe8}, @unspec=@STANDARD={0x28}}, {{@uncond, 0xc0, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00', 0x0, {0x1}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x3f0)
sendmsg$netlink(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000220041"], 0x1c}], 0x1}, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000080000000c"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002300000018110000", @ANYRES32=r2], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r3}, 0x18)
ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, &(0x7f0000000440)={'veth0\x00', 0xba9})
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="4c000000020601080000000000000000000000400500010006200000050005000a00000005000400000000000900020073797a310000000011000300686173683a69702c6d61726b"], 0x4c}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)={0x4c, 0x9, 0x6, 0x401, 0x0, 0x0, {0x5, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x24, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @local}}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x2}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x4c}}, 0x4000080)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000400)={0x24, 0x3, 0x6, 0x3, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x24044011}, 0x20000880)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x2}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x4, 0x0, 0x7ffc0005}]})
set_robust_list(&(0x7f00000003c0)={0x0, 0xfffffffffffffff7}, 0x18)
dup3(r0, r1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000800)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xe4, 0xe4, 0x6, [@enum64={0xc, 0x4, 0x0, 0x13, 0x0, 0x9, [{0x1, 0x8000, 0x8}, {0xb, 0x5, 0xa}, {0xc, 0x800, 0x5cbc}, {0x3, 0x80000000, 0xffff}]}, @type_tag={0xd, 0x0, 0x0, 0x12, 0x5}, @int={0xe, 0x0, 0x0, 0x1, 0x0, 0x58, 0x0, 0x68, 0x5}, @func={0x4, 0x0, 0x0, 0xc, 0x2}, @enum64={0x4, 0x3, 0x0, 0x13, 0x1, 0x6, [{0xa, 0xf66, 0xd268}, {0x8, 0xb2cb394, 0x10000}, {0x3, 0xe63f, 0x40}]}, @func_proto={0x0, 0x5, 0x0, 0xd, 0x0, [{0xb, 0x4}, {0x8, 0x1}, {0x2}, {0x4}, {0x4, 0x3}]}, @var={0x10, 0x0, 0x0, 0xe, 0x3, 0x1}, @float={0x4, 0x0, 0x0, 0x10, 0x4}]}, {0x0, [0x30, 0x61, 0x5f, 0x0]}}, &(0x7f0000001180)=""/4096, 0x102, 0x1000, 0x0, 0xfffffffd, 0x10000}, 0x28)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000200)={'wlan0\x00'})
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001140)={&(0x7f0000000080)='sched_switch\x00', r7, 0x0, 0x10001}, 0x14)
r8 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x800)
ioctl$SG_GET_VERSION_NUM(r8, 0x2284, &(0x7f0000000080))

1.323681133s ago: executing program 4 (id=774):
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0500000004000000040000000f"], 0x50)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
bpf$PROG_BIND_MAP(0x23, 0x0, 0x0)

1.315771784s ago: executing program 0 (id=775):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b7040000000000008500000001000000"], &(0x7f0000000000)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1, 0x0, 0x2}, 0x18)
socket$packet(0x11, 0xa, 0x300)
socket$packet(0x11, 0xa, 0x300)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="219a53f271a76d2608004c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

1.182570595s ago: executing program 1 (id=776):
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x3, 0xc, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="07e50000080000ef52000000d9"], 0x50)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80a, &(0x7f00000009c0)={[{@barrier_val}, {@init_itable}, {@block_validity}, {@nobarrier}, {@grpjquota}, {@inlinecrypt}]}, 0x1, 0x79b, &(0x7f0000000180)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x1dc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000040)=ANY=[@ANYBLOB, @ANYRESHEX, @ANYBLOB="0000000000000000b702000002000000850000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x26, '\x00', 0x0, @fallback=0x14, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x24, 0x0, 0x0)
shutdown(r2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0x0, r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
openat(0xffffffffffffff9c, 0x0, 0x105042, 0x40)
rt_sigtimedwait(0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_ro(r3, &(0x7f0000000180)='freezer.parent_freezing\x00', 0x0, 0x0)
preadv2(r4, &(0x7f0000000280)=[{&(0x7f0000000480)=""/213, 0xd5}], 0x1, 0x0, 0x0, 0x0)
ioperm(0x9, 0x9, 0x7)

1.069830894s ago: executing program 0 (id=777):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0100000004000000080000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa802, 0x0)
close(r3)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0x0, 0xfffffffd, {0x0, 0x0, 0x0, r5, {0x1, 0xd}, {}, {0x8, 0xfff1}}}, 0x24}}, 0x40004)
recvmmsg(r6, &(0x7f0000001480)=[{{0x0, 0x0, &(0x7f0000000bc0)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f0000000540)=""/189, 0xbd}, {&(0x7f0000001ac0)=""/4096, 0x1000}, {&(0x7f0000000940)=""/74, 0x4a}], 0x4, 0x0, 0xe58}, 0x5d}], 0x1b00, 0x10022, 0x0)

1.057543365s ago: executing program 1 (id=778):
getresuid(&(0x7f0000000000)=<r0=>0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000540)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x20a0403, &(0x7f00000003c0)={[{@minixdf}, {@min_batch_time}, {@init_itable_val={'init_itable', 0x3d, 0xfff}}, {@barrier}, {@nodiscard}, {@quota}], [{@fowner_lt}, {@dont_measure}, {@dont_appraise}, {@fowner_eq={'fowner', 0x3d, r0}}, {@obj_role={'obj_role', 0x3d, 'nodiscarf\xa3\x0f\'\xd1Rm'}}, {@mask={'mask', 0x3d, '^MAY_APPEND'}}, {@context={'context', 0x3d, 'unconfined_u'}}, {@fsname}, {@hash}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
r1 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4600, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x2000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x111, &(0x7f0000000340)={0x0, 0x4db1, 0x2}, 0x0, 0x0)
setsockopt$bt_hci_HCI_TIME_STAMP(0xffffffffffffffff, 0x0, 0x3, 0x0, 0x0)
prctl$PR_TASK_PERF_EVENTS_DISABLE(0x1f)
syz_clone(0x8d002240, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00')
r3 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX_OLD(r3, 0x84, 0x6b, &(0x7f00000003c0)=[@in={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10)
r4 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_DAEMON(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01000000000000000000090000003800038014000200626174616476300000000000000000000800010002000000080003000000000006000400"], 0x4c}}, 0x0)
sendmsg$IPVS_CMD_GET_SERVICE(r2, &(0x7f00000191c0)={&(0x7f0000019080)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000019180)={&(0x7f00000190c0)={0xa8, r4, 0x400, 0x70bd2b, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DAEMON={0x50, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @remote}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'veth1_virt_wifi\x00'}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x2}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x80}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @private2}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1}, @IPVS_CMD_ATTR_DAEMON={0x3c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @loopback}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @remote}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x1}]}]}, 0xa8}, 0x1, 0x0, 0x0, 0x10000}, 0x4)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'veth0_vlan\x00'})
pread64(r2, &(0x7f0000000080)=""/102356, 0x18fd4, 0xc2a)
readv(r1, &(0x7f0000019400)=[{&(0x7f0000019240)=""/77, 0x4d}, {&(0x7f00000192c0)=""/185, 0xb9}, {&(0x7f0000019380)=""/101, 0x65}], 0x3)
r7 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42}, 0xb0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
r9 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./bus\x00', 0x289c2, 0x1)
fcntl$setlease(r9, 0x400, 0x1)
fremovexattr(r9, &(0x7f0000000040)=@known='system.posix_acl_default\x00')
write$RDMA_USER_CM_CMD_SET_OPTION(r7, &(0x7f0000000540)={0xe, 0x18, 0xfa00, @id_resuseaddr={0x0, 0xffffffffffffffff, 0x0, 0x7ffffffe}}, 0x20)
newfstatat(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.cpu/cgroup.procs\x00', &(0x7f0000000440), 0x6000)

998.817649ms ago: executing program 4 (id=779):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb5a551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000080)=0xf3e, 0x62)
recvmmsg(r2, &(0x7f0000001c40)=[{{0x0, 0x0, &(0x7f0000001780)=[{&(0x7f0000000580)=""/4096, 0x1000}], 0x12}}], 0x4000000000000a8, 0x0, 0x0)

934.239595ms ago: executing program 0 (id=780):
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x1008a, &(0x7f0000000400)={[{@nomblk_io_submit}, {@usrjquota, 0x22}, {@errors_continue}, {@noload}, {@nomblk_io_submit}, {@grpjquota, 0x22}, {@errors_continue}, {@errors_remount}, {@jqfmt_vfsv1}]}, 0xfe, 0x455, &(0x7f0000000fc0)="$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")
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r0, &(0x7f0000000300)=ANY=[], 0x15)
r1 = dup(r0)
write$P9_RLERRORu(r1, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r1, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="18010000008000000000000000000004850000006d00000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x25, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
unshare(0x22020600)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r3, &(0x7f0000000340), 0x0}, 0x20)
socket$kcm(0x10, 0x2, 0x0)
socketpair(0x1, 0x2, 0x0, &(0x7f0000000000))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
socket$kcm(0xa, 0x5, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x26e1, 0x0)
socket$kcm(0x10, 0x400000002, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000640)={0x2, 0x80, 0xee, 0x0, 0x0, 0x0, 0x0, 0x400000000000000b, 0x954b, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x1, @perf_config_ext={0x76, 0x1ef7}, 0x11efa, 0x4, 0x98, 0x0, 0x2, 0xfffff271, 0xfffc, 0x0, 0x0, 0x0, 0x24}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.numa_stat\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2405, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0xd)
socket$kcm(0x10, 0x400000002, 0x0)
socket$kcm(0xa, 0x5, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000009a40)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000040900010073797a30000000002c000000030a01080000000000000000010000000900030073797a32000000000900010073797a300000000050000000060a010400000000000000000100000008000b40000000000900010073797a30000000002800048024000180090001006d6574610000000014000280080001400000001208000240000000", @ANYRES16=r4], 0xc4}}, 0x0)

707.923113ms ago: executing program 0 (id=782):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = openat$binfmt(0xffffffffffffff9c, 0x0, 0x41, 0x1ff)
write$binfmt_aout(r1, &(0x7f0000000340)={{0x107, 0x3, 0x7, 0x357, 0x85, 0x8, 0x1e8, 0x5}, "78d5c09c9efd4734ee08d1e0172085bead3fc1b5dff8f5d121abadb9f696aeef69665dea3eff792e936277c462e4fb54b5797cb611ca398376e0e6e4950e6ba320be32bb0da1043cec3aac3ad7dc5224626c80de786e7a665b474d379b9be0f1c66410af9ef48ae2edf5cc5cbc7ca41a5baad7ea3a280cd593bc1eaaddbd616b5d3728aa1fc143cdc93ba16993f720d13933e2abbc8a08ed"}, 0xb8)
waitid(0x0, r0, 0x0, 0x4, 0x0)
r2 = syz_pidfd_open(r0, 0x0)
pidfd_send_signal(r2, 0x2, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000600)='./file0\x00', 0xc8d0, &(0x7f0000000140)=ANY=[@ANYRES8=0x0], 0x1, 0x30e, &(0x7f0000000f00)="$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")
r3 = socket$kcm(0x10, 0x2, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b34, &(0x7f0000000000)={'wlan1\x00', @random="0000230c1100"})
write$cgroup_subtree(r3, &(0x7f0000000000)=ANY=[@ANYBLOB="25390000290003"], 0x33fe0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x12)
write(r5, &(0x7f0000004200)='t', 0x1)
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00')
preadv(r6, &(0x7f0000001880)=[{&(0x7f0000001a80)=""/102400, 0xfffffffffffffe15}], 0x1, 0x3fe, 0x6)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r6, 0x84, 0x71, &(0x7f00000001c0), &(0x7f0000000200)=0x8)
sendfile(r5, r4, 0x0, 0x3ffff)
getsockopt$IP_VS_SO_GET_SERVICE(r6, 0x0, 0x483, &(0x7f0000000240), &(0x7f0000000080)=0x68)
r7 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r7, 0x29, 0x20, &(0x7f0000000180)={@loopback={0x200000000000000}, 0x800, 0x0, 0x3, 0x1}, 0x20)
setsockopt$inet6_int(r7, 0x29, 0x1000000000021, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r7, &(0x7f0000000100)={0xa, 0x0, 0x380000, @loopback={0x80fe}}, 0x1c)
sendfile(r5, r4, 0x0, 0x7ffff000)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300))
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x11070b32}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r8 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r8, 0x84, 0x64, &(0x7f0000000900)=[@in={0x2, 0x4e23, @loopback}, @in6={0xa, 0x0, 0x0, @loopback, 0x7ff}], 0x2c)

640.655629ms ago: executing program 3 (id=786):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2d}})
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='neigh_create\x00'}, 0x18)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0x8, &(0x7f0000002a00)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x800, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x1, 0x5}, 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, r2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r3}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, 0x2}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[], 0x50)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000a00)=ANY=[@ANYBLOB="442300003b0007010100000000000000017c00000400fc802b2301"], 0x2344}, 0x1, 0x0, 0x0, 0x20000000}, 0x4c000)

493.898071ms ago: executing program 3 (id=787):
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0x2}, 0x18)
socket$packet(0x11, 0xa, 0x300)
socket$packet(0x11, 0xa, 0x300)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="219a53f271a76d2608004c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

362.924201ms ago: executing program 3 (id=788):
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x3, 0xc, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="07e50000080000ef52000000d9"], 0x50)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80a, &(0x7f00000009c0)={[{@barrier_val}, {@init_itable}, {@block_validity}, {@nobarrier}, {@grpjquota}, {@inlinecrypt}]}, 0x1, 0x79b, &(0x7f0000000180)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x1dc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000040)=ANY=[@ANYBLOB, @ANYRESHEX, @ANYBLOB="0000000000000000b702000002000000850000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x26, '\x00', 0x0, @fallback=0x14, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x24, 0x0, 0x0)
shutdown(r2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0x0, r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
openat(0xffffffffffffff9c, 0x0, 0x105042, 0x40)
rt_sigtimedwait(0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_ro(r3, &(0x7f0000000180)='freezer.parent_freezing\x00', 0x0, 0x0)
preadv2(r4, &(0x7f0000000280)=[{&(0x7f0000000480)=""/213, 0xd5}], 0x1, 0x0, 0x0, 0x0)
ioperm(0x9, 0x9, 0x7)

248.83623ms ago: executing program 3 (id=789):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
creat(&(0x7f0000000080)='./file0\x00', 0xa)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
pipe2$9p(&(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RLERRORu(r3, &(0x7f0000000000)=ANY=[@ANYBLOB="1c00000007ffff"], 0x52)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u}]}})

203.903404ms ago: executing program 3 (id=790):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0100000004000000080000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa802, 0x0)
close(r3)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0x0, 0xfffffffd, {0x0, 0x0, 0x0, r5, {0x1, 0xd}, {}, {0x8, 0xfff1}}}, 0x24}}, 0x40004)
recvmmsg(r6, &(0x7f0000001480)=[{{0x0, 0x0, &(0x7f0000000bc0)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f0000000540)=""/189, 0xbd}, {&(0x7f0000001ac0)=""/4096, 0x1000}, {&(0x7f0000000940)=""/74, 0x4a}], 0x4, 0x0, 0xe58}, 0x5d}], 0x1b00, 0x10022, 0x0)

153.234588ms ago: executing program 1 (id=791):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = openat$binfmt(0xffffffffffffff9c, 0x0, 0x41, 0x1ff)
write$binfmt_aout(r1, &(0x7f0000000340)={{0x107, 0x3, 0x7, 0x357, 0x85, 0x8, 0x1e8, 0x5}, "78d5c09c9efd4734ee08d1e0172085bead3fc1b5dff8f5d121abadb9f696aeef69665dea3eff792e936277c462e4fb54b5797cb611ca398376e0e6e4950e6ba320be32bb0da1043cec3aac3ad7dc5224626c80de786e7a665b474d379b9be0f1c66410af9ef48ae2edf5cc5cbc7ca41a5baad7ea3a280cd593bc1eaaddbd616b5d3728aa1fc143cdc93ba16993f720d13933e2abbc8a08ed"}, 0xb8)
waitid(0x0, r0, 0x0, 0x4, 0x0)
r2 = syz_pidfd_open(r0, 0x0)
pidfd_send_signal(r2, 0x2, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000600)='./file0\x00', 0xc8d0, &(0x7f0000000140)=ANY=[@ANYRES8=0x0], 0x1, 0x30e, &(0x7f0000000f00)="$eJzs3E1rE10UwPGTNEnTlHayeHhEQXrRjW6GNu7FIC2IAUttxBcQp81EQ8akZEIlIrZduXEhfggXpcvuCtov0I07V27cdSO4sAtxJDOTl7aJrWnSWPv/QZlD7j0z9+Y24dyBzPbdN0/zWVvPGmUJRpUERER2ROISlJqAfwy6cUSaLcvl4W+fzt++d/9mMpWanFFqKjl7JaGUGh17/+zFkN9tY1C24g+3vya+bP2/dXb75+yTnK1ytioUy8pQc8XPZWPOMlUmZ+d1paYt07BNlSvYZslrd5ZELFNlreLCQkUZhcxIbKFk2rYyChWVNyuqXFTlUkUZj41cQem6rkZigoOkV2dmjGSHyfNdHgx6pFRKGgMiMrSvJb3alwEBAIC+8uv/erUfrJb0ndT/oZb1/9qFzfLwnfVRv/7fiFTrf5Gm+v9R41ymygTr9X9URBr1f9HbH3S7/t9fEZ1sr3cvjjhOPYy06n+k+h8nRLX+j/mfX9fKg7VxN6D+BwAAAAAAAAAAAAAAAAAAAADgJNhxHM1xHM07DvivOtqgiETdX5B47X0eJnpk9/o3/lj/06Hx4I7QqIj1ajG9mPaOfodNEbHElHHR5If7/+CrxpFl5XZSVXH5YC35+UuLae+7JJmVnJs/IZrE9+Y7ztSN1OSE8uzOD0usOT8hmvzXOj+xNz9cPUbk0sWmfF00+TgvRbEk4/8yrpb/ckKp67dSe64/5PYDAAAAAOBfoKu6+v59sLld39/u7Y+9dm9/HZLW9we8/fV4y/19SM6F+jVrAAAAAABOF7vyPG9YllnqUbAiIj2+RJugNsPDZtUekNumT0AC7Zq6ENQu3ll6dWxdG0/4UO9YsKOhjkX+cFFaBrXbRu36yHQnZ3Y0kaO+h2fevvv++z7enTGRw5zw6nr0gJl2GkQOmmn42L6AAAAAABybRtFfe+VafwcEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMApdByP4uv3HAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIC/xa8AAAD//46ZAFE=")
r3 = socket$kcm(0x10, 0x2, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b34, &(0x7f0000000000)={'wlan1\x00', @random="0000230c1100"})
write$cgroup_subtree(r3, &(0x7f0000000000)=ANY=[@ANYBLOB="25390000290003"], 0x33fe0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x12)
write(r5, &(0x7f0000004200)='t', 0x1)
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00')
preadv(r6, &(0x7f0000001880)=[{&(0x7f0000001a80)=""/102400, 0xfffffffffffffe15}], 0x1, 0x3fe, 0x6)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r6, 0x84, 0x71, &(0x7f00000001c0), &(0x7f0000000200)=0x8)
sendfile(r5, r4, 0x0, 0x3ffff)
getsockopt$IP_VS_SO_GET_SERVICE(r6, 0x0, 0x483, &(0x7f0000000240), &(0x7f0000000080)=0x68)
r7 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r7, 0x29, 0x20, &(0x7f0000000180)={@loopback={0x200000000000000}, 0x800, 0x0, 0x3, 0x1}, 0x20)
setsockopt$inet6_int(r7, 0x29, 0x1000000000021, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r7, &(0x7f0000000100)={0xa, 0x0, 0x380000, @loopback={0x80fe}}, 0x1c)
sendfile(r5, r4, 0x0, 0x7ffff000)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300))
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
r8 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r8, 0x84, 0x64, &(0x7f0000000900)=[@in={0x2, 0x4e23, @loopback}, @in6={0xa, 0x0, 0x0, @loopback, 0x7ff}], 0x2c)

133.09338ms ago: executing program 4 (id=792):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x4, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2000000}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r3=>0x0})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=@newtfilter={0x24, 0x11, 0x1, 0x691522eb, 0x0, {0x0, 0x0, 0x74, r3, {0x10, 0x4}, {}, {0x5}}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)
setsockopt$packet_drop_memb(0xffffffffffffffff, 0x107, 0x2, &(0x7f0000000240)={r3, 0x1, 0x6, @remote}, 0x10)
r5 = socket(0x10, 0x3, 0x6)
r6 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f0000000040)={'team0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001300)=@newqdisc={0x2b8, 0x24, 0xf0b, 0x70bd26, 0x0, {0x0, 0x0, 0x0, r7, {0x0, 0xffff}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x288, 0x2, {{0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xb], 0x0, [0x4, 0x2, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x5c4, 0x0, 0x0, 0x0, 0x3dc], [0xfffc, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xc1, 0x0, 0x0, 0x7, 0x0, 0x1000]}, [@TCA_MQPRIO_SHAPER={0x6}, @TCA_MQPRIO_MIN_RATE64={0x94, 0x3, 0x0, 0x1, [{0xc}, {0xc}, {0xc, 0x3, 0x2}, {0xc, 0x3, 0x1}, {0xc, 0x3, 0x2}, {0xc, 0x3, 0x24c}, {0xc, 0x3, 0x9}, {0xc, 0x3, 0x5}, {0xc, 0x3, 0xd22}, {0xc, 0x3, 0x3}, {0xc, 0x3, 0x3}, {0xc, 0x3, 0x8}]}, @TCA_MQPRIO_MAX_RATE64={0x94, 0x4, 0x0, 0x1, [{0xc, 0x4, 0x1}, {0xc, 0x4, 0x1}, {0xc}, {0xc, 0x4, 0xdc1}, {0xc, 0x4, 0xfffffffffffffffd}, {0xc, 0x4, 0x4}, {0xc, 0x4, 0xfffffffffffffffd}, {0xc, 0x4, 0x4}, {0xc, 0x4, 0xff}, {0xc, 0x4, 0x1}, {0xc, 0x4, 0x3}, {0xc, 0x4, 0x9}]}, @TCA_MQPRIO_MIN_RATE64={0xac, 0x3, 0x0, 0x1, [{0xc, 0x3, 0x6e8}, {0xc, 0x3, 0x7}, {0xc, 0x3, 0x1}, {0xc, 0x3, 0x2}, {0xc, 0x3, 0x8}, {0xc, 0x3, 0x6a}, {0xc, 0x3, 0x8}, {0xc}, {0xc, 0x3, 0xdf}, {0xc, 0x3, 0x10001}, {0xc, 0x3, 0xb2}, {0xc, 0x3, 0x1}, {0xc, 0x3, 0x4}, {0xc, 0x3, 0x8001}]}, @TCA_MQPRIO_MIN_RATE64={0x28, 0x3, 0x0, 0x1, [{0xc, 0x3, 0x6}, {0xc, 0x3, 0x2}, {0xc, 0x3, 0xffffffffffffffff}]}, @TCA_MQPRIO_MIN_RATE64={0x1c, 0x3, 0x0, 0x1, [{0xc, 0x3, 0x40}, {0xc, 0x3, 0x7}]}, @TCA_MQPRIO_MODE={0x6}, @TCA_MQPRIO_SHAPER={0x6}]}}}]}, 0x2b8}}, 0x20000000)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000bc0)={'syztnl0\x00', &(0x7f0000000b40)={'ip6gre0\x00', 0x0, 0x29, 0x0, 0x9, 0x7, 0x2b, @mcast2, @private2={0xfc, 0x2, '\x00', 0x1}, 0x10, 0x1, 0x0, 0x1}})
r8 = socket$inet6(0xa, 0x2, 0x0)
r9 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r9)
sendmmsg$inet(r8, &(0x7f0000000880)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @empty, @multicast1}}}], 0x20}}], 0x1, 0x4880)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000c00)={'erspan0\x00', &(0x7f0000000c80)={'ip_vti0\x00', 0x0, 0x10, 0x8000, 0x4, 0x7, {{0x9, 0x4, 0x2, 0x6, 0x24, 0x68, 0x0, 0x9, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast, {[@noop, @generic={0x53, 0xf, "b9ca683fbf029647de5b10eb4b"}]}}}}})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x2000002, 0xe, 0x0, &(0x7f0000000200)="df33c9f7b9a60000000000000000", 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

49.981646ms ago: executing program 3 (id=793):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f00000001c0)='w\xde\xa3\x05\xff\a\x00\x00\x00\x00\x00\x00\x8f\xc0\x9b\x86\xef\\\xc0\x89\av\x9f\xd6\xd1\x98,\xc8\x18E/\x8c\x1a\xe3\xbd')
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/locks\x00', 0x0, 0x0)
pread64(r4, &(0x7f0000001440)=""/126, 0x7e, 0x0)
inotify_init()
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r4, 0xc0189373, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r5=>r1, {0x8}}, './file0\x00'})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'veth1_to_bridge\x00', <r6=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000240)={r5, r6, 0x25, 0x10, @void}, 0x10)
flock(0xffffffffffffffff, 0x1)
syz_clone(0x41200100, 0x0, 0x0, 0x0, 0x0, 0x0)

0s ago: executing program 4 (id=794):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000200), &(0x7f0000000240)=r1}, 0x20)
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x7, &(0x7f0000000240)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000380)=[{0x200000000006, 0x1, 0x7, 0x7ffc1ffb}]})

kernel console output (not intermixed with test programs):

43'.
[   57.794416][ T4274] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #15: block 4: comm syz.4.238: lblock 4 mapped to illegal pblock 4 (length 4)
[   57.809097][ T4274] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #15: block 4: comm syz.4.238: lblock 4 mapped to illegal pblock 4 (length 4)
[   57.819999][ T4294] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #15: block 1: comm syz.4.238: lblock 1 mapped to illegal pblock 1 (length 3)
[   57.877518][ T4294] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #15: block 1: comm syz.4.238: lblock 1 mapped to illegal pblock 1 (length 3)
[   57.945538][ T4274] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #15: block 4: comm syz.4.238: lblock 4 mapped to illegal pblock 4 (length 4)
[   57.976088][ T4294] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #15: block 1: comm syz.4.238: lblock 1 mapped to illegal pblock 1 (length 3)
[   58.052230][ T4315] loop1: detected capacity change from 0 to 128
[   58.092335][ T4309] netlink: 14593 bytes leftover after parsing attributes in process `syz.1.249'.
[   58.249730][ T4340] FAULT_INJECTION: forcing a failure.
[   58.249730][ T4340] name failslab, interval 1, probability 0, space 0, times 0
[   58.262814][ T4340] CPU: 1 UID: 0 PID: 4340 Comm: syz.2.259 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   58.262841][ T4340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   58.262853][ T4340] Call Trace:
[   58.262860][ T4340]  <TASK>
[   58.262867][ T4340]  __dump_stack+0x1d/0x30
[   58.262949][ T4340]  dump_stack_lvl+0xe8/0x140
[   58.262973][ T4340]  dump_stack+0x15/0x1b
[   58.262992][ T4340]  should_fail_ex+0x265/0x280
[   58.263097][ T4340]  should_failslab+0x8c/0xb0
[   58.263121][ T4340]  kmem_cache_alloc_noprof+0x50/0x310
[   58.263156][ T4340]  ? skb_clone+0x151/0x1f0
[   58.263185][ T4340]  skb_clone+0x151/0x1f0
[   58.263211][ T4340]  __netlink_deliver_tap+0x2c9/0x500
[   58.263257][ T4340]  netlink_unicast+0x66b/0x690
[   58.263296][ T4340]  netlink_sendmsg+0x58b/0x6b0
[   58.263325][ T4340]  ? __pfx_netlink_sendmsg+0x10/0x10
[   58.263352][ T4340]  __sock_sendmsg+0x142/0x180
[   58.263462][ T4340]  ____sys_sendmsg+0x31e/0x4e0
[   58.263486][ T4340]  ___sys_sendmsg+0x17b/0x1d0
[   58.263523][ T4340]  __x64_sys_sendmsg+0xd4/0x160
[   58.263700][ T4340]  x64_sys_call+0x191e/0x2ff0
[   58.263726][ T4340]  do_syscall_64+0xd2/0x200
[   58.263801][ T4340]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   58.263832][ T4340]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   58.263857][ T4340]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.263882][ T4340] RIP: 0033:0x7fd2b9f4ebe9
[   58.263897][ T4340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.263919][ T4340] RSP: 002b:00007fd2b89b7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   58.263943][ T4340] RAX: ffffffffffffffda RBX: 00007fd2ba175fa0 RCX: 00007fd2b9f4ebe9
[   58.263958][ T4340] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000003
[   58.264008][ T4340] RBP: 00007fd2b89b7090 R08: 0000000000000000 R09: 0000000000000000
[   58.264025][ T4340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   58.264039][ T4340] R13: 00007fd2ba176038 R14: 00007fd2ba175fa0 R15: 00007fff5e277a08
[   58.264056][ T4340]  </TASK>
[   58.502204][ T4343] loop3: detected capacity change from 0 to 128
[   58.509791][ T4347] FAULT_INJECTION: forcing a failure.
[   58.509791][ T4347] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   58.523154][ T4347] CPU: 1 UID: 0 PID: 4347 Comm: syz.4.260 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   58.523186][ T4347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   58.523304][ T4347] Call Trace:
[   58.523313][ T4347]  <TASK>
[   58.523322][ T4347]  __dump_stack+0x1d/0x30
[   58.523347][ T4347]  dump_stack_lvl+0xe8/0x140
[   58.523370][ T4347]  dump_stack+0x15/0x1b
[   58.523410][ T4347]  should_fail_ex+0x265/0x280
[   58.523436][ T4347]  should_fail+0xb/0x20
[   58.523457][ T4347]  should_fail_usercopy+0x1a/0x20
[   58.523527][ T4347]  _copy_to_user+0x20/0xa0
[   58.523579][ T4347]  simple_read_from_buffer+0xb5/0x130
[   58.523607][ T4347]  proc_fail_nth_read+0x10e/0x150
[   58.523732][ T4347]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   58.523807][ T4347]  vfs_read+0x1a8/0x770
[   58.523830][ T4347]  ? __rcu_read_unlock+0x4f/0x70
[   58.523854][ T4347]  ? __fget_files+0x184/0x1c0
[   58.523911][ T4347]  ksys_read+0xda/0x1a0
[   58.523936][ T4347]  __x64_sys_read+0x40/0x50
[   58.523958][ T4347]  x64_sys_call+0x27bc/0x2ff0
[   58.523985][ T4347]  do_syscall_64+0xd2/0x200
[   58.524038][ T4347]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   58.524062][ T4347]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   58.524091][ T4347]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.524114][ T4347] RIP: 0033:0x7fbad08bd5fc
[   58.524128][ T4347] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   58.524145][ T4347] RSP: 002b:00007fbacf31f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   58.524313][ T4347] RAX: ffffffffffffffda RBX: 00007fbad0ae5fa0 RCX: 00007fbad08bd5fc
[   58.524328][ T4347] RDX: 000000000000000f RSI: 00007fbacf31f0a0 RDI: 0000000000000006
[   58.524342][ T4347] RBP: 00007fbacf31f090 R08: 0000000000000000 R09: 0000000000000000
[   58.524356][ T4347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   58.524370][ T4347] R13: 00007fbad0ae6038 R14: 00007fbad0ae5fa0 R15: 00007fff860a04e8
[   58.524462][ T4347]  </TASK>
[   58.773180][ T4337] netlink: 14593 bytes leftover after parsing attributes in process `syz.3.257'.
[   58.837346][ T4351] loop4: detected capacity change from 0 to 512
[   58.857455][ T4351] ext4 filesystem being mounted at /57/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   58.873731][ T4351] 9pnet_fd: Insufficient options for proto=fd
[   59.176438][ T4384] netlink: zone id is out of range
[   59.182040][ T4384] netlink: zone id is out of range
[   59.241714][ T4395] loop4: detected capacity change from 0 to 128
[   59.257929][ T4381] netlink: 14593 bytes leftover after parsing attributes in process `syz.4.272'.
[   59.880385][ T4410] netlink: 4 bytes leftover after parsing attributes in process `syz.1.280'.
[   60.005511][ T4417] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   60.061152][ T4421] loop4: detected capacity change from 0 to 128
[   60.118841][ T4427] loop3: detected capacity change from 0 to 2048
[   60.125997][ T4427] EXT4-fs: inline encryption not supported
[   60.138489][   T29] kauditd_printk_skb: 58 callbacks suppressed
[   60.138503][   T29] audit: type=1400 audit(1755806779.959:2167): avc:  denied  { read write } for  pid=4431 comm="syz.1.289" name="uhid" dev="devtmpfs" ino=253 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[   60.140031][ T4430] tipc: Started in network mode
[   60.145151][   T29] audit: type=1400 audit(1755806779.959:2168): avc:  denied  { open } for  pid=4431 comm="syz.1.289" path="/dev/uhid" dev="devtmpfs" ino=253 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[   60.168319][ T4430] tipc: Node identity ac14140f, cluster identity 4711
[   60.173325][   T29] audit: type=1400 audit(1755806779.959:2169): avc:  denied  { write } for  pid=4429 comm="syz.2.288" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   60.197929][ T4430] tipc: New replicast peer: 255.255.255.255
[   60.204117][   T29] audit: type=1400 audit(1755806779.959:2170): avc:  denied  { nlmsg_write } for  pid=4429 comm="syz.2.288" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   60.224690][ T4430] tipc: Enabled bearer <udp:syz2>, priority 10
[   60.313302][ T4427] EXT4-fs error (device loop3): ext4_find_extent:939: inode #2: comm syz.3.287: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   60.330142][   T29] audit: type=1326 audit(1755806780.139:2171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4426 comm="syz.3.287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f659debe9 code=0x7ffc0000
[   60.354108][   T29] audit: type=1326 audit(1755806780.139:2172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4426 comm="syz.3.287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2f659debe9 code=0x7ffc0000
[   60.378106][   T29] audit: type=1326 audit(1755806780.139:2173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4426 comm="syz.3.287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f659debe9 code=0x7ffc0000
[   60.401931][   T29] audit: type=1326 audit(1755806780.139:2174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4426 comm="syz.3.287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=128 compat=0 ip=0x7f2f659debe9 code=0x7ffc0000
[   60.425788][   T29] audit: type=1326 audit(1755806780.139:2175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4426 comm="syz.3.287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f659debe9 code=0x7ffc0000
[   60.427009][ T4427] EXT4-fs error (device loop3): ext4_find_extent:939: inode #2: comm syz.3.287: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   60.449521][   T29] audit: type=1326 audit(1755806780.139:2176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4426 comm="syz.3.287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f2f659debe9 code=0x7ffc0000
[   60.539869][ T4445] netlink: 4 bytes leftover after parsing attributes in process `syz.1.292'.
[   60.719341][ T4469] loop1: detected capacity change from 0 to 1024
[   60.731797][ T4469] SELinux: security_context_str_to_sid (root) failed with errno=-22
[   60.753776][ T4469] netlink: 'syz.1.300': attribute type 2 has an invalid length.
[   60.761806][ T4469] netlink: 'syz.1.300': attribute type 1 has an invalid length.
[   60.769637][ T4469] netlink: 212408 bytes leftover after parsing attributes in process `syz.1.300'.
[   60.836430][ T4476] loop0: detected capacity change from 0 to 1024
[   60.865891][ T4476] ext4 filesystem being mounted at /64/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   60.916923][ T4486] 9pnet: Could not find request transport: fd0x0000000000000004
[   60.981630][ T4493] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #15: block 1: comm syz.0.301: lblock 1 mapped to illegal pblock 1 (length 15)
[   61.003666][ T4491] loop4: detected capacity change from 0 to 2048
[   61.026412][ T4491] EXT4-fs: inline encryption not supported
[   61.046054][ T4493] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117
[   61.058706][ T4493] EXT4-fs (loop0): This should not happen!! Data will be lost
[   61.058706][ T4493] 
[   61.073278][ T4491] EXT4-fs error (device loop4): ext4_find_extent:939: inode #2: comm syz.4.306: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   61.090911][ T4491] EXT4-fs error (device loop4): ext4_find_extent:939: inode #2: comm syz.4.306: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   61.108132][ T4496] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 1: comm syz.0.301: lblock 1 mapped to illegal pblock 1 (length 3)
[   61.139806][ T4475] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 4: comm syz.0.301: lblock 4 mapped to illegal pblock 4 (length 4)
[   61.147443][ T4496] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 1: comm syz.0.301: lblock 1 mapped to illegal pblock 1 (length 3)
[   61.170912][ T4493] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   61.195320][ T4496] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 1: comm syz.0.301: lblock 1 mapped to illegal pblock 1 (length 3)
[   61.220642][ T4475] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 4: comm syz.0.301: lblock 4 mapped to illegal pblock 4 (length 4)
[   61.240480][ T3391] tipc: Node number set to 2886997007
[   61.258282][ T4496] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 1: comm syz.0.301: lblock 1 mapped to illegal pblock 1 (length 3)
[   61.285420][ T4475] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 4: comm syz.0.301: lblock 4 mapped to illegal pblock 4 (length 4)
[   61.308184][ T4496] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 1: comm syz.0.301: lblock 1 mapped to illegal pblock 1 (length 3)
[   61.397104][ T4503] loop4: detected capacity change from 0 to 128
[   61.415044][ T4503] netlink: 14593 bytes leftover after parsing attributes in process `syz.4.308'.
[   61.894076][ T4517] loop2: detected capacity change from 0 to 2364
[   61.914799][ T4519] loop3: detected capacity change from 0 to 1024
[   61.921938][ T4519] SELinux: security_context_str_to_sid (root) failed with errno=-22
[   61.975996][ T4522] SELinux: failed to load policy
[   62.074084][ T4529] 9pnet: Could not find request transport: fd0x0000000000000004
[   62.097790][ T4544] loop0: detected capacity change from 0 to 1024
[   62.127258][ T4547] tipc: Started in network mode
[   62.132485][ T4547] tipc: Node identity 4, cluster identity 4711
[   62.138885][ T4547] tipc: Node number set to 4
[   62.155507][ T4544] ext4 filesystem being mounted at /68/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.212258][ T4552] loop3: detected capacity change from 0 to 128
[   62.260588][ T4556] netlink: 8 bytes leftover after parsing attributes in process `syz.4.325'.
[   62.298881][ T4544] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #15: block 1: comm syz.0.321: lblock 1 mapped to illegal pblock 1 (length 15)
[   62.319635][ T4544] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117
[   62.332210][ T4544] EXT4-fs (loop0): This should not happen!! Data will be lost
[   62.332210][ T4544] 
[   62.344369][ T4544] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   62.359906][ T4559] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 1: comm syz.0.321: lblock 1 mapped to illegal pblock 1 (length 3)
[   62.377038][ T4559] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 1: comm syz.0.321: lblock 1 mapped to illegal pblock 1 (length 3)
[   62.402823][ T4559] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 1: comm syz.0.321: lblock 1 mapped to illegal pblock 1 (length 3)
[   62.417561][ T4559] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 1: comm syz.0.321: lblock 1 mapped to illegal pblock 1 (length 3)
[   62.417583][ T4543] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 4: comm syz.0.321: lblock 4 mapped to illegal pblock 4 (length 4)
[   62.447520][ T4559] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 1: comm syz.0.321: lblock 1 mapped to illegal pblock 1 (length 3)
[   62.452590][ T4543] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 4: comm syz.0.321: lblock 4 mapped to illegal pblock 4 (length 4)
[   62.480970][ T4559] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 1: comm syz.0.321: lblock 1 mapped to illegal pblock 1 (length 3)
[   62.518876][ T4571] sd 0:0:1:0: device reset
[   62.591313][ T4576] pim6reg: tun_chr_ioctl cmd 1074025680
[   62.619565][ T4579] FAULT_INJECTION: forcing a failure.
[   62.619565][ T4579] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   62.633305][ T4579] CPU: 1 UID: 0 PID: 4579 Comm: syz.4.334 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   62.633338][ T4579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   62.633354][ T4579] Call Trace:
[   62.633363][ T4579]  <TASK>
[   62.633372][ T4579]  __dump_stack+0x1d/0x30
[   62.633399][ T4579]  dump_stack_lvl+0xe8/0x140
[   62.633458][ T4579]  dump_stack+0x15/0x1b
[   62.633479][ T4579]  should_fail_ex+0x265/0x280
[   62.633502][ T4579]  should_fail+0xb/0x20
[   62.633518][ T4579]  should_fail_usercopy+0x1a/0x20
[   62.633539][ T4579]  _copy_from_user+0x1c/0xb0
[   62.633567][ T4579]  scsi_ioctl+0x32a/0x14d0
[   62.633634][ T4579]  sg_ioctl+0x12fb/0x1360
[   62.633675][ T4579]  ? __pfx_sg_ioctl+0x10/0x10
[   62.633747][ T4579]  __se_sys_ioctl+0xce/0x140
[   62.633845][ T4579]  __x64_sys_ioctl+0x43/0x50
[   62.633886][ T4579]  x64_sys_call+0x1816/0x2ff0
[   62.633940][ T4579]  do_syscall_64+0xd2/0x200
[   62.633968][ T4579]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   62.634061][ T4579]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   62.634092][ T4579]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.634119][ T4579] RIP: 0033:0x7fbad08bebe9
[   62.634179][ T4579] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.634201][ T4579] RSP: 002b:00007fbacf31f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   62.634278][ T4579] RAX: ffffffffffffffda RBX: 00007fbad0ae5fa0 RCX: 00007fbad08bebe9
[   62.634294][ T4579] RDX: 0000200000000000 RSI: 0000000000005393 RDI: 0000000000000003
[   62.634309][ T4579] RBP: 00007fbacf31f090 R08: 0000000000000000 R09: 0000000000000000
[   62.634324][ T4579] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   62.634338][ T4579] R13: 00007fbad0ae6038 R14: 00007fbad0ae5fa0 R15: 00007fff860a04e8
[   62.634431][ T4579]  </TASK>
[   62.725269][ T4586] loop3: detected capacity change from 0 to 128
[   62.898000][ T4586] netlink: 14593 bytes leftover after parsing attributes in process `syz.3.335'.
[   62.993266][ T4600] loop0: detected capacity change from 0 to 1024
[   63.011938][ T4600] ext4 filesystem being mounted at /71/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.037863][ T4605] sd 0:0:1:0: device reset
[   63.050222][ T4601] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   63.112446][ T4609] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #15: block 1: comm syz.0.342: lblock 1 mapped to illegal pblock 1 (length 15)
[   63.133811][ T4609] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117
[   63.146383][ T4609] EXT4-fs (loop0): This should not happen!! Data will be lost
[   63.146383][ T4609] 
[   63.202747][ T4614] loop1: detected capacity change from 0 to 1024
[   63.218606][ T4609] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   63.267280][ T4614] ext4 filesystem being mounted at /81/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.302340][ T4600] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 1: comm syz.0.342: lblock 1 mapped to illegal pblock 1 (length 3)
[   63.382009][ T4599] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 4: comm syz.0.342: lblock 4 mapped to illegal pblock 4 (length 4)
[   63.408734][ T4618] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   63.434294][ T4600] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 1: comm syz.0.342: lblock 1 mapped to illegal pblock 1 (length 3)
[   63.535061][ T4600] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 1: comm syz.0.342: lblock 1 mapped to illegal pblock 1 (length 3)
[   63.562832][ T4599] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 4: comm syz.0.342: lblock 4 mapped to illegal pblock 4 (length 4)
[   63.581744][ T4623] 9pnet_fd: Insufficient options for proto=fd
[   63.669029][ T4600] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 1: comm syz.0.342: lblock 1 mapped to illegal pblock 1 (length 3)
[   63.683862][ T4627] netlink: 12 bytes leftover after parsing attributes in process `syz.3.350'.
[   63.694392][ T4599] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 4: comm syz.0.342: lblock 4 mapped to illegal pblock 4 (length 4)
[   63.737838][ T4638] loop2: detected capacity change from 0 to 512
[   63.745258][ T4627] 8021q: adding VLAN 0 to HW filter on device bond1
[   63.766073][ T4600] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 1: comm syz.0.342: lblock 1 mapped to illegal pblock 1 (length 3)
[   63.781831][ T4639] macvlan2: entered promiscuous mode
[   63.787178][ T4639] macvlan2: entered allmulticast mode
[   63.795859][ T4639] bond1: entered promiscuous mode
[   63.802264][ T4639] 8021q: adding VLAN 0 to HW filter on device macvlan2
[   63.811915][ T4638] ext4 filesystem being mounted at /68/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.827397][ T4639] bond1: left promiscuous mode
[   63.850583][ T4638] 9pnet_fd: Insufficient options for proto=fd
[   63.897562][ T4647] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   63.936970][ T4655] loop0: detected capacity change from 0 to 128
[   63.952686][ T4649] netlink: 14593 bytes leftover after parsing attributes in process `syz.0.357'.
[   64.064308][ T4666] 9pnet_fd: Insufficient options for proto=fd
[   64.108807][ T4668] loop2: detected capacity change from 0 to 128
[   64.189378][ T4663] netlink: 14593 bytes leftover after parsing attributes in process `syz.2.362'.
[   64.279822][ T4680] SELinux: failed to load policy
[   64.286305][ T4679] loop1: detected capacity change from 0 to 1024
[   64.313286][ T4679] ext4 filesystem being mounted at /90/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   64.349144][ T4685] sd 0:0:1:0: device reset
[   64.415995][ T4687] EXT4-fs error (device loop1): ext4_map_blocks:814: inode #15: block 1: comm syz.1.367: lblock 1 mapped to illegal pblock 1 (length 15)
[   64.448928][ T4688] loop4: detected capacity change from 0 to 512
[   64.462056][ T4687] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117
[   64.474685][ T4687] EXT4-fs (loop1): This should not happen!! Data will be lost
[   64.474685][ T4687] 
[   64.489961][ T4687] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   64.512333][ T4688] ext4 filesystem being mounted at /78/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   64.534594][ T4679] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #15: block 1: comm syz.1.367: lblock 1 mapped to illegal pblock 1 (length 3)
[   64.550032][ T4679] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #15: block 1: comm syz.1.367: lblock 1 mapped to illegal pblock 1 (length 3)
[   64.565024][ T4679] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #15: block 1: comm syz.1.367: lblock 1 mapped to illegal pblock 1 (length 3)
[   64.582882][ T4688] 9pnet_fd: Insufficient options for proto=fd
[   64.591126][ T4679] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #15: block 1: comm syz.1.367: lblock 1 mapped to illegal pblock 1 (length 3)
[   64.616448][ T4677] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #15: block 4: comm syz.1.367: lblock 4 mapped to illegal pblock 4 (length 4)
[   64.631235][ T4679] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #15: block 1: comm syz.1.367: lblock 1 mapped to illegal pblock 1 (length 3)
[   64.646314][ T4677] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #15: block 4: comm syz.1.367: lblock 4 mapped to illegal pblock 4 (length 4)
[   64.653442][ T4679] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #15: block 1: comm syz.1.367: lblock 1 mapped to illegal pblock 1 (length 3)
[   64.841743][ T4694] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   64.980202][ T4699] syzkaller0: entered promiscuous mode
[   64.985872][ T4699] syzkaller0: entered allmulticast mode
[   65.156348][   T29] kauditd_printk_skb: 151 callbacks suppressed
[   65.156441][   T29] audit: type=1326 audit(1755806784.979:2326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4734 comm="syz.2.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2b9f4ebe9 code=0x7ffc0000
[   65.194776][ T4738] loop3: detected capacity change from 0 to 128
[   65.263757][ T4737] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   65.280375][ T4732] netlink: 14593 bytes leftover after parsing attributes in process `syz.3.386'.
[   65.339938][ T4737] syz.2.388 (4737) used greatest stack depth: 10056 bytes left
[   65.352746][ T4744] loop1: detected capacity change from 0 to 128
[   65.373947][ T4741] netlink: 14593 bytes leftover after parsing attributes in process `syz.1.389'.
[   65.486214][ T4753] loop2: detected capacity change from 0 to 1024
[   65.493464][ T4753] SELinux: security_context_str_to_sid (root) failed with errno=-22
[   65.614406][ T4759] netlink: 4 bytes leftover after parsing attributes in process `syz.2.393'.
[   65.705401][   T29] audit: type=1326 audit(1755806785.529:2327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4762 comm="syz.2.395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2b9f4ebe9 code=0x7ffc0000
[   65.757481][ T4765] syzkaller0: entered promiscuous mode
[   65.763047][ T4765] syzkaller0: entered allmulticast mode
[   65.914650][   T29] audit: type=1326 audit(1755806785.739:2328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4769 comm="syz.4.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbad08bebe9 code=0x7ffc0000
[   65.914872][ T4772] FAULT_INJECTION: forcing a failure.
[   65.914872][ T4772] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   65.938773][   T29] audit: type=1326 audit(1755806785.739:2329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4769 comm="syz.4.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbad08bebe9 code=0x7ffc0000
[   65.952014][ T4772] CPU: 0 UID: 0 PID: 4772 Comm: syz.0.399 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   65.952049][ T4772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   65.952138][ T4772] Call Trace:
[   65.952147][ T4772]  <TASK>
[   65.952157][ T4772]  __dump_stack+0x1d/0x30
[   65.952188][ T4772]  dump_stack_lvl+0xe8/0x140
[   65.952215][ T4772]  dump_stack+0x15/0x1b
[   65.952239][ T4772]  should_fail_ex+0x265/0x280
[   65.952268][ T4772]  should_fail+0xb/0x20
[   65.952336][ T4772]  should_fail_usercopy+0x1a/0x20
[   65.952366][ T4772]  _copy_from_user+0x1c/0xb0
[   65.952413][ T4772]  kstrtouint_from_user+0x69/0xf0
[   65.952446][ T4772]  ? 0xffffffff81000000
[   65.952464][ T4772]  ? selinux_file_permission+0x1e4/0x320
[   65.952498][ T4772]  proc_fail_nth_write+0x50/0x160
[   65.952536][ T4772]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   65.952584][ T4772]  vfs_write+0x269/0x960
[   65.952612][ T4772]  ? vfs_read+0x4e6/0x770
[   65.952637][ T4772]  ? __rcu_read_unlock+0x4f/0x70
[   65.952667][ T4772]  ? __fget_files+0x184/0x1c0
[   65.952784][ T4772]  ksys_write+0xda/0x1a0
[   65.952869][ T4772]  __x64_sys_write+0x40/0x50
[   65.952899][ T4772]  x64_sys_call+0x27fe/0x2ff0
[   65.952929][ T4772]  do_syscall_64+0xd2/0x200
[   65.952967][ T4772]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   65.952999][ T4772]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   65.953044][ T4772]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.953073][ T4772] RIP: 0033:0x7f065fbed69f
[   65.953093][ T4772] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   65.953125][ T4772] RSP: 002b:00007f065e64f030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   65.953201][ T4772] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f065fbed69f
[   65.953218][ T4772] RDX: 0000000000000001 RSI: 00007f065e64f0a0 RDI: 0000000000000004
[   65.953234][ T4772] RBP: 00007f065e64f090 R08: 0000000000000000 R09: 0000000000000000
[   65.953251][ T4772] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   65.953267][ T4772] R13: 00007f065fe16038 R14: 00007f065fe15fa0 R15: 00007ffc39412738
[   65.953365][ T4772]  </TASK>
[   65.955319][ T4773] loop2: detected capacity change from 0 to 128
[   66.143597][   T29] audit: type=1400 audit(1755806785.969:2330): avc:  denied  { read } for  pid=4775 comm="syz.0.400" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   66.225350][   T29] audit: type=1400 audit(1755806785.969:2331): avc:  denied  { open } for  pid=4775 comm="syz.0.400" path="/dev/autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   66.254450][   T29] audit: type=1400 audit(1755806786.079:2332): avc:  denied  { ioctl } for  pid=4775 comm="syz.0.400" path="/dev/autofs" dev="devtmpfs" ino=91 ioctlcmd=0x937e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   66.255049][ T4767] netlink: 14593 bytes leftover after parsing attributes in process `syz.2.397'.
[   66.323094][ T4785] FAULT_INJECTION: forcing a failure.
[   66.323094][ T4785] name failslab, interval 1, probability 0, space 0, times 0
[   66.336395][ T4785] CPU: 1 UID: 0 PID: 4785 Comm: syz.3.404 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   66.336436][ T4785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   66.336449][ T4785] Call Trace:
[   66.336456][ T4785]  <TASK>
[   66.336493][ T4785]  __dump_stack+0x1d/0x30
[   66.336520][ T4785]  dump_stack_lvl+0xe8/0x140
[   66.336601][ T4785]  dump_stack+0x15/0x1b
[   66.336618][ T4785]  should_fail_ex+0x265/0x280
[   66.336643][ T4785]  ? __se_sys_memfd_create+0x1cc/0x590
[   66.336727][ T4785]  should_failslab+0x8c/0xb0
[   66.336758][ T4785]  __kmalloc_cache_noprof+0x4c/0x320
[   66.336850][ T4785]  ? fput+0x8f/0xc0
[   66.336887][ T4785]  __se_sys_memfd_create+0x1cc/0x590
[   66.336914][ T4785]  __x64_sys_memfd_create+0x31/0x40
[   66.336934][ T4785]  x64_sys_call+0x2abe/0x2ff0
[   66.337026][ T4785]  do_syscall_64+0xd2/0x200
[   66.337053][ T4785]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   66.337076][ T4785]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   66.337100][ T4785]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.337124][ T4785] RIP: 0033:0x7f2f659debe9
[   66.337195][ T4785] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.337213][ T4785] RSP: 002b:00007f2f6443ee18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   66.337231][ T4785] RAX: ffffffffffffffda RBX: 0000000000000550 RCX: 00007f2f659debe9
[   66.337324][ T4785] RDX: 00007f2f6443eef0 RSI: 0000000000000000 RDI: 00007f2f65a627e8
[   66.337336][ T4785] RBP: 0000200000001780 R08: 00007f2f6443ebb7 R09: 00007f2f6443ee40
[   66.337348][ T4785] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000000
[   66.337360][ T4785] R13: 00007f2f6443eef0 R14: 00007f2f6443eeb0 R15: 00002000000003c0
[   66.337379][ T4785]  </TASK>
[   66.545862][   T29] audit: type=1326 audit(1755806786.369:2333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4788 comm="syz.4.406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbad08bebe9 code=0x7ffc0000
[   66.586665][   T29] audit: type=1326 audit(1755806786.399:2334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4788 comm="syz.4.406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbad08bebe9 code=0x7ffc0000
[   66.662836][   T29] audit: type=1326 audit(1755806786.479:2335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4793 comm="syz.1.409" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f60c6bdebe9 code=0x0
[   66.711714][ T4796] syzkaller0: entered promiscuous mode
[   66.717461][ T4796] syzkaller0: entered allmulticast mode
[   66.869004][ T4805] netlink: 12 bytes leftover after parsing attributes in process `syz.2.412'.
[   66.894108][ T4808] loop3: detected capacity change from 0 to 128
[   67.164689][ T4823] FAULT_INJECTION: forcing a failure.
[   67.164689][ T4823] name failslab, interval 1, probability 0, space 0, times 0
[   67.177722][ T4823] CPU: 1 UID: 0 PID: 4823 Comm: syz.0.417 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   67.177756][ T4823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   67.177768][ T4823] Call Trace:
[   67.177789][ T4823]  <TASK>
[   67.177796][ T4823]  __dump_stack+0x1d/0x30
[   67.177821][ T4823]  dump_stack_lvl+0xe8/0x140
[   67.177846][ T4823]  dump_stack+0x15/0x1b
[   67.177976][ T4823]  should_fail_ex+0x265/0x280
[   67.177999][ T4823]  should_failslab+0x8c/0xb0
[   67.178025][ T4823]  kmem_cache_alloc_noprof+0x50/0x310
[   67.178058][ T4823]  ? getname_kernel+0x3c/0x1f0
[   67.178213][ T4823]  getname_kernel+0x3c/0x1f0
[   67.178242][ T4823]  kern_path+0x23/0x130
[   67.178296][ T4823]  autofs_dev_ioctl_ismountpoint+0x12d/0x4c0
[   67.178395][ T4823]  ? __pfx_autofs_dev_ioctl_ismountpoint+0x10/0x10
[   67.178435][ T4823]  autofs_dev_ioctl+0x351/0x6a0
[   67.178478][ T4823]  ? __pfx_autofs_dev_ioctl+0x10/0x10
[   67.178558][ T4823]  __se_sys_ioctl+0xce/0x140
[   67.178603][ T4823]  __x64_sys_ioctl+0x43/0x50
[   67.178681][ T4823]  x64_sys_call+0x1816/0x2ff0
[   67.178706][ T4823]  do_syscall_64+0xd2/0x200
[   67.178739][ T4823]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   67.178770][ T4823]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   67.178829][ T4823]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.178855][ T4823] RIP: 0033:0x7f065fbeebe9
[   67.178870][ T4823] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.178956][ T4823] RSP: 002b:00007f065e64f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   67.178979][ T4823] RAX: ffffffffffffffda RBX: 00007f065fe15fa0 RCX: 00007f065fbeebe9
[   67.178993][ T4823] RDX: 0000200000000200 RSI: 00000000c018937e RDI: 0000000000000003
[   67.179008][ T4823] RBP: 00007f065e64f090 R08: 0000000000000000 R09: 0000000000000000
[   67.179023][ T4823] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   67.179037][ T4823] R13: 00007f065fe16038 R14: 00007f065fe15fa0 R15: 00007ffc39412738
[   67.179116][ T4823]  </TASK>
[   67.465934][ T4829] loop2: detected capacity change from 0 to 1024
[   67.493717][ T4829] SELinux: security_context_str_to_sid (root) failed with errno=-22
[   67.514105][ T4827] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   67.567407][ T4832] syzkaller0: entered promiscuous mode
[   67.573176][ T4832] syzkaller0: entered allmulticast mode
[   67.689699][ T4841] loop0: detected capacity change from 0 to 2048
[   67.730785][ T4841] EXT4-fs: inline encryption not supported
[   67.808936][ T4841] EXT4-fs error (device loop0): ext4_find_extent:939: inode #2: comm syz.0.425: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   67.831534][ T4854] sd 0:0:1:0: device reset
[   67.838768][ T4841] EXT4-fs error (device loop0): ext4_find_extent:939: inode #2: comm syz.0.425: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   67.890737][ T4857] loop3: detected capacity change from 0 to 1024
[   67.928328][ T4864] loop2: detected capacity change from 0 to 1024
[   67.935533][ T4864] SELinux: security_context_str_to_sid (root) failed with errno=-22
[   67.971638][ T4857] ext4 filesystem being mounted at /65/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   68.028272][ T4868] __nla_validate_parse: 3 callbacks suppressed
[   68.028292][ T4868] netlink: 4 bytes leftover after parsing attributes in process `syz.1.435'.
[   68.081796][ T4883] EXT4-fs error (device loop3): ext4_map_blocks:814: inode #15: block 1: comm syz.3.431: lblock 1 mapped to illegal pblock 1 (length 15)
[   68.114082][ T4883] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117
[   68.126732][ T4883] EXT4-fs (loop3): This should not happen!! Data will be lost
[   68.126732][ T4883] 
[   68.141450][ T4887] loop2: detected capacity change from 0 to 128
[   68.151407][ T4883] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   68.159141][ T4885] syzkaller0: entered promiscuous mode
[   68.171866][ T4885] syzkaller0: entered allmulticast mode
[   68.183999][ T4877] netlink: 14593 bytes leftover after parsing attributes in process `syz.2.438'.
[   68.202911][ T4857] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #15: block 1: comm syz.3.431: lblock 1 mapped to illegal pblock 1 (length 3)
[   68.217921][ T4857] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #15: block 1: comm syz.3.431: lblock 1 mapped to illegal pblock 1 (length 3)
[   68.244839][ T4857] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #15: block 1: comm syz.3.431: lblock 1 mapped to illegal pblock 1 (length 3)
[   68.260814][ T4889] can0: slcan on ttyS3.
[   68.268515][ T4856] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #15: block 4: comm syz.3.431: lblock 4 mapped to illegal pblock 4 (length 4)
[   68.285303][ T4857] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #15: block 1: comm syz.3.431: lblock 1 mapped to illegal pblock 1 (length 3)
[   68.300410][ T4857] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #15: block 1: comm syz.3.431: lblock 1 mapped to illegal pblock 1 (length 3)
[   68.315159][ T4857] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #15: block 1: comm syz.3.431: lblock 1 mapped to illegal pblock 1 (length 3)
[   68.331774][ T4857] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #15: block 1: comm syz.3.431: lblock 1 mapped to illegal pblock 1 (length 3)
[   68.375206][ T4896] loop0: detected capacity change from 0 to 2048
[   68.382004][ T4889] can0 (unregistered): slcan off ttyS3.
[   68.388170][ T4896] EXT4-fs: inline encryption not supported
[   68.399133][ T4894] can0: slcan on ttyS3.
[   68.416169][ T4896] EXT4-fs error (device loop0): ext4_find_extent:939: inode #2: comm syz.0.443: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   68.434434][ T4896] EXT4-fs error (device loop0): ext4_find_extent:939: inode #2: comm syz.0.443: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   68.506747][ T4903] loop4: detected capacity change from 0 to 512
[   68.513375][ T4888] can0 (unregistered): slcan off ttyS3.
[   68.529879][ T4905] sd 0:0:1:0: device reset
[   68.593111][ T4914] netlink: 8 bytes leftover after parsing attributes in process `syz.4.446'.
[   68.618923][ T4914] IPVS: Unknown mcast interface: batadv0
[   68.717215][ T4924] loop0: detected capacity change from 0 to 128
[   68.758100][ T4921] netlink: 14593 bytes leftover after parsing attributes in process `syz.0.452'.
[   68.845698][ T4927] syzkaller0: entered promiscuous mode
[   68.851304][ T4927] syzkaller0: entered allmulticast mode
[   68.966229][ T4930] syzkaller0: entered allmulticast mode
[   68.976085][ T4930] loop2: detected capacity change from 0 to 512
[   68.983089][ T4930] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   68.997242][ T4930] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   69.008530][ T4930] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   69.022882][ T4930] netlink: zone id is out of range
[   69.042884][ T4932] loop1: detected capacity change from 0 to 1024
[   69.049992][ T4930] netlink: zone id is out of range
[   69.055470][ T4930] netlink: zone id is out of range
[   69.060671][ T4930] netlink: zone id is out of range
[   69.066050][ T4930] netlink: zone id is out of range
[   69.071788][ T4930] netlink: zone id is out of range
[   69.072041][ T4932] ext4 filesystem being mounted at /106/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   69.077747][ T4930] netlink: zone id is out of range
[   69.092986][ T4930] netlink: zone id is out of range
[   69.098432][ T4930] netlink: zone id is out of range
[   69.104091][ T4930] netlink: zone id is out of range
[   69.185580][ T4932] EXT4-fs error (device loop1): ext4_map_blocks:814: inode #15: block 1: comm syz.1.455: lblock 1 mapped to illegal pblock 1 (length 15)
[   69.203403][ T4932] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117
[   69.216046][ T4932] EXT4-fs (loop1): This should not happen!! Data will be lost
[   69.216046][ T4932] 
[   69.233267][ T4932] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   69.246127][ T4940] loop2: detected capacity change from 0 to 2048
[   69.256628][ T4940] EXT4-fs: inline encryption not supported
[   69.262733][ T4936] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #15: block 1: comm syz.1.455: lblock 1 mapped to illegal pblock 1 (length 3)
[   69.277999][ T4936] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #15: block 1: comm syz.1.455: lblock 1 mapped to illegal pblock 1 (length 3)
[   69.293094][ T4936] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #15: block 1: comm syz.1.455: lblock 1 mapped to illegal pblock 1 (length 3)
[   69.299029][ T4940] EXT4-fs error (device loop2): ext4_find_extent:939: inode #2: comm syz.2.457: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   69.308667][ T4931] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #15: block 4: comm syz.1.455: lblock 4 mapped to illegal pblock 4 (length 4)
[   69.328463][ T4940] EXT4-fs error (device loop2): ext4_find_extent:939: inode #2: comm syz.2.457: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   69.367832][ T4936] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #15: block 1: comm syz.1.455: lblock 1 mapped to illegal pblock 1 (length 3)
[   69.391965][ T4931] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #15: block 4: comm syz.1.455: lblock 4 mapped to illegal pblock 4 (length 4)
[   69.410926][ T4936] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #15: block 1: comm syz.1.455: lblock 1 mapped to illegal pblock 1 (length 3)
[   69.433066][ T4931] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #15: block 4: comm syz.1.455: lblock 4 mapped to illegal pblock 4 (length 4)
[   69.450920][ T4949] netlink: 4 bytes leftover after parsing attributes in process `syz.4.460'.
[   69.479375][ T4952] loop2: detected capacity change from 0 to 128
[   69.511752][ T4958] FAULT_INJECTION: forcing a failure.
[   69.511752][ T4958] name failslab, interval 1, probability 0, space 0, times 0
[   69.524713][ T4958] CPU: 0 UID: 0 PID: 4958 Comm: syz.3.463 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   69.524744][ T4958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   69.524759][ T4958] Call Trace:
[   69.524766][ T4958]  <TASK>
[   69.524811][ T4958]  __dump_stack+0x1d/0x30
[   69.524833][ T4958]  dump_stack_lvl+0xe8/0x140
[   69.524854][ T4958]  dump_stack+0x15/0x1b
[   69.524887][ T4958]  should_fail_ex+0x265/0x280
[   69.524912][ T4958]  should_failslab+0x8c/0xb0
[   69.524971][ T4958]  kmem_cache_alloc_noprof+0x50/0x310
[   69.525002][ T4958]  ? skb_clone+0x151/0x1f0
[   69.525029][ T4958]  skb_clone+0x151/0x1f0
[   69.525056][ T4958]  __netlink_deliver_tap+0x2c9/0x500
[   69.525086][ T4958]  netlink_unicast+0x66b/0x690
[   69.525129][ T4958]  netlink_sendmsg+0x58b/0x6b0
[   69.525181][ T4958]  ? __pfx_netlink_sendmsg+0x10/0x10
[   69.525237][ T4958]  __sock_sendmsg+0x142/0x180
[   69.525271][ T4958]  ____sys_sendmsg+0x31e/0x4e0
[   69.525320][ T4958]  ___sys_sendmsg+0x17b/0x1d0
[   69.525372][ T4958]  __x64_sys_sendmsg+0xd4/0x160
[   69.525459][ T4958]  x64_sys_call+0x191e/0x2ff0
[   69.525484][ T4958]  do_syscall_64+0xd2/0x200
[   69.525587][ T4958]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   69.525615][ T4958]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   69.525698][ T4958]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.525725][ T4958] RIP: 0033:0x7f2f659debe9
[   69.525744][ T4958] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.525776][ T4958] RSP: 002b:00007f2f6443f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   69.525799][ T4958] RAX: ffffffffffffffda RBX: 00007f2f65c05fa0 RCX: 00007f2f659debe9
[   69.525813][ T4958] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[   69.525827][ T4958] RBP: 00007f2f6443f090 R08: 0000000000000000 R09: 0000000000000000
[   69.525841][ T4958] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   69.525855][ T4958] R13: 00007f2f65c06038 R14: 00007f2f65c05fa0 R15: 00007ffcf08d9a38
[   69.525877][ T4958]  </TASK>
[   69.759172][ T4961] syzkaller0: entered promiscuous mode
[   69.764739][ T4961] syzkaller0: entered allmulticast mode
[   69.786598][ T4946] netlink: 14593 bytes leftover after parsing attributes in process `syz.2.459'.
[   70.082498][ T4981] netlink: 4 bytes leftover after parsing attributes in process `syz.0.471'.
[   70.094851][ T4987] loop4: detected capacity change from 0 to 512
[   70.123333][ T4987] EXT4-fs mount: 38 callbacks suppressed
[   70.123349][ T4987] EXT4-fs (loop4): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   70.184702][ T3307] EXT4-fs (loop4): unmounting filesystem 00800000-0000-0000-0000-000000000000.
[   70.215087][ T4996] loop1: detected capacity change from 0 to 128
[   70.226421][   T29] kauditd_printk_skb: 167 callbacks suppressed
[   70.226436][   T29] audit: type=1326 audit(1755806790.049:2503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4997 comm="syz.0.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f065fbeebe9 code=0x7ffc0000
[   70.227336][ T4998] sd 0:0:1:0: device reset
[   70.233032][   T29] audit: type=1326 audit(1755806790.049:2504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4997 comm="syz.0.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f065fbeebe9 code=0x7ffc0000
[   70.284493][   T29] audit: type=1326 audit(1755806790.049:2505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4997 comm="syz.0.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=273 compat=0 ip=0x7f065fbeebe9 code=0x7ffc0000
[   70.308679][   T29] audit: type=1326 audit(1755806790.049:2506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4997 comm="syz.0.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f065fbeebe9 code=0x7ffc0000
[   70.332851][   T29] audit: type=1326 audit(1755806790.049:2507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4997 comm="syz.0.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f065fbeebe9 code=0x7ffc0000
[   70.356560][   T29] audit: type=1326 audit(1755806790.049:2508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4997 comm="syz.0.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f065fbeebe9 code=0x7ffc0000
[   70.380417][   T29] audit: type=1326 audit(1755806790.049:2509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4997 comm="syz.0.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f065fbed550 code=0x7ffc0000
[   70.404197][   T29] audit: type=1326 audit(1755806790.049:2510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4997 comm="syz.0.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f065fbeebe9 code=0x7ffc0000
[   70.428283][   T29] audit: type=1326 audit(1755806790.049:2511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4997 comm="syz.0.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f065fbeebe9 code=0x7ffc0000
[   70.501877][   T29] audit: type=1326 audit(1755806790.139:2512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4997 comm="syz.0.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f065fbeebe9 code=0x7ffc0000
[   70.540659][ T5008] loop0: detected capacity change from 0 to 512
[   70.577890][ T5008] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.593499][ T5008] ext4 filesystem being mounted at /100/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   70.631397][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.738998][ T5031] SELinux: failed to load policy
[   70.773604][ T5035] FAULT_INJECTION: forcing a failure.
[   70.773604][ T5035] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   70.786829][ T5035] CPU: 1 UID: 0 PID: 5035 Comm: syz.1.491 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   70.786855][ T5035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   70.786867][ T5035] Call Trace:
[   70.786873][ T5035]  <TASK>
[   70.786880][ T5035]  __dump_stack+0x1d/0x30
[   70.786900][ T5035]  dump_stack_lvl+0xe8/0x140
[   70.787022][ T5035]  dump_stack+0x15/0x1b
[   70.787061][ T5035]  should_fail_ex+0x265/0x280
[   70.787087][ T5035]  should_fail+0xb/0x20
[   70.787171][ T5035]  should_fail_usercopy+0x1a/0x20
[   70.787198][ T5035]  _copy_from_user+0x1c/0xb0
[   70.787234][ T5035]  memdup_user+0x5e/0xd0
[   70.787267][ T5035]  strndup_user+0x68/0xb0
[   70.787381][ T5035]  __se_sys_mount+0x8e/0x2e0
[   70.787410][ T5035]  ? fput+0x8f/0xc0
[   70.787447][ T5035]  ? ksys_write+0x192/0x1a0
[   70.787500][ T5035]  __x64_sys_mount+0x67/0x80
[   70.787524][ T5035]  x64_sys_call+0x2b4d/0x2ff0
[   70.787551][ T5035]  do_syscall_64+0xd2/0x200
[   70.787585][ T5035]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   70.787612][ T5035]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   70.787691][ T5035]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.787718][ T5035] RIP: 0033:0x7f60c6bdebe9
[   70.787736][ T5035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.787766][ T5035] RSP: 002b:00007f60c5647038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   70.787789][ T5035] RAX: ffffffffffffffda RBX: 00007f60c6e05fa0 RCX: 00007f60c6bdebe9
[   70.787802][ T5035] RDX: 0000000000000000 RSI: 00002000000004c0 RDI: 0000200000000480
[   70.787813][ T5035] RBP: 00007f60c5647090 R08: 0000000000000000 R09: 0000000000000000
[   70.787837][ T5035] R10: 0000000000002000 R11: 0000000000000246 R12: 0000000000000001
[   70.787849][ T5035] R13: 00007f60c6e06038 R14: 00007f60c6e05fa0 R15: 00007ffc5ec3e808
[   70.787874][ T5035]  </TASK>
[   71.004481][ T5038] netlink: 'syz.0.493': attribute type 10 has an invalid length.
[   71.012348][ T5038] netlink: 40 bytes leftover after parsing attributes in process `syz.0.493'.
[   71.142095][ T5051] syzkaller0: entered promiscuous mode
[   71.147752][ T5051] syzkaller0: entered allmulticast mode
[   71.288879][ T5061] netlink: 4 bytes leftover after parsing attributes in process `syz.0.503'.
[   71.355879][ T5071] netlink: 'syz.4.507': attribute type 6 has an invalid length.
[   71.365731][ T5074] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[   71.444548][ T5085] loop3: detected capacity change from 0 to 128
[   71.456950][ T5076] netlink: 14593 bytes leftover after parsing attributes in process `syz.3.509'.
[   71.659614][ T5102] FAULT_INJECTION: forcing a failure.
[   71.659614][ T5102] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   71.673085][ T5102] CPU: 1 UID: 0 PID: 5102 Comm: syz.2.518 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   71.673112][ T5102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   71.673125][ T5102] Call Trace:
[   71.673134][ T5102]  <TASK>
[   71.673143][ T5102]  __dump_stack+0x1d/0x30
[   71.673170][ T5102]  dump_stack_lvl+0xe8/0x140
[   71.673260][ T5102]  dump_stack+0x15/0x1b
[   71.673279][ T5102]  should_fail_ex+0x265/0x280
[   71.673361][ T5102]  should_fail+0xb/0x20
[   71.673375][ T5102]  should_fail_usercopy+0x1a/0x20
[   71.673394][ T5102]  _copy_to_user+0x20/0xa0
[   71.673418][ T5102]  simple_read_from_buffer+0xb5/0x130
[   71.673437][ T5102]  proc_fail_nth_read+0x10e/0x150
[   71.673473][ T5102]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   71.673495][ T5102]  vfs_read+0x1a8/0x770
[   71.673512][ T5102]  ? __rcu_read_unlock+0x4f/0x70
[   71.673588][ T5102]  ? __fget_files+0x184/0x1c0
[   71.673611][ T5102]  ksys_read+0xda/0x1a0
[   71.673636][ T5102]  __x64_sys_read+0x40/0x50
[   71.673663][ T5102]  x64_sys_call+0x27bc/0x2ff0
[   71.673714][ T5102]  do_syscall_64+0xd2/0x200
[   71.673792][ T5102]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   71.673812][ T5102]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   71.673834][ T5102]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.673856][ T5102] RIP: 0033:0x7fd2b9f4d5fc
[   71.673870][ T5102] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   71.673919][ T5102] RSP: 002b:00007fd2b89b7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   71.673935][ T5102] RAX: ffffffffffffffda RBX: 00007fd2ba175fa0 RCX: 00007fd2b9f4d5fc
[   71.673946][ T5102] RDX: 000000000000000f RSI: 00007fd2b89b70a0 RDI: 0000000000000004
[   71.674038][ T5102] RBP: 00007fd2b89b7090 R08: 0000000000000000 R09: 0000000000000000
[   71.674048][ T5102] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   71.674059][ T5102] R13: 00007fd2ba176038 R14: 00007fd2ba175fa0 R15: 00007fff5e277a08
[   71.674076][ T5102]  </TASK>
[   71.901619][ T5104] sd 0:0:1:0: device reset
[   72.046640][ T5108] mmap: syz.2.521 (5108) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   72.083089][ T5108] netlink: 'syz.2.521': attribute type 153 has an invalid length.
[   72.302152][ T5121] FAULT_INJECTION: forcing a failure.
[   72.302152][ T5121] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   72.315469][ T5121] CPU: 1 UID: 0 PID: 5121 Comm: syz.3.526 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   72.315502][ T5121] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   72.315516][ T5121] Call Trace:
[   72.315523][ T5121]  <TASK>
[   72.315531][ T5121]  __dump_stack+0x1d/0x30
[   72.315552][ T5121]  dump_stack_lvl+0xe8/0x140
[   72.315570][ T5121]  dump_stack+0x15/0x1b
[   72.315609][ T5121]  should_fail_ex+0x265/0x280
[   72.315635][ T5121]  should_fail+0xb/0x20
[   72.315655][ T5121]  should_fail_usercopy+0x1a/0x20
[   72.315681][ T5121]  _copy_from_iter+0xcf/0xe40
[   72.315705][ T5121]  ? __build_skb_around+0x1a0/0x200
[   72.315839][ T5121]  ? __alloc_skb+0x223/0x320
[   72.315894][ T5121]  netlink_sendmsg+0x471/0x6b0
[   72.315976][ T5121]  ? __pfx_netlink_sendmsg+0x10/0x10
[   72.316004][ T5121]  __sock_sendmsg+0x142/0x180
[   72.316113][ T5121]  ____sys_sendmsg+0x31e/0x4e0
[   72.316145][ T5121]  ___sys_sendmsg+0x17b/0x1d0
[   72.316189][ T5121]  __x64_sys_sendmsg+0xd4/0x160
[   72.316279][ T5121]  x64_sys_call+0x191e/0x2ff0
[   72.316306][ T5121]  do_syscall_64+0xd2/0x200
[   72.316339][ T5121]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   72.316376][ T5121]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   72.316405][ T5121]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.316430][ T5121] RIP: 0033:0x7f2f659debe9
[   72.316449][ T5121] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   72.316471][ T5121] RSP: 002b:00007f2f6443f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   72.316548][ T5121] RAX: ffffffffffffffda RBX: 00007f2f65c05fa0 RCX: 00007f2f659debe9
[   72.316565][ T5121] RDX: 00000000400048c0 RSI: 0000200000000200 RDI: 0000000000000005
[   72.316580][ T5121] RBP: 00007f2f6443f090 R08: 0000000000000000 R09: 0000000000000000
[   72.316595][ T5121] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   72.316660][ T5121] R13: 00007f2f65c06038 R14: 00007f2f65c05fa0 R15: 00007ffcf08d9a38
[   72.316684][ T5121]  </TASK>
[   72.554939][ T5125] loop3: detected capacity change from 0 to 512
[   72.562792][ T5125] EXT4-fs: Ignoring removed mblk_io_submit option
[   72.570188][ T5125] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   72.587122][ T5132] loop2: detected capacity change from 0 to 1024
[   72.590839][ T5125] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   72.602651][ T5125] EXT4-fs (loop3): orphan cleanup on readonly fs
[   72.610156][ T5125] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.528: Invalid block bitmap block 0 in block_group 0
[   72.625485][ T5125] EXT4-fs (loop3): Remounting filesystem read-only
[   72.625849][ T5132] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.634469][ T5125] EXT4-fs (loop3): 1 orphan inode deleted
[   72.652121][ T5125] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   72.661720][ T5132] ext4 filesystem being mounted at /108/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.720536][ T5125] syz.3.528 (5125) used greatest stack depth: 9592 bytes left
[   72.728759][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.760432][ T5147] EXT4-fs error (device loop2): ext4_map_blocks:814: inode #15: block 1: comm syz.2.532: lblock 1 mapped to illegal pblock 1 (length 15)
[   72.785827][ T5147] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117
[   72.798676][ T5147] EXT4-fs (loop2): This should not happen!! Data will be lost
[   72.798676][ T5147] 
[   72.846380][ T5147] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   72.900341][ T5132] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #15: block 1: comm syz.2.532: lblock 1 mapped to illegal pblock 1 (length 3)
[   72.931806][ T5130] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #15: block 4: comm syz.2.532: lblock 4 mapped to illegal pblock 4 (length 4)
[   72.965289][ T5132] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #15: block 1: comm syz.2.532: lblock 1 mapped to illegal pblock 1 (length 3)
[   72.983408][ T5130] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #15: block 4: comm syz.2.532: lblock 4 mapped to illegal pblock 4 (length 4)
[   72.996511][ T5132] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #15: block 1: comm syz.2.532: lblock 1 mapped to illegal pblock 1 (length 3)
[   73.026151][ T5144] loop0: detected capacity change from 0 to 1024
[   73.033132][ T5144] EXT4-fs: Ignoring removed nomblk_io_submit option
[   73.046521][ T5130] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #15: block 4: comm syz.2.532: lblock 4 mapped to illegal pblock 4 (length 4)
[   73.064151][ T5132] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #15: block 1: comm syz.2.532: lblock 1 mapped to illegal pblock 1 (length 3)
[   73.078862][ T5130] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #15: block 1: comm syz.2.532: lblock 1 mapped to illegal pblock 1 (length 3)
[   73.099761][ T5144] EXT4-fs (loop0): can't mount with journal_checksum, fs mounted w/o journal
[   73.151472][ T3302] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.164357][ T5163] loop3: detected capacity change from 0 to 128
[   73.187017][ T5163] __nla_validate_parse: 2 callbacks suppressed
[   73.187036][ T5163] netlink: 14593 bytes leftover after parsing attributes in process `syz.3.540'.
[   73.493514][ T5187] loop2: detected capacity change from 0 to 2048
[   73.506946][ T5187] EXT4-fs: inline encryption not supported
[   73.515970][ T5189] loop0: detected capacity change from 0 to 1024
[   73.540753][ T5189] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.554492][ T5187] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.567493][ T5189] ext4 filesystem being mounted at /118/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   73.583861][ T5187] EXT4-fs error (device loop2): ext4_find_extent:939: inode #2: comm syz.2.550: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   73.646909][ T5195] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #15: block 1: comm syz.0.551: lblock 1 mapped to illegal pblock 1 (length 15)
[   73.662972][ T5187] EXT4-fs error (device loop2): ext4_find_extent:939: inode #2: comm syz.2.550: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   73.679740][ T5195] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117
[   73.692592][ T5195] EXT4-fs (loop0): This should not happen!! Data will be lost
[   73.692592][ T5195] 
[   73.710206][ T5195] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   73.727082][ T5189] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 1: comm syz.0.551: lblock 1 mapped to illegal pblock 1 (length 3)
[   73.742028][ T5189] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 1: comm syz.0.551: lblock 1 mapped to illegal pblock 1 (length 3)
[   73.768039][ T5189] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 1: comm syz.0.551: lblock 1 mapped to illegal pblock 1 (length 3)
[   73.777525][ T5188] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 4: comm syz.0.551: lblock 4 mapped to illegal pblock 4 (length 4)
[   73.783684][ T5189] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 1: comm syz.0.551: lblock 1 mapped to illegal pblock 1 (length 3)
[   73.799520][ T5198] SELinux: failed to load policy
[   73.817349][ T3302] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.819465][ T5189] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 1: comm syz.0.551: lblock 1 mapped to illegal pblock 1 (length 3)
[   73.841668][ T5188] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 4: comm syz.0.551: lblock 4 mapped to illegal pblock 4 (length 4)
[   73.851456][ T5189] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 1: comm syz.0.551: lblock 1 mapped to illegal pblock 1 (length 3)
[   73.991235][ T5204] loop2: detected capacity change from 0 to 2048
[   73.998221][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.027175][ T5208] netlink: 1 bytes leftover after parsing attributes in process `syz.3.557'.
[   74.064718][ T5204] Alternate GPT is invalid, using primary GPT.
[   74.071342][ T5204]  loop2: p2 p3 p7
[   74.100072][ T5210] loop4: detected capacity change from 0 to 1024
[   74.662320][ T5210] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.674776][ T5210] ext4 filesystem being mounted at /120/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   74.908499][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.972147][ T5230] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   74.991827][ T5230] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   75.006735][ T5230] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   75.025958][ T5232] sd 0:0:1:0: device reset
[   75.030548][ T5230] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   75.044386][ T5230] loop4: detected capacity change from 0 to 512
[   75.060704][ T5230] ext4: Unknown parameter 'noacl'
[   75.107884][ T5235] net_ratelimit: 138 callbacks suppressed
[   75.107957][ T5235] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   75.126885][ T5219] netlink: 8 bytes leftover after parsing attributes in process `syz.3.558'.
[   75.148758][ T5219] loop3: detected capacity change from 0 to 1024
[   75.155901][ T5219] EXT4-fs: Ignoring removed orlov option
[   75.161808][ T5241] loop0: detected capacity change from 0 to 128
[   75.171359][ T5237] netlink: 14593 bytes leftover after parsing attributes in process `syz.0.567'.
[   75.191782][ T5219] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.254293][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.267262][   T29] kauditd_printk_skb: 305 callbacks suppressed
[   75.267280][   T29] audit: type=1400 audit(1755806795.089:2815): avc:  denied  { connect } for  pid=5244 comm="syz.1.568" lport=58 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   75.316289][   T29] audit: type=1400 audit(1755806795.139:2816): avc:  denied  { ioctl } for  pid=5251 comm="syz.3.569" path="socket:[10018]" dev="sockfs" ino=10018 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   75.451701][ T5250] netlink: 24 bytes leftover after parsing attributes in process `syz.1.570'.
[   75.452811][   T29] audit: type=1326 audit(1755806795.279:2817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5247 comm="syz.1.570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60c6bdebe9 code=0x7ffc0000
[   75.484583][   T29] audit: type=1326 audit(1755806795.279:2818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5247 comm="syz.1.570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=148 compat=0 ip=0x7f60c6bdebe9 code=0x7ffc0000
[   75.485078][ T5253] loop3: detected capacity change from 0 to 512
[   75.508528][   T29] audit: type=1326 audit(1755806795.279:2819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5247 comm="syz.1.570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60c6bdebe9 code=0x7ffc0000
[   75.508590][   T29] audit: type=1326 audit(1755806795.279:2820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5247 comm="syz.1.570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60c6bdebe9 code=0x7ffc0000
[   75.542198][ T5253] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.562127][   T29] audit: type=1326 audit(1755806795.289:2821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5247 comm="syz.1.570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f60c6bdebe9 code=0x7ffc0000
[   75.598296][   T29] audit: type=1326 audit(1755806795.289:2822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5247 comm="syz.1.570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60c6bdebe9 code=0x7ffc0000
[   75.621698][   T29] audit: type=1326 audit(1755806795.289:2823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5247 comm="syz.1.570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60c6bdebe9 code=0x7ffc0000
[   75.651603][ T5253] ext4 filesystem being mounted at /84/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   75.677683][   T29] audit: type=1400 audit(1755806795.499:2824): avc:  denied  { write } for  pid=5251 comm="syz.3.569" path="/84/file1/bus" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   75.714592][ T5252] netdevsim netdevsim3 netdevsim0: entered promiscuous mode
[   75.724602][ T5252] netdevsim netdevsim3 netdevsim0: left promiscuous mode
[   75.754853][ T5266] sd 0:0:1:0: device reset
[   75.761681][ T5253] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2051 sclass=netlink_route_socket pid=5253 comm=syz.3.569
[   75.835695][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.838067][ T5308] bridge0: port 3(batadv0) entered blocking state
[   75.851694][ T5308] bridge0: port 3(batadv0) entered disabled state
[   75.880004][ T5308] batadv0: entered allmulticast mode
[   75.891045][ T5308] batadv0: entered promiscuous mode
[   75.917451][ T5312] loop3: detected capacity change from 0 to 1024
[   75.976778][ T5315] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   75.996483][ T5312] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.010419][ T5312] ext4 filesystem being mounted at /85/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   76.078721][ T5322] netlink: 'syz.4.579': attribute type 2 has an invalid length.
[   76.086618][ T5322] netlink: 199836 bytes leftover after parsing attributes in process `syz.4.579'.
[   76.110700][ T5312] EXT4-fs error (device loop3): ext4_map_blocks:814: inode #15: block 1: comm syz.3.577: lblock 1 mapped to illegal pblock 1 (length 15)
[   76.139374][ T5312] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117
[   76.152077][ T5312] EXT4-fs (loop3): This should not happen!! Data will be lost
[   76.152077][ T5312] 
[   76.155908][ T5334] FAULT_INJECTION: forcing a failure.
[   76.155908][ T5334] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   76.175240][ T5334] CPU: 0 UID: 0 PID: 5334 Comm: syz.4.583 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   76.175267][ T5334] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   76.175279][ T5334] Call Trace:
[   76.175286][ T5334]  <TASK>
[   76.175294][ T5334]  __dump_stack+0x1d/0x30
[   76.175315][ T5334]  dump_stack_lvl+0xe8/0x140
[   76.175409][ T5312] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, 
[   76.175411][ T5334]  dump_stack+0x15/0x1b
[   76.175433][ T5334]  should_fail_ex+0x265/0x280
[   76.175458][ T5334]  should_fail+0xb/0x20
[   76.175479][ T5334]  should_fail_usercopy+0x1a/0x20
[   76.175557][ T5334]  _copy_from_user+0x1c/0xb0
[   76.175608][ T5334]  ___sys_sendmsg+0xc1/0x1d0
[   76.175660][ T5334]  __x64_sys_sendmsg+0xd4/0x160
[   76.175696][ T5334]  x64_sys_call+0x191e/0x2ff0
[   76.175728][ T5334]  do_syscall_64+0xd2/0x200
[   76.175776][ T5334]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   76.175809][ T5334]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   76.175874][ T5334]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.175904][ T5334] RIP: 0033:0x7fbad08bebe9
[   76.175926][ T5334] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.175949][ T5334] RSP: 002b:00007fbacf31f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   76.175975][ T5334] RAX: ffffffffffffffda RBX: 00007fbad0ae5fa0 RCX: 00007fbad08bebe9
[   76.176045][ T5334] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000004
[   76.176062][ T5334] RBP: 00007fbacf31f090 R08: 0000000000000000 R09: 0000000000000000
[   76.176079][ T5334] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   76.176094][ T5334] R13: 00007fbad0ae6038 R14: 00007fbad0ae5fa0 R15: 00007fff860a04e8
[   76.176121][ T5334]  </TASK>
[   76.185487][ T5335] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #15: block 1: comm syz.3.577: lblock 1 mapped to illegal pblock 1 (length 3)
[   76.195694][ T5312] block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   76.257124][ T5310] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #15: block 4: comm syz.3.577: lblock 4 mapped to illegal pblock 4 (length 4)
[   76.280931][ T5332] loop1: detected capacity change from 0 to 2048
[   76.305544][ T5310] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #15: block 4: comm syz.3.577: lblock 4 mapped to illegal pblock 4 (length 4)
[   76.416380][  T169] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[   76.425797][  T169] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[   76.426221][ T5310] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #15: block 4: comm syz.3.577: lblock 4 mapped to illegal pblock 4 (length 4)
[   76.435505][ T5335] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #15: block 1: comm syz.3.577: lblock 1 mapped to illegal pblock 1 (length 3)
[   76.464763][ T5335] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #15: block 1: comm syz.3.577: lblock 1 mapped to illegal pblock 1 (length 3)
[   76.479513][ T5310] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #15: block 1: comm syz.3.577: lblock 1 mapped to illegal pblock 1 (length 3)
[   76.495372][ T5332] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.510216][ T5310] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #15: block 1: comm syz.3.577: lblock 1 mapped to illegal pblock 1 (length 3)
[   76.564121][ T3311] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.605442][ T5354] loop4: detected capacity change from 0 to 1024
[   76.639027][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.651746][ T5352] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   76.674552][ T5354] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.690941][ T5354] ext4 filesystem being mounted at /128/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   76.767482][ T5365] netlink: 4 bytes leftover after parsing attributes in process `syz.0.594'.
[   76.781971][ T5370] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #15: block 1: comm syz.4.590: lblock 1 mapped to illegal pblock 1 (length 15)
[   76.797366][ T5366] netlink: 'syz.1.595': attribute type 10 has an invalid length.
[   76.815133][ T5370] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117
[   76.827178][ T5366] team0: Port device dummy0 added
[   76.827885][ T5370] EXT4-fs (loop4): This should not happen!! Data will be lost
[   76.827885][ T5370] 
[   76.844598][ T5366] netlink: 'syz.1.595': attribute type 10 has an invalid length.
[   76.854436][ T5366] team0: Failed to send port change of device dummy0 via netlink (err -105)
[   76.863447][ T5370] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   76.880597][ T5366] team0: Failed to send options change via netlink (err -105)
[   76.888233][ T5354] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #15: block 1: comm syz.4.590: lblock 1 mapped to illegal pblock 1 (length 3)
[   76.888512][ T5366] team0: Failed to send port change of device dummy0 via netlink (err -105)
[   76.904883][ T5354] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #15: block 1: comm syz.4.590: lblock 1 mapped to illegal pblock 1 (length 3)
[   76.920842][ T5353] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #15: block 4: comm syz.4.590: lblock 4 mapped to illegal pblock 4 (length 4)
[   76.927804][ T5354] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #15: block 1: comm syz.4.590: lblock 1 mapped to illegal pblock 1 (length 3)
[   76.940671][ T5366] team0: Port device dummy0 removed
[   76.975933][ T5366] bond0: (slave dummy0): Enslaving as an active interface with an up link
[   76.984806][ T5354] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #15: block 1: comm syz.4.590: lblock 1 mapped to illegal pblock 1 (length 3)
[   76.993994][ T5353] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #15: block 4: comm syz.4.590: lblock 4 mapped to illegal pblock 4 (length 4)
[   77.016845][ T5354] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #15: block 1: comm syz.4.590: lblock 1 mapped to illegal pblock 1 (length 3)
[   77.032015][ T5353] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #15: block 4: comm syz.4.590: lblock 4 mapped to illegal pblock 4 (length 4)
[   77.124556][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.165540][ T5387] FAULT_INJECTION: forcing a failure.
[   77.165540][ T5387] name failslab, interval 1, probability 0, space 0, times 0
[   77.178467][ T5387] CPU: 1 UID: 0 PID: 5387 Comm: syz.0.602 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   77.178496][ T5387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   77.178513][ T5387] Call Trace:
[   77.178520][ T5387]  <TASK>
[   77.178528][ T5387]  __dump_stack+0x1d/0x30
[   77.178550][ T5387]  dump_stack_lvl+0xe8/0x140
[   77.178571][ T5387]  dump_stack+0x15/0x1b
[   77.178587][ T5387]  should_fail_ex+0x265/0x280
[   77.178659][ T5387]  should_failslab+0x8c/0xb0
[   77.178749][ T5387]  kmem_cache_alloc_noprof+0x50/0x310
[   77.178778][ T5387]  ? security_file_alloc+0x32/0x100
[   77.178892][ T5387]  security_file_alloc+0x32/0x100
[   77.178925][ T5387]  init_file+0x5c/0x1d0
[   77.178968][ T5387]  alloc_empty_file+0x8b/0x200
[   77.179065][ T5387]  path_openat+0x68/0x2170
[   77.179085][ T5387]  ? _parse_integer_limit+0x170/0x190
[   77.179147][ T5387]  ? kstrtoull+0x111/0x140
[   77.179167][ T5387]  ? kstrtouint+0x76/0xc0
[   77.179188][ T5387]  do_filp_open+0x109/0x230
[   77.179217][ T5387]  do_sys_openat2+0xa6/0x110
[   77.179337][ T5387]  __x64_sys_openat+0xf2/0x120
[   77.179388][ T5387]  x64_sys_call+0x2e9c/0x2ff0
[   77.179488][ T5387]  do_syscall_64+0xd2/0x200
[   77.179516][ T5387]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   77.179601][ T5387]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   77.179627][ T5387]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.179659][ T5387] RIP: 0033:0x7f065fbeebe9
[   77.179674][ T5387] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.179732][ T5387] RSP: 002b:00007f065e64f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   77.179751][ T5387] RAX: ffffffffffffffda RBX: 00007f065fe15fa0 RCX: 00007f065fbeebe9
[   77.179802][ T5387] RDX: 000000000000c100 RSI: 0000200000000400 RDI: ffffffffffffff9c
[   77.179819][ T5387] RBP: 00007f065e64f090 R08: 0000000000000000 R09: 0000000000000000
[   77.179832][ T5387] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   77.179844][ T5387] R13: 00007f065fe16038 R14: 00007f065fe15fa0 R15: 00007ffc39412738
[   77.179867][ T5387]  </TASK>
[   77.437668][ T5392] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   77.468616][ T5394] sd 0:0:1:0: device reset
[   77.519396][ T5398] loop2: detected capacity change from 0 to 1024
[   77.541287][ T5398] SELinux: security_context_str_to_sid (root) failed with errno=-22
[   77.641730][ T5407] netdevsim netdevsim0: Direct firmware load for ./file0 failed with error -2
[   77.759267][ T5417] loop1: detected capacity change from 0 to 128
[   77.841144][ T5430] loop3: detected capacity change from 0 to 1024
[   77.861342][ T5430] SELinux: security_context_str_to_sid (root) failed with errno=-22
[   77.871478][ T5426] sd 0:0:1:0: device reset
[   77.895794][ T5422] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   77.949586][ T5441] loop1: detected capacity change from 0 to 1024
[   77.967899][ T5440] syzkaller0: entered promiscuous mode
[   77.973639][ T5440] syzkaller0: entered allmulticast mode
[   77.982167][ T5441] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.994856][ T5441] ext4 filesystem being mounted at /137/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.081767][ T5451] loop0: detected capacity change from 0 to 128
[   78.121219][ T5452] EXT4-fs error (device loop1): ext4_map_blocks:814: inode #15: block 1: comm syz.1.622: lblock 1 mapped to illegal pblock 1 (length 15)
[   78.152600][ T5452] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117
[   78.165585][ T5452] EXT4-fs (loop1): This should not happen!! Data will be lost
[   78.165585][ T5452] 
[   78.170423][ T5456] syzkaller0: entered promiscuous mode
[   78.181253][ T5456] syzkaller0: entered allmulticast mode
[   78.212600][ T5452] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   78.256295][ T5441] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #15: block 1: comm syz.1.622: lblock 1 mapped to illegal pblock 1 (length 3)
[   78.274028][ T5441] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #15: block 1: comm syz.1.622: lblock 1 mapped to illegal pblock 1 (length 3)
[   78.305164][ T5468] sd 0:0:1:0: device reset
[   78.324928][ T5436] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #15: block 4: comm syz.1.622: lblock 4 mapped to illegal pblock 4 (length 4)
[   78.345853][ T5441] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #15: block 1: comm syz.1.622: lblock 1 mapped to illegal pblock 1 (length 3)
[   78.363854][ T5474] loop4: detected capacity change from 0 to 1024
[   78.368672][ T5436] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #15: block 4: comm syz.1.622: lblock 4 mapped to illegal pblock 4 (length 4)
[   78.386848][ T5436] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #15: block 4: comm syz.1.622: lblock 4 mapped to illegal pblock 4 (length 4)
[   78.404326][ T5441] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #15: block 1: comm syz.1.622: lblock 1 mapped to illegal pblock 1 (length 3)
[   78.438548][ T5436] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #15: block 1: comm syz.1.622: lblock 1 mapped to illegal pblock 1 (length 3)
[   78.441867][ T5474] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.473040][ T5474] ext4 filesystem being mounted at /136/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.538819][ T3311] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.590658][ T5474] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #15: block 1: comm syz.4.637: lblock 1 mapped to illegal pblock 1 (length 15)
[   78.598951][ T5489] syzkaller0: entered promiscuous mode
[   78.610495][ T5489] syzkaller0: entered allmulticast mode
[   78.616782][ T5474] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117
[   78.629585][ T5474] EXT4-fs (loop4): This should not happen!! Data will be lost
[   78.629585][ T5474] 
[   78.653319][ T5490] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #15: block 1: comm syz.4.637: lblock 1 mapped to illegal pblock 1 (length 3)
[   78.671979][ T5474] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   78.688450][ T5490] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #15: block 1: comm syz.4.637: lblock 1 mapped to illegal pblock 1 (length 3)
[   78.706357][ T5473] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #15: block 4: comm syz.4.637: lblock 4 mapped to illegal pblock 4 (length 4)
[   78.721614][ T5490] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #15: block 1: comm syz.4.637: lblock 1 mapped to illegal pblock 1 (length 3)
[   78.736687][ T5473] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #15: block 4: comm syz.4.637: lblock 4 mapped to illegal pblock 4 (length 4)
[   78.755346][ T5490] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #15: block 1: comm syz.4.637: lblock 1 mapped to illegal pblock 1 (length 3)
[   78.770247][ T5473] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #15: block 4: comm syz.4.637: lblock 4 mapped to illegal pblock 4 (length 4)
[   78.784847][ T5490] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #15: block 1: comm syz.4.637: lblock 1 mapped to illegal pblock 1 (length 3)
[   78.844474][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.862064][ T5501] sd 0:0:1:0: device reset
[   78.946656][ T5513] FAULT_INJECTION: forcing a failure.
[   78.946656][ T5513] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   78.960616][ T5513] CPU: 0 UID: 0 PID: 5513 Comm: syz.1.652 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   78.960647][ T5513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   78.960734][ T5513] Call Trace:
[   78.960740][ T5513]  <TASK>
[   78.960748][ T5513]  __dump_stack+0x1d/0x30
[   78.960771][ T5513]  dump_stack_lvl+0xe8/0x140
[   78.960791][ T5513]  dump_stack+0x15/0x1b
[   78.960808][ T5513]  should_fail_ex+0x265/0x280
[   78.960829][ T5513]  should_fail_alloc_page+0xf2/0x100
[   78.960886][ T5513]  __alloc_frozen_pages_noprof+0xff/0x360
[   78.960986][ T5513]  alloc_pages_mpol+0xb3/0x250
[   78.961019][ T5513]  vma_alloc_folio_noprof+0x1aa/0x300
[   78.961054][ T5513]  handle_mm_fault+0xec2/0x2c20
[   78.961137][ T5513]  do_user_addr_fault+0x636/0x1090
[   78.961211][ T5513]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   78.961239][ T5513]  exc_page_fault+0x62/0xa0
[   78.961262][ T5513]  asm_exc_page_fault+0x26/0x30
[   78.961283][ T5513] RIP: 0033:0x7f60c6b8c20b
[   78.961299][ T5513] Code: c0 8b 87 c0 00 00 00 66 0f 6c c0 85 c0 0f 85 44 01 00 00 c7 87 c0 00 00 00 ff ff ff ff 48 8d 84 24 20 21 00 00 48 8d 7c 24 20 <0f> 29 44 24 40 49 89 e4 48 89 44 24 50 8b 43 74 48 89 9c 24 00 01
[   78.961385][ T5513] RSP: 002b:00007f60c5644e10 EFLAGS: 00010246
[   78.961408][ T5513] RAX: 00007f60c5646f30 RBX: 00007f60c6dd7640 RCX: 0000000000000000
[   78.961421][ T5513] RDX: 00007f60c5646f78 RSI: 00007f60c6c3eca8 RDI: 00007f60c5644e30
[   78.961435][ T5513] RBP: 0000000000000009 R08: 0000000000000000 R09: 0000000000000000
[   78.961448][ T5513] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   78.961460][ T5513] R13: 00007f60c6e06038 R14: 00007f60c6e05fa0 R15: 00007ffc5ec3e808
[   78.961488][ T5513]  </TASK>
[   78.961517][ T5513] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[   79.547006][ T5522] syzkaller0: entered allmulticast mode
[   79.600985][ T5522] loop1: detected capacity change from 0 to 512
[   79.610585][ T5522] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   79.611084][ T5523] syzkaller0: entered promiscuous mode
[   79.620844][ T5522] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities
[   79.635304][ T5523] syzkaller0: entered allmulticast mode
[   79.646697][ T5522] netlink: zone id is out of range
[   79.652675][ T5522] netlink: zone id is out of range
[   79.657992][ T5522] netlink: zone id is out of range
[   79.663372][ T5522] netlink: zone id is out of range
[   79.668675][ T5522] netlink: zone id is out of range
[   79.672770][ T5525] syzkaller0: entered promiscuous mode
[   79.679677][ T5525] syzkaller0: entered allmulticast mode
[   79.718293][ T5530] loop0: detected capacity change from 0 to 128
[   79.728741][ T5528] netlink: 14593 bytes leftover after parsing attributes in process `syz.0.657'.
[   79.785731][ T5535] loop3: detected capacity change from 0 to 2048
[   79.805180][ T5532] netlink: 4 bytes leftover after parsing attributes in process `syz.4.658'.
[   79.857915][ T5538] loop1: detected capacity change from 0 to 128
[   79.875866][ T5535] EXT4-fs: inline encryption not supported
[   79.888586][ T5545] loop2: detected capacity change from 0 to 1024
[   79.907390][ T5545] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.921760][ T5535] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.934780][ T5545] ext4 filesystem being mounted at /133/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   79.947602][ T5535] EXT4-fs error (device loop3): ext4_find_extent:939: inode #2: comm syz.3.659: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   79.991110][ T5535] EXT4-fs error (device loop3): ext4_find_extent:939: inode #2: comm syz.3.659: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   80.023179][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.061532][ T5561] EXT4-fs error (device loop2): ext4_map_blocks:814: inode #15: block 1: comm syz.2.663: lblock 1 mapped to illegal pblock 1 (length 15)
[   80.094326][ T5559] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.136132][ T5561] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117
[   80.148900][ T5561] EXT4-fs (loop2): This should not happen!! Data will be lost
[   80.148900][ T5561] 
[   80.170621][ T5561] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   80.189387][ T5559] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.230132][ T5571] syzkaller0: entered promiscuous mode
[   80.235998][ T5571] syzkaller0: entered allmulticast mode
[   80.307755][ T5545] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #15: block 1: comm syz.2.663: lblock 1 mapped to illegal pblock 1 (length 3)
[   80.323089][ T5545] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #15: block 1: comm syz.2.663: lblock 1 mapped to illegal pblock 1 (length 3)
[   80.338658][ T5545] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #15: block 1: comm syz.2.663: lblock 1 mapped to illegal pblock 1 (length 3)
[   80.354291][ T5545] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #15: block 1: comm syz.2.663: lblock 1 mapped to illegal pblock 1 (length 3)
[   80.369787][ T5544] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #15: block 4: comm syz.2.663: lblock 4 mapped to illegal pblock 4 (length 4)
[   80.485934][ T5559] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.584715][ T5559] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.623044][ T5545] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #15: block 1: comm syz.2.663: lblock 1 mapped to illegal pblock 1 (length 3)
[   80.647750][ T5544] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #15: block 4: comm syz.2.663: lblock 4 mapped to illegal pblock 4 (length 4)
[   80.670804][ T5544] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #15: block 4: comm syz.2.663: lblock 4 mapped to illegal pblock 4 (length 4)
[   80.685889][ T5578] netlink: 4 bytes leftover after parsing attributes in process `syz.1.671'.
[   80.725881][ T5291] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   80.746096][   T37] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   80.764840][ T5301] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   80.777996][ T5301] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   80.795912][ T5581] IPv6: sit1: Disabled Multicast RS
[   80.817249][ T3302] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.826691][   T29] kauditd_printk_skb: 130 callbacks suppressed
[   80.826709][   T29] audit: type=1326 audit(1755806800.639:2955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5583 comm="syz.0.673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f065fbeebe9 code=0x7ffc0000
[   80.857032][   T29] audit: type=1326 audit(1755806800.639:2956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5583 comm="syz.0.673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f065fbeebe9 code=0x7ffc0000
[   80.897309][ T5589] loop0: detected capacity change from 0 to 128
[   80.937054][ T5593] loop1: detected capacity change from 0 to 2048
[   80.940895][ T5595] loop2: detected capacity change from 0 to 512
[   80.944284][ T5593] EXT4-fs: inline encryption not supported
[   80.964032][   T29] audit: type=1400 audit(1755806800.789:2957): avc:  denied  { write } for  pid=5592 comm="syz.2.678" name="route" dev="proc" ino=4026532398 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[   81.004189][ T5593] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   81.026075][ T5593] EXT4-fs error (device loop1): ext4_find_extent:939: inode #2: comm syz.1.677: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   81.033238][   T29] audit: type=1326 audit(1755806800.849:2958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5591 comm="syz.1.677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60c6bdebe9 code=0x7ffc0000
[   81.063493][ T5593] EXT4-fs error (device loop1): ext4_find_extent:939: inode #2: comm syz.1.677: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   81.066456][   T29] audit: type=1326 audit(1755806800.849:2959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5591 comm="syz.1.677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f60c6bdebe9 code=0x7ffc0000
[   81.106590][   T29] audit: type=1326 audit(1755806800.849:2960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5591 comm="syz.1.677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60c6bdebe9 code=0x7ffc0000
[   81.130520][   T29] audit: type=1326 audit(1755806800.849:2961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5591 comm="syz.1.677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=128 compat=0 ip=0x7f60c6bdebe9 code=0x7ffc0000
[   81.153900][   T29] audit: type=1326 audit(1755806800.849:2962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5591 comm="syz.1.677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60c6bdebe9 code=0x7ffc0000
[   81.161745][ T5606] netlink: 8 bytes leftover after parsing attributes in process `syz.2.678'.
[   81.177531][   T29] audit: type=1326 audit(1755806800.849:2963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5591 comm="syz.1.677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f60c6bdebe9 code=0x7ffc0000
[   81.238972][ T5611] IPVS: sync thread started: state = BACKUP, mcast_ifn = batadv0, syncid = 0, id = 0
[   81.251593][ T3311] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.300377][   T29] audit: type=1326 audit(1755806800.869:2964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5591 comm="syz.1.677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60c6bdebe9 code=0x7ffc0000
[   81.358522][ T5616] netlink: 28 bytes leftover after parsing attributes in process `syz.0.683'.
[   81.367887][ T5616] netlink: 108 bytes leftover after parsing attributes in process `syz.0.683'.
[   81.377259][ T5616] FAULT_INJECTION: forcing a failure.
[   81.377259][ T5616] name failslab, interval 1, probability 0, space 0, times 0
[   81.390209][ T5616] CPU: 1 UID: 0 PID: 5616 Comm: syz.0.683 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   81.390248][ T5616] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   81.390304][ T5616] Call Trace:
[   81.390311][ T5616]  <TASK>
[   81.390320][ T5616]  __dump_stack+0x1d/0x30
[   81.390346][ T5616]  dump_stack_lvl+0xe8/0x140
[   81.390370][ T5616]  dump_stack+0x15/0x1b
[   81.390391][ T5616]  should_fail_ex+0x265/0x280
[   81.390412][ T5616]  should_failslab+0x8c/0xb0
[   81.390496][ T5616]  kmem_cache_alloc_noprof+0x50/0x310
[   81.390533][ T5616]  ? radix_tree_node_alloc+0x8a/0x1f0
[   81.390566][ T5616]  radix_tree_node_alloc+0x8a/0x1f0
[   81.390701][ T5616]  idr_get_free+0x1fa/0x550
[   81.390729][ T5616]  idr_alloc_u32+0xca/0x180
[   81.390766][ T5616]  tcf_idr_check_alloc+0x193/0x240
[   81.390866][ T5616]  tcf_ct_init+0x224/0xe80
[   81.390890][ T5616]  ? _raw_spin_unlock+0x26/0x50
[   81.390989][ T5616]  tcf_action_init_1+0x367/0x4a0
[   81.391028][ T5616]  tcf_action_init+0x267/0x6d0
[   81.391154][ T5616]  tc_ctl_action+0x291/0x830
[   81.391209][ T5616]  ? __pfx_tc_ctl_action+0x10/0x10
[   81.391253][ T5616]  rtnetlink_rcv_msg+0x657/0x6d0
[   81.391305][ T5616]  netlink_rcv_skb+0x123/0x220
[   81.391329][ T5616]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   81.391361][ T5616]  rtnetlink_rcv+0x1c/0x30
[   81.391391][ T5616]  netlink_unicast+0x5bd/0x690
[   81.391460][ T5616]  netlink_sendmsg+0x58b/0x6b0
[   81.391544][ T5616]  ? __pfx_netlink_sendmsg+0x10/0x10
[   81.391570][ T5616]  __sock_sendmsg+0x142/0x180
[   81.391651][ T5616]  ____sys_sendmsg+0x31e/0x4e0
[   81.391675][ T5616]  ___sys_sendmsg+0x17b/0x1d0
[   81.391708][ T5616]  __x64_sys_sendmsg+0xd4/0x160
[   81.391740][ T5616]  x64_sys_call+0x191e/0x2ff0
[   81.391834][ T5616]  do_syscall_64+0xd2/0x200
[   81.391900][ T5616]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   81.391972][ T5616]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   81.391997][ T5616]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.392053][ T5616] RIP: 0033:0x7f065fbeebe9
[   81.392070][ T5616] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   81.392093][ T5616] RSP: 002b:00007f065e64f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   81.392113][ T5616] RAX: ffffffffffffffda RBX: 00007f065fe15fa0 RCX: 00007f065fbeebe9
[   81.392125][ T5616] RDX: 0000000000000000 RSI: 0000200000007940 RDI: 0000000000000004
[   81.392136][ T5616] RBP: 00007f065e64f090 R08: 0000000000000000 R09: 0000000000000000
[   81.392228][ T5616] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   81.392239][ T5616] R13: 00007f065fe16038 R14: 00007f065fe15fa0 R15: 00007ffc39412738
[   81.392259][ T5616]  </TASK>
[   81.696680][ T5616] syz.0.683 (5616) used greatest stack depth: 9528 bytes left
[   81.777405][ T5618] net_ratelimit: 129 callbacks suppressed
[   81.777443][ T5618] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   81.832008][ T5626] netlink: 'syz.2.686': attribute type 13 has an invalid length.
[   81.839970][ T5626] netlink: 'syz.2.686': attribute type 27 has an invalid length.
[   81.889603][ T5633] smc: net device bond0 applied user defined pnetid SYZ2
[   81.912950][ T5637] loop2: detected capacity change from 0 to 128
[   81.933859][ T5639] loop4: detected capacity change from 0 to 2048
[   81.942506][ T5639] EXT4-fs: inline encryption not supported
[   81.977343][ T5642] loop0: detected capacity change from 0 to 2048
[   81.984695][ T5642] EXT4-fs: inline encryption not supported
[   81.990842][ T5624] loop1: detected capacity change from 0 to 2048
[   82.003281][ T5639] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.003631][ T5624] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.018111][ T5642] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.048092][ T5642] EXT4-fs error (device loop0): ext4_find_extent:939: inode #2: comm syz.0.692: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   82.060848][ T5639] EXT4-fs error (device loop4): ext4_find_extent:939: inode #2: comm syz.4.691: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   82.067121][ T5642] EXT4-fs error (device loop0): ext4_find_extent:939: inode #2: comm syz.0.692: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   82.101122][ T5639] EXT4-fs error (device loop4): ext4_find_extent:939: inode #2: comm syz.4.691: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   82.144542][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.156215][ T3311] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.166014][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.197994][ T5655] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   82.207078][ T5657] sg_write: data in/out 63015/8 bytes for SCSI command 0x7f-- guessing data in;
[   82.207078][ T5657]    program syz.1.695 not setting count and/or reply_len properly
[   82.235337][ T5658] loop0: detected capacity change from 0 to 512
[   82.262303][ T5658] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.288239][ T5658] ext4 filesystem being mounted at /146/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   82.348479][ T5653] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[   82.361383][ T5653] netdevsim netdevsim0 netdevsim0: left promiscuous mode
[   82.406442][ T5668] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   82.477227][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.620848][ T5675] loop4: detected capacity change from 0 to 1024
[   82.627697][ T5675] EXT4-fs: inline encryption not supported
[   82.633654][ T5675] EXT4-fs: Ignoring removed i_version option
[   82.643209][ T5675] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   82.655610][ T5675] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #3: block 1: comm syz.4.703: lblock 1 mapped to illegal pblock 1 (length 1)
[   82.680859][ T5675] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.703: Failed to acquire dquot type 0
[   82.684653][ T5678] loop1: detected capacity change from 0 to 2048
[   82.695002][ T5675] EXT4-fs error (device loop4): ext4_free_blocks:6696: comm syz.4.703: Freeing blocks not in datazone - block = 0, count = 4096
[   82.698978][ T5678] EXT4-fs: inline encryption not supported
[   82.731689][ T5675] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.703: Invalid inode bitmap blk 0 in block_group 0
[   82.749275][ T5682] FAULT_INJECTION: forcing a failure.
[   82.749275][ T5682] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   82.756156][   T37] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:2: lblock 1 mapped to illegal pblock 1 (length 1)
[   82.762801][ T5682] CPU: 1 UID: 0 PID: 5682 Comm: syz.3.706 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   82.762919][ T5682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   82.762937][ T5682] Call Trace:
[   82.762946][ T5682]  <TASK>
[   82.762956][ T5682]  __dump_stack+0x1d/0x30
[   82.762983][ T5682]  dump_stack_lvl+0xe8/0x140
[   82.763011][ T5682]  dump_stack+0x15/0x1b
[   82.763056][ T5682]  should_fail_ex+0x265/0x280
[   82.763094][ T5682]  should_fail+0xb/0x20
[   82.763119][ T5682]  should_fail_usercopy+0x1a/0x20
[   82.763149][ T5682]  _copy_from_iter+0xcf/0xe40
[   82.763261][ T5682]  ? _copy_from_iter+0x16d/0xe40
[   82.763302][ T5682]  copy_page_from_iter+0x178/0x2a0
[   82.763336][ T5682]  skb_copy_datagram_from_iter+0x232/0x490
[   82.763512][ T5682]  tun_get_user+0xafa/0x2680
[   82.763565][ T5682]  ? ref_tracker_alloc+0x1f2/0x2f0
[   82.763600][ T5682]  ? selinux_file_permission+0x1e4/0x320
[   82.763632][ T5682]  tun_chr_write_iter+0x15e/0x210
[   82.763682][ T5682]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   82.763722][ T5682]  vfs_write+0x52a/0x960
[   82.763763][ T5682]  ksys_write+0xda/0x1a0
[   82.763795][ T5682]  __x64_sys_write+0x40/0x50
[   82.763894][ T5682]  x64_sys_call+0x27fe/0x2ff0
[   82.763926][ T5682]  do_syscall_64+0xd2/0x200
[   82.763965][ T5682]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   82.764017][ T5682]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   82.764157][ T5682]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.764190][ T5682] RIP: 0033:0x7f2f659debe9
[   82.764213][ T5682] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.764283][ T5682] RSP: 002b:00007f2f6443f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   82.764325][ T5682] RAX: ffffffffffffffda RBX: 00007f2f65c05fa0 RCX: 00007f2f659debe9
[   82.764344][ T5682] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 00000000000000c8
[   82.764357][ T5682] RBP: 00007f2f6443f090 R08: 0000000000000000 R09: 0000000000000000
[   82.764369][ T5682] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   82.764385][ T5682] R13: 00007f2f65c06038 R14: 00007f2f65c05fa0 R15: 00007ffcf08d9a38
[   82.764480][ T5682]  </TASK>
[   82.800504][ T5675] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[   82.804327][   T37] EXT4-fs error (device loop4): ext4_release_dquot:6973: comm kworker/u8:2: Failed to release dquot type 0
[   82.814271][ T5675] EXT4-fs (loop4): 1 orphan inode deleted
[   82.819190][ T5678] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.823682][ T5675] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.842248][ T5678] EXT4-fs error (device loop1): ext4_find_extent:939: inode #2: comm syz.1.704: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   82.913796][ T5675] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.915719][ T5678] EXT4-fs error (device loop1): ext4_find_extent:939: inode #2: comm syz.1.704: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   82.966342][ T5690] loop3: detected capacity change from 0 to 128
[   83.104916][ T5688] netlink: 14593 bytes leftover after parsing attributes in process `syz.3.708'.
[   83.131836][ T3311] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.241639][ T5700] netlink: 'syz.4.711': attribute type 6 has an invalid length.
[   83.271669][ T5708] loop2: detected capacity change from 0 to 128
[   83.320043][ T5702] netlink: 14593 bytes leftover after parsing attributes in process `syz.2.712'.
[   83.432286][ T5717] loop1: detected capacity change from 0 to 128
[   83.447302][ T5714] netlink: 14593 bytes leftover after parsing attributes in process `syz.1.716'.
[   83.764430][ T5729] FAULT_INJECTION: forcing a failure.
[   83.764430][ T5729] name failslab, interval 1, probability 0, space 0, times 0
[   83.777181][ T5729] CPU: 1 UID: 0 PID: 5729 Comm: syz.0.720 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   83.777214][ T5729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   83.777229][ T5729] Call Trace:
[   83.777307][ T5729]  <TASK>
[   83.777317][ T5729]  __dump_stack+0x1d/0x30
[   83.777342][ T5729]  dump_stack_lvl+0xe8/0x140
[   83.777392][ T5729]  dump_stack+0x15/0x1b
[   83.777410][ T5729]  should_fail_ex+0x265/0x280
[   83.777434][ T5729]  should_failslab+0x8c/0xb0
[   83.777462][ T5729]  kmem_cache_alloc_noprof+0x50/0x310
[   83.777493][ T5729]  ? security_file_alloc+0x32/0x100
[   83.777601][ T5729]  security_file_alloc+0x32/0x100
[   83.777636][ T5729]  init_file+0x5c/0x1d0
[   83.777729][ T5729]  alloc_empty_file+0x8b/0x200
[   83.777761][ T5729]  dentry_open+0x2d/0x90
[   83.777792][ T5729]  __se_sys_fsmount+0x455/0x580
[   83.777856][ T5729]  __x64_sys_fsmount+0x43/0x50
[   83.777880][ T5729]  x64_sys_call+0x2ab3/0x2ff0
[   83.777904][ T5729]  do_syscall_64+0xd2/0x200
[   83.777933][ T5729]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   83.778032][ T5729]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   83.778123][ T5729]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.778146][ T5729] RIP: 0033:0x7f065fbeebe9
[   83.778163][ T5729] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   83.778184][ T5729] RSP: 002b:00007f065e64f038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b0
[   83.778257][ T5729] RAX: ffffffffffffffda RBX: 00007f065fe15fa0 RCX: 00007f065fbeebe9
[   83.778272][ T5729] RDX: 0000000000000006 RSI: 0000000000000001 RDI: 0000000000000006
[   83.778303][ T5729] RBP: 00007f065e64f090 R08: 0000000000000000 R09: 0000000000000000
[   83.778316][ T5729] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   83.778329][ T5729] R13: 00007f065fe16038 R14: 00007f065fe15fa0 R15: 00007ffc39412738
[   83.778350][ T5729]  </TASK>
[   84.148621][ T5732] 9pnet_fd: Insufficient options for proto=fd
[   84.247365][ T5724] loop4: detected capacity change from 0 to 1024
[   84.265203][ T5745] netlink: 'syz.2.724': attribute type 6 has an invalid length.
[   84.271269][ T5724] EXT4-fs: Ignoring removed nomblk_io_submit option
[   84.301053][ T5724] EXT4-fs (loop4): can't mount with journal_checksum, fs mounted w/o journal
[   84.309158][ T5747] loop3: detected capacity change from 0 to 512
[   84.329924][ T5750] FAULT_INJECTION: forcing a failure.
[   84.329924][ T5750] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   84.343332][ T5750] CPU: 0 UID: 0 PID: 5750 Comm: syz.2.726 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   84.343414][ T5750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   84.343429][ T5750] Call Trace:
[   84.343447][ T5750]  <TASK>
[   84.343457][ T5750]  __dump_stack+0x1d/0x30
[   84.343483][ T5750]  dump_stack_lvl+0xe8/0x140
[   84.343506][ T5750]  dump_stack+0x15/0x1b
[   84.343521][ T5750]  should_fail_ex+0x265/0x280
[   84.343542][ T5750]  should_fail+0xb/0x20
[   84.343610][ T5750]  should_fail_usercopy+0x1a/0x20
[   84.343687][ T5750]  _copy_from_iter+0xcf/0xe40
[   84.343718][ T5750]  hci_sock_sendmsg+0x36d/0x910
[   84.343754][ T5750]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[   84.343791][ T5750]  __sock_sendmsg+0x142/0x180
[   84.343879][ T5750]  sock_write_iter+0x165/0x1b0
[   84.343909][ T5750]  aio_write+0x2e5/0x410
[   84.343951][ T5750]  io_submit_one+0xacd/0x11d0
[   84.344009][ T5750]  __se_sys_io_submit+0xfb/0x280
[   84.344050][ T5750]  __x64_sys_io_submit+0x43/0x50
[   84.344080][ T5750]  x64_sys_call+0x2d5d/0x2ff0
[   84.344190][ T5750]  do_syscall_64+0xd2/0x200
[   84.344223][ T5750]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   84.344252][ T5750]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   84.344283][ T5750]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.344344][ T5750] RIP: 0033:0x7fd2b9f4ebe9
[   84.344363][ T5750] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.344385][ T5750] RSP: 002b:00007fd2b89b7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1
[   84.344406][ T5750] RAX: ffffffffffffffda RBX: 00007fd2ba175fa0 RCX: 00007fd2b9f4ebe9
[   84.344419][ T5750] RDX: 0000200000000340 RSI: 0000000000000001 RDI: 00007fd2b8973000
[   84.344430][ T5750] RBP: 00007fd2b89b7090 R08: 0000000000000000 R09: 0000000000000000
[   84.344486][ T5750] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   84.344501][ T5750] R13: 00007fd2ba176038 R14: 00007fd2ba175fa0 R15: 00007fff5e277a08
[   84.344524][ T5750]  </TASK>
[   84.349957][ T5752] loop0: detected capacity change from 0 to 512
[   84.442816][ T5747] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.600476][ T5756] syzkaller0: entered promiscuous mode
[   84.606117][ T5756] syzkaller0: entered allmulticast mode
[   84.615815][ T5747] ext4 filesystem being mounted at /109/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   84.642877][ T5747] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.725: corrupted xattr block 19: overlapping e_value 
[   84.657182][ T5747] EXT4-fs (loop3): Remounting filesystem read-only
[   84.663956][ T5747] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[   84.679087][ T5759] netlink: 8 bytes leftover after parsing attributes in process `syz.0.727'.
[   84.680202][ T5747] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[   84.702974][ T5759] IPVS: Unknown mcast interface: batadv0
[   84.709002][ T5761] loop1: detected capacity change from 0 to 2048
[   84.731648][ T5761] EXT4-fs: inline encryption not supported
[   84.739312][ T5764] syzkaller0: entered allmulticast mode
[   84.752440][ T5764] loop2: detected capacity change from 0 to 512
[   84.752628][ T5761] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   84.767864][ T5764] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   84.777192][ T5761] EXT4-fs error (device loop1): ext4_find_extent:939: inode #2: comm syz.1.729: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   84.780960][ T5764] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   84.808176][ T5761] EXT4-fs error (device loop1): ext4_find_extent:939: inode #2: comm syz.1.729: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   84.840043][ T3311] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.861565][ T5764] netlink: zone id is out of range
[   84.866793][ T5764] netlink: zone id is out of range
[   84.872051][ T5764] netlink: zone id is out of range
[   84.877348][ T5764] netlink: zone id is out of range
[   84.882551][ T5764] netlink: zone id is out of range
[   84.887859][ T5764] netlink: zone id is out of range
[   84.893101][ T5764] netlink: zone id is out of range
[   84.898741][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.932718][ T5779] loop3: detected capacity change from 0 to 128
[   84.965127][ T5787] netlink: 4 bytes leftover after parsing attributes in process `syz.3.737'.
[   84.974348][ T5787] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   84.981926][ T5787] batman_adv: batadv0: Removing interface: batadv_slave_0
[   84.989837][ T5787] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   84.997313][ T5787] batman_adv: batadv0: Removing interface: batadv_slave_1
[   85.011453][ T5791] loop4: detected capacity change from 0 to 128
[   85.028725][ T5781] netlink: 14593 bytes leftover after parsing attributes in process `syz.4.734'.
[   85.045916][ T5794] loop2: detected capacity change from 0 to 1024
[   85.080517][ T5794] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   85.099439][ T5794] ext4 filesystem being mounted at /144/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   85.214967][ T5799] EXT4-fs error (device loop2): ext4_map_blocks:814: inode #15: block 1: comm syz.2.739: lblock 1 mapped to illegal pblock 1 (length 15)
[   85.247563][ T5799] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117
[   85.260258][ T5799] EXT4-fs (loop2): This should not happen!! Data will be lost
[   85.260258][ T5799] 
[   85.273521][ T5799] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   85.320374][ T5801] syzkaller0: entered promiscuous mode
[   85.325931][ T5801] syzkaller0: entered allmulticast mode
[   85.334240][ T5794] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #15: block 1: comm syz.2.739: lblock 1 mapped to illegal pblock 1 (length 3)
[   85.357306][ T5794] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #15: block 1: comm syz.2.739: lblock 1 mapped to illegal pblock 1 (length 3)
[   85.382047][ T5794] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #15: block 1: comm syz.2.739: lblock 1 mapped to illegal pblock 1 (length 3)
[   85.401082][ T5794] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #15: block 1: comm syz.2.739: lblock 1 mapped to illegal pblock 1 (length 3)
[   85.420092][ T5794] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #15: block 1: comm syz.2.739: lblock 1 mapped to illegal pblock 1 (length 3)
[   85.444240][ T5794] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #15: block 1: comm syz.2.739: lblock 1 mapped to illegal pblock 1 (length 3)
[   85.445022][ T5792] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #15: block 4: comm syz.2.739: lblock 4 mapped to illegal pblock 4 (length 4)
[   85.474143][ T5792] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #15: block 4: comm syz.2.739: lblock 4 mapped to illegal pblock 4 (length 4)
[   85.544181][ T5804] syzkaller0: entered promiscuous mode
[   85.549827][ T5804] syzkaller0: entered allmulticast mode
[   85.558239][ T3302] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.815068][ T5830] syzkaller0: entered allmulticast mode
[   85.834081][ T5832] netlink: 4 bytes leftover after parsing attributes in process `syz.4.753'.
[   85.846070][ T5832] netlink: 4 bytes leftover after parsing attributes in process `syz.4.753'.
[   85.871385][ T5832] IPVS: Error joining to the multicast group
[   85.900330][   T29] kauditd_printk_skb: 208 callbacks suppressed
[   85.900345][   T29] audit: type=1326 audit(1755806805.719:3170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5836 comm="syz.4.755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbad08bebe9 code=0x7ffc0000
[   85.933129][   T29] audit: type=1326 audit(1755806805.759:3171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5836 comm="syz.4.755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=461 compat=0 ip=0x7fbad08bebe9 code=0x7ffc0000
[   85.957057][   T29] audit: type=1326 audit(1755806805.759:3172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5836 comm="syz.4.755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbad08bebe9 code=0x7ffc0000
[   85.980751][   T29] audit: type=1326 audit(1755806805.759:3173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5836 comm="syz.4.755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbad08bebe9 code=0x7ffc0000
[   86.004375][   T29] audit: type=1326 audit(1755806805.759:3174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5836 comm="syz.4.755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbad08bebe9 code=0x7ffc0000
[   86.028030][   T29] audit: type=1326 audit(1755806805.759:3175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5836 comm="syz.4.755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbad08bebe9 code=0x7ffc0000
[   86.051780][   T29] audit: type=1326 audit(1755806805.759:3176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5836 comm="syz.4.755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbad08bebe9 code=0x7ffc0000
[   86.075609][   T29] audit: type=1326 audit(1755806805.759:3177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5836 comm="syz.4.755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbad08bebe9 code=0x7ffc0000
[   86.099455][   T29] audit: type=1326 audit(1755806805.759:3178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5836 comm="syz.4.755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbad08bebe9 code=0x7ffc0000
[   86.123039][   T29] audit: type=1326 audit(1755806805.759:3179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5836 comm="syz.4.755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=284 compat=0 ip=0x7fbad08bebe9 code=0x7ffc0000
[   86.171901][ T5844] loop0: detected capacity change from 0 to 128
[   86.290135][ T5864] loop1: detected capacity change from 0 to 128
[   86.299532][ T5858] netlink: 14593 bytes leftover after parsing attributes in process `syz.1.762'.
[   86.313540][ T5865] loop0: detected capacity change from 0 to 128
[   86.328484][ T5861] netlink: 14593 bytes leftover after parsing attributes in process `syz.0.763'.
[   86.851178][ T5883] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   87.126113][ T5889] loop4: detected capacity change from 0 to 128
[   87.350788][ T5908] loop1: detected capacity change from 0 to 2048
[   87.357646][ T5908] EXT4-fs: inline encryption not supported
[   87.397111][ T5908] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   87.411858][ T5908] EXT4-fs error (device loop1): ext4_find_extent:939: inode #2: comm syz.1.776: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   87.429812][ T5908] EXT4-fs error (device loop1): ext4_find_extent:939: inode #2: comm syz.1.776: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   87.460885][ T3311] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.478485][ T5913] syzkaller0: entered promiscuous mode
[   87.484406][ T5913] syzkaller0: entered allmulticast mode
[   87.520943][ T5915] loop1: detected capacity change from 0 to 512
[   87.589862][ T5922] loop0: detected capacity change from 0 to 512
[   87.597319][ T5922] EXT4-fs: Ignoring removed nomblk_io_submit option
[   87.598497][ T5923] netlink: 8 bytes leftover after parsing attributes in process `syz.1.778'.
[   87.604393][ T5922] EXT4-fs: Ignoring removed nomblk_io_submit option
[   87.621404][ T5922] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[   87.626193][ T5923] IPVS: Unknown mcast interface: batadv0
[   87.631375][ T5922] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2
[   87.644692][ T5922] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -2
[   87.653339][ T5922] EXT4-fs (loop0): 1 truncate cleaned up
[   87.659586][ T5922] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   87.676414][ T5922] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #2: block 4: comm syz.0.780: lblock 0 mapped to illegal pblock 4 (length 1)
[   87.691326][ T5922] EXT4-fs (loop0): Remounting filesystem read-only
[   87.739270][ T5926] loop3: detected capacity change from 0 to 1024
[   87.752354][ T5926] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   87.769350][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.793095][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.844257][ T5937] loop3: detected capacity change from 0 to 128
[   87.851222][ T5938] loop0: detected capacity change from 0 to 128
[   87.862560][ T5930] netlink: 14593 bytes leftover after parsing attributes in process `syz.0.782'.
[   87.889763][ T5940] syzkaller0: entered allmulticast mode
[   87.899567][ T5940] net_ratelimit: 189 callbacks suppressed
[   87.899583][ T5940] netlink: zone id is out of range
[   87.910622][ T5940] netlink: zone id is out of range
[   87.915813][ T5940] netlink: zone id is out of range
[   87.921099][ T5940] netlink: zone id is out of range
[   87.926283][ T5940] netlink: zone id is out of range
[   87.931509][ T5940] netlink: zone id is out of range
[   87.936664][ T5940] netlink: zone id is out of range
[   87.941986][ T5940] netlink: zone id is out of range
[   87.947207][ T5940] netlink: zone id is out of range
[   87.952383][ T5940] netlink: zone id is out of range
[   88.181185][ T5945] loop3: detected capacity change from 0 to 2048
[   88.188275][ T5945] EXT4-fs: inline encryption not supported
[   88.205567][ T5945] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   88.220804][ T5945] EXT4-fs error (device loop3): ext4_find_extent:939: inode #2: comm syz.3.788: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   88.238354][ T5945] EXT4-fs error (device loop3): ext4_find_extent:939: inode #2: comm syz.3.788: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   88.267610][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.356981][ T5951] syzkaller0: entered promiscuous mode
[   88.362878][ T5951] syzkaller0: entered allmulticast mode
[   88.417062][ T5956] netlink: 4 bytes leftover after parsing attributes in process `syz.4.792'.
[   88.441839][ T5959] loop1: detected capacity change from 0 to 128
[   88.454583][ T5953] netlink: 14593 bytes leftover after parsing attributes in process `syz.1.791'.
[   88.474208][ T5938] ==================================================================
[   88.482343][ T5938] BUG: KCSAN: data-race in vfs_fsync_range / writeback_single_inode
[   88.490463][ T5938] 
[   88.492835][ T5938] write to 0xffff88811a05e228 of 4 bytes by task 5930 on cpu 1:
[   88.500571][ T5938]  writeback_single_inode+0x14a/0x3e0
[   88.506083][ T5938]  sync_inode_metadata+0x5b/0x90
[   88.511042][ T5938]  __generic_file_fsync+0xf8/0x140
[   88.516331][ T5938]  fat_file_fsync+0x49/0x100
[   88.520957][ T5938]  vfs_fsync_range+0x10d/0x130
[   88.525836][ T5938]  generic_file_write_iter+0x1b8/0x2f0
[   88.531320][ T5938]  iter_file_splice_write+0x663/0xa60
[   88.536790][ T5938]  direct_splice_actor+0x153/0x2a0
[   88.541933][ T5938]  splice_direct_to_actor+0x30f/0x680
[   88.547522][ T5938]  do_splice_direct+0xda/0x150
[   88.552295][ T5938]  do_sendfile+0x380/0x650
[   88.556969][ T5938]  __x64_sys_sendfile64+0x105/0x150
[   88.562303][ T5938]  x64_sys_call+0x2bb0/0x2ff0
[   88.567099][ T5938]  do_syscall_64+0xd2/0x200
[   88.571632][ T5938]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.577539][ T5938] 
[   88.579881][ T5938] read to 0xffff88811a05e228 of 4 bytes by task 5938 on cpu 0:
[   88.587617][ T5938]  vfs_fsync_range+0x9b/0x130
[   88.592405][ T5938]  generic_file_write_iter+0x1b8/0x2f0
[   88.597908][ T5938]  iter_file_splice_write+0x663/0xa60
[   88.603326][ T5938]  direct_splice_actor+0x153/0x2a0
[   88.608453][ T5938]  splice_direct_to_actor+0x30f/0x680
[   88.613926][ T5938]  do_splice_direct+0xda/0x150
[   88.618704][ T5938]  do_sendfile+0x380/0x650
[   88.623249][ T5938]  __x64_sys_sendfile64+0x105/0x150
[   88.628671][ T5938]  x64_sys_call+0x2bb0/0x2ff0
[   88.633403][ T5938]  do_syscall_64+0xd2/0x200
[   88.638063][ T5938]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.644605][ T5938] 
[   88.646938][ T5938] value changed: 0x00000038 -> 0x00000022
[   88.652746][ T5938] 
[   88.655169][ T5938] Reported by Kernel Concurrency Sanitizer on:
[   88.661324][ T5938] CPU: 0 UID: 0 PID: 5938 Comm: syz.0.782 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   88.671145][ T5938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   88.681313][ T5938] ==================================================================