last executing test programs:

4.157086499s ago: executing program 4 (id=480):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f00000002c0)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x12, 0x0, 0x12)
recvfrom$inet(r0, &(0x7f0000000100)=""/24, 0xfffffffffffffd5b, 0xc9100120, 0x0, 0xfffffffffffffd25)
socket(0xa, 0x5, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000007000000850000008600000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)

3.256551379s ago: executing program 4 (id=489):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x48100, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000180)=0x7d)
syz_read_part_table(0x59f, &(0x7f0000000000)="$eJzs0r1Lq1ccB/DzBC5poZdcLhcc7CAYXBoV4qBDMojENIsRsSKls+Cgg+DgICnR2Zd/QPENxEXcHcUIohAnySjOBcUlU0rrU7Dd2mLEy+ezPJxzfuf8zuH7BN61RPit1WpFIYRW8t/v/umoMFrqGh+emAwhCr+EEArff/fnShRX/HXqSTwux+NSMlvfuRx5PPp01X1TS+8l4vXTRAi/hhDm7vZT//dtfP2O8+epldWF4tpSfva2uHw/MNNb6FwvzG8O7uYqUx256fjHOk20p3+6PnRw3So/bH3s+1CrN7MXcV0mep3+vK1/5r/9pdqoNsd6Dhf7M58bZ5WNOPcn+QMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAK/sOH+eWlldKK4t5Wdvi8v3AzO9hc71wvzm4G6uMtWRm048150m2tM/XR86uG6VH7Y+9n2o1ZvZi7guE73Y9Ep3of1+CH/Pf/tLtVFtjvUcLvZnPjfOKhtx7k/RW98UAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgvCqOlrvHhickQovBNCOHHm5+7/5hvJZ/Xo7juJP6W4/lSMlvfuRx5PPp01X1TS++NJ0NIvjh37m4/9W07H8J/8nsAAAD//x8lhag=")
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000009c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f00000005c0)='wbt_step\x00', r2}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = gettid()
sendmsg$unix(r4, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000002c0)="a7", 0x1}], 0x1, &(0x7f0000001040)=ANY=[@ANYRES32=r5, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r4, @ANYRES32=r3, @ANYRES32=r3, @ANYRES32=r4, @ANYRES32=r3, @ANYRES32=r4, @ANYRES32=r3, @ANYRES32=r4, @ANYBLOB="1c000000000000000100000402000000", @ANYRES32, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r3, @ANYBLOB="0000000018"], 0xa0}, 0x4004881)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r6}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x6, 0x5, &(0x7f0000000700)=ANY=[@ANYBLOB="18020000fffdffff0000000000000000850000004100000085000000d000000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb}, 0x94)
openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x48e02, 0x0)
lstat(0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x0, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r7, 0x6, 0x0, 0x0, 0x0)
fchdir(0xffffffffffffffff)
r8 = open(&(0x7f0000000300)='./file1\x00', 0x14b042, 0xc4)
ftruncate(r8, 0x2007ffb)
sendfile(r8, r8, 0x0, 0x1000000201005)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_emit_ethernet(0xaf, 0x0, 0x0)

2.893217351s ago: executing program 4 (id=492):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
pidfd_send_signal(0xffffffffffffffff, 0x30, &(0x7f0000000140)={0x1a, 0xe, 0x3}, 0x0)

2.874137954s ago: executing program 4 (id=493):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = syz_clone(0x80, 0x0, 0x0, 0x0, 0x0, 0x0)
kcmp(r1, r1, 0x2, 0xffffffffffffffff, 0xffffffffffffffff)
munmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="540000001000ffff25bd7000fcdbdf2700000000", @ANYRES32=0x0, @ANYBLOB="040004f2a92b68af11f0beca9b187e90002308070033ec12800e00010069703665727370616e0000002000028005001600020000000400120006001821eae2b23c4bbde732c65b2c57e01409b9fb885a8352a8f8e919b0c2bca2f4f32eaf0047038e352a3473020d0c62008c2345107b1f7d4c94f6b886b067977bccd0d2cb6aada298548bb3960f1abad230cecaf5322e0eff1e63493afa3f139b508cb1a87c2cb5a99f5276d859b7a89300d14a62d76e9a4416320b4cf3da84ecf88620ff15860d30deadbc163ada9aac271be07861c92db5ca93ac0a82f7771519"], 0x54}, 0x1, 0x0, 0x0, 0x804}, 0x804)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRESDEC=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$FS_IOC_GETFLAGS(r3, 0x80086601, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x800c4, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r5, &(0x7f0000004200)='t', 0x1)
sendfile(r5, r4, 0x0, 0x3ffff)
sendfile(r5, r4, 0x0, 0x7ffff000)
socket$key(0xf, 0x3, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = fsopen(&(0x7f0000000000)='binder\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
fsmount(r6, 0x0, 0x0)
open(&(0x7f0000000040)='./bus\x00', 0x143142, 0x80)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x1c1840, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000e80)='./bus\x00', 0x1c1002, 0x0)
ioctl$PPPIOCSPASS(r4, 0x40107447, &(0x7f0000000240)={0x6, &(0x7f00000001c0)=[{0x5, 0x7, 0x5, 0x7bba}, {0xfffe, 0x80, 0x63, 0x3}, {0xc3a1, 0x2c, 0x0, 0x6}, {0x9, 0x10, 0x6, 0x7f}, {0x0, 0x0, 0x53, 0x6}, {0x8, 0xd, 0xb, 0x5}]})
write(r8, &(0x7f0000000600)='t', 0x1)
sendfile(r8, r7, 0x0, 0x40001)

2.520481935s ago: executing program 2 (id=497):
syz_emit_ethernet(0x6a, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x3, 0x0, 0x5c, 0x0, 0x0, 0x0, 0x2f, 0x0, @rand_addr, @broadcast}, {0x0, 0x883e, 0x48, 0x0, @wg=@cookie={0x3, 0x3, "90c7205b89c6ba79f201fb2a7ccdec3f092308bf4d1ae199", "11da928cceb7f2257669a73e935ab02244656cfe8638fefb94440b907850c38e"}}}}}}, 0x0)

2.409399265s ago: executing program 0 (id=499):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000000e00)=ANY=[@ANYBLOB="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"], &(0x7f00002bf000)='syzkaller\x00', 0x4, 0x436, &(0x7f0000000600)=""/192, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x7, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffff13}, 0x48)
r1 = socket$kcm(0x29, 0x2, 0x0)
r2 = socket$inet6(0xa, 0x803, 0x6)
connect$inet6(r2, &(0x7f0000000200)={0xa, 0x4e2b, 0x2, @empty, 0x5a60}, 0x1c)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4, 0x0, 0xfffffffffffffffe}, 0x18)
ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f0000000400)={<r5=>r2})
ioctl$sock_kcm_SIOCKCMATTACH(r5, 0x89e0, &(0x7f0000000180)={r2, r0})
sendmmsg$inet(r1, &(0x7f00000009c0)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000240)="e8", 0x1}], 0x1}}], 0x1, 0x20004050)

2.376200088s ago: executing program 2 (id=500):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000000e00)=ANY=[@ANYBLOB="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"], &(0x7f00002bf000)='syzkaller\x00', 0x4, 0x436, &(0x7f0000000600)=""/192, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x7, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffff13}, 0x48)
r1 = socket$kcm(0x29, 0x2, 0x0)
r2 = socket$inet6(0xa, 0x803, 0x6)
connect$inet6(r2, &(0x7f0000000200)={0xa, 0x4e2b, 0x2, @empty, 0x5a60}, 0x1c)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000300), &(0x7f0000000500), 0x96b, r3}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
write$selinux_load(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0xfffe)
ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f0000000400)={<r4=>r2})
ioctl$sock_kcm_SIOCKCMATTACH(r4, 0x89e0, &(0x7f0000000180)={r2, r0})
sendmmsg$inet(r1, &(0x7f00000009c0)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000240)="e8", 0x1}], 0x1}}], 0x1, 0x20004050)

2.365099589s ago: executing program 0 (id=501):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./file0\x00', 0x2010008, &(0x7f00000001c0), 0xff, 0x53f, &(0x7f0000000480)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000006500000008000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newtaction={0xe68, 0x30, 0x871a15abc695fa3d, 0x70bd2d, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{0x0, 0x300}, 0x93}, [{0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x9}, {0x0, 0x0, 0x0, 0x0, 0x3000000, 0x40000000}, {0x1, 0x0, 0x0, 0x4000000, 0x7, 0x80000}, {0x8000, 0x5, 0x0, 0xfffffffc, 0x5}, {0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x800000, 0x0, 0x6}, {0x0, 0xc3}, {0x0, 0x5, 0x0, 0x0, 0x5}, {0x5}, {}, {0x0, 0x10}, {0x0, 0x470a, 0x0, 0x8000000}, {}, {0x2, 0x0, 0x0, 0x0, 0x6, 0x6}, {0x0, 0x0, 0x40000}, {}, {0x0, 0x0, 0x0, 0x1, 0x0, 0xfff}, {0x0, 0x0, 0x0, 0x8000000}, {}, {0x0, 0x0, 0x0, 0x0, 0x20}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {}, {0x0, 0x0, 0x0, 0xfffffffc}, {0x20000}, {}, {0x0, 0x7, 0x0, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x3}, {0x0, 0x8000, 0x0, 0x0, 0x5}, {0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x60569add}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2b25}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {0xffffffff, 0x9}, {0x0, 0x0, 0x0, 0x0, 0xfffff800}, {0x3, 0x0, 0x0, 0xfff}, {0x0, 0x0, 0x0, 0x800}, {0xffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0xfffffffd}, {}, {0x0, 0x9, 0x0, 0xffffffff, 0x0, 0x2}, {}, {0x80}, {0x80}, {0x0, 0x0, 0x0, 0x5, 0x5}, {}, {0x0, 0x0, 0x8}, {0x0, 0x2, 0x0, 0x0, 0x9}, {0x62572899, 0x1ff, 0x8, 0x0, 0x3}, {}, {0x0, 0x5}, {0x0, 0x0, 0x0, 0x8510}, {0xffff}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0x0, 0xfffefffd}, {0x0, 0x0, 0x0, 0x1}, {}, {0x5}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000}, {0x0, 0x7, 0x0, 0x20000000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xb}, {0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x9}, {0x0, 0xfffffffc, 0x200, 0x0, 0x0, 0xfffffffc}, {0x0, 0x0, 0x0, 0x200}, {}, {0x4}, {}, {0x0, 0x0, 0x800}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x101, 0x0, 0x0, 0x0, 0xffffffff}, {}, {0x3, 0xfffffffe}, {0x0, 0x0, 0x0, 0x4, 0x9}, {}, {0x0, 0x0, 0x0, 0x0, 0x1, 0x7}, {0x0, 0xb}, {0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x5, 0x0, 0x0, 0x0, 0xfffffffc}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x56}, {0x0, 0x0, 0x0, 0xec33, 0x0, 0x4}, {}, {0xb, 0x0, 0x0, 0x0, 0x0, 0xfe1}, {0x0, 0x0, 0x0, 0x0, 0x4}, {0x0, 0x0, 0xfffffffc}, {}, {0x0, 0xfffffffd}, {0x6}, {0x7f}, {}, {0x0, 0x8, 0x0, 0x0, 0xfffffffe}, {0x4, 0x2, 0x2000000, 0x2, 0x0, 0xfffffffe}, {0x0, 0x0, 0x0, 0x0, 0xe9d, 0x58a}, {0x2}, {0x2, 0x9, 0x20000000}, {0xfffffffc}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x292}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x0, 0x0, 0xe600, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, {0x0, 0x5, 0x0, 0x7, 0x1}, {0x0, 0x5, 0x0, 0x0, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x80}, {0x10000000, 0x0, 0x0, 0x0, 0x1, 0xfffffffd}, {}, {0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0x3}, {0x0, 0x0, 0x0, 0x0, 0x3, 0x7fffffff}, {}, {0x0, 0x0, 0x0, 0x8}, {}, {}, {}, {0xfffffffb, 0x0, 0x0, 0x0, 0x8000}, {0x6, 0xffffffff, 0x0, 0x0, 0x0, 0xfffffffe}, {0x2d, 0x0, 0x10000}, {0x0, 0x0, 0x8000}, {0x20000000, 0x8000, 0x0, 0xe}, {0x3, 0x0, 0x10000}, {0x0, 0x80000000, 0x0, 0x7fff800, 0x4}, {0x0, 0x3}, {0xffffffff, 0x0, 0x0, 0x0, 0xd}], [{}, {}, {0x0, 0x1}, {0x1}, {}, {0x3}, {}, {0x0, 0x1}, {}, {}, {0x2}, {}, {}, {}, {0x0, 0x1}, {}, {0x3, 0x1}, {0x0, 0x1}, {}, {0x5, 0x1}, {0x0, 0x1}, {0x4}, {0x3}, {}, {}, {}, {}, {}, {}, {}, {0x5}, {}, {0x4}, {}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x1}, {}, {}, {}, {0x0, 0x1}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {0x0, 0x1}, {0x2}, {0x5}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x2}, {}, {0x0, 0x1}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {0x1}, {}, {0x5}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x2, 0x1}, {}, {}, {}, {}, {0x5, 0x1}, {}, {0x1}, {}, {0x2}, {}, {}, {0x4}, {0x3}, {}, {}, {}, {}, {0x0, 0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r5}, 0x10)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000200)={0x3, 0x4, 0x4, 0xa, 0x0, 0x1, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x3, 0x4}, 0x50)
r6 = socket$nl_route(0x10, 0x3, 0x0)
socket$unix(0x1, 0x1, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000003b80)=@deltfilter={0x30, 0x2d, 0x1, 0x270bd2d, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0xfff1, 0x8}, {0x9, 0x1}, {0x0, 0x10}}, [@filter_kind_options=@f_bpf={{0x8}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x480d8}, 0x24000804)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000000), 0x4)
r7 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r7, 0x29, 0x20, &(0x7f0000000280)={@mcast2, 0x800, 0x0, 0x1, 0x1}, 0x26)

2.255838098s ago: executing program 1 (id=502):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b40000000000000079104800a3813ecd07000000000000009500740000000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x808003, &(0x7f0000000000), 0x3, 0x519, &(0x7f0000000f80)="$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")
mount(0x0, &(0x7f0000000000)='.\x00', 0x0, 0x2236824, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_RECVMSG={0xa, 0x34, 0x6, 0xffffffffffffffff, 0x0, &(0x7f00000010c0)={0x0, 0x0, 0x0}, 0x0, 0x10040})
r0 = syz_io_uring_setup(0x174d, &(0x7f0000000780)={0x0, 0x11f8, 0x100, 0x1001, 0x15cc}, &(0x7f0000000800)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000580)=[{0x0}], 0x1)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000000c0)={0x1, &(0x7f0000000200)=[{0x30, 0x4, 0x0, 0x2}]}, 0xffffffffffffff0e)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x0, 0x0, 0xffffffffffffffff, 0x0, r0})
lsetxattr$trusted_overlay_nlink(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140), &(0x7f00000001c0)={'L+', 0x3}, 0x16, 0x1)
io_uring_enter(r0, 0x749f, 0x4, 0x0, 0x0, 0xfffffffffffffef5)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x13, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b400000000d190000f10000000000000630000000000000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000001fd8)=ANY=[@ANYBLOB="0515257de0000000bc1002bc73e177028b36430fa00000891fd59478ac0c5d00"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xff06, &(0x7f000000cf3d)=""/195}, 0x48)

2.254971338s ago: executing program 2 (id=503):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x48100, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000180)=0x7d)
syz_read_part_table(0x59f, &(0x7f0000000000)="$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")
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000009c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f00000005c0)='wbt_step\x00', r2}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = gettid()
sendmsg$unix(r4, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000002c0)="a7", 0x1}], 0x1, &(0x7f0000001040)=ANY=[@ANYBLOB, @ANYRES32=r5, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r4, @ANYRES32=r3, @ANYRES32=r3, @ANYRES32=r4, @ANYRES32=r3, @ANYRES32=r4, @ANYRES32=r3, @ANYRES32=r4, @ANYBLOB="1c000000000000000100000402000000", @ANYRES32, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r3, @ANYBLOB="0000000018"], 0xa0}, 0x4004881)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r6}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x6, 0x5, &(0x7f0000000700)=ANY=[@ANYBLOB="18020000fffdffff0000000000000000850000004100000085000000d000000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb}, 0x94)
openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x48e02, 0x0)
lstat(0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x0, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r7, 0x6, 0x0, 0x0, 0x0)
fchdir(0xffffffffffffffff)
r8 = open(&(0x7f0000000300)='./file1\x00', 0x14b042, 0xc4)
ftruncate(r8, 0x2007ffb)
sendfile(r8, r8, 0x0, 0x1000000201005)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_emit_ethernet(0xaf, 0x0, 0x0)

2.003519581s ago: executing program 0 (id=506):
prctl$PR_SET_MM(0x23, 0x8, &(0x7f0000001000/0x4000)=nil)
prctl$PR_SET_MM(0x23, 0x9, &(0x7f00002b2000/0x2000)=nil)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f00003d3000/0x1000)=nil, 0x1000, 0x64)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
r1 = syz_open_dev$vcsu(&(0x7f00000000c0), 0x144, 0x44003)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x24, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r2}, 0x10)
add_key$keyring(&(0x7f0000000400), &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffb)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000000)={'team0\x00', <r4=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c00000010000100"/20, @ANYRES32=0x0, @ANYBLOB="0401010000000000140003006970366772653000000000000000000008000a00", @ANYRES32=r4, @ANYBLOB="d4202aa1b3157420939ff1a7f13c24a025f606971a8502e5c444678f8db5c8e01893af5f78e03465c5550ec61ee84bb9c9f6e00d422e61caf3cf45510b1eca6eee73cb2a83267af2ec5bc95e5b5c5a84f76660040e0872f560847c8930c0e539ba5c0ea2972aad756bc5e47ecc68a036153f44cd0f43d6d15fc122d4eef101f7f35c3b304de437d8c6e770dc64b7c50ed436b10f27b9ae0b982af4"], 0x3c}}, 0x0)

1.865164893s ago: executing program 2 (id=507):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
unshare(0x62040200)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99ee}, 0x94)
r2 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000002380)={r1, 0x0, 0x2d, 0x0, @val=@netfilter={0x2, 0x4, 0x600, 0x1}}, 0x20)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
bpf$LINK_DETACH(0x22, &(0x7f0000000100)=r2, 0x4)
syz_open_dev$hiddev(0x0, 0x3ff, 0x100)
unshare(0x10070000)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[], &(0x7f0000000540)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
r4 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xc3, 0x0, 0x0, 0x0, 0x0, 0x100000000000, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd, 0x1000}, 0x0, 0x0, 0xffffffff, 0x5, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x40082406, &(0x7f0000000340)='cpu\t&0&&\t')
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000181100"/20, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000208500000004"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x19, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @cgroup_sockopt=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r5}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28012, r0, 0x0)

1.609600486s ago: executing program 1 (id=508):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
r1 = add_key$keyring(&(0x7f0000000540), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r1, &(0x7f0000000200)='asymmetric\x00', &(0x7f0000000340)=@chain)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x60, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r0, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
r3 = accept(0xffffffffffffffff, &(0x7f0000000380)=@xdp, &(0x7f0000000080)=0x80)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x9}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000008}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000800), 0x1, 0x0)
write$tcp_congestion(r4, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000400)={'batadv_slave_1\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f00000004c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)=@ipv6_getaddrlabel={0x30, 0x4a, 0x100, 0x70bd2a, 0x25dfdbfe, {0xa, 0x0, 0x10, 0x0, r5, 0x1}, [@IFAL_ADDRESS={0x14, 0x1, @private2}]}, 0x30}, 0x1, 0x0, 0x0, 0x240000d0}, 0x40000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r2, 0x0, 0x10007ffffffff}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xfe, 0x0, 0x7ffc9ffe}]})
poll(0x0, 0x0, 0x4)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfefffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
sendmsg$key(0xffffffffffffffff, 0x0, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_GET(r3, &(0x7f0000000680)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000640)={&(0x7f0000000580)={0x84, 0x1, 0x8, 0x301, 0x0, 0x0, {0x0, 0x0, 0xa}, [@CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x2e3f97bcc64e46db}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x84}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x201}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x21}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x200}, @CTA_TIMEOUT_DATA={0x2c, 0x4, 0x0, 0x1, @tcp=[@CTA_TIMEOUT_TCP_SYN_SENT={0x8, 0x1, 0x1, 0x0, 0x8d}, @CTA_TIMEOUT_TCP_FIN_WAIT={0x8, 0x4, 0x1, 0x0, 0x800}, @CTA_TIMEOUT_TCP_SYN_SENT={0x8, 0x1, 0x1, 0x0, 0x1ff}, @CTA_TIMEOUT_TCP_ESTABLISHED={0x8, 0x3, 0x1, 0x0, 0xffffeced}, @CTA_TIMEOUT_TCP_TIME_WAIT={0x8, 0x7, 0x1, 0x0, 0x8}]}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x2f}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x22eb}]}, 0x84}, 0x1, 0x0, 0x0, 0x24000000}, 0x4000009)
syz_mount_image$vfat(&(0x7f0000000300), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000001300)=ANY=[@ANYBLOB='nonumtail=0,shortname=lower,shortname=mixed,utf8=1,iocharset=cp1251,nonumtail=0,rodir,shortname=win95,iocharset=utf8,check=relaxed,shortname=mixed,shortname=win95,errors=remount-ro,shortname=winnt,shortname=win95,uni_xlate=0,nonumtail=0,discard,nnonumtail=1,codepage=865,nonumtail=0,shortname=winnt,shortname=win95,Cscontext=unconfined_u,\x00'], 0x1, 0x36b, &(0x7f0000000a00)="$eJzs3U1vG1UXAODTvM1H85I6C4QECHFVNrCxkvAHGqFWQkQChRoVFkhTMgEr0zjyWEGuEHTHlt9RsWSHhPgDWcCeHbtsWHZRdVDsuPloCIvUHgrPI0X3xPce+4zHM7qb0dm//d3drc2yuZn1Yup6iqmImHoYsTiIhi4djlODeCaOux9vNW7/9tqHH3/y3ura2o31lG6u3np7JaV09fWfvvzq+2s/9/7/0Q9Xf5yNvcVP9/9Y+X3vpb2X9x/f+qJdpnaZtju9lKU7nU4vu1PkaaNdbjVT+qDIszJP7e0y756Y3yw6Ozv9lG1vLMzvdPOyTNl2P23l/dTrpF63n7LPs/Z2ajabaWE++DutB+vr2eownjtn3fVJFcQYdLur2cE1PPvUTOtBLQUBALW66P5/5pnu/6fD/n+Sju//+bc62P/PHF6/J9n/AwAAAAAAAAAAAADA8+BhVTWqqmqMxmr0kPDh/zWXx5g9df5P/dVdH+N17MG9uYji293Wbms4DudXN6MdReSxFI14dHBbGBnGN99du7GUBhZj4e43g/xrv0S0/ncyfzkasXh2/vIwPz3Jj4NxOuaP569EI148O3/lzPyZePONY/nNaMSvn0UnitgY3N6O8r9eTumd99dO5c8O1gEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADw39BMI6/GsO/9biviSuwe9u9vHi1YPNkff5j/pL/+UjTi0dn9+ZfO7M9/OV65XO+xAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMBI2b+3lRVF3p1UMOr5P3hlZhT8ddal4fL7p6auxARrLop86lm94eOqqsZV6txkT+VFgumI885gdfgrufhnvRAR56yZjYj6v41/YlDXHQkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADqc9T0u+5KAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAqFPZv7eVFUXeHWNQ9zECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8T/4MAAD//yeQEY0=")
creat(&(0x7f00000002c0)='./file0\x00', 0x1c5)

1.474011378s ago: executing program 3 (id=509):
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="160000000000000005000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000180), r0)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000480)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01022dbd7000ffdb652520e7000109001f0070687931000000000a0001007770616e33000000050020"], 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

1.408591574s ago: executing program 3 (id=510):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000500)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x800000000006}, 0x18)
r2 = socket(0x1e, 0x1, 0x0)
connect$tipc(r2, &(0x7f0000000000)=@name={0x1e, 0x2, 0x1, {{0x1, 0x1}}}, 0x10)
write$binfmt_misc(r2, &(0x7f0000000340), 0x2000011a) (fail_nth: 1)

1.301292063s ago: executing program 1 (id=511):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000780)='./bus\x00', 0x41, &(0x7f0000000840)={[{@delalloc}, {@noload}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@noblock_validity}, {@noblock_validity}, {@nogrpid}, {@mblk_io_submit}, {@dioread_lock}, {@stripe={'stripe', 0x3d, 0x65cf}}], [], 0x3d}, 0x65, 0x51c, &(0x7f0000000200)="$eJzs3UFoJFkZAOC/Ot3ZyUx2k1UPuuC6uiuZQac72bi7wcO6guhpQV3vY0w6IaSTDunO7iQsmsGDR0FEBU968SJ48iTIghePIizoWVFRRGf0IKhTS3dXZ2aS6k5mpiedSX8fVOrV66r3v9ehqutVPaoCGFnPRcRrEXE7TdMrETGV5ReyKfY7U2u9WzffXmpNSaTpG/9IIsnyumWlbU/EpWyzCxHx5S9EfC05Grexu7e+WKtVt7PlSnNjq9LY3bu6trG4Wl2tbs7Pz7288MrCSwuzA2nnZES8+rm/fO/bP/n8q7/85Ft/vPa3y19Psvw41I77VOz3YafppfZ3cfcG2w8Y7CwqtluYmchbY+xIzo1HXCcAAHp7X0R8LCKuxFSM9T+dBQAAAB5D6Wcm439J997dEeM98gEAAIDHSKE9BjYplLPxvpNRKJTL0R7D+4G4WKjVG81PrNR3Npc7Y2Wno1RYWatVZ7OxwtNRSlrLc+30neUXDy3PR8TTEfHdqYn2cnmpXlse9sUPAAAAGBGXDvX//z3V6f8DAAAA58z0sCsAAAAAPHL6/wAAAHD+6f8DAADAufbF119vTWn3/dfLb+7urNffvLpcbayXN3aWykv17a3yar2+2n5m38Zx5dXq9a1PxebO9Uqz2mhWGrt71zbqO5vNa2v3vAIbAAAAOEVPf+Sd3ycRsf/pifbUMn6yTU+4GnBWFQ9SSTbP2a3/8FRn/udTqhRwKsaGXQFgaIrDrgAwNKVhVwAYuuSYz3sO3vlNNv/oYOsDAAAM3syHet//L/Tdcr//x8CZZyeG0eX+P4yu9v3/k47kdbIA50rJGQCMvIe+/3+sNL2vCgEAAAM32Z6SQjm7vDcZhUK5HPFk+7UApWRlrVadjYinIuJ3U6UnWstz7S2TY/sMAAAAAAAAAAAAAAAAAAAAAAAAAEBHmiaRAgAAAOdaROGvya86z/KfmXph8vD1gfHkP1ORvSL0rR++8f3ri83m9lwr/58H+c0fZPkvDuMKBgAAAIyE4v2s3O2nd/vxAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADBIt26+vdSdTjPu3z8bEdN58YtxoT2/EKWIuPivJIp3bZdExNgA4k+0/nwwL37SqtZByLz4EwOIv3+jb/yYzr6FvPiXBhAfRtk7rePPa3n7XyGea8/z979ixD3LD6r38S8Ojn9jPfb/J08Y45l3f1bpGf9GxDPF/ONPN37SI/7zeQX+/FtHsr76lb29XvHTH0XM5P7+JPfEqjQ3tiqN3b2raxuLq9XV6ub8/NzLC68svLQwW1lZq1Wzv7kxvvPhX9zu1/6LPeJPH9P+F3LKG8/J+/+712++v5Ms5cW//HxO/F//OFvjaPxC9tv38Szd+nymm97vpO/27E9/+2y/9i/3aP9x///LvQo95MqXvvmnE64KAJyCxu7e+mKtVt0+t4lWL/0MVONxS/w3PRPVeLSJbwy0wDRN09Y+9RDlJHF6X0LSv6rDPjIBAACDduekf9g1AQAAAAAAAAAAAAAAAAAAgNF1Gk8aOxxz/yCVDOIR2gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/FeAAAA//+kyeAN")
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x2c, 0x2c, 0x2, [@func_proto={0x0, 0x4, 0x0, 0xd, 0x3, [{0x10, 0x2}, {0xf, 0x2}, {0x10, 0x3}, {0x9, 0x2}]}]}}, 0x0, 0x46, 0x0, 0x8}, 0x28)
r0 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$PIO_FONTX(r0, 0x4b6c, &(0x7f0000000080)={0x185, 0x17, &(0x7f0000000900)="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"})

1.300911724s ago: executing program 0 (id=512):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000000700)=[{{0x0, 0x0, 0x0}, 0x9}], 0x1, 0x14103, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r1=>0x0})
bind$can_raw(r0, &(0x7f00000001c0)={0x1d, r1}, 0x10)
setsockopt$CAN_RAW_RECV_OWN_MSGS(r0, 0x65, 0x4, &(0x7f00000003c0)=0x1, 0x4)
sendmsg$can_raw(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@can={{}, 0x0, 0x0, 0x0, 0x0, "0000000000000003"}, 0x10}}, 0x20000000)
read(r0, &(0x7f0000000080)=""/17, 0x11)
r2 = socket$can_raw(0x1d, 0x3, 0x1)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r4=>0x0})
sendto$packet(r3, &(0x7f0000006140)="18", 0x1, 0x0, &(0x7f00000000c0)={0x11, 0xe, r4, 0x1, 0x0, 0x6, @multicast}, 0x14) (fail_nth: 1)
socket$packet(0x11, 0x3, 0x300)

1.249336408s ago: executing program 3 (id=513):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_QUERY(r0, &(0x7f0000000040)={0x13, 0x10, 0xfa00, {0x0}}, 0x18)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x204010, &(0x7f0000000040)={[{@debug}, {@discard}, {@max_batch_time={'max_batch_time', 0x3d, 0x4}}, {@nobarrier}, {@nouid32}, {@block_validity}, {@journal_dev={'journal_dev', 0x3d, 0x6}}]}, 0xfe, 0x46e, &(0x7f00000007c0)="$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")

962.886103ms ago: executing program 0 (id=514):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000000e00)=ANY=[@ANYBLOB="18000000030000000000000026d0000095002b000000000093adffa87d2255f674412d020000000000005ab527ee3697f1ec4436dd1164aa93cc5800075557165397000a63f6b9b3f427f6ba6b34f98125f30e697fffffffffffffffa30b273683626e0003254d570dca6b78ad833488cfe4109eaf009edd3e69613d3cd6aaa300006eee8501000000520a0000151d010000000100bf00000000cc587424363dc6ad7f3bbd424c6e6cafbe9309aba218a52001a3cd000041f0db74596fd72c002a60c1bc7dc8c38b7d2e13c50424b9dd1145d03ff45f70685c6bd9ff41c69b7de4758c1096a1dc52f29e470a000517ebc406e89dcbb7677e6528b0856e31ed9474ac24cf609068f645ce971fc0480737a55ebb0bd701f7ff21e88b3cfc22df01e4bac9d97328fa2a82b5e8741e02056d933bed759ff232cebc68b91af50479387467824262852c7939db5672d07cdbe8e14abf56497e5d56d06c759da324a39f7f51b870b2851c3f0a1aab71587a21c8f1b3369ebfcba105a6ccdd01b0f04edb256c604f068773f6ff000000000000006ffbfe5ca32142b0195531458b7d1e341c6f864f983d745f5865aad41d2915aae7602a2d6cd415e8351ebc4223f54d6bec664709ff03f1aa3dc7f1580ace9bf2afd28d7157e67fb98d121ad6eb372713255012e028cb2654d493a0b4b35faae176c89b745eda2967199cc936859a537e8e4871d4acf3e3dc10e13ef227f627a40000ad1fa253d33fa74f172d3407ae4e1e347c0cff28235a3cbb5d33b09bc30cf2880c586272c3f4d79bc36305745cb1cb385e6add14652003c7cdd3324f07d134d3ed07f1c10900000009dd872ec66ea6c718bbd1aa59114000f0be4c6f8df084c5e9734ae30aa9afdc719bf01ab03a9b1074407136b4506000f0916a39d3057d50183612b39e73aeeb6eaf14652dda68e98ef938e6515a94a71836469e2051d9b7eb85f3f2d5ae2c51944da8d7391d6d6b97419a3b7660df4c5124ca425d374b371867a79b31c6617fc3327191fbf514573f0e30d1d60be2168fe6c2f3dccd599a2cb77f124e22f87673675805494db821f39b50d938d5fd8c6b2a3a324c257b84000000b749ccd74089ed6b86f81ca3d247d8f71d290ed1b1a11f7a67125170c88c3b6a50696332226401b110da9c786eeca22debc99335583b54c13c3130978fa069af8223b38ced735c2d905f51ca85ffa4add5647489b3960127696cf2f16625c0c102000000000000009ef52134842e64171f3963841086e3797a4825d081f2d987f05c5341877386ec55d7dc958fd235d6071619a65d4b82d9c162f3556076b80550d961ca74f1ffdaccf0ea5f02e0fca8b27ff3983ab74fd3d560700a1fbb44e77e312b3b129e000302d613916c9bcf9f0000fac73adb6bfb27f88dba816020be760f7b45e001efada800000000000000fdaf4660402f7b3b79a433e08074ea2462974ab2cbd247eb1cfa2638f56daee57ed14bc74de0fd87a9ce638190f3570e0b4c80ef682df22237270955afb6008846557ee3bc09fda6dbb6542e597300eb82a184c96ffde5a30e5433d86666cb045bdd02c804c22ff2635c7bfbf5c0d586cda5e1e88a4d41dee7cc74f822278d124638fec58faeb48afe324369cc51204158bb440df2a694f4cdcaa4f65c22f000000000000000000000000000d503d79906958102000000000000000000001ffff0ef89b2a635edb2dd163e863315e84498dfb52b7f54da6398cbedaa42cc17c4563c859656a357770289a61faa95a82bf1cfb7f2fd7252e9322abe282c3344fc6738b4467893b9bf0d1c8130ae6b226900110635376413c29f7c6f7b7e29b9f4bddd5e328661f4046e01f7d7dc22174e5e627a6f608ad53a4168d4d8f7fbc71104512efe8e5d7d934aa289b4db2b870000000000000000000000000000000000000000009b777883a0f9cf4ad155110cd3ace2b322ac31bfa27847dc99c8a69a1ea5b98e525e6393ad7fd9795170e7b11e4fa990b9386910a6a1a66a70eaff01247603c2ff49d3979676bffb3049166ab84a0f061991bd57c2566c10c282352a5105b6164e3f2491e4793e590dcc71de10da96fdff40dd44a2c9882d3aa0f8a797b8fea6efcfb5046b7679f15559cdaa977504c40b2f777acb907ebf5fc14add71d0bca37405ded69b77ab4a3d7487fd50c5e22ade17556abb722d9c085b189b5fd1f30e8dc813f60400fde1f88d830b11002135e8e7262f299ed7923bfbe00ad88be179e56b41ff3792cee2fc37eee739c3e3af923e8738d93d583a9cf00b946960fc38cf85aae7cf708f9a9d166f2e352a06d99b8be476d1cc2a53a859ae4fdab2a987925d12422474ac044ffe9fe2bf9bf9bbdf36c4ca89c516647542ac45545337829fa7039d155ebda42d4c14f4ca7f8b5d5842658c62d0a03092b94fa1b19f190000000000000000000000000000009e75a32b9fafeffd890f2759b0fe3add33fa43a4c3995458f86a926ad56b23571c46728c039cd3b4bb7d69dfa27782b953a7b81cc161912b3e5716360686e126311a7e21bfa2efd0f57b90c203528c8f620d3c7b31c7abcffae382f53500f7cd5d00159e5f741d3e2d2cbd1a04b3f39b50a4683daa7d117b7f4a149c954d69d8ab001339e464c8eb5f0c63899010757c9a3b69f4920531b83f71d5a34ef9405819afee15b77c015ea755c95127ff2274bb9a8463ce4b8c08ad70596ad2b2b044e660ed144b9dce372450ea69d25da2b6deed67fac26e765aa7d5532ba1044f62db049486acde2294127cb767c23da7d8f9844d3be5b6aa83ee4ce1876af5130efe1b64ccb6bbd349bcc0e8deec8ab3bd1b35bbc8ab8a152771744baa576b9223d26b5603a7f091be1264cabaf661fe2dbe7990a61f710f923f2337818a3983d06c11a6bee7fccb78a53c56db5c18f920d2194374db665dcadf53b8d0014e682ec721d67a7ab6c817fe53c86f8900000000000000000000000000000060b7b827c56e973a2ab5bc5c558ada68c4ec3762f5957b20b919af5d53c87de056a397bdcb614c34761e2c815698e1f9f5521a385c2910850929040a4eba573e91ca21fc855358120ecd79a5d7007693ef3ff9d2b993d114443d53c53094e516f675b2a7074584714e7a2015e05e507811b4ca89c39281c9ada5f58ceb55893cca783ab09c9a19836a3a2c715b10436a5731549e364679ecd8461a68433ab52b1108831edb9654dc602183c1170d6881647f6dca15d57fb76357d815c5f1000000000000000000f49e327c0b6e511494466cec78650f0a6267"], &(0x7f00002bf000)='syzkaller\x00', 0x4, 0x436, &(0x7f0000000600)=""/192, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x7, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffff13}, 0x48)
r1 = socket$kcm(0x29, 0x2, 0x0)
r2 = socket$inet6(0xa, 0x803, 0x6)
connect$inet6(r2, &(0x7f0000000200)={0xa, 0x4e2b, 0x2, @empty, 0x5a60}, 0x1c)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000300), &(0x7f0000000500), 0x96b, r3}, 0x38)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r4, 0x0, 0xfffffffffffffffe}, 0x18)
write$selinux_load(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0xfffe)
ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f0000000400)={<r5=>r2})
ioctl$sock_kcm_SIOCKCMATTACH(r5, 0x89e0, &(0x7f0000000180)={r2, r0})
sendmmsg$inet(r1, &(0x7f00000009c0)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000240)="e8", 0x1}], 0x1}}], 0x1, 0x20004050)

901.699119ms ago: executing program 2 (id=515):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
pidfd_send_signal(0xffffffffffffffff, 0x30, &(0x7f0000000140)={0x1a, 0xe, 0x3}, 0x0)

896.301ms ago: executing program 4 (id=516):
syz_clone(0x41064400, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="160000000000000005000000"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)

853.161693ms ago: executing program 2 (id=517):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = syz_clone(0x80, 0x0, 0x0, 0x0, 0x0, 0x0)
kcmp(r1, r1, 0x2, 0xffffffffffffffff, 0xffffffffffffffff)
munmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="540000001000ffff25bd7000fcdbdf2700000000", @ANYRES32=0x0, @ANYBLOB="040004f2a92b68af11f0beca9b187e90002308070033ec12800e00010069703665727370616e0000002000028005001600020000000400120006001821eae2b23c4bbde732c65b2c57e01409b9fb885a8352a8f8e919b0c2bca2f4f32eaf0047038e352a3473020d0c62008c2345107b1f7d4c94f6b886b067977bccd0d2cb6aada298548bb3960f1abad230cecaf5322e0eff1e63493afa3f139b508cb1a87c2cb5a99f5276d859b7a89300d14a62d76e9a4416320b4cf3da84ecf88620ff15860d30deadbc163ada9aac271be07861c92db5ca93ac"], 0x54}, 0x1, 0x0, 0x0, 0x804}, 0x804)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRESDEC=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$FS_IOC_GETFLAGS(r3, 0x80086601, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file0\x00', 0x8000, &(0x7f00000004c0)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2be, &(0x7f00000014c0)="$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")
r4 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x800c4, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r5, &(0x7f0000004200)='t', 0x1)
sendfile(r5, r4, 0x0, 0x3ffff)
sendfile(r5, r4, 0x0, 0x7ffff000)
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
socket$key(0xf, 0x3, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = fsopen(&(0x7f0000000000)='binder\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
fsmount(r6, 0x0, 0x0)
open(&(0x7f0000000040)='./bus\x00', 0x143142, 0x80)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x1c1840, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000e80)='./bus\x00', 0x1c1002, 0x0)
ioctl$PPPIOCSPASS(r4, 0x40107447, &(0x7f0000000240)={0x6, &(0x7f00000001c0)=[{0x5, 0x7, 0x5, 0x7bba}, {0xfffe, 0x80, 0x63, 0x3}, {0xc3a1, 0x2c, 0x0, 0x6}, {0x9, 0x10, 0x6, 0x7f}, {0x0, 0x0, 0x53, 0x6}, {0x8, 0xd, 0xb, 0x5}]})
write(r8, &(0x7f0000000600)='t', 0x1)
sendfile(r8, r7, 0x0, 0x40001)

751.221123ms ago: executing program 0 (id=518):
r0 = syz_clone(0x80, 0x0, 0x0, 0x0, 0x0, 0x0)
kcmp(r0, r0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB, @ANYBLOB], 0x54}, 0x1, 0x0, 0x0, 0x804}, 0x804)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$FS_IOC_GETFLAGS(r2, 0x80086601, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file0\x00', 0x8000, &(0x7f00000004c0)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2be, &(0x7f00000014c0)="$eJzs3MFrE1sUx/HzmrRJU9rkweOBgnrQjW6GNv4BGqQFMaDUpqgLYWonGjImZSZEImKzEbf+HcWlO0H9B7oRN+7dFUFw04U40plMm8S0pm3SxPb7gTJ3eu+vc9qm5dxC78adV4+LedfImxUZiauMiNRlUyS1NWr4p3Ed8cdj0qwulya+fz5z++69G5lsdnZedS6zcDmtqlPn3j159vr8h8rE4puptzFZT93f+Jb+sv7/+qmNnwuPCq4WXC2VK2rqUrlcMZdsS5cLbtFQvWVbpmtpoeRaTst83i6vrNTULC1PJlYcy3XVLNW0aNW0UtaKU1PzoVkoqWEYOpmQky3axZrc2vy8mdl12ov0tCL0Xqz1drzTGsfJ1DtP5tb6VRcAABhee/f/Qa+/e/+fXQyuPe7/Rej/+6TecveH/h/HguNkzETj57cV/T8AAAAAAAAAAAAAAAAAAAAAAH+DTc9Lep6XDK/hW0xE4iIS3g+6TvTHAb//VwZULnqs6R/34iL2y2qumguuwXwmLwWxxZJpScoP//XgRf3XRTCeu56dnVbfaONDbuVXq7mIfzaBnw+lgkwgzJ/9dybIq7zfylUb+VFJND8/LUn5r1M+O5veyYfHIaxWc2Ny8UJT3pCkfHwgZbFlua3+5zOq125m254/7q8DAAAAAOA4MHRbqnX/G5z9aPgL4uJv71vmg3ynvw+078+nO+7vo3K6myMqAQAAAADAobm1p0XTti3nAIOYiBwiflwHERmKMtoGV0VkCMo4qkFcRIL36EHiX7fjXaW8LtZERWTgX5Z9DAb9mwkAAABAr+00/fsIfXrRx4oAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADh5uj0PLFz/21Q4sUe86XGRI/8EAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgCHyKwAA//9OCxaA")
r3 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x800c4, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r4, &(0x7f0000004200), 0x0)
sendfile(r4, r3, 0x0, 0x3ffff)
sendfile(r4, r3, 0x0, 0x7ffff000)
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[], 0x48)
socket$key(0xf, 0x3, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = fsopen(&(0x7f0000000000)='binder\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
fsmount(r5, 0x0, 0x0)
open(&(0x7f0000000040)='./bus\x00', 0x143142, 0x80)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x1c1840, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000e80)='./bus\x00', 0x1c1002, 0x0)
ioctl$PPPIOCSPASS(r3, 0x40107447, &(0x7f0000000240)={0x6, &(0x7f00000001c0)=[{0x5, 0x7, 0x5, 0x7bba}, {0xfffe, 0x80, 0x63, 0x3}, {0xc3a1, 0x2c, 0x0, 0x6}, {0x9, 0x10, 0x6, 0x7f}, {0x0, 0x0, 0x53, 0x6}, {0x8, 0xd, 0xb, 0x5}]})
write(r7, &(0x7f0000000600)='t', 0x1)
sendfile(r7, r6, 0x0, 0x40001)

673.457379ms ago: executing program 1 (id=519):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r0}, &(0x7f0000000400), &(0x7f00000005c0)=r1}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x4e, 0x1, 0x0, 0x0, 0x0, 0x210e, 0x2040e, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x2, @perf_bp={0x0, 0x8}, 0x11aa0, 0x30, 0x10000, 0x0, 0x18ba, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000000)='cpu>00||!')
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0xfff, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000d40)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, 0x94)
r4 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r4, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}, 0x20000}}, {{0xa, 0x0, 0x40000, @dev={0xfe, 0x80, '\x00', 0x26}}}}, 0x108)
setsockopt$inet6_group_source_req(r4, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
close(r4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1b, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1008}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r5}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0xffdc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x4f, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r6, 0x0, 0x4}, 0x18)
r7 = inotify_init()
inotify_add_watch(r7, &(0x7f0000000200)='./cgroup.cpu/cgroup.procs\x00', 0x2)
lsetxattr$security_selinux(&(0x7f0000000900)='./cgroup.cpu/cgroup.procs\x00', &(0x7f0000000000), &(0x7f0000000040)='system_u:object_r:netutils_exec_t:s0\x00', 0x25, 0x0)
r8 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r8, 0x8922, &(0x7f0000000440)={'syz_tun\x00', 0x101})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kmem_cache_free\x00', r3, 0x0, 0xfffffffffffffffc}, 0x18)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1000000201005)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000380)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000000a40)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0WUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo++BK56U2XrUmbddnSmc8Hbjkn9ybnfnPv9/TcnBsSwNCayP4UIl6OiG+SiIMRkeTrRiNfObG23er9q7PZkkSj8elfSXO7rN56rdbz9ueVlyLit68ijhc2tltbXlkolcvpYl6frFcuTdaWV05cqJTm0/n04vTMzKm3Z6bfe/edvsX6xtl/vv/k9oenvj66+t0vdw/dTOJ0HMjXtcfxBK61VyZiIn9PxuL0IxtO9aGxnSQZ9A6wLSN5no9F1gccjJE864H/vy8jogEMqUT+w5BqjQNa1/Z9ug5+btz7YO0CaGP8o2ufjcSe5rXRvtXkoSuj7Hp3vA/tZ238+uetm9kS/fscAmBL165HxMnR0Y39X5L3f9t3sodtHm1D/wfPzu1s/PNmp/FPYX38Ex3GP/s75O52bJ3/hbt9aKarbPz3fsfx7/qk1fhIXnuhOeYbS85fKKdZ3/ZiRByLsd1ZfbP5nFOrdxrd1rWP/7Ila781Fsz34+7o7oefM1eql54k5nb3rke80nH8m6wf/6TD8c/ej7M9tnEkvfVat3Vbx/90NX6KeL3j8X8wo5VsPj852TwfJltnxUZ/3zjye7f2Bx1/dvz3bR7/eNI+X1t7/DZ+3PNv2m3dQ/FH7+f/ruSzZnlX/tiVUr2+OBWxK/l44+PTD57bqre2z+I/dnTz/q/T+b83Ij7vMf4bh39+taf4B3T85x7r+D9+4c5HX/zQrf3e+r+3mqVj+SO99H+97uCTvHcAAAAAAACw0xQi4kAkheJ6uVAoFtfu7zgc+wrlaq1+/Hx16eJcNL8rOx5jhdZM98G2+yGm8vthW/XpR+ozEXEoIr4d2dusF2er5blBBw8AAAAAAAAAAAAAAAAAAAA7xP4u3//P/DEy6L0Dnjo/+Q3Da8v878cvPQE7kv//MLzkPwwv+Q/DS/7D8JL/MLzkPwwv+Q/DS/4DAAAAAAAAAAAAAAAAAAAAAAAAAABAX509cyZbGqv3r85m9bnLy0sL1csn5tLaQrGyNFucrS5eKs5Xq/PltDhbrWz1euVq9dLUdCxdmayntfpkbXnlXKW6dLF+7kKlNJ+eS8eeSVQAAAAAAAAAAAAAAAAAAADwfKktryyUyuV0UUFhW4XRnbEbCn0uDLpnAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAH/gsAAP//6AY3sQ==")
llistxattr(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)

670.9949ms ago: executing program 4 (id=520):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0x1}, {0xffff, 0xffff}, {0x0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
r4 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x18, 0x7ffc1fff}]})
write$binfmt_aout(r4, &(0x7f00000000c0)=ANY=[], 0x20)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8604, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x6}, 0x0, 0x10000, 0x0, 0x6, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x20, &(0x7f0000001740)=0x7ffffffd, 0x4)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000004cbd18110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6}, 0x18)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000240)={0x1, &(0x7f0000000200)=[{0x6, 0xff, 0x7, 0x7fc00002}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r7, 0x40182103, &(0x7f0000000100)={0x0, 0x1, r7, 0x0, 0x80000})
sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x78, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0xfff2, 0xf}, {}, {0x7, 0x10}}, [@filter_kind_options=@f_flow={{0x9}, {0x48, 0x2, [@TCA_FLOW_EMATCHES={0x44, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x2}}, @TCA_EMATCH_TREE_LIST={0x38, 0x2, 0x0, 0x1, [@TCF_EM_IPT={0x34, 0x1, 0x0, 0x0, {{0x8, 0x9, 0x40}, [@TCA_EM_IPT_NFPROTO={0x5, 0x4, 0x2}, @TCA_EM_IPT_HOOK={0x8, 0x1, 0x3}, @TCA_EM_IPT_MATCH_REVISION={0x5, 0x3, 0xfc}, @TCA_EM_IPT_MATCH_DATA={0x4}, @TCA_EM_IPT_MATCH_NAME={0x3}]}}]}]}]}}]}, 0x78}, 0x1, 0x0, 0x0, 0x40}, 0x2008c014)

502.455615ms ago: executing program 3 (id=521):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xfe, 0x0, 0x7ffc9ffe}]})
fsopen(&(0x7f00000002c0)='cgroup2\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r0 = accept4$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000100)=0x14, 0x40000)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000180)=@req={0x7, 0x1, 0x1, 0x3}, 0x10)
futex(&(0x7f000000cffc), 0xc, 0x0, 0x0, &(0x7f0000048000), 0x1)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000040)={0x77359400}, &(0x7f0000048000), 0x0)

419.769042ms ago: executing program 3 (id=522):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000000700)=[{{0x0, 0x0, 0x0}, 0x9}], 0x1, 0x14103, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r1=>0x0})
bind$can_raw(r0, &(0x7f00000001c0)={0x1d, r1}, 0x10)
setsockopt$CAN_RAW_RECV_OWN_MSGS(r0, 0x65, 0x4, &(0x7f00000003c0)=0x1, 0x4)
sendmsg$can_raw(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@can={{}, 0x0, 0x0, 0x0, 0x0, "0000000000000003"}, 0x10}}, 0x20000000)
read(r0, &(0x7f0000000080)=""/17, 0x11)
r2 = socket$can_raw(0x1d, 0x3, 0x1)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r4=>0x0})
sendto$packet(r3, &(0x7f0000006140)="18", 0x1, 0x0, &(0x7f00000000c0)={0x11, 0xe, r4, 0x1, 0x0, 0x6, @multicast}, 0x14)
socket$packet(0x11, 0x3, 0x300)

337.188469ms ago: executing program 3 (id=523):
r0 = geteuid()
quotactl_fd$Q_QUOTAON(0xffffffffffffffff, 0xffffffff80000200, r0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)={0x58, 0x2, 0x6, 0x3, 0x0, 0x0, {0x1}, [@IPSET_ATTR_TYPENAME={0x13, 0x3, 'hash:net,iface\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0xd3}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x2002c0c4}, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x2, 0x7fe2, 0x3, 0x12}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0)
openat(r3, &(0x7f00000000c0)='./file0\x00', 0x6a1c2, 0x50)
faccessat(r3, &(0x7f0000000000)='./file0\x00', 0x5)
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800, &(0x7f0000000380)={[{@errors_remount}, {@discard}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5e}}, {@noauto_da_alloc}, {@bsdgroups}, {@jqfmt_vfsv1}, {@abort}, {@data_err_ignore}]}, 0x1, 0x476, &(0x7f0000000540)="$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")
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f00000002c0)=@mangle={'mangle\x00', 0x44, 0x6, 0x3f8, 0x2c0, 0x0, 0x2c0, 0x138, 0x0, 0x360, 0x360, 0x360, 0x360, 0x360, 0x6, 0x0, {[{{@ip={@loopback, @multicast1=0xe0007600, 0x0, 0x0, 'gre0\x00', 'ip6gre0\x00', {}, {}, 0x0, 0x0, 0x11}, 0x7a00, 0x70, 0x98}, @inet=@DSCP={0x28}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @local, 0x0, 0x0, 'wg1\x00', 'nicvf0\x00', {}, {}, 0x11}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @local}}}, {{@ip={@broadcast, @multicast2, 0x0, 0xff, 'vlan1\x00', 'nr0\x00'}, 0x0, 0xb8, 0xe8, 0x0, {}, [@common=@unspec=@limit={{0x48}, {0x0, 0x28, 0x0, 0x0, 0x0, 0x1}}]}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0xf, 0x7b7b, @remote, 0x4e22}}}, {{@ip={@rand_addr, @private, 0xffffffff, 0xff, 'syzkaller0\x00', 'veth1_to_team\x00', {}, {0xff}}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @empty}}}, {{@ip={@empty, @empty, 0xff000000, 0x0, 'lo\x00', 'batadv_slave_1\x00'}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x4, 0x0, @loopback}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x458)
perf_event_open(0x0, 0x0, 0x1, 0xffffffffffffffff, 0xb)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r4 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
write$cgroup_int(r4, &(0x7f0000000540), 0xfffffdd8)
madvise(&(0x7f0000000000/0x400000)=nil, 0x40001e, 0x15) (fail_nth: 1)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00304, 0x17)
set_mempolicy(0x4005, &(0x7f0000000080)=0x7e, 0x9)
sendmmsg$inet_sctp(0xffffffffffffffff, &(0x7f0000000b00), 0x0, 0x4001)
ioctl$KDFONTOP_SET(0xffffffffffffffff, 0x4b72, &(0x7f0000000000)={0x0, 0x0, 0x8, 0x5, 0x200, &(0x7f0000003c40)="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"})

299.234023ms ago: executing program 1 (id=524):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), 0x0}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2, 0x0, 0xd7}, 0x18)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_MEDIA_SET(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000780)=ANY=[@ANYBLOB="ac020000", @ANYRES16=r4, @ANYBLOB="bf4400000000000000000c"], 0x2ac}}, 0x0)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
r7 = dup(r6)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r7, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @empty, 0x3}], 0x1c)
sendmsg$inet6(r6, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0x8, @loopback, 0x4}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x4048043)
setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, &(0x7f0000000000)='syz_tun\x00', 0x10)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r7, 0x84, 0x9, &(0x7f00000002c0)={0x0, @in6={{0xa, 0x4e60, 0xfffffff2, @empty}}, 0xffffec47, 0x9, 0xffff1896, 0x100, 0x25, 0x7fff}, 0x9c)
r8 = dup(r5)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r5, 0x84, 0x66, &(0x7f0000000140)={<r9=>0x0, 0xfffffffd}, &(0x7f0000000180)=0x8)
getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r8, 0x84, 0x6, &(0x7f00000001c0)={r9, @in={{0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x30}}}}, &(0x7f0000000280)=0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r8, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @empty, 0x3}], 0x1c)
sendmsg$inet6(r5, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0x6, @loopback, 0x4}, 0x1c, &(0x7f00000000c0)=[{&(0x7f0000000100)="88", 0x1}], 0x1}, 0x4044043)

0s ago: executing program 1 (id=525):
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000080000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001000000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x34, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000016c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x840e, &(0x7f00000003c0)={[{@discard}, {@jqfmt_vfsold}, {@journal_checksum}, {@auto_da_alloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0xfffffffffffffff7}}, {@quota}]}, 0x3, 0x43a, &(0x7f0000001100)="$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")
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f0000000280)=@sack_info={0x0, 0xfffffffb}, 0xc)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x25, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3, 0x0, 0x3}, 0x18)
bind$inet(r0, &(0x7f0000000240)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x14}}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x2, 0x59032, 0xffffffffffffffff, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
lseek(0xffffffffffffffff, 0x2004, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r4}, &(0x7f0000000200), &(0x7f0000000280)}, 0x20)
wait4(0x0, 0x0, 0x20000000, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='page_pool_release\x00', r5}, 0x10)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r7, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000280)="b9ff03076804268c989e14f088a8", 0x0, 0x2, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x6e20, @multicast1}, 0x10, 0x0}}], 0x1, 0x2000c044)
sendto$inet(r0, &(0x7f0000000c80)="e8", 0x6200, 0x12000000, 0x0, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f00000001c0)='w\xde\xa3\x05\xff\a\x00\x00\x00\x00\x00\x00\x8f\xc0\x9b\x86\xef\\\xc0\x89\av\x9f\xd6\xd1\x98,\xc8\x18E/\x8c\x1a\xe3\xbd')
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rss_stat\x00', r8}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)

kernel console output (not intermixed with test programs):

8:8: attempt to access beyond end of device
[   57.074306][  T408] loop4: rw=1, sector=177, nr_sectors = 8 limit=128
[   57.089826][  T408] kworker/u8:8: attempt to access beyond end of device
[   57.089826][  T408] loop4: rw=1, sector=193, nr_sectors = 8 limit=128
[   57.117792][  T408] kworker/u8:8: attempt to access beyond end of device
[   57.117792][  T408] loop4: rw=1, sector=209, nr_sectors = 8 limit=128
[   57.131368][  T408] kworker/u8:8: attempt to access beyond end of device
[   57.131368][  T408] loop4: rw=1, sector=225, nr_sectors = 8 limit=128
[   57.145256][  T408] kworker/u8:8: attempt to access beyond end of device
[   57.145256][  T408] loop4: rw=1, sector=241, nr_sectors = 8 limit=128
[   57.163021][  T408] kworker/u8:8: attempt to access beyond end of device
[   57.163021][  T408] loop4: rw=1, sector=257, nr_sectors = 8 limit=128
[   57.168926][ T4254] syz.0.192: attempt to access beyond end of device
[   57.168926][ T4254] loop0: rw=2049, sector=145, nr_sectors = 16 limit=128
[   57.177046][  T408] kworker/u8:8: attempt to access beyond end of device
[   57.177046][  T408] loop4: rw=1, sector=273, nr_sectors = 8 limit=128
[   57.228651][ T4263] loop4: detected capacity change from 0 to 512
[   57.249843][ T4263] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.196: bg 0: block 248: padding at end of block bitmap is not set
[   57.279763][ T4261] netlink: 52 bytes leftover after parsing attributes in process `syz.3.195'.
[   57.283318][ T4263] EXT4-fs error (device loop4): ext4_acquire_dquot:6986: comm syz.4.196: Failed to acquire dquot type 1
[   57.306977][ T4263] EXT4-fs (loop4): 1 truncate cleaned up
[   57.348888][ T4261] loop3: detected capacity change from 0 to 128
[   57.358893][ T4263] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   57.378808][ T4261] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   57.398292][ T4261] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   57.407691][ T4263] ext4 filesystem being mounted at /41/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   57.478914][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.537807][ T4269] loop4: detected capacity change from 0 to 1024
[   57.550167][ T4269] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   57.595353][  T279] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   57.605319][ T4269] ext4 filesystem being mounted at /42/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   57.627598][ T4275] loop1: detected capacity change from 0 to 128
[   57.684160][ T4269] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.197: bg 0: block 112: padding at end of block bitmap is not set
[   57.747775][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   57.950295][ T4278] netlink: 'syz.4.199': attribute type 3 has an invalid length.
[   57.972180][ T4278] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.057811][ T4198] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   58.084194][ T4278] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.169589][ T4278] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.213455][ T4279] syz.2.200 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[   58.224643][ T4279] CPU: 1 UID: 0 PID: 4279 Comm: syz.2.200 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   58.224701][ T4279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   58.224712][ T4279] Call Trace:
[   58.224719][ T4279]  <TASK>
[   58.224728][ T4279]  __dump_stack+0x1d/0x30
[   58.224756][ T4279]  dump_stack_lvl+0x95/0xd0
[   58.224782][ T4279]  dump_stack+0x15/0x1b
[   58.224805][ T4279]  dump_header+0x81/0x240
[   58.224849][ T4279]  oom_kill_process+0x295/0x350
[   58.224877][ T4279]  out_of_memory+0x97b/0xb80
[   58.224931][ T4279]  try_charge_memcg+0x610/0xa10
[   58.224975][ T4279]  charge_memcg+0x51/0xc0
[   58.225042][ T4279]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[   58.225119][ T4279]  __read_swap_cache_async+0x17b/0x2d0
[   58.225154][ T4279]  swap_cluster_readahead+0x362/0x3c0
[   58.225253][ T4279]  swapin_readahead+0xde/0x820
[   58.225285][ T4279]  ? mod_memcg_lruvec_state+0x1a1/0x280
[   58.225321][ T4279]  ? __rcu_read_unlock+0x34/0x70
[   58.225396][ T4279]  ? __rcu_read_unlock+0x4f/0x70
[   58.225418][ T4279]  ? swap_cache_get_folio+0x277/0x280
[   58.225451][ T4279]  do_swap_page+0x2b4/0x21e0
[   58.225487][ T4279]  ? __pfx_default_wake_function+0x10/0x10
[   58.225535][ T4279]  handle_mm_fault+0x9d8/0x2c60
[   58.225592][ T4279]  do_user_addr_fault+0x630/0x1080
[   58.225664][ T4279]  exc_page_fault+0x62/0xa0
[   58.225695][ T4279]  asm_exc_page_fault+0x26/0x30
[   58.225718][ T4279] RIP: 0033:0x7f6584831d48
[   58.225737][ T4279] Code: 74 60 80 b8 94 00 00 00 00 75 4f 0f 1f 80 00 00 00 00 8b 78 24 45 31 c0 83 ff 3f 7f 18 be 01 00 00 00 89 f9 45 31 c0 48 d3 e6 <48> 23 35 69 39 eb 00 41 0f 95 c0 48 8d b0 98 00 00 00 44 89 c9 e9
[   58.225757][ T4279] RSP: 002b:00007ffe41a6faa8 EFLAGS: 00010202
[   58.225777][ T4279] RAX: 00007f6584bb6090 RBX: 000000000000e259 RCX: 0000000000000005
[   58.225852][ T4279] RDX: 00000000fffffc03 RSI: 0000000000000020 RDI: 0000000000000005
[   58.225866][ T4279] RBP: 00007f6584bb60a0 R08: 0000000000000000 R09: 0000000000000000
[   58.225881][ T4279] R10: 0000000000000001 R11: 0000000000000000 R12: 00007f6584bb6090
[   58.225895][ T4279] R13: 0000200000000000 R14: 00007ffe41a6fab8 R15: 00007ffe41a6fc10
[   58.225917][ T4279]  </TASK>
[   58.225925][ T4279] memory: usage 307200kB, limit 307200kB, failcnt 1048
[   58.442404][ T4279] memory+swap: usage 80240kB, limit 9007199254740988kB, failcnt 0
[   58.450326][ T4279] kmem: usage 64208kB, limit 9007199254740988kB, failcnt 0
[   58.457682][ T4279] Memory cgroup stats for /syz2:
[   58.476511][ T4278] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.528592][ T4279] cache 528384
[   58.532157][ T4279] rss 4096
[   58.535324][ T4279] shmem 0
[   58.538443][ T4279] mapped_file 65536
[   58.542239][ T4279] dirty 0
[   58.545178][ T4279] writeback 0
[   58.548545][ T4279] workingset_refault_anon 72
[   58.553183][ T4279] workingset_refault_file 464
[   58.558011][ T4279] swap 286720
[   58.561295][ T4279] swapcached 4096
[   58.564904][ T4279] pgpgin 21118
[   58.568453][ T4279] pgpgout 20988
[   58.571978][ T4279] pgfault 26397
[   58.575410][ T4279] pgmajfault 39
[   58.579133][ T4279] inactive_anon 0
[   58.582822][ T4279] active_anon 4096
[   58.586541][ T4279] inactive_file 4096
[   58.590533][ T4279] active_file 491520
[   58.594414][ T4279] unevictable 0
[   58.597908][ T4279] hierarchical_memory_limit 314572800
[   58.603287][ T4279] hierarchical_memsw_limit 9223372036854771712
[   58.609648][ T4279] total_cache 528384
[   58.613549][ T4279] total_rss 4096
[   58.617190][ T4279] total_shmem 0
[   58.620700][ T4279] total_mapped_file 65536
[   58.625099][ T4279] total_dirty 0
[   58.628601][ T4279] total_writeback 0
[   58.632475][ T4279] total_workingset_refault_anon 72
[   58.637593][ T4279] total_workingset_refault_file 464
[   58.642856][ T4279] total_swap 286720
[   58.646992][ T4279] total_swapcached 4096
[   58.651213][ T4279] total_pgpgin 21118
[   58.655134][ T4279] total_pgpgout 20988
[   58.659155][ T4279] total_pgfault 26397
[   58.663152][ T4279] total_pgmajfault 39
[   58.667286][ T4279] total_inactive_anon 0
[   58.671473][ T4279] total_active_anon 4096
[   58.675737][ T4279] total_inactive_file 4096
[   58.680212][ T4279] total_active_file 491520
[   58.684638][ T4279] total_unevictable 0
[   58.688667][ T4279] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.200,pid=4279,uid=0
[   58.703489][ T4279] Memory cgroup out of memory: Killed process 4279 (syz.2.200) total-vm:93968kB, anon-rss:1264kB, file-rss:22052kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[   58.756740][ T4290] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   58.769120][ T4290] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   58.788390][   T53] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   58.800802][   T53] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   58.825668][   T29] kauditd_printk_skb: 277 callbacks suppressed
[   58.825687][   T29] audit: type=1326 audit(1767493327.944:4466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4293 comm="syz.3.204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7eacddf749 code=0x7ffc0000
[   58.839185][   T53] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   58.863529][   T29] audit: type=1326 audit(1767493327.944:4467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4293 comm="syz.3.204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7eacddf749 code=0x7ffc0000
[   58.888172][ T1087] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   58.888296][   T29] audit: type=1326 audit(1767493327.994:4468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4293 comm="syz.3.204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7eacddf749 code=0x7ffc0000
[   58.920117][   T29] audit: type=1326 audit(1767493327.994:4469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4293 comm="syz.3.204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7eacddf749 code=0x7ffc0000
[   58.943657][   T29] audit: type=1326 audit(1767493327.994:4470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4293 comm="syz.3.204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7eacddf749 code=0x7ffc0000
[   58.967278][   T29] audit: type=1326 audit(1767493327.994:4471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4293 comm="syz.3.204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7eacddf749 code=0x7ffc0000
[   58.991217][   T29] audit: type=1326 audit(1767493327.994:4472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4293 comm="syz.3.204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7eacddf749 code=0x7ffc0000
[   59.015097][   T29] audit: type=1326 audit(1767493327.994:4473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4293 comm="syz.3.204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7eacddf749 code=0x7ffc0000
[   59.038582][   T29] audit: type=1326 audit(1767493327.994:4474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4293 comm="syz.3.204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f7eacddf749 code=0x7ffc0000
[   59.062148][   T29] audit: type=1326 audit(1767493327.994:4475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4293 comm="syz.3.204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f7eacddf783 code=0x7ffc0000
[   59.146322][ T4305] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   59.186034][ T4305] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   59.434191][ T4319] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   59.461816][ T4319] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   59.475204][ T4318] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.210: bg 0: block 248: padding at end of block bitmap is not set
[   59.504906][ T4318] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.210: Failed to acquire dquot type 1
[   59.528014][ T4318] EXT4-fs (loop3): 1 truncate cleaned up
[   59.545413][ T4318] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   59.567109][ T4318] ext4 filesystem being mounted at /39/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   59.615325][  T279] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   59.670651][ T4328] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.213: bg 0: block 248: padding at end of block bitmap is not set
[   59.687331][ T4328] EXT4-fs error (device loop2): ext4_acquire_dquot:6986: comm syz.2.213: Failed to acquire dquot type 1
[   59.724642][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.741526][ T4328] EXT4-fs (loop2): 1 truncate cleaned up
[   59.748263][ T4328] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   59.761125][ T4328] ext4 filesystem being mounted at /34/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   59.917329][ T3322] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.959526][ T4335] set_capacity_and_notify: 8 callbacks suppressed
[   59.959579][ T4335] loop2: detected capacity change from 0 to 1024
[   59.989041][ T4335] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   60.019414][ T4335] ext4 filesystem being mounted at /35/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   60.108437][ T4335] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.215: bg 0: block 112: padding at end of block bitmap is not set
[   60.139838][ T3322] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   60.254440][ T4342] loop2: detected capacity change from 0 to 128
[   60.272606][   T53] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   60.274929][ T4342] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   60.318368][ T4342] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   60.405379][ T4348] loop3: detected capacity change from 0 to 128
[   60.471655][   T31] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   60.651298][ T4356] loop0: detected capacity change from 0 to 128
[   61.104800][ T4367] loop0: detected capacity change from 0 to 128
[   61.131263][ T4367] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   61.217657][ T4367] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   61.278284][   T53] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   61.383735][ T4373] loop2: detected capacity change from 0 to 128
[   61.398797][ T4373] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   61.412182][ T4373] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   61.477646][ T4379] __nla_validate_parse: 2 callbacks suppressed
[   61.483989][ T4379] netlink: 8 bytes leftover after parsing attributes in process `syz.4.226'.
[   61.531863][ T4379] netlink: 6068 bytes leftover after parsing attributes in process `syz.4.226'.
[   61.549398][ T4379] netlink: 36 bytes leftover after parsing attributes in process `syz.4.226'.
[   61.559542][ T4379] netlink: 'syz.4.226': attribute type 10 has an invalid length.
[   61.567391][ T4379] netlink: 40 bytes leftover after parsing attributes in process `syz.4.226'.
[   61.689228][ T4385] loop4: detected capacity change from 0 to 2048
[   61.752804][ T4385] Alternate GPT is invalid, using primary GPT.
[   61.759275][ T4385]  loop4: p2 p3 p7
[   61.950042][  T408] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   62.011525][ T4390] loop4: detected capacity change from 0 to 128
[   62.024945][ T4391] loop0: detected capacity change from 0 to 128
[   62.043589][ T3529] udevd[3529]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   62.044330][ T3509] udevd[3509]: inotify_add_watch(7, /dev/loop4p7, 10) failed: No such file or directory
[   62.054182][ T3527] udevd[3527]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[   62.440147][ T4402] loop3: detected capacity change from 0 to 128
[   62.495552][   T53] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   62.524731][   T53] bio_check_eod: 4213 callbacks suppressed
[   62.524747][   T53] kworker/u8:4: attempt to access beyond end of device
[   62.524747][   T53] loop0: rw=1, sector=145, nr_sectors = 8 limit=128
[   62.583613][ T4404] netlink: 24 bytes leftover after parsing attributes in process `syz.1.235'.
[   62.593688][  T408] kworker/u8:8: attempt to access beyond end of device
[   62.593688][  T408] loop4: rw=1, sector=145, nr_sectors = 8 limit=128
[   62.622234][   T53] kworker/u8:4: attempt to access beyond end of device
[   62.622234][   T53] loop0: rw=1, sector=161, nr_sectors = 8 limit=128
[   62.641036][ T4410] netlink: 52 bytes leftover after parsing attributes in process `syz.1.236'.
[   62.649808][  T408] kworker/u8:8: attempt to access beyond end of device
[   62.649808][  T408] loop4: rw=1, sector=161, nr_sectors = 8 limit=128
[   62.673591][   T53] kworker/u8:4: attempt to access beyond end of device
[   62.673591][   T53] loop0: rw=1, sector=177, nr_sectors = 8 limit=128
[   62.697475][  T408] kworker/u8:8: attempt to access beyond end of device
[   62.697475][  T408] loop4: rw=1, sector=177, nr_sectors = 8 limit=128
[   62.697524][  T408] kworker/u8:8: attempt to access beyond end of device
[   62.697524][  T408] loop4: rw=1, sector=193, nr_sectors = 8 limit=128
[   62.697622][  T408] kworker/u8:8: attempt to access beyond end of device
[   62.697622][  T408] loop4: rw=1, sector=209, nr_sectors = 8 limit=128
[   62.697657][  T408] kworker/u8:8: attempt to access beyond end of device
[   62.697657][  T408] loop4: rw=1, sector=225, nr_sectors = 8 limit=128
[   62.697691][  T408] kworker/u8:8: attempt to access beyond end of device
[   62.697691][  T408] loop4: rw=1, sector=241, nr_sectors = 8 limit=128
[   62.740219][ T4413] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   62.743982][ T4413] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   62.766110][ T3396] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   62.766472][ T3396] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   62.821013][ T3396] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   62.939105][ T3396] hid-generic 0000:0000:0000.0004: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   63.036220][ T4425] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.240: bg 0: block 248: padding at end of block bitmap is not set
[   63.052487][ T4423] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   63.084304][ T4423] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   63.093922][ T4425] EXT4-fs error (device loop4): ext4_acquire_dquot:6986: comm syz.4.240: Failed to acquire dquot type 1
[   63.126254][ T4425] EXT4-fs (loop4): 1 truncate cleaned up
[   63.168202][ T4425] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   63.209497][ T4425] ext4 filesystem being mounted at /51/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.296257][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   63.417816][ T4435] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   63.436372][ T4435] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   63.598211][   T53] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   63.751542][ T3527] Alternate GPT is invalid, using primary GPT.
[   63.757894][ T3527]  loop0: p2 p3 p7
[   63.774536][ T4443] Alternate GPT is invalid, using primary GPT.
[   63.781051][ T4443]  loop0: p2 p3 p7
[   63.903044][ T4198] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   63.909041][   T29] kauditd_printk_skb: 1681 callbacks suppressed
[   63.909067][   T29] audit: type=1326 audit(1767493333.034:6151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4446 comm="syz.0.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64a7baf749 code=0x7ffc0000
[   63.930211][ T3529] udevd[3529]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory
[   63.957465][ T3527] udevd[3527]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory
[   63.968503][ T3509] udevd[3509]: inotify_add_watch(7, /dev/loop0p7, 10) failed: No such file or directory
[   63.983097][   T29] audit: type=1326 audit(1767493333.104:6152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4446 comm="syz.0.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64a7baf749 code=0x7ffc0000
[   64.006860][   T29] audit: type=1326 audit(1767493333.134:6153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4446 comm="syz.0.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64a7baf749 code=0x7ffc0000
[   64.030481][   T29] audit: type=1326 audit(1767493333.134:6154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4446 comm="syz.0.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f64a7baf749 code=0x7ffc0000
[   64.053935][   T29] audit: type=1326 audit(1767493333.134:6155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4446 comm="syz.0.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64a7baf749 code=0x7ffc0000
[   64.077745][   T29] audit: type=1326 audit(1767493333.134:6156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4446 comm="syz.0.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64a7baf749 code=0x7ffc0000
[   64.101263][   T29] audit: type=1326 audit(1767493333.134:6157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4446 comm="syz.0.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64a7baf749 code=0x7ffc0000
[   64.124762][   T29] audit: type=1326 audit(1767493333.134:6158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4446 comm="syz.0.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f64a7baf749 code=0x7ffc0000
[   64.148104][   T29] audit: type=1326 audit(1767493333.134:6159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4446 comm="syz.0.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f64a7baf783 code=0x7ffc0000
[   64.171488][   T29] audit: type=1326 audit(1767493333.134:6160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4446 comm="syz.0.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f64a7bae1ff code=0x7ffc0000
[   64.449975][ T4462] netlink: 664 bytes leftover after parsing attributes in process `syz.1.251'.
[   64.508135][ T4198] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   64.671547][ T4469] netlink: 6068 bytes leftover after parsing attributes in process `syz.1.254'.
[   64.691384][ T4469] netlink: 36 bytes leftover after parsing attributes in process `syz.1.254'.
[   64.760845][ T4472] netlink: 12 bytes leftover after parsing attributes in process `syz.4.253'.
[   64.789604][ T3527] Alternate GPT is invalid, using primary GPT.
[   64.796193][ T3527]  loop2: p2 p3 p7
[   64.813389][ T4471] Alternate GPT is invalid, using primary GPT.
[   64.819741][ T4471]  loop2: p2 p3 p7
[   64.954196][ T3510] udevd[3510]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   64.965506][ T3305] udevd[3305]: inotify_add_watch(7, /dev/loop2p7, 10) failed: No such file or directory
[   64.985762][   T53] kworker/u8:4 invoked oom-killer: gfp_mask=0x100c0a(GFP_NOIO|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_HARDWALL), order=0, oom_score_adj=0
[   64.986028][ T3527] udevd[3527]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[   64.999404][   T53] CPU: 1 UID: 0 PID: 53 Comm: kworker/u8:4 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   64.999456][   T53] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   64.999469][   T53] Workqueue: loop1 loop_workfn
[   64.999519][   T53] Call Trace:
[   64.999528][   T53]  <TASK>
[   64.999536][   T53]  __dump_stack+0x1d/0x30
[   64.999614][   T53]  dump_stack_lvl+0x95/0xd0
[   64.999636][   T53]  dump_stack+0x15/0x1b
[   64.999656][   T53]  dump_header+0x81/0x240
[   64.999676][   T53]  oom_kill_process+0x295/0x350
[   64.999700][   T53]  out_of_memory+0x97b/0xb80
[   64.999723][   T53]  try_charge_memcg+0x610/0xa10
[   64.999813][   T53]  charge_memcg+0x51/0xc0
[   64.999842][   T53]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[   64.999933][   T53]  __read_swap_cache_async+0x17b/0x2d0
[   64.999964][   T53]  swap_cluster_readahead+0x262/0x3c0
[   64.999997][   T53]  shmem_swapin_folio+0x8b4/0x11e0
[   65.000103][   T53]  ? xas_load+0x413/0x430
[   65.000133][   T53]  ? filemap_get_entry+0x34b/0x390
[   65.000158][   T53]  shmem_get_folio_gfp+0x26c/0xd50
[   65.000261][   T53]  ? chacha_permute+0x4ec/0x520
[   65.000293][   T53]  shmem_file_read_iter+0x10d/0x540
[   65.000351][   T53]  ? chacha_block_generic+0x218/0x240
[   65.000380][   T53]  lo_rw_aio+0x673/0x720
[   65.000440][   T53]  ? _raw_spin_unlock_irqrestore+0x2b/0x60
[   65.000563][   T53]  loop_process_work+0x56d/0xaa0
[   65.000586][   T53]  ? queue_delayed_work_on+0xde/0x140
[   65.000615][   T53]  ? __rcu_read_unlock+0x4f/0x70
[   65.000709][   T53]  ? __perf_event_task_sched_in+0xa5b/0xac0
[   65.000732][   T53]  ? __list_add_valid_or_report+0x38/0xe0
[   65.000760][   T53]  ? perf_cgroup_switch+0x10c/0x480
[   65.000780][   T53]  ? __rcu_read_unlock+0x4f/0x70
[   65.000818][   T53]  loop_workfn+0x31/0x40
[   65.000835][   T53]  process_scheduled_works+0x4ce/0x9d0
[   65.000862][   T53]  worker_thread+0x582/0x770
[   65.000890][   T53]  kthread+0x489/0x510
[   65.000939][   T53]  ? __pfx_worker_thread+0x10/0x10
[   65.000964][   T53]  ? __pfx_kthread+0x10/0x10
[   65.001068][   T53]  ret_from_fork+0x149/0x290
[   65.001127][   T53]  ? __pfx_kthread+0x10/0x10
[   65.001156][   T53]  ret_from_fork_asm+0x1a/0x30
[   65.001226][   T53]  </TASK>
[   65.001234][   T53] memory: usage 307200kB, limit 307200kB, failcnt 463
[   65.109856][ T3510] udevd[3510]: inotify_add_watch(7, /dev/loop2p7, 10) failed: No such file or directory
[   65.110691][   T53] memory+swap: usage 307480kB, limit 9007199254740988kB, failcnt 0
[   65.183603][ T4484] 9p: Bad value for 'wfdno'
[   65.188515][   T53] kmem: usage 230964kB, limit 9007199254740988kB, failcnt 0
[   65.188537][   T53] Memory cgroup stats for /syz1:
[   65.199455][   T53] cache 12288
[   65.268816][   T53] rss 0
[   65.268826][   T53] shmem 0
[   65.268835][   T53] mapped_file 0
[   65.268849][   T53] dirty 0
[   65.268856][   T53] writeback 0
[   65.268864][   T53] workingset_refault_anon 8
[   65.268873][   T53] workingset_refault_file 88
[   65.268881][   T53] swap 286720
[   65.268889][   T53] swapcached 0
[   65.268896][   T53] pgpgin 28093
[   65.268940][   T53] pgpgout 28090
[   65.268949][   T53] pgfault 114046
[   65.268957][   T53] pgmajfault 6
[   65.268966][   T53] inactive_anon 0
[   65.268974][   T53] active_anon 0
[   65.268983][   T53] inactive_file 8192
[   65.269025][   T53] active_file 4096
[   65.269032][   T53] unevictable 0
[   65.269038][   T53] hierarchical_memory_limit 314572800
[   65.269046][   T53] hierarchical_memsw_limit 9223372036854771712
[   65.269055][   T53] total_cache 12288
[   65.269061][   T53] total_rss 0
[   65.269068][   T53] total_shmem 0
[   65.269074][   T53] total_mapped_file 0
[   65.269155][   T53] total_dirty 0
[   65.269162][   T53] total_writeback 0
[   65.269170][   T53] total_workingset_refault_anon 8
[   65.269241][   T53] total_workingset_refault_file 88
[   65.269251][   T53] total_swap 286720
[   65.269259][   T53] total_swapcached 0
[   65.269295][   T53] total_pgpgin 28093
[   65.269302][   T53] total_pgpgout 28090
[   65.269309][   T53] total_pgfault 114046
[   65.269384][   T53] total_pgmajfault 6
[   65.269393][   T53] total_inactive_anon 0
[   65.269402][   T53] total_active_anon 0
[   65.269411][   T53] total_inactive_file 8192
[   65.269420][   T53] total_active_file 4096
[   65.269429][   T53] total_unevictable 0
[   65.269439][   T53] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.256,pid=4473,uid=0
[   65.269562][   T53] Memory cgroup out of memory: Killed process 4473 (syz.1.256) total-vm:93968kB, anon-rss:1136kB, file-rss:22052kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[   65.646289][ T4501] set_capacity_and_notify: 11 callbacks suppressed
[   65.646308][ T4501] loop3: detected capacity change from 0 to 128
[   65.646834][ T4501] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   65.647250][ T4501] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   65.815264][ T4508] loop0: detected capacity change from 0 to 128
[   66.049167][ T4516] loop4: detected capacity change from 0 to 128
[   66.056084][ T4516] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   66.069528][ T4516] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   66.491349][ T4526] loop0: detected capacity change from 0 to 512
[   66.499904][   T53] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   66.529730][ T4526] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.268: bg 0: block 248: padding at end of block bitmap is not set
[   66.531781][ T4528] loop3: detected capacity change from 0 to 128
[   66.566178][ T4526] EXT4-fs error (device loop0): ext4_acquire_dquot:6986: comm syz.0.268: Failed to acquire dquot type 1
[   66.647201][ T4526] EXT4-fs (loop0): 1 truncate cleaned up
[   66.654697][ T4526] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   66.667688][ T4526] ext4 filesystem being mounted at /54/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   66.755140][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.892243][ T4539] loop0: detected capacity change from 0 to 128
[   66.974451][ T4198] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   67.971250][ T4574] loop3: detected capacity change from 0 to 128
[   68.093406][ T4578] loop1: detected capacity change from 0 to 128
[   68.118565][ T4580] loop4: detected capacity change from 0 to 2048
[   68.150637][ T3003] Alternate GPT is invalid, using primary GPT.
[   68.157069][ T3003]  loop4: p2 p3 p7
[   68.173869][ T4580] Alternate GPT is invalid, using primary GPT.
[   68.180304][ T4580]  loop4: p2 p3 p7
[   68.232635][ T3003] Alternate GPT is invalid, using primary GPT.
[   68.239150][ T3003]  loop4: p2 p3 p7
[   68.350560][ T3529] udevd[3529]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[   68.350988][ T3509] udevd[3509]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   68.375659][ T3510] udevd[3510]: inotify_add_watch(7, /dev/loop4p7, 10) failed: No such file or directory
[   68.533959][ T3527] udevd[3527]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[   68.545369][ T3509] udevd[3509]: inotify_add_watch(7, /dev/loop4p7, 10) failed: No such file or directory
[   68.547616][ T3529] udevd[3529]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   68.739887][ T3527] udevd[3527]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[   68.753456][ T3529] udevd[3529]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   68.767256][ T3509] udevd[3509]: inotify_add_watch(7, /dev/loop4p7, 10) failed: No such file or directory
[   68.886517][ T4599] __nla_validate_parse: 3 callbacks suppressed
[   68.886581][ T4599] netlink: 12 bytes leftover after parsing attributes in process `syz.1.290'.
[   68.929174][   T29] kauditd_printk_skb: 2436 callbacks suppressed
[   68.929193][   T29] audit: type=1326 audit(1767493338.034:8595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4586 comm="syz.0.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f64a7be2005 code=0x7ffc0000
[   69.060733][   T29] audit: type=1326 audit(1767493338.084:8596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4586 comm="syz.0.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f64a7be2005 code=0x7ffc0000
[   69.084358][   T29] audit: type=1326 audit(1767493338.084:8597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4586 comm="syz.0.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f64a7be2005 code=0x7ffc0000
[   69.108304][   T29] audit: type=1326 audit(1767493338.084:8598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4586 comm="syz.0.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f64a7be2005 code=0x7ffc0000
[   69.132343][   T29] audit: type=1326 audit(1767493338.084:8599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4586 comm="syz.0.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f64a7be2005 code=0x7ffc0000
[   69.155745][   T29] audit: type=1326 audit(1767493338.084:8600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4586 comm="syz.0.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f64a7be2005 code=0x7ffc0000
[   69.179152][   T29] audit: type=1326 audit(1767493338.084:8601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4586 comm="syz.0.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f64a7be2005 code=0x7ffc0000
[   69.203072][   T29] audit: type=1326 audit(1767493338.094:8602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4586 comm="syz.0.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f64a7be2005 code=0x7ffc0000
[   69.226588][   T29] audit: type=1326 audit(1767493338.094:8603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4586 comm="syz.0.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f64a7be2005 code=0x7ffc0000
[   69.250426][   T29] audit: type=1326 audit(1767493338.094:8604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4586 comm="syz.0.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f64a7be2005 code=0x7ffc0000
[   69.318468][ T4606] loop4: detected capacity change from 0 to 128
[   69.326823][ T4606] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   69.361061][ T4606] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   69.381397][ T4611] netlink: 6068 bytes leftover after parsing attributes in process `syz.0.294'.
[   69.393195][ T4611] netlink: 36 bytes leftover after parsing attributes in process `syz.0.294'.
[   69.526118][ T4619] netlink: 12 bytes leftover after parsing attributes in process `syz.3.295'.
[   69.629067][ T4623] netlink: 52 bytes leftover after parsing attributes in process `syz.1.297'.
[   69.651875][ T4621] Alternate GPT is invalid, using primary GPT.
[   69.658334][ T4621]  loop0: p2 p3 p7
[   69.670110][ T4623] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   69.685079][ T4623] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   70.009396][ T4633] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   70.028977][ T4633] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   70.433536][ T3475] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   70.499597][ T1087] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   70.669532][ T4648] set_capacity_and_notify: 3 callbacks suppressed
[   70.669550][ T4648] loop4: detected capacity change from 0 to 164
[   70.687086][ T4648] iso9660: Corrupted directory entry in block 2 of inode 1792
[   70.708323][  T279] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   70.717553][ T4645] loop3: detected capacity change from 0 to 128
[   70.729922][ T4645] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   71.011976][ T4645] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   71.545952][ T3321] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[   71.557016][ T3321] CPU: 0 UID: 0 PID: 3321 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(voluntary) 
[   71.557096][ T3321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   71.557109][ T3321] Call Trace:
[   71.557116][ T3321]  <TASK>
[   71.557125][ T3321]  __dump_stack+0x1d/0x30
[   71.557181][ T3321]  dump_stack_lvl+0x95/0xd0
[   71.557271][ T3321]  dump_stack+0x15/0x1b
[   71.557293][ T3321]  dump_header+0x81/0x240
[   71.557381][ T3321]  oom_kill_process+0x295/0x350
[   71.557409][ T3321]  out_of_memory+0x97b/0xb80
[   71.557445][ T3321]  try_charge_memcg+0x610/0xa10
[   71.557487][ T3321]  charge_memcg+0x51/0xc0
[   71.557577][ T3321]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[   71.557616][ T3321]  __read_swap_cache_async+0x17b/0x2d0
[   71.557647][ T3321]  swap_cluster_readahead+0x262/0x3c0
[   71.557751][ T3321]  swapin_readahead+0xde/0x820
[   71.557787][ T3321]  ? update_load_avg+0x1da/0x820
[   71.557815][ T3321]  ? __list_add_valid_or_report+0x38/0xe0
[   71.557860][ T3321]  ? __rcu_read_unlock+0x4f/0x70
[   71.557964][ T3321]  ? swap_cache_get_folio+0x277/0x280
[   71.557995][ T3321]  do_swap_page+0x2b4/0x21e0
[   71.558020][ T3321]  ? _raw_spin_unlock+0x26/0x50
[   71.558043][ T3321]  ? __schedule+0x85f/0xcd0
[   71.558085][ T3321]  ? __pfx_default_wake_function+0x10/0x10
[   71.558116][ T3321]  handle_mm_fault+0x9d8/0x2c60
[   71.558200][ T3321]  do_user_addr_fault+0x630/0x1080
[   71.558233][ T3321]  exc_page_fault+0x62/0xa0
[   71.558270][ T3321]  asm_exc_page_fault+0x26/0x30
[   71.558295][ T3321] RIP: 0033:0x7fe89eec1fc5
[   71.558315][ T3321] Code: 00 00 00 00 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 80 3d 9e 95 1f 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 <c3> 66 2e 0f 1f 84 00 00 00 00 00 48 83 ec 28 48 89 54 24 10 89 74
[   71.558336][ T3321] RSP: 002b:00007ffe15d559b8 EFLAGS: 00010246
[   71.558397][ T3321] RAX: 0000000000000000 RBX: 00000000000000c9 RCX: 00007fe89eec1fc3
[   71.558411][ T3321] RDX: 00007ffe15d559d0 RSI: 0000000000000000 RDI: 0000000000000000
[   71.558435][ T3321] RBP: 00007ffe15d55a3c R08: 000000002ba62df4 R09: 0000000000000000
[   71.558449][ T3321] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000001388
[   71.558461][ T3321] R13: 00000000000927c0 R14: 0000000000011413 R15: 00007ffe15d55a90
[   71.558477][ T3321]  </TASK>
[   71.777474][ T3321] memory: usage 307200kB, limit 307200kB, failcnt 566
[   71.784395][ T3321] memory+swap: usage 307476kB, limit 9007199254740988kB, failcnt 0
[   71.792423][ T3321] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[   71.799753][ T3321] Memory cgroup stats for /syz4:
[   71.800164][ T3321] cache 0
[   71.808216][ T3321] rss 0
[   71.811017][ T3321] shmem 0
[   71.813996][ T3321] mapped_file 0
[   71.817451][ T3321] dirty 0
[   71.820428][ T3321] writeback 0
[   71.823725][ T3321] workingset_refault_anon 26
[   71.828347][ T3321] workingset_refault_file 1
[   71.832991][ T3321] swap 282624
[   71.836291][ T3321] swapcached 4096
[   71.839972][ T3321] pgpgin 28005
[   71.843438][ T3321] pgpgout 28004
[   71.846910][ T3321] pgfault 67668
[   71.850393][ T3321] pgmajfault 13
[   71.853895][ T3321] inactive_anon 0
[   71.857536][ T3321] active_anon 4096
[   71.861302][ T3321] inactive_file 0
[   71.864948][ T3321] active_file 0
[   71.868436][ T3321] unevictable 0
[   71.871898][ T3321] hierarchical_memory_limit 314572800
[   71.877263][ T3321] hierarchical_memsw_limit 9223372036854771712
[   71.883506][ T3321] total_cache 0
[   71.887067][ T3321] total_rss 0
[   71.890379][ T3321] total_shmem 0
[   71.893841][ T3321] total_mapped_file 0
[   71.897844][ T3321] total_dirty 0
[   71.901308][ T3321] total_writeback 0
[   71.905176][ T3321] total_workingset_refault_anon 26
[   71.910327][ T3321] total_workingset_refault_file 1
[   71.915355][ T3321] total_swap 282624
[   71.919292][ T3321] total_swapcached 4096
[   71.923455][ T3321] total_pgpgin 28005
[   71.927356][ T3321] total_pgpgout 28004
[   71.931366][ T3321] total_pgfault 67668
[   71.935442][ T3321] total_pgmajfault 13
[   71.939483][ T3321] total_inactive_anon 0
[   71.943780][ T3321] total_active_anon 4096
[   71.948156][ T3321] total_inactive_file 0
[   71.952313][ T3321] total_active_file 0
[   71.956383][ T3321] total_unevictable 0
[   71.960499][ T3321] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.301,pid=4640,uid=0
[   71.975149][ T3321] Memory cgroup out of memory: Killed process 4640 (syz.4.301) total-vm:96016kB, anon-rss:1116kB, file-rss:22468kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[   72.094263][   T31] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   72.288161][ T4667] netlink: 12 bytes leftover after parsing attributes in process `syz.3.306'.
[   72.301981][ T4665] netlink: 'syz.2.307': attribute type 3 has an invalid length.
[   72.312767][ T4665] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   72.366198][ T4670] loop0: detected capacity change from 0 to 2048
[   72.389731][ T4665] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   72.402156][ T3529] Alternate GPT is invalid, using primary GPT.
[   72.408558][ T3529]  loop0: p2 p3 p7
[   72.430651][ T4670] Alternate GPT is invalid, using primary GPT.
[   72.437162][ T4670]  loop0: p2 p3 p7
[   72.442177][ T4665] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   72.518554][ T4665] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   72.622771][ T4681] netlink: 52 bytes leftover after parsing attributes in process `syz.0.313'.
[   72.680518][ T4684] loop0: detected capacity change from 0 to 128
[   72.687623][ T3509] udevd[3509]: inotify_add_watch(7, /dev/loop0p7, 10) failed: No such file or directory
[   72.694345][ T4684] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   72.770491][   T42] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   72.788314][ T4684] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   72.788505][   T42] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   72.805910][   T42] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   72.814330][  T408] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   73.579406][ T3478] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   73.581661][ T4698] loop1: detected capacity change from 0 to 128
[   73.598261][ T3478] hid-generic 0000:0000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   73.667751][ T4703] netlink: 52 bytes leftover after parsing attributes in process `syz.3.317'.
[   73.677458][ T1087] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   73.708984][ T4707] netlink: 6068 bytes leftover after parsing attributes in process `syz.0.318'.
[   73.721725][ T4707] netlink: 36 bytes leftover after parsing attributes in process `syz.0.318'.
[   73.890895][ T4710] netlink: 52 bytes leftover after parsing attributes in process `syz.2.319'.
[   74.054322][ T4719] loop4: detected capacity change from 0 to 2048
[   74.130108][ T3529] Alternate GPT is invalid, using primary GPT.
[   74.137081][ T3529]  loop4: p2 p3 p7
[   74.199683][ T4722] netlink: 52 bytes leftover after parsing attributes in process `syz.1.322'.
[   74.220617][ T4719] Alternate GPT is invalid, using primary GPT.
[   74.227166][ T4719]  loop4: p2 p3 p7
[   74.302441][ T3509] udevd[3509]: inotify_add_watch(7, /dev/loop4p7, 10) failed: No such file or directory
[   74.304480][ T3529] udevd[3529]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   74.324330][ T3527] udevd[3527]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[   74.542382][ T3509] udevd[3509]: inotify_add_watch(7, /dev/loop4p7, 10) failed: No such file or directory
[   74.542616][ T3527] udevd[3527]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[   74.589157][ T3529] udevd[3529]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   74.591932][ T4731] loop4: detected capacity change from 0 to 128
[   74.636795][ T4731] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   74.848562][ T4731] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   75.000249][   T29] kauditd_printk_skb: 866 callbacks suppressed
[   75.000267][   T29] audit: type=1326 audit(1767493344.124:9471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4736 comm="syz.0.326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64a7baf749 code=0x7ffc0000
[   75.062363][   T29] audit: type=1326 audit(1767493344.124:9472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4736 comm="syz.0.326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64a7baf749 code=0x7ffc0000
[   75.086106][   T29] audit: type=1326 audit(1767493344.124:9473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4736 comm="syz.0.326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64a7baf749 code=0x7ffc0000
[   75.109672][   T29] audit: type=1326 audit(1767493344.154:9474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4736 comm="syz.0.326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f64a7baf749 code=0x7ffc0000
[   75.133310][   T29] audit: type=1326 audit(1767493344.154:9475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4736 comm="syz.0.326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64a7baf749 code=0x7ffc0000
[   75.157544][   T29] audit: type=1326 audit(1767493344.154:9476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4736 comm="syz.0.326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64a7baf749 code=0x7ffc0000
[   75.181156][   T29] audit: type=1326 audit(1767493344.154:9477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4736 comm="syz.0.326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64a7baf749 code=0x7ffc0000
[   75.204491][   T29] audit: type=1326 audit(1767493344.154:9478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4736 comm="syz.0.326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f64a7baf749 code=0x7ffc0000
[   75.228072][   T29] audit: type=1326 audit(1767493344.154:9479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4736 comm="syz.0.326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64a7baf749 code=0x7ffc0000
[   75.251729][   T29] audit: type=1326 audit(1767493344.154:9480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4736 comm="syz.0.326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64a7baf749 code=0x7ffc0000
[   75.361713][ T4741] netlink: 'syz.1.327': attribute type 3 has an invalid length.
[   75.391005][ T4741] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.501190][ T4741] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.542004][ T4741] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.555970][   T53] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   75.602910][ T4747] loop3: detected capacity change from 0 to 2048
[   75.641799][ T4741] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.656761][ T3527] Alternate GPT is invalid, using primary GPT.
[   75.663222][ T3527]  loop3: p2 p3 p7
[   75.674394][ T4747] Alternate GPT is invalid, using primary GPT.
[   75.680944][ T4747]  loop3: p2 p3 p7
[   75.756946][  T408] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   75.820698][  T408] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   75.881545][  T408] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   75.891548][  T408] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   75.952368][ T4758] loop0: detected capacity change from 0 to 512
[   75.970963][ T4755] loop3: detected capacity change from 0 to 2048
[   75.982594][ T3509] udevd[3509]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[   75.983195][ T3510] udevd[3510]: inotify_add_watch(7, /dev/loop3p7, 10) failed: No such file or directory
[   76.004890][ T4760] loop1: detected capacity change from 0 to 128
[   76.011767][ T4760] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   76.025219][ T4760] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   76.036334][ T3527] udevd[3527]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[   76.047181][ T4758] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.332: bg 0: block 248: padding at end of block bitmap is not set
[   76.051268][ T4755] Alternate GPT is invalid, using primary GPT.
[   76.063120][ T4758] EXT4-fs error (device loop0): ext4_acquire_dquot:6986: comm syz.0.332: Failed to acquire dquot type 1
[   76.068100][ T4755]  loop3: p2 p3 p7
[   76.081658][ T4758] EXT4-fs (loop0): 1 truncate cleaned up
[   76.089372][ T4758] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.107826][ T4758] ext4 filesystem being mounted at /70/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   76.235798][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.528810][ T4777] netlink: 12 bytes leftover after parsing attributes in process `syz.4.337'.
[   76.560265][ T4779] netlink: 52 bytes leftover after parsing attributes in process `syz.2.338'.
[   76.611496][ T4779] loop2: detected capacity change from 0 to 128
[   76.618859][ T4779] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   76.631691][ T4779] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   76.643632][ T4782] loop3: detected capacity change from 0 to 128
[   76.730697][ T4782] bio_check_eod: 2817 callbacks suppressed
[   76.730711][ T4782] syz.3.339: attempt to access beyond end of device
[   76.730711][ T4782] loop3: rw=2049, sector=145, nr_sectors = 16 limit=128
[   76.750881][ T4782] syz.3.339: attempt to access beyond end of device
[   76.750881][ T4782] loop3: rw=2049, sector=169, nr_sectors = 8 limit=128
[   76.764505][ T4782] syz.3.339: attempt to access beyond end of device
[   76.764505][ T4782] loop3: rw=2049, sector=185, nr_sectors = 8 limit=128
[   76.802706][ T4782] syz.3.339: attempt to access beyond end of device
[   76.802706][ T4782] loop3: rw=2049, sector=201, nr_sectors = 8 limit=128
[   76.849163][   T53] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   77.230263][ T4793] netlink: 40 bytes leftover after parsing attributes in process `syz.1.343'.
[   77.267836][ T4795] loop1: detected capacity change from 0 to 128
[   77.388630][ T4488] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   77.405041][ T4488] hid-generic 0000:0000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   77.463929][ T4800] loop4: detected capacity change from 0 to 512
[   77.522958][ T4800] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.345: bg 0: block 248: padding at end of block bitmap is not set
[   77.538161][ T4800] EXT4-fs error (device loop4): ext4_acquire_dquot:6986: comm syz.4.345: Failed to acquire dquot type 1
[   77.586355][ T4800] EXT4-fs (loop4): 1 truncate cleaned up
[   77.596513][ T4800] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.639995][ T4800] ext4 filesystem being mounted at /76/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   77.707056][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.884910][ T1087] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   78.038607][ T4814] loop4: detected capacity change from 0 to 164
[   78.074211][ T4818] netlink: 52 bytes leftover after parsing attributes in process `syz.2.349'.
[   78.095818][ T4814] iso9660: Corrupted directory entry in block 2 of inode 1792
[   78.117492][ T4818] loop2: detected capacity change from 0 to 128
[   78.130870][ T4821] loop0: detected capacity change from 0 to 2048
[   78.146473][ T4818] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   78.187887][ T4818] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   78.203817][ T4821] Alternate GPT is invalid, using primary GPT.
[   78.210351][ T4821]  loop0: p2 p3 p7
[   78.233692][ T4825] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   78.291176][ T3003] Alternate GPT is invalid, using primary GPT.
[   78.297831][ T3003]  loop0: p2 p3 p7
[   78.318878][ T4825] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   78.663708][ T4835] netlink: 52 bytes leftover after parsing attributes in process `syz.4.352'.
[   79.157217][ T1087] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   79.180642][ T4844] netlink: 40 bytes leftover after parsing attributes in process `syz.1.354'.
[   79.265568][ T4847] netlink: 24 bytes leftover after parsing attributes in process `syz.1.355'.
[   79.345866][   T31] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   79.419127][ T4854] netlink: 52 bytes leftover after parsing attributes in process `syz.2.356'.
[   79.433135][ T4851] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.357: bg 0: block 248: padding at end of block bitmap is not set
[   79.467958][ T4851] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.357: Failed to acquire dquot type 1
[   79.528387][ T4851] EXT4-fs (loop3): 1 truncate cleaned up
[   79.539679][ T4851] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.567856][ T4851] ext4 filesystem being mounted at /65/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   79.624354][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.703823][ T4864] netlink: 664 bytes leftover after parsing attributes in process `syz.3.360'.
[   79.985555][ T4870] netlink: 'syz.1.361': attribute type 3 has an invalid length.
[   80.007824][   T29] kauditd_printk_skb: 2082 callbacks suppressed
[   80.007838][   T29] audit: type=1326 audit(1767493349.134:11557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4860 comm="syz.4.359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe89eec2005 code=0x7ffc0000
[   80.038986][   T29] audit: type=1326 audit(1767493349.164:11558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4868 comm="syz.4.359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7fe89ee8f749 code=0x7ffc0000
[   80.062473][   T29] audit: type=1326 audit(1767493349.164:11559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4860 comm="syz.4.359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe89eec2005 code=0x7ffc0000
[   80.087424][ T4870] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.098090][   T29] audit: type=1326 audit(1767493349.184:11560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4873 comm="syz.0.362" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64a7baf749 code=0x7ffc0000
[   80.121904][   T29] audit: type=1326 audit(1767493349.184:11561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4873 comm="syz.0.362" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f64a7baf783 code=0x7ffc0000
[   80.145561][   T29] audit: type=1326 audit(1767493349.184:11562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4873 comm="syz.0.362" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f64a7baf807 code=0x7ffc0000
[   80.168964][   T29] audit: type=1326 audit(1767493349.184:11563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4873 comm="syz.0.362" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f64a7b66bdd code=0x7ffc0000
[   80.192489][   T29] audit: type=1326 audit(1767493349.184:11564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4873 comm="syz.0.362" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7f64a7be3e89 code=0x7ffc0000
[   80.216225][   T29] audit: type=1326 audit(1767493349.184:11565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4873 comm="syz.0.362" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f64a7b66c47 code=0x7ffc0000
[   80.240105][   T29] audit: type=1326 audit(1767493349.184:11566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4873 comm="syz.0.362" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64a7baf749 code=0x7ffc0000
[   80.299853][ T4870] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.311622][ T3527] Alternate GPT is invalid, using primary GPT.
[   80.318140][ T3527]  loop3: p2 p3 p7
[   80.347579][ T4877] Alternate GPT is invalid, using primary GPT.
[   80.353993][ T4877]  loop3: p2 p3 p7
[   80.400103][ T4870] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.429610][ T3509] udevd[3509]: inotify_add_watch(7, /dev/loop3p7, 10) failed: No such file or directory
[   80.429641][ T3529] udevd[3529]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[   80.449436][ T3527] udevd[3527]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[   80.540067][ T4870] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.564208][ T4883] netlink: 52 bytes leftover after parsing attributes in process `syz.4.365'.
[   80.566517][ T3529] udevd[3529]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[   80.574570][ T3509] udevd[3509]: inotify_add_watch(7, /dev/loop3p7, 10) failed: No such file or directory
[   80.584176][ T3527] udevd[3527]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[   80.612275][ T4883] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   80.627521][ T4890] netlink: 24 bytes leftover after parsing attributes in process `syz.0.368'.
[   80.637295][ T4883] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   80.679006][   T53] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   80.694128][   T53] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   80.718718][ T4894] netlink: 52 bytes leftover after parsing attributes in process `syz.0.369'.
[   80.723804][   T53] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   80.779432][   T53] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   80.874274][ T4901] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   80.940251][ T4901] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   81.566459][   T53] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   81.924709][   T53] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   82.010465][ T4928] set_capacity_and_notify: 8 callbacks suppressed
[   82.010481][ T4928] loop1: detected capacity change from 0 to 164
[   82.124212][ T4933] netlink: 52 bytes leftover after parsing attributes in process `syz.3.379'.
[   82.124959][ T4931] FAULT_INJECTION: forcing a failure.
[   82.124959][ T4931] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   82.146867][ T4931] CPU: 1 UID: 0 PID: 4931 Comm: syz.4.378 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   82.146895][ T4931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   82.146923][ T4931] Call Trace:
[   82.146929][ T4931]  <TASK>
[   82.146936][ T4931]  __dump_stack+0x1d/0x30
[   82.146959][ T4931]  dump_stack_lvl+0x95/0xd0
[   82.146978][ T4931]  dump_stack+0x15/0x1b
[   82.146995][ T4931]  should_fail_ex+0x265/0x280
[   82.147016][ T4931]  should_fail+0xb/0x20
[   82.147047][ T4931]  should_fail_usercopy+0x1a/0x20
[   82.147069][ T4931]  _copy_to_iter+0xd2/0xe70
[   82.147167][ T4931]  ? __pfx_sk_busy_loop_end+0x10/0x10
[   82.147189][ T4931]  ? skb_recv_datagram+0xf9/0x140
[   82.147215][ T4931]  raw_recvmsg+0x134/0x360
[   82.147317][ T4931]  ? __pfx_raw_recvmsg+0x10/0x10
[   82.147391][ T4931]  sock_recvmsg+0x139/0x170
[   82.147409][ T4931]  sock_read_iter+0x152/0x1a0
[   82.147438][ T4931]  ? __pfx_sock_read_iter+0x10/0x10
[   82.147487][ T4931]  vfs_read+0x64c/0x770
[   82.147555][ T4931]  ? __pfx_sock_read_iter+0x10/0x10
[   82.147584][ T4931]  ksys_read+0xda/0x1a0
[   82.147601][ T4931]  __x64_sys_read+0x40/0x50
[   82.147618][ T4931]  x64_sys_call+0x2889/0x3000
[   82.147690][ T4931]  do_syscall_64+0xca/0x2b0
[   82.147730][ T4931]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.147753][ T4931] RIP: 0033:0x7fe89ee8f749
[   82.147864][ T4931] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.147880][ T4931] RSP: 002b:00007fe89d8ef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   82.147899][ T4931] RAX: ffffffffffffffda RBX: 00007fe89f0e5fa0 RCX: 00007fe89ee8f749
[   82.147911][ T4931] RDX: 0000000000000011 RSI: 0000200000000080 RDI: 0000000000000003
[   82.147966][ T4931] RBP: 00007fe89d8ef090 R08: 0000000000000000 R09: 0000000000000000
[   82.147977][ T4931] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   82.147989][ T4931] R13: 00007fe89f0e6038 R14: 00007fe89f0e5fa0 R15: 00007ffe15d55678
[   82.148004][ T4931]  </TASK>
[   82.378753][ T4933] loop3: detected capacity change from 0 to 128
[   82.390007][ T4940] loop2: detected capacity change from 0 to 128
[   82.397368][ T4933] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   82.411620][ T4933] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   82.448885][ T4942] netlink: 52 bytes leftover after parsing attributes in process `syz.4.382'.
[   82.469377][ T4942] loop4: detected capacity change from 0 to 128
[   82.492635][ T4942] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   82.533634][ T4942] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   82.582482][ T4928] iso9660: Corrupted directory entry in block 2 of inode 1792
[   82.680603][ T4949] capability: warning: `syz.0.383' uses deprecated v2 capabilities in a way that may be insecure
[   82.824471][ T4927] syz.1.377 (4927) used greatest stack depth: 8640 bytes left
[   82.932626][ T4957] loop1: detected capacity change from 0 to 128
[   82.944035][ T4957] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   82.967376][ T4957] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   83.023727][ T4961] netlink: 52 bytes leftover after parsing attributes in process `syz.2.386'.
[   83.192024][  T408] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   83.298951][ T4968] loop3: detected capacity change from 0 to 128
[   83.305799][ T4968] vfat: Unknown parameter 'syzkaller'
[   83.350476][ T4968] loop3: detected capacity change from 0 to 512
[   83.357338][ T4968] msdos: Unknown parameter './file0'
[   83.567367][ T4974] syzkaller1: entered promiscuous mode
[   83.572983][ T4974] syzkaller1: entered allmulticast mode
[   83.695492][ T1087] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   83.790946][   T53] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   83.956589][ T4989] loop2: detected capacity change from 0 to 164
[   83.991972][ T4989] iso9660: Corrupted directory entry in block 2 of inode 1792
[   84.019616][ T3487] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   84.051103][ T3487] hid-generic 0000:0000:0000.0007: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   84.071888][ T4996] loop0: detected capacity change from 0 to 512
[   84.137523][ T5000] syz.4.399 uses obsolete (PF_INET,SOCK_PACKET)
[   84.137517][ T4996] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.397: bg 0: block 248: padding at end of block bitmap is not set
[   84.158625][ T4996] EXT4-fs error (device loop0): ext4_acquire_dquot:6986: comm syz.0.397: Failed to acquire dquot type 1
[   84.181862][ T4996] EXT4-fs (loop0): 1 truncate cleaned up
[   84.188251][ T4996] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.202810][ T4996] ext4 filesystem being mounted at /84/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   84.230758][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.309899][ T5010] loop0: detected capacity change from 0 to 512
[   84.317026][ T5010] EXT4-fs: Invalid want_extra_isize 2097244
[   84.641092][ T5019] __nla_validate_parse: 3 callbacks suppressed
[   84.641109][ T5019] netlink: 52 bytes leftover after parsing attributes in process `syz.2.404'.
[   84.673253][ T5019] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   84.711622][ T5019] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   84.732223][ T5024] ------------[ cut here ]------------
[   84.737906][ T5024] EA inode 11 i_nlink=2
[   84.737925][ T5024] WARNING: fs/ext4/xattr.c:1058 at ext4_xattr_inode_update_ref+0x2e6/0x320, CPU#1: syz.4.406/5024
[   84.752990][ T5024] Modules linked in:
[   84.756918][ T5024] CPU: 1 UID: 0 PID: 5024 Comm: syz.4.406 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   84.766781][ T5024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   84.776898][ T5024] RIP: 0010:ext4_xattr_inode_update_ref+0x305/0x320
[   84.783740][ T5024] Code: d1 e2 9c ff 4c 8d 2d 2a f0 20 05 49 8d 7e 40 e8 d1 6b b8 ff 49 8b 6e 40 4c 89 e7 e8 e5 66 b8 ff 41 8b 56 48 4c 89 ef 48 89 ee <67> 48 0f b9 3a e9 2b ff ff ff e8 7c ac ba 03 66 66 66 2e 0f 1f 84
[   84.803836][ T5024] RSP: 0018:ffffc9000135f5a0 EFLAGS: 00010246
[   84.809976][ T5024] RAX: ffff88811aa2ed90 RBX: ffff888107992080 RCX: ffffffff81bb1d9b
[   84.818127][ T5024] RDX: 0000000000000002 RSI: 000000000000000b RDI: ffffffff86dc0db0
[   84.826182][ T5024] RBP: 000000000000000b R08: 0001888107992033 R09: 0000000000000000
[   84.834338][ T5024] R10: 0000000000080d88 R11: 0001c9000135f4d0 R12: ffff888107992030
[   84.842378][ T5024] R13: ffffffff86dc0db0 R14: ffff888107991fe8 R15: 0000000000000001
[   84.850512][ T5024] FS:  00007fe89d8ef6c0(0000) GS:ffff8882aeec5000(0000) knlGS:0000000000000000
[   84.859581][ T5024] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   84.866354][ T5024] CR2: 00007fe139702000 CR3: 000000011ae96000 CR4: 00000000003506f0
[   84.874538][ T5024] Call Trace:
[   84.877913][ T5024]  <TASK>
[   84.880867][ T5024]  ext4_xattr_set_entry+0x77f/0x1020
[   84.886346][ T5024]  ext4_xattr_ibody_set+0x184/0x3c0
[   84.891694][ T5024]  ext4_expand_extra_isize_ea+0xcbb/0x11f0
[   84.897564][ T5024]  __ext4_expand_extra_isize+0x246/0x280
[   84.903270][ T5024]  __ext4_mark_inode_dirty+0x29d/0x3f0
[   84.908800][ T5024]  ext4_evict_inode+0x7c4/0xd40
[   84.913732][ T5024]  ? __pfx_ext4_evict_inode+0x10/0x10
[   84.919283][ T5024]  evict+0x2af/0x510
[   84.923286][ T5024]  ? __dquot_initialize+0x146/0x7c0
[   84.928614][ T5024]  iput+0x4bd/0x650
[   84.932455][ T5024]  ext4_process_orphan+0x1a9/0x1c0
[   84.937612][ T5024]  ext4_orphan_cleanup+0x6a8/0xa00
[   84.942792][ T5024]  ext4_fill_super+0x3411/0x37a0
[   84.947788][ T5024]  ? set_blocksize+0x1a8/0x310
[   84.952630][ T5024]  ? sb_set_blocksize+0xfc/0x170
[   84.957605][ T5024]  ? setup_bdev_super+0x30e/0x370
[   84.962692][ T5024]  ? __pfx_ext4_fill_super+0x10/0x10
[   84.968026][ T5024]  get_tree_bdev_flags+0x291/0x300
[   84.973342][ T5024]  ? __pfx_ext4_fill_super+0x10/0x10
[   84.978687][ T5024]  get_tree_bdev+0x1f/0x30
[   84.983198][ T5024]  ext4_get_tree+0x1c/0x30
[   84.987627][ T5024]  vfs_get_tree+0x57/0x1d0
[   84.992106][ T5024]  do_new_mount+0x24d/0x6a0
[   84.996697][ T5024]  path_mount+0x4ab/0xb80
[   85.001199][ T5024]  ? user_path_at+0xbf/0x130
[   85.005900][ T5024]  __se_sys_mount+0x28c/0x2e0
[   85.010652][ T5024]  __x64_sys_mount+0x67/0x80
[   85.015318][ T5024]  x64_sys_call+0x2cca/0x3000
[   85.020066][ T5024]  do_syscall_64+0xca/0x2b0
[   85.024660][ T5024]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.030710][ T5024] RIP: 0033:0x7fe89ee90eea
[   85.035158][ T5024] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.054937][ T5024] RSP: 002b:00007fe89d8eee68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   85.063584][ T5024] RAX: ffffffffffffffda RBX: 00007fe89d8eeef0 RCX: 00007fe89ee90eea
[   85.071599][ T5024] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fe89d8eeeb0
[   85.079707][ T5024] RBP: 0000200000000180 R08: 00007fe89d8eeef0 R09: 0000000000800718
[   85.087758][ T5024] R10: 0000000000800718 R11: 0000000000000246 R12: 00002000000001c0
[   85.095793][ T5024] R13: 00007fe89d8eeeb0 R14: 000000000000046f R15: 0000200000000200
[   85.103929][ T5024]  </TASK>
[   85.106964][ T5024] ---[ end trace 0000000000000000 ]---
[   85.112900][   T29] kauditd_printk_skb: 1333 callbacks suppressed
[   85.112916][   T29] audit: type=1326 audit(1767493354.234:12898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5026 comm="syz.1.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f991a69f749 code=0x7ffc0000
[   85.113447][ T5024] EXT4-fs (loop4): 1 orphan inode deleted
[   85.129074][   T29] audit: type=1326 audit(1767493354.244:12899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5026 comm="syz.1.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f991a69f749 code=0x7ffc0000
[   85.143624][ T5024] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   85.148994][   T29] audit: type=1326 audit(1767493354.244:12900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5026 comm="syz.1.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f991a69f749 code=0x7ffc0000
[   85.208068][   T29] audit: type=1326 audit(1767493354.244:12901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5026 comm="syz.1.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f991a69f749 code=0x7ffc0000
[   85.231756][   T29] audit: type=1326 audit(1767493354.244:12902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5026 comm="syz.1.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f991a69f749 code=0x7ffc0000
[   85.255363][   T29] audit: type=1326 audit(1767493354.244:12903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5026 comm="syz.1.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f991a69f749 code=0x7ffc0000
[   85.279105][   T29] audit: type=1326 audit(1767493354.244:12904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5026 comm="syz.1.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f991a69f749 code=0x7ffc0000
[   85.302633][   T29] audit: type=1326 audit(1767493354.244:12905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5026 comm="syz.1.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f991a69f749 code=0x7ffc0000
[   85.326511][   T29] audit: type=1326 audit(1767493354.244:12906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5026 comm="syz.1.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f991a69f749 code=0x7ffc0000
[   85.350212][   T29] audit: type=1326 audit(1767493354.244:12907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5026 comm="syz.1.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f991a69f749 code=0x7ffc0000
[   85.385205][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.427873][ T5034] netlink: 6068 bytes leftover after parsing attributes in process `syz.4.408'.
[   85.447872][ T5034] netlink: 36 bytes leftover after parsing attributes in process `syz.4.408'.
[   85.478106][ T5034] netlink: 'syz.4.408': attribute type 10 has an invalid length.
[   85.485864][ T5034] netlink: 40 bytes leftover after parsing attributes in process `syz.4.408'.
[   85.537865][   T42] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   85.557685][ T5044] FAULT_INJECTION: forcing a failure.
[   85.557685][ T5044] name failslab, interval 1, probability 0, space 0, times 1
[   85.570629][ T5044] CPU: 0 UID: 0 PID: 5044 Comm: syz.1.414 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   85.570673][ T5044] Tainted: [W]=WARN
[   85.570681][ T5044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   85.570762][ T5044] Call Trace:
[   85.570771][ T5044]  <TASK>
[   85.570781][ T5044]  __dump_stack+0x1d/0x30
[   85.570811][ T5044]  dump_stack_lvl+0x95/0xd0
[   85.570837][ T5044]  dump_stack+0x15/0x1b
[   85.570872][ T5044]  should_fail_ex+0x265/0x280
[   85.570895][ T5044]  should_failslab+0x8c/0xb0
[   85.570922][ T5044]  __kvmalloc_node_noprof+0x149/0x6b0
[   85.570952][ T5044]  ? map_get_next_key+0x19c/0x330
[   85.571055][ T5044]  map_get_next_key+0x19c/0x330
[   85.571076][ T5044]  ? __sys_bpf+0x599/0x7c0
[   85.571127][ T5044]  __sys_bpf+0x5a3/0x7c0
[   85.571156][ T5044]  __x64_sys_bpf+0x41/0x50
[   85.571193][ T5044]  x64_sys_call+0x28e1/0x3000
[   85.571222][ T5044]  do_syscall_64+0xca/0x2b0
[   85.571341][ T5044]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.571366][ T5044] RIP: 0033:0x7f991a69f749
[   85.571385][ T5044] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.571407][ T5044] RSP: 002b:00007f99190ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   85.571431][ T5044] RAX: ffffffffffffffda RBX: 00007f991a8f5fa0 RCX: 00007f991a69f749
[   85.571446][ T5044] RDX: 0000000000000020 RSI: 0000200000000080 RDI: 0000000000000004
[   85.571532][ T5044] RBP: 00007f99190ff090 R08: 0000000000000000 R09: 0000000000000000
[   85.571616][ T5044] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   85.571631][ T5044] R13: 00007f991a8f6038 R14: 00007f991a8f5fa0 R15: 00007ffd2d254848
[   85.571652][ T5044]  </TASK>
[   86.080279][ T5046] netlink: 'syz.0.410': attribute type 3 has an invalid length.
[   86.088397][ T5046] netlink: 'syz.0.410': attribute type 3 has an invalid length.
[   86.750067][ T5068] netlink: 16 bytes leftover after parsing attributes in process `syz.3.418'.
[   86.772683][ T1087] kworker/u8:9: attempt to access beyond end of device
[   86.772683][ T1087] loop4: rw=1, sector=145, nr_sectors = 8 limit=128
[   86.824321][ T1087] kworker/u8:9: attempt to access beyond end of device
[   86.824321][ T1087] loop4: rw=1, sector=161, nr_sectors = 8 limit=128
[   86.837917][ T1087] kworker/u8:9: attempt to access beyond end of device
[   86.837917][ T1087] loop4: rw=1, sector=177, nr_sectors = 8 limit=128
[   86.851827][ T1087] kworker/u8:9: attempt to access beyond end of device
[   86.851827][ T1087] loop4: rw=1, sector=193, nr_sectors = 8 limit=128
[   86.864815][ T5068] netlink: 16 bytes leftover after parsing attributes in process `syz.3.418'.
[   86.888514][ T3314] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[   86.899450][ T3314] CPU: 0 UID: 0 PID: 3314 Comm: syz-executor Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   86.899517][ T3314] Tainted: [W]=WARN
[   86.899525][ T3314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   86.899539][ T3314] Call Trace:
[   86.899548][ T3314]  <TASK>
[   86.899556][ T3314]  __dump_stack+0x1d/0x30
[   86.899585][ T3314]  dump_stack_lvl+0x95/0xd0
[   86.899637][ T3314]  dump_stack+0x15/0x1b
[   86.899658][ T3314]  dump_header+0x81/0x240
[   86.899680][ T3314]  oom_kill_process+0x295/0x350
[   86.899702][ T3314]  out_of_memory+0x97b/0xb80
[   86.899735][ T3314]  try_charge_memcg+0x610/0xa10
[   86.899776][ T3314]  charge_memcg+0x51/0xc0
[   86.899805][ T3314]  __mem_cgroup_charge+0x28/0xb0
[   86.899894][ T3314]  filemap_add_folio+0x111/0x360
[   86.900012][ T3314]  __filemap_get_folio_mpol+0x326/0x650
[   86.900088][ T3314]  filemap_fault+0x44d/0xb70
[   86.900119][ T3314]  __do_fault+0xbc/0x200
[   86.900137][ T3314]  handle_mm_fault+0xfab/0x2c60
[   86.900238][ T3314]  do_user_addr_fault+0x630/0x1080
[   86.900284][ T3314]  exc_page_fault+0x62/0xa0
[   86.900314][ T3314]  asm_exc_page_fault+0x26/0x30
[   86.900337][ T3314] RIP: 0033:0x7f991a575fd4
[   86.900364][ T3314] Code: 85 ed 09 00 00 48 b8 db 34 b6 d7 82 de 1b 43 48 f7 a4 24 98 00 00 00 48 8b 05 c8 f7 ea 00 48 69 8c 24 90 00 00 00 e8 03 00 00 <8b> 78 08 48 8b 44 24 18 48 c1 ea 12 4c 8b 0d d9 f6 ea 00 48 01 d1
[   86.900383][ T3314] RSP: 002b:00007ffd2d254bd0 EFLAGS: 00010206
[   86.900403][ T3314] RAX: 0000001b33924000 RBX: 0000000000000127 RCX: 0000000000014ff0
[   86.900479][ T3314] RDX: 000000000be8f0c7 RSI: 00007ffd2d254c60 RDI: 0000000000000001
[   86.900493][ T3314] RBP: 00007ffd2d254c0c R08: 000000002d6ec901 R09: 7fffffffffffffff
[   86.900507][ T3314] R10: 3fffffffffffffff R11: 0000000000000202 R12: 0000000000001388
[   86.900521][ T3314] R13: 00000000000927c0 R14: 0000000000014f0e R15: 00007ffd2d254c60
[   86.900542][ T3314]  </TASK>
[   86.900550][ T3314] memory: usage 307200kB, limit 307200kB, failcnt 1386
[   87.094567][ T3314] memory+swap: usage 206516kB, limit 9007199254740988kB, failcnt 0
[   87.102625][ T3314] kmem: usage 200012kB, limit 9007199254740988kB, failcnt 0
[   87.110008][ T3314] Memory cgroup stats for /syz1:
[   87.114866][ T3314] cache 0
[   87.122908][ T3314] rss 0
[   87.125793][ T3314] shmem 0
[   87.128803][ T3314] mapped_file 0
[   87.132271][ T3314] dirty 0
[   87.135210][ T3314] writeback 0
[   87.138615][ T3314] workingset_refault_anon 148
[   87.143368][ T3314] workingset_refault_file 550
[   87.148062][ T3314] swap 200704
[   87.151428][ T3314] swapcached 4096
[   87.155199][ T3314] pgpgin 56351
[   87.158691][ T3314] pgpgout 56350
[   87.162151][ T3314] pgfault 143699
[   87.165737][ T3314] pgmajfault 93
[   87.169220][ T3314] inactive_anon 4096
[   87.173218][ T3314] active_anon 0
[   87.176679][ T3314] inactive_file 0
[   87.180380][ T3314] active_file 0
[   87.183932][ T3314] unevictable 0
[   87.187397][ T3314] hierarchical_memory_limit 314572800
[   87.192796][ T3314] hierarchical_memsw_limit 9223372036854771712
[   87.199054][ T3314] total_cache 0
[   87.202515][ T3314] total_rss 0
[   87.205830][ T3314] total_shmem 0
[   87.209358][ T3314] total_mapped_file 0
[   87.213338][ T3314] total_dirty 0
[   87.216774][ T3314] total_writeback 0
[   87.220640][ T3314] total_workingset_refault_anon 148
[   87.225899][ T3314] total_workingset_refault_file 550
[   87.231127][ T3314] total_swap 200704
[   87.234940][ T3314] total_swapcached 4096
[   87.239288][ T3314] total_pgpgin 56351
[   87.243426][ T3314] total_pgpgout 56350
[   87.247445][ T3314] total_pgfault 143699
[   87.251568][ T3314] total_pgmajfault 93
[   87.255563][ T3314] total_inactive_anon 4096
[   87.260046][ T3314] total_active_anon 0
[   87.264122][ T3314] total_inactive_file 0
[   87.268328][ T3314] total_active_file 0
[   87.272322][ T3314] total_unevictable 0
[   87.276320][ T3314] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.415,pid=5050,uid=0
[   87.290888][ T3314] Memory cgroup out of memory: Killed process 5050 (syz.1.415) total-vm:94100kB, anon-rss:1264kB, file-rss:21924kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[   87.465781][ T5089] netlink: 12 bytes leftover after parsing attributes in process `syz.0.425'.
[   87.488073][ T5092] set_capacity_and_notify: 5 callbacks suppressed
[   87.488100][ T5092] loop1: detected capacity change from 0 to 2048
[   87.496207][ T5088] mmap: syz.0.425 (5088) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   87.552191][ T5092] Alternate GPT is invalid, using primary GPT.
[   87.558782][ T5092]  loop1: p2 p3 p7
[   87.605882][ T5103] netlink: 6068 bytes leftover after parsing attributes in process `syz.4.431'.
[   87.615312][ T5096] loop2: detected capacity change from 0 to 2048
[   87.626896][ T3527] udevd[3527]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory
[   87.651437][ T3529] udevd[3529]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[   87.679748][ T5103] netlink: 36 bytes leftover after parsing attributes in process `syz.4.431'.
[   87.694208][ T3509] udevd[3509]: inotify_add_watch(7, /dev/loop1p7, 10) failed: No such file or directory
[   87.772340][ T5096] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   87.795342][ T5096] netlink: 'syz.2.428': attribute type 10 has an invalid length.
[   87.820568][ T5096] team0: Failed to send options change via netlink (err -105)
[   87.828560][ T5096] team0: Port device dummy0 added
[   87.990606][ T5116] loop0: detected capacity change from 0 to 164
[   88.000194][ T5096] netlink: 'syz.2.428': attribute type 10 has an invalid length.
[   88.010806][ T5116] iso9660: Corrupted directory entry in block 2 of inode 1792
[   88.022594][ T5096] team0: Failed to send port change of device dummy0 via netlink (err -105)
[   88.044791][ T5096] team0: Failed to send options change via netlink (err -105)
[   88.220717][ T5122] netlink: 'syz.4.436': attribute type 3 has an invalid length.
[   88.241821][ T5096] team0: Failed to send port change of device dummy0 via netlink (err -105)
[   88.340384][ T5096] team0: Port device dummy0 removed
[   88.362755][ T5096] bond0: (slave dummy0): Enslaving as an active interface with an up link
[   88.372960][ T5122] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.524706][ T5122] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.552133][ T5131] loop3: detected capacity change from 0 to 2048
[   88.599878][ T5131] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   88.613478][ T5126] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   88.614039][ T5122] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.642329][ T5126] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   88.655358][ T5126] EXT4-fs (loop2): This should not happen!! Data will be lost
[   88.655358][ T5126] 
[   88.665277][ T5126] EXT4-fs (loop2): Total free blocks count 0
[   88.671390][ T5126] EXT4-fs (loop2): Free/Dirty block details
[   88.677324][ T5126] EXT4-fs (loop2): free_blocks=2415919104
[   88.683195][ T5126] EXT4-fs (loop2): dirty_blocks=3408
[   88.688585][ T5126] EXT4-fs (loop2): Block reservation details
[   88.694639][ T5126] EXT4-fs (loop2): i_reserved_data_blocks=213
[   88.724384][   T31] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 1342 with error 28
[   88.774842][ T5122] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.802786][ T5135] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   88.813544][ T5135] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   88.828463][ T5135] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   88.881457][ T1087] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   88.905245][ T1087] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   88.915306][ T5135] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   88.937859][ T5135] vhci_hcd vhci_hcd.2: invalid port number 96
[   88.944082][ T5135] vhci_hcd vhci_hcd.2: default hub control req: 0300 vfffa i0060 l0
[   88.959168][ T1087] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   88.981993][ T1087] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   89.010105][ T5141] Cannot find del_set index 0 as target
[   89.020490][ T5141] loop0: detected capacity change from 0 to 512
[   89.034272][ T5141] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -2
[   89.048756][ T5141] EXT4-fs error (device loop0): ext4_orphan_get:1391: inode #13: comm syz.0.441: iget: bad i_size value: 12154757448730
[   89.115530][ T5141] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.441: couldn't read orphan inode 13 (err -117)
[   89.157251][ T5148] loop4: detected capacity change from 0 to 512
[   89.191144][ T5148] EXT4-fs (loop4): orphan cleanup on readonly fs
[   89.204005][ T5141] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   89.239628][ T5148] EXT4-fs error (device loop4): ext4_acquire_dquot:6986: comm syz.4.444: Failed to acquire dquot type 1
[   89.270033][ T5148] EXT4-fs (loop4): 1 truncate cleaned up
[   89.291562][ T5131] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   89.307095][ T5148] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   89.345219][ T5157] netlink: 6068 bytes leftover after parsing attributes in process `syz.2.446'.
[   89.356680][ T5157] netlink: 'syz.2.446': attribute type 10 has an invalid length.
[   89.366442][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.375654][ T5131] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   89.388408][ T5131] EXT4-fs (loop3): This should not happen!! Data will be lost
[   89.388408][ T5131] 
[   89.398118][ T5131] EXT4-fs (loop3): Total free blocks count 0
[   89.404150][ T5131] EXT4-fs (loop3): Free/Dirty block details
[   89.410170][ T5131] EXT4-fs (loop3): free_blocks=2415919104
[   89.415911][ T5131] EXT4-fs (loop3): dirty_blocks=8192
[   89.421320][ T5131] EXT4-fs (loop3): Block reservation details
[   89.427317][ T5131] EXT4-fs (loop3): i_reserved_data_blocks=512
[   89.458378][ T5161] loop4: detected capacity change from 0 to 512
[   89.479677][   T53] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[   89.495007][ T5161] EXT4-fs error (device loop4): ext4_xattr_inode_iget:446: comm syz.4.448: error while reading EA inode 32 err=-116
[   89.513051][ T5163] loop1: detected capacity change from 0 to 512
[   89.526905][ T5161] EXT4-fs (loop4): Remounting filesystem read-only
[   89.533658][ T5161] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2857: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   89.546852][ T5161] EXT4-fs warning (device loop4): ext4_evict_inode:256: couldn't mark inode dirty (err -30)
[   89.569737][ T5163] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.450: bg 0: block 248: padding at end of block bitmap is not set
[   89.574893][ T5161] EXT4-fs (loop4): 1 orphan inode deleted
[   89.584628][ T5163] EXT4-fs error (device loop1): ext4_acquire_dquot:6986: comm syz.1.450: Failed to acquire dquot type 1
[   89.602194][ T5163] EXT4-fs (loop1): 1 truncate cleaned up
[   89.608451][ T5163] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   89.618531][ T5161] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   89.621258][ T5163] ext4 filesystem being mounted at /105/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.644772][ T5161] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.670575][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.755244][ T5166] SELinux: failed to load policy
[   89.804772][ T5176] loop1: detected capacity change from 0 to 2048
[   89.862999][ T5182] __nla_validate_parse: 2 callbacks suppressed
[   89.863016][ T5182] netlink: 52 bytes leftover after parsing attributes in process `syz.2.457'.
[   89.863062][ T5178] loop3: detected capacity change from 0 to 164
[   89.886400][ T5182] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   89.915700][ T5176] Alternate GPT is invalid, using primary GPT.
[   89.922256][ T5176]  loop1: p2 p3 p7
[   89.938429][ T5182] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   89.962658][   T42] kworker/u8:2 invoked oom-killer: gfp_mask=0x100c0a(GFP_NOIO|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_HARDWALL), order=0, oom_score_adj=0
[   89.976561][   T42] CPU: 0 UID: 0 PID: 42 Comm: kworker/u8:2 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   89.976701][   T42] Tainted: [W]=WARN
[   89.976709][   T42] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   89.976725][   T42] Workqueue: loop3 loop_rootcg_workfn
[   89.976749][   T42] Call Trace:
[   89.976755][   T42]  <TASK>
[   89.976762][   T42]  __dump_stack+0x1d/0x30
[   89.976847][   T42]  dump_stack_lvl+0x95/0xd0
[   89.976889][   T42]  dump_stack+0x15/0x1b
[   89.976915][   T42]  dump_header+0x81/0x240
[   89.976939][   T42]  oom_kill_process+0x295/0x350
[   89.977028][   T42]  out_of_memory+0x97b/0xb80
[   89.977049][   T42]  try_charge_memcg+0x610/0xa10
[   89.977171][   T42]  charge_memcg+0x51/0xc0
[   89.977217][   T42]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[   89.977353][   T42]  __read_swap_cache_async+0x17b/0x2d0
[   89.977389][   T42]  swap_cluster_readahead+0x262/0x3c0
[   89.977421][   T42]  shmem_swapin_folio+0x8b4/0x11e0
[   89.977453][   T42]  ? xas_load+0x413/0x430
[   89.977490][   T42]  ? filemap_get_entry+0x34b/0x390
[   89.977518][   T42]  shmem_get_folio_gfp+0x26c/0xd50
[   89.977600][   T42]  ? update_curr+0x2c/0x150
[   89.977627][   T42]  ? check_preempt_wakeup_fair+0x23c/0x310
[   89.977657][   T42]  shmem_file_read_iter+0x10d/0x540
[   89.977782][   T42]  lo_rw_aio+0x673/0x720
[   89.977810][   T42]  loop_process_work+0x56d/0xaa0
[   89.977834][   T42]  ? __rcu_read_unlock+0x4f/0x70
[   89.977855][   T42]  ? __perf_event_task_sched_in+0xa5b/0xac0
[   89.977923][   T42]  ? __list_add_valid_or_report+0x38/0xe0
[   89.977950][   T42]  ? perf_cgroup_switch+0x10c/0x480
[   89.977970][   T42]  ? __set_next_task_fair+0x5b/0x150
[   89.978023][   T42]  loop_rootcg_workfn+0x22/0x30
[   89.978041][   T42]  process_scheduled_works+0x4ce/0x9d0
[   89.978072][   T42]  worker_thread+0x582/0x770
[   89.978101][   T42]  kthread+0x489/0x510
[   89.978171][   T42]  ? __pfx_worker_thread+0x10/0x10
[   89.978199][   T42]  ? __pfx_kthread+0x10/0x10
[   89.978225][   T42]  ret_from_fork+0x149/0x290
[   89.978330][   T42]  ? __pfx_kthread+0x10/0x10
[   89.978377][   T42]  ret_from_fork_asm+0x1a/0x30
[   89.978405][   T42]  </TASK>
[   90.073792][ T3509] udevd[3509]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[   90.074392][   T42] memory: usage 307200kB, limit 307200kB, failcnt 854
[   90.080408][ T3527] udevd[3527]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory
[   90.082659][ T3510] udevd[3510]: inotify_add_watch(7, /dev/loop1p7, 10) failed: No such file or directory
[   90.090927][ T3510] udevd[3510]: inotify_add_watch(7, /dev/loop1p7, 10) failed: No such file or directory
[   90.093995][   T42] memory+swap: usage 307480kB, limit 9007199254740988kB, failcnt 0
[   90.094013][   T42] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[   90.099787][ T3509] udevd[3509]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[   90.104449][   T42] Memory cgroup stats for /syz3:
[   90.214786][ T3527] udevd[3527]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory
[   90.250147][   T42] cache 0
[   90.281427][   T42] rss 0
[   90.284239][   T42] shmem 0
[   90.287280][   T42] mapped_file 0
[   90.290861][   T42] dirty 0
[   90.293860][   T42] writeback 0
[   90.297141][   T42] workingset_refault_anon 25
[   90.301852][   T42] workingset_refault_file 288
[   90.306539][   T42] swap 286720
[   90.309872][   T42] swapcached 0
[   90.313249][   T42] pgpgin 64287
[   90.316621][   T42] pgpgout 64287
[   90.320187][   T42] pgfault 135835
[   90.323794][   T42] pgmajfault 17
[   90.327404][   T42] inactive_anon 0
[   90.331217][   T42] active_anon 0
[   90.334813][   T42] inactive_file 0
[   90.338535][   T42] active_file 0
[   90.342165][   T42] unevictable 0
[   90.345647][   T42] hierarchical_memory_limit 314572800
[   90.351174][   T42] hierarchical_memsw_limit 9223372036854771712
[   90.357422][   T42] total_cache 0
[   90.361022][   T42] total_rss 0
[   90.364330][   T42] total_shmem 0
[   90.367943][   T42] total_mapped_file 0
[   90.372023][   T42] total_dirty 0
[   90.375579][   T42] total_writeback 0
[   90.379451][   T42] total_workingset_refault_anon 25
[   90.384673][   T42] total_workingset_refault_file 288
[   90.390204][   T42] total_swap 286720
[   90.394106][   T42] total_swapcached 0
[   90.398053][   T42] total_pgpgin 64287
[   90.401962][   T42] total_pgpgout 64287
[   90.405950][   T42] total_pgfault 135835
[   90.410084][   T42] total_pgmajfault 17
[   90.414108][   T42] total_inactive_anon 0
[   90.418320][   T42] total_active_anon 0
[   90.422319][   T42] total_inactive_file 0
[   90.426481][   T42] total_active_file 0
[   90.426976][ T5191] FAULT_INJECTION: forcing a failure.
[   90.426976][ T5191] name failslab, interval 1, probability 0, space 0, times 0
[   90.430571][   T42] total_unevictable 0
[   90.430584][   T42] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null)
[   90.443427][ T5191] CPU: 0 UID: 0 PID: 5191 Comm: syz.1.458 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   90.443462][ T5191] Tainted: [W]=WARN
[   90.443470][ T5191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   90.443482][ T5191] Call Trace:
[   90.443489][ T5191]  <TASK>
[   90.443498][ T5191]  __dump_stack+0x1d/0x30
[   90.443600][ T5191]  dump_stack_lvl+0x95/0xd0
[   90.443622][ T5191]  dump_stack+0x15/0x1b
[   90.443725][ T5191]  should_fail_ex+0x265/0x280
[   90.443750][ T5191]  should_failslab+0x8c/0xb0
[   90.443772][ T5191]  __kmalloc_cache_node_noprof+0x6a/0x4d0
[   90.443798][ T5191]  ? __get_vm_area_node+0x106/0x1d0
[   90.443844][ T5191]  __get_vm_area_node+0x106/0x1d0
[   90.443868][ T5191]  __vmalloc_node_range_noprof+0x28e/0x1310
[   90.443894][ T5191]  ? sel_write_load+0x157/0x380
[   90.443911][ T5191]  ? path_openat+0x1e82/0x23b0
[   90.443949][ T5191]  ? _parse_integer_limit+0x170/0x190
[   90.443971][ T5191]  ? _parse_integer+0x27/0x40
[   90.443990][ T5191]  ? __rcu_read_unlock+0x4f/0x70
[   90.444075][ T5191]  ? avc_has_perm_noaudit+0xab/0x130
[   90.444097][ T5191]  ? sel_write_load+0x157/0x380
[   90.444115][ T5191]  vmalloc_noprof+0x82/0xc0
[   90.444139][ T5191]  ? sel_write_load+0x157/0x380
[   90.444157][ T5191]  sel_write_load+0x157/0x380
[   90.444255][ T5191]  ? __pfx_sel_write_load+0x10/0x10
[   90.444274][ T5191]  vfs_write+0x269/0x960
[   90.444293][ T5191]  ? __rcu_read_unlock+0x4f/0x70
[   90.444341][ T5191]  ? __fget_files+0x184/0x1c0
[   90.444422][ T5191]  ? mutex_lock+0x58/0x90
[   90.444448][ T5191]  ksys_write+0xda/0x1a0
[   90.444468][ T5191]  __x64_sys_write+0x40/0x50
[   90.444489][ T5191]  x64_sys_call+0x2847/0x3000
[   90.444513][ T5191]  do_syscall_64+0xca/0x2b0
[   90.444586][ T5191]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.444607][ T5191] RIP: 0033:0x7f991a69f749
[   90.444624][ T5191] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.444642][ T5191] RSP: 002b:00007f99190de038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   90.444663][ T5191] RAX: ffffffffffffffda RBX: 00007f991a8f6090 RCX: 00007f991a69f749
[   90.444751][ T5191] RDX: 000000000000fd44 RSI: 0000200000000000 RDI: 0000000000000003
[   90.444765][ T5191] RBP: 00007f99190de090 R08: 0000000000000000 R09: 0000000000000000
[   90.444778][ T5191] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   90.444790][ T5191] R13: 00007f991a8f6128 R14: 00007f991a8f6090 R15: 00007ffd2d254848
[   90.444808][ T5191]  </TASK>
[   90.444818][ T5191] syz.1.458: vmalloc error: size 64836, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null)
[   90.447380][   T42] ,cpuset=/,mems_allowed=0,oom_memcg=
[   90.454468][ T5191] ,cpuset=/,mems_allowed=0
[   90.454556][ T5191] CPU: 0 UID: 0 PID: 5191 Comm: syz.1.458 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   90.454587][ T5191] Tainted: [W]=WARN
[   90.454594][ T5191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   90.454606][ T5191] Call Trace:
[   90.454612][ T5191]  <TASK>
[   90.454619][ T5191]  __dump_stack+0x1d/0x30
[   90.454639][ T5191]  dump_stack_lvl+0x95/0xd0
[   90.454699][ T5191]  dump_stack+0x15/0x1b
[   90.454724][ T5191]  warn_alloc+0x12b/0x1a0
[   90.454752][ T5191]  __vmalloc_node_range_noprof+0x2b3/0x1310
[   90.454796][ T5191]  ? path_openat+0x1e82/0x23b0
[   90.454907][ T5191]  ? _parse_integer_limit+0x170/0x190
[   90.454930][ T5191]  ? _parse_integer+0x27/0x40
[   90.454948][ T5191]  ? __rcu_read_unlock+0x4f/0x70
[   90.454983][ T5191]  ? avc_has_perm_noaudit+0xab/0x130
[   90.455049][ T5191]  ? sel_write_load+0x157/0x380
[   90.455067][ T5191]  vmalloc_noprof+0x82/0xc0
[   90.455091][ T5191]  ? sel_write_load+0x157/0x380
[   90.455109][ T5191]  sel_write_load+0x157/0x380
[   90.455128][ T5191]  ? __pfx_sel_write_load+0x10/0x10
[   90.455173][ T5191]  vfs_write+0x269/0x960
[   90.455198][ T5191]  ? __rcu_read_unlock+0x4f/0x70
[   90.455227][ T5191]  ? __fget_files+0x184/0x1c0
[   90.455249][ T5191]  ? mutex_lock+0x58/0x90
[   90.455345][ T5191]  ksys_write+0xda/0x1a0
[   90.455365][ T5191]  __x64_sys_write+0x40/0x50
[   90.455438][ T5191]  x64_sys_call+0x2847/0x3000
[   90.455528][ T5191]  do_syscall_64+0xca/0x2b0
[   90.455624][ T5191]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.455646][ T5191] RIP: 0033:0x7f991a69f749
[   90.455661][ T5191] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.455679][ T5191] RSP: 002b:00007f99190de038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   90.455699][ T5191] RAX: ffffffffffffffda RBX: 00007f991a8f6090 RCX: 00007f991a69f749
[   90.455712][ T5191] RDX: 000000000000fd44 RSI: 0000200000000000 RDI: 0000000000000003
[   90.455787][ T5191] RBP: 00007f99190de090 R08: 0000000000000000 R09: 0000000000000000
[   90.455828][ T5191] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   90.455841][ T5191] R13: 00007f991a8f6128 R14: 00007f991a8f6090 R15: 00007ffd2d254848
[   90.455859][ T5191]  </TASK>
[   90.455866][ T5191] Mem-Info:
[   90.465761][   T42] /syz3
[   90.469586][ T5191] active_anon:9152 inactive_anon:2552 isolated_anon:0
[   90.469586][ T5191]  active_file:8942 inactive_file:2333 isolated_file:0
[   90.469586][ T5191]  unevictable:0 dirty:1 writeback:3
[   90.469586][ T5191]  slab_reclaimable:3302 slab_unreclaimable:14792
[   90.469586][ T5191]  mapped:30794 shmem:2814 pagetables:1281
[   90.469586][ T5191]  sec_pagetables:0 bounce:0
[   90.469586][ T5191]  kernel_misc_reclaimable:0
[   90.469586][ T5191]  free:1887712 free_pcp:11872 free_cma:0
[   90.479760][   T42] ,task_memcg=
[   90.483026][ T5191] Node 0 active_anon:36608kB inactive_anon:10208kB active_file:35768kB inactive_file:9332kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:123176kB dirty:4kB writeback:12kB shmem:11256kB kernel_stack:3840kB pagetables:5124kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[   90.485969][   T42] /syz3
[   90.490327][ T5191] Node 0 
[   90.494846][   T42] ,task=syz.3.451,pid=5171,uid=0
[   90.499057][ T5191] DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[   90.504178][   T42] Memory cgroup out of memory: Killed process 5171 (syz.3.451) total-vm:93968kB, anon-rss:1248kB, file-rss:22052kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[   90.508846][ T5191] lowmem_reserve[]: 0
[   90.548200][   T29] kauditd_printk_skb: 308 callbacks suppressed
[   90.548219][   T29] audit: type=1400 audit(1767493359.534:13212): avc:  denied  { module_request } for  pid=5181 comm="syz.2.457" kmod="fs-binder" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[   90.551250][ T5191]  2880 7859 7859
[   91.126924][ T5191] Node 0 DMA32 free:2945988kB boost:0kB min:4132kB low:7060kB high:9988kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:3129332kB managed:2949516kB mlocked:0kB bounce:0kB free_pcp:3528kB local_pcp:3528kB free_cma:0kB
[   91.158572][ T5191] lowmem_reserve[]: 0 0 4978 4978
[   91.163630][ T5191] Node 0 Normal free:4589284kB boost:0kB min:7188kB low:12284kB high:17380kB reserved_highatomic:0KB free_highatomic:0KB active_anon:36624kB inactive_anon:10268kB active_file:36236kB inactive_file:9312kB unevictable:0kB writepending:8kB zspages:0kB present:5242880kB managed:5098240kB mlocked:0kB bounce:0kB free_pcp:43288kB local_pcp:7712kB free_cma:0kB
[   91.196963][ T5191] lowmem_reserve[]: 0 0 0 0
[   91.201611][ T5191] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[   91.214507][ T5191] Node 0 DMA32: 3*4kB (M) 3*8kB (M) 4*16kB (M) 3*32kB (M) 4*64kB (M) 2*128kB (M) 3*256kB (M) 3*512kB (M) 4*1024kB (M) 3*2048kB (M) 716*4096kB (M) = 2945988kB
[   91.231044][ T5191] Node 0 Normal: 974*4kB (UME) 618*8kB (UME) 380*16kB (UME) 200*32kB (UME) 165*64kB (UM) 158*128kB (UME) 119*256kB (UME) 88*512kB (UME) 93*1024kB (UME) 82*2048kB (UME) 1025*4096kB (UM) = 4589192kB
[   91.250841][ T5191] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[   91.260283][ T5191] 14189 total pagecache pages
[   91.265055][ T5191] 11 pages in swap cache
[   91.269451][ T5191] Free swap  = 107224kB
[   91.273651][ T5191] Total swap = 124996kB
[   91.277852][ T5191] 2097051 pages RAM
[   91.281697][ T5191] 0 pages HighMem/MovableOnly
[   91.286345][ T5191] 81272 pages reserved
[   91.327417][   T29] audit: type=1400 audit(1767493360.444:13213): avc:  denied  { read write } for  pid=5202 comm="syz.4.463" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   91.353459][   T42] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   91.368491][   T29] audit: type=1400 audit(1767493360.444:13214): avc:  denied  { open } for  pid=5202 comm="syz.4.463" path="/dev/autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   91.392613][   T29] audit: type=1400 audit(1767493360.444:13215): avc:  denied  { ioctl } for  pid=5202 comm="syz.4.463" path="/dev/autofs" dev="devtmpfs" ino=91 ioctlcmd=0x9374 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   91.427206][   T29] audit: type=1400 audit(1767493360.544:13216): avc:  denied  { ioctl } for  pid=5204 comm="syz.1.462" path="/dev/autofs" dev="devtmpfs" ino=91 ioctlcmd=0x9374 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   91.472964][   T29] audit: type=1400 audit(1767493360.594:13217): avc:  denied  { create } for  pid=5210 comm="syz.3.467" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   91.493249][ T5211] netlink: 40 bytes leftover after parsing attributes in process `syz.3.467'.
[   91.516838][   T29] audit: type=1326 audit(1767493360.634:13218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5212 comm="syz.4.465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe89ee8f749 code=0x7ffc0000
[   91.582658][ T5207] syz.2.464: attempt to access beyond end of device
[   91.582658][ T5207] loop2: rw=2049, sector=145, nr_sectors = 16 limit=128
[   91.586439][   T29] audit: type=1326 audit(1767493360.674:13219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5212 comm="syz.4.465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fe89ee8f749 code=0x7ffc0000
[   91.596544][ T5207] syz.2.464: attempt to access beyond end of device
[   91.596544][ T5207] loop2: rw=2049, sector=169, nr_sectors = 8 limit=128
[   91.620037][   T29] audit: type=1326 audit(1767493360.674:13220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5212 comm="syz.4.465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe89ee8f749 code=0x7ffc0000
[   91.645769][ T5207] syz.2.464: attempt to access beyond end of device
[   91.645769][ T5207] loop2: rw=2049, sector=185, nr_sectors = 8 limit=128
[   91.656903][   T29] audit: type=1326 audit(1767493360.674:13221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5212 comm="syz.4.465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7fe89ee8f749 code=0x7ffc0000
[   91.696817][ T5207] syz.2.464: attempt to access beyond end of device
[   91.696817][ T5207] loop2: rw=2049, sector=201, nr_sectors = 8 limit=128
[   91.710321][ T5207] syz.2.464: attempt to access beyond end of device
[   91.710321][ T5207] loop2: rw=2049, sector=217, nr_sectors = 8 limit=128
[   91.724145][ T5207] syz.2.464: attempt to access beyond end of device
[   91.724145][ T5207] loop2: rw=2049, sector=233, nr_sectors = 8 limit=128
[   91.745126][ T5222] netlink: 12 bytes leftover after parsing attributes in process `syz.4.465'.
[   91.777752][ T5207] bio_check_eod: 352 callbacks suppressed
[   91.777780][ T5207] syz.2.464: attempt to access beyond end of device
[   91.777780][ T5207] loop2: rw=8388608, sector=145, nr_sectors = 8 limit=128
[   91.802748][ T5207] syz.2.464: attempt to access beyond end of device
[   91.802748][ T5207] loop2: rw=8388608, sector=145, nr_sectors = 8 limit=128
[   91.832863][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.918100][ T5228] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[   91.926320][ T5228] System zones: 0-2, 18-18, 34-34
[   91.938527][ T5228] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.471: bg 0: block 248: padding at end of block bitmap is not set
[   91.953077][ T5228] EXT4-fs error (device loop0): ext4_acquire_dquot:6986: comm syz.0.471: Failed to acquire dquot type 1
[   91.966076][ T5228] EXT4-fs (loop0): 1 truncate cleaned up
[   91.972452][ T5228] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   91.985235][ T5228] ext4 filesystem being mounted at /95/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   91.997846][ T5231] netlink: 12 bytes leftover after parsing attributes in process `syz.3.472'.
[   92.257486][ T5245] wg2: entered promiscuous mode
[   92.262507][ T5245] wg2: entered allmulticast mode
[   92.280605][ T5244] Alternate GPT is invalid, using primary GPT.
[   92.287036][ T5244]  loop2: p2 p3 p7
[   92.440778][ T5247] Zero length message leads to an empty skb
[   92.451757][ T3509] udevd[3509]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   92.489779][ T5252] netlink: 52 bytes leftover after parsing attributes in process `syz.1.481'.
[   92.510455][ T5252] set_capacity_and_notify: 4 callbacks suppressed
[   92.510474][ T5252] loop1: detected capacity change from 0 to 128
[   92.524033][ T5252] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   92.541713][ T5253] netlink: 'syz.2.479': attribute type 3 has an invalid length.
[   92.552319][ T5253] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   92.601541][ T5252] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   92.644238][ T5253] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   92.709885][ T5253] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   92.819084][ T5253] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   92.860706][ T5263] capability: warning: `syz.3.482' uses 32-bit capabilities (legacy support in use)
[   92.881735][   T31] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   92.908176][  T279] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   92.928630][  T279] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   92.937096][  T279] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   93.024291][ T5268] loop3: detected capacity change from 0 to 128
[   93.107788][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.112256][ T5268] syz.3.484: attempt to access beyond end of device
[   93.112256][ T5268] loop3: rw=2049, sector=145, nr_sectors = 16 limit=128
[   93.135534][ T5268] syz.3.484: attempt to access beyond end of device
[   93.135534][ T5268] loop3: rw=2049, sector=169, nr_sectors = 8 limit=128
[   93.149142][ T5268] syz.3.484: attempt to access beyond end of device
[   93.149142][ T5268] loop3: rw=2049, sector=185, nr_sectors = 8 limit=128
[   93.162866][ T5268] syz.3.484: attempt to access beyond end of device
[   93.162866][ T5268] loop3: rw=2049, sector=201, nr_sectors = 8 limit=128
[   93.201036][ T5271] loop0: detected capacity change from 0 to 512
[   93.220354][ T5271] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.485: bg 0: block 248: padding at end of block bitmap is not set
[   93.220772][ T5268] syz.3.484: attempt to access beyond end of device
[   93.220772][ T5268] loop3: rw=2049, sector=217, nr_sectors = 8 limit=128
[   93.250677][ T5271] EXT4-fs error (device loop0): ext4_acquire_dquot:6986: comm syz.0.485: Failed to acquire dquot type 1
[   93.262974][ T5271] EXT4-fs (loop0): 1 truncate cleaned up
[   93.270003][ T5271] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   93.282722][ T5271] ext4 filesystem being mounted at /96/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.351084][ T5268] syz.3.484: attempt to access beyond end of device
[   93.351084][ T5268] loop3: rw=2049, sector=233, nr_sectors = 8 limit=128
[   93.359279][ T5281] netlink: 664 bytes leftover after parsing attributes in process `syz.2.488'.
[   93.374349][ T1087] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   93.390623][ T5279] loop4: detected capacity change from 0 to 2048
[   93.434164][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.450178][ T5283] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=5283 comm=syz.1.490
[   93.462679][ T5283] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=5283 comm=syz.1.490
[   93.511142][ T3529] Alternate GPT is invalid, using primary GPT.
[   93.517921][ T3529]  loop4: p2 p3 p7
[   93.528530][ T5287] loop0: detected capacity change from 0 to 128
[   93.544174][ T5279] Alternate GPT is invalid, using primary GPT.
[   93.550640][ T5279]  loop4: p2 p3 p7
[   93.674902][ T3529] udevd[3529]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   93.675640][ T3527] udevd[3527]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[   93.691589][ T3509] udevd[3509]: inotify_add_watch(7, /dev/loop4p7, 10) failed: No such file or directory
[   93.763517][ T5294] netlink: 52 bytes leftover after parsing attributes in process `syz.4.493'.
[   93.839835][ T5303] loop2: detected capacity change from 0 to 2048
[   93.875028][ T3527] Alternate GPT is invalid, using primary GPT.
[   93.881548][ T3527]  loop2: p2 p3 p7
[   93.912123][ T5303] Alternate GPT is invalid, using primary GPT.
[   93.918139][  T122] kworker/u8:5: attempt to access beyond end of device
[   93.918139][  T122] loop0: rw=1, sector=145, nr_sectors = 8 limit=128
[   93.918576][ T5303]  loop2: p2 p3 p7
[   93.932660][  T122] kworker/u8:5: attempt to access beyond end of device
[   93.932660][  T122] loop0: rw=1, sector=161, nr_sectors = 8 limit=128
[   93.961207][ T3003] Alternate GPT is invalid, using primary GPT.
[   93.967572][ T3003]  loop2: p2 p3 p7
[   94.086093][ T5309] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x3
[   94.108884][ T3529] udevd[3529]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   94.111213][ T3527] udevd[3527]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[   94.120111][ T3509] udevd[3509]: inotify_add_watch(7, /dev/loop2p7, 10) failed: No such file or directory
[   94.280886][ T5316] loop0: detected capacity change from 0 to 512
[   94.355315][ T5319] loop1: detected capacity change from 0 to 512
[   94.388900][ T5316] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.501: bg 0: block 248: padding at end of block bitmap is not set
[   94.418389][ T5319] EXT4-fs (loop1): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   94.435877][ T3529] udevd[3529]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   94.446351][ T5322] loop2: detected capacity change from 0 to 2048
[   94.462086][ T5316] EXT4-fs error (device loop0): ext4_acquire_dquot:6986: comm syz.0.501: Failed to acquire dquot type 1
[   94.487941][ T5319] EXT4-fs error (device loop1): ext4_quota_enable:7173: comm syz.1.502: Bad quota inum: 2, type: 1
[   94.503937][ T5316] EXT4-fs (loop0): 1 truncate cleaned up
[   94.511913][ T5316] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   94.524869][ T5316] ext4 filesystem being mounted at /100/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.536390][ T5319] EXT4-fs warning (device loop1): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-117, ino=2). Please run e2fsck to fix.
[   94.554476][ T3509] Alternate GPT is invalid, using primary GPT.
[   94.560970][ T3509]  loop2: p2 p3 p7
[   94.583089][ T5332] loop3: detected capacity change from 0 to 128
[   94.594142][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.603360][ T5322] loop_reread_partitions: partition scan of loop2 () failed (rc=-16)
[   94.781820][ T3509] udevd[3509]: inotify_add_watch(7, /dev/loop2p7, 10) failed: No such file or directory
[   94.783940][ T3529] udevd[3529]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   94.799212][ T3527] udevd[3527]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[   94.980887][ T3314] EXT4-fs (loop1): unmounting filesystem 00800000-0000-0000-0000-000000000000.
[   95.056063][ T5342] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   95.077686][ T5335] ip6gre0: entered promiscuous mode
[   95.088043][ T5335] team0: Port device ip6gre0 added
[   95.141704][ T5342] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 0, start 22000003)
[   95.151876][ T5342] FAT-fs (loop1): Filesystem has been set read-only
[   95.273137][ T5348] EXT4-fs: Ignoring removed mblk_io_submit option
[   95.321318][ T5348] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   95.341743][ T5350] FAULT_INJECTION: forcing a failure.
[   95.341743][ T5350] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   95.355020][ T5350] CPU: 0 UID: 0 PID: 5350 Comm: syz.0.512 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   95.355131][ T5350] Tainted: [W]=WARN
[   95.355139][ T5350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   95.355152][ T5350] Call Trace:
[   95.355160][ T5350]  <TASK>
[   95.355170][ T5350]  __dump_stack+0x1d/0x30
[   95.355216][ T5350]  dump_stack_lvl+0x95/0xd0
[   95.355238][ T5350]  dump_stack+0x15/0x1b
[   95.355259][ T5350]  should_fail_ex+0x265/0x280
[   95.355284][ T5350]  should_fail+0xb/0x20
[   95.355305][ T5350]  should_fail_usercopy+0x1a/0x20
[   95.355408][ T5350]  _copy_from_user+0x1c/0xb0
[   95.355435][ T5350]  __sys_sendto+0x19e/0x330
[   95.355469][ T5350]  __x64_sys_sendto+0x76/0x90
[   95.355550][ T5350]  x64_sys_call+0x29a7/0x3000
[   95.355589][ T5350]  do_syscall_64+0xca/0x2b0
[   95.355623][ T5350]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.355648][ T5350] RIP: 0033:0x7f64a7baf749
[   95.355665][ T5350] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.355722][ T5350] RSP: 002b:00007f64a660f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[   95.355746][ T5350] RAX: ffffffffffffffda RBX: 00007f64a7e05fa0 RCX: 00007f64a7baf749
[   95.355761][ T5350] RDX: 0000000000000001 RSI: 0000200000006140 RDI: 0000000000000005
[   95.355773][ T5350] RBP: 00007f64a660f090 R08: 00002000000000c0 R09: 0000000000000014
[   95.355785][ T5350] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   95.355797][ T5350] R13: 00007f64a7e06038 R14: 00007f64a7e05fa0 R15: 00007fff177b1e28
[   95.355814][ T5350]  </TASK>
[   95.356100][ T5348] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   95.387011][ T5353] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=e840e018, mo2=0002]
[   95.388149][ T5348] EXT4-fs (loop1): orphan cleanup on readonly fs
[   95.429449][ T5353] System zones: 
[   95.478026][ T5348] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.511: Invalid block bitmap block 0 in block_group 0
[   95.485018][ T5353] 1-12
[   95.493516][ T5348] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.511: Invalid block bitmap block 0 in block_group 0
[   95.501140][ T5353] 
[   95.519306][ T5348] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.511: Invalid block bitmap block 0 in block_group 0
[   95.528559][ T5348] EXT4-fs error (device loop1): ext4_acquire_dquot:6986: comm syz.1.511: Failed to acquire dquot type 1
[   95.546770][ T5353] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.513: bg 0: block 288: padding at end of block bitmap is not set
[   95.626118][ T5353] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6689: Corrupt filesystem
[   95.635360][ T5348] EXT4-fs (loop1): 1 orphan inode deleted
[   95.642014][   T42] __quota_error: 397 callbacks suppressed
[   95.642032][   T42] Quota error (device loop1): do_check_range: Getting block 0 out of range 1-5
[   95.657922][   T42] EXT4-fs error (device loop1): ext4_release_dquot:7022: comm kworker/u8:2: Failed to release dquot type 1
[   95.668137][ T5353] EXT4-fs error (device loop3): ext4_clear_blocks:876: inode #13: comm syz.3.513: attempt to clear invalid blocks 1024 len 1
[   95.691780][   T29] audit: type=1326 audit(1767493364.814:13611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5358 comm="syz.2.515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f658495f749 code=0x7ffc0000
[   95.722406][ T5348] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   95.740278][   T29] audit: type=1326 audit(1767493364.834:13612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5358 comm="syz.2.515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f658495f749 code=0x7ffc0000
[   95.747568][ T5353] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.513: invalid indirect mapped block 1819239214 (level 0)
[   95.763970][   T29] audit: type=1326 audit(1767493364.834:13613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5358 comm="syz.2.515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=424 compat=0 ip=0x7f658495f749 code=0x7ffc0000
[   95.792034][ T5353] EXT4-fs (loop3): 1 truncate cleaned up
[   95.801648][   T29] audit: type=1326 audit(1767493364.834:13614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5358 comm="syz.2.515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f658495f749 code=0x7ffc0000
[   95.807689][ T5353] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   95.831082][   T29] audit: type=1326 audit(1767493364.834:13615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5358 comm="syz.2.515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f658495f749 code=0x7ffc0000
[   95.875273][ T5368] netlink: 52 bytes leftover after parsing attributes in process `syz.2.517'.
[   95.886028][ T5367] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   95.905729][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.920354][ T5367] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   95.931964][ T5368] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   95.962434][   T29] audit: type=1326 audit(1767493365.074:13616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5371 comm="syz.4.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe89ee8f749 code=0x7ffc0000
[   95.986032][   T29] audit: type=1326 audit(1767493365.074:13617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5371 comm="syz.4.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fe89ee8f749 code=0x7ffc0000
[   96.009313][   T29] audit: type=1326 audit(1767493365.074:13618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5371 comm="syz.4.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe89ee8f749 code=0x7ffc0000
[   96.033331][   T29] audit: type=1326 audit(1767493365.074:13619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5371 comm="syz.4.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7fe89ee8f749 code=0x7ffc0000
[   96.077250][ T5368] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   96.089800][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.117158][ T5378] netlink: 12 bytes leftover after parsing attributes in process `syz.4.520'.
[   96.139326][ T5375] SELinux:  Context system_u:object_r:netutils_exec_t:s0 is not valid (left unmapped).
[   96.175969][ T5375] EXT4-fs: Ignoring removed nobh option
[   96.181678][ T5375] EXT4-fs: Ignoring removed bh option
[   96.221127][ T5375] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   96.278884][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.387655][ T5389] EXT4-fs error (device loop3): ext4_xattr_inode_iget:446: comm syz.3.523: error while reading EA inode 32 err=-116
[   96.406129][ T5389] EXT4-fs (loop3): Remounting filesystem read-only
[   96.417745][ T5389] EXT4-fs warning (device loop3): ext4_evict_inode:256: couldn't mark inode dirty (err -30)
[   96.438708][ T5389] EXT4-fs (loop3): 1 orphan inode deleted
[   96.449424][ T5389] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   96.472397][ T5389] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.524166][ T5389] EXT4-fs: Ignoring removed orlov option
[   96.551916][ T5389] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   96.618304][ T5386] ==================================================================
[   96.626520][ T5386] BUG: KCSAN: data-race in file_write_and_wait_range / xas_set_mark
[   96.634704][ T5386] 
[   96.637230][ T5386] write to 0xffff88811a06b514 of 4 bytes by task 5368 on cpu 1:
[   96.644883][ T5386]  xas_set_mark+0x12b/0x140
[   96.649430][ T5386]  tag_pages_for_writeback+0xc2/0x290
[   96.654993][ T5386]  writeback_iter+0x340/0x820
[   96.659775][ T5386]  mpage_writepages+0x87/0x1250
[   96.664647][ T5386]  fat_writepages+0x24/0x30
[   96.669164][ T5386]  do_writepages+0x1c6/0x310
[   96.673774][ T5386]  file_write_and_wait_range+0x156/0x2c0
[   96.679411][ T5386]  __generic_file_fsync+0x46/0x160
[   96.684615][ T5386]  fat_file_fsync+0x49/0x100
[   96.689213][ T5386]  vfs_fsync_range+0x10d/0x130
[   96.694079][ T5386]  generic_file_write_iter+0x1b8/0x2f0
[   96.699543][ T5386]  iter_file_splice_write+0x66b/0xa20
[   96.704914][ T5386]  direct_splice_actor+0x156/0x2a0
[   96.710033][ T5386]  splice_direct_to_actor+0x312/0x680
[   96.715426][ T5386]  do_splice_direct+0xda/0x150
[   96.720213][ T5386]  do_sendfile+0x380/0x650
[   96.724646][ T5386]  __x64_sys_sendfile64+0x105/0x150
[   96.729939][ T5386]  x64_sys_call+0x2db1/0x3000
[   96.734623][ T5386]  do_syscall_64+0xca/0x2b0
[   96.739136][ T5386]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.745035][ T5386] 
[   96.747374][ T5386] read to 0xffff88811a06b514 of 4 bytes by task 5386 on cpu 0:
[   96.754917][ T5386]  file_write_and_wait_range+0x10e/0x2c0
[   96.760568][ T5386]  __generic_file_fsync+0x46/0x160
[   96.765777][ T5386]  fat_file_fsync+0x49/0x100
[   96.770371][ T5386]  vfs_fsync_range+0x10d/0x130
[   96.775141][ T5386]  generic_file_write_iter+0x1b8/0x2f0
[   96.780608][ T5386]  iter_file_splice_write+0x66b/0xa20
[   96.785985][ T5386]  direct_splice_actor+0x156/0x2a0
[   96.791184][ T5386]  splice_direct_to_actor+0x312/0x680
[   96.796570][ T5386]  do_splice_direct+0xda/0x150
[   96.801356][ T5386]  do_sendfile+0x380/0x650
[   96.805797][ T5386]  __x64_sys_sendfile64+0x105/0x150
[   96.811004][ T5386]  x64_sys_call+0x2db1/0x3000
[   96.815699][ T5386]  do_syscall_64+0xca/0x2b0
[   96.820218][ T5386]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.826298][ T5386] 
[   96.828624][ T5386] value changed: 0x02000021 -> 0x04000021
[   96.834344][ T5386] 
[   96.836665][ T5386] Reported by Kernel Concurrency Sanitizer on:
[   96.842827][ T5386] CPU: 0 UID: 0 PID: 5386 Comm: syz.2.517 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   96.854207][ T5386] Tainted: [W]=WARN
[   96.858013][ T5386] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   96.868159][ T5386] ==================================================================
[   96.879918][ T5396] forcing mempool usage for bio_alloc_bioset+0x449/0xa50
[   96.891628][ T5397] ext4: Bad value for 'max_dir_size_kb'
[   96.911669][ T5397] Driver unsupported XDP return value 0 on prog  (id 324) dev N/A, expect packet loss!
[   96.967129][   T42] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   97.029477][   T42] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   97.046181][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.