last executing test programs:

5.029866375s ago: executing program 1 (id=5871):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[], 0x48)
ioctl$FS_IOC_GETVERSION(r0, 0x80087601, &(0x7f00000001c0))
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000500)={0x0, &(0x7f0000000380)=""/159, &(0x7f0000000240), &(0x7f0000000600)="6c090938a6c50b0490e7e80903b53ade80b1c9125075d8ccbe49dd6f0a0fe6df8f437e92ace870e708026d38d836bb7ed9afb8efe3e0792c169dedd69d9afb3de49e52108defeec7f4dd86ccef7d75a7d9ece19df83e4e9b8f350a92421e811b0db0040096c6ba983f0f54caee90607accb3f9910c17c158778dda1b44b75dfc32721e0795bb639b16ce145ae4fc555a", 0x0, r0}, 0x38)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x100000000}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000c80)='./file1\x00', 0x210000, &(0x7f00000011c0)={[{@acl}, {@barrier}, {@minixdf}, {@noblock_validity}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {}, {@debug}, {@acl}, {@noinit_itable}]}, 0xfc, 0x587, &(0x7f0000002100)="$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")
chdir(&(0x7f0000000140)='./file0\x00')
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009e0000000b"], 0x50)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.stat\x00', 0x275a, 0x0)

4.835552503s ago: executing program 0 (id=5874):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
r1 = socket(0x10, 0x3, 0x9)
sendmsg$NFT_BATCH(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000033c0)=ANY=[@ANYBLOB="140000001000010000"], 0x7a60}}, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$TOKEN_CREATE(0x24, &(0x7f00000000c0), 0x8)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000400000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095", @ANYRESOCT=0x0], &(0x7f0000000000)='GPL\x00', 0x8000000, 0x0, 0x0, 0x41000, 0x30, '\x00', 0x0, @fallback=0x18d213b808b4410, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sys_enter\x00', r3}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000500)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0xf, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
inotify_init1(0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0)
unshare(0x22020400)
poll(&(0x7f0000000000), 0x20000000000000b5, 0x9)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=@newsa={0x160, 0x10, 0x713, 0x70bd26, 0x0, {{@in6=@ipv4={'\x00', '\xff\xff', @multicast2}, @in=@dev={0xac, 0x14, 0x14, 0x13}, 0x4e22, 0x1, 0x0, 0x3, 0x2, 0x0, 0x0, 0x3a, 0x0, 0xffffffffffffffff}, {@in6=@remote, 0x0, 0x32}, @in6=@local, {0x0, 0x0, 0x8, 0xa, 0x6, 0x0, 0x0, 0x3}, {0x0, 0x0, 0x2, 0xfffffffffffffff8}, {0xc, 0x5, 0x2}, 0x70bd29, 0x0, 0x2, 0x1, 0x0, 0x28}, [@algo_aead={0x68, 0x12, {{'rfc4543(gcm(aes))\x00'}, 0xe0, 0x80, "316f74eeac053deb73fc018493cc121927a9bca207141b9a451c00aa"}}, @tfcpad={0x8, 0x16, 0x4}]}, 0x160}, 0x1, 0x0, 0x0, 0xc0}, 0x0)
lremovexattr(0x0, 0x0)
sendmsg$nl_xfrm(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000a00)=ANY=[@ANYBLOB="c4010000100001000000000800000000ac1414aa000000000000000000000000000000000000000000000000000000000001000000000000000020000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ffffffff0000000000000000000000000000000033000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffffffffffff000000803f00000000000000000000000000000001000000000000004000000010000000090000000400000002000000000000000a0002"], 0x1c4}}, 0x0)

4.767554229s ago: executing program 0 (id=5875):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x40)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
r4 = socket(0x2, 0x2, 0x1)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r5=>0x0})
r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="1800000004679100000000000000000095"], &(0x7f0000000040)='GPL\x00', 0x5, 0x0, 0x0, 0x40f00, 0x40, '\x00', r5, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xff}, 0x94)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r8, &(0x7f0000000500)={0xa, 0x4e20, 0xffffffff, @empty, 0x4}, 0x1c)
setsockopt$SO_ATTACH_FILTER(r8, 0x1, 0x1a, &(0x7f0000000280)={0x1, &(0x7f00000000c0)=[{0x6, 0x9, 0xc, 0xb6}]}, 0x10)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @rand_addr=0x64010101, @dev={0xac, 0x14, 0x14, 0x21}}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424d", "bcfd56f1373669caaa2f19935e6996c7096ffe4f3a4745a8f762b964", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3}, 0x94)
ioctl$HIDIOCINITREPORT(r3, 0x4805, 0x0)
r9 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7, 0x0, 0x0, 0x40f00, 0x5, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r9, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r10 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r10, 0x8933, &(0x7f0000000280)={'batadv_slave_1\x00', <r11=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {0x9, 0xb}}}, 0x24}}, 0x800)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r10, 0x8933, &(0x7f0000000080)={'wg0\x00', <r12=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r6, r12, 0x25, 0x2, @void}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x21891d, &(0x7f0000000500)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800000}}, {@noblock_validity}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x200000}}, {@resgid}, {@noinit_itable}, {@quota}, {@noauto_da_alloc}, {@sysvgroups}, {@resgid, 0x32}]}, 0x1, 0x4e8, &(0x7f0000000f40)="$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")

4.511320023s ago: executing program 1 (id=5876):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x2042, 0x0)
ioctl$AUTOFS_IOC_FAIL(r1, 0x4c80, 0x7000000)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x19, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xc, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r2, 0x0, 0xb}, 0x18)
openat(0xffffffffffffff9c, &(0x7f00000002c0)='./cgroup.cpu/cgroup.procs\x00', 0xe02, 0x1c0)
close_range(r0, 0xffffffffffffffff, 0x0)

4.191814862s ago: executing program 1 (id=5878):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000600)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020a07b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a999850000000400000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x1e00, 0x6f, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4ff}, 0x94)
r1 = syz_io_uring_setup(0x5c6, &(0x7f0000000140)={0x0, 0xe357, 0x0, 0x4, 0x1000000}, &(0x7f00000001c0)=<r2=>0x0, &(0x7f0000000580)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x18, 0x0, 0x0, 0x4, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x4})
io_uring_enter(r1, 0x6e2, 0x3900, 0x1, 0x0, 0xe00)
rt_sigsuspend(&(0x7f00000002c0)={[0x225c17d03]}, 0x8)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000700)='kfree\x00', r0}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(0xffffffffffffffff, 0x40a85321, &(0x7f0000000580)={{0x80}, 'port0\x00', 0x50, 0x100c75, 0x7, 0x4, 0x1ff, 0x3, 0x8})
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r6}, 0x38)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
getpid()
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r7, 0x0, 0x3}, 0x18)
r8 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000580)={&(0x7f0000000740)="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", &(0x7f0000000380)=""/206, &(0x7f00000002c0)="03d89b42599702a0e54f3cd61988257aad478ab8d3f1651073f13b7ebaad01ad400bc6385a9f307aa4361d2274c768abd9d5a1af0ed485e97a1b6221fed5a1b2bb2b7a14c925972162f14867aa3140295332b3f9f6a78b29e113a6ed1413b4f5", &(0x7f0000000040)="67e163a118d19d3b9fa5f99a2e308598c475735e81ae4092408336a976b073abc90b2a7316e29e39f520", 0xa, r8}, 0x38)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
close_range(r8, 0xffffffffffffffff, 0x0)

3.162810098s ago: executing program 1 (id=5882):
syz_open_procfs(0x0, &(0x7f0000000080)='net/tcp\x00')
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
kexec_load(0x10001, 0x7, &(0x7f0000001200)=[{&(0x7f0000000640)="48edc12f9f91c126ffac91f53a6fcf145cf92e77346cf0f236c03bac8059dc25ac4a1bb1ce27c5c79dabbefb90f34175d07a2909ce522d4bf6e8d95c4177aacbfba3218ea9330592cf5c8e89c77c3c2ddc4e42a7bd4de007cd9a5d5ffcb0d0c91587465913ec929285e20860ab5d72ca80280a2d1f5a41ae75618bca4cc8f5034135637c934ab066c781933c5a04638ec27fb1c3de993b7eaa02c0379a97dfd18c35c4c5ffa354ddb87ad02acb62803a3ae2d198b80055165e290e432c25a93867ba640fa8292b7c761788d9078dea2c1985e89b2b8e35", 0xd7, 0x8f4, 0x101}, {&(0x7f0000000740)="218d58a7713545e5343ec881c0da76d1462ba8d9b81fb496255e7faa92383e64ba88300c50f470a29703db0816d2f72c2e4c3c54fb4b0f0e67fa58ebeb3356051cb9cf40a24fd54201ff1283da60d7d690bd5472a575c604b7a82fcacb9ddf29320bc2412bc9ca9df2a794666e5397b8cdc01d8c4b4e3eb6915f4cab28d98dfd39cf9d8e2823f5c329b5dc84a4f454a18fbcfece684e6fee74c50d5368903db4fb082d5f6a732a03485e62ea0a63a4350db453a9c8c474ea5e1a434cd262d4f89b75147ba8fb1a23043463befcdc385e0bf26f05707ba95780606ad94fd65899fd6c258d56a30490dcec5b13249f2ffc5c4c", 0xf2}, {&(0x7f00000001c0), 0x0, 0x0, 0x72}, {&(0x7f0000000300)="4a95198bc7b22f244268a186ce1f6deab85dc19e3602bade6c832ad8dd2c744ae24f4db66b64cc8946e15a561e99e76625d53b3031362677f5a0bf36e07dc554da92cf8dce68216076ded89b25ff9ea166a371268812c335c20b84eaf2009e7f539aeed77050256ea2e6e068c405ff14beb7795112c6ba1e52138a8dc4df94ca7f34f90a4a0e81001a6f74d08d53ccba1c3f3b7afa5e5b8fe4beefee1621bbbe89abe4e189a1e21df6ffec7ff1933d6936046a43dd714401a1c6ac5ceb", 0xbd, 0x6, 0x2}, {&(0x7f0000000980)="e3398c7bbcd2e86ecbe4edfbcfb0cdee73d8a86b97f8aa18060e5ff7f0da1f9908d2114fd7a66f5095c3dee0721b96631f9ad584f5e4ea4466fa7565f2acab455c72c8355b69d8a49b0310eab59215b05e7d4b721e861fc2011687d0e262286417d43e8ee786559fc75867d58f72f1b6b5606742f24a281d3ed0dc3067df3ae220230834194529b87567eb77ff04ad0695b5a65a5bff7570e7924c4bdfa7c6595b218b2f7c2b3e0239dbcafb2765c0c706a5c1e87f96fd2c420af4cd4c5ed5c8854c6b7679f73699e6390339", 0xcc, 0x8, 0x6}, {&(0x7f0000000400)="a24bd994ad20702560478ceeb9bab401e5f1946d260d536c80109d9352ee442bf636f721f68e2baffb92", 0x2a, 0x9, 0x9}, {&(0x7f0000000a80)="fb976e1cf699151120b1268afe87e2bb631e1fbc6339e6fcd428355e130f3bbf62630422e26635fb593a4aa45e491688a8378f80c139de225757b9e3dfdc0ff10eedc6ce4990d6863137a236af8e72155a313c6d30bfe724c2f5deb9bf6d3c14278667b840033051b286b551fc138e27678f03c90c89916e94fb327891e48bed44ce6a207491b873696903734d8ef3b32a2e28ef6f373b7479c9e92dcea831824e9a8633dd85f9695bf17620528692355ff3ee07a960fce08266fd23017e3b260473d5", 0xc3, 0x4, 0x7}], 0x3e0000)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r1, &(0x7f0000004200)='t', 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)

2.967535905s ago: executing program 0 (id=5884):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10000, &(0x7f0000000080)={[{@quota}, {@delalloc}, {@data_err_ignore}, {@debug}, {@usrjquota}, {@bsdgroups}]}, 0x1, 0x4e8, &(0x7f00000016c0)="$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")
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES16, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r0 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1f, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r2}, 0x10)
socket$inet(0x10, 0x3, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@gettclass={0x24, 0x2a, 0x20, 0x70bd2d, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0xf, 0xffe0}, {0x1}, {0x1}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r4}, 0x10)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000c40)={'wpan1\x00'})
syz_genetlink_get_family_id$nl802154(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_MAX_CSMA_BACKOFFS(r5, 0x0, 0x4000000)
r6 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r6}, &(0x7f0000bbdffc)=<r7=>0x0)
timer_settime(r7, 0x0, &(0x7f0000000400)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x2082)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000001700000001"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r9}, 0x18)

2.936302169s ago: executing program 2 (id=5885):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x3, 0x1d459d, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x183, 0x6}, 0x6025, 0x4005, 0xb, 0x0, 0x1, 0x1, 0xb, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_elf32(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="7f454c4604070003070000000000000002000300160000000903000038007e0000fcffff050000000000000000000300000008000000f30000007f00000004000000040020000c0000000004000000000000ffdd"], 0x58)
close(0xffffffffffffffff)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x13, &(0x7f0000000240)=ANY=[@ANYBLOB], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000300)='kmem_cache_free\x00', r0}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
open(0x0, 0x1050c1, 0x170)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xb, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000003000000850000000600000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r1 = syz_open_dev$sg(&(0x7f00000002c0), 0x5d7000000000000, 0x2402)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x34008814}, 0x20008804)
read(r1, &(0x7f0000000040)=""/142, 0x3f)

2.611211959s ago: executing program 3 (id=5887):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x3}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x3, 0x8, &(0x7f0000000940)=ANY=[@ANYBLOB="1809000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000100000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

2.605783079s ago: executing program 1 (id=5888):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
openat(0xffffffffffffff9c, &(0x7f00000002c0)='./cgroup/pids.max\x00', 0xc8442, 0x80)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000010000000a00000008"], 0x48)
prctl$PR_SET_NAME(0xf, &(0x7f0000000980)='\xff\x00\x00\x00\x00\x00\x000`\x14\x99\x06\xc0\x7fs\x00\t\x14\x17\xc3\xf5\xc9\v\x85\xe7\x00\x00\x18\x88\x06\x94\x98\xa9\xe7\x1c\x8a\x89\xdc\xcc\xf7L\xbd%\xc3!\x0e\x91S\xb2~8\"\xe2\xed\xbf\x12\x1a\\6p\'p\xef\x1a\n\x99\x12\xe8\'\x1c\x97M\xa5N\xd9\xbeV&\x1c2K?\x95\xd9\"\xbe\x050+\xca\xea\'\xe9)\xfe\xeb\x9c\xb5\xa0F`\xe4D\x10F\x831\xec\\v\xf0\xab_M\b\x03\xc3\n\x89\x01E`\xd35Q2\xecZz\xdc\x065p\x1c\x8f\x9b\x99IGXO\x00\x00\v\xed\xb0\xc5\xd4\xc7,\x1a\xb3}CMOO\x8a\xa8kh\x7f\x05c\xfc\xebb\xc8\xa2\xa9\xbf\xb3\x9b\xafE\xbd\xc5\xdc\xde\xbe_')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x4}}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x4, &(0x7f0000000180)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x23}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r3}, 0x18)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x3000003, 0x200000006c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet_udp(0x2, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x18)
syz_clone(0x40800300, 0x0, 0x0, 0x0, 0x0, 0x0)

2.584123371s ago: executing program 3 (id=5889):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r1=>0x0}, &(0x7f0000cab000)=0xc)
setregid(r1, 0x0)
setregid(0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000080850000002d0000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff0001}, 0x94)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
r4 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000180)={'bond0\x00', <r5=>0x0})
sendmsg$nl_xfrm(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)=@newsa={0x15c, 0x10, 0x713, 0x0, 0x25dfdbfc, {{@in=@multicast1, @in6=@mcast2, 0x4, 0xb6e, 0x4e21, 0x2, 0x0, 0x0, 0x0, 0x21, 0x0, 0xee00}, {@in6=@private1, 0x4d6, 0x32}, @in=@multicast2, {0x0, 0x0, 0x0, 0x8000000000000001, 0xffffffff00000001, 0x0, 0x80000001, 0x543}, {0x4, 0x7fffffffffffffff, 0x0, 0xfffffffffffffffd}, {}, 0x70bd2c, 0x3500, 0x2, 0x0, 0x0, 0x50}, [@algo_aead={0x60, 0x12, {{'rfc4106(gcm(aes))\x00'}, 0xa0, 0x60, "210466d38547aa140db9a200000000c538c7cb7a"}}, @offload={0xc, 0x1c, {r5, 0x3}}]}, 0x15c}, 0x1, 0x0, 0x0, 0x880}, 0x2014)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={@ifindex=r5, 0x1, 0x0, 0x7fffffff, &(0x7f0000000040)=[0x0, 0x0], 0x2, 0x0, &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0], &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, 0x40)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a09000000000000000000020000000900020073797a310000000008000440000000000900010073797a30000000000800034000000009"], 0x64}}, 0x0)

2.467000372s ago: executing program 3 (id=5890):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x3}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffff05850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a00)={&(0x7f0000000d00)='sched_switch\x00', r2}, 0x10)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r3, 0x107, 0xd, &(0x7f0000000000)=@req3={0x410000, 0x100000001, 0x210000, 0x1, 0xa, 0x0, 0xffffffff}, 0x1c)
close(r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xec}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
inotify_init1(0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x3, 0x8, &(0x7f0000000940)=ANY=[@ANYBLOB="1809000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000100000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1.918868123s ago: executing program 0 (id=5892):
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x30, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x46)
openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
syz_io_uring_setup(0xac9, &(0x7f00000002c0)={0x0, 0x3594, 0x2, 0x1103, 0x21e}, &(0x7f0000000240)=<r0=>0x0, &(0x7f0000000340))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r0, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000140)=ANY=[@ANYBLOB="9feb0100180000000000000024000000240000000800000004000000000000070000000003000000000000080100000000000000000000090200000000002e2e5f"], 0x0, 0x44}, 0x20)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000004c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x4, '\x00', 0x0, r2, 0x3, 0x1}, 0x50)
setsockopt$sock_attach_bpf(r1, 0x1, 0x4c, &(0x7f0000000000), 0x4)
recvmsg$unix(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x2000)
ioctl$TUNSETNOCSUM(r3, 0xff0a, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000140)='./bus\x00', 0x2008002, &(0x7f0000000300)={[{@norecovery}, {@nodelalloc}, {@dioread_nolock}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@sysvgroups}, {@resuid}, {@init_itable}, {@quota}]}, 0x1, 0x565, &(0x7f0000000f40)="$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")
symlink(&(0x7f0000000040)='.\x00', &(0x7f0000000100)='./file0\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000080)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x399446c, 0x0, 0x1, 0x0, &(0x7f0000000080))
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
renameat2(r4, &(0x7f0000000780)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r4, &(0x7f00000020c0)='./file0\x00', 0x2)

1.910763133s ago: executing program 2 (id=5893):
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00'}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = syz_io_uring_setup(0x4b5, &(0x7f0000000640)={0x0, 0x86e1, 0x400, 0x100008, 0x29b}, &(0x7f0000010080), &(0x7f0000000300))
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000002680)=[{0x0}, {&(0x7f00000001c0)=""/158, 0x9e}], 0x2)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r0, 0x10, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000540)=[{0x0}, {&(0x7f0000000340), 0xa002a0}], &(0x7f00000005c0), 0x2}, 0x20)

1.19168873s ago: executing program 2 (id=5895):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000640)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x1ff, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x5}, 0x50)

1.129783455s ago: executing program 2 (id=5896):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0xfd, 0x0, 0x7ffc0002}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500000072000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0x2}, 0x18)
syz_read_part_table(0x1055, &(0x7f0000001080)="$eJzszzGKwkAYBeC3JDubsEXAS9jYiqWnsPcoXsFrWHk+QSKTsfAEkuL7iv/9MzwGJqzCtcX2nv1j83E/vPO5zK6OcuzrOmRO8p+pFfqMNX7y287zX3JYtnN9oyu7JJcxmfqUVik53b7yOQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABYuVcAAAD//3TbCLM=")

967.37263ms ago: executing program 3 (id=5899):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="040000000400000004000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x3}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x3, 0x8, &(0x7f0000000940)=ANY=[@ANYBLOB="1809000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000100000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

959.636681ms ago: executing program 4 (id=5900):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r1=>0x0}, &(0x7f0000cab000)=0xc)
setregid(r1, 0x0)
setregid(0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000080850000002d0000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff0001}, 0x94)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
r4 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000180)={'bond0\x00', <r5=>0x0})
sendmsg$nl_xfrm(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)=@newsa={0x15c, 0x10, 0x713, 0x0, 0x25dfdbfc, {{@in=@multicast1, @in6=@mcast2, 0x4, 0xb6e, 0x4e21, 0x2, 0x0, 0x0, 0x0, 0x21, 0x0, 0xee00}, {@in6=@private1, 0x4d6, 0x32}, @in=@multicast2, {0x0, 0x0, 0x0, 0x8000000000000001, 0xffffffff00000001, 0x0, 0x80000001, 0x543}, {0x4, 0x7fffffffffffffff, 0x0, 0xfffffffffffffffd}, {}, 0x70bd2c, 0x3500, 0x2, 0x0, 0x0, 0x50}, [@algo_aead={0x60, 0x12, {{'rfc4106(gcm(aes))\x00'}, 0xa0, 0x60, "210466d38547aa140db9a200000000c538c7cb7a"}}, @offload={0xc, 0x1c, {r5, 0x3}}]}, 0x15c}, 0x1, 0x0, 0x0, 0x880}, 0x2014)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={@ifindex=r5, 0x1, 0x0, 0x7fffffff, &(0x7f0000000040)=[0x0, 0x0], 0x2, 0x0, &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0], &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, 0x40)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a09000000000000000000020000000900020073797a310000000008000440000000000900010073797a30000000000800034000000009"], 0x64}}, 0x0)

947.216642ms ago: executing program 3 (id=5901):
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x183341, 0x0)
pipe2$9p(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWSET={0x54, 0x12, 0xa, 0x9, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_SET_GC_INTERVAL={0x8, 0xc, 0x1, 0x0, 0x5}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_SET_POLICY={0x8}]}], {0x14}}, 0x7c}}, 0x0)
sendmsg$NFT_MSG_GETOBJ(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000002240)={&(0x7f0000002200)=ANY=[@ANYBLOB="28000000150a010200000000000000000000002008000340000001"], 0x28}, 0x1, 0x0, 0x0, 0x20040011}, 0x24040808)
r3 = syz_open_dev$loop(&(0x7f0000000000), 0x200000000000b, 0x101082)
ioctl$BLKPG(r3, 0x1269, &(0x7f0000001780)={0x1, 0x0, 0x98, &(0x7f00000016c0)={0x2000000000004, 0x4, 0xd}})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
r5 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r5, &(0x7f0000000040), 0x10)
listen(r5, 0x5)
r6 = socket(0x28, 0x5, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
r8 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r8, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4)
syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0xfffd, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x18, 0x0, @wg=@data={0x4, 0xe, 0x9}}}}}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x30}, 0x94)
r9 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x46}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r9, 0x5, 0xb68, 0x6, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='svc_unregister\x00', r10, 0x0, 0xdf9e}, 0x4a)
connect$vsock_stream(r6, &(0x7f0000000080), 0x10)
r11 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000700000000000000000000850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r11, 0x0, 0x6}, 0x18)
sendmmsg(r6, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)="1b", 0x40000}], 0x1}}], 0x1, 0x24008094)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='9p_protocol_dump\x00', r4}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000600)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

890.457907ms ago: executing program 4 (id=5902):
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00'}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = syz_io_uring_setup(0x4b5, &(0x7f0000000640)={0x0, 0x86e1, 0x400, 0x100008, 0x29b}, &(0x7f0000010080), &(0x7f0000000300))
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000002680)=[{0x0}, {&(0x7f00000001c0)=""/158, 0x9e}], 0x2)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r0, 0x10, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000540)=[{0x0}, {&(0x7f0000000340), 0xa002a0}], &(0x7f00000005c0), 0x2}, 0x20)

878.030478ms ago: executing program 0 (id=5903):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x40)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
r4 = socket(0x2, 0x2, 0x1)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r5=>0x0})
r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="1800000004679100000000000000000095"], &(0x7f0000000040)='GPL\x00', 0x5, 0x0, 0x0, 0x40f00, 0x40, '\x00', r5, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xff}, 0x94)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r8, &(0x7f0000000500)={0xa, 0x4e20, 0xffffffff, @empty, 0x4}, 0x1c)
setsockopt$SO_ATTACH_FILTER(r8, 0x1, 0x1a, &(0x7f0000000280)={0x1, &(0x7f00000000c0)=[{0x6, 0x9, 0xc, 0xb6}]}, 0x10)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @rand_addr=0x64010101, @dev={0xac, 0x14, 0x14, 0x21}}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424d", "bcfd56f1373669caaa2f19935e6996c7096ffe4f3a4745a8f762b964", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3}, 0x94)
ioctl$HIDIOCINITREPORT(r3, 0x4805, 0x0)
r9 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7, 0x0, 0x0, 0x40f00, 0x5, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r9, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r10 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r10, 0x8933, &(0x7f0000000280)={'batadv_slave_1\x00', <r11=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {0x9, 0xb}}}, 0x24}}, 0x800)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r10, 0x8933, &(0x7f0000000080)={'wg0\x00', <r12=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r6, r12, 0x25, 0x2, @void}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x21891d, &(0x7f0000000500)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800000}}, {@noblock_validity}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x200000}}, {@resgid}, {@noinit_itable}, {@quota}, {@noauto_da_alloc}, {@sysvgroups}, {@resgid, 0x32}]}, 0x1, 0x4e8, &(0x7f0000000f40)="$eJzs3d9rW9cdAPDvla0sP5zZYXvIAsvCkmGHLZIdL4nZQ7bB2J4C27L3zLNlYyxbxpKT2ITNYX/AYIxtsKc99aXQP6BQ8ieUQqB9L21pKW3SPhTaRkVXUuI4ku0QWUqtzweOde659+p7joSO7rn3+CqAvnUmIs5GxKNqtXo+IoYb5ZlGis16qm338MGdmVpKolq9/kkSkdTLapuNbXnOY43dDkfEH38X8Zfk2bjl9Y3F6WKxsNpYzleWVvLl9Y0LC0vT84X5wvLk5MTlqStTl6bGO9LOoYi4+psP/v2PV3579Y2f3Xr3xkdjf00a5RFP2tFp9aZn09eiaTAiVvcjWI8Mpi0EAODboHmc/+OIOB/DMZAezQEAAAAHSfWXQ/FVElEFAAAADqxMOgc2yeQa8wCGIpPJ5epzeL8fRzPFUrny07nS2vJsfa7sSGQzcwvFwnhjrvBIZJPa8kSaf7J8cdvyZESciIh/DR9Jl3MzpeJsr09+AAAAQJ84tm38//lwffy/xZc9qxwAAADQOSM7rTzUvXoAAAAA+2fH8T8AAABwIBj/AwAAwIH2+2vXaqna/P3r2Zvra4ulmxdmC+XF3NLaTG6mtLqSmy+V5tN79i3t9nzFUmnl57G8djtfKZQr+fL6xo2l0tpy5cbCUz+BDQAAAHTRiR/deyeJiM1fHElT+I9/6BuDz7Px+/tXD6D7BnpdAaBnnuv7HzhQsr2uANBzyS7r207eebPzdQEAAPbH6A9aX/8f2PXcwGamS1UE9onzf9C/XP+H/uX6P/SvbAyEgTz0t91uAfri1/+r1eeqEAAA0HFDaUoyuYj0PMBQZDK5XMTxdEyQTeYWioXxiPhuRLw9nP1ObXki3TPZdc4wAAAAAAAAAAAAAAAAAAAAAAAAAFBXrSZRBQAAAA60iMyHSXo3/4jR4XND288PHEq+GE4fI+LW/67/5/Z0pbI6USv/9HF55b+N8ou9OIMBAAAAbNccpzfH8QAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADQSQ8f3Jlppm7G/fjXETHSKv5gHE4fD0c2Io5+lsTglv2SiBjoQPzNuxFxslX8pFatGGnUolX8Iz2Of6wD8aGf3av1P79q9fnLxJn0sfXn73LaQ7249v1f5nH/N9Aifq3s+B5jnLr/Wr5t/LsRpwZb9z/N+Emb/ufsHuP/+U8bG+3WVf8fMdry+yd5Kla+srSSL69vXFhYmp4vzBeWJycnLk9dmbo0NZ6fWygWGn9bxvjnD19/tFP7j7aJP7JL+8/tsf1f37/94Hv1bPbx7smT+GNnW7//J9vEzzTe/5808rX1o838Zj2/1elX3zq9U/tn27R/t/d/bI/tP/+Hv7+3x00BgC4or28sTheLhdW+zrzQq1E7LHopWvHSZWoHpMXa6/qS1OeZzN/24ZlrR+a9blcnMj3tlgAAgH3w7BgYAAAAAAAAAAAAAAAAAAAA6LZu3E4suy3mZvq3E3fPBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADonG8CAAD//+y20KM=")

801.771456ms ago: executing program 2 (id=5904):
syz_clone3(&(0x7f0000000080)={0x801400, &(0x7f0000000040)=<r0=>0xffffffffffffffff, 0x0, 0x0, {0x29}, 0x0, 0x0, 0x0, 0x0}, 0x58)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x18)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x2c, 0x1, 0x0, 0x0, 0x0, 0x7, 0x1f0519, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x1, 0x10001}, 0x6025, 0x4005, 0xb, 0x3, 0x2, 0x20005, 0x7f, 0x0, 0x0, 0x0, 0x20000008}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x84, &(0x7f0000000000)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r0])

625.051752ms ago: executing program 2 (id=5905):
syz_open_procfs(0x0, &(0x7f0000000080)='net/tcp\x00')
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
kexec_load(0x10001, 0x7, &(0x7f0000001200)=[{&(0x7f0000000640)="48edc12f9f91c126ffac91f53a6fcf145cf92e77346cf0f236c03bac8059dc25ac4a1bb1ce27c5c79dabbefb90f34175d07a2909ce522d4bf6e8d95c4177aacbfba3218ea9330592cf5c8e89c77c3c2ddc4e42a7bd4de007cd9a5d5ffcb0d0c91587465913ec929285e20860ab5d72ca80280a2d1f5a41ae75618bca4cc8f5034135637c934ab066c781933c5a04638ec27fb1c3de993b7eaa02c0379a97dfd18c35c4c5ffa354ddb87ad02acb62803a3ae2d198b80055165e290e432c25a93867ba640fa8292b7c761788d9078dea2c1985e89b2b8e35", 0xd7, 0x8f4, 0x101}, {&(0x7f0000000740)="218d58a7713545e5343ec881c0da76d1462ba8d9b81fb496255e7faa92383e64ba88300c50f470a29703db0816d2f72c2e4c3c54fb4b0f0e67fa58ebeb3356051cb9cf40a24fd54201ff1283da60d7d690bd5472a575c604b7a82fcacb9ddf29320bc2412bc9ca9df2a794666e5397b8cdc01d8c4b4e3eb6915f4cab28d98dfd39cf9d8e2823f5c329b5dc84a4f454a18fbcfece684e6fee74c50d5368903db4fb082d5f6a732a03485e62ea0a63a4350db453a9c8c474ea5e1a434cd262d4f89b75147ba8fb1a23043463befcdc385e0bf26f05707ba95780606ad94fd65899fd6c258d56a30490dcec5b13249f2ffc5c4c", 0xf2}, {&(0x7f00000001c0), 0x0, 0x0, 0x72}, {&(0x7f0000000300)="4a95198bc7b22f244268a186ce1f6deab85dc19e3602bade6c832ad8dd2c744ae24f4db66b64cc8946e15a561e99e76625d53b3031362677f5a0bf36e07dc554da92cf8dce68216076ded89b25ff9ea166a371268812c335c20b84eaf2009e7f539aeed77050256ea2e6e068c405ff14beb7795112c6ba1e52138a8dc4df94ca7f34f90a4a0e81001a6f74d08d53ccba1c3f3b7afa5e5b8fe4beefee1621bbbe89abe4e189a1e21df6ffec7ff1933d6936046a43dd714401a1c6ac5ceb", 0xbd, 0x6, 0x2}, {&(0x7f0000000980)="e3398c7bbcd2e86ecbe4edfbcfb0cdee73d8a86b97f8aa18060e5ff7f0da1f9908d2114fd7a66f5095c3dee0721b96631f9ad584f5e4ea4466fa7565f2acab455c72c8355b69d8a49b0310eab59215b05e7d4b721e861fc2011687d0e262286417d43e8ee786559fc75867d58f72f1b6b5606742f24a281d3ed0dc3067df3ae220230834194529b87567eb77ff04ad0695b5a65a5bff7570e7924c4bdfa7c6595b218b2f7c2b3e0239dbcafb2765c0c706a5c1e87f96fd2c420af4cd4c5ed5c8854c6b7679f73699e6390339", 0xcc, 0x8, 0x6}, {&(0x7f0000000400)="a24bd994ad20702560478ceeb9bab401e5f1946d260d536c80109d9352ee442bf636f721f68e2baffb92", 0x2a, 0x9, 0x9}, {&(0x7f0000000a80)="fb976e1cf699151120b1268afe87e2bb631e1fbc6339e6fcd428355e130f3bbf62630422e26635fb593a4aa45e491688a8378f80c139de225757b9e3dfdc0ff10eedc6ce4990d6863137a236af8e72155a313c6d30bfe724c2f5deb9bf6d3c14278667b840033051b286b551fc138e27678f03c90c89916e94fb327891e48bed44ce6a207491b873696903734d8ef3b32a2e28ef6f373b7479c9e92dcea831824e9a8633dd85f9695bf17620528692355ff3ee07a960fce08266fd23017e3b260473d5", 0xc3, 0x4, 0x7}], 0x3e0000)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r1, &(0x7f0000004200)='t', 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0xa, 0x4, 0xffd, 0x7}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendfile(r1, r0, 0x0, 0x7ffff000)
unshare(0x40000000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

608.916753ms ago: executing program 1 (id=5906):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x3, 0x1d459d, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x183, 0x6}, 0x6025, 0x4005, 0xb, 0x0, 0x1, 0x1, 0xb, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_elf32(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="7f454c4604070003070000000000000002000300160000000903000038007e0000fcffff050000000000000000000300000008000000f30000007f00000004000000040020000c0000000004000000000000ffdd"], 0x58)
close(0xffffffffffffffff)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x13, &(0x7f0000000240)=ANY=[@ANYBLOB], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000300)='kmem_cache_free\x00', r0}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
open(&(0x7f0000000000)='./bus\x00', 0x1050c1, 0x170)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r1 = syz_open_dev$sg(&(0x7f00000002c0), 0x5d7000000000000, 0x2402)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x34008814}, 0x20008804)
read(r1, &(0x7f0000000040)=""/142, 0x3f)

547.830659ms ago: executing program 4 (id=5907):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000640)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x1ff, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x5}, 0x50)

349.991928ms ago: executing program 4 (id=5908):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[], 0x48)
ioctl$FS_IOC_GETVERSION(r0, 0x80087601, &(0x7f00000001c0))
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000500)={0x0, &(0x7f0000000380)=""/159, &(0x7f0000000240), &(0x7f0000000600)="6c090938a6c50b0490e7e80903b53ade80b1c9125075d8ccbe49dd6f0a0fe6df8f437e92ace870e708026d38d836bb7ed9afb8efe3e0792c169dedd69d9afb3de49e52108defeec7f4dd86ccef7d75a7d9ece19df83e4e9b8f350a92421e811b0db0040096c6ba983f0f54caee90607accb3f9910c17c158778dda1b44b75dfc32721e0795bb639b16ce145ae4fc555a", 0x0, r0}, 0x38)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x100000000}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000c80)='./file1\x00', 0x210000, &(0x7f00000011c0)={[{@acl}, {@barrier}, {@minixdf}, {@noblock_validity}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {}, {@debug}, {@acl}, {@noinit_itable}]}, 0xfc, 0x587, &(0x7f0000002100)="$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")
chdir(&(0x7f0000000140)='./file0\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.stat\x00', 0x275a, 0x0)

293.691202ms ago: executing program 3 (id=5909):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
openat(0xffffffffffffff9c, &(0x7f00000002c0)='./cgroup/pids.max\x00', 0xc8442, 0x80)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000010000000a00000008"], 0x48)
prctl$PR_SET_NAME(0xf, &(0x7f0000000980)='\xff\x00\x00\x00\x00\x00\x000`\x14\x99\x06\xc0\x7fs\x00\t\x14\x17\xc3\xf5\xc9\v\x85\xe7\x00\x00\x18\x88\x06\x94\x98\xa9\xe7\x1c\x8a\x89\xdc\xcc\xf7L\xbd%\xc3!\x0e\x91S\xb2~8\"\xe2\xed\xbf\x12\x1a\\6p\'p\xef\x1a\n\x99\x12\xe8\'\x1c\x97M\xa5N\xd9\xbeV&\x1c2K?\x95\xd9\"\xbe\x050+\xca\xea\'\xe9)\xfe\xeb\x9c\xb5\xa0F`\xe4D\x10F\x831\xec\\v\xf0\xab_M\b\x03\xc3\n\x89\x01E`\xd35Q2\xecZz\xdc\x065p\x1c\x8f\x9b\x99IGXO\x00\x00\v\xed\xb0\xc5\xd4\xc7,\x1a\xb3}CMOO\x8a\xa8kh\x7f\x05c\xfc\xebb\xc8\xa2\xa9\xbf\xb3\x9b\xafE\xbd\xc5\xdc\xde\xbe_')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x4}}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x4, &(0x7f0000000180)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x23}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r2}, 0x18)
syz_clone(0x40800300, 0x0, 0x0, 0x0, 0x0, 0x0)

225.161329ms ago: executing program 0 (id=5910):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x100b28, 0x6, 0xffffffff, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, 0x0, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000012c0)={&(0x7f0000000040)='kfree\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1018e58, &(0x7f00000005c0)={[{@noblock_validity}, {@min_batch_time={'min_batch_time', 0x3d, 0x8}}, {@data_err_ignore}, {@max_batch_time={'max_batch_time', 0x3d, 0x8c9}}, {@nodiscard}, {@inlinecrypt}, {@i_version}]}, 0x6, 0x5fc, &(0x7f0000001000)="$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")
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0)

130.942557ms ago: executing program 4 (id=5911):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="040000000400000004000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x3}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x3, 0x8, &(0x7f0000000940)=ANY=[@ANYBLOB="1809000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000100000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

0s ago: executing program 4 (id=5912):
syz_clone(0x630c1100, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffe}, 0x0, 0x318}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r1}, 0x10)
r2 = socket(0x8, 0x2400000001, 0x8)
setsockopt$inet6_MCAST_JOIN_GROUP(r2, 0x29, 0x2a, &(0x7f0000000340)={0x0, {{0xa, 0x2, 0x0, @mcast1}}}, 0x88)
syz_clone(0x26801000, 0x0, 0x0, 0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

:91871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20841 comm="syz.1.5540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb239a1f749 code=0x7ffc0000
[  378.431491][T20860] loop2: detected capacity change from 0 to 512
[  378.439393][T20860] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  378.468949][T20860] EXT4-fs (loop2): too many log groups per flexible block group
[  378.485305][T20860] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  378.502787][T20860] EXT4-fs (loop2): mount failed
[  378.542218][T20866] ip6gre0: entered promiscuous mode
[  378.598764][T20839] chnl_net:caif_netlink_parms(): no params data found
[  378.731231][T20886] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5547'.
[  378.751256][T20887] hub 9-0:1.0: USB hub found
[  378.756099][T20887] hub 9-0:1.0: 8 ports detected
[  378.765463][T20887] netlink: 28 bytes leftover after parsing attributes in process `+}[@'.
[  378.810943][T13725] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  378.821283][T13725] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  378.830530][T13725] bond0 (unregistering): Released all slaves
[  378.886509][T20884] lo: Caught tx_queue_len zero misconfig
[  378.917078][T13725] hsr_slave_1: left promiscuous mode
[  378.922912][T13725] batman_adv: batadv0: Removing interface: batadv_slave_0
[  378.960919][T13725] team0 (unregistering): Port device team_slave_1 removed
[  378.966258][T20897] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5549'.
[  378.977365][T13725] team0 (unregistering): Port device team_slave_0 removed
[  378.999565][T20898] netlink: 'syz.1.5548': attribute type 13 has an invalid length.
[  379.039995][T20839] bridge0: port 1(bridge_slave_0) entered blocking state
[  379.047239][T20839] bridge0: port 1(bridge_slave_0) entered disabled state
[  379.054807][T20839] bridge_slave_0: entered allmulticast mode
[  379.061819][T20839] bridge_slave_0: entered promiscuous mode
[  379.071781][T20839] bridge0: port 2(bridge_slave_1) entered blocking state
[  379.078904][T20839] bridge0: port 2(bridge_slave_1) entered disabled state
[  379.087777][T20839] bridge_slave_1: entered allmulticast mode
[  379.094394][T20839] bridge_slave_1: entered promiscuous mode
[  379.124638][T20839] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  379.155357][T20839] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  379.188615][T20910] loop4: detected capacity change from 0 to 1024
[  379.207949][T20839] team0: Port device team_slave_0 added
[  379.208033][T20910] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=842c018, mo2=0002]
[  379.216539][T20839] team0: Port device team_slave_1 added
[  379.235729][T20910] EXT4-fs mount: 42 callbacks suppressed
[  379.235802][T20910] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  379.256051][T20839] batman_adv: batadv0: Adding interface: batadv_slave_0
[  379.263077][T20839] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  379.289202][T20839] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  379.299152][T20910] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5553: bg 0: block 88: padding at end of block bitmap is not set
[  379.330173][T20919] loop1: detected capacity change from 0 to 1024
[  379.337278][T20839] batman_adv: batadv0: Adding interface: batadv_slave_1
[  379.337421][T20919] EXT4-fs: inline encryption not supported
[  379.344258][T20839] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  379.350178][T20919] EXT4-fs: Ignoring removed i_version option
[  379.353717][T20919] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  379.376189][T20839] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  379.412080][T12719] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  379.436125][T20919] EXT4-fs error (device loop1): ext4_map_blocks:783: inode #3: block 2: comm syz.1.5556: lblock 2 mapped to illegal pblock 2 (length 1)
[  379.459111][T20839] hsr_slave_0: entered promiscuous mode
[  379.465485][T20839] hsr_slave_1: entered promiscuous mode
[  379.472309][T20839] debugfs: 'hsr0' already exists in 'hsr'
[  379.478104][T20839] Cannot create hsr debugfs directory
[  379.498373][T20919] EXT4-fs error (device loop1): ext4_map_blocks:783: inode #3: block 48: comm syz.1.5556: lblock 0 mapped to illegal pblock 48 (length 1)
[  379.533413][T20919] EXT4-fs error (device loop1): ext4_acquire_dquot:6986: comm syz.1.5556: Failed to acquire dquot type 0
[  379.555583][T20919] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  379.565425][T20919] EXT4-fs error (device loop1): ext4_evict_inode:253: inode #11: comm syz.1.5556: mark_inode_dirty error
[  379.577359][T20919] EXT4-fs warning (device loop1): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[  379.587785][T20919] EXT4-fs (loop1): 1 orphan inode deleted
[  379.594552][T20919] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  379.606931][T13725] EXT4-fs error (device loop1): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:15: lblock 1 mapped to illegal pblock 1 (length 1)
[  379.621308][T13725] EXT4-fs error (device loop1): ext4_release_dquot:7022: comm kworker/u8:15: Failed to release dquot type 0
[  379.649361][T20928] loop4: detected capacity change from 0 to 1024
[  379.656293][T20928] EXT4-fs: inline encryption not supported
[  379.662293][T20928] EXT4-fs: Ignoring removed i_version option
[  379.669348][T20919] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  379.682420][T20928] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  379.701801][T12517] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  379.718925][T20928] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #3: block 2: comm syz.4.5557: lblock 2 mapped to illegal pblock 2 (length 1)
[  379.745938][T20928] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #3: block 48: comm syz.4.5557: lblock 0 mapped to illegal pblock 48 (length 1)
[  379.760364][T20928] EXT4-fs error (device loop4): ext4_acquire_dquot:6986: comm syz.4.5557: Failed to acquire dquot type 0
[  379.771994][T20928] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  379.781600][T20928] EXT4-fs error (device loop4): ext4_evict_inode:253: inode #11: comm syz.4.5557: mark_inode_dirty error
[  379.796015][T20928] EXT4-fs warning (device loop4): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[  379.806401][T20928] EXT4-fs (loop4): 1 orphan inode deleted
[  379.812604][T20928] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  379.826185][   T52] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:3: lblock 1 mapped to illegal pblock 1 (length 1)
[  379.840593][   T52] EXT4-fs error (device loop4): ext4_release_dquot:7022: comm kworker/u8:3: Failed to release dquot type 0
[  379.864560][T20928] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  379.952779][T20942] loop2: detected capacity change from 0 to 1024
[  379.956291][T20839] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  379.961063][T20942] EXT4-fs: inline encryption not supported
[  379.967824][T12719] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  379.972053][T20942] EXT4-fs: Ignoring removed i_version option
[  379.987756][T20942] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  380.028407][T20839] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  380.038729][T20839] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  380.047771][T20942] EXT4-fs error (device loop2): ext4_map_blocks:783: inode #3: block 2: comm syz.2.5562: lblock 2 mapped to illegal pblock 2 (length 1)
[  380.049549][T20839] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  380.089146][T20942] EXT4-fs error (device loop2): ext4_map_blocks:783: inode #3: block 48: comm syz.2.5562: lblock 0 mapped to illegal pblock 48 (length 1)
[  380.124771][T20839] 8021q: adding VLAN 0 to HW filter on device bond0
[  380.132811][T20942] EXT4-fs error (device loop2): ext4_acquire_dquot:6986: comm syz.2.5562: Failed to acquire dquot type 0
[  380.139376][T20839] 8021q: adding VLAN 0 to HW filter on device team0
[  380.158048][   T52] bridge0: port 1(bridge_slave_0) entered blocking state
[  380.161609][T20942] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  380.165185][   T52] bridge0: port 1(bridge_slave_0) entered forwarding state
[  380.182211][T20942] EXT4-fs error (device loop2): ext4_evict_inode:253: inode #11: comm syz.2.5562: mark_inode_dirty error
[  380.189416][   T52] bridge0: port 2(bridge_slave_1) entered blocking state
[  380.200715][   T52] bridge0: port 2(bridge_slave_1) entered forwarding state
[  380.210857][T20942] EXT4-fs warning (device loop2): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[  380.229962][T20839] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  380.240408][T20839] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  380.251412][T20942] EXT4-fs (loop2): 1 orphan inode deleted
[  380.257651][T20942] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  380.355144][T14630] EXT4-fs error (device loop2): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:21: lblock 1 mapped to illegal pblock 1 (length 1)
[  380.370113][T14630] EXT4-fs error (device loop2): ext4_release_dquot:7022: comm kworker/u8:21: Failed to release dquot type 0
[  380.395872][T20942] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  380.434729][T12309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  380.473924][T20839] 8021q: adding VLAN 0 to HW filter on device batadv0
[  380.506505][T20975] loop2: detected capacity change from 0 to 1024
[  380.548486][T20975] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=842c018, mo2=0002]
[  380.567760][T20975] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  380.608087][T20975] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.5571: bg 0: block 88: padding at end of block bitmap is not set
[  380.644504][T12309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  380.679861][T20992] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  380.688295][T20839] veth0_vlan: entered promiscuous mode
[  380.697721][T20839] veth1_vlan: entered promiscuous mode
[  380.718479][T20993] loop2: detected capacity change from 0 to 1024
[  380.720510][T20839] veth0_macvtap: entered promiscuous mode
[  380.733220][T20839] veth1_macvtap: entered promiscuous mode
[  380.745116][T20839] batman_adv: batadv0: Interface activated: batadv_slave_0
[  380.756868][T20839] batman_adv: batadv0: Interface activated: batadv_slave_1
[  380.773416][   T52] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  380.784516][   T52] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  380.809698][   T52] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  380.831528][   T52] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  380.859966][T21001] EXT4-fs: Ignoring removed orlov option
[  380.906326][T21001] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  380.949634][T21008] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5578'.
[  381.739362][T21031] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5584'.
[  381.946470][T20839] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  382.046588][T21036] set_capacity_and_notify: 1 callbacks suppressed
[  382.046603][T21036] loop4: detected capacity change from 0 to 1024
[  382.090334][T21036] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=842c018, mo2=0002]
[  382.104148][T21042] loop3: detected capacity change from 0 to 1024
[  382.120401][T21036] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  382.140122][T21036] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5587: bg 0: block 88: padding at end of block bitmap is not set
[  382.158337][T21042] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=842c018, mo2=0002]
[  382.171825][T21044] loop0: detected capacity change from 0 to 1024
[  382.181678][T21044] EXT4-fs: inline encryption not supported
[  382.187581][T21044] EXT4-fs: Ignoring removed i_version option
[  382.195018][T21042] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  382.208155][T21044] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  382.244802][T12154] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  382.257055][T21044] EXT4-fs error (device loop0): ext4_map_blocks:783: inode #3: block 2: comm syz.0.5590: lblock 2 mapped to illegal pblock 2 (length 1)
[  382.290327][T12719] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  382.306419][T21044] EXT4-fs error (device loop0): ext4_map_blocks:783: inode #3: block 48: comm syz.0.5590: lblock 0 mapped to illegal pblock 48 (length 1)
[  382.334717][T21044] EXT4-fs error (device loop0): ext4_acquire_dquot:6986: comm syz.0.5590: Failed to acquire dquot type 0
[  382.346653][T21044] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  382.356459][T21044] EXT4-fs error (device loop0): ext4_evict_inode:253: inode #11: comm syz.0.5590: mark_inode_dirty error
[  382.378258][T21055] loop2: detected capacity change from 0 to 512
[  382.385089][T21044] EXT4-fs warning (device loop0): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[  382.405692][T21044] EXT4-fs (loop0): 1 orphan inode deleted
[  382.411794][T21044] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  382.436455][T21055] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000600 r/w without journal. Quota mode: writeback.
[  382.452635][   T29] kauditd_printk_skb: 1434 callbacks suppressed
[  382.452652][   T29] audit: type=1326 audit(1767129418.085:93295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21048 comm=FF exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb239a1f749 code=0x7ffc0000
[  382.455306][   T52] EXT4-fs error (device loop0): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:3: lblock 1 mapped to illegal pblock 1 (length 1)
[  382.459055][   T29] audit: type=1326 audit(1767129418.085:93296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21048 comm=FF exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb239a1f749 code=0x7ffc0000
[  382.482316][T21055] ext4 filesystem being mounted at /542/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  382.507616][   T52] Quota error (device loop0): remove_tree: Can't read quota data block 1
[  382.534148][T21055] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #2: comm syz.2.5593: corrupted inode contents
[  382.537260][   T52] EXT4-fs error (device loop0): ext4_release_dquot:7022: comm kworker/u8:3: Failed to release dquot type 0
[  382.549618][   T29] audit: type=1326 audit(1767129418.155:93297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21048 comm=FF exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fb239a1f749 code=0x7ffc0000
[  382.563109][T21044] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  382.583157][   T29] audit: type=1326 audit(1767129418.155:93298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21048 comm=FF exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb239a1f749 code=0x7ffc0000
[  382.596027][T21055] EXT4-fs error (device loop2): ext4_dirty_inode:6502: inode #2: comm syz.2.5593: mark_inode_dirty error
[  382.614310][   T29] audit: type=1326 audit(1767129418.155:93299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21048 comm=FF exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb239a1f749 code=0x7ffc0000
[  382.648327][   T29] audit: type=1326 audit(1767129418.155:93300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21048 comm=FF exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fb239a1f749 code=0x7ffc0000
[  382.674544][T21055] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #2: comm syz.2.5593: corrupted inode contents
[  382.687034][T21055] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #2: comm syz.2.5593: mark_inode_dirty error
[  382.705792][   T29] audit: type=1400 audit(1767129418.335:93301): avc:  denied  { create } for  pid=21049 comm="syz.2.5593" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[  382.736485][   T29] audit: type=1400 audit(1767129418.365:93302): avc:  denied  { rename } for  pid=21049 comm="syz.2.5593" name="file0" dev="loop2" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[  382.759125][   T29] audit: type=1400 audit(1767129418.365:93303): avc:  denied  { rmdir } for  pid=21049 comm="syz.2.5593" name=131377C5FC35D41454D5D41D29AD1A6029598146E6BE166E41AD0DBD4054033C9F33BBDA8224A2F3D772E7636E48B33CBF708372E8F1B9933EC5127743BE2206209EF02DF9CBF2F6E880D338 dev="loop2" ino=20 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  382.824745][T20839] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  382.994612][T21075] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5597'.
[  383.102994][T21084] loop0: detected capacity change from 0 to 512
[  383.124582][T21084] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  383.156370][T21084] EXT4-fs (loop0): 1 truncate cleaned up
[  383.175720][T21084] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  383.233070][T12309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000600.
[  383.256038][T21088] loop4: detected capacity change from 0 to 512
[  383.273679][T21088] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  383.284535][T21089] netlink: 16 bytes leftover after parsing attributes in process `syz.0.5601'.
[  383.341278][T21091] loop2: detected capacity change from 0 to 1024
[  383.368468][T21088] EXT4-fs (loop4): too many log groups per flexible block group
[  383.385934][T21088] EXT4-fs (loop4): failed to initialize mballoc (-12)
[  383.398973][T21091] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=842c018, mo2=0002]
[  383.416001][T21091] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  383.446800][T21088] EXT4-fs (loop4): mount failed
[  383.499658][T12309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  383.960227][T20839] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  383.979327][T21130] netlink: 83992 bytes leftover after parsing attributes in process `syz.4.5605'.
[  383.988998][T21130] netlink: zone id is out of range
[  383.994129][T21130] netlink: zone id is out of range
[  384.010364][T21130] netlink: zone id is out of range
[  384.049349][T21130] netlink: zone id is out of range
[  384.063622][T21134] loop0: detected capacity change from 0 to 1024
[  384.069862][T21135] random: crng reseeded on system resumption
[  384.110890][T21134] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  384.142341][T21134] netlink: 'syz.0.5606': attribute type 1 has an invalid length.
[  384.148501][T21130] netlink: set zone limit has 8 unknown bytes
[  384.293859][T20839] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  384.454183][T21155] FAULT_INJECTION: forcing a failure.
[  384.454183][T21155] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  384.467392][T21155] CPU: 1 UID: 0 PID: 21155 Comm: syz.2.5609 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  384.467491][T21155] Tainted: [W]=WARN
[  384.467500][T21155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  384.467517][T21155] Call Trace:
[  384.467525][T21155]  <TASK>
[  384.467535][T21155]  __dump_stack+0x1d/0x30
[  384.467592][T21155]  dump_stack_lvl+0x95/0xd0
[  384.467618][T21155]  dump_stack+0x15/0x1b
[  384.467642][T21155]  should_fail_ex+0x265/0x280
[  384.467673][T21155]  should_fail+0xb/0x20
[  384.467749][T21155]  should_fail_usercopy+0x1a/0x20
[  384.467778][T21155]  _copy_from_user+0x1c/0xb0
[  384.467815][T21155]  input_event_from_user+0x5f/0x160
[  384.467933][T21155]  ? input_inject_event+0x104/0x120
[  384.468092][T21155]  evdev_write+0x1b1/0x290
[  384.468197][T21155]  ? __pfx_evdev_write+0x10/0x10
[  384.468267][T21155]  vfs_write+0x269/0x960
[  384.468284][T21155]  ? __rcu_read_unlock+0x4f/0x70
[  384.468380][T21155]  ? __fget_files+0x184/0x1c0
[  384.468403][T21155]  ksys_write+0xda/0x1a0
[  384.468437][T21155]  __x64_sys_write+0x40/0x50
[  384.468512][T21155]  x64_sys_call+0x2847/0x3000
[  384.468540][T21155]  do_syscall_64+0xca/0x2b0
[  384.468621][T21155]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  384.468646][T21155] RIP: 0033:0x7f864fe2f749
[  384.468663][T21155] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  384.468683][T21155] RSP: 002b:00007f864e897038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  384.468712][T21155] RAX: ffffffffffffffda RBX: 00007f8650085fa0 RCX: 00007f864fe2f749
[  384.468775][T21155] RDX: 0000000000002250 RSI: 0000200000000040 RDI: 0000000000000003
[  384.468788][T21155] RBP: 00007f864e897090 R08: 0000000000000000 R09: 0000000000000000
[  384.468805][T21155] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  384.468816][T21155] R13: 00007f8650086038 R14: 00007f8650085fa0 R15: 00007fffc65d9508
[  384.468832][T21155]  </TASK>
[  384.708306][T21155] loop2: detected capacity change from 0 to 512
[  384.779155][T21155] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  384.956248][T21155] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  384.985335][T21155] ext4 filesystem being mounted at /545/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  385.049371][T12309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  385.170142][T21201] loop2: detected capacity change from 0 to 1024
[  385.187314][T21201] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=842c018, mo2=0002]
[  385.207071][T21201] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  385.304459][T21201] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.5612: bg 0: block 88: padding at end of block bitmap is not set
[  385.336096][T21206] EXT4-fs: inline encryption not supported
[  385.341974][T21206] EXT4-fs: Ignoring removed i_version option
[  385.399802][T21206] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  385.413751][T12309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  385.452566][T21206] EXT4-fs error (device loop1): ext4_map_blocks:783: inode #3: block 2: comm syz.1.5613: lblock 2 mapped to illegal pblock 2 (length 1)
[  385.496091][T21209] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  385.504853][T21206] EXT4-fs error (device loop1): ext4_map_blocks:783: inode #3: block 48: comm syz.1.5613: lblock 0 mapped to illegal pblock 48 (length 1)
[  385.665296][T21206] EXT4-fs error (device loop1): ext4_acquire_dquot:6986: comm syz.1.5613: Failed to acquire dquot type 0
[  385.705116][T21206] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  385.716077][T21209] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  385.745401][T21209] ext4 filesystem being mounted at /548/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  385.759272][T21206] EXT4-fs error (device loop1): ext4_evict_inode:253: inode #11: comm syz.1.5613: mark_inode_dirty error
[  385.770893][T21206] EXT4-fs warning (device loop1): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[  385.781340][T21206] EXT4-fs (loop1): 1 orphan inode deleted
[  385.787692][T21206] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  385.800107][T13715] EXT4-fs error (device loop1): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:12: lblock 1 mapped to illegal pblock 1 (length 1)
[  385.815504][T13715] EXT4-fs error (device loop1): ext4_release_dquot:7022: comm kworker/u8:12: Failed to release dquot type 0
[  385.840053][T21206] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  385.885879][T12309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  385.953094][T12517] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  385.970556][T21217] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5614'.
[  386.055504][T21224] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  386.086150][T21224] EXT4-fs (loop3): orphan cleanup on readonly fs
[  386.129218][T21224] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4215: comm syz.3.5614: Allocating blocks 41-42 which overlap fs metadata
[  386.143839][T21224] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4215: comm syz.3.5614: Allocating blocks 41-42 which overlap fs metadata
[  386.158682][T21224] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.5614: Failed to acquire dquot type 1
[  386.170827][T21224] EXT4-fs error (device loop3): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  386.186171][T21224] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.5614: corrupted inode contents
[  386.200733][T21224] EXT4-fs error (device loop3): ext4_dirty_inode:6502: inode #12: comm syz.3.5614: mark_inode_dirty error
[  386.227589][T21224] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.5614: corrupted inode contents
[  386.251569][T21224] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #12: comm syz.3.5614: mark_inode_dirty error
[  386.267294][T21224] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.5614: corrupted inode contents
[  386.280000][T21224] EXT4-fs error (device loop3) in ext4_orphan_del:303: Corrupt filesystem
[  386.288821][T21224] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.5614: corrupted inode contents
[  386.308792][T21236] EXT4-fs: Ignoring removed orlov option
[  386.317482][T21236] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  386.330763][T21224] EXT4-fs error (device loop3): ext4_truncate:4635: inode #12: comm syz.3.5614: mark_inode_dirty error
[  386.380891][T21224] EXT4-fs error (device loop3) in ext4_process_orphan:345: Corrupt filesystem
[  386.535455][T21224] EXT4-fs (loop3): 1 truncate cleaned up
[  386.549384][T21224] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  386.585659][T21224] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  386.753496][T12309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  386.863300][T21248] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5626'.
[  387.070162][T21258] set_capacity_and_notify: 4 callbacks suppressed
[  387.070181][T21258] loop2: detected capacity change from 0 to 1024
[  387.104165][T21258] EXT4-fs: inline encryption not supported
[  387.110105][T21258] EXT4-fs: Ignoring removed i_version option
[  387.127096][T21258] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  387.169404][T21258] EXT4-fs error (device loop2): ext4_map_blocks:783: inode #3: block 2: comm syz.2.5630: lblock 2 mapped to illegal pblock 2 (length 1)
[  387.185539][T21258] EXT4-fs error (device loop2): ext4_map_blocks:783: inode #3: block 48: comm syz.2.5630: lblock 0 mapped to illegal pblock 48 (length 1)
[  387.213037][T21258] EXT4-fs error (device loop2): ext4_acquire_dquot:6986: comm syz.2.5630: Failed to acquire dquot type 0
[  387.285348][T21258] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  387.325595][T21258] EXT4-fs error (device loop2): ext4_evict_inode:253: inode #11: comm syz.2.5630: mark_inode_dirty error
[  387.367510][T21258] EXT4-fs warning (device loop2): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[  387.405129][T21258] EXT4-fs (loop2): 1 orphan inode deleted
[  387.415583][T21258] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  387.427809][  T295] EXT4-fs error (device loop2): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:7: lblock 1 mapped to illegal pblock 1 (length 1)
[  387.457235][   T29] kauditd_printk_skb: 1296 callbacks suppressed
[  387.457253][   T29] audit: type=1326 audit(1767129423.085:94591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21259 comm="syz.1.5631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb239a52005 code=0x7ffc0000
[  387.462787][  T295] Quota error (device loop2): remove_tree: Can't read quota data block 1
[  387.463869][   T29] audit: type=1326 audit(1767129423.085:94592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21259 comm="syz.1.5631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb239a52005 code=0x7ffc0000
[  387.487323][  T295] EXT4-fs error (device loop2): ext4_release_dquot:7022: comm kworker/u8:7: Failed to release dquot type 0
[  387.559102][   T29] audit: type=1326 audit(1767129423.155:94593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21259 comm="syz.1.5631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb239a52005 code=0x7ffc0000
[  387.582821][   T29] audit: type=1326 audit(1767129423.155:94594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21259 comm="syz.1.5631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb239a52005 code=0x7ffc0000
[  387.606459][   T29] audit: type=1326 audit(1767129423.155:94595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21259 comm="syz.1.5631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb239a52005 code=0x7ffc0000
[  387.630184][   T29] audit: type=1326 audit(1767129423.155:94596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21259 comm="syz.1.5631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb239a52005 code=0x7ffc0000
[  387.653780][   T29] audit: type=1326 audit(1767129423.155:94597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21259 comm="syz.1.5631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb239a52005 code=0x7ffc0000
[  387.677452][   T29] audit: type=1326 audit(1767129423.155:94598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21259 comm="syz.1.5631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb239a52005 code=0x7ffc0000
[  387.689044][T21258] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  387.701138][   T29] audit: type=1326 audit(1767129423.155:94599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21259 comm="syz.1.5631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb239a52005 code=0x7ffc0000
[  387.755898][T12309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  387.881022][T21285] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5635'.
[  388.049477][T21296] loop2: detected capacity change from 0 to 1024
[  388.093373][T21296] EXT4-fs: Ignoring removed orlov option
[  388.093452][T21298] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5639'.
[  388.128657][T21296] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  388.217989][T21305] loop1: detected capacity change from 0 to 512
[  388.306184][T21305] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000600 r/w without journal. Quota mode: writeback.
[  388.375342][T21305] ext4 filesystem being mounted at /471/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  388.568034][T21305] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #2: comm syz.1.5640: corrupted inode contents
[  388.580621][T21305] EXT4-fs error (device loop1): ext4_dirty_inode:6502: inode #2: comm syz.1.5640: mark_inode_dirty error
[  388.612859][T21305] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #2: comm syz.1.5640: corrupted inode contents
[  388.691067][T21305] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #2: comm syz.1.5640: mark_inode_dirty error
[  388.747535][T21313] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5641'.
[  388.765211][T21313] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  388.800985][T21313] batman_adv: batadv0: Removing interface: batadv_slave_1
[  388.841515][T21315] loop0: detected capacity change from 0 to 512
[  388.866784][T21315] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  388.878778][T12309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  388.905991][T21315] EXT4-fs (loop0): orphan cleanup on readonly fs
[  388.913268][T21315] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4215: comm syz.0.5641: Allocating blocks 41-42 which overlap fs metadata
[  388.949085][T21318] team0: Device ip6gre0 is of different type
[  388.966133][T21315] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4215: comm syz.0.5641: Allocating blocks 41-42 which overlap fs metadata
[  389.020672][T21315] EXT4-fs error (device loop0): ext4_acquire_dquot:6986: comm syz.0.5641: Failed to acquire dquot type 1
[  389.064202][T12517] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000600.
[  389.085345][T21315] EXT4-fs error (device loop0): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  389.145230][T21315] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.5641: corrupted inode contents
[  389.154850][T21327] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5645'.
[  389.192936][T21315] EXT4-fs error (device loop0): ext4_dirty_inode:6502: inode #12: comm syz.0.5641: mark_inode_dirty error
[  389.202964][T21332] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5642'.
[  389.219437][T21333] loop2: detected capacity change from 0 to 512
[  389.231268][T21333] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  389.253958][T21332] loop3: detected capacity change from 0 to 512
[  389.260466][T21315] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.5641: corrupted inode contents
[  389.274368][T21332] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  389.286417][T21333] EXT4-fs (loop2): too many log groups per flexible block group
[  389.294268][T21333] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  389.301226][T21333] EXT4-fs (loop2): mount failed
[  389.315446][T21315] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #12: comm syz.0.5641: mark_inode_dirty error
[  389.355635][T21315] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.5641: corrupted inode contents
[  389.370291][T21315] EXT4-fs error (device loop0) in ext4_orphan_del:303: Corrupt filesystem
[  389.380858][T21332] EXT4-fs (loop3): orphan cleanup on readonly fs
[  389.389100][T21332] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4215: comm syz.3.5642: Allocating blocks 41-42 which overlap fs metadata
[  389.403380][T21315] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.5641: corrupted inode contents
[  389.426399][T21315] EXT4-fs error (device loop0): ext4_truncate:4635: inode #12: comm syz.0.5641: mark_inode_dirty error
[  389.437847][T21332] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4215: comm syz.3.5642: Allocating blocks 41-42 which overlap fs metadata
[  389.451713][T21315] EXT4-fs error (device loop0) in ext4_process_orphan:345: Corrupt filesystem
[  389.467601][T21332] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.5642: Failed to acquire dquot type 1
[  389.479262][T21315] EXT4-fs (loop0): 1 truncate cleaned up
[  389.489597][T21315] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  389.512703][T21315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  389.527237][T21332] EXT4-fs error (device loop3): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  389.541879][T21332] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.5642: corrupted inode contents
[  389.554010][T21332] EXT4-fs error (device loop3): ext4_dirty_inode:6502: inode #12: comm syz.3.5642: mark_inode_dirty error
[  389.570196][T21332] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.5642: corrupted inode contents
[  389.582625][T21332] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #12: comm syz.3.5642: mark_inode_dirty error
[  389.596490][T21332] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.5642: corrupted inode contents
[  389.613036][T21338] loop4: detected capacity change from 0 to 512
[  389.621830][T21338] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  389.636057][T21332] EXT4-fs error (device loop3) in ext4_orphan_del:303: Corrupt filesystem
[  389.664298][T21346] loop0: detected capacity change from 0 to 512
[  389.670832][T21338] EXT4-fs (loop4): 1 truncate cleaned up
[  389.677358][T21346] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  389.686302][T21338] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  389.705860][T21346] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ec01c, mo2=0003]
[  389.713865][T21332] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.5642: corrupted inode contents
[  389.725843][T21346] System zones: 1-2, 4-12, 8-8
[  389.731129][T21346] EXT4-fs error (device loop0): ext4_orphan_get:1391: inode #15: comm syz.0.5650: iget: bad i_size value: 38620345925642
[  389.762219][T21332] EXT4-fs error (device loop3): ext4_truncate:4635: inode #12: comm syz.3.5642: mark_inode_dirty error
[  389.781991][T21346] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.5650: couldn't read orphan inode 15 (err -117)
[  389.794809][T21332] EXT4-fs error (device loop3) in ext4_process_orphan:345: Corrupt filesystem
[  389.804549][T21346] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  389.817581][T21353] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5651'.
[  389.827108][T21332] EXT4-fs (loop3): 1 truncate cleaned up
[  389.840057][T21352] netlink: 16 bytes leftover after parsing attributes in process `syz.4.5648'.
[  389.853433][T21332] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  389.874817][T21332] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  389.921986][T21357] loop1: detected capacity change from 0 to 512
[  389.928897][T21355] loop2: detected capacity change from 0 to 1024
[  389.936171][T21355] EXT4-fs: inline encryption not supported
[  389.942107][T21355] EXT4-fs: Ignoring removed i_version option
[  389.949115][T21357] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  389.959479][T21355] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  389.965228][T21357] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ec01c, mo2=0003]
[  389.981415][T21355] EXT4-fs error (device loop2): ext4_map_blocks:783: inode #3: block 2: comm syz.2.5652: lblock 2 mapped to illegal pblock 2 (length 1)
[  389.992801][T21357] System zones: 1-2, 4-12, 8-8
[  390.000511][T21355] EXT4-fs error (device loop2): ext4_map_blocks:783: inode #3: block 48: comm syz.2.5652: lblock 0 mapped to illegal pblock 48 (length 1)
[  390.015345][T21357] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #15: comm syz.1.5653: iget: bad i_size value: 38620345925642
[  390.028189][T21355] EXT4-fs error (device loop2): ext4_acquire_dquot:6986: comm syz.2.5652: Failed to acquire dquot type 0
[  390.029060][T21357] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.5653: couldn't read orphan inode 15 (err -117)
[  390.051874][T21357] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  390.065451][T21355] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  390.079511][T21355] EXT4-fs error (device loop2): ext4_evict_inode:253: inode #11: comm syz.2.5652: mark_inode_dirty error
[  390.099111][T21355] EXT4-fs warning (device loop2): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[  390.113943][T21355] EXT4-fs (loop2): 1 orphan inode deleted
[  390.120601][T21355] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  390.132816][T14627] EXT4-fs error (device loop2): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:20: lblock 1 mapped to illegal pblock 1 (length 1)
[  390.165944][T14627] EXT4-fs error (device loop2): ext4_release_dquot:7022: comm kworker/u8:20: Failed to release dquot type 0
[  390.202037][T21355] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  390.275019][T12309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  390.307832][T21367] EXT4-fs (loop2): invalid first ino: 0
[  390.366518][T21368] lo: Caught tx_queue_len zero misconfig
[  390.456916][T12517] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  390.493299][T20839] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  390.509033][T12719] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  390.760319][T21367] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5655'.
[  391.152010][T21395] netlink: 83992 bytes leftover after parsing attributes in process `syz.4.5658'.
[  391.211745][T21395] netlink: zone id is out of range
[  391.216979][T21395] netlink: zone id is out of range
[  391.233112][T21406] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5662'.
[  391.257472][T21400] random: crng reseeded on system resumption
[  391.311003][T21395] netlink: zone id is out of range
[  391.355414][T21395] netlink: zone id is out of range
[  391.445149][T21412] EXT4-fs: Ignoring removed orlov option
[  391.453382][T21395] netlink: set zone limit has 8 unknown bytes
[  391.462453][T21412] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  391.485501][T21410]  loop3: p1 < > p2 < > p3 p4 < >
[  391.490641][T21410] loop3: partition table partially beyond EOD, truncated
[  391.498411][T21410] loop3: p1 start 67108864 is beyond EOD, truncated
[  391.505126][T21410] loop3: p2 start 4278190080 is beyond EOD, truncated
[  391.511953][T21410] loop3: p3 start 100859904 is beyond EOD, truncated
[  391.734918][T21466] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5666'.
[  392.026505][T12517] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  392.054685][T21492] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5674'.
[  392.066093][T21490] EXT4-fs: inline encryption not supported
[  392.071976][T21490] EXT4-fs: Ignoring removed i_version option
[  392.083580][T21490] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  392.108994][T21495] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5678'.
[  392.119175][T21490] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #3: block 2: comm syz.3.5675: lblock 2 mapped to illegal pblock 2 (length 1)
[  392.152195][T21490] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #3: block 48: comm syz.3.5675: lblock 0 mapped to illegal pblock 48 (length 1)
[  392.168666][T21490] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.5675: Failed to acquire dquot type 0
[  392.182001][T21490] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  392.191753][T21490] EXT4-fs error (device loop3): ext4_evict_inode:253: inode #11: comm syz.3.5675: mark_inode_dirty error
[  392.192014][T21502] team0: Device ip6gre0 is of different type
[  392.211079][T21490] EXT4-fs warning (device loop3): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[  392.221820][T21490] EXT4-fs (loop3): 1 orphan inode deleted
[  392.243180][T21490] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  392.257682][T14614] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:17: lblock 1 mapped to illegal pblock 1 (length 1)
[  392.300350][T14614] EXT4-fs error (device loop3): ext4_release_dquot:7022: comm kworker/u8:17: Failed to release dquot type 0
[  392.326359][T21490] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  392.419546][T12154] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  392.461993][T21536] netlink: 83992 bytes leftover after parsing attributes in process `syz.0.5679'.
[  392.486682][T21536] netlink: zone id is out of range
[  392.491860][T21536] netlink: zone id is out of range
[  392.518900][T21536] netlink: zone id is out of range
[  392.550371][T21536] netlink: zone id is out of range
[  392.618654][T21548] random: crng reseeded on system resumption
[  392.645984][T21536] netlink: set zone limit has 8 unknown bytes
[  392.662813][T21571] FAULT_INJECTION: forcing a failure.
[  392.662813][T21571] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  392.676158][T21571] CPU: 1 UID: 0 PID: 21571 Comm: syz.3.5687 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  392.676262][T21571] Tainted: [W]=WARN
[  392.676292][T21571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  392.676306][T21571] Call Trace:
[  392.676315][T21571]  <TASK>
[  392.676322][T21571]  __dump_stack+0x1d/0x30
[  392.676400][T21571]  dump_stack_lvl+0x95/0xd0
[  392.676427][T21571]  dump_stack+0x15/0x1b
[  392.676495][T21571]  should_fail_ex+0x265/0x280
[  392.676591][T21571]  should_fail+0xb/0x20
[  392.676615][T21571]  should_fail_usercopy+0x1a/0x20
[  392.676687][T21571]  _copy_from_user+0x1c/0xb0
[  392.676723][T21571]  __x64_sys_epoll_ctl+0x92/0x100
[  392.676847][T21571]  x64_sys_call+0x745/0x3000
[  392.676870][T21571]  do_syscall_64+0xca/0x2b0
[  392.676907][T21571]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  392.676929][T21571] RIP: 0033:0x7fef5d54f749
[  392.676947][T21571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  392.677017][T21571] RSP: 002b:00007fef5bfaf038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[  392.677040][T21571] RAX: ffffffffffffffda RBX: 00007fef5d7a5fa0 RCX: 00007fef5d54f749
[  392.677055][T21571] RDX: 0000000000000006 RSI: 0000000000000003 RDI: 0000000000000003
[  392.677119][T21571] RBP: 00007fef5bfaf090 R08: 0000000000000000 R09: 0000000000000000
[  392.677136][T21571] R10: 0000200000000440 R11: 0000000000000246 R12: 0000000000000001
[  392.677151][T21571] R13: 00007fef5d7a6038 R14: 00007fef5d7a5fa0 R15: 00007ffc5a6e0f48
[  392.677238][T21571]  </TASK>
[  392.875009][T21582] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5688'.
[  392.899397][T21585] set_capacity_and_notify: 4 callbacks suppressed
[  392.899412][T21585] loop1: detected capacity change from 0 to 256
[  392.935759][T21589] bond0: Caught tx_queue_len zero misconfig
[  393.047073][   T29] kauditd_printk_skb: 255 callbacks suppressed
[  393.047091][   T29] audit: type=1400 audit(1767129428.675:94841): avc:  denied  { getopt } for  pid=21602 comm="syz.4.5693" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  393.115218][   T29] audit: type=1400 audit(1767129428.725:94842): avc:  denied  { getopt } for  pid=21588 comm="syz.2.5690" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  393.140323][T21614] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5694'.
[  393.370954][T21644] loop3: detected capacity change from 0 to 1024
[  393.380524][T21644] EXT4-fs: inline encryption not supported
[  393.381034][T21645] netlink: 'syz.4.5697': attribute type 13 has an invalid length.
[  393.387454][T21644] EXT4-fs: Ignoring removed i_version option
[  393.457711][T21644] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  393.529659][T21644] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #3: block 2: comm syz.3.5698: lblock 2 mapped to illegal pblock 2 (length 1)
[  393.578263][T21644] Quota error (device loop3): qtree_write_dquot: dquota write failed
[  393.608873][T21654] IPVS: Error connecting to the multicast addr
[  393.632568][T21644] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #3: block 48: comm syz.3.5698: lblock 0 mapped to illegal pblock 48 (length 1)
[  393.668025][T21654] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5699'.
[  393.696439][T21644] Quota error (device loop3): v2_write_file_info: Can't write info structure
[  393.705507][T21644] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.5698: Failed to acquire dquot type 0
[  393.736229][T21654] netlink: 312 bytes leftover after parsing attributes in process `syz.4.5699'.
[  393.774633][T21644] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  393.815752][T21644] EXT4-fs error (device loop3): ext4_evict_inode:253: inode #11: comm syz.3.5698: mark_inode_dirty error
[  393.905013][T21644] EXT4-fs warning (device loop3): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[  393.936238][T21644] EXT4-fs (loop3): 1 orphan inode deleted
[  393.947481][T21644] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  393.959684][   T89] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:4: lblock 1 mapped to illegal pblock 1 (length 1)
[  393.997782][T21662] ip6gre0: left promiscuous mode
[  394.003921][T21662] batman_adv: batadv0: Interface deactivated: macsec1
[  394.034969][   T89] Quota error (device loop3): remove_tree: Can't read quota data block 1
[  394.043487][   T89] EXT4-fs error (device loop3): ext4_release_dquot:7022: comm kworker/u8:4: Failed to release dquot type 0
[  394.060884][T21644] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  394.080572][T21665] ip6gre0: left promiscuous mode
[  394.099694][T21666] ip6gre0: left promiscuous mode
[  394.104828][T21666] $Hÿ: left promiscuous mode
[  394.109687][T21666] bond_slave_0: left promiscuous mode
[  394.115258][T21666] bond_slave_1: left promiscuous mode
[  394.132059][T12154] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  394.156214][T21668] loop3: detected capacity change from 0 to 1024
[  394.163301][T21668] EXT4-fs: inline encryption not supported
[  394.169208][T21668] EXT4-fs: Ignoring removed i_version option
[  394.175925][T21668] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  394.189940][T21668] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #3: block 2: comm syz.3.5703: lblock 2 mapped to illegal pblock 2 (length 1)
[  394.204157][T21668] Quota error (device loop3): qtree_write_dquot: dquota write failed
[  394.212351][T21668] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #3: block 48: comm syz.3.5703: lblock 0 mapped to illegal pblock 48 (length 1)
[  394.227441][T21668] Quota error (device loop3): v2_write_file_info: Can't write info structure
[  394.236329][T21668] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.5703: Failed to acquire dquot type 0
[  394.247846][T21668] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  394.257919][T21668] EXT4-fs error (device loop3): ext4_evict_inode:253: inode #11: comm syz.3.5703: mark_inode_dirty error
[  394.269406][T21668] EXT4-fs warning (device loop3): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[  394.279708][T21668] EXT4-fs (loop3): 1 orphan inode deleted
[  394.285911][T21668] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  394.298077][T16984] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:27: lblock 1 mapped to illegal pblock 1 (length 1)
[  394.312562][T16984] Quota error (device loop3): remove_tree: Can't read quota data block 1
[  394.321059][T16984] EXT4-fs error (device loop3): ext4_release_dquot:7022: comm kworker/u8:27: Failed to release dquot type 0
[  394.334319][T21668] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  394.395442][T12154] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  394.450404][T21675] FAULT_INJECTION: forcing a failure.
[  394.450404][T21675] name failslab, interval 1, probability 0, space 0, times 0
[  394.463216][T21675] CPU: 0 UID: 0 PID: 21675 Comm: syz.3.5705 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  394.463249][T21675] Tainted: [W]=WARN
[  394.463303][T21675] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  394.463318][T21675] Call Trace:
[  394.463345][T21675]  <TASK>
[  394.463353][T21675]  __dump_stack+0x1d/0x30
[  394.463455][T21675]  dump_stack_lvl+0x95/0xd0
[  394.463510][T21675]  dump_stack+0x15/0x1b
[  394.463528][T21675]  should_fail_ex+0x265/0x280
[  394.463550][T21675]  should_failslab+0x8c/0xb0
[  394.463578][T21675]  __kmalloc_cache_noprof+0x65/0x4c0
[  394.463643][T21675]  ? allocate_cgrp_cset_links+0x7e/0x1f0
[  394.463710][T21675]  allocate_cgrp_cset_links+0x7e/0x1f0
[  394.463753][T21675]  find_css_set+0x596/0xd20
[  394.463834][T21675]  cgroup_migrate_prepare_dst+0x75/0x3f0
[  394.463883][T21675]  cgroup_attach_task+0x1a6/0x420
[  394.463927][T21675]  __cgroup1_procs_write+0x1c8/0x230
[  394.463956][T21675]  ? __pfx_cgroup1_tasks_write+0x10/0x10
[  394.463996][T21675]  cgroup1_tasks_write+0x27/0x40
[  394.464020][T21675]  cgroup_file_write+0x19d/0x350
[  394.464056][T21675]  ? __pfx_cgroup_file_write+0x10/0x10
[  394.464094][T21675]  kernfs_fop_write_iter+0x1eb/0x300
[  394.464135][T21675]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  394.464233][T21675]  vfs_write+0x52a/0x960
[  394.464262][T21675]  ksys_write+0xda/0x1a0
[  394.464364][T21675]  __x64_sys_write+0x40/0x50
[  394.464438][T21675]  x64_sys_call+0x2847/0x3000
[  394.464467][T21675]  do_syscall_64+0xca/0x2b0
[  394.464536][T21675]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  394.464565][T21675] RIP: 0033:0x7fef5d54f749
[  394.464584][T21675] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  394.464608][T21675] RSP: 002b:00007fef5bfaf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  394.464627][T21675] RAX: ffffffffffffffda RBX: 00007fef5d7a5fa0 RCX: 00007fef5d54f749
[  394.464709][T21675] RDX: 0000000000000012 RSI: 00002000000001c0 RDI: 0000000000000004
[  394.464725][T21675] RBP: 00007fef5bfaf090 R08: 0000000000000000 R09: 0000000000000000
[  394.464749][T21675] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  394.464764][T21675] R13: 00007fef5d7a6038 R14: 00007fef5d7a5fa0 R15: 00007ffc5a6e0f48
[  394.464785][T21675]  </TASK>
[  394.804408][T21685] netlink: 'syz.3.5709': attribute type 13 has an invalid length.
[  394.862120][T21688] loop4: detected capacity change from 0 to 1024
[  394.897772][T21690] loop2: detected capacity change from 0 to 512
[  394.904541][T21688] EXT4-fs: inline encryption not supported
[  394.910452][T21688] EXT4-fs: Ignoring removed i_version option
[  394.917035][T21690] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  394.927356][T21688] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  394.938777][T21690] EXT4-fs (loop2): 1 truncate cleaned up
[  394.944471][   T29] audit: type=1326 audit(1767129430.565:94843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21691 comm="syz.1.5712" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb239a1f749 code=0x7ffc0000
[  394.952165][T21692] loop1: detected capacity change from 0 to 1024
[  394.968086][   T29] audit: type=1326 audit(1767129430.565:94844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21691 comm="syz.1.5712" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb239a1f749 code=0x7ffc0000
[  395.012418][T21688] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #3: block 2: comm syz.4.5710: lblock 2 mapped to illegal pblock 2 (length 1)
[  395.026872][T21688] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #3: block 48: comm syz.4.5710: lblock 0 mapped to illegal pblock 48 (length 1)
[  395.041376][T21688] EXT4-fs error (device loop4): ext4_acquire_dquot:6986: comm syz.4.5710: Failed to acquire dquot type 0
[  395.177355][T21688] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  395.187156][T21692] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=842c018, mo2=0002]
[  395.202920][T21692] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.5712: bg 0: block 88: padding at end of block bitmap is not set
[  395.206179][T21688] EXT4-fs error (device loop4): ext4_evict_inode:253: inode #11: comm syz.4.5710: mark_inode_dirty error
[  395.245867][T21688] EXT4-fs warning (device loop4): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[  395.295032][T21688] EXT4-fs (loop4): 1 orphan inode deleted
[  395.305274][   T31] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:1: lblock 1 mapped to illegal pblock 1 (length 1)
[  395.324260][T21703] process 'syz.1.5714' launched '/dev/fd/10' with NULL argv: empty string added
[  395.331647][   T31] EXT4-fs error (device loop4): ext4_release_dquot:7022: comm kworker/u8:1: Failed to release dquot type 0
[  395.378779][T21688] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  395.492445][T21709] loop4: detected capacity change from 0 to 512
[  395.539729][T21709] EXT4-fs error (device loop4): ext4_ext_check_inode:523: inode #3: comm syz.4.5716: pblk 24 bad header/extent: invalid extent entries - magic f30a, entries 3, max 4(4), depth 0(0)
[  395.595420][T21709] EXT4-fs error (device loop4): ext4_quota_enable:7180: comm syz.4.5716: Bad quota inode: 3, type: 0
[  395.638608][T21709] EXT4-fs warning (device loop4): ext4_enable_quotas:7221: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  395.713877][T21709] EXT4-fs (loop4): mount failed
[  395.800969][T21719] ipvlan2: entered promiscuous mode
[  395.806412][T21719] ipvlan2: entered allmulticast mode
[  395.811739][T21719] team0: entered allmulticast mode
[  395.816936][T21719] team_slave_0: entered allmulticast mode
[  395.822699][T21719] team_slave_1: entered allmulticast mode
[  395.981856][T21729] loop2: detected capacity change from 0 to 1024
[  396.005628][T21729] EXT4-fs: inline encryption not supported
[  396.011575][T21729] EXT4-fs: Ignoring removed i_version option
[  396.044578][T21729] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  396.071387][T21729] EXT4-fs error (device loop2): ext4_map_blocks:783: inode #3: block 2: comm syz.2.5722: lblock 2 mapped to illegal pblock 2 (length 1)
[  396.085838][T21729] EXT4-fs error (device loop2): ext4_map_blocks:783: inode #3: block 48: comm syz.2.5722: lblock 0 mapped to illegal pblock 48 (length 1)
[  396.100341][T21729] EXT4-fs error (device loop2): ext4_acquire_dquot:6986: comm syz.2.5722: Failed to acquire dquot type 0
[  396.111975][T21729] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  396.121554][T21729] EXT4-fs error (device loop2): ext4_evict_inode:253: inode #11: comm syz.2.5722: mark_inode_dirty error
[  396.133090][T21729] EXT4-fs warning (device loop2): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[  396.143475][T21729] EXT4-fs (loop2): 1 orphan inode deleted
[  396.157283][T14620] EXT4-fs error (device loop2): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:19: lblock 1 mapped to illegal pblock 1 (length 1)
[  396.176675][T21735] __nla_validate_parse: 2 callbacks suppressed
[  396.176694][T21735] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5724'.
[  396.202038][T14620] EXT4-fs error (device loop2): ext4_release_dquot:7022: comm kworker/u8:19: Failed to release dquot type 0
[  396.223689][T21735] netlink: 312 bytes leftover after parsing attributes in process `syz.0.5724'.
[  396.233479][T21729] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  396.462503][T21749] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5729'.
[  396.493437][T21747] macvlan1: entered promiscuous mode
[  396.500678][T21746] macvlan1: left promiscuous mode
[  396.517602][T21749] batman_adv: batadv0: Removing interface: batadv_slave_1
[  396.557333][T21750] loop3: detected capacity change from 0 to 512
[  396.564656][T21750] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  396.575459][T21750] EXT4-fs (loop3): orphan cleanup on readonly fs
[  396.584287][T21750] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4215: comm syz.3.5729: Allocating blocks 41-42 which overlap fs metadata
[  396.598373][T21750] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4215: comm syz.3.5729: Allocating blocks 41-42 which overlap fs metadata
[  396.612448][T21750] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.5729: Failed to acquire dquot type 1
[  396.625807][T21750] EXT4-fs error (device loop3): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  396.641075][T21750] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.5729: corrupted inode contents
[  396.653370][T21750] EXT4-fs error (device loop3): ext4_dirty_inode:6502: inode #12: comm syz.3.5729: mark_inode_dirty error
[  396.665165][T21750] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.5729: corrupted inode contents
[  396.689295][T21750] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #12: comm syz.3.5729: mark_inode_dirty error
[  396.704930][T21750] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.5729: corrupted inode contents
[  396.724972][T21750] EXT4-fs error (device loop3) in ext4_orphan_del:303: Corrupt filesystem
[  396.739272][T21750] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.5729: corrupted inode contents
[  396.759209][T21750] EXT4-fs error (device loop3): ext4_truncate:4635: inode #12: comm syz.3.5729: mark_inode_dirty error
[  396.779151][T21750] EXT4-fs error (device loop3) in ext4_process_orphan:345: Corrupt filesystem
[  396.801468][T21750] EXT4-fs (loop3): 1 truncate cleaned up
[  396.864721][T21776] FAULT_INJECTION: forcing a failure.
[  396.864721][T21776] name failslab, interval 1, probability 0, space 0, times 0
[  396.877429][T21776] CPU: 1 UID: 0 PID: 21776 Comm: syz.4.5732 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  396.877468][T21776] Tainted: [W]=WARN
[  396.877482][T21776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  396.877499][T21776] Call Trace:
[  396.877509][T21776]  <TASK>
[  396.877520][T21776]  __dump_stack+0x1d/0x30
[  396.877604][T21776]  dump_stack_lvl+0x95/0xd0
[  396.877635][T21776]  dump_stack+0x15/0x1b
[  396.877663][T21776]  should_fail_ex+0x265/0x280
[  396.877711][T21776]  should_failslab+0x8c/0xb0
[  396.877755][T21776]  kmem_cache_alloc_node_noprof+0x6b/0x4c0
[  396.877794][T21776]  ? __alloc_skb+0x2ff/0x4b0
[  396.877904][T21776]  __alloc_skb+0x2ff/0x4b0
[  396.877933][T21776]  ? __alloc_skb+0x228/0x4b0
[  396.878019][T21776]  audit_log_start+0x3a0/0x720
[  396.878041][T21776]  ? kstrtouint+0x76/0xc0
[  396.878061][T21776]  audit_seccomp+0x48/0x100
[  396.878107][T21776]  ? __seccomp_filter+0x832/0x1260
[  396.878144][T21776]  __seccomp_filter+0x843/0x1260
[  396.878201][T21776]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  396.878240][T21776]  ? vfs_write+0x7e8/0x960
[  396.878316][T21776]  __secure_computing+0x82/0x150
[  396.878347][T21776]  syscall_trace_enter+0xcf/0x1e0
[  396.878375][T21776]  do_syscall_64+0xa4/0x2b0
[  396.878415][T21776]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  396.878450][T21776] RIP: 0033:0x7f25284df749
[  396.878463][T21776] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  396.878479][T21776] RSP: 002b:00007f2526f1e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000008
[  396.878496][T21776] RAX: ffffffffffffffda RBX: 00007f2528736090 RCX: 00007f25284df749
[  396.878556][T21776] RDX: 0000000000000004 RSI: 0000000000000005 RDI: 0000000000000004
[  396.878571][T21776] RBP: 00007f2526f1e090 R08: 0000000000000000 R09: 0000000000000000
[  396.878585][T21776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  396.878599][T21776] R13: 00007f2528736128 R14: 00007f2528736090 R15: 00007ffdebe7ba48
[  396.878697][T21776]  </TASK>
[  397.193120][T21792] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  397.233458][T21805] loop0: detected capacity change from 0 to 512
[  397.241230][T21805] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  397.250974][T21806] netlink: 83992 bytes leftover after parsing attributes in process `syz.3.5733'.
[  397.261533][T21806] netlink: zone id is out of range
[  397.266770][T21806] netlink: zone id is out of range
[  397.274855][T21792] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  397.295720][T21805] EXT4-fs (loop0): too many log groups per flexible block group
[  397.307985][T21805] EXT4-fs (loop0): failed to initialize mballoc (-12)
[  397.315387][T21806] netlink: zone id is out of range
[  397.320564][T21805] EXT4-fs (loop0): mount failed
[  397.330707][T21806] netlink: zone id is out of range
[  397.347312][T21818] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5736'.
[  397.373293][T21792] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  397.391026][T21802] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  397.415990][T21806] netlink: set zone limit has 8 unknown bytes
[  397.443920][T21815] random: crng reseeded on system resumption
[  397.501976][T21802] EXT4-fs (loop1): orphan cleanup on readonly fs
[  397.523074][T21802] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4215: comm syz.1.5736: Allocating blocks 41-42 which overlap fs metadata
[  397.540857][T21792] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  397.593596][T21802] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4215: comm syz.1.5736: Allocating blocks 41-42 which overlap fs metadata
[  397.607893][T21802] EXT4-fs error (device loop1): ext4_acquire_dquot:6986: comm syz.1.5736: Failed to acquire dquot type 1
[  397.639748][T21802] EXT4-fs error (device loop1): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  397.659195][T14620] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  397.666019][T21802] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #12: comm syz.1.5736: corrupted inode contents
[  397.684774][T21844] FAULT_INJECTION: forcing a failure.
[  397.684774][T21844] name failslab, interval 1, probability 0, space 0, times 0
[  397.697539][T21844] CPU: 0 UID: 0 PID: 21844 Comm: syz.2.5739 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  397.697578][T21844] Tainted: [W]=WARN
[  397.697586][T21844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  397.697603][T21844] Call Trace:
[  397.697611][T21844]  <TASK>
[  397.697621][T21844]  __dump_stack+0x1d/0x30
[  397.697730][T21844]  dump_stack_lvl+0x95/0xd0
[  397.697759][T21844]  dump_stack+0x15/0x1b
[  397.697783][T21844]  should_fail_ex+0x265/0x280
[  397.697813][T21844]  should_failslab+0x8c/0xb0
[  397.697911][T21844]  __kmalloc_cache_noprof+0x65/0x4c0
[  397.697943][T21844]  ? show_partition_start+0x43/0x130
[  397.698013][T21844]  ? traverse+0x379/0x3a0
[  397.698085][T21844]  show_partition_start+0x43/0x130
[  397.698198][T21844]  seq_read_iter+0x281/0x950
[  397.698295][T21844]  ? avc_policy_seqno+0x15/0x30
[  397.698378][T21844]  proc_reg_read_iter+0x110/0x180
[  397.698454][T21844]  ? __pfx_proc_reg_read_iter+0x10/0x10
[  397.698506][T21844]  vfs_read+0x64c/0x770
[  397.698525][T21844]  ? __pfx_proc_reg_read_iter+0x10/0x10
[  397.698605][T21844]  ksys_read+0xda/0x1a0
[  397.698678][T21844]  __x64_sys_read+0x40/0x50
[  397.698697][T21844]  x64_sys_call+0x2889/0x3000
[  397.698721][T21844]  do_syscall_64+0xca/0x2b0
[  397.698822][T21844]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  397.698860][T21844] RIP: 0033:0x7f864fe2f749
[  397.698954][T21844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  397.698972][T21844] RSP: 002b:00007f864e897038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  397.698992][T21844] RAX: ffffffffffffffda RBX: 00007f8650085fa0 RCX: 00007f864fe2f749
[  397.699005][T21844] RDX: 00000000000000ea RSI: 0000200000001100 RDI: 0000000000000003
[  397.699017][T21844] RBP: 00007f864e897090 R08: 0000000000000000 R09: 0000000000000000
[  397.699030][T21844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  397.699042][T21844] R13: 00007f8650086038 R14: 00007f8650085fa0 R15: 00007fffc65d9508
[  397.699105][T21844]  </TASK>
[  397.699251][T21802] EXT4-fs error (device loop1): ext4_dirty_inode:6502: inode #12: comm syz.1.5736: mark_inode_dirty error
[  397.699364][T14620] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  397.778717][T21802] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #12: comm syz.1.5736: corrupted inode contents
[  397.796454][T14620] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  397.868772][T21802] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #12: comm syz.1.5736: mark_inode_dirty error
[  397.957800][T21802] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #12: comm syz.1.5736: corrupted inode contents
[  397.974731][T21802] EXT4-fs error (device loop1) in ext4_orphan_del:303: Corrupt filesystem
[  398.026478][T21802] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #12: comm syz.1.5736: corrupted inode contents
[  398.091718][   T29] kauditd_printk_skb: 588 callbacks suppressed
[  398.091737][   T29] audit: type=1326 audit(1767129433.715:95417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21873 comm="syz.2.5740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f864fe2f749 code=0x7ffc0000
[  398.125391][T21802] EXT4-fs error (device loop1): ext4_truncate:4635: inode #12: comm syz.1.5736: mark_inode_dirty error
[  398.170175][T21884] set_capacity_and_notify: 1 callbacks suppressed
[  398.170192][T21884] loop0: detected capacity change from 0 to 1024
[  398.180897][   T29] audit: type=1326 audit(1767129433.715:95418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21873 comm="syz.2.5740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f864fe2f749 code=0x7ffc0000
[  398.205704][T21802] EXT4-fs error (device loop1) in ext4_process_orphan:345: Corrupt filesystem
[  398.206957][   T29] audit: type=1326 audit(1767129433.715:95419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21873 comm="syz.2.5740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f864fe2f749 code=0x7ffc0000
[  398.219353][T21884] EXT4-fs: inline encryption not supported
[  398.239582][   T29] audit: type=1326 audit(1767129433.715:95420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21873 comm="syz.2.5740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=103 compat=0 ip=0x7f864fe2f749 code=0x7ffc0000
[  398.245366][T21884] EXT4-fs: Ignoring removed i_version option
[  398.268898][   T29] audit: type=1326 audit(1767129433.715:95421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21873 comm="syz.2.5740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f864fe2f749 code=0x7ffc0000
[  398.268926][   T29] audit: type=1326 audit(1767129433.715:95422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21873 comm="syz.2.5740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f864fe2f749 code=0x7ffc0000
[  398.275310][T14620] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  398.298798][   T29] audit: type=1326 audit(1767129433.715:95423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21873 comm="syz.2.5740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f864fe2f749 code=0x7ffc0000
[  398.352859][T21802] EXT4-fs (loop1): 1 truncate cleaned up
[  398.354343][   T29] audit: type=1326 audit(1767129433.725:95424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21873 comm="syz.2.5740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f864fe2f749 code=0x7ffc0000
[  398.371861][T21884] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  398.383487][   T29] audit: type=1326 audit(1767129433.725:95425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21873 comm="syz.2.5740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f864fe2f749 code=0x7ffc0000
[  398.417385][   T29] audit: type=1326 audit(1767129433.725:95426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21873 comm="syz.2.5740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f864fe2f749 code=0x7ffc0000
[  398.444297][T21879] macvlan1: entered promiscuous mode
[  398.452311][T21884] EXT4-fs error (device loop0): ext4_map_blocks:783: inode #3: block 2: comm syz.0.5741: lblock 2 mapped to illegal pblock 2 (length 1)
[  398.466983][T21884] EXT4-fs error (device loop0): ext4_map_blocks:783: inode #3: block 48: comm syz.0.5741: lblock 0 mapped to illegal pblock 48 (length 1)
[  398.470211][T21873] macvlan1: left promiscuous mode
[  398.482217][T21884] EXT4-fs error (device loop0): ext4_acquire_dquot:6986: comm syz.0.5741: Failed to acquire dquot type 0
[  398.501784][T21884] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  398.532701][T21884] EXT4-fs error (device loop0): ext4_evict_inode:253: inode #11: comm syz.0.5741: mark_inode_dirty error
[  398.557161][T21884] EXT4-fs warning (device loop0): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[  398.567558][T21884] EXT4-fs (loop0): 1 orphan inode deleted
[  398.589892][T16972] EXT4-fs error (device loop0): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:23: lblock 1 mapped to illegal pblock 1 (length 1)
[  398.620874][T16972] EXT4-fs error (device loop0): ext4_release_dquot:7022: comm kworker/u8:23: Failed to release dquot type 0
[  398.653292][T21884] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  399.077075][T21902] ip6gre0: entered promiscuous mode
[  399.114975][T21902] team0: Device ip6gre0 is of different type
[  399.147542][T21905] loop0: detected capacity change from 0 to 512
[  399.235667][T21905] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  399.280491][T21905] EXT4-fs (loop0): orphan cleanup on readonly fs
[  399.324576][T21905] EXT4-fs warning (device loop0): ext4_enable_quotas:7221: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[  399.405351][T21905] EXT4-fs (loop0): Cannot turn on quotas: error -22
[  399.422460][T21905] EXT4-fs error (device loop0): ext4_ext_check_inode:523: inode #13: comm syz.0.5748: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  399.475741][T21905] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.5748: couldn't read orphan inode 13 (err -117)
[  399.492431][T21912] loop1: detected capacity change from 0 to 1024
[  399.516340][T21912] EXT4-fs: Ignoring removed orlov option
[  399.595842][T21918] macvlan1: entered promiscuous mode
[  399.603941][T21917] macvlan1: left promiscuous mode
[  399.716443][T21924] loop2: detected capacity change from 0 to 512
[  399.736656][T21924] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  399.763485][T21934] ip6gre0: left promiscuous mode
[  399.777451][T21924] EXT4-fs (loop2): orphan cleanup on readonly fs
[  399.800384][T21924] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4215: comm syz.2.5755: Allocating blocks 41-42 which overlap fs metadata
[  399.835273][T21924] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4215: comm syz.2.5755: Allocating blocks 41-42 which overlap fs metadata
[  399.876010][T21924] EXT4-fs error (device loop2): ext4_acquire_dquot:6986: comm syz.2.5755: Failed to acquire dquot type 1
[  399.895388][T21924] EXT4-fs error (device loop2): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  399.947642][T21924] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #12: comm syz.2.5755: corrupted inode contents
[  399.975284][T21924] EXT4-fs error (device loop2): ext4_dirty_inode:6502: inode #12: comm syz.2.5755: mark_inode_dirty error
[  400.015767][T21924] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #12: comm syz.2.5755: corrupted inode contents
[  400.066920][T21924] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #12: comm syz.2.5755: mark_inode_dirty error
[  400.078725][T21924] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #12: comm syz.2.5755: corrupted inode contents
[  400.090879][T21924] EXT4-fs error (device loop2) in ext4_orphan_del:303: Corrupt filesystem
[  400.099726][T21924] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #12: comm syz.2.5755: corrupted inode contents
[  400.111766][T21924] EXT4-fs error (device loop2): ext4_truncate:4635: inode #12: comm syz.2.5755: mark_inode_dirty error
[  400.123190][T21924] EXT4-fs error (device loop2) in ext4_process_orphan:345: Corrupt filesystem
[  400.132478][T21924] EXT4-fs (loop2): 1 truncate cleaned up
[  400.191525][T21953] loop0: detected capacity change from 0 to 1024
[  400.228227][T21953] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5759'.
[  400.237212][T21953] netlink: 24 bytes leftover after parsing attributes in process `syz.0.5759'.
[  400.246229][T21953] netlink: 24 bytes leftover after parsing attributes in process `syz.0.5759'.
[  400.301550][T21961] loop1: detected capacity change from 0 to 1024
[  400.309894][T21961] EXT4-fs: inline encryption not supported
[  400.315830][T21961] EXT4-fs: Ignoring removed i_version option
[  400.322391][T21961] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  400.341479][T21961] EXT4-fs error (device loop1): ext4_map_blocks:783: inode #3: block 2: comm syz.1.5760: lblock 2 mapped to illegal pblock 2 (length 1)
[  400.440062][T21961] EXT4-fs error (device loop1): ext4_map_blocks:783: inode #3: block 48: comm syz.1.5760: lblock 0 mapped to illegal pblock 48 (length 1)
[  400.466200][T21961] EXT4-fs error (device loop1): ext4_acquire_dquot:6986: comm syz.1.5760: Failed to acquire dquot type 0
[  400.479171][T21961] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  400.488827][T21961] EXT4-fs error (device loop1): ext4_evict_inode:253: inode #11: comm syz.1.5760: mark_inode_dirty error
[  400.514256][T21961] EXT4-fs warning (device loop1): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[  400.538424][T21961] EXT4-fs (loop1): 1 orphan inode deleted
[  400.546643][  T899] EXT4-fs error (device loop1): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:8: lblock 1 mapped to illegal pblock 1 (length 1)
[  400.651322][  T899] EXT4-fs error (device loop1): ext4_release_dquot:7022: comm kworker/u8:8: Failed to release dquot type 0
[  400.691405][T21961] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  400.794212][T21974] lo: Caught tx_queue_len zero misconfig
[  401.298227][T21979] macvlan1: entered promiscuous mode
[  401.323584][T21977] macvlan1: left promiscuous mode
[  401.442272][T21982] loop2: detected capacity change from 0 to 4096
[  401.619589][T21996] netlink: 'syz.2.5771': attribute type 13 has an invalid length.
[  401.900543][T22002] loop1: detected capacity change from 0 to 512
[  401.907892][T22002] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  401.926238][T22002] EXT4-fs (loop1): too many log groups per flexible block group
[  401.933981][T22002] EXT4-fs (loop1): failed to initialize mballoc (-12)
[  401.940913][T22002] EXT4-fs (loop1): mount failed
[  402.300730][T22016] loop3: detected capacity change from 0 to 1024
[  402.308577][T22016] EXT4-fs: Ignoring removed orlov option
[  402.439678][T22020] loop4: detected capacity change from 0 to 1024
[  402.467176][T22020] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=842c018, mo2=0002]
[  402.486689][T22020] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5778: bg 0: block 88: padding at end of block bitmap is not set
[  402.558415][T22028] ext4 filesystem being mounted at /503/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  402.584086][T22034] EXT4-fs: inline encryption not supported
[  402.590079][T22034] EXT4-fs: Ignoring removed i_version option
[  402.596847][T22034] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  402.608800][T22028] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #2: comm syz.1.5779: corrupted inode contents
[  402.620925][T22028] EXT4-fs error (device loop1): ext4_dirty_inode:6502: inode #2: comm syz.1.5779: mark_inode_dirty error
[  402.632686][T22028] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #2: comm syz.1.5779: corrupted inode contents
[  402.644908][T22028] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #2: comm syz.1.5779: mark_inode_dirty error
[  402.709977][T22034] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #3: block 2: comm syz.4.5781: lblock 2 mapped to illegal pblock 2 (length 1)
[  402.725402][T22034] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #3: block 48: comm syz.4.5781: lblock 0 mapped to illegal pblock 48 (length 1)
[  402.754819][T22034] EXT4-fs error (device loop4): ext4_acquire_dquot:6986: comm syz.4.5781: Failed to acquire dquot type 0
[  402.766520][T22034] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  402.776190][T22034] EXT4-fs error (device loop4): ext4_evict_inode:253: inode #11: comm syz.4.5781: mark_inode_dirty error
[  402.787949][T22034] EXT4-fs warning (device loop4): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[  402.798347][T22034] EXT4-fs (loop4): 1 orphan inode deleted
[  402.807903][T16972] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:23: lblock 1 mapped to illegal pblock 1 (length 1)
[  402.822961][T16972] EXT4-fs error (device loop4): ext4_release_dquot:7022: comm kworker/u8:23: Failed to release dquot type 0
[  402.839321][T22034] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  402.855222][T22038]  loop2: p1 < > p2 < > p3 p4 < >
[  402.860351][T22038] loop2: partition table partially beyond EOD, truncated
[  402.867706][T22038] loop2: p1 start 67108864 is beyond EOD, truncated
[  402.874344][T22038] loop2: p2 start 4278190080 is beyond EOD, truncated
[  402.881256][T22038] loop2: p3 start 100859904 is beyond EOD, truncated
[  402.881846][T22040] netlink: 'syz.3.5783': attribute type 13 has an invalid length.
[  402.952654][T22045] EXT4-fs: inline encryption not supported
[  402.958752][T22045] EXT4-fs: Ignoring removed i_version option
[  402.965594][T22045] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  402.977841][T22045] EXT4-fs error (device loop2): ext4_map_blocks:783: inode #3: block 2: comm syz.2.5785: lblock 2 mapped to illegal pblock 2 (length 1)
[  402.992288][T22045] EXT4-fs error (device loop2): ext4_map_blocks:783: inode #3: block 48: comm syz.2.5785: lblock 0 mapped to illegal pblock 48 (length 1)
[  403.006556][T22045] EXT4-fs error (device loop2): ext4_acquire_dquot:6986: comm syz.2.5785: Failed to acquire dquot type 0
[  403.018233][T22045] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  403.027896][T22045] EXT4-fs error (device loop2): ext4_evict_inode:253: inode #11: comm syz.2.5785: mark_inode_dirty error
[  403.039338][T22045] EXT4-fs warning (device loop2): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[  403.050626][T22045] EXT4-fs (loop2): 1 orphan inode deleted
[  403.070302][T14627] EXT4-fs error (device loop2): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:20: lblock 1 mapped to illegal pblock 1 (length 1)
[  403.086295][T14627] EXT4-fs error (device loop2): ext4_release_dquot:7022: comm kworker/u8:20: Failed to release dquot type 0
[  403.105308][T22045] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  403.182103][   T29] kauditd_printk_skb: 613 callbacks suppressed
[  403.182134][   T29] audit: type=1326 audit(1767129438.805:96024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22056 comm="syz.3.5789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef5d54f749 code=0x7ffc0000
[  403.240599][   T29] audit: type=1326 audit(1767129438.805:96025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22056 comm="syz.3.5789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef5d54f749 code=0x7ffc0000
[  403.264238][   T29] audit: type=1326 audit(1767129438.805:96026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22056 comm="syz.3.5789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fef5d54f749 code=0x7ffc0000
[  403.287911][   T29] audit: type=1326 audit(1767129438.805:96027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22056 comm="syz.3.5789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef5d54f749 code=0x7ffc0000
[  403.311577][   T29] audit: type=1326 audit(1767129438.805:96028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22056 comm="syz.3.5789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef5d54f749 code=0x7ffc0000
[  403.335225][   T29] audit: type=1326 audit(1767129438.805:96029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22056 comm="syz.3.5789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fef5d54f749 code=0x7ffc0000
[  403.359000][   T29] audit: type=1326 audit(1767129438.815:96030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22056 comm="syz.3.5789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef5d54f749 code=0x7ffc0000
[  403.383080][   T29] audit: type=1326 audit(1767129438.815:96031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22056 comm="syz.3.5789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fef5d54f749 code=0x7ffc0000
[  403.406755][   T29] audit: type=1326 audit(1767129438.815:96032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22056 comm=FF exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef5d54f749 code=0x7ffc0000
[  403.429491][   T29] audit: type=1326 audit(1767129438.815:96033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22056 comm=FF exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7fef5d54f749 code=0x7ffc0000
[  403.540478][T22061] set_capacity_and_notify: 4 callbacks suppressed
[  403.540521][T22061] loop2: detected capacity change from 0 to 512
[  403.616793][T22061] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  403.664297][T22061] EXT4-fs (loop2): too many log groups per flexible block group
[  403.673322][T22061] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  403.681427][T22061] EXT4-fs (loop2): mount failed
[  404.107182][T22078] loop2: detected capacity change from 0 to 128
[  404.632804][T22086] loop0: detected capacity change from 0 to 512
[  404.645681][T22084] macvlan1: entered promiscuous mode
[  404.657155][T22083] macvlan1: left promiscuous mode
[  404.665598][T22086] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  404.768910][T22086] EXT4-fs (loop0): 1 truncate cleaned up
[  404.862072][T22096] netlink: 16 bytes leftover after parsing attributes in process `syz.0.5797'.
[  404.925278][T22101] loop1: detected capacity change from 0 to 128
[  405.006738][T22108] loop1: detected capacity change from 0 to 512
[  405.027083][T22108] ext4 filesystem being mounted at /506/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  405.056133][T22112] netlink: 'syz.4.5802': attribute type 13 has an invalid length.
[  405.085746][T22108] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #2: comm syz.1.5801: corrupted inode contents
[  405.105959][T22108] EXT4-fs error (device loop1): ext4_dirty_inode:6502: inode #2: comm syz.1.5801: mark_inode_dirty error
[  405.136371][T22108] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #2: comm syz.1.5801: corrupted inode contents
[  405.150508][T22108] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #2: comm syz.1.5801: mark_inode_dirty error
[  405.231671][T22117] loop3: detected capacity change from 0 to 1024
[  405.238871][T22117] EXT4-fs: inline encryption not supported
[  405.244757][T22117] EXT4-fs: Ignoring removed i_version option
[  405.251421][T22117] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  405.263586][T22117] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #3: block 2: comm syz.3.5803: lblock 2 mapped to illegal pblock 2 (length 1)
[  405.278222][T22117] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #3: block 48: comm syz.3.5803: lblock 0 mapped to illegal pblock 48 (length 1)
[  405.293185][T22117] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.5803: Failed to acquire dquot type 0
[  405.304976][T22117] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  405.315132][T22117] EXT4-fs error (device loop3): ext4_evict_inode:253: inode #11: comm syz.3.5803: mark_inode_dirty error
[  405.326986][T22117] EXT4-fs warning (device loop3): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[  405.337567][T22117] EXT4-fs (loop3): 1 orphan inode deleted
[  405.346208][T22119] program syz.4.5804 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  405.355938][  T899] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:8: lblock 1 mapped to illegal pblock 1 (length 1)
[  405.370248][  T899] EXT4-fs error (device loop3): ext4_release_dquot:7022: comm kworker/u8:8: Failed to release dquot type 0
[  405.382899][T22117] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  405.453190][T22129] loop3: detected capacity change from 0 to 8192
[  405.525683][T22129]  loop3: p1 < > p2 < > p3 p4 < >
[  405.530787][T22129] loop3: partition table partially beyond EOD, truncated
[  405.538776][T22129] loop3: p1 start 67108864 is beyond EOD, truncated
[  405.545574][T22129] loop3: p2 start 4278190080 is beyond EOD, truncated
[  405.552409][T22129] loop3: p3 start 100859904 is beyond EOD, truncated
[  405.606452][T22135] loop3: detected capacity change from 0 to 512
[  405.619101][T22135] ext4 filesystem being mounted at /552/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  405.636815][T22139] loop2: detected capacity change from 0 to 512
[  405.646865][T22139] ext4 filesystem being mounted at /595/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  405.730702][T22143] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5810'.
[  406.042186][T22160] loop3: detected capacity change from 0 to 1024
[  406.049316][T22160] EXT4-fs: Ignoring removed orlov option
[  406.097700][T22158] lo: Caught tx_queue_len zero misconfig
[  406.467058][T22166] netlink: 32 bytes leftover after parsing attributes in process `syz.4.5815'.
[  406.491652][T22166] veth1_to_bond: Caught tx_queue_len zero misconfig
[  406.609923][T22171] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=842c018, mo2=0002]
[  406.634480][T22171] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.5817: bg 0: block 88: padding at end of block bitmap is not set
[  406.770611][T22179] macvlan1: entered promiscuous mode
[  406.871545][T22174] macvlan1: left promiscuous mode
[  406.924487][T22188] ext4 filesystem being mounted at /509/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  407.176656][T22200] lo: Caught tx_queue_len zero misconfig
[  407.656571][T22202] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5826'.
[  407.734723][T22210] tmpfs: Bad value for 'mpol'
[  407.845276][T22218] EXT4-fs: Ignoring removed orlov option
[  407.892482][T22227] ip6gre0: entered promiscuous mode
[  407.898672][T22227] team0: Device ip6gre0 is of different type
[  407.951106][T22235] EXT4-fs: Ignoring removed orlov option
[  408.063013][T22242] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5839'.
[  408.098485][T22244] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  408.107934][T22244] SELinux: failed to load policy
[  408.185367][   T29] kauditd_printk_skb: 2806 callbacks suppressed
[  408.185412][   T29] audit: type=1326 audit(1767129443.805:98837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22224 comm="syz.4.5836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f2528512005 code=0x7ffc0000
[  408.232278][   T29] audit: type=1326 audit(1767129443.815:98838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22224 comm="syz.4.5836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7f25284df749 code=0x7ffc0000
[  408.256057][   T29] audit: type=1326 audit(1767129443.815:98839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22224 comm="syz.4.5836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7f25284df749 code=0x7ffc0000
[  408.279771][   T29] audit: type=1326 audit(1767129443.815:98840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22224 comm="syz.4.5836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7f25284df749 code=0x7ffc0000
[  408.303368][   T29] audit: type=1326 audit(1767129443.845:98841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22224 comm="syz.4.5836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7f25284df749 code=0x7ffc0000
[  408.326961][   T29] audit: type=1326 audit(1767129443.845:98842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22224 comm="syz.4.5836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f2528512005 code=0x7ffc0000
[  408.350588][   T29] audit: type=1326 audit(1767129443.845:98843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22224 comm="syz.4.5836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f2528512005 code=0x7ffc0000
[  408.374303][   T29] audit: type=1326 audit(1767129443.855:98844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22224 comm="syz.4.5836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f2528512005 code=0x7ffc0000
[  408.398071][   T29] audit: type=1326 audit(1767129443.855:98845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22224 comm="syz.4.5836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f2528512005 code=0x7ffc0000
[  408.421767][   T29] audit: type=1326 audit(1767129443.855:98846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22224 comm="syz.4.5836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f2528512005 code=0x7ffc0000
[  408.512864][T22268] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  408.525495][T22268] EXT4-fs (loop1): 1 truncate cleaned up
[  408.586683][T22246] chnl_net:caif_netlink_parms(): no params data found
[  408.602308][T22274] set_capacity_and_notify: 5 callbacks suppressed
[  408.602323][T22274] loop3: detected capacity change from 0 to 1024
[  408.606127][T22275] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5845'.
[  408.609707][T22274] EXT4-fs: Ignoring removed orlov option
[  408.768063][T14627] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  408.781743][T14627] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  408.791866][T14627] bond0 (unregistering): Released all slaves
[  408.800922][T14627] bond1 (unregistering): Released all slaves
[  408.809850][T14627] bond2 (unregistering): Released all slaves
[  408.819147][T22246] bridge0: port 1(bridge_slave_0) entered blocking state
[  408.826338][T22246] bridge0: port 1(bridge_slave_0) entered disabled state
[  408.834225][T22246] bridge_slave_0: entered allmulticast mode
[  408.841654][T22246] bridge_slave_0: entered promiscuous mode
[  408.848690][T22283] ip6gre0: entered promiscuous mode
[  408.855115][T22283] team0: Device ip6gre0 is of different type
[  408.863278][T22246] bridge0: port 2(bridge_slave_1) entered blocking state
[  408.870446][T22246] bridge0: port 2(bridge_slave_1) entered disabled state
[  408.901944][T22246] bridge_slave_1: entered allmulticast mode
[  408.909233][T22246] bridge_slave_1: entered promiscuous mode
[  408.919449][T14627] hsr_slave_0: left promiscuous mode
[  408.925307][T14627] hsr_slave_1: left promiscuous mode
[  408.931492][T14627] batman_adv: batadv0: Removing interface: batadv_slave_0
[  408.939271][T14627] batman_adv: batadv0: Removing interface: macsec1
[  408.995930][T14627] team_slave_1 (unregistering): left allmulticast mode
[  409.003749][T14627] team0 (unregistering): Port device team_slave_1 removed
[  409.013559][T14627] team_slave_0 (unregistering): left allmulticast mode
[  409.021613][T14627] team0 (unregistering): Port device team_slave_0 removed
[  409.078094][T22246] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  409.101153][T22246] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  409.127117][T22246] team0: Port device team_slave_0 added
[  409.133963][T22246] team0: Port device team_slave_1 added
[  409.151741][T22246] batman_adv: batadv0: Adding interface: batadv_slave_0
[  409.158773][T22246] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  409.184806][T22246] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  409.195636][T22295] macvlan1: entered promiscuous mode
[  409.201316][T22246] batman_adv: batadv0: Adding interface: batadv_slave_1
[  409.208434][T22246] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  409.234393][T22246] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  409.245250][T22296] ip6gre0: left promiscuous mode
[  409.256224][T22294] macvlan1: left promiscuous mode
[  409.283257][T22298] loop3: detected capacity change from 0 to 1024
[  409.291566][T22298] EXT4-fs: Ignoring removed orlov option
[  409.300546][T22298] EXT4-fs mount: 57 callbacks suppressed
[  409.300562][T22298] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  409.301591][T22246] hsr_slave_0: entered promiscuous mode
[  409.325606][T22246] hsr_slave_1: entered promiscuous mode
[  409.331496][T22246] debugfs: 'hsr0' already exists in 'hsr'
[  409.337291][T22246] Cannot create hsr debugfs directory
[  409.423851][T12517] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  409.613468][T12154] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  409.651542][T22314] loop3: detected capacity change from 0 to 1024
[  409.667380][T22314] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=842c018, mo2=0002]
[  409.676021][T22314] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  409.692311][T22314] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.5855: bg 0: block 88: padding at end of block bitmap is not set
[  409.720760][T12154] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  409.976667][T22246] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  410.016312][T22246] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  410.047831][T22246] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  410.123635][T22246] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  410.242996][T22337] macvlan1: entered promiscuous mode
[  410.297866][T22246] 8021q: adding VLAN 0 to HW filter on device bond0
[  410.324860][T22246] 8021q: adding VLAN 0 to HW filter on device team0
[  410.356008][T22327] macvlan1: left promiscuous mode
[  410.365861][T14620] bridge0: port 1(bridge_slave_0) entered blocking state
[  410.372990][T14620] bridge0: port 1(bridge_slave_0) entered forwarding state
[  410.398469][T14620] bridge0: port 2(bridge_slave_1) entered blocking state
[  410.405619][T14620] bridge0: port 2(bridge_slave_1) entered forwarding state
[  410.558250][T22348] loop4: detected capacity change from 0 to 512
[  410.590281][T22348] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  410.628982][T22246] 8021q: adding VLAN 0 to HW filter on device batadv0
[  410.642229][T22348] EXT4-fs (loop4): 1 truncate cleaned up
[  410.656290][T22348] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  410.730957][T22360] netlink: 16 bytes leftover after parsing attributes in process `syz.4.5861'.
[  410.821968][T22246] veth0_vlan: entered promiscuous mode
[  410.859661][T22246] veth1_vlan: entered promiscuous mode
[  410.908361][T22246] veth0_macvtap: entered promiscuous mode
[  410.932866][T22246] veth1_macvtap: entered promiscuous mode
[  410.973465][T22246] batman_adv: batadv0: Interface activated: batadv_slave_0
[  410.985908][T22246] batman_adv: batadv0: Interface activated: batadv_slave_1
[  410.999437][   T52] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  411.022017][   T52] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  411.037204][T22367] loop3: detected capacity change from 0 to 8192
[  411.042044][   T52] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  411.053364][   T52] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  411.085546][T22367]  loop3: p1 p2[DM] p4
[  411.089817][T22367] loop3: p1 size 196608 extends beyond EOD, truncated
[  411.102396][T22370] loop2: detected capacity change from 0 to 1024
[  411.104625][T22367] loop3: p2 start 4292936063 is beyond EOD, truncated
[  411.112226][T22370] EXT4-fs: inline encryption not supported
[  411.116104][T22367] loop3: p4 size 50331648 extends beyond EOD, 
[  411.121575][T22370] EXT4-fs: Ignoring removed i_version option
[  411.121609][T22367] truncated
[  411.140140][T22370] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  411.152697][T22370] EXT4-fs error (device loop2): ext4_map_blocks:783: inode #3: block 2: comm syz.2.5841: lblock 2 mapped to illegal pblock 2 (length 1)
[  411.175565][T22370] EXT4-fs error (device loop2): ext4_map_blocks:783: inode #3: block 48: comm syz.2.5841: lblock 0 mapped to illegal pblock 48 (length 1)
[  411.197087][T22373] FAULT_INJECTION: forcing a failure.
[  411.197087][T22373] name failslab, interval 1, probability 0, space 0, times 0
[  411.203245][T22370] EXT4-fs error (device loop2): ext4_acquire_dquot:6986: comm syz.2.5841: Failed to acquire dquot type 0
[  411.209967][T22373] CPU: 0 UID: 0 PID: 22373 Comm: syz.3.5864 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  411.210062][T22373] Tainted: [W]=WARN
[  411.210083][T22373] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  411.210109][T22373] Call Trace:
[  411.210131][T22373]  <TASK>
[  411.210160][T22373]  __dump_stack+0x1d/0x30
[  411.210260][T22373]  dump_stack_lvl+0x95/0xd0
[  411.210325][T22373]  dump_stack+0x15/0x1b
[  411.210390][T22373]  should_fail_ex+0x265/0x280
[  411.210541][T22373]  should_failslab+0x8c/0xb0
[  411.210662][T22373]  __kmalloc_node_track_caller_noprof+0xb9/0x5b0
[  411.210738][T22373]  ? simple_xattr_set+0xa8/0x2b0
[  411.210871][T22373]  ? __kvmalloc_node_noprof+0x4f0/0x6b0
[  411.210942][T22373]  kstrdup+0x3e/0xd0
[  411.211122][T22373]  simple_xattr_set+0xa8/0x2b0
[  411.211200][T22373]  ? __kernfs_iattrs+0x132/0x1a0
[  411.211340][T22373]  kernfs_vfs_user_xattr_set+0x18e/0x220
[  411.211512][T22373]  ? __pfx_kernfs_vfs_user_xattr_set+0x10/0x10
[  411.211593][T22373]  __vfs_setxattr+0x2e6/0x310
[  411.211663][T22373]  __vfs_setxattr_noperm+0xe8/0x410
[  411.211749][T22373]  __vfs_setxattr_locked+0x1a6/0x1c0
[  411.211891][T22373]  vfs_setxattr+0x132/0x270
[  411.211956][T22373]  filename_setxattr+0x1ad/0x400
[  411.212053][T22373]  path_setxattrat+0x2c9/0x310
[  411.212210][T22373]  __x64_sys_setxattr+0x6e/0x90
[  411.212292][T22373]  x64_sys_call+0xf1e/0x3000
[  411.212378][T22373]  do_syscall_64+0xca/0x2b0
[  411.212477][T22373]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  411.212575][T22373] RIP: 0033:0x7fef5d54f749
[  411.212635][T22373] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  411.212741][T22373] RSP: 002b:00007fef5bfaf038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[  411.212862][T22373] RAX: ffffffffffffffda RBX: 00007fef5d7a5fa0 RCX: 00007fef5d54f749
[  411.212902][T22373] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000200000000180
[  411.212941][T22373] RBP: 00007fef5bfaf090 R08: 0000000000000002 R09: 0000000000000000
[  411.213044][T22373] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  411.213083][T22373] R13: 00007fef5d7a6038 R14: 00007fef5d7a5fa0 R15: 00007ffc5a6e0f48
[  411.213138][T22373]  </TASK>
[  411.453974][T22370] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  411.460421][T12719] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  411.467382][T22370] EXT4-fs error (device loop2): ext4_evict_inode:253: inode #11: comm syz.2.5841: mark_inode_dirty error
[  411.487055][T22370] EXT4-fs warning (device loop2): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[  411.497516][T22370] EXT4-fs (loop2): 1 orphan inode deleted
[  411.503841][T22370] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  411.516820][   T89] EXT4-fs error (device loop2): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:4: lblock 1 mapped to illegal pblock 1 (length 1)
[  411.538019][   T89] EXT4-fs error (device loop2): ext4_release_dquot:7022: comm kworker/u8:4: Failed to release dquot type 0
[  411.563417][T22370] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  411.583556][T22380] loop1: detected capacity change from 0 to 1024
[  411.590442][T22380] EXT4-fs: Ignoring removed orlov option
[  411.608294][T22380] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  411.610786][T22246] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  411.764247][T22396] loop0: detected capacity change from 0 to 512
[  411.788514][T22398] loop2: detected capacity change from 0 to 512
[  411.792493][T22396] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  411.824968][T22398] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000600 r/w without journal. Quota mode: writeback.
[  411.853911][T22398] ext4 filesystem being mounted at /1/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  411.884554][T22396] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ec01c, mo2=0003]
[  411.892736][T22396] System zones: 1-2, 4-12, 8-8
[  411.898049][T22396] EXT4-fs error (device loop0): ext4_orphan_get:1391: inode #15: comm syz.0.5869: iget: bad i_size value: 38620345925642
[  411.931184][T22398] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #2: comm syz.2.5868: corrupted inode contents
[  411.954522][T22396] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.5869: couldn't read orphan inode 15 (err -117)
[  411.983636][T22398] EXT4-fs error (device loop2): ext4_dirty_inode:6502: inode #2: comm syz.2.5868: mark_inode_dirty error
[  411.995872][T22396] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  412.009925][T12517] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  412.025133][T22398] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #2: comm syz.2.5868: corrupted inode contents
[  412.127281][T22398] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #2: comm syz.2.5868: mark_inode_dirty error
[  412.146452][T20839] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  412.193811][T22416] loop1: detected capacity change from 0 to 1024
[  412.210474][T22418] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=22418 comm=syz.0.5874
[  412.237077][T22418] netlink: 212 bytes leftover after parsing attributes in process `syz.0.5874'.
[  412.261823][T22416] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=842c018, mo2=0002]
[  412.285800][T22416] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  412.423162][T22416] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.5871: bg 0: block 88: padding at end of block bitmap is not set
[  412.530844][T12517] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  412.610648][T22246] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000600.
[  412.697073][T22424] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5875'.
[  412.772246][T22424] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  412.805985][T22424] EXT4-fs (loop0): orphan cleanup on readonly fs
[  412.826089][T22424] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4215: comm syz.0.5875: Allocating blocks 41-42 which overlap fs metadata
[  412.946263][T22424] EXT4-fs error (device loop0): ext4_acquire_dquot:6986: comm syz.0.5875: Failed to acquire dquot type 1
[  413.073253][T22424] EXT4-fs error (device loop0): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  413.196737][   T29] kauditd_printk_skb: 1498 callbacks suppressed
[  413.196752][   T29] audit: type=1326 audit(1767129448.825:100339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22437 comm="syz.1.5878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb239a52005 code=0x7ffc0000
[  413.232061][T22424] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.5875: corrupted inode contents
[  413.271511][   T29] audit: type=1326 audit(1767129448.855:100340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22437 comm="syz.1.5878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb239a52005 code=0x7ffc0000
[  413.295302][   T29] audit: type=1326 audit(1767129448.855:100341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22437 comm="syz.1.5878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7fb239a1f749 code=0x7ffc0000
[  413.319018][   T29] audit: type=1326 audit(1767129448.885:100342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22437 comm="syz.1.5878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb239a52005 code=0x7ffc0000
[  413.342873][   T29] audit: type=1326 audit(1767129448.885:100343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22437 comm="syz.1.5878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7fb239a1f749 code=0x7ffc0000
[  413.366630][   T29] audit: type=1326 audit(1767129448.895:100344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22437 comm="syz.1.5878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb239a52005 code=0x7ffc0000
[  413.390486][   T29] audit: type=1326 audit(1767129448.895:100345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22437 comm="syz.1.5878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb239a52005 code=0x7ffc0000
[  413.438684][   T29] audit: type=1326 audit(1767129449.045:100346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22437 comm="syz.1.5878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb239a52005 code=0x7ffc0000
[  413.445611][T22424] EXT4-fs error (device loop0): ext4_dirty_inode:6502: inode #12: comm syz.0.5875: mark_inode_dirty error
[  413.462510][   T29] audit: type=1326 audit(1767129449.045:100347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22437 comm="syz.1.5878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7fb239a1f749 code=0x7ffc0000
[  413.497411][   T29] audit: type=1326 audit(1767129449.045:100348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22437 comm="syz.1.5878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb239a52005 code=0x7ffc0000
[  413.517621][T22424] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.5875: corrupted inode contents
[  413.550087][T22424] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #12: comm syz.0.5875: mark_inode_dirty error
[  413.574189][T22424] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.5875: corrupted inode contents
[  413.587113][T22424] EXT4-fs error (device loop0) in ext4_orphan_del:303: Corrupt filesystem
[  413.600349][T22424] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.5875: corrupted inode contents
[  413.613011][T22424] EXT4-fs error (device loop0): ext4_truncate:4635: inode #12: comm syz.0.5875: mark_inode_dirty error
[  413.636073][T22446] set_capacity_and_notify: 1 callbacks suppressed
[  413.636086][T22446] loop2: detected capacity change from 0 to 1024
[  413.650270][T22446] EXT4-fs: Ignoring removed orlov option
[  413.656373][T22424] EXT4-fs error (device loop0) in ext4_process_orphan:345: Corrupt filesystem
[  413.668763][T22424] EXT4-fs (loop0): 1 truncate cleaned up
[  413.675671][T22446] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  413.689030][T22424] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  413.720799][T22424] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  413.887031][T22455] loop1: detected capacity change from 0 to 1024
[  413.893837][T22455] EXT4-fs: Ignoring removed orlov option
[  413.904917][T22455] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  414.079379][T22461] loop0: detected capacity change from 0 to 512
[  414.086979][T22461] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  414.102380][T22246] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  414.120615][T22459] loop4: detected capacity change from 0 to 1024
[  414.127843][T22461] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ec01c, mo2=0003]
[  414.143274][T22461] System zones: 1-2, 4-12, 8-8
[  414.148701][T22459] EXT4-fs: Ignoring removed orlov option
[  414.155682][T22461] EXT4-fs error (device loop0): ext4_orphan_get:1391: inode #15: comm syz.0.5884: iget: bad i_size value: 38620345925642
[  414.171277][T22459] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  414.183929][T22461] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.5884: couldn't read orphan inode 15 (err -117)
[  414.196773][T22461] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  414.433435][T12517] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  414.528954][T22475] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5889'.
[  414.626551][T12719] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  415.105453][T20839] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  415.473013][T22492] loop0: detected capacity change from 0 to 512
[  415.610685][T22492] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000600 r/w without journal. Quota mode: writeback.
[  415.644093][T22496] loop4: detected capacity change from 0 to 1024
[  415.655345][T22492] ext4 filesystem being mounted at /49/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  415.686965][T22492] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #2: comm syz.0.5892: corrupted inode contents
[  415.687804][T22496] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=842c018, mo2=0002]
[  415.708540][T22492] EXT4-fs error (device loop0): ext4_dirty_inode:6502: inode #2: comm syz.0.5892: mark_inode_dirty error
[  415.761737][T22496] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  415.774294][T22492] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #2: comm syz.0.5892: corrupted inode contents
[  415.817116][T22492] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #2: comm syz.0.5892: mark_inode_dirty error
[  415.829076][T22496] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5894: bg 0: block 88: padding at end of block bitmap is not set
[  415.910602][T12719] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  416.012116][T22508] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=22508 comm=syz.4.5898
[  416.044598][T22504] loop2: detected capacity change from 0 to 8192
[  416.093303][T22512] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5900'.
[  416.105713][T22504]  loop2: p1 < > p2 < > p3 p4 < >
[  416.110791][T22504] loop2: partition table partially beyond EOD, truncated
[  416.118184][T22504] loop2: p1 start 67108864 is beyond EOD, truncated
[  416.124871][T22504] loop2: p2 start 4278190080 is beyond EOD, truncated
[  416.131710][T22504] loop2: p3 start 100859904 is beyond EOD, truncated
[  416.138113][T22514] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5901'.
[  416.161378][T20839] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000600.
[  416.174477][T22514] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5901'.
[  416.384946][T22518] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5903'.
[  416.433297][T22518] loop0: detected capacity change from 0 to 512
[  416.463682][T22518] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  416.477588][T22529] loop2: detected capacity change from 0 to 1024
[  416.498125][T22518] EXT4-fs (loop0): orphan cleanup on readonly fs
[  416.509767][T22518] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4215: comm syz.0.5903: Allocating blocks 41-42 which overlap fs metadata
[  416.518857][T22529] EXT4-fs: Ignoring removed orlov option
[  416.529861][T22518] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4215: comm syz.0.5903: Allocating blocks 41-42 which overlap fs metadata
[  416.543791][T22518] EXT4-fs error (device loop0): ext4_acquire_dquot:6986: comm syz.0.5903: Failed to acquire dquot type 1
[  416.557492][T22518] EXT4-fs error (device loop0): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  416.572636][T22518] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.5903: corrupted inode contents
[  416.584994][T22518] EXT4-fs error (device loop0): ext4_dirty_inode:6502: inode #12: comm syz.0.5903: mark_inode_dirty error
[  416.597127][T22518] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.5903: corrupted inode contents
[  416.609252][T22518] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #12: comm syz.0.5903: mark_inode_dirty error
[  416.609994][T22529] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  416.621004][T22518] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.5903: corrupted inode contents
[  416.645530][T22518] EXT4-fs error (device loop0) in ext4_orphan_del:303: Corrupt filesystem
[  416.654312][T22518] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.5903: corrupted inode contents
[  416.667085][T22518] EXT4-fs error (device loop0): ext4_truncate:4635: inode #12: comm syz.0.5903: mark_inode_dirty error
[  416.678899][T22518] EXT4-fs error (device loop0) in ext4_process_orphan:345: Corrupt filesystem
[  416.692969][T22518] EXT4-fs (loop0): 1 truncate cleaned up
[  416.699617][T22518] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  416.712830][T22518] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  416.721982][T22537] loop4: detected capacity change from 0 to 1024
[  416.747208][T22537] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=842c018, mo2=0002]
[  416.758537][T22537] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  416.825939][T22544] EXT4-fs: inline encryption not supported
[  416.831830][T22544] EXT4-fs: Ignoring removed i_version option
[  416.839589][T22537] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5908: bg 0: block 88: padding at end of block bitmap is not set
[  416.854125][T22544] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  416.889426][T22544] EXT4-fs error (device loop0): ext4_map_blocks:783: inode #3: block 2: comm syz.0.5910: lblock 2 mapped to illegal pblock 2 (length 1)
[  416.913996][T22544] EXT4-fs error (device loop0): ext4_map_blocks:783: inode #3: block 48: comm syz.0.5910: lblock 0 mapped to illegal pblock 48 (length 1)
[  416.929551][T12719] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  416.949824][T22544] EXT4-fs error (device loop0): ext4_acquire_dquot:6986: comm syz.0.5910: Failed to acquire dquot type 0
[  416.961744][T22544] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  416.971952][T22544] EXT4-fs error (device loop0): ext4_evict_inode:253: inode #11: comm syz.0.5910: mark_inode_dirty error
[  416.983530][T22544] EXT4-fs warning (device loop0): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[  416.993974][T22544] EXT4-fs (loop0): 1 orphan inode deleted
[  417.000315][T22544] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  417.012475][T14627] EXT4-fs error (device loop0): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:20: lblock 1 mapped to illegal pblock 1 (length 1)
[  417.098172][T22529] ==================================================================
[  417.105166][T14627] EXT4-fs error (device loop0): ext4_release_dquot:7022: comm kworker/u8:20: Failed to release dquot type 0
[  417.106326][T22529] BUG: KCSAN: data-race in filemap_read / filemap_read
[  417.124653][T22529] 
[  417.127008][T22529] read to 0xffff88811cb8c5e8 of 8 bytes by task 22542 on cpu 0:
[  417.134657][T22529]  filemap_read+0x6f/0xa00
[  417.139163][T22529]  generic_file_read_iter+0x79/0x330
[  417.144478][T22529]  ext4_file_read_iter+0x1cc/0x290
[  417.149628][T22529]  copy_splice_read+0x442/0x660
[  417.154511][T22529]  splice_direct_to_actor+0x290/0x680
[  417.159914][T22529]  do_splice_direct+0xda/0x150
[  417.164702][T22529]  do_sendfile+0x380/0x650
[  417.169142][T22529]  __x64_sys_sendfile64+0x105/0x150
[  417.174367][T22529]  x64_sys_call+0x2db1/0x3000
[  417.179068][T22529]  do_syscall_64+0xca/0x2b0
[  417.183611][T22529]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  417.189543][T22529] 
[  417.191897][T22529] write to 0xffff88811cb8c5e8 of 8 bytes by task 22529 on cpu 1:
[  417.199644][T22529]  filemap_read+0x974/0xa00
[  417.204173][T22529]  generic_file_read_iter+0x79/0x330
[  417.209473][T22529]  ext4_file_read_iter+0x1cc/0x290
[  417.214607][T22529]  copy_splice_read+0x442/0x660
[  417.219470][T22529]  splice_direct_to_actor+0x290/0x680
[  417.224860][T22529]  do_splice_direct+0xda/0x150
[  417.229636][T22529]  do_sendfile+0x380/0x650
[  417.234070][T22529]  __x64_sys_sendfile64+0x105/0x150
[  417.239398][T22529]  x64_sys_call+0x2db1/0x3000
[  417.244111][T22529]  do_syscall_64+0xca/0x2b0
[  417.248654][T22529]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  417.254567][T22529] 
[  417.256899][T22529] value changed: 0x0000000000000260 -> 0x0000000000000261
[  417.264027][T22529] 
[  417.266360][T22529] Reported by Kernel Concurrency Sanitizer on:
[  417.272612][T22529] CPU: 1 UID: 0 PID: 22529 Comm: syz.2.5905 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  417.284001][T22529] Tainted: [W]=WARN
[  417.287815][T22529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  417.297889][T22529] ==================================================================
[  417.307395][T22544] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  417.364069][T20839] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  417.379881][T22246] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.