last executing test programs:

10.032925341s ago: executing program 2 (id=5424):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ffd, @void, @value}, 0x94)
r1 = getpid()
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ff6c850000006d000000850000000700000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r2}, 0x10)
r3 = socket$inet(0x2, 0x2, 0x1)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x14}, 0x4010)
sendmsg$inet(r3, &(0x7f0000000600)={&(0x7f0000000040)={0x2, 0xffff, @multicast2}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000500)='\b\x00', 0x2}, {&(0x7f0000000180)="2d0000008058", 0x6}], 0x2, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000007000000890b040a0101027f00000100000000001c000000000000000000000008"], 0x40}, 0x20000000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='f2fs_reserve_new_blocks\x00', r0, 0x0, 0x8d}, 0x18)
setreuid(0xee00, 0x0)
r4 = syz_pidfd_open(r1, 0x0)
setns(r4, 0x24020000)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00'}, 0x18)
lseek(0xffffffffffffffff, 0x7ff, 0x1)
getdents64(0xffffffffffffffff, 0x0, 0x10)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
syz_clone3(&(0x7f00000008c0)={0x15340180, 0x0, 0x0, 0x0, {0x3a}, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[r1], 0x1}, 0x58)

9.991604632s ago: executing program 2 (id=5426):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x43, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001880), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="a18300000000000000000500000008000300", @ANYRES32=0x0, @ANYBLOB="b5ea4955c4731d0f4bf2d30084b57963e96d807395f40ed30349dd442533fde9ec3b5e1bd692d0dd1da68329c9eb251f5578c42162a844b20c1d3970e7f3a0220035866ba565fb187a7bd9d9a68fc2c8179caade28001e090e32d70fa85d40f9feca1f1c66d836449a7611aa21d6b314941e28364cb24caf2c9369"], 0x1c}}, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r6}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0xfe, 0x7ffc0002}]})
iopl(0x2)
sendmsg$netlink(r0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r7}, 0x10)
pidfd_send_signal(0xffffffffffffffff, 0x2d, 0x0, 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r8}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000dc0)=ANY=[@ANYRESDEC, @ANYRES32, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r9 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$int_in(r9, 0x5452, &(0x7f0000000940)=0x2)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_NUMBER(r9, 0x84, 0x1c, &(0x7f0000000000), &(0x7f0000000040)=0x4)
sendmsg$NFT_BATCH(r9, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a91f300000000000000000500001406add90073797a300000000014000000000ae2c89d569cb44203ac807c47c5acbe83e3b9b96e34d13a54776d2a93f0239b62a3221feb897aeb6290aa8bcbb39583b13eef41da4f7f6c2ed99e58b2e3b368a93add66668a9d66ef059c00e3c0eed428560ec090b8c0f9cf52eb820507c5d665717f7d045c71c4ae363573c4ca0751b64aa9c79734be2a2cdcceca50c120e16ef96a61"], 0x48}, 0x1, 0x0, 0x0, 0x1}, 0x200000d0)

9.908761812s ago: executing program 2 (id=5427):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
socket$nl_sock_diag(0x10, 0x3, 0x4)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$igmp(0x2, 0x3, 0x2)
socket$inet6(0xa, 0x1, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="6c0000001000010400d201000072f60000020000", @ANYRES32=r0, @ANYBLOB="0524060000000000300012800b0001006272696467650000200002800c002e00fffff6ffffffffff050007001f"], 0x6c}, 0x1, 0x0, 0x0, 0x4040800}, 0x840)
syz_usb_connect(0x6, 0x1f4, &(0x7f0000000780)={{0x12, 0x1, 0x250, 0xb8, 0x0, 0x51, 0x8, 0x1410, 0xa007, 0x3e68, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1e2, 0x3, 0xe, 0x0, 0x30, 0x3, [{{0x9, 0x4, 0x3, 0x9, 0x2, 0x7f, 0x54, 0xcc, 0x0, [], [{{0x9, 0x5, 0x2, 0x4, 0x400, 0x4, 0x4, 0x3, [@generic={0x80, 0x1, "09661bede31b6d40ffd5a6457d3483a7c64a2cf09c6b30e3afe9caf13ed9a2924ed053d2b4b24aedb4035d4212c8a5f7df3b67916187c245f81035efe9b53a8d79988d4b00a8aa5926f8b9103fd0e543cebd14ca5d0825146c7ff12ef0b8fe612538542d6f5c9fdc7894374795b8ccb6bdb303b42aa86746d3370ad7a31c"}]}}, {{0x9, 0x5, 0x4, 0x10, 0x40, 0x5, 0x2, 0x9, [@uac_iso={0x7, 0x25, 0x1, 0x83, 0x2, 0x400}, @uac_iso={0x7, 0x25, 0x1, 0x81, 0x1, 0x7}]}}]}}, {{0x9, 0x4, 0x5b, 0x6, 0xc, 0x31, 0x71, 0x35, 0x6, [], [{{0x9, 0x5, 0x5, 0x10, 0x8, 0x6, 0x0, 0xd3, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x2}]}}, {{0x9, 0x5, 0x6, 0x10, 0x20, 0x80, 0xff, 0x4, [@uac_iso={0x7, 0x25, 0x1, 0x1, 0x6, 0x2}]}}, {{0x9, 0x5, 0x0, 0x10, 0x400, 0x9, 0x4, 0x1}}, {{0x9, 0x5, 0x4, 0x10, 0x40, 0xab, 0x0, 0x5}}, {{0x9, 0x5, 0x5, 0x2, 0x20, 0x6, 0xd, 0xd, [@generic={0x40, 0x66, "42bc0201de8fa807c3b757b1c182c0f4c59af7c59293e1bc41956912be0eafd96bdf03aa6117bc3e50fbee59a6e5dfc7206516e091fce94c0c778a134b53"}, @uac_iso={0x7, 0x25, 0x1, 0x80, 0x2, 0x1}]}}, {{0x9, 0x5, 0xb, 0x8, 0x400, 0x1, 0xa9, 0x5, [@uac_iso={0x7, 0x25, 0x1, 0x3, 0x32, 0xbf6}, @uac_iso={0x7, 0x25, 0x1, 0x2, 0x6, 0x15ac}]}}, {{0x9, 0x5, 0x2, 0x14, 0x0, 0xc7, 0x7, 0xe}}, {{0x9, 0x5, 0x1, 0x4, 0x200, 0x8, 0x5, 0x80}}, {{0x9, 0x5, 0x5, 0x10, 0x200, 0x8, 0x2, 0xae, [@uac_iso={0x7, 0x25, 0x1, 0x103, 0xfb, 0xff}]}}, {{0x9, 0x5, 0x0, 0x10, 0x40, 0x8, 0x0, 0x3}}, {{0x9, 0x5, 0xc, 0x4, 0x200, 0x3, 0xd, 0x7, [@generic={0x41, 0xf, "8c1ea652c620acd24cbf2bfeb921dfc3f2c147f7c05a53e4f7db6742a64c76fe8d2f319387c80165b1ad6b9054e93ae7385d785e1c040f2c4e5c2388ef8791"}]}}, {{0x9, 0x5, 0x9, 0x0, 0x20, 0x1, 0x8, 0x2, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x4, 0x6}]}}]}}, {{0x9, 0x4, 0xf5, 0x1, 0x0, 0xf, 0xd4, 0xdf, 0x3}}]}}]}}, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000940)=ANY=[@ANYBLOB="440000001300290a000000000000000007000000", @ANYRES32=r2, @ANYBLOB="00000000000000001c001a800800028008000200080000003e127a510800020010"], 0x44}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000500)=ANY=[], 0xa0}}, 0x0)
r3 = socket(0x10, 0x3, 0x0)
sendmmsg(r3, &(0x7f0000000000), 0x4000000000001f2, 0xfff0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
socket(0x200000000000011, 0x2, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=@newlink={0x20, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x74, 0x0, 0x0, 0x11203}}, 0x20}}, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000001080)={0x2, &(0x7f00000001c0)=[{0x5, 0x0, 0x2}, {0x6, 0x3, 0x0, 0xf00}]})

9.253156886s ago: executing program 2 (id=5445):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
rt_sigtimedwait(&(0x7f0000000000)={[0x5]}, 0x0, 0xffffffffffffffff, 0x8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='sched_switch\x00', r1}, 0x10)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, 0xffffffffffffffff, &(0x7f00000002c0)={0x90000019})
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=@newlink={0x2c, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x4000}, [@IFLA_XDP={0x4}, @IFLA_GROUP={0x8}]}, 0x2c}}, 0x0)

9.230860576s ago: executing program 2 (id=5446):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f0000000800)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x42}}, 0x10)
setsockopt$inet_udp_int(r1, 0x11, 0x67, &(0x7f0000000000)=0x507, 0x4)
sendmmsg$inet(r1, &(0x7f0000000600)=[{{&(0x7f0000000c00)={0x2, 0x4e20, @multicast2}, 0x10, 0x0}}], 0x1, 0x2000c044)
sendto$inet(r1, &(0x7f00000000c0)="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", 0xffe3, 0x0, 0x0, 0x0)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000080)=0xf3e, 0x62)
readv(r0, &(0x7f00000006c0)=[{&(0x7f0000000140)=""/228, 0xe4}], 0x1)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
pipe2$9p(0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000016000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
syz_clone3(&(0x7f0000001880)={0x100000200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
wait4(0x0, 0x0, 0x40000000, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r5, 0x40086602, &(0x7f00000001c0)=0x20)
ioctl$PTP_EXTTS_REQUEST2(r5, 0x40103d0b, &(0x7f0000000040)={0xff, 0xc})
ioctl$TUNATTACHFILTER(r5, 0x401054d5, &(0x7f0000000380)={0x7, &(0x7f0000000340)=[{0x2, 0xf9, 0x1d, 0xffffff62}, {0xa, 0x5, 0xdc, 0x3}, {0x7fff, 0x5, 0xf8, 0x2}, {0x2, 0xd, 0xfa, 0x8}, {0x10, 0xc, 0xb, 0x6}, {0x4, 0x4, 0x0, 0x6}, {0x1, 0xce, 0x8, 0xff}]})
r6 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, @perf_bp={0x0, 0x13}, 0x400, 0xffffffff, 0x6, 0x4, 0x0, 0xfffffffe, 0xfff9, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000001001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
setsockopt$inet_msfilter(r5, 0x0, 0x29, &(0x7f0000000080)=ANY=[@ANYBLOB="00010000ac1e000100000000060000007f000001ac1414bb64010102ffffffffe000000200000000"], 0x28)
ioctl$PERF_EVENT_IOC_SET_BPF(r6, 0x40042408, r7)
mknod$loop(0x0, 0x100000000000600d, 0x1)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000002c0)={@map=r2, 0x2f, 0x1, 0x9, &(0x7f0000000100)=[0x0], 0x1, 0x0, &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000240)=[0x0], &(0x7f0000000280)}, 0x40)

8.257328283s ago: executing program 2 (id=5457):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000001480)=@newsa={0x138, 0x10, 0x713, 0x0, 0x0, {{@in6=@rand_addr=' \x01\x00', @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x67}, {@in=@multicast2, 0x4d0, 0x32}, @in=@dev={0xac, 0x14, 0x14, 0x43}, {0xfffffffffffffffd}, {0x0, 0x200000000, 0x0, 0x100000}, {}, 0x70bd26, 0x0, 0x2, 0x4}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x20000011}, 0x0)
io_uring_setup(0x7d98, &(0x7f00000003c0)={0x0, 0xdf07, 0x2, 0x2})

1.481789169s ago: executing program 4 (id=5564):
r0 = perf_event_open(&(0x7f00000004c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0a000000020000000900000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x6337736afbab0ed3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000000)='kfree\x00', r2}, 0x18)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, r0, 0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)

1.37884241s ago: executing program 4 (id=5568):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r3}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

1.37128722s ago: executing program 1 (id=5570):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ffd, @void, @value}, 0x94)
r1 = getpid()
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ff6c850000006d000000850000000700000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r2}, 0x10)
r3 = socket$inet(0x2, 0x2, 0x1)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x14}, 0x4010)
sendmsg$inet(r3, &(0x7f0000000600)={&(0x7f0000000040)={0x2, 0xffff, @multicast2}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000500)='\b\x00', 0x2}, {&(0x7f0000000180)="2d0000008058", 0x6}], 0x2, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000007000000890b040a0101027f00000100000000001c000000000000000000000008"], 0x40}, 0x20000000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='f2fs_reserve_new_blocks\x00', r0, 0x0, 0x8d}, 0x18)
r4 = syz_pidfd_open(r1, 0x0)
setns(r4, 0x24020000)
syz_clone3(&(0x7f00000008c0)={0x15340180, 0x0, 0x0, 0x0, {0x3a}, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[r1], 0x1}, 0x58)

1.315375971s ago: executing program 1 (id=5573):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
rt_sigtimedwait(&(0x7f0000000000)={[0x5]}, 0x0, 0xffffffffffffffff, 0x8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='sched_switch\x00', r1}, 0x10)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, 0xffffffffffffffff, &(0x7f00000002c0)={0x90000019})
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x5, 0x4, 0x7fe4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=@newlink={0x24, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x4000}, [@IFLA_XDP={0x4}]}, 0x24}}, 0x0)

1.256928071s ago: executing program 1 (id=5574):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000700002c0000000000000004850000002a00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000480), r1)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="59bb22bd7000000020001100000008002b01"], 0x28}}, 0x0)

1.202834211s ago: executing program 1 (id=5575):
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000000c0)=ANY=[@ANYBLOB="4400000010000304040000000000000000fbf824", @ANYRES32=0x0, @ANYRES32=r3, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r3], 0x44}, 0x1, 0xba01}, 0x810)

1.163948152s ago: executing program 0 (id=5576):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x2, 0x12062, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x15bd}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

1.160760572s ago: executing program 4 (id=5577):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
socket$nl_sock_diag(0x10, 0x3, 0x4)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$igmp(0x2, 0x3, 0x2)
socket$inet6(0xa, 0x1, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="6c0000001000010400d201000072f60000020000", @ANYRES32=r0, @ANYBLOB="0524060000000000300012800b0001006272696467650000200002800c002e00fffff6ffffffffff050007001f"], 0x6c}, 0x1, 0x0, 0x0, 0x4040800}, 0x840)
syz_usb_connect(0x6, 0x1d9, &(0x7f0000000780)={{0x12, 0x1, 0x250, 0xb8, 0x0, 0x51, 0x8, 0x1410, 0xa007, 0x3e68, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1c7, 0x3, 0xe, 0x0, 0x30, 0x3, [{{0x9, 0x4, 0x3, 0x9, 0x2, 0x7f, 0x54, 0xcc, 0x0, [], [{{0x9, 0x5, 0x2, 0x4, 0x400, 0x4, 0x4, 0x3, [@generic={0x80, 0x1, "09661bede31b6d40ffd5a6457d3483a7c64a2cf09c6b30e3afe9caf13ed9a2924ed053d2b4b24aedb4035d4212c8a5f7df3b67916187c245f81035efe9b53a8d79988d4b00a8aa5926f8b9103fd0e543cebd14ca5d0825146c7ff12ef0b8fe612538542d6f5c9fdc7894374795b8ccb6bdb303b42aa86746d3370ad7a31c"}]}}, {{0x9, 0x5, 0x4, 0x10, 0x40, 0x5, 0x2, 0x9, [@uac_iso={0x7, 0x25, 0x1, 0x83, 0x2, 0x400}, @uac_iso={0x7, 0x25, 0x1, 0x81, 0x1, 0x7}]}}]}}, {{0x9, 0x4, 0x5b, 0x6, 0xc, 0x31, 0x71, 0x35, 0x6, [], [{{0x9, 0x5, 0x5, 0x10, 0x8, 0x6, 0x0, 0xd3, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x2}]}}, {{0x9, 0x5, 0x6, 0x10, 0x20, 0x80, 0xff, 0x4, [@uac_iso={0x7, 0x25, 0x1, 0x1, 0x6, 0x2}]}}, {{0x9, 0x5, 0x0, 0x10, 0x400, 0x9, 0x4, 0x1}}, {{0x9, 0x5, 0x4, 0x10, 0x40, 0xab, 0x0, 0x5}}, {{0x9, 0x5, 0x5, 0x2, 0x20, 0x6, 0xd, 0xd, [@generic={0x25, 0x66, "42bc0201de8fa807c3b757b1c182c0f4c59af7c59293e1bc41956912be0eafd96bdf03"}, @uac_iso={0x7, 0x25, 0x1, 0x80, 0x2, 0x1}]}}, {{0x9, 0x5, 0xb, 0x8, 0x400, 0x1, 0xa9, 0x5, [@uac_iso={0x7, 0x25, 0x1, 0x3, 0x32, 0xbf6}, @uac_iso={0x7, 0x25, 0x1, 0x2, 0x6, 0x15ac}]}}, {{0x9, 0x5, 0x2, 0x14, 0x0, 0xc7, 0x7, 0xe}}, {{0x9, 0x5, 0x1, 0x4, 0x200, 0x8, 0x5, 0x80}}, {{0x9, 0x5, 0x5, 0x10, 0x200, 0x8, 0x2, 0xae, [@uac_iso={0x7, 0x25, 0x1, 0x103, 0xfb, 0xff}]}}, {{0x9, 0x5, 0x0, 0x10, 0x40, 0x8, 0x0, 0x3}}, {{0x9, 0x5, 0xc, 0x4, 0x200, 0x3, 0xd, 0x7, [@generic={0x41, 0xf, "8c1ea652c620acd24cbf2bfeb921dfc3f2c147f7c05a53e4f7db6742a64c76fe8d2f319387c80165b1ad6b9054e93ae7385d785e1c040f2c4e5c2388ef8791"}]}}, {{0x9, 0x5, 0x9, 0x0, 0x20, 0x1, 0x8, 0x2, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x4, 0x6}]}}]}}, {{0x9, 0x4, 0xf5, 0x1, 0x0, 0xf, 0xd4, 0xdf, 0x3}}]}}]}}, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000940)=ANY=[@ANYBLOB="440000001300290a000000000000000007000000", @ANYRES32=r2, @ANYBLOB="00000000000000001c001a800800028008000200080000003e127a510800020010"], 0x44}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000500)=ANY=[], 0xa0}}, 0x0)
r3 = socket(0x10, 0x3, 0x0)
sendmmsg(r3, &(0x7f0000000000), 0x4000000000001f2, 0xfff0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
socket(0x200000000000011, 0x2, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=@newlink={0x20, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x74, 0x0, 0x0, 0x11203}}, 0x20}}, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000001080)={0x2, &(0x7f00000001c0)=[{0x5, 0x0, 0x2}, {0x6, 0x3, 0x0, 0xf00}]})

1.121877292s ago: executing program 1 (id=5578):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = fsopen(&(0x7f0000000080)='sysfs\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r1, 0x3, 0x0, 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r2 = getpid()
get_mempolicy(0x0, 0x0, 0x2, &(0x7f0000016000/0x3000)=nil, 0x7)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc)=<r4=>0x0)
unshare(0x6020400)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pipe(&(0x7f0000000340)={<r5=>0xffffffffffffffff})
vmsplice(r5, &(0x7f0000000200)=[{&(0x7f0000000080)="7cd1f233f595", 0x6}], 0x1, 0xc)
setreuid(0xee00, 0x0)
r6 = syz_pidfd_open(r2, 0x0)
setns(r6, 0x24020000)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRESDEC=r4, @ANYRES32=r7, @ANYRESDEC=r6], 0x0, 0xfffd, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0xfffffffffffffdac, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
sendmmsg$inet(r8, &(0x7f0000005b40)=[{{&(0x7f0000000000)={0x2, 0x4e20, @multicast2}, 0x10, &(0x7f00000001c0)=[{&(0x7f0000000040)="f37481d90eeaead391345b4da9d27e24c9c670da3afc5c00"/50, 0x32}, {&(0x7f0000000140)="ead5e96719a44591801f33", 0xb}, {&(0x7f0000000180)="f3f97053495b072215aee864193557c0dabdd253711d5ed9b131c5abd8796e5759ab1f639211e68e24bf4471b6ab1429b165c7248cded82bfb4a3f48e8d0", 0x3e}], 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="2c000000000000000000000007000000441c9301ffffffff0000000000000000000000000000000000000000000000001c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB='\x00'/12], 0x50}}, {{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000380)="c1ad061c5d914eadd95de7fb63eb7b0306d91c25f3fba6c97eda8ade2420dfe1fe0f5c7a01d724be33a44f1cd52028110d8f7dd4b3421a3fe4b2066d179f938ba15c3956e1aaad35035bcde7b90ed59ee2de06c8a4af3de95bda", 0x5a}], 0x1}}, {{0x0, 0x0, &(0x7f0000001780)=[{&(0x7f0000000480)="f41fa963edcd5e2a5d", 0x9}, {&(0x7f00000004c0)="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", 0x4c6}], 0x2}}, {{0x0, 0x0, &(0x7f0000004240)=[{&(0x7f0000003140)="01", 0x1}], 0x300}}], 0x4, 0xc080)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
kexec_load(0x0, 0x1, &(0x7f00000002c0)=[{0x0, 0x0, 0xff600000, 0x1000000}], 0x0)

1.120485252s ago: executing program 3 (id=5579):
r0 = perf_event_open(&(0x7f00000004c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0a000000020000000900000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x6337736afbab0ed3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000000)='kfree\x00', r2}, 0x18)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, r0, 0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)

1.035680562s ago: executing program 3 (id=5580):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r2}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

1.035092312s ago: executing program 0 (id=5581):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0b00000005000000010001000900000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000170000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000feffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000200)='kmem_cache_free\x00', r1}, 0x10)
epoll_create1(0x0)

980.348963ms ago: executing program 0 (id=5582):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
open_tree(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x80800)
r1 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000c80)={'lo\x00', <r5=>0x0})
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(r4, 0x8916, &(0x7f0000000000)={@loopback={0xfec0ffffffffffff}, 0x46, r5})
ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000140)={@private1={0xfc, 0x1, '\x00', 0x1}, 0x6a, r5})
write$binfmt_misc(r2, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f00000002c0)={r2, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "f4bd000000801900", [0x0, 0x2000000000001]}})
ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r2)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000180)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
munlockall()
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rss_stat\x00', r6}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) (async)
open_tree(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x80800) (async)
syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x0) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) (async)
socket$inet6_udp(0xa, 0x2, 0x0) (async)
socket$inet6_udp(0xa, 0x2, 0x0) (async)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000c80)={'lo\x00'}) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
ioctl$sock_inet6_SIOCSIFADDR(r4, 0x8916, &(0x7f0000000000)={@loopback={0xfec0ffffffffffff}, 0x46, r5}) (async)
ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000140)={@private1={0xfc, 0x1, '\x00', 0x1}, 0x6a, r5}) (async)
write$binfmt_misc(r2, &(0x7f0000000040), 0xe09) (async)
ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f00000002c0)={r2, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "f4bd000000801900", [0x0, 0x2000000000001]}}) (async)
ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r2) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000180)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
munlockall() (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rss_stat\x00', r6}, 0x10) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) (async)

979.801723ms ago: executing program 3 (id=5583):
bpf$MAP_CREATE(0x2000000000000060, &(0x7f0000000140)=@base={0x6, 0x4, 0x8000, 0x5c, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

919.790083ms ago: executing program 3 (id=5584):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x2}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', <r3=>0x0})
r4 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_INIT(r4, 0x29, 0xc8, 0x0, 0x0)
setsockopt$MRT6_ADD_MIF(r4, 0x29, 0xca, &(0x7f00000003c0)={0x0, 0x0, 0xb, r3, 0x3}, 0xc)
setsockopt$MRT6_DONE(r4, 0x29, 0xc9, 0x12, 0x100000000000000)

919.173313ms ago: executing program 3 (id=5585):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c3"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x86, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001240)={&(0x7f0000000200)='kfree\x00', r1, 0x0, 0xfffffffffffffffd}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)=ANY=[@ANYBLOB="8c000000", @ANYRES16=r3, @ANYBLOB="010000000000000000000c00000018000180140002006261746164765f736c6176655f310000600003805c"], 0x8c}}, 0x0)

909.492543ms ago: executing program 3 (id=5586):
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0x1, &(0x7f0000000500)=0xc, 0x4)
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r0}, 0x18)
syz_emit_ethernet(0x4e, &(0x7f00000002c0)={@local, @link_local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "922ff5", 0x18, 0x21, 0x0, @ipv4={'\x00', '\xff\xff', @broadcast}, @local, {[@hopopts={0x11}], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "114f84", 0x0, "8e269c"}}}}}}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x10, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="170100000000b2"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
prctl$PR_SET_IO_FLUSHER(0x39, 0x1)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f0000000140)=@gcm_128={{0x303}, "87ee8ac6c46dad33", "2607080d7f4fcf00fd4ef2dece6c7c58"}, 0x28)
setsockopt(0xffffffffffffffff, 0xff, 0xfffffffe, 0xfffffffffffffffe, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
r4 = signalfd4(0xffffffffffffffff, &(0x7f0000000040)={[0x7fffffffffffffff]}, 0x8, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
close(r2)
eventfd2(0x0, 0x0)
readv(r4, &(0x7f0000000340)=[{&(0x7f0000000280)=""/182, 0xb6}], 0x1)
clock_gettime(0x0, &(0x7f00000001c0)={<r5=>0x0, <r6=>0x0})
timerfd_settime(r4, 0x2, &(0x7f0000000380)={{r5, r6+10000000}}, &(0x7f00000003c0))
sendmsg$inet(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000240)="6e37cff5b582e082d58cb23de3c19dc4", 0x10}, {0x0}, {0x0}], 0x3}, 0x0)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x2, &(0x7f0000000680)=@gcm_128={{0x303}, "000037d7009400", "c0b6c5b29ca2b838d41ac2fc7ddf972d", "e9be1eae", "bb10000000000001"}, 0x28)
recvfrom$inet6(r2, &(0x7f0000000100)=""/19, 0xe, 0x40, 0x0, 0x0)
ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000340)={'netdevsim0\x00', &(0x7f0000000400)=@ethtool_flash={0x33, 0xea5, '.\x00'}})

594.097555ms ago: executing program 0 (id=5587):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="1b00000000000400000000000080000000000000f6a8b8fb9b34c7d123ede08708952f811c2b43bfea3a03e979b7b0889533c4e8f8d3c788379c8a1c9acc9125569b465cadfe0ded3e53058e277679111e1738a3351dafb9b80bfd785ee2a15574f4b1440d808204ff0864acc5da77e8f61181cb2a081f6c9db4330e43cd42d7f2373bc37af85f231931a00ab830f6d07f80a68ac3c93b8a885400c2e360f0e0d594622646e38f703d70405c9897fc63654b15a7ccc1039132c7725da990dd5f5260b2c0e57af5079afc22c651e6ebbe4a88da2f6c2b407e187864cff1000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r3}, 0x10)
r4 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000000)=ANY=[@ANYBLOB="380000000314010000000000000000000900020073797a2f000000000800410072786500140033007465616d5f73"], 0x38}}, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000000680)=@filter={'filter\x00', 0xe, 0x4, 0x2e0, 0xffffffff, 0x0, 0xf0, 0xf0, 0xffffffff, 0xffffffff, 0x248, 0x248, 0x248, 0xffffffff, 0x4, &(0x7f0000000040), {[{{@ip={@empty, @loopback, 0xffffff00, 0xff, 'pimreg1\x00', 'tunl0\x00', {0xff}, {0xff}, 0x2f, 0x0, 0x10}, 0x0, 0xc8, 0xf0, 0x0, {}, [@common=@ah={{0x30}, {[0x8d, 0x53]}}, @common=@ttl={{0x28}, {0x0, 0x8}}]}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x2}}}, {{@uncond, 0x0, 0x98, 0xc0, 0x0, {}, [@common=@ttl={{0x28}, {0x1, 0x81}}]}, @REJECT={0x28}}, {{@ip={@empty, @local, 0x0, 0x0, 'pimreg0\x00', 'vcan0\x00', {0xff}, {0xff}, 0xff, 0x2, 0x20}, 0x0, 0x70, 0x98}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x3}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x340)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000230000001811", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
pipe2(&(0x7f00000017c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x0)
flistxattr(r7, 0x0, 0x0)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000640)='./file0\x00')
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x4)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r9 = socket(0x400000000010, 0x3, 0x0)
r10 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r11=>0x0})
sendmsg$nl_route_sched(r9, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r11, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000005f80)=@newtfilter={0x90, 0x2c, 0xd27, 0x70bd25, 0x12, {0x0, 0x0, 0x0, r11, {0x0, 0x1}, {}, {0x8}}, [@filter_kind_options=@f_flow={{0x9}, {0x58, 0x2, [@TCA_FLOW_ACT={0x54, 0x9, 0x0, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x1, 0x0, 0x20000001, 0x4, 0x2}, 0x1, r11}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}}, @TCA_RATE={0x6, 0x5, {0xff, 0x80}}]}, 0x90}}, 0x0)
acct(&(0x7f00000001c0)='./file0\x00')

534.554616ms ago: executing program 4 (id=5588):
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000000c0)=ANY=[@ANYBLOB="4400000010000304040000000000000000fbf824", @ANYRES32=0x0, @ANYRES32=r3, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r3], 0x44}, 0x1, 0xba01}, 0x810)

506.237626ms ago: executing program 4 (id=5589):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), 0x0, 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1, 0x0, 0x2}, 0x18)
r2 = gettid()
rt_sigtimedwait(&(0x7f0000000080)={[0x3ff]}, 0x0, 0x0, 0x8)
tkill(r2, 0x7)

395.481117ms ago: executing program 4 (id=5590):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x25, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
socket$packet(0x11, 0xa, 0x300)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="219a53f271a76d2608004c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_MCE_KILL(0x35, 0x1, 0x2)
r2 = socket(0x40000000015, 0x5, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0xfffffffd, @loopback}, 0x1c)
sendto$inet6(r2, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @dev, 0xfffffffc}, 0x1c)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000004000000040000002200000094000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000020000001000"/28], 0x48)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x25, &(0x7f0000000040)=0x61d2, 0x4)
connect$inet(r3, &(0x7f0000000c80)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r3, &(0x7f0000000280)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
r4 = socket$inet_icmp(0x2, 0x2, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r4, 0x0, 0x80, &(0x7f0000000100)=@nat={'nat\x00', 0x19, 0x0, 0x90, [0x400000000040, 0x0, 0x0, 0x400000000070, 0x4000000000a0], 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff00000000"]}, 0xfa)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x3, &(0x7f0000000000)={[{@nogrpid}, {@noload}, {@noload}]}, 0x1, 0x634, &(0x7f0000000740)="$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")
r5 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000001c0)={'bridge0\x00'})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
unshare(0x20000600)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000b00)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x7}, 0x18)
sendmsg$TIPC_NL_KEY_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16, @ANYBLOB="0100000000000000000003000000400001802c0004001400010002000000ac14140f00000000000000001400020002000000ffffffff00000000000000000d0001007564703a73"], 0x54}}, 0x0)

389.764127ms ago: executing program 0 (id=5591):
r0 = perf_event_open(&(0x7f00000004c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0a000000020000000900000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x6337736afbab0ed3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000000)='kfree\x00', r2}, 0x18)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x1451a, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffff7, 0x70e0}, 0x124061, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, r0, 0x3)
bpf$MAP_CREATE(0x0, 0x0, 0x48)

237.329748ms ago: executing program 1 (id=5592):
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a50000000060a09040000000000000000020000000900020073797a32000000000900010073797a30000000002400048020000180080001006e617400140002800800034000000017080001400000070014"], 0x78}}, 0x0)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000040)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=<r2=>0xffffffffffffffff, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r3, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x3, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000008000c9080000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000020000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
r6 = socket$netlink(0x10, 0x3, 0xf)
r7 = socket$netlink(0x10, 0x3, 0xf)
ioctl$RTC_PLL_SET(0xffffffffffffffff, 0x40207012, &(0x7f0000000380)={0x6c, 0xfffff2b5, 0x6, 0x101, 0xa813, 0x5, 0x8})
bind$netlink(r7, &(0x7f0000000a40)={0x10, 0x0, 0x25dfdbfb, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r7, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r7, 0x10e, 0x4, &(0x7f00000003c0)=0x6, 0xdc)
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000006c0)=ANY=[@ANYBLOB="4800000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800900010076657468"], 0x48}}, 0x44008)
sendmsg$IPCTNL_MSG_TIMEOUT_GET(r6, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="14000000010801"], 0x14}}, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r9}, 0x10)
r10 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendmsg$inet(r10, &(0x7f0000000780)={&(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10, &(0x7f00000001c0)=[{&(0x7f0000000140)="be38", 0xffe7}], 0x1, &(0x7f00000004c0)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac1414aaac141400000000001400000000000000000000000700000007038b01000000005e15f32aa9988e60da6af674011b2a455370163705ff6db8fe99e02d5c23fecd3922873c70484cf959be1be72e9341a96fb1aa0c825d8aa4d9b88e8108d7b4073aacafd32f94591c94ddb8ac0acc3aac8ac1960818c53bc0bca554f571a2a134f78b7d55c61c500139014cf38980f0ed12e5f086073d98727cfeb96c1caed1a11815ddb48dd3a6c091fb"], 0x38}, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000280)={[{@i_version}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@auto_da_alloc}, {@errors_remount}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV")
setxattr$security_ima(&(0x7f0000000100)='./file1\x00', &(0x7f0000000140), &(0x7f0000000380)=ANY=[], 0x700, 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000000)='./file1\x00', &(0x7f0000000280), &(0x7f000000a440)=ANY=[], 0x90f, 0x0)
unlink(&(0x7f0000000400)='./file1\x00')

0s ago: executing program 0 (id=5593):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[], 0x50)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000080000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xb, &(0x7f0000000c00)=ANY=[@ANYBLOB="18000000000000000000000023ed0000180100002820702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='map_files\x00')
getdents64(r3, &(0x7f0000002f40)=""/4098, 0x1002)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff)
syz_emit_ethernet(0x3a, &(0x7f0000000080)={@local, @local, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x5, 0x0, @dev, @private=0xa010100, {[@ssrr={0x89, 0x3, 0xce}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0x5}}}}}}, 0x0)
sendmsg$802154_raw(0xffffffffffffffff, 0x0, 0x20040814)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f0000000080)='./file0\x00', 0x1018000, &(0x7f0000000200)=ANY=[@ANYRES8=0x0, @ANYRESOCT=0x0, @ANYRES16=r0, @ANYRESDEC, @ANYRES32, @ANYRES8=r0], 0x1, 0x2ff, &(0x7f0000000680)="$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")
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpu.stat\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0)
fdatasync(r4)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x4c, &(0x7f0000000000), 0x4)

kernel console output (not intermixed with test programs):

48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  316.009819][T16720] RSP: 002b:00007fc8eee37038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  316.009838][T16720] RAX: ffffffffffffffda RBX: 00007fc8f09e5fa0 RCX: 00007fc8f07cd169
[  316.009850][T16720] RDX: 0000400000000200 RSI: 000000002a2a1d48 RDI: 000000000000001d
[  316.009862][T16720] RBP: 00007fc8eee37090 R08: 0000000000000000 R09: 0000000000000000
[  316.009874][T16720] R10: 0000400000000080 R11: 0000000000000246 R12: 0000000000000001
[  316.009886][T16720] R13: 0000000000000000 R14: 00007fc8f09e5fa0 R15: 00007ffe7d84c538
[  316.009904][T16720]  </TASK>
[  316.016585][T16712] EXT4-fs (loop0): Cannot turn on quotas: error -117
[  316.247407][T16726] loop3: detected capacity change from 0 to 2048
[  316.255115][T16712] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.5014: bg 0: block 40: padding at end of block bitmap is not set
[  316.270267][T16712] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  316.290890][T16712] EXT4-fs (loop0): 1 truncate cleaned up
[  316.298334][T16726] ext4 filesystem being mounted at /425/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  316.328260][T16732] sg_write: data in/out 122/14 bytes for SCSI command 0x0-- guessing data in;
[  316.328260][T16732]    program syz.2.5021 not setting count and/or reply_len properly
[  316.360889][T16734] loop4: detected capacity change from 0 to 256
[  316.389874][T16738] lo: entered allmulticast mode
[  316.408235][T16734] FAT-fs (loop4): Directory bread(block 64) failed
[  316.418663][T16738] lo: left allmulticast mode
[  316.428414][T16734] FAT-fs (loop4): Directory bread(block 65) failed
[  316.443746][T16712] pim6reg0: tun_chr_ioctl cmd 1074025673
[  316.464477][T16734] FAT-fs (loop4): Directory bread(block 66) failed
[  316.481483][T16741] loop2: detected capacity change from 0 to 1024
[  316.487997][T16734] FAT-fs (loop4): Directory bread(block 67) failed
[  316.494892][T16741] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  316.505937][T16741] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869)
[  316.507278][T16734] FAT-fs (loop4): Directory bread(block 68) failed
[  316.530344][T16743] loop1: detected capacity change from 0 to 1024
[  316.532430][T16741] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  316.547595][T16734] FAT-fs (loop4): Directory bread(block 69) failed
[  316.554438][T16734] FAT-fs (loop4): Directory bread(block 70) failed
[  316.576984][T16734] FAT-fs (loop4): Directory bread(block 71) failed
[  316.593814][T16734] FAT-fs (loop4): Directory bread(block 72) failed
[  316.600572][T16734] FAT-fs (loop4): Directory bread(block 73) failed
[  316.611189][T16734] FAULT_INJECTION: forcing a failure.
[  316.611189][T16734] name failslab, interval 1, probability 0, space 0, times 0
[  316.623641][T16741] EXT4-fs (loop2): invalid journal inode
[  316.623939][T16734] CPU: 0 UID: 0 PID: 16734 Comm: syz.4.5023 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  316.623974][T16734] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  316.624007][T16734] Call Trace:
[  316.624017][T16734]  <TASK>
[  316.624036][T16734]  dump_stack_lvl+0xf2/0x150
[  316.624074][T16734]  dump_stack+0x15/0x1a
[  316.624103][T16734]  should_fail_ex+0x24a/0x260
[  316.624272][T16734]  should_failslab+0x8f/0xb0
[  316.624362][T16734]  kmem_cache_alloc_noprof+0x52/0x320
[  316.624414][T16734]  ? alloc_empty_file+0xd0/0x200
[  316.624441][T16734]  ? _raw_spin_unlock+0x26/0x50
[  316.624500][T16734]  alloc_empty_file+0xd0/0x200
[  316.624527][T16734]  alloc_file_pseudo+0xc9/0x160
[  316.624558][T16734]  anon_inode_getfd+0xc2/0x170
[  316.624586][T16734]  __se_sys_fspick+0x1f0/0x260
[  316.624682][T16734]  __x64_sys_fspick+0x43/0x50
[  316.624765][T16734]  x64_sys_call+0x2806/0x2dc0
[  316.624799][T16734]  do_syscall_64+0xc9/0x1c0
[  316.624841][T16734]  ? clear_bhb_loop+0x55/0xb0
[  316.624877][T16734]  ? clear_bhb_loop+0x55/0xb0
[  316.624958][T16734]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  316.624993][T16734] RIP: 0033:0x7f14d0a6d169
[  316.625013][T16734] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  316.625065][T16734] RSP: 002b:00007f14cf0d1038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b1
[  316.625095][T16734] RAX: ffffffffffffffda RBX: 00007f14d0c85fa0 RCX: 00007f14d0a6d169
[  316.625111][T16734] RDX: 0000000000000000 RSI: 0000400000000000 RDI: ffffffffffffff9c
[  316.625127][T16734] RBP: 00007f14cf0d1090 R08: 0000000000000000 R09: 0000000000000000
[  316.625142][T16734] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  316.625158][T16734] R13: 0000000000000000 R14: 00007f14d0c85fa0 R15: 00007fffc46e4378
[  316.625192][T16734]  </TASK>
[  316.769356][T16743] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, 
[  316.772412][T16741] EXT4-fs (loop2): can't get journal size
[  316.780350][T16743] block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  316.790939][T16741] EXT4-fs error (device loop2): ext4_protect_reserved_inode:182: inode #3: comm syz.2.5025: blocks 2-2 from inode overlap system zone
[  316.800061][T16743] EXT4-fs (loop1): Delayed block allocation failed for inode 16 at logical offset 51 with max blocks 1 with error 28
[  316.804767][T16741] EXT4-fs (loop2): failed to initialize system zone (-117)
[  316.812462][T16743] EXT4-fs (loop1): This should not happen!! Data will be lost
[  316.812462][T16743] 
[  316.812483][T16743] EXT4-fs (loop1): Total free blocks count 0
[  316.816578][T16741] EXT4-fs (loop2): mount failed
[  316.823794][T16743] EXT4-fs (loop1): Free/Dirty block details
[  316.898640][T16743] EXT4-fs (loop1): free_blocks=68451041280
[  316.904501][T16743] EXT4-fs (loop1): dirty_blocks=16
[  316.909767][T16743] EXT4-fs (loop1): Block reservation details
[  316.915803][T16743] EXT4-fs (loop1): i_reserved_data_blocks=1
[  316.937041][T16751] EXT4-fs (loop1): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 36 with error 28
[  316.937405][ T3847] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm kworker/u8:10: bg 0: block 345: padding at end of block bitmap is not set
[  316.949609][T16751] EXT4-fs (loop1): This should not happen!! Data will be lost
[  316.949609][T16751] 
[  316.975170][ T3847] EXT4-fs (loop3): Remounting filesystem read-only
[  316.992134][ T3849] EXT4-fs warning (device loop3): ext4_convert_unwritten_extents:4883: inode #15: block 9: len 7: ext4_ext_map_blocks returned -5
[  317.114602][T16762] 9pnet_fd: Insufficient options for proto=fd
[  317.122172][T16759] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5031'.
[  317.131343][T16759] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5031'.
[  317.131456][T16764] loop2: detected capacity change from 0 to 128
[  317.148939][T16765] loop4: detected capacity change from 0 to 1024
[  317.156145][T16765] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  317.166042][T16765] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (2136!=20869)
[  317.177829][T16765] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  317.197266][T16765] EXT4-fs error (device loop4): ext4_get_journal_inode:5798: comm syz.4.5030: inode #1: comm syz.4.5030: iget: illegal inode #
[  317.211391][T16765] EXT4-fs (loop4): no journal found
[  317.216627][T16765] EXT4-fs (loop4): can't get journal size
[  317.222557][T16766] loop1: detected capacity change from 0 to 2048
[  317.253133][T16765] EXT4-fs (loop4): failed to initialize system zone (-117)
[  317.260745][T16765] EXT4-fs (loop4): mount failed
[  317.336702][T16766] ext4 filesystem being mounted at /450/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  317.373582][T16777] ipvlan0: entered promiscuous mode
[  317.378947][T16777] ipvlan0: entered allmulticast mode
[  317.384930][T16777] bridge0: port 3(ipvlan0) entered blocking state
[  317.391498][T16777] bridge0: port 3(ipvlan0) entered disabled state
[  317.531593][T16781] netlink: 24 bytes leftover after parsing attributes in process `syz.3.5037'.
[  317.575478][T16781] loop3: detected capacity change from 0 to 512
[  317.600565][T16781] EXT4-fs: Ignoring removed i_version option
[  317.621218][T16781] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  317.669250][T16781] EXT4-fs (loop3): 1 truncate cleaned up
[  317.829229][T16652] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 345: padding at end of block bitmap is not set
[  317.844134][T16793] loop3: detected capacity change from 0 to 512
[  317.851870][T16652] EXT4-fs (loop1): Remounting filesystem read-only
[  317.919714][T16793] ext4 filesystem being mounted at /433/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  318.157103][T16813] lo: entered allmulticast mode
[  318.161550][T16814] loop3: detected capacity change from 0 to 512
[  318.162187][T16813] lo: left allmulticast mode
[  318.171204][T16814] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  318.199637][T16814] EXT4-fs (loop3): 1 truncate cleaned up
[  318.227827][T16819] loop1: detected capacity change from 0 to 1024
[  318.240118][T16819] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  318.249975][T16819] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  318.260956][T16819] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  318.273342][T16819] EXT4-fs error (device loop1): ext4_get_journal_inode:5798: inode #5: comm syz.1.5051: unexpected bad inode w/o EXT4_IGET_BAD
[  318.300782][T16819] EXT4-fs (loop1): no journal found
[  318.306088][T16819] EXT4-fs (loop1): can't get journal size
[  318.318453][T16825] FAULT_INJECTION: forcing a failure.
[  318.318453][T16825] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  318.331722][T16825] CPU: 1 UID: 0 PID: 16825 Comm: syz.0.5053 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  318.331748][T16825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  318.331780][T16825] Call Trace:
[  318.331845][T16825]  <TASK>
[  318.331854][T16825]  dump_stack_lvl+0xf2/0x150
[  318.331882][T16825]  dump_stack+0x15/0x1a
[  318.331905][T16825]  should_fail_ex+0x24a/0x260
[  318.331990][T16825]  should_fail+0xb/0x10
[  318.332026][T16825]  should_fail_usercopy+0x1a/0x20
[  318.332073][T16825]  _copy_from_iter+0xd5/0xd00
[  318.332112][T16825]  ? __alloc_skb+0x1b5/0x310
[  318.332138][T16825]  ? kmalloc_reserve+0x16e/0x190
[  318.332256][T16825]  ? __build_skb_around+0x196/0x1f0
[  318.332286][T16825]  ? __alloc_skb+0x21f/0x310
[  318.332311][T16825]  ? __virt_addr_valid+0x1ed/0x250
[  318.332396][T16825]  ? __check_object_size+0x364/0x520
[  318.332445][T16825]  netlink_sendmsg+0x460/0x6e0
[  318.332493][T16825]  ? __pfx_netlink_sendmsg+0x10/0x10
[  318.332556][T16825]  __sock_sendmsg+0x140/0x180
[  318.332599][T16825]  ____sys_sendmsg+0x326/0x4b0
[  318.332635][T16825]  __sys_sendmsg+0x19d/0x230
[  318.332744][T16825]  __x64_sys_sendmsg+0x46/0x50
[  318.332777][T16825]  x64_sys_call+0x2734/0x2dc0
[  318.332809][T16825]  do_syscall_64+0xc9/0x1c0
[  318.332849][T16825]  ? clear_bhb_loop+0x55/0xb0
[  318.332932][T16825]  ? clear_bhb_loop+0x55/0xb0
[  318.333098][T16825]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  318.333132][T16825] RIP: 0033:0x7f93a8bfd169
[  318.333151][T16825] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  318.333173][T16825] RSP: 002b:00007f93a7267038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  318.333196][T16825] RAX: ffffffffffffffda RBX: 00007f93a8e15fa0 RCX: 00007f93a8bfd169
[  318.333210][T16825] RDX: 0000000000000000 RSI: 00004000000037c0 RDI: 0000000000000003
[  318.333222][T16825] RBP: 00007f93a7267090 R08: 0000000000000000 R09: 0000000000000000
[  318.333257][T16825] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  318.333272][T16825] R13: 0000000000000000 R14: 00007f93a8e15fa0 R15: 00007fff1fb64fa8
[  318.333295][T16825]  </TASK>
[  318.613359][T16839] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  318.616513][T16840] loop2: detected capacity change from 0 to 512
[  318.628684][T16839] x_tables: duplicate underflow at hook 2
[  318.629099][T16838] netlink: 24 bytes leftover after parsing attributes in process `syz.4.5058'.
[  318.653409][T16840] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  318.666630][T16840] EXT4-fs (loop2): orphan cleanup on readonly fs
[  318.673194][T16838] loop4: detected capacity change from 0 to 512
[  318.674246][T16840] EXT4-fs warning (device loop2): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  318.680970][T16838] EXT4-fs: Ignoring removed i_version option
[  318.694952][T16840] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  318.708423][T16840] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.5057: bg 0: block 40: padding at end of block bitmap is not set
[  318.723966][T16840] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  318.733514][T16840] EXT4-fs (loop2): 1 truncate cleaned up
[  318.745520][T16838] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  318.758320][T16840] EXT4-fs mount: 58 callbacks suppressed
[  318.758341][T16840] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  318.779239][T16840] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  318.780827][T16838] EXT4-fs (loop4): 1 truncate cleaned up
[  318.791341][T16851] lo: entered allmulticast mode
[  318.795976][T16838] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  318.820537][T16851] lo: left allmulticast mode
[  318.849432][T11628] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  318.873932][T16857] loop3: detected capacity change from 0 to 512
[  318.893961][T16857] EXT4-fs: Ignoring removed mblk_io_submit option
[  318.910004][T16840] pim6reg0: tun_chr_ioctl cmd 1074025673
[  318.916839][T16857] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  319.035726][T16869] loop2: detected capacity change from 0 to 128
[  319.061900][T16871] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  319.070210][T16871] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  319.536217][T16884] loop2: detected capacity change from 0 to 512
[  319.617912][T16884] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  319.633252][T16884] EXT4-fs (loop2): orphan cleanup on readonly fs
[  319.648964][T16884] EXT4-fs warning (device loop2): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  319.690567][T16884] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  319.713222][T16890] __nla_validate_parse: 2 callbacks suppressed
[  319.713242][T16890] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5073'.
[  319.740650][T16884] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.5071: bg 0: block 40: padding at end of block bitmap is not set
[  319.760535][T16890] loop1: detected capacity change from 0 to 512
[  319.767261][T16890] EXT4-fs: Ignoring removed i_version option
[  319.789745][T16890] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  319.800174][T16884] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  319.816133][T16890] EXT4-fs (loop1): 1 truncate cleaned up
[  319.822398][T16884] EXT4-fs (loop2): 1 truncate cleaned up
[  319.824038][T16890] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  319.830714][T16895] netlink: 24 bytes leftover after parsing attributes in process `syz.0.5075'.
[  319.850689][T16884] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  319.863736][T16884] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  319.897899][T16899] loop0: detected capacity change from 0 to 512
[  319.904532][T16899] EXT4-fs: Ignoring removed i_version option
[  319.911408][T16899] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  319.928979][T11082] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  319.948207][T16884] pim6reg0: tun_chr_ioctl cmd 1074025673
[  319.955432][T10760] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  319.971203][T16899] EXT4-fs (loop0): 1 truncate cleaned up
[  319.979122][T16899] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  320.000097][T16907] lo: entered allmulticast mode
[  320.005182][T16907] lo: left allmulticast mode
[  320.040830][T16912] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5080'.
[  320.049898][T16912] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5080'.
[  320.060256][T16909] loop4: detected capacity change from 0 to 1024
[  320.066949][   T30] kauditd_printk_skb: 138 callbacks suppressed
[  320.066967][   T30] audit: type=1326 audit(1741825743.350:26427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16908 comm="syz.1.5080" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc8f07cd169 code=0x0
[  320.099140][T16909] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  320.109115][T16909] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (2136!=20869)
[  320.136409][T16909] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  320.150945][T16909] EXT4-fs error (device loop4): ext4_get_journal_inode:5798: comm syz.4.5079: inode #1: comm syz.4.5079: iget: illegal inode #
[  320.157898][T11312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  320.164434][   T30] audit: type=1326 audit(1741825743.440:26428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16915 comm="syz.3.5083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea85bbd169 code=0x7ffc0000
[  320.196982][   T30] audit: type=1326 audit(1741825743.440:26429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16915 comm="syz.3.5083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea85bbd169 code=0x7ffc0000
[  320.207795][T16909] EXT4-fs (loop4): no journal found
[  320.220579][   T30] audit: type=1326 audit(1741825743.440:26430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16915 comm="syz.3.5083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fea85bbd169 code=0x7ffc0000
[  320.225890][T16909] EXT4-fs (loop4): can't get journal size
[  320.249483][   T30] audit: type=1326 audit(1741825743.440:26431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16915 comm="syz.3.5083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea85bbd169 code=0x7ffc0000
[  320.279520][   T30] audit: type=1326 audit(1741825743.440:26432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16915 comm="syz.3.5083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fea85bbd169 code=0x7ffc0000
[  320.296773][T16909] EXT4-fs (loop4): failed to initialize system zone (-117)
[  320.303205][   T30] audit: type=1326 audit(1741825743.440:26433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16915 comm="syz.3.5083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea85bbd169 code=0x7ffc0000
[  320.311614][T16909] EXT4-fs (loop4): mount failed
[  320.333896][   T30] audit: type=1326 audit(1741825743.440:26434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16915 comm="syz.3.5083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7fea85bbd169 code=0x7ffc0000
[  320.333929][   T30] audit: type=1326 audit(1741825743.440:26435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16915 comm="syz.3.5083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea85bbd169 code=0x7ffc0000
[  320.387124][   T30] audit: type=1326 audit(1741825743.440:26436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16915 comm="syz.3.5083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=76 compat=0 ip=0x7fea85bbd169 code=0x7ffc0000
[  320.514530][T16935] netlink: 'syz.2.5081': attribute type 21 has an invalid length.
[  320.532236][T16928] loop4: detected capacity change from 0 to 512
[  320.571168][T16939] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  320.589269][T16939] x_tables: duplicate underflow at hook 2
[  320.608876][T16928] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5087: bg 0: block 248: padding at end of block bitmap is not set
[  320.788490][T16928] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm syz.4.5087: Failed to acquire dquot type 1
[  320.801002][T16928] EXT4-fs (loop4): 1 truncate cleaned up
[  320.819703][T16928] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  320.857077][T16928] ext4 filesystem being mounted at /349/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  320.969176][T16949] loop1: detected capacity change from 0 to 512
[  321.022996][T16949] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  321.023638][T11628] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.040247][T16949] EXT4-fs (loop1): orphan cleanup on readonly fs
[  321.047221][ T3847] EXT4-fs error (device loop4): ext4_release_dquot:6950: comm kworker/u8:10: Failed to release dquot type 1
[  321.066837][T16949] EXT4-fs warning (device loop1): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  321.107013][T16949] EXT4-fs (loop1): Cannot turn on quotas: error -117
[  321.137233][T16949] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.5092: bg 0: block 40: padding at end of block bitmap is not set
[  321.182348][T16949] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  321.218251][T16949] EXT4-fs (loop1): 1 truncate cleaned up
[  321.230988][T16949] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  321.277294][T16949] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.301691][T16960] loop3: detected capacity change from 0 to 128
[  321.354639][T16960] bio_check_eod: 33291 callbacks suppressed
[  321.354661][T16960] syz.3.5096: attempt to access beyond end of device
[  321.354661][T16960] loop3: rw=2049, sector=145, nr_sectors = 896 limit=128
[  321.375857][T16949] pim6reg0: tun_chr_ioctl cmd 1074025673
[  321.395962][T16960] syz.3.5096: attempt to access beyond end of device
[  321.395962][T16960] loop3: rw=524288, sector=145, nr_sectors = 224 limit=128
[  321.410079][T16960] syz.3.5096: attempt to access beyond end of device
[  321.410079][T16960] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  321.423444][T16960] syz.3.5096: attempt to access beyond end of device
[  321.423444][T16960] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  321.437767][T16960] syz.3.5096: attempt to access beyond end of device
[  321.437767][T16960] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  321.452065][T16960] syz.3.5096: attempt to access beyond end of device
[  321.452065][T16960] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  321.470139][T16960] syz.3.5096: attempt to access beyond end of device
[  321.470139][T16960] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  321.490190][T16960] syz.3.5096: attempt to access beyond end of device
[  321.490190][T16960] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  321.509166][T16981] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  321.516419][T16981] x_tables: duplicate underflow at hook 2
[  321.516572][T16980] loop0: detected capacity change from 0 to 512
[  321.529147][T16960] syz.3.5096: attempt to access beyond end of device
[  321.529147][T16960] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  321.534824][T16980] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  321.543572][T16960] syz.3.5096: attempt to access beyond end of device
[  321.543572][T16960] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  321.574345][T16980] EXT4-fs (loop0): 1 truncate cleaned up
[  321.582823][T16980] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  321.596436][T16980] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.632388][T16985] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  321.705890][T16985] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  321.748870][T16993] loop4: detected capacity change from 0 to 1024
[  321.762228][T16993] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  321.772089][T16993] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (2136!=20869)
[  321.794795][T16993] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  321.807463][T16993] EXT4-fs error (device loop4): ext4_get_journal_inode:5798: comm syz.4.5105: inode #1: comm syz.4.5105: iget: illegal inode #
[  321.821986][T16993] EXT4-fs (loop4): no journal found
[  321.827463][T16993] EXT4-fs (loop4): can't get journal size
[  321.837111][T16995] loop1: detected capacity change from 0 to 512
[  321.839061][T16993] EXT4-fs (loop4): failed to initialize system zone (-117)
[  321.851514][T16993] EXT4-fs (loop4): mount failed
[  321.867433][T16995] EXT4-fs (loop1): orphan cleanup on readonly fs
[  321.890521][T16995] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.5108: bg 0: block 248: padding at end of block bitmap is not set
[  321.917369][T16995] EXT4-fs error (device loop1): ext4_acquire_dquot:6927: comm syz.1.5108: Failed to acquire dquot type 1
[  321.949064][T16995] EXT4-fs (loop1): 1 truncate cleaned up
[  321.960763][T16995] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  321.993231][T16995] EXT4-fs error (device loop1): ext4_lookup:1817: inode #2: comm syz.1.5108: deleted inode referenced: 12
[  322.035938][T10760] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  322.240489][T17011] syz!: rxe_newlink: already configured on team_slave_0
[  322.247835][T17011] x_tables: duplicate underflow at hook 2
[  322.349911][T17013] loop2: detected capacity change from 0 to 512
[  322.429099][T17021] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5117'.
[  322.439573][T17013] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  322.448595][T17013] EXT4-fs (loop2): orphan cleanup on readonly fs
[  322.461006][T17013] EXT4-fs warning (device loop2): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  322.530680][T17013] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  322.546089][T17013] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.5113: bg 0: block 40: padding at end of block bitmap is not set
[  322.570587][T17024] loop1: detected capacity change from 0 to 512
[  322.638421][T17013] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  322.648703][T17013] EXT4-fs (loop2): 1 truncate cleaned up
[  322.667416][T17013] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  322.708345][T17013] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  322.755714][T17024] EXT4-fs: Ignoring removed i_version option
[  322.762138][T17024] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  322.778222][T17024] EXT4-fs (loop1): 1 truncate cleaned up
[  322.784480][T17024] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  322.818267][T17013] pim6reg0: tun_chr_ioctl cmd 1074025673
[  322.819857][T17038] netlink: 24 bytes leftover after parsing attributes in process `syz.0.5120'.
[  322.860984][T10760] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  322.912076][T17047] syz!: rxe_newlink: already configured on team_slave_0
[  322.926333][T17047] x_tables: duplicate underflow at hook 2
[  322.966535][T17055] loop4: detected capacity change from 0 to 2048
[  322.978288][T17050] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[  322.986803][T17050] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[  322.997046][T17055] EXT4-fs: Ignoring removed nomblk_io_submit option
[  323.019323][T17055] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  323.069724][T17065] syz!: rxe_newlink: already configured on team_slave_0
[  323.087079][T17055] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5129'.
[  323.096995][T17055] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  323.139300][T17065] x_tables: duplicate underflow at hook 2
[  323.150506][T17071] loop2: detected capacity change from 0 to 1024
[  323.158792][T17070] netlink: 24 bytes leftover after parsing attributes in process `syz.0.5135'.
[  323.178420][T11628] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  323.192308][T17071] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  323.202266][T17071] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (2136!=20869)
[  323.212132][T17071] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  323.222524][T17075] loop0: detected capacity change from 0 to 512
[  323.224886][T17071] EXT4-fs error (device loop2): ext4_get_journal_inode:5798: comm syz.2.5130: inode #1: comm syz.2.5130: iget: illegal inode #
[  323.243574][T17071] EXT4-fs (loop2): no journal found
[  323.248853][T17071] EXT4-fs (loop2): can't get journal size
[  323.250789][T17075] EXT4-fs: Ignoring removed i_version option
[  323.256097][T17071] EXT4-fs (loop2): failed to initialize system zone (-117)
[  323.268341][T17071] EXT4-fs (loop2): mount failed
[  323.293225][T17075] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  323.336320][T17075] EXT4-fs (loop0): 1 truncate cleaned up
[  323.343524][T17075] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  323.395073][T17084] FAULT_INJECTION: forcing a failure.
[  323.395073][T17084] name failslab, interval 1, probability 0, space 0, times 0
[  323.407813][T17084] CPU: 0 UID: 0 PID: 17084 Comm: syz.1.5138 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  323.407845][T17084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  323.407862][T17084] Call Trace:
[  323.407871][T17084]  <TASK>
[  323.407881][T17084]  dump_stack_lvl+0xf2/0x150
[  323.407916][T17084]  dump_stack+0x15/0x1a
[  323.408000][T17084]  should_fail_ex+0x24a/0x260
[  323.408039][T17084]  ? alloc_async+0x2b/0x80
[  323.408076][T17084]  should_failslab+0x8f/0xb0
[  323.408114][T17084]  __kmalloc_cache_noprof+0x4e/0x320
[  323.408187][T17084]  alloc_async+0x2b/0x80
[  323.408247][T17084]  proc_do_submiturb+0x736/0x1de0
[  323.408295][T17084]  ? should_fail_ex+0xd7/0x260
[  323.408405][T17084]  usbdev_ioctl+0x1ddb/0x3f20
[  323.408451][T17084]  ? do_vfs_ioctl+0x98b/0x1590
[  323.408550][T17084]  ? selinux_file_ioctl+0x2f7/0x380
[  323.408591][T17084]  ? __fget_files+0x17c/0x1c0
[  323.408633][T17084]  ? __pfx_usbdev_ioctl+0x10/0x10
[  323.408672][T17084]  __se_sys_ioctl+0xc9/0x140
[  323.408787][T17084]  __x64_sys_ioctl+0x43/0x50
[  323.408819][T17084]  x64_sys_call+0x1690/0x2dc0
[  323.408868][T17084]  do_syscall_64+0xc9/0x1c0
[  323.408910][T17084]  ? clear_bhb_loop+0x55/0xb0
[  323.408945][T17084]  ? clear_bhb_loop+0x55/0xb0
[  323.409009][T17084]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  323.409043][T17084] RIP: 0033:0x7fc8f07cd169
[  323.409063][T17084] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  323.409081][T17084] RSP: 002b:00007fc8eee37038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  323.409099][T17084] RAX: ffffffffffffffda RBX: 00007fc8f09e5fa0 RCX: 00007fc8f07cd169
[  323.409111][T17084] RDX: 0000400000000000 RSI: 000000008038550a RDI: 0000000000000007
[  323.409170][T17084] RBP: 00007fc8eee37090 R08: 0000000000000000 R09: 0000000000000000
[  323.409209][T17084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  323.409225][T17084] R13: 0000000000000000 R14: 00007fc8f09e5fa0 R15: 00007ffe7d84c538
[  323.409248][T17084]  </TASK>
[  323.521428][T11312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  323.808068][T17101] loop0: detected capacity change from 0 to 512
[  323.832671][T17101] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.5145: bg 0: block 35: padding at end of block bitmap is not set
[  323.850774][T17101] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  323.859993][T17101] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.5145: invalid indirect mapped block 4294967295 (level 1)
[  323.875545][T17101] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.5145: invalid indirect mapped block 4294967295 (level 2)
[  323.891054][T17101] EXT4-fs (loop0): 1 truncate cleaned up
[  323.906325][T17101] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  323.946564][T17111] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  323.953620][T17111] x_tables: duplicate underflow at hook 2
[  323.960446][T17109] FAULT_INJECTION: forcing a failure.
[  323.960446][T17109] name failslab, interval 1, probability 0, space 0, times 0
[  323.973153][T17109] CPU: 0 UID: 0 PID: 17109 Comm: syz.3.5148 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  323.973178][T17109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  323.973236][T17109] Call Trace:
[  323.973243][T17109]  <TASK>
[  323.973251][T17109]  dump_stack_lvl+0xf2/0x150
[  323.973292][T17109]  dump_stack+0x15/0x1a
[  323.973312][T17109]  should_fail_ex+0x24a/0x260
[  323.973338][T17109]  ? do_proc_control+0x1c4/0x850
[  323.973454][T17109]  should_failslab+0x8f/0xb0
[  323.973480][T17109]  __kmalloc_cache_noprof+0x4e/0x320
[  323.973567][T17109]  do_proc_control+0x1c4/0x850
[  323.973597][T17109]  ? should_fail_ex+0xd7/0x260
[  323.973675][T17109]  usbdev_ioctl+0x1c03/0x3f20
[  323.973714][T17109]  ? do_vfs_ioctl+0x98b/0x1590
[  323.973738][T17109]  ? selinux_file_ioctl+0x2f7/0x380
[  323.973843][T17109]  ? __fget_files+0x17c/0x1c0
[  323.973871][T17109]  ? __pfx_usbdev_ioctl+0x10/0x10
[  323.974009][T17109]  __se_sys_ioctl+0xc9/0x140
[  323.974030][T17109]  __x64_sys_ioctl+0x43/0x50
[  323.974084][T17109]  x64_sys_call+0x1690/0x2dc0
[  323.974147][T17109]  do_syscall_64+0xc9/0x1c0
[  323.974188][T17109]  ? clear_bhb_loop+0x55/0xb0
[  323.974260][T17109]  ? clear_bhb_loop+0x55/0xb0
[  323.974340][T17109]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  323.974381][T17109] RIP: 0033:0x7fea85bbd169
[  323.974398][T17109] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  323.974414][T17109] RSP: 002b:00007fea84221038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  323.974503][T17109] RAX: ffffffffffffffda RBX: 00007fea85dd5fa0 RCX: 00007fea85bbd169
[  323.974514][T17109] RDX: 0000400000000040 RSI: 00000000c0185500 RDI: 0000000000000004
[  323.974525][T17109] RBP: 00007fea84221090 R08: 0000000000000000 R09: 0000000000000000
[  323.974535][T17109] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  323.974545][T17109] R13: 0000000000000000 R14: 00007fea85dd5fa0 R15: 00007ffe395de888
[  323.974560][T17109]  </TASK>
[  324.246861][T17122] loop3: detected capacity change from 0 to 512
[  324.280120][T11312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  324.282511][T17122] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  324.299189][T17122] EXT4-fs (loop3): orphan cleanup on readonly fs
[  324.311760][T17125] loop4: detected capacity change from 0 to 512
[  324.318487][T17125] EXT4-fs: Ignoring removed i_version option
[  324.325627][T17125] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  324.326961][T17122] EXT4-fs warning (device loop3): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  324.356233][T17122] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  324.366639][T17125] EXT4-fs (loop4): 1 truncate cleaned up
[  324.370535][T17122] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.5154: bg 0: block 40: padding at end of block bitmap is not set
[  324.387085][T17125] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  324.401141][T17122] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  324.415211][T17122] EXT4-fs (loop3): 1 truncate cleaned up
[  324.422367][T17122] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  324.436121][T17122] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  324.436499][T11628] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  324.545255][T17146] loop2: detected capacity change from 0 to 256
[  324.555541][T17145] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  324.565855][T17145] FAT-fs (loop2): Filesystem has been set read-only
[  324.572529][T17145] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  324.582935][T17145] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  324.593112][T17144] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  324.603497][T17145] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  324.608077][T17150] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[  324.613834][T17144] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  324.620115][T17150] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  324.637881][T17150] vhci_hcd vhci_hcd.0: Device attached
[  324.648679][T17145] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  324.659821][T17145] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  324.670174][T17145] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  324.681597][T17145] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  324.730211][T17158] FAULT_INJECTION: forcing a failure.
[  324.730211][T17158] name failslab, interval 1, probability 0, space 0, times 0
[  324.742902][T17158] CPU: 1 UID: 0 PID: 17158 Comm: syz.1.5167 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  324.742979][T17158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  324.742995][T17158] Call Trace:
[  324.743003][T17158]  <TASK>
[  324.743013][T17158]  dump_stack_lvl+0xf2/0x150
[  324.743047][T17158]  dump_stack+0x15/0x1a
[  324.743080][T17158]  should_fail_ex+0x24a/0x260
[  324.743155][T17158]  should_failslab+0x8f/0xb0
[  324.743248][T17158]  kmem_cache_alloc_node_noprof+0x59/0x320
[  324.743275][T17158]  ? __alloc_skb+0x10b/0x310
[  324.743302][T17158]  __alloc_skb+0x10b/0x310
[  324.743327][T17158]  pfkey_sendmsg+0x10d/0x970
[  324.743361][T17158]  ? avc_has_perm+0xd4/0x160
[  324.743439][T17158]  ? selinux_socket_sendmsg+0x185/0x1c0
[  324.743466][T17158]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  324.743494][T17158]  __sock_sendmsg+0x140/0x180
[  324.743603][T17158]  ____sys_sendmsg+0x326/0x4b0
[  324.743640][T17158]  __sys_sendmsg+0x19d/0x230
[  324.743712][T17158]  __x64_sys_sendmsg+0x46/0x50
[  324.743744][T17158]  x64_sys_call+0x2734/0x2dc0
[  324.743771][T17158]  do_syscall_64+0xc9/0x1c0
[  324.743802][T17158]  ? clear_bhb_loop+0x55/0xb0
[  324.743960][T17158]  ? clear_bhb_loop+0x55/0xb0
[  324.744049][T17158]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  324.744086][T17158] RIP: 0033:0x7fc8f07cd169
[  324.744101][T17158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  324.744130][T17158] RSP: 002b:00007fc8eee37038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  324.744153][T17158] RAX: ffffffffffffffda RBX: 00007fc8f09e5fa0 RCX: 00007fc8f07cd169
[  324.744169][T17158] RDX: 0000000000000000 RSI: 0000400000000000 RDI: 0000000000000003
[  324.744184][T17158] RBP: 00007fc8eee37090 R08: 0000000000000000 R09: 0000000000000000
[  324.744199][T17158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  324.744214][T17158] R13: 0000000000000000 R14: 00007fc8f09e5fa0 R15: 00007ffe7d84c538
[  324.744235][T17158]  </TASK>
[  324.876774][ T3378] usb 7-1: new high-speed USB device number 2 using vhci_hcd
[  325.021938][T17169] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  325.031115][T17169] x_tables: duplicate underflow at hook 2
[  325.143571][   T30] kauditd_printk_skb: 112 callbacks suppressed
[  325.143591][   T30] audit: type=1326 audit(1741825748.430:26541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17191 comm="syz.0.5174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f93a8bfd169 code=0x7ffc0000
[  325.179667][   T30] audit: type=1326 audit(1741825748.430:26542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17191 comm="syz.0.5174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f93a8bfd169 code=0x7ffc0000
[  325.203962][   T30] audit: type=1326 audit(1741825748.460:26543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17191 comm="syz.0.5174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f93a8bfd169 code=0x7ffc0000
[  325.227671][   T30] audit: type=1326 audit(1741825748.460:26544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17191 comm="syz.0.5174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f93a8bfd169 code=0x7ffc0000
[  325.251546][   T30] audit: type=1326 audit(1741825748.460:26545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17191 comm="syz.0.5174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f93a8bfd169 code=0x7ffc0000
[  325.275380][   T30] audit: type=1326 audit(1741825748.460:26546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17191 comm="syz.0.5174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=128 compat=0 ip=0x7f93a8bfd169 code=0x7ffc0000
[  325.387263][T17151] vhci_hcd: connection reset by peer
[  325.396957][ T3856] vhci_hcd: stop threads
[  325.401268][ T3856] vhci_hcd: release socket
[  325.405838][ T3856] vhci_hcd: disconnect device
[  325.417082][   T30] audit: type=1326 audit(1741825748.490:26547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17191 comm="syz.0.5174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f93a8bfd169 code=0x7ffc0000
[  325.440741][   T30] audit: type=1326 audit(1741825748.490:26548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17191 comm="syz.0.5174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f93a8bfd169 code=0x7ffc0000
[  325.464390][   T30] audit: type=1326 audit(1741825748.630:26549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17201 comm="syz.0.5176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f93a8bfd169 code=0x7ffc0000
[  325.488053][   T30] audit: type=1326 audit(1741825748.630:26550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17201 comm="syz.0.5176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f93a8bfd169 code=0x7ffc0000
[  325.584847][T17227] loop0: detected capacity change from 0 to 1024
[  325.603205][T17227] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  325.613089][T17227] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (2136!=20869)
[  325.635544][T17227] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  325.646970][T17227] EXT4-fs error (device loop0): ext4_get_journal_inode:5798: comm syz.0.5181: inode #1: comm syz.0.5181: iget: illegal inode #
[  325.660978][T17227] EXT4-fs (loop0): no journal found
[  325.666233][T17227] EXT4-fs (loop0): can't get journal size
[  325.685086][T17227] EXT4-fs (loop0): failed to initialize system zone (-117)
[  325.702072][T17227] EXT4-fs (loop0): mount failed
[  325.903089][T17264] loop0: detected capacity change from 0 to 1024
[  325.943486][T17264] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  325.953404][T17264] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (2136!=20869)
[  325.978543][T17264] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  325.994616][T17291] loop1: detected capacity change from 0 to 1024
[  326.002967][T17291] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  326.012985][T17291] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (2136!=20869)
[  326.017042][T17264] EXT4-fs error (device loop0): ext4_get_journal_inode:5798: comm syz.0.5182: inode #1: comm syz.0.5182: iget: illegal inode #
[  326.024357][T17291] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  326.046368][T17291] EXT4-fs error (device loop1): ext4_get_journal_inode:5798: comm syz.1.5183: inode #1: comm syz.1.5183: iget: illegal inode #
[  326.060053][T17291] EXT4-fs (loop1): no journal found
[  326.065559][T17291] EXT4-fs (loop1): can't get journal size
[  326.073529][T17264] EXT4-fs (loop0): no journal found
[  326.078949][T17264] EXT4-fs (loop0): can't get journal size
[  326.085235][T17291] EXT4-fs (loop1): failed to initialize system zone (-117)
[  326.092593][T17291] EXT4-fs (loop1): mount failed
[  326.109137][T17264] EXT4-fs (loop0): failed to initialize system zone (-117)
[  326.126347][T17264] EXT4-fs (loop0): mount failed
[  326.287127][T17307] bridge0: port 2(bridge_slave_1) entered disabled state
[  326.294492][T17307] bridge0: port 1(bridge_slave_0) entered disabled state
[  326.298472][T17312] loop0: detected capacity change from 0 to 512
[  326.317951][T17312] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  326.326274][T17312] EXT4-fs (loop0): orphan cleanup on readonly fs
[  326.333471][T17312] EXT4-fs warning (device loop0): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  326.348808][T17312] EXT4-fs (loop0): Cannot turn on quotas: error -117
[  326.360401][T17312] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.5192: bg 0: block 40: padding at end of block bitmap is not set
[  326.372793][T17307] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  326.375209][T17312] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  326.385294][T17307] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  326.393268][T17312] EXT4-fs (loop0): 1 truncate cleaned up
[  326.405517][T17312] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  326.418795][T17312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  326.434698][T17307] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  326.443731][T17307] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  326.452812][T17307] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  326.461811][T17307] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  326.481403][T17318] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  326.491041][T17318] x_tables: duplicate underflow at hook 2
[  326.639158][T17333] __nla_validate_parse: 3 callbacks suppressed
[  326.639176][T17333] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5200'.
[  326.665223][T17333] loop2: detected capacity change from 0 to 512
[  326.671898][T17333] EXT4-fs: Ignoring removed i_version option
[  326.678293][T17333] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  326.690053][T17333] EXT4-fs (loop2): 1 truncate cleaned up
[  326.696284][T17333] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  326.722808][T11466] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  326.763974][T17338] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5202'.
[  326.773121][T17338] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5202'.
[  327.025882][T17340] loop1: detected capacity change from 0 to 512
[  327.059622][T17340] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  327.068466][T17340] EXT4-fs (loop1): orphan cleanup on readonly fs
[  327.081605][T17340] EXT4-fs warning (device loop1): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  327.101735][T17346] loop0: detected capacity change from 0 to 512
[  327.109084][T17340] EXT4-fs (loop1): Cannot turn on quotas: error -117
[  327.116657][T17340] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.5203: bg 0: block 40: padding at end of block bitmap is not set
[  327.137735][T17346] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  327.147542][T17340] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  327.156618][T17346] EXT4-fs (loop0): orphan cleanup on readonly fs
[  327.173956][T17346] EXT4-fs warning (device loop0): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  327.190193][T17340] EXT4-fs (loop1): 1 truncate cleaned up
[  327.196309][T17340] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  327.217682][T17346] EXT4-fs (loop0): Cannot turn on quotas: error -117
[  327.229005][T17346] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.5205: bg 0: block 40: padding at end of block bitmap is not set
[  327.243802][T17346] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  327.263019][T17340] pim6reg0: tun_chr_ioctl cmd 1074025673
[  327.269043][T17346] EXT4-fs (loop0): 1 truncate cleaned up
[  327.275689][T17346] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  327.288672][T17346] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  327.316074][T17359] program syz.3.5209 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  327.366082][T17364] netlink: 24 bytes leftover after parsing attributes in process `syz.3.5211'.
[  327.388626][T10760] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  327.409404][T17364] loop3: detected capacity change from 0 to 512
[  327.417143][T17364] EXT4-fs: Ignoring removed i_version option
[  327.447069][T17364] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  327.473062][T17372] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5215'.
[  327.485997][T17370] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5212'.
[  327.497481][T17364] EXT4-fs (loop3): 1 truncate cleaned up
[  327.503031][T17372] loop2: detected capacity change from 0 to 512
[  327.505030][T17364] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  327.509789][T17372] EXT4-fs: Ignoring removed i_version option
[  327.536575][T17372] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  327.548916][T17370] loop1: detected capacity change from 0 to 512
[  327.555499][T17370] EXT4-fs: Ignoring removed i_version option
[  327.563483][T17370] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  327.565031][T17372] EXT4-fs (loop2): 1 truncate cleaned up
[  327.583590][T17372] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  327.599824][T17370] EXT4-fs (loop1): 1 truncate cleaned up
[  327.609081][T17370] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  327.631539][T11082] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  327.650283][T11466] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  327.668733][T10760] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  327.709964][T17387] loop2: detected capacity change from 0 to 128
[  327.733742][T17390] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5220'.
[  327.742894][T17390] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5220'.
[  327.757789][T17387] bio_check_eod: 17423 callbacks suppressed
[  327.757806][T17387] syz.2.5218: attempt to access beyond end of device
[  327.757806][T17387] loop2: rw=2049, sector=145, nr_sectors = 896 limit=128
[  327.785480][T17387] syz.2.5218: attempt to access beyond end of device
[  327.785480][T17387] loop2: rw=524288, sector=145, nr_sectors = 224 limit=128
[  327.799945][T17387] syz.2.5218: attempt to access beyond end of device
[  327.799945][T17387] loop2: rw=0, sector=145, nr_sectors = 8 limit=128
[  327.813999][T17387] syz.2.5218: attempt to access beyond end of device
[  327.813999][T17387] loop2: rw=0, sector=145, nr_sectors = 8 limit=128
[  327.827691][T17387] syz.2.5218: attempt to access beyond end of device
[  327.827691][T17387] loop2: rw=0, sector=145, nr_sectors = 8 limit=128
[  327.841383][T17387] syz.2.5218: attempt to access beyond end of device
[  327.841383][T17387] loop2: rw=0, sector=145, nr_sectors = 8 limit=128
[  327.855340][T17387] syz.2.5218: attempt to access beyond end of device
[  327.855340][T17387] loop2: rw=0, sector=145, nr_sectors = 8 limit=128
[  327.870015][T17387] syz.2.5218: attempt to access beyond end of device
[  327.870015][T17387] loop2: rw=0, sector=145, nr_sectors = 8 limit=128
[  327.883473][T17387] syz.2.5218: attempt to access beyond end of device
[  327.883473][T17387] loop2: rw=0, sector=145, nr_sectors = 8 limit=128
[  327.897719][T17387] syz.2.5218: attempt to access beyond end of device
[  327.897719][T17387] loop2: rw=0, sector=145, nr_sectors = 8 limit=128
[  327.985112][T17398] loop1: detected capacity change from 0 to 512
[  328.018877][T17398] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  328.037816][T17398] EXT4-fs (loop1): orphan cleanup on readonly fs
[  328.044475][T17398] EXT4-fs warning (device loop1): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  328.078009][T17398] EXT4-fs (loop1): Cannot turn on quotas: error -117
[  328.111761][T17398] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.5223: bg 0: block 40: padding at end of block bitmap is not set
[  328.139692][T17402] loop4: detected capacity change from 0 to 1024
[  328.154006][T17398] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  328.167976][T17402] EXT4-fs: Ignoring removed oldalloc option
[  328.181689][T17402] EXT4-fs: quotafile must be on filesystem root
[  328.192016][T17398] EXT4-fs (loop1): 1 truncate cleaned up
[  328.198247][T17398] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  328.229641][T17398] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  328.354607][T17408] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5226'.
[  328.363751][T17408] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5226'.
[  328.434521][T17418] loop1: detected capacity change from 0 to 128
[  328.441347][T17418] vfat: Bad value for 'nonumtail'
[  328.573452][T17421] loop3: detected capacity change from 0 to 512
[  328.858864][T17421] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.5230: bg 0: block 35: padding at end of block bitmap is not set
[  328.881143][T17421] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  329.038550][T17440] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  329.047098][T17440] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  329.077537][T17421] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.5230: invalid indirect mapped block 4294967295 (level 1)
[  329.102385][T17421] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.5230: invalid indirect mapped block 4294967295 (level 2)
[  329.155887][T17421] EXT4-fs (loop3): 1 truncate cleaned up
[  329.163400][T17443] loop2: detected capacity change from 0 to 512
[  329.176853][T17421] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  329.206600][T17443] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  329.238289][T17443] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002]
[  329.393997][T17443] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.5237: corrupted in-inode xattr: e_value size too large
[  329.410188][T17443] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.5237: couldn't read orphan inode 15 (err -117)
[  329.439920][T17443] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  329.620165][T11082] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  329.863941][T11466] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  329.905800][T17459] loop0: detected capacity change from 0 to 1024
[  329.934041][T17459] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  329.944142][T17459] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (2136!=20869)
[  329.955970][T17460] loop1: detected capacity change from 0 to 1024
[  329.998200][T17460] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  330.008064][T17460] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (2136!=20869)
[  330.035188][T17459] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  330.059054][T17459] EXT4-fs error (device loop0): ext4_get_journal_inode:5798: comm syz.0.5242: inode #1: comm syz.0.5242: iget: illegal inode #
[  330.076804][T17460] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  330.088662][T17460] EXT4-fs error (device loop1): ext4_get_journal_inode:5798: comm syz.1.5243: inode #1: comm syz.1.5243: iget: illegal inode #
[  330.107076][T17459] EXT4-fs (loop0): no journal found
[  330.112348][T17459] EXT4-fs (loop0): can't get journal size
[  330.118227][T17460] EXT4-fs (loop1): no journal found
[  330.123614][T17460] EXT4-fs (loop1): can't get journal size
[  330.136913][T17459] EXT4-fs (loop0): failed to initialize system zone (-117)
[  330.146846][ T3378] vhci_hcd: vhci_device speed not set
[  330.154562][T17459] EXT4-fs (loop0): mount failed
[  330.163636][T17460] EXT4-fs (loop1): failed to initialize system zone (-117)
[  330.173783][T17460] EXT4-fs (loop1): mount failed
[  330.216334][   T30] kauditd_printk_skb: 140 callbacks suppressed
[  330.216352][   T30] audit: type=1326 audit(1741825753.500:26687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17470 comm="syz.2.5246" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f760b02d169 code=0x0
[  330.307684][   T30] audit: type=1326 audit(1741825753.600:26688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17478 comm="syz.4.5250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14d0a6d169 code=0x7ffc0000
[  330.332707][   T30] audit: type=1326 audit(1741825753.620:26689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17478 comm="syz.4.5250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f14d0a6d169 code=0x7ffc0000
[  330.356435][   T30] audit: type=1326 audit(1741825753.620:26690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17478 comm="syz.4.5250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14d0a6d169 code=0x7ffc0000
[  330.380311][   T30] audit: type=1326 audit(1741825753.620:26691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17478 comm="syz.4.5250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f14d0a6d169 code=0x7ffc0000
[  330.403931][   T30] audit: type=1326 audit(1741825753.620:26692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17478 comm="syz.4.5250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14d0a6d169 code=0x7ffc0000
[  330.428187][   T30] audit: type=1326 audit(1741825753.620:26693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17478 comm="syz.4.5250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f14d0a6d169 code=0x7ffc0000
[  330.451934][   T30] audit: type=1326 audit(1741825753.620:26694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17478 comm="syz.4.5250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14d0a6d169 code=0x7ffc0000
[  330.475925][   T30] audit: type=1326 audit(1741825753.620:26695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17478 comm="syz.4.5250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=76 compat=0 ip=0x7f14d0a6d169 code=0x7ffc0000
[  330.498094][T17483] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  330.502132][   T30] audit: type=1326 audit(1741825753.690:26696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17478 comm="syz.4.5250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14d0a6d169 code=0x7ffc0000
[  330.530627][T17484] netlink: 'syz.0.5249': attribute type 21 has an invalid length.
[  330.547122][T17483] x_tables: duplicate underflow at hook 2
[  330.648941][T17487] loop4: detected capacity change from 0 to 512
[  330.655601][T17487] EXT4-fs: Ignoring removed i_version option
[  330.662784][T17487] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  330.674268][T17487] EXT4-fs (loop4): 1 truncate cleaned up
[  330.681433][T17487] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  330.718632][T11628] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  330.848900][T17501] loop4: detected capacity change from 0 to 512
[  330.857257][T17501] EXT4-fs: Ignoring removed i_version option
[  330.892834][T17505] loop2: detected capacity change from 0 to 1024
[  330.899791][T17501] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  330.926449][T17505] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  330.936297][T17505] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (2136!=20869)
[  330.968424][T17501] EXT4-fs (loop4): 1 truncate cleaned up
[  330.974472][T17501] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  330.994313][T17512] lo: entered allmulticast mode
[  331.002084][T17512] lo: left allmulticast mode
[  331.007041][T17505] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  331.017362][T17505] EXT4-fs error (device loop2): ext4_get_journal_inode:5798: comm syz.2.5259: inode #1: comm syz.2.5259: iget: illegal inode #
[  331.031555][T17505] EXT4-fs (loop2): no journal found
[  331.036970][T17505] EXT4-fs (loop2): can't get journal size
[  331.047251][T17505] EXT4-fs (loop2): failed to initialize system zone (-117)
[  331.057887][T17505] EXT4-fs (loop2): mount failed
[  331.068039][T11628] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  331.083625][T17517] loop1: detected capacity change from 0 to 512
[  331.102747][T17517] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  331.115974][T17517] ext4 filesystem being mounted at /500/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  331.127882][T17517] netlink: 'syz.1.5265': attribute type 1 has an invalid length.
[  331.135828][T17517] netlink: 'syz.1.5265': attribute type 2 has an invalid length.
[  331.143779][T17517] netlink: 'syz.1.5265': attribute type 1 has an invalid length.
[  331.152436][T17517] netlink: 'syz.1.5265': attribute type 21 has an invalid length.
[  331.160379][T17517] netlink: 'syz.1.5265': attribute type 20 has an invalid length.
[  331.184538][T10760] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  331.230337][T17531] netlink: 'syz.1.5271': attribute type 39 has an invalid length.
[  331.245037][T17533] FAULT_INJECTION: forcing a failure.
[  331.245037][T17533] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  331.258220][T17533] CPU: 1 UID: 0 PID: 17533 Comm: syz.4.5272 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  331.258250][T17533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  331.258265][T17533] Call Trace:
[  331.258293][T17533]  <TASK>
[  331.258303][T17533]  dump_stack_lvl+0xf2/0x150
[  331.258336][T17533]  dump_stack+0x15/0x1a
[  331.258360][T17533]  should_fail_ex+0x24a/0x260
[  331.258392][T17533]  should_fail+0xb/0x10
[  331.258423][T17533]  should_fail_usercopy+0x1a/0x20
[  331.258471][T17533]  _copy_from_iter+0xd5/0xd00
[  331.258508][T17533]  ? kmalloc_reserve+0x16e/0x190
[  331.258550][T17533]  ? __build_skb_around+0x196/0x1f0
[  331.258571][T17533]  ? __alloc_skb+0x21f/0x310
[  331.258590][T17533]  ? __virt_addr_valid+0x1ed/0x250
[  331.258680][T17533]  ? __check_object_size+0x364/0x520
[  331.258712][T17533]  netlink_sendmsg+0x460/0x6e0
[  331.258757][T17533]  ? __pfx_netlink_sendmsg+0x10/0x10
[  331.258804][T17533]  __sock_sendmsg+0x140/0x180
[  331.258837][T17533]  ____sys_sendmsg+0x326/0x4b0
[  331.258867][T17533]  __sys_sendmsg+0x19d/0x230
[  331.258920][T17533]  __x64_sys_sendmsg+0x46/0x50
[  331.258949][T17533]  x64_sys_call+0x2734/0x2dc0
[  331.258975][T17533]  do_syscall_64+0xc9/0x1c0
[  331.259079][T17533]  ? clear_bhb_loop+0x55/0xb0
[  331.259112][T17533]  ? clear_bhb_loop+0x55/0xb0
[  331.259141][T17533]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  331.259171][T17533] RIP: 0033:0x7f14d0a6d169
[  331.259193][T17533] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  331.259215][T17533] RSP: 002b:00007f14cf0d1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  331.259237][T17533] RAX: ffffffffffffffda RBX: 00007f14d0c85fa0 RCX: 00007f14d0a6d169
[  331.259251][T17533] RDX: 0000000000000000 RSI: 0000400000000080 RDI: 0000000000000006
[  331.259316][T17533] RBP: 00007f14cf0d1090 R08: 0000000000000000 R09: 0000000000000000
[  331.259345][T17533] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  331.259355][T17533] R13: 0000000000000000 R14: 00007f14d0c85fa0 R15: 00007fffc46e4378
[  331.259386][T17533]  </TASK>
[  331.931236][T17554] loop3: detected capacity change from 0 to 1024
[  331.939149][T17554] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  331.949186][T17554] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (2136!=20869)
[  331.959651][T17554] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  331.984895][T17554] EXT4-fs error (device loop3): ext4_get_journal_inode:5798: comm syz.3.5278: inode #1: comm syz.3.5278: iget: illegal inode #
[  331.998824][T17554] EXT4-fs (loop3): no journal found
[  332.004093][T17554] EXT4-fs (loop3): can't get journal size
[  332.011139][T17556] __nla_validate_parse: 9 callbacks suppressed
[  332.011153][T17556] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5279'.
[  332.032170][T17554] EXT4-fs (loop3): failed to initialize system zone (-117)
[  332.051255][T17554] EXT4-fs (loop3): mount failed
[  332.079389][T17561] loop0: detected capacity change from 0 to 128
[  332.108726][T17565] loop2: detected capacity change from 0 to 2048
[  332.120168][T17567] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5284'.
[  332.130998][T17565] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  332.146885][T17565] ext4 filesystem being mounted at /440/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  332.162612][T17567] loop1: detected capacity change from 0 to 512
[  332.169417][T17567] EXT4-fs: Ignoring removed i_version option
[  332.175812][T17567] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  332.194979][T17567] EXT4-fs (loop1): 1 truncate cleaned up
[  332.202005][T11466] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  332.217554][T17567] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  332.246610][T17576] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5287'.
[  332.255654][T17576] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5287'.
[  332.287701][T10760] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  332.359966][T17585] loop1: detected capacity change from 0 to 512
[  332.375859][T17586] loop2: detected capacity change from 0 to 512
[  332.402925][T17585] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  332.411145][T17585] EXT4-fs (loop1): orphan cleanup on readonly fs
[  332.417829][T17586] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  332.426077][T17585] EXT4-fs warning (device loop1): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  332.440843][T17586] EXT4-fs (loop2): orphan cleanup on readonly fs
[  332.457274][T17585] EXT4-fs (loop1): Cannot turn on quotas: error -117
[  332.458745][T17597] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  332.464275][T17586] EXT4-fs warning (device loop2): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  332.471883][T17597] x_tables: duplicate underflow at hook 2
[  332.498720][T17585] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.5290: bg 0: block 40: padding at end of block bitmap is not set
[  332.514325][T17585] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  332.524983][T17585] EXT4-fs (loop1): 1 truncate cleaned up
[  332.530722][T17586] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  332.552092][T17586] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.5291: bg 0: block 40: padding at end of block bitmap is not set
[  332.566978][T17586] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  332.578562][T17586] EXT4-fs (loop2): 1 truncate cleaned up
[  332.616035][T17602] loop4: detected capacity change from 0 to 1024
[  332.623957][T17602] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  332.635188][T17602] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  332.667477][T17602] JBD2: no valid journal superblock found
[  332.673252][T17602] EXT4-fs (loop4): Could not load journal inode
[  332.690224][T17586] pim6reg0: tun_chr_ioctl cmd 1074025673
[  332.698069][T17602] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  332.701499][T17605] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  332.715943][T17605] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  332.729396][T17602] vlan0: entered allmulticast mode
[  332.734576][T17602] syz_tun: entered allmulticast mode
[  332.751090][T17602] syz_tun: left allmulticast mode
[  332.767106][T17561] bio_check_eod: 23643 callbacks suppressed
[  332.767200][T17561] syz.0.5281: attempt to access beyond end of device
[  332.767200][T17561] loop0: rw=0, sector=145, nr_sectors = 8 limit=128
[  332.786786][T17561] syz.0.5281: attempt to access beyond end of device
[  332.786786][T17561] loop0: rw=0, sector=145, nr_sectors = 8 limit=128
[  332.800524][T17561] syz.0.5281: attempt to access beyond end of device
[  332.800524][T17561] loop0: rw=0, sector=145, nr_sectors = 8 limit=128
[  332.814591][T17561] syz.0.5281: attempt to access beyond end of device
[  332.814591][T17561] loop0: rw=0, sector=145, nr_sectors = 8 limit=128
[  332.828065][T17561] syz.0.5281: attempt to access beyond end of device
[  332.828065][T17561] loop0: rw=0, sector=145, nr_sectors = 8 limit=128
[  332.859131][T17561] syz.0.5281: attempt to access beyond end of device
[  332.859131][T17561] loop0: rw=0, sector=145, nr_sectors = 8 limit=128
[  332.888496][T17561] syz.0.5281: attempt to access beyond end of device
[  332.888496][T17561] loop0: rw=0, sector=145, nr_sectors = 8 limit=128
[  332.902939][T17561] syz.0.5281: attempt to access beyond end of device
[  332.902939][T17561] loop0: rw=0, sector=145, nr_sectors = 8 limit=128
[  333.043291][T17626] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  333.050557][T17626] x_tables: duplicate underflow at hook 2
[  333.134546][T17633] lo: entered allmulticast mode
[  333.140897][T17633] lo: left allmulticast mode
[  333.188235][T17637] loop3: detected capacity change from 0 to 512
[  333.239020][T17640] loop0: detected capacity change from 0 to 128
[  333.248767][T17637] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  333.256984][T17637] EXT4-fs (loop3): orphan cleanup on readonly fs
[  333.273920][T17637] EXT4-fs warning (device loop3): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  333.304983][T17640] syz.0.5311: attempt to access beyond end of device
[  333.304983][T17640] loop0: rw=2049, sector=145, nr_sectors = 896 limit=128
[  333.347702][T17638] syz.0.5311: attempt to access beyond end of device
[  333.347702][T17638] loop0: rw=524288, sector=145, nr_sectors = 224 limit=128
[  333.362043][T17637] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  333.371117][T17637] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.5310: bg 0: block 40: padding at end of block bitmap is not set
[  333.451429][T17646] loop0: detected capacity change from 0 to 128
[  333.461871][T17637] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  333.515301][T17637] EXT4-fs (loop3): 1 truncate cleaned up
[  333.682006][T17637] pim6reg0: tun_chr_ioctl cmd 1074025673
[  333.850258][T17662] loop3: detected capacity change from 0 to 1024
[  333.869149][T17662] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  333.879015][T17662] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (2136!=20869)
[  333.909545][T17662] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  333.919944][T17662] EXT4-fs error (device loop3): ext4_get_journal_inode:5798: comm syz.3.5318: inode #1: comm syz.3.5318: iget: illegal inode #
[  333.933473][T17662] EXT4-fs (loop3): no journal found
[  333.938737][T17662] EXT4-fs (loop3): can't get journal size
[  333.945774][T17662] EXT4-fs (loop3): failed to initialize system zone (-117)
[  333.954100][T17662] EXT4-fs (loop3): mount failed
[  334.025865][T17665] loop4: detected capacity change from 0 to 512
[  334.041406][T17665] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5319: bg 0: block 35: padding at end of block bitmap is not set
[  334.074604][T17665] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  334.104857][T17665] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.5319: invalid indirect mapped block 4294967295 (level 1)
[  334.130366][T17670] loop3: detected capacity change from 0 to 2048
[  334.137054][T17665] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.5319: invalid indirect mapped block 4294967295 (level 2)
[  334.152647][T17670] EXT4-fs: Ignoring removed nomblk_io_submit option
[  334.159784][T17665] EXT4-fs (loop4): 1 truncate cleaned up
[  334.187984][T17670] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5321'.
[  334.197392][T17670] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  334.232396][T17675] netlink: 40 bytes leftover after parsing attributes in process `syz.3.5322'.
[  334.303018][T17682] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5325'.
[  334.307719][T17684] x_tables: duplicate underflow at hook 2
[  334.312089][T17682] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5325'.
[  334.612741][T17697] loop1: detected capacity change from 0 to 2048
[  334.619777][T17697] EXT4-fs: Ignoring removed nomblk_io_submit option
[  334.634679][T17699] netlink: 40 bytes leftover after parsing attributes in process `syz.2.5333'.
[  334.659690][T17697] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5332'.
[  334.669632][T17697] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  334.691182][T17705] loop2: detected capacity change from 0 to 512
[  334.720106][T17705] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  334.728491][T17705] EXT4-fs (loop2): orphan cleanup on readonly fs
[  334.735149][T17705] EXT4-fs warning (device loop2): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  334.741034][T17711] loop1: detected capacity change from 0 to 128
[  334.750881][T17705] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  334.764583][T17705] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.5335: bg 0: block 40: padding at end of block bitmap is not set
[  334.779618][T17705] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  334.789959][T17705] EXT4-fs (loop2): 1 truncate cleaned up
[  334.804026][T17705] pim6reg0: tun_chr_ioctl cmd 1074025673
[  334.808123][T17713] x_tables: duplicate underflow at hook 2
[  334.853435][T17715] ipvlan0: entered promiscuous mode
[  334.858752][T17715] ipvlan0: entered allmulticast mode
[  334.957062][T17727] FAULT_INJECTION: forcing a failure.
[  334.957062][T17727] name failslab, interval 1, probability 0, space 0, times 0
[  334.969818][T17727] CPU: 1 UID: 0 PID: 17727 Comm: syz.2.5344 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  334.969846][T17727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  334.969861][T17727] Call Trace:
[  334.969870][T17727]  <TASK>
[  334.969879][T17727]  dump_stack_lvl+0xf2/0x150
[  334.969951][T17727]  dump_stack+0x15/0x1a
[  334.969979][T17727]  should_fail_ex+0x24a/0x260
[  334.970036][T17727]  should_failslab+0x8f/0xb0
[  334.970076][T17727]  kmem_cache_alloc_lru_noprof+0x57/0x320
[  334.970103][T17727]  ? __d_alloc+0x3d/0x350
[  334.970194][T17727]  ? should_fail_ex+0xd7/0x260
[  334.970228][T17727]  __d_alloc+0x3d/0x350
[  334.970254][T17727]  d_alloc_parallel+0x54/0xc80
[  334.970318][T17727]  ? __rcu_read_unlock+0x4e/0x70
[  334.970343][T17727]  ? __d_lookup+0x342/0x370
[  334.970450][T17727]  ? inode_permission+0xbf/0x300
[  334.970476][T17727]  __lookup_slow+0x8d/0x250
[  334.970505][T17727]  lookup_one_len+0xf1/0x1c0
[  334.970530][T17727]  start_creating+0x139/0x230
[  334.970581][T17727]  __debugfs_create_file+0x73/0x330
[  334.970624][T17727]  debugfs_create_file_full+0x40/0x60
[  334.970684][T17727]  do_blk_trace_setup+0x2f0/0x4d0
[  334.970760][T17727]  blk_trace_setup+0xa7/0x140
[  334.970791][T17727]  blk_trace_ioctl+0xea/0x2e0
[  334.970825][T17727]  ? do_vfs_ioctl+0x98b/0x1590
[  334.970858][T17727]  ? selinux_file_ioctl+0x2f7/0x380
[  334.970902][T17727]  blkdev_ioctl+0x281/0x450
[  334.970930][T17727]  ? __pfx_blkdev_ioctl+0x10/0x10
[  334.970952][T17727]  __se_sys_ioctl+0xc9/0x140
[  334.970980][T17727]  __x64_sys_ioctl+0x43/0x50
[  334.971056][T17727]  x64_sys_call+0x1690/0x2dc0
[  334.971086][T17727]  do_syscall_64+0xc9/0x1c0
[  334.971126][T17727]  ? clear_bhb_loop+0x55/0xb0
[  334.971234][T17727]  ? clear_bhb_loop+0x55/0xb0
[  334.971269][T17727]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.971296][T17727] RIP: 0033:0x7f760b02d169
[  334.971311][T17727] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  334.971330][T17727] RSP: 002b:00007f7609697038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  334.971412][T17727] RAX: ffffffffffffffda RBX: 00007f760b245fa0 RCX: 00007f760b02d169
[  334.971427][T17727] RDX: 0000400000000000 RSI: 00000000c0481273 RDI: 0000000000000004
[  334.971446][T17727] RBP: 00007f7609697090 R08: 0000000000000000 R09: 0000000000000000
[  334.971459][T17727] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  334.971470][T17727] R13: 0000000000000000 R14: 00007f760b245fa0 R15: 00007fffb637fce8
[  334.971489][T17727]  </TASK>
[  335.286311][T17739] loop1: detected capacity change from 0 to 2048
[  335.300135][T17743] loop4: detected capacity change from 0 to 512
[  335.308662][T17739] EXT4-fs: Ignoring removed nomblk_io_submit option
[  335.332435][T17743] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  335.347282][T17743] EXT4-fs (loop4): orphan cleanup on readonly fs
[  335.348858][T17739] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  335.364698][T17743] __quota_error: 196 callbacks suppressed
[  335.364716][T17743] Quota error (device loop4): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[  335.381060][T17752] loop2: detected capacity change from 0 to 1024
[  335.382782][T17743] EXT4-fs warning (device loop4): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  335.390848][T17752] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  335.412094][T17752] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (2136!=20869)
[  335.422579][T17743] EXT4-fs (loop4): Cannot turn on quotas: error -117
[  335.429937][T17743] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5351: bg 0: block 40: padding at end of block bitmap is not set
[  335.444537][T17743] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  335.444985][T17752] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  335.453972][T17743] EXT4-fs (loop4): 1 truncate cleaned up
[  335.471576][T17752] EXT4-fs error (device loop2): ext4_get_journal_inode:5798: comm syz.2.5352: inode #1: comm syz.2.5352: iget: illegal inode #
[  335.483188][   T30] audit: type=1326 audit(1741825758.770:26889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17753 comm="syz.1.5355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8f07cd169 code=0x7ffc0000
[  335.487760][T17752] EXT4-fs (loop2): no journal found
[  335.510052][   T30] audit: type=1326 audit(1741825758.770:26890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17753 comm="syz.1.5355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc8f07cd169 code=0x7ffc0000
[  335.513901][T17752] EXT4-fs (loop2): can't get journal size
[  335.543601][   T30] audit: type=1326 audit(1741825758.770:26891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17753 comm="syz.1.5355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8f07cd169 code=0x7ffc0000
[  335.567421][   T30] audit: type=1326 audit(1741825758.770:26892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17753 comm="syz.1.5355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8f07cd169 code=0x7ffc0000
[  335.591112][   T30] audit: type=1326 audit(1741825758.770:26893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17753 comm="syz.1.5355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc8f07cd169 code=0x7ffc0000
[  335.593188][T17752] EXT4-fs (loop2): failed to initialize system zone (-117)
[  335.614979][   T30] audit: type=1326 audit(1741825758.770:26894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17753 comm="syz.1.5355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8f07cd169 code=0x7ffc0000
[  335.623210][T17752] EXT4-fs (loop2): mount failed
[  335.645920][   T30] audit: type=1326 audit(1741825758.770:26895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17753 comm="syz.1.5355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc8f07cd169 code=0x7ffc0000
[  335.657278][T17758] loop1: detected capacity change from 0 to 764
[  335.674428][   T30] audit: type=1326 audit(1741825758.770:26896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17753 comm="syz.1.5355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8f07cd169 code=0x7ffc0000
[  335.704447][   T30] audit: type=1326 audit(1741825758.770:26897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17753 comm="syz.1.5355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc8f07cd169 code=0x7ffc0000
[  335.760267][T17743] pim6reg0: tun_chr_ioctl cmd 1074025673
[  335.845514][T17774] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  335.852912][T17774] x_tables: duplicate underflow at hook 2
[  335.864793][T17777] FAULT_INJECTION: forcing a failure.
[  335.864793][T17777] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  335.877955][T17777] CPU: 0 UID: 0 PID: 17777 Comm: syz.1.5364 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  335.878045][T17777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  335.878061][T17777] Call Trace:
[  335.878068][T17777]  <TASK>
[  335.878076][T17777]  dump_stack_lvl+0xf2/0x150
[  335.878107][T17777]  dump_stack+0x15/0x1a
[  335.878133][T17777]  should_fail_ex+0x24a/0x260
[  335.878232][T17777]  should_fail+0xb/0x10
[  335.878260][T17777]  should_fail_usercopy+0x1a/0x20
[  335.878301][T17777]  _copy_from_user+0x1c/0xa0
[  335.878321][T17777]  kstrtouint_from_user+0x76/0xe0
[  335.878352][T17777]  ? 0xffffffff81000000
[  335.878365][T17777]  ? selinux_file_permission+0x22a/0x360
[  335.878533][T17777]  proc_fail_nth_write+0x4f/0x150
[  335.878564][T17777]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  335.878595][T17777]  vfs_write+0x27d/0x920
[  335.878680][T17777]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  335.878711][T17777]  ? __fget_files+0x17c/0x1c0
[  335.878746][T17777]  ksys_write+0xe8/0x1b0
[  335.878807][T17777]  __x64_sys_write+0x42/0x50
[  335.878834][T17777]  x64_sys_call+0x287e/0x2dc0
[  335.878901][T17777]  do_syscall_64+0xc9/0x1c0
[  335.878934][T17777]  ? clear_bhb_loop+0x55/0xb0
[  335.878961][T17777]  ? clear_bhb_loop+0x55/0xb0
[  335.879065][T17777]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  335.879096][T17777] RIP: 0033:0x7fc8f07cbc1f
[  335.879111][T17777] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  335.879202][T17777] RSP: 002b:00007fc8eee37030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  335.879221][T17777] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fc8f07cbc1f
[  335.879233][T17777] RDX: 0000000000000001 RSI: 00007fc8eee370a0 RDI: 0000000000000007
[  335.879245][T17777] RBP: 00007fc8eee37090 R08: 0000000000000000 R09: 0000000000000000
[  335.879257][T17777] R10: 0000000000010000 R11: 0000000000000293 R12: 0000000000000001
[  335.879270][T17777] R13: 0000000000000000 R14: 00007fc8f09e5fa0 R15: 00007ffe7d84c538
[  335.879288][T17777]  </TASK>
[  336.108164][T17780] loop0: detected capacity change from 0 to 2048
[  336.115018][T17780] EXT4-fs: Ignoring removed nomblk_io_submit option
[  336.133420][T17780] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  336.234374][T17786] loop4: detected capacity change from 0 to 1024
[  336.241707][T17786] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  336.251537][T17786] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (2136!=20869)
[  336.260265][T17797] x_tables: duplicate underflow at hook 2
[  336.262718][T17786] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  336.277319][T17786] EXT4-fs error (device loop4): ext4_get_journal_inode:5798: comm syz.4.5368: inode #1: comm syz.4.5368: iget: illegal inode #
[  336.291274][T17786] EXT4-fs (loop4): no journal found
[  336.296638][T17786] EXT4-fs (loop4): can't get journal size
[  336.304724][T17786] EXT4-fs (loop4): failed to initialize system zone (-117)
[  336.312596][T17786] EXT4-fs (loop4): mount failed
[  336.339951][T17802] x_tables: duplicate underflow at hook 2
[  336.346572][T17804] FAULT_INJECTION: forcing a failure.
[  336.346572][T17804] name failslab, interval 1, probability 0, space 0, times 0
[  336.359357][T17804] CPU: 0 UID: 0 PID: 17804 Comm: syz.4.5374 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  336.359387][T17804] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  336.359399][T17804] Call Trace:
[  336.359404][T17804]  <TASK>
[  336.359411][T17804]  dump_stack_lvl+0xf2/0x150
[  336.359516][T17804]  dump_stack+0x15/0x1a
[  336.359585][T17804]  should_fail_ex+0x24a/0x260
[  336.359671][T17804]  should_failslab+0x8f/0xb0
[  336.359698][T17804]  kmem_cache_alloc_lru_noprof+0x57/0x320
[  336.359775][T17804]  ? __d_alloc+0x3d/0x350
[  336.359846][T17804]  ? should_fail_ex+0xd7/0x260
[  336.359946][T17804]  __d_alloc+0x3d/0x350
[  336.359964][T17804]  d_alloc_parallel+0x54/0xc80
[  336.359986][T17804]  ? __rcu_read_unlock+0x4e/0x70
[  336.360005][T17804]  ? __d_lookup+0x342/0x370
[  336.360025][T17804]  ? inode_permission+0xbf/0x300
[  336.360042][T17804]  __lookup_slow+0x8d/0x250
[  336.360112][T17804]  lookup_one_len+0xf1/0x1c0
[  336.360175][T17804]  start_creating+0x139/0x230
[  336.360215][T17804]  __debugfs_create_file+0x73/0x330
[  336.360252][T17804]  debugfs_create_file_full+0x40/0x60
[  336.360284][T17804]  do_blk_trace_setup+0x2f0/0x4d0
[  336.360379][T17804]  blk_trace_setup+0xa7/0x140
[  336.360407][T17804]  blk_trace_ioctl+0xea/0x2e0
[  336.360433][T17804]  ? do_vfs_ioctl+0x98b/0x1590
[  336.360457][T17804]  ? selinux_file_ioctl+0x2f7/0x380
[  336.360527][T17804]  blkdev_ioctl+0x281/0x450
[  336.360545][T17804]  ? __pfx_blkdev_ioctl+0x10/0x10
[  336.360563][T17804]  __se_sys_ioctl+0xc9/0x140
[  336.360585][T17804]  __x64_sys_ioctl+0x43/0x50
[  336.360605][T17804]  x64_sys_call+0x1690/0x2dc0
[  336.360706][T17804]  do_syscall_64+0xc9/0x1c0
[  336.360733][T17804]  ? clear_bhb_loop+0x55/0xb0
[  336.360825][T17804]  ? clear_bhb_loop+0x55/0xb0
[  336.360891][T17804]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  336.360963][T17804] RIP: 0033:0x7f14d0a6d169
[  336.360976][T17804] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  336.360991][T17804] RSP: 002b:00007f14cf0d1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  336.361047][T17804] RAX: ffffffffffffffda RBX: 00007f14d0c85fa0 RCX: 00007f14d0a6d169
[  336.361071][T17804] RDX: 0000400000000000 RSI: 00000000c0481273 RDI: 0000000000000007
[  336.361085][T17804] RBP: 00007f14cf0d1090 R08: 0000000000000000 R09: 0000000000000000
[  336.361095][T17804] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  336.361105][T17804] R13: 0000000000000000 R14: 00007f14d0c85fa0 R15: 00007fffc46e4378
[  336.361121][T17804]  </TASK>
[  336.676177][T17809] loop2: detected capacity change from 0 to 512
[  336.685139][T17813] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  336.692682][T17809] EXT4-fs: Ignoring removed i_version option
[  336.699170][T17813] x_tables: duplicate underflow at hook 2
[  336.699575][T17814] loop3: detected capacity change from 0 to 2048
[  336.711774][T17809] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  336.731852][T17814] EXT4-fs: Ignoring removed nomblk_io_submit option
[  336.738107][T17809] EXT4-fs (loop2): 1 truncate cleaned up
[  336.757777][T17821] loop1: detected capacity change from 0 to 512
[  336.764464][T17821] EXT4-fs: Ignoring removed i_version option
[  336.771388][T17821] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  336.803770][T17814] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  336.811526][T17829] loop4: detected capacity change from 0 to 764
[  336.822878][T17821] EXT4-fs (loop1): 1 truncate cleaned up
[  336.840508][T17835] x_tables: duplicate underflow at hook 2
[  336.905382][T17836] loop0: detected capacity change from 0 to 1024
[  336.930520][T17836] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  336.940601][T17836] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (2136!=20869)
[  336.951780][T17836] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  336.962289][T17836] EXT4-fs error (device loop0): ext4_get_journal_inode:5798: comm syz.0.5384: inode #1: comm syz.0.5384: iget: illegal inode #
[  336.980233][T17836] EXT4-fs (loop0): no journal found
[  336.985642][T17836] EXT4-fs (loop0): can't get journal size
[  337.001743][T17849] loop4: detected capacity change from 0 to 512
[  337.008279][T17836] EXT4-fs (loop0): failed to initialize system zone (-117)
[  337.015531][T17836] EXT4-fs (loop0): mount failed
[  337.031873][T17849] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  337.041376][T17849] EXT4-fs (loop4): orphan cleanup on readonly fs
[  337.047986][T17849] EXT4-fs warning (device loop4): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  337.063960][T17849] EXT4-fs (loop4): Cannot turn on quotas: error -117
[  337.071349][T17849] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5392: bg 0: block 40: padding at end of block bitmap is not set
[  337.100414][T17849] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  337.109987][T17849] EXT4-fs (loop4): 1 truncate cleaned up
[  337.123598][T17858] syz!: rxe_newlink: already configured on team_slave_0
[  337.139048][T17858] x_tables: duplicate underflow at hook 2
[  337.169402][T17849] pim6reg0: tun_chr_ioctl cmd 1074025673
[  337.191023][T17864] loop0: detected capacity change from 0 to 2048
[  337.208684][T17864] ext4 filesystem being mounted at /476/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  337.223067][T17869] __nla_validate_parse: 6 callbacks suppressed
[  337.223084][T17869] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5398'.
[  337.238573][T17869] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5398'.
[  337.263928][T17871] netlink: 24 bytes leftover after parsing attributes in process `syz.0.5399'.
[  337.286907][T17871] loop0: detected capacity change from 0 to 512
[  337.293486][T17871] EXT4-fs: Ignoring removed i_version option
[  337.301466][T17871] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  337.313472][T17871] EXT4-fs (loop0): 1 truncate cleaned up
[  337.331065][T17878] lo: entered allmulticast mode
[  337.336322][T17878] lo: left allmulticast mode
[  337.364748][T17882] loop4: detected capacity change from 0 to 1024
[  337.371905][T17882] EXT4-fs: Ignoring removed bh option
[  337.552782][T17907] loop0: detected capacity change from 0 to 164
[  337.560968][T17907] Unable to read rock-ridge attributes
[  337.600948][T17911] loop3: detected capacity change from 0 to 512
[  337.609075][T17911] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.5414: bg 0: block 35: padding at end of block bitmap is not set
[  337.623777][T17911] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  337.633263][T17911] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.5414: invalid indirect mapped block 4294967295 (level 1)
[  337.647651][T17911] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.5414: invalid indirect mapped block 4294967295 (level 2)
[  337.662348][T17911] EXT4-fs (loop3): 1 truncate cleaned up
[  337.950462][T17924] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  338.030286][T17936] netlink: 24 bytes leftover after parsing attributes in process `syz.3.5425'.
[  338.057152][T17937] loop1: detected capacity change from 0 to 1024
[  338.071702][T17937] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  338.081569][T17937] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (2136!=20869)
[  338.092388][T17936] loop3: detected capacity change from 0 to 512
[  338.093376][T17937] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  338.099109][T17936] EXT4-fs: Ignoring removed i_version option
[  338.110933][T17937] EXT4-fs error (device loop1): ext4_get_journal_inode:5798: comm syz.1.5423: inode #1: comm syz.1.5423: iget: illegal inode #
[  338.116463][T17941] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5427'.
[  338.129430][T17937] EXT4-fs (loop1): no journal found
[  338.137300][T17941] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5427'.
[  338.142589][T17937] EXT4-fs (loop1): can't get journal size
[  338.151648][T17936] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  338.165297][T17937] EXT4-fs (loop1): failed to initialize system zone (-117)
[  338.174696][T17937] EXT4-fs (loop1): mount failed
[  338.178985][T17936] EXT4-fs (loop3): 1 truncate cleaned up
[  338.377921][T17962] loop0: detected capacity change from 0 to 764
[  338.455854][T17973] loop3: detected capacity change from 0 to 512
[  338.509837][T17979] loop0: detected capacity change from 0 to 1024
[  338.516561][T17973] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  338.516892][T17979] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  338.524691][T17973] EXT4-fs (loop3): orphan cleanup on readonly fs
[  338.534356][T17979] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (2136!=20869)
[  338.550934][T17979] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  338.552192][T17973] EXT4-fs warning (device loop3): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  338.561969][T17979] EXT4-fs error (device loop0): ext4_get_journal_inode:5798: comm syz.0.5439: inode #1: comm syz.0.5439: iget: illegal inode #
[  338.590348][T17973] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  338.592866][T17979] EXT4-fs (loop0): no journal found
[  338.598352][T17973] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.5438: bg 0: block 40: padding at end of block bitmap is not set
[  338.602524][T17979] EXT4-fs (loop0): can't get journal size
[  338.619700][T17979] EXT4-fs (loop0): failed to initialize system zone (-117)
[  338.623362][T17973] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  338.639062][T17979] EXT4-fs (loop0): mount failed
[  338.644198][T17973] EXT4-fs (loop3): 1 truncate cleaned up
[  338.677858][T17973] pim6reg0: tun_chr_ioctl cmd 1074025673
[  338.743753][T17991] loop3: detected capacity change from 0 to 128
[  338.774842][T17991] bio_check_eod: 19240 callbacks suppressed
[  338.774862][T17991] syz.3.5444: attempt to access beyond end of device
[  338.774862][T17991] loop3: rw=2049, sector=145, nr_sectors = 896 limit=128
[  338.803232][T17991] syz.3.5444: attempt to access beyond end of device
[  338.803232][T17991] loop3: rw=524288, sector=145, nr_sectors = 224 limit=128
[  338.817434][T17991] syz.3.5444: attempt to access beyond end of device
[  338.817434][T17991] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  338.830749][T17991] syz.3.5444: attempt to access beyond end of device
[  338.830749][T17991] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  338.844152][T17991] syz.3.5444: attempt to access beyond end of device
[  338.844152][T17991] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  338.857550][T17991] syz.3.5444: attempt to access beyond end of device
[  338.857550][T17991] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  338.873011][T17991] syz.3.5444: attempt to access beyond end of device
[  338.873011][T17991] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  338.886285][T17991] syz.3.5444: attempt to access beyond end of device
[  338.886285][T17991] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  338.899576][T17991] syz.3.5444: attempt to access beyond end of device
[  338.899576][T17991] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  338.913171][T17991] syz.3.5444: attempt to access beyond end of device
[  338.913171][T17991] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  339.145016][T18000] loop1: detected capacity change from 0 to 128
[  339.357519][T18011] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[  339.379975][T18011] ipvlan0: entered promiscuous mode
[  339.385247][T18011] ipvlan0: entered allmulticast mode
[  339.491699][T18015] loop0: detected capacity change from 0 to 1024
[  339.500220][T18015] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  339.510146][T18015] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (2136!=20869)
[  339.533589][T18018] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  339.540596][T18015] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  339.540840][T18018] x_tables: duplicate underflow at hook 2
[  339.550997][T18015] EXT4-fs error (device loop0): ext4_get_journal_inode:5798: comm syz.0.5453: inode #1: comm syz.0.5453: iget: illegal inode #
[  339.570530][T18015] EXT4-fs (loop0): no journal found
[  339.575856][T18015] EXT4-fs (loop0): can't get journal size
[  339.584735][T18015] EXT4-fs (loop0): failed to initialize system zone (-117)
[  339.602299][T18015] EXT4-fs (loop0): mount failed
[  339.769410][T18029] netlink: 24 bytes leftover after parsing attributes in process `syz.0.5459'.
[  339.782999][T18027] loop3: detected capacity change from 0 to 512
[  339.938958][T18027] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  339.947522][T18027] EXT4-fs (loop3): orphan cleanup on readonly fs
[  339.954590][T18027] EXT4-fs warning (device loop3): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  340.006652][T18027] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  340.042483][T18027] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.5458: bg 0: block 40: padding at end of block bitmap is not set
[  340.078808][T18027] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  340.149261][T18027] EXT4-fs (loop3): 1 truncate cleaned up
[  340.204895][T18027] pim6reg0: tun_chr_ioctl cmd 1074025673
[  340.234995][T18041] x_tables: duplicate underflow at hook 2
[  340.287926][T18043] loop3: detected capacity change from 0 to 1024
[  340.294797][T18043] EXT4-fs: Ignoring removed orlov option
[  340.300555][T18043] EXT4-fs: Ignoring removed nomblk_io_submit option
[  340.369372][T18052] sg_write: data in/out 122/14 bytes for SCSI command 0x0-- guessing data in;
[  340.369372][T18052]    program syz.3.5465 not setting count and/or reply_len properly
[  340.374182][   T30] kauditd_printk_skb: 898 callbacks suppressed
[  340.374200][   T30] audit: type=1326 audit(1741825763.660:27793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18046 comm="syz.0.5464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f93a8bf4127 code=0x7ffc0000
[  340.417871][   T30] audit: type=1326 audit(1741825763.700:27794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18046 comm="syz.0.5464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f93a8b99359 code=0x7ffc0000
[  340.441605][   T30] audit: type=1326 audit(1741825763.700:27795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18046 comm="syz.0.5464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f93a8bf4127 code=0x7ffc0000
[  340.465207][   T30] audit: type=1326 audit(1741825763.700:27796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18046 comm="syz.0.5464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f93a8b99359 code=0x7ffc0000
[  340.488775][   T30] audit: type=1326 audit(1741825763.700:27797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18046 comm="syz.0.5464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=19 compat=0 ip=0x7f93a8bfd169 code=0x7ffc0000
[  340.512467][   T30] audit: type=1326 audit(1741825763.700:27798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18046 comm="syz.0.5464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f93a8bf4127 code=0x7ffc0000
[  340.536148][   T30] audit: type=1326 audit(1741825763.700:27799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18046 comm="syz.0.5464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f93a8b99359 code=0x7ffc0000
[  340.559856][   T30] audit: type=1326 audit(1741825763.700:27800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18046 comm="syz.0.5464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=19 compat=0 ip=0x7f93a8bfd169 code=0x7ffc0000
[  340.588897][T18054] sg_write: data in/out 122/14 bytes for SCSI command 0x0-- guessing data in;
[  340.588897][T18054]    program syz.3.5466 not setting count and/or reply_len properly
[  340.724445][   T30] audit: type=1326 audit(1741825763.710:27801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18046 comm="syz.0.5464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f93a8bf4127 code=0x7ffc0000
[  340.748313][   T30] audit: type=1326 audit(1741825763.710:27802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18046 comm="syz.0.5464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f93a8b99359 code=0x7ffc0000
[  341.117955][T18074] netlink: 24 bytes leftover after parsing attributes in process `syz.4.5473'.
[  341.140120][T18074] loop4: detected capacity change from 0 to 512
[  341.146616][T18074] EXT4-fs: Ignoring removed i_version option
[  341.153152][T18074] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  341.193706][T18074] EXT4-fs (loop4): 1 truncate cleaned up
[  341.287141][T18081] sg_write: data in/out 122/14 bytes for SCSI command 0x0-- guessing data in;
[  341.287141][T18081]    program syz.0.5476 not setting count and/or reply_len properly
[  341.377812][T18079] loop1: detected capacity change from 0 to 2048
[  341.405640][T18079] ext4 filesystem being mounted at /549/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  341.582337][T18094] loop1: detected capacity change from 0 to 512
[  341.608493][T18094] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  341.622302][T18094] EXT4-fs (loop1): orphan cleanup on readonly fs
[  341.629790][T18094] EXT4-fs warning (device loop1): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  341.645210][T18094] EXT4-fs (loop1): Cannot turn on quotas: error -117
[  341.653054][T18094] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.5480: bg 0: block 40: padding at end of block bitmap is not set
[  341.668830][T18094] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  341.678031][T18094] EXT4-fs (loop1): 1 truncate cleaned up
[  341.726865][T18094] pim6reg0: tun_chr_ioctl cmd 1074025673
[  341.777123][T18112] netlink: 20 bytes leftover after parsing attributes in process `syz.1.5487'.
[  341.867713][T18116] loop3: detected capacity change from 0 to 512
[  341.874286][T18116] EXT4-fs: Ignoring removed i_version option
[  341.880876][T18116] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  341.895112][T18116] EXT4-fs (loop3): 1 truncate cleaned up
[  341.914767][T18119] loop1: detected capacity change from 0 to 764
[  342.120675][T18121] loop3: detected capacity change from 0 to 1024
[  342.138522][T18126] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  342.146833][T18126] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  342.156565][T18121] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  342.166601][T18121] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (2136!=20869)
[  342.191486][T18121] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  342.217890][T18121] EXT4-fs error (device loop3): ext4_get_journal_inode:5798: comm syz.3.5491: inode #1: comm syz.3.5491: iget: illegal inode #
[  342.246962][T18121] EXT4-fs (loop3): no journal found
[  342.252319][T18121] EXT4-fs (loop3): can't get journal size
[  342.266519][T18121] EXT4-fs (loop3): failed to initialize system zone (-117)
[  342.284803][T18121] EXT4-fs (loop3): mount failed
[  342.408134][T18137] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  342.547416][T18137] x_tables: duplicate underflow at hook 2
[  342.720192][T18151] __nla_validate_parse: 1 callbacks suppressed
[  342.720211][T18151] netlink: 24 bytes leftover after parsing attributes in process `syz.0.5502'.
[  342.748281][T18153] 9pnet_fd: p9_fd_create_unix (18153): address too long: ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  342.768420][T18155] loop4: detected capacity change from 0 to 128
[  342.817190][T18153] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5503'.
[  342.905027][T18151] loop0: detected capacity change from 0 to 512
[  342.911418][T18157] loop1: detected capacity change from 0 to 128
[  342.919311][T18151] EXT4-fs: Ignoring removed i_version option
[  342.926102][T18151] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  342.968292][T18151] EXT4-fs (loop0): 1 truncate cleaned up
[  343.069121][T18164] loop0: detected capacity change from 0 to 764
[  343.078207][T18162] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  343.105460][T18162] x_tables: duplicate underflow at hook 2
[  343.207916][T18168] ipvlan1: entered promiscuous mode
[  343.213185][T18168] ipvlan1: entered allmulticast mode
[  343.292516][T18176] ipvlan2: entered promiscuous mode
[  343.297979][T18176] ipvlan2: entered allmulticast mode
[  343.359955][T18181] loop3: detected capacity change from 0 to 128
[  343.776806][T18181] bio_check_eod: 40575 callbacks suppressed
[  343.776825][T18181] syz.3.5517: attempt to access beyond end of device
[  343.776825][T18181] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  343.778972][T18157] syz.1.5506: attempt to access beyond end of device
[  343.778972][T18157] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[  343.808395][T18181] syz.3.5517: attempt to access beyond end of device
[  343.808395][T18181] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  343.834604][T18196] FAULT_INJECTION: forcing a failure.
[  343.834604][T18196] name failslab, interval 1, probability 0, space 0, times 0
[  343.842522][T18181] syz.3.5517: attempt to access beyond end of device
[  343.842522][T18181] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  343.847685][T18196] CPU: 1 UID: 0 PID: 18196 Comm: syz.0.5522 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  343.847721][T18196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  343.847738][T18196] Call Trace:
[  343.847752][T18196]  <TASK>
[  343.847764][T18196]  dump_stack_lvl+0xf2/0x150
[  343.847802][T18196]  dump_stack+0x15/0x1a
[  343.847829][T18196]  should_fail_ex+0x24a/0x260
[  343.847874][T18196]  should_failslab+0x8f/0xb0
[  343.847933][T18196]  kmem_cache_alloc_node_noprof+0x59/0x320
[  343.847964][T18196]  ? __alloc_skb+0x10b/0x310
[  343.847993][T18196]  __alloc_skb+0x10b/0x310
[  343.848070][T18196]  netlink_alloc_large_skb+0xad/0xe0
[  343.848156][T18196]  netlink_sendmsg+0x3b4/0x6e0
[  343.848204][T18196]  ? __pfx_netlink_sendmsg+0x10/0x10
[  343.848258][T18196]  __sock_sendmsg+0x140/0x180
[  343.848300][T18196]  ____sys_sendmsg+0x326/0x4b0
[  343.848338][T18196]  __sys_sendmsg+0x19d/0x230
[  343.848387][T18196]  __x64_sys_sendmsg+0x46/0x50
[  343.848446][T18196]  x64_sys_call+0x2734/0x2dc0
[  343.848481][T18196]  do_syscall_64+0xc9/0x1c0
[  343.848537][T18196]  ? clear_bhb_loop+0x55/0xb0
[  343.848572][T18196]  ? clear_bhb_loop+0x55/0xb0
[  343.848608][T18196]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.848713][T18196] RIP: 0033:0x7f93a8bfd169
[  343.848734][T18196] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  343.848756][T18196] RSP: 002b:00007f93a7267038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  343.848779][T18196] RAX: ffffffffffffffda RBX: 00007f93a8e15fa0 RCX: 00007f93a8bfd169
[  343.848865][T18196] RDX: 0000000000040000 RSI: 0000400000000040 RDI: 0000000000000004
[  343.848880][T18196] RBP: 00007f93a7267090 R08: 0000000000000000 R09: 0000000000000000
[  343.848895][T18196] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  343.848945][T18196] R13: 0000000000000000 R14: 00007f93a8e15fa0 R15: 00007fff1fb64fa8
[  343.848968][T18196]  </TASK>
[  344.001287][T18200] loop0: detected capacity change from 0 to 2048
[  344.007043][T18181] syz.3.5517: attempt to access beyond end of device
[  344.007043][T18181] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  344.081610][T18181] syz.3.5517: attempt to access beyond end of device
[  344.081610][T18181] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  344.083126][T18202] syz!: rxe_newlink: already configured on team_slave_0
[  344.094979][T18181] syz.3.5517: attempt to access beyond end of device
[  344.094979][T18181] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  344.115333][T18181] syz.3.5517: attempt to access beyond end of device
[  344.115333][T18181] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  344.144308][T18204] x_tables: duplicate underflow at hook 2
[  344.159852][T18200] ext4 filesystem being mounted at /511/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  344.181988][T18181] syz.3.5517: attempt to access beyond end of device
[  344.181988][T18181] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  344.227150][T18181] syz.3.5517: attempt to access beyond end of device
[  344.227150][T18181] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  344.533784][T18217] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  344.574385][T18217] x_tables: duplicate underflow at hook 2
[  344.853306][T18226] loop0: detected capacity change from 0 to 128
[  344.939259][T18234] loop1: detected capacity change from 0 to 2048
[  344.976045][T18241] loop0: detected capacity change from 0 to 764
[  344.983468][T18230] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5534'.
[  344.997128][T18234] EXT4-fs: Ignoring removed nomblk_io_submit option
[  345.068523][T18234] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5536'.
[  345.088595][T18234] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  345.180409][T18252] syz!: rxe_newlink: already configured on team_slave_0
[  345.197177][T18252] x_tables: duplicate underflow at hook 2
[  345.225675][T18254] loop0: detected capacity change from 0 to 1024
[  345.287406][T18254] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  345.297380][T18254] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (2136!=20869)
[  345.334960][T18259] netlink: 24 bytes leftover after parsing attributes in process `syz.3.5544'.
[  345.356995][T18259] loop3: detected capacity change from 0 to 512
[  345.363576][T18259] EXT4-fs: Ignoring removed i_version option
[  345.375325][T18261] loop1: detected capacity change from 0 to 1024
[  345.382711][T18259] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  345.382782][T18261] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  345.402429][T18261] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (2136!=20869)
[  345.415440][   T30] kauditd_printk_skb: 623 callbacks suppressed
[  345.415458][   T30] audit: type=1326 audit(1741825768.700:28425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18244 comm="syz.4.5539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f14d0a6d169 code=0x7ffc0000
[  345.445796][   T30] audit: type=1326 audit(1741825768.700:28426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18244 comm="syz.4.5539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14d0a6d169 code=0x7ffc0000
[  345.469429][   T30] audit: type=1326 audit(1741825768.700:28427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18244 comm="syz.4.5539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14d0a6d169 code=0x7ffc0000
[  345.493290][   T30] audit: type=1326 audit(1741825768.700:28428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18244 comm="syz.4.5539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f14d0a6d169 code=0x7ffc0000
[  345.517487][   T30] audit: type=1326 audit(1741825768.700:28429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18244 comm="syz.4.5539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14d0a6d169 code=0x7ffc0000
[  345.546873][T18254] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  345.557363][T18261] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  345.568407][T18259] EXT4-fs (loop3): 1 truncate cleaned up
[  345.587257][T18254] EXT4-fs error (device loop0): ext4_get_journal_inode:5798: comm syz.0.5541: inode #1: comm syz.0.5541: iget: illegal inode #
[  345.601729][T18261] EXT4-fs error (device loop1): ext4_get_journal_inode:5798: comm syz.1.5545: inode #1: comm syz.1.5545: iget: illegal inode #
[  345.628839][T18254] EXT4-fs (loop0): no journal found
[  345.634201][T18254] EXT4-fs (loop0): can't get journal size
[  345.657915][T18261] EXT4-fs (loop1): no journal found
[  345.663148][T18261] EXT4-fs (loop1): can't get journal size
[  345.695900][T18254] EXT4-fs (loop0): failed to initialize system zone (-117)
[  345.707112][T18254] EXT4-fs (loop0): mount failed
[  345.728983][T18261] EXT4-fs (loop1): failed to initialize system zone (-117)
[  345.736376][T18261] EXT4-fs (loop1): mount failed
[  345.884009][T18269] loop0: detected capacity change from 0 to 128
[  345.949533][   T30] audit: type=1326 audit(1741825768.830:28430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18244 comm="syz.4.5539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f14d0a6d169 code=0x7ffc0000
[  345.973286][   T30] audit: type=1326 audit(1741825768.830:28431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18244 comm="syz.4.5539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14d0a6d169 code=0x7ffc0000
[  345.996994][   T30] audit: type=1326 audit(1741825768.830:28432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18244 comm="syz.4.5539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14d0a6d169 code=0x7ffc0000
[  346.020756][   T30] audit: type=1326 audit(1741825768.830:28433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18244 comm="syz.4.5539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f14d0a6d169 code=0x7ffc0000
[  346.044362][   T30] audit: type=1326 audit(1741825768.830:28434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18244 comm="syz.4.5539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14d0a6d169 code=0x7ffc0000
[  346.185136][T18281] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5553'.
[  346.243873][T18274] loop3: detected capacity change from 0 to 1024
[  346.294337][T18274] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  346.304211][T18274] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (2136!=20869)
[  346.351853][T18295] loop4: detected capacity change from 0 to 2048
[  346.358611][T18274] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  346.374142][T18295] EXT4-fs: Ignoring removed nomblk_io_submit option
[  346.383976][T18274] EXT4-fs error (device loop3): ext4_get_journal_inode:5798: comm syz.3.5550: inode #1: comm syz.3.5550: iget: illegal inode #
[  346.400683][T18274] EXT4-fs (loop3): no journal found
[  346.405968][T18274] EXT4-fs (loop3): can't get journal size
[  346.416288][T18295] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5557'.
[  346.426156][T18295] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  346.456299][T18274] EXT4-fs (loop3): failed to initialize system zone (-117)
[  346.467305][T18301] netlink: 20 bytes leftover after parsing attributes in process `+}[@'.
[  346.509617][T18274] EXT4-fs (loop3): mount failed
[  346.651240][T18321] netlink: 24 bytes leftover after parsing attributes in process `syz.0.5569'.
[  346.692863][T18321] loop0: detected capacity change from 0 to 512
[  346.717080][T18321] EXT4-fs: Ignoring removed i_version option
[  346.732434][T18327] loop3: detected capacity change from 0 to 2048
[  346.746990][T18321] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  346.764319][T18321] EXT4-fs (loop0): 1 truncate cleaned up
[  346.775117][T18327] EXT4-fs: Ignoring removed nomblk_io_submit option
[  346.843841][T18334] netlink: 20 bytes leftover after parsing attributes in process `+}[@'.
[  346.869378][T18327] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  347.055018][T18353] loop2: detected capacity change from 0 to 7
[  347.069409][T18355] lo: entered allmulticast mode
[  347.441337][T18368] x_tables: duplicate underflow at hook 2
[  347.698643][T18376] loop4: detected capacity change from 0 to 1024
[  347.705779][T18376] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  347.715637][T18376] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (2136!=20869)
[  347.743093][T18376] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  347.785452][T18376] EXT4-fs error (device loop4): ext4_get_journal_inode:5798: comm syz.4.5590: inode #1: comm syz.4.5590: iget: illegal inode #
[  347.808047][T18379] __nla_validate_parse: 4 callbacks suppressed
[  347.808069][T18379] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5592'.
[  347.834408][T18376] EXT4-fs (loop4): no journal found
[  347.839791][T18376] EXT4-fs (loop4): can't get journal size
[  347.881634][T18379] loop1: detected capacity change from 0 to 512
[  347.897062][T18379] EXT4-fs: Ignoring removed i_version option
[  347.931013][T18379] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  347.966904][ T3378] ==================================================================
[  347.967854][T18376] EXT4-fs (loop4): failed to initialize system zone (-117)
[  347.975048][ T3378] BUG: KCSAN: data-race in __filemap_add_folio / nr_blockdev_pages
[  347.990229][ T3378] 
[  347.992444][T18376] EXT4-fs (loop4): mount failed
[  347.993124][ T3378] read-write to 0xffff8881004c0bb0 of 8 bytes by task 18376 on cpu 1:
[  348.006499][ T3378]  __filemap_add_folio+0x430/0x6f0
[  348.011791][ T3378]  filemap_add_folio+0x9c/0x1b0
[  348.016689][ T3378]  __filemap_get_folio+0x32f/0x630
[  348.021961][ T3378]  bdev_getblk+0x173/0x3b0
[  348.026411][ T3378]  __ext4_get_inode_loc+0x2f7/0x940
[  348.031670][ T3378]  __ext4_iget+0x306/0x1e20
[  348.036478][ T3378]  ext4_fill_super+0x2c3a/0x3630
[  348.041545][ T3378]  get_tree_bdev_flags+0x29f/0x310
[  348.046681][ T3378]  get_tree_bdev+0x1f/0x30
[  348.051153][ T3378]  ext4_get_tree+0x1c/0x30
[  348.055640][ T3378]  vfs_get_tree+0x56/0x1e0
[  348.060116][ T3378]  do_new_mount+0x227/0x690
[  348.064644][ T3378]  path_mount+0x49b/0xb30
[  348.069003][ T3378]  __se_sys_mount+0x27f/0x2d0
[  348.073728][ T3378]  __x64_sys_mount+0x67/0x80
[  348.078364][ T3378]  x64_sys_call+0x2c84/0x2dc0
[  348.083116][ T3378]  do_syscall_64+0xc9/0x1c0
[  348.087664][ T3378]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.093600][ T3378] 
[  348.095972][ T3378] read to 0xffff8881004c0bb0 of 8 bytes by task 3378 on cpu 0:
[  348.103656][ T3378]  nr_blockdev_pages+0x7c/0xd0
[  348.108453][ T3378]  si_meminfo+0x87/0xd0
[  348.112731][ T3378]  update_defense_level+0x49/0x5b0
[  348.117876][ T3378]  defense_work_handler+0x1f/0x80
[  348.123008][ T3378]  process_scheduled_works+0x4db/0xa20
[  348.128580][ T3378]  worker_thread+0x51d/0x6f0
[  348.133193][ T3378]  kthread+0x4ae/0x520
[  348.137380][ T3378]  ret_from_fork+0x4b/0x60
[  348.141836][ T3378]  ret_from_fork_asm+0x1a/0x30
[  348.146719][ T3378] 
[  348.149141][ T3378] value changed: 0x0000000000000001 -> 0x0000000000000002
[  348.156263][ T3378] 
[  348.158589][ T3378] Reported by Kernel Concurrency Sanitizer on:
[  348.164745][ T3378] CPU: 0 UID: 0 PID: 3378 Comm: kworker/0:3 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  348.175536][ T3378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  348.185612][ T3378] Workqueue: events_long defense_work_handler
[  348.191748][ T3378] ==================================================================
[  348.201362][T18379] EXT4-fs (loop1): 1 truncate cleaned up
[  348.225818][T18384] loop0: detected capacity change from 0 to 128