last executing test programs:

1m19.757157815s ago: executing program 3 (id=91):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r1}, &(0x7f0000000040), &(0x7f0000000280)='%pS    \x00'}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='kfree\x00', r2}, 0x10)
sendmmsg$inet(r0, &(0x7f0000004c40)=[{{&(0x7f0000000440)={0x2, 0x4e22, @multicast2}, 0x10, 0x0}}], 0x1, 0x0)

1m19.696500915s ago: executing program 3 (id=95):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000140), 0x13f, 0xa}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000000), 0x13f, 0x3}}, 0x20)
close_range(r0, 0xffffffffffffffff, 0x0)

1m19.659460086s ago: executing program 3 (id=97):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa2000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10000, &(0x7f0000000080)={[{@nobh}, {@auto_da_alloc}, {@data_err_ignore}]}, 0x3, 0x4cd, &(0x7f0000000c80)="$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")
r3 = open(&(0x7f0000000040)='./file1\x00', 0x1a1142, 0x0)
sendfile(r3, r3, 0x0, 0x5c4)

1m18.946742017s ago: executing program 3 (id=105):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x367, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x1e, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x422b1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1}, 0x0, 0xc43}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x8)
socket$packet(0x11, 0xa, 0x300)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x43, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x24040084)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="219a53f271a76d2608004c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000100001000000000000dfff000000000a20000000000a01020000000000000000010000000900010073797a30000000006c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a30000000004000038008000140000000002c0003801400010067656e65766530000000000000000000140001006c6f0000000000000000000000000000080002"], 0xb4}}, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x40, &(0x7f0000000340), 0x1, 0x573, &(0x7f00000005c0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143441, 0x98)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3)
syz_clone(0x20800000, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000340)={'dvmrp1\x00', 0x2})
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x10000, @empty}, 0x1c)
setsockopt$RDS_GET_MR(0xffffffffffffffff, 0x114, 0x2, 0x0, 0x0)
socket$unix(0x1, 0x5, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x7, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000300)={'bond0\x00'})
socket$netlink(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

1m18.349957325s ago: executing program 3 (id=116):
r0 = socket$inet(0x2, 0x2000000080002, 0x0)
setsockopt$inet_MCAST_LEAVE_GROUP(r0, 0x0, 0x2d, &(0x7f0000000500)={0xa2e3, {{0x2, 0x4e24, @empty}}}, 0x88)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r1)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r2, 0x0, 0x3}, 0x18)
timer_create(0x2, 0x0, 0x0)
timer_settime(0x0, 0x0, 0x0, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x4e22, @local}, 0x10)
r4 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000200)={{r4}, &(0x7f0000000080), &(0x7f00000006c0)='%-010d \x00'}, 0x20)
connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @remote}, 0x10)
syz_emit_ethernet(0x36, &(0x7f0000000180)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0xc2}}}}}}, 0x0)

1m17.563959627s ago: executing program 3 (id=137):
r0 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r0, &(0x7f0000000040), 0xc)
r1 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0x2)
write$binfmt_aout(r1, 0x0, 0xc8)
r2 = syz_io_uring_setup(0x10d, 0x0, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4004, @fd_index=0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x1}})
io_uring_enter(r2, 0x3516, 0x0, 0x0, 0x0, 0x0)
r5 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000440)=""/78, 0x97, 0x4e, 0x1, 0x6, 0x10000, @value=r0}, 0x28)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, 0x0})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
shmat(0x0, &(0x7f0000ffd000/0x1000)=nil, 0x7000)
shmctl$IPC_STAT(0x0, 0x2, &(0x7f0000000340)=""/190)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002e000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000001f"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r8, 0x0, 0x10, 0xffffff2e, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

1m17.476889108s ago: executing program 32 (id=137):
r0 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r0, &(0x7f0000000040), 0xc)
r1 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0x2)
write$binfmt_aout(r1, 0x0, 0xc8)
r2 = syz_io_uring_setup(0x10d, 0x0, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4004, @fd_index=0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x1}})
io_uring_enter(r2, 0x3516, 0x0, 0x0, 0x0, 0x0)
r5 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000440)=""/78, 0x97, 0x4e, 0x1, 0x6, 0x10000, @value=r0}, 0x28)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, 0x0})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
shmat(0x0, &(0x7f0000ffd000/0x1000)=nil, 0x7000)
shmctl$IPC_STAT(0x0, 0x2, &(0x7f0000000340)=""/190)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002e000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000001f"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r8, 0x0, 0x10, 0xffffff2e, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

4.63905913s ago: executing program 0 (id=1872):
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f00000004c0)={[{}]}, 0x1, 0x453, &(0x7f0000001040)="$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")
r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x41009432, &(0x7f00000001c0))
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000340), r1)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000001400010000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r4}, 0x10)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000000640)=@raw={'raw\x00', 0x8, 0x3, 0x3f0, 0x1c0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x320, 0xffffffff, 0xffffffff, 0x320, 0xffffffff, 0xb, 0x0, {[{{@ipv6={@remote, @mcast2, [0x0, 0xffffffff, 0x0, 0xffffffff], [0xff000000, 0xff, 0x0, 0xffffffff], 'pim6reg\x00', 'pim6reg1\x00', {0xff}, {0xff}, 0x11, 0x7, 0x3, 0x20}, 0x0, 0x1a0, 0x1c0, 0x60030000, {0x0, 0xff000000}, [@common=@inet=@recent0={{0xf8}, {0x81, 0x0, 0x24, 0x0, 'syz1\x00'}}]}, @unspec=@TRACE={0x20}}, {{@ipv6={@private0={0xfc, 0x0, '\x00', 0x1}, @empty, [0xffffff00, 0xffffffff, 0xff, 0xf2c83c7309a34ff5], [0x0, 0xffffff00, 0xffffff00, 0xff000000], 'caif0\x00', 'lo\x00', {}, {0xff}, 0x0, 0x0, 0x5, 0x10}, 0x0, 0xf8, 0x160, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x8}}, @common=@inet=@set2={{0x28}, {{0x0, 0x40, 0x7}}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x450)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x82, 0x20, 0x8404, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x0, 0x1, 0x0, 0x0, 0x2, 0x17ffffff, 0x0, 0x0, 0x3d, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

4.486941303s ago: executing program 4 (id=1875):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={0x0, 0x28}, 0x1, 0x0, 0x0, 0x400}, 0x20040000)
getsockname$packet(r3, &(0x7f0000000280)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000900)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x4000080}, 0x40040c0)
sendmmsg$inet(r1, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @loopback}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r4, @empty}}}], 0x20}}], 0x1, 0x80) (fail_nth: 2)

4.200791647s ago: executing program 0 (id=1876):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x1, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000000)={0xffffffffffffffff, r0, 0x0, r0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r0, 0x0, 0xffffffffffffffff}, 0x18)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="600000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="1546010000000000380012800e000100697036677265746170000000240002800400120014000700ff0200000000000000000000000000010800150015e5040008000a00", @ANYRES32], 0x60}}, 0x0)

3.951413071s ago: executing program 4 (id=1877):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x5a, 0x1, 0x0, 0x0, 0x0, 0x210c, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x407fff, 0xaee}, 0x12345, 0x32, 0xfffffbff, 0x3, 0x2, 0x0, 0xfffa, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/59, 0x232000, 0x1000}, 0x20) (fail_nth: 9)

3.873347522s ago: executing program 4 (id=1879):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_FLAG_CMD(r0, 0x8982, &(0x7f0000000040)={0x7, 'bond_slave_0\x00', {0x3ff}, 0x1})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r4, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r4, 0x0)
r5 = socket$kcm(0x29, 0x2, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000027b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000340)=[{0x200000000006, 0x8, 0x0, 0x7ffc1ffb}]})
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
ioctl$sock_kcm_SIOCKCMUNATTACH(r5, 0x89e1, &(0x7f0000000340))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='qdisc_reset\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='qdisc_reset\x00', r2}, 0x10)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fdatasync(r5)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000180)={'rose0\x00', 0x112})
ioctl$TUNSETQUEUE(r7, 0x400454d9, &(0x7f0000000100)={'vlan0\x00', 0x400})

3.720353354s ago: executing program 0 (id=1883):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000000580)=@raw={'raw\x00', 0x8, 0x3, 0x520, 0x340, 0x25, 0x148, 0x0, 0x60, 0x488, 0x2a8, 0x2a8, 0x488, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'geneve0\x00', {0x0, 0x0, 0x9, 0x0, 0x80ffffff, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x6, 'syz0\x00'}}}, {{@ip={@empty, @empty, 0x0, 0x0, 'syzkaller0\x00', 'veth0_to_team\x00'}, 0x0, 0xe8, 0x148, 0x0, {}, [@common=@set={{0x40}}, @common=@unspec=@statistic={{0x38}}]}, @common=@SET={0x60}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x580)
bind(r1, &(0x7f00000003c0)=@tipc=@id={0x1e, 0x3, 0x0, {0x4e20}}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(r2, &(0x7f0000000040)={0xa, 0x0, 0x2, @dev={0xfe, 0x80, '\x00', 0x35}, 0x3, 0x2}, 0x20)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x18)
r4 = socket(0x10, 0x3, 0x9)
connect$netlink(r4, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x25dfdbfc}, 0xc)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000240), 0x208e24b)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000540), r4)
sendmsg$MPTCP_PM_CMD_SET_FLAGS(r5, &(0x7f0000000d00)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000cc0)={&(0x7f0000000c40)={0x74, r6, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_ADDR_REMOTE={0x3c, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e23}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @empty}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5abb013dbd05812}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}]}, @MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e20}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x8}]}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x2}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x1}]}, 0x74}, 0x1, 0x0, 0x0, 0x20000004}, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009c0000000b"], 0x50)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(r4, 0x84, 0x65, &(0x7f0000000b00)=[@in={0x2, 0x4e23, @private=0xa010102}, @in6={0xa, 0x4e21, 0x8, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x5}, @in6={0xa, 0x4e23, 0x3, @private1, 0xffffff00}, @in6={0xa, 0x4e24, 0x4ab, @private1, 0x1}, @in6={0xa, 0x4e21, 0x2, @loopback, 0xe}], 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYRES8=r2, @ANYRES32=r7, @ANYRESHEX=r0], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r9}, 0x10)
socket$nl_xfrm(0x10, 0x3, 0x6)
r10 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r10, &(0x7f00000004c0)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000e80)={<r11=>0xffffffffffffffff}, 0x2, 0x5}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY(r10, &(0x7f00000000c0)={0x13, 0x10, 0x8, {0x0, r11, 0x1}}, 0x18)

3.719849404s ago: executing program 4 (id=1885):
r0 = socket$key(0xf, 0x3, 0x2)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r1}, 0x10)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/oops_count', 0x184902, 0x0)
socket$kcm(0x29, 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x6)
r3 = syz_io_uring_setup(0x495, &(0x7f0000000780)={0x0, 0xfffffffd, 0x10100, 0x200, 0x11a}, &(0x7f0000000100)=<r4=>0x0, &(0x7f00000000c0)=<r5=>0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000bc0)={0x1b, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5, 0x0, 0x0, 0x800}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000000)=""/4, 0x4}], 0x27})
io_uring_enter(r3, 0x567, 0x1000a387, 0x0, 0x0, 0x0)
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000040)={&(0x7f0000000000)={0xa, 0x4e20, 0x1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x3}, 0x1c, &(0x7f0000000980)=[{&(0x7f0000000480)="ef7be03a7ec344d122c822975ee08abce342edbabb0e748e80e3b53559d724c325a1d49d8b742bb579cf0692fdb932b90cca39544f28881bbc636d7d6ec4b17856a731819992591e559b3a50a6ff5dbd3e2b85d049174b4feef20a1f410c9671233e8ad1b3922133f12aba7fdf75110edaeb3d0e2f6dfb6e11b832174039b9e09bf96544c974e52d2db0f578a75fa21b3973c1985714b19a8957c5d35dfdb736c903adbaa814d0966a06545f8b490d5346b5200d044d4ed671cfe331eef2ffdf972365d44038d1388d0bacd8c1f817e6dbced3e7c4a944fc7eb55a4911d0d8f5b5715c8dee3282db216db808", 0xec}, {&(0x7f0000000580)="f2599d24b2cc9b1534d2d3893934d886f4946bf3d21272247bbdad3c25c8eea4c14d6d6cbde85bd06e0f92e8e9ffc8b77f65592da84e4f8bf03cad5b4c62127fe08e196022f2b675095c82f29a9dc846c95099bfd3cee331ee2fb03a680da052777f077bd2400871a460f064859aa3f951d351fc0d657fec2c38be136f57895d63239cfec76b", 0x86}, {&(0x7f0000000640)="edc51f426bc4d49624b8501e78d03d7c15bd5a828faeb14e1ff4e772eec13096733d65bf5ebf64073dd419807e75b7dc3edabf672901a5d8ae47b0aa59edef21808643d6e9315d2ee121ccb9096849ad1dd5d9b892ddc7cb31b93c4b2c4659ea9622823613a2017db9e7b5d2aa54828bd52ff3c8", 0x74}, {&(0x7f00000006c0)="42cfcfb12e85d84b37343d869714958c29879785c20a5904e99c8bc980b230537bbeacb2980dc4a41b449a7878a9d32fd0699f29291377efa9a9b384982363eda37bfc1d7377b557ba8510d7bf1d02ef95ab3732998d177b81d00ddb7c3172678c45659a79614316bcc6fe79f4d7418c42f26042fa9685d9946d8387c3662460dd93c10cb71bda0d6c10edf46c467b4d8305f739893b96260244f3581dfb9d7de1605d0d9f4701ecfae0833bc947412708f55075800448df8532ae8e0cbebb7da333c3a4", 0xc4}, {&(0x7f00000007c0)="c5a6ce49f90174c073c8163818633d7b21e04c3a05224cfa40371a1f2ffc2605d65a6650ed19f24cbd62c596fe05c01173879b8c9a2a95b6be3bf07a800ce65bee0be29b0351c5b5f48d457c8a5942566eb53d899d11e121e9d3dfa8a4890f592f76b87fbcb873b10fea9f2380f2d1defc3226f1723a71c0ba0a9e3c87edd357736e5e04fd9568fb58a315d8890ba5f99079283d19861da3f44833d0eafe35a34c4e545a471055b766fbf73837aceb85bed46a022342e27c02d9af5f1e2a5566f3e827566d878c1da4", 0xc9}, {&(0x7f00000008c0)="695b06a7ca4a1a6b3a577fc65cdb9d651a2b40b19f8385368ef6e64166ce7b1f31db8378ef1caa1bec49699ab8a7107123b68876ed4075973428b0b80d50f42fd00ae284f6fd65e1b8508ad1249664140083d5c6f00ea66b7d71e6219164f06a3da7cc6481ec18c1d27cc8a39add57ac08edc6f0a8e7c5014cf9e9fabefb0f0afbfe819e372de5a2022c526b8da2d5f627e4473177ee3b815f87433e50cbf5ac61aef159074d4b91384f963b7c40a4db6ead382ac99354a92886dc733e73f254", 0xc0}], 0x6}, 0x4010)
r6 = socket(0x10, 0x80002, 0x4)
sendmsg$nl_route_sched(r6, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000a00)=@gettaction={0xb8, 0x32, 0x200, 0x70bd2d, 0x25dfdbfd, {}, [@action_gd=@TCA_ACT_TAB={0x40, 0x1, [{0xc, 0x1f, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}, {0xc, 0x2, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x19}}, {0xc, 0xe, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0xfffffffb}}, {0xc, 0x16, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ife\x00'}}, {0xc, 0xd, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'bpf\x00'}}]}, @action_gd=@TCA_ACT_TAB={0x58, 0x1, [{0x14, 0x16, 0x0, 0x0, @TCA_ACT_KIND={0xf, 0x1, 'tunnel_key\x00'}}, {0x14, 0x20, 0x0, 0x0, @TCA_ACT_KIND={0xf, 0x1, 'tunnel_key\x00'}}, {0x10, 0x6, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}, {0xc, 0x1, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0xbb}}, {0x10, 0xe, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'vlan\x00'}}]}, @action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2, {0x1}}]}, 0xb8}}, 0xc844)
sendmsg$key(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="0202000311000000000000000000000005000500000000000a00000000000000fe8000000000000000000000000000bb000000000000000002000100000007000000000b000000000200090000000000000000000000000005000600000000000a00000000000000fe8800000000000000000000000000010000000000000000010018"], 0x88}}, 0x0)

3.535456317s ago: executing program 4 (id=1889):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000001a00010000000000000000000200000031ea36ba8dd5b27b08000100ac1414"], 0x24}}, 0x0)
pipe2$watch_queue(&(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001240)=@base={0x12, 0x4, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
close(r2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0xe, 0xe, &(0x7f0000001440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000001800000000000000000000000000000095"], &(0x7f0000000200)='syzkaller\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x3, 0x0)
connect$netlink(r4, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x1}, 0xc)
sendmsg$nl_route(r4, &(0x7f0000000380)={&(0x7f00000001c0), 0xc, &(0x7f0000000340)={&(0x7f00000002c0)=@bridge_getlink={0x34, 0x12, 0x1, 0x0, 0x0, {}, [@IFLA_ALT_IFNAME={0x14, 0x35, 'wg0\x00'}]}, 0x34}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000001c0)={'sit0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r5, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0x10, 0x1}}]}}, @TCA_RATE={0x6}]}, 0x4c}, 0x1, 0x0, 0x0, 0x48801}, 0x0)
r6 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_SET_FORCE_PACK_ID(r6, 0x227b, &(0x7f00000000c0)=0x1)
readv(r6, &(0x7f0000000580)=[{&(0x7f0000000100)=""/67, 0x43}], 0x1)
r7 = fcntl$dupfd(r6, 0x0, r6)
write$sndseq(r7, &(0x7f00000003c0)=[{0xfc, 0x0, 0x0, 0x0, @time={0x0, 0x101}, {0x0, 0xb8}, {0x0, 0x9}, @control={0x9, 0x9, 0xa}}, {0x0, 0x0, 0x0, 0x0, @time={0x0, 0x3ff}, {0x6, 0xfd}, {0x0, 0x3}, @control={0x7, 0x9fa, 0x6}}], 0x38)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000300)={0x9, <r8=>0x0}, 0x8)
r9 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000000), 0x80402, 0x0)
write$cgroup_int(r9, 0x0, 0x2)
r10 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000340)={0x1b, 0x0, 0x0, 0x81, 0x0, 0xffffffffffffffff, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x5, 0x5, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0xf, 0x1d, &(0x7f00000000c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x7}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@generic={0x13, 0x1, 0xb, 0xf2, 0xfff}, @snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r2}}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f00000001c0)='GPL\x00', 0x90000000, 0x28, &(0x7f0000000240)=""/40, 0x41100, 0x1, '\x00', r5, @cgroup_device, r7, 0x8, &(0x7f0000000280)={0x4, 0x3}, 0x8, 0x10, &(0x7f00000002c0)={0x1, 0x2, 0x4b62, 0x7}, 0x10, r8, r9, 0x6, &(0x7f00000003c0)=[r10], &(0x7f0000000400)=[{0x1, 0x2, 0xf, 0x8}, {0x0, 0x5, 0x9, 0x1}, {0x4, 0x2, 0xb, 0x2}, {0x1, 0x4, 0xa, 0xf}, {0x2, 0x1, 0xd, 0x5}, {0x2, 0x2, 0x2, 0x6}], 0x10, 0x101, @void, @value}, 0x94)

3.401057349s ago: executing program 2 (id=1890):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'vlan0\x00'})
getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000140)={{{@in=@loopback, @in=@loopback}}, {{@in6=@remote}, 0x0, @in6=@dev}}, &(0x7f0000000000)=0xe8)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f00000000c0))
r2 = getuid()
syz_mount_image$msdos(&(0x7f0000000140), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYRES64=r2, @ANYRESDEC, @ANYRESHEX=r2], 0x1, 0x522, &(0x7f0000000a80)="$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")
pipe(&(0x7f0000000180)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket(0x1, 0x1, 0x0)
splice(r4, 0x0, r3, 0x0, 0x4ff9c, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000240)={0x0, r5}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r7 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r7, 0x8933, &(0x7f0000000100)={'vxcan0\x00'})
socket$inet6(0xa, 0x800, 0x8)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r6}, 0x10)
r8 = syz_io_uring_setup(0x292, &(0x7f0000000080)={0x0, 0x0, 0x13100, 0x1}, &(0x7f0000000280), &(0x7f0000000240))
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r9, 0x0)
io_uring_register$IORING_REGISTER_SYNC_CANCEL(r8, 0x18, &(0x7f0000000140)={0x5, r8, 0x27, {0x9, 0x1}, 0x6}, 0x1)
r10 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r10, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r12}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x40, 0x7ffc1ffb}]})

3.230179422s ago: executing program 2 (id=1891):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0a000000030000000800000001"], 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000400)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000380), &(0x7f00000003c0)='%-010d \x00'}, 0x20)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x9}}, './file0\x00'})
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), r2)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f00000001c0), 0x0)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r5, &(0x7f0000001080)={0xa, 0x6e22, 0x4000, @loopback}, 0x1c)
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/rt_cache\x00')
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b00)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r8}, 0x10)
lseek(r6, 0x80, 0x0)
connect$pppl2tp(r4, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r5, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(r5, 0x29, 0x37, &(0x7f0000000000)=ANY=[], 0x8)
writev(r4, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x34000}], 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r3}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, &(0x7f00000000c0)})
setxattr$security_capability(0x0, &(0x7f0000000280), 0x0, 0x0, 0x0)

2.838294117s ago: executing program 2 (id=1894):
pwrite64(0xffffffffffffffff, &(0x7f0000000140)='2', 0x1, 0x1000)
cachestat(0xffffffffffffffff, &(0x7f0000000080)={0x1, 0x2fdd}, &(0x7f00000000c0), 0x0)

2.831708347s ago: executing program 0 (id=1895):
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x205, 0x8401)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$USBDEVFS_SUBMITURB(r1, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x80, 0x31, 0x3, 0x0, 0x7995}, 0x8, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3b, 0x1, 0x0, 0x0, 0x0, 0x7, 0x590, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x9, 0xa5d4}, 0x4c58, 0x0, 0x0, 0x1, 0x8, 0x2, 0xb, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
read$usbfs(r0, &(0x7f0000000280)=""/164, 0xa4)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000300), 0x6)
recvmmsg(0xffffffffffffffff, &(0x7f0000000fc0)=[{{0x0, 0x0, 0x0}, 0xfff}], 0x1, 0x0, 0x0)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600002, 0x600002, 0x7, &(0x7f0000a00000/0x600000)=nil)
r2 = epoll_create1(0x0)
r3 = creat(&(0x7f00000001c0)='./bus\x00', 0x4e)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB], 0xe8}}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r4}, 0x10)
close(r3)
syz_io_uring_setup(0x17af, &(0x7f0000000380)={0x0, 0x7995, 0x13290, 0x0, 0xfffffffd}, 0x0, 0x0)
r5 = inotify_init1(0x800)
read(r5, 0x0, 0x0)
close(r5)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='pids.current\x00', 0x275a, 0x0)
mount$9p_fd(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000180), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
socket$nl_generic(0x10, 0x3, 0x10)

2.748135739s ago: executing program 5 (id=1897):
rt_sigaction(0x7, &(0x7f00000000c0)={&(0x7f0000000040)="0f380bc66a7df340f6430000c4229d9d2fc40201049800000000652ef30f1633670f6fd2650fd1589365260ff515f1ff00006466420f43cb", 0xc0000004, 0x0}, 0x0, 0x8, &(0x7f00000001c0))

2.748082069s ago: executing program 2 (id=1898):
rt_sigaction(0x7, &(0x7f00000000c0)={&(0x7f0000000040)="0f380bc66a7df340f6430000c4229d9d2fc40201049800000000652ef30f1633670f6fd2650fd1589365260ff515f1ff00006466420f43cb", 0xc0000004, 0x0}, 0x0, 0x8, &(0x7f00000001c0))

2.737210079s ago: executing program 2 (id=1900):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x18, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0xffffffffffffffff}, 0x13)
r1 = syz_io_uring_setup(0x10b, &(0x7f0000000580)={0x0, 0xd736, 0x8, 0x3, 0xbffffffa}, &(0x7f00000003c0)=<r2=>0x0, &(0x7f0000000340)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f00000002c0)=0x9, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_LINKAT={0x27, 0x40, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0x400, 0x1})
r4 = socket$kcm(0x10, 0x2, 0x0)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r5}, 0x4)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x10, &(0x7f0000000840)=@framed={{}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r5}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r6}, 0x10)
sendmsg$kcm(r4, &(0x7f0000000940)={0x0, 0x1400, &(0x7f0000000180)=[{&(0x7f00000001c0)="d80000001c0081064e81f782db44b9040a1d08040e00000000000aa1180002000600142603600e1208000f0000810401a8001605200001400200000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a985162756aa5e8d7ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43", 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
io_uring_enter(r1, 0x7b55, 0x2583, 0x4, 0x0, 0x0)

2.708855379s ago: executing program 5 (id=1901):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x50)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x62181)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000180)={0x0, 0x0, 0x0, 'queue0\x00'})
write$sndseq(r1, &(0x7f0000000000)=[{0x1e, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffed7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYRESDEC=r2], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = socket$packet(0x11, 0x2, 0x300)
perf_event_open(&(0x7f0000000040)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x200, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x3)
r7 = syz_io_uring_setup(0x2d2, &(0x7f0000000480)={0x0, 0x60fa, 0x1, 0x80000000, 0x16}, &(0x7f0000000400)=<r8=>0x0, &(0x7f00000001c0))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r8, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
io_uring_enter(r7, 0x47ba, 0x0, 0x0, 0x0, 0x0)
setsockopt$packet_int(r6, 0x107, 0x14, &(0x7f0000000000)=0x930d, 0x4)
r9 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000080)={'erspan0\x00', <r10=>0x0})
sendto$packet(r6, 0x0, 0x0, 0x0, &(0x7f0000000140)={0x11, 0xd, r10, 0x1, 0x0, 0x6, @remote}, 0x14)
sendmsg$DCCPDIAG_GETSOCK(r4, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000002c0)={&(0x7f0000000f80)=ANY=[@ANYBLOB="40240000130000032cbd7000ffdbdf252104f3104e214e24632a00000400000003000000090000000600000009000000e444000000000080", @ANYRES32=r10, @ANYBLOB="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"], 0x2440}, 0x1, 0x0, 0x0, 0x84}, 0x4804)
ioctl$AUTOFS_IOC_READY(r0, 0x9360, 0x9)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='timer_start\x00', r5}, 0x10)
r11 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r12}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x46, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r13 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r13}, 0x10)
syz_emit_ethernet(0x9a, &(0x7f0000000c40)=ANY=[@ANYBLOB="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"], 0x0)

2.66041046s ago: executing program 1 (id=1903):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={0x0, r0, 0x0, 0xfffffffffffffffc}, 0x18)
io_uring_setup(0x3eae, &(0x7f0000000080)={0x0, 0x7d9, 0x1000, 0x0, 0x4000000})
syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, r1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a3000000000080002400c0000002c"], 0x7c}}, 0x4000)
r3 = getpid()
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, 0x0, 0x10)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffd000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f00000500000000000000", @ANYRES32, @ANYBLOB="00001700000400000002", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_clone(0x42000000, 0x0, 0x0, 0x0, 0x0, 0x0)

2.66001554s ago: executing program 4 (id=1904):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
syz_io_uring_setup(0x83f, 0x0, &(0x7f0000000140)=<r0=>0x0, &(0x7f0000000280)=<r1=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r0, r1, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x109880})
syz_open_procfs(0x0, &(0x7f0000000240)='fdinfo/3\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = mq_open(&(0x7f0000000180)='\r\x00elinu\xef\xe3elinux\x00\x96\xf6\x92\n#*\xac\x05\xce\xf8D\\\x9a\xe6[]L+\xf6\v\xe8\xf2\xd3\b\x15\n\xb8F!Q9o\x1f#\xbdt\r\xfb\"\x18%\xfdM\xaf_t\xd2\xdcJ\x10\a\xbab\x1a\xdf\xb1\xbdU\xd7Lo\xe7\xac\x81\x10k\xce-\xf5@\xbb\x9d;\xe8\xf6\xffQ\x04\xaai\x92k\x1b;\xddM\xa2\xe1-\x0e\xd8\xde\x00\xff\x18\xdd\bL\xfb\xa2.\xb6{\xb5\x85#\x88\xdc\xf0\x0f\x05\xf1\xc4 \xdeV\x80q\xf7\x04\xf5\x85T\x1f\xc2S]*\xc9lw\xd3J\xc5\xe8\x02\xcb\xbbAHxr\xac\xb77F\xdf\x1c\xcb\xd4\xce\x88L\xf1\xf9[\x98\xd4+pTx\x95\xb5\x1b]x\x1a\x95\xe1c6\xe7`83\xb7n#\xe0\xc1_\xec\xba\xde\a\x8b\xc5\x86woo\xbc\x1c\xa3r\x82\xf3enq-\x90/\xed\xff\xad+\x03\x10\t\xda\xfd\xa2\xd0\xef4\n%\xf1\xd8', 0x6e93ebbbcc0884f2, 0x0, 0x0)
mq_getsetattr(r2, 0x0, 0x0)
r3 = socket$can_j1939(0x1d, 0x2, 0x7)
setsockopt$SO_J1939_PROMISC(r3, 0x6b, 0x2, 0x0, 0x0)
setsockopt$sock_int(r3, 0x1, 0x6, &(0x7f0000000040)=0x1, 0x4)
io_uring_setup(0x192, &(0x7f0000000300)={0x0, 0x4178, 0x1, 0x8000002, 0x3d7})
r4 = open_tree(0xffffffffffffffff, &(0x7f0000000980)='./file1\x00', 0x1101)
syz_read_part_table(0x5df, &(0x7f0000000000)="$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")
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000005"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$NFQNL_MSG_CONFIG(r4, &(0x7f0000001380)={&(0x7f0000001280)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001340)={&(0x7f00000012c0)={0x44, 0x2, 0x3, 0x201, 0x0, 0x0, {0x3, 0x0, 0x3}, [@NFQA_CFG_PARAMS={0x9, 0x2, {0x4, 0x2}}, @NFQA_CFG_PARAMS={0x9, 0x2, {0x2c9, 0x2}}, @NFQA_CFG_QUEUE_MAXLEN={0x8, 0x3, 0x1, 0x0, 0xa}, @NFQA_CFG_CMD={0x8, 0x1, {0x0, 0x0, 0x9}}, @NFQA_CFG_QUEUE_MAXLEN={0x8, 0x3, 0x1, 0x0, 0x9}]}, 0x44}, 0x1, 0x0, 0x0, 0x40050}, 0x4040)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSIGACCEPT(r7, 0x5607, 0xb)
ioctl$TIOCL_SETSEL(r7, 0x541c, &(0x7f00000005c0)={0x2, {0x2, 0x5, 0x7, 0xffff, 0x5}})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r8 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161942, 0x0)
ioctl$PPPIOCNEWUNIT(r8, 0xc004743e, &(0x7f0000000140))

2.65970619s ago: executing program 5 (id=1905):
io_setup(0x81, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffffff85000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a00)={&(0x7f0000000d00)='sched_switch\x00', r0}, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000000900010073797a30000000003c000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000000f8c0000000c0a01080000000000000000010000000900020073797a3200000000600003805c000080080003400000000250000b80200001800a00010071756f7461000000100002800c0001400000000000000000140001800c000100636f756e74657200000000000000058011e70000666c6f775f6f66666c6f6164000000000900010073797a30"], 0x110}, 0x1, 0x0, 0x0, 0x24000001}, 0x0)
setsockopt$MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, &(0x7f00000000c0)={0x0, 0x1, 0x3, 0x0, 0x1}, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

2.488283463s ago: executing program 2 (id=1906):
gettid()
timer_create(0x1, &(0x7f00000000c0)={0x0, 0x1f, 0x800000000004, @thr={&(0x7f0000000ac0)="6f671959e38d8c750b92582299a3c209b1d586386b4217a96e95dd1289cd1a0635bd027c1fad8ee84f3cb208bce0e64caeb413a5068c22e89df48c6f382a1bcaef9e5d369883c7f7a0dc", &(0x7f0000000b40)="f6bd13704fc83a4bbad5b49723292bc7cac5a66f93ef1a26147de596713ba599e488c1e7db70454168446a3c68724bda386182723ef86606e452132f6827db0af2cf68bcb8b958c5a64aff1652638e"}}, &(0x7f0000000a80))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
mknod(&(0x7f0000000000)='./file0\x00', 0x8001420, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x3000010, &(0x7f0000000000)={[{@errors_remount}, {@nobh}]}, 0x1, 0x513, &(0x7f0000000380)="$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")
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000a50000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r1, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$inet(0x2, 0x3, 0x8)
setsockopt$inet_int(r2, 0x0, 0x5, &(0x7f0000000080)=0x7, 0x4)
r3 = socket$inet(0x2, 0x6000000000000003, 0x6)
r4 = dup3(r2, r3, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000c80)={0x0, 0xc, &(0x7f0000001cc0)=ANY=[@ANYRESDEC=r1, @ANYBLOB="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"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000d40)={&(0x7f0000000bc0)='fsi_master_acf_cmd_rel_addr\x00', r5, 0x0, 0x4}, 0x18)
setsockopt$inet_int(r4, 0x0, 0x5, &(0x7f0000000080)=0x7, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000a40)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x4, &(0x7f0000000c00)={[{@nodioread_nolock}, {@nodiscard}, {@nodelalloc}], [{@obj_type={'obj_type', 0x3d, 'kmem_cache_free\x00'}}, {@subj_type={'subj_type', 0x3d, '-['}}, {@measure}, {@obj_user}]}, 0x1, 0x4a3, &(0x7f0000000580)="$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")
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000040)=0x1)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r7, &(0x7f0000000140)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r7, 0x0)
ioctl$TCSETS(r6, 0x89f0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7ff, 0x0, "5dee000000594000"})
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000059c0)='./bus\x00', 0x80440e, &(0x7f0000000140)={[{@jqfmt_vfsv0}, {@lazytime}, {@barrier_val={'barrier', 0x3d, 0x8}}, {@dioread_nolock}]}, 0x1, 0x449, &(0x7f0000000d80)="$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")

1.118330763s ago: executing program 0 (id=1907):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_CM_ID_GET(r0, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000e00)={0x18, 0x140b, 0x1, 0x70bd2a, 0x25dfdbfd, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}]}, 0x18}, 0x1, 0x0, 0x0, 0xc004}, 0x40010) (fail_nth: 2)

758.267598ms ago: executing program 0 (id=1908):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f00000001c0)={'batadv_slave_1\x00', <r1=>0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000013c0)={0x6, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000954aac905f7d8919afa1ab8ee0910b4df949719217236f6123b55c4507430d2636dcc07b0101db8aec28a92b8885c67617228b7de623fed4152c608a129ec08a2f41b80880447513ea55439ce2f46bec8e588cc4c625e134a73ee13d971f07cae90cbba23ce263e52db9b43b6fb44b4cab2542a3d45e4c45724c563969360a2d3c2ddcf155148892e899e815d23147bbd9834980a11bd813daaf95652fbd6ca6fffb1d6a1f704a933d12aa4d4708be391f9ffc9709f996d0b11d61a181d3cf0bc3444ffa99f5b70b6f3127ea819318094c15b458131dbbd8"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', r1, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (fail_nth: 3)

750.650869ms ago: executing program 5 (id=1909):
pwrite64(0xffffffffffffffff, &(0x7f0000000140)='2', 0x1, 0x1000)
cachestat(0xffffffffffffffff, &(0x7f0000000080)={0x1, 0x2fdd}, &(0x7f00000000c0), 0x0)

738.029459ms ago: executing program 1 (id=1910):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffea4, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r2}, 0x10)
open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r3, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2, 0x10, r3, 0x0)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x4, &(0x7f0000000080)=[{&(0x7f0000000200)="2e0400001c008102e00f80ecdb4cb9f207c804a00d00000088081afb0a0002000a0ada1b40d80800c500c50083b8", 0xfec9}], 0x1, 0x0, 0x0, 0x5865}, 0x0)
rt_sigaction(0x7, &(0x7f00000000c0)={&(0x7f0000000040)="0f380bc66a7df340f6430000c4229d9d2fc40201049800000000652ef30f1633670f6fd2650fd1589365260ff515f1ff00006466420f43cb", 0xc0000004, 0x0}, 0x0, 0x8, &(0x7f00000001c0))

620.356611ms ago: executing program 5 (id=1911):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x8, &(0x7f0000000280)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000900)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f00000004c0)='kfree\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'macvlan1\x00'})
socket(0x40000000015, 0x5, 0x0)
getsockopt(0xffffffffffffffff, 0x200000000114, 0x2715, 0x0, &(0x7f0000000000))

613.441131ms ago: executing program 5 (id=1912):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x18e58, &(0x7f0000000240), 0x0, 0x5fc, &(0x7f0000000600)="$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")
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0xdc, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0xe}, 0x18002, 0x8000, 0x0, 0x3, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$INCFS_IOC_CREATE_FILE(r1, 0xc058671e, &(0x7f0000000500)={{'\x00', 0x2}, {0x2}, 0x0, 0x0, 0x0, &(0x7f00000001c0)='./file1\x00', &(0x7f0000000300)='./file1\x00', &(0x7f0000000340)="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", 0x182, 0x0, &(0x7f0000000c00)={0x2, 0xfa, {0x0, 0xc, 0xa7, "c9b9ac2d44d76714926927bef1dd1a6c8037e81a50cd74d5b4a2215b73e9116bec73f1b541d8c9f65ca6219daba51fffc3fe18d471aa6852a85a1bff3bd9b4b4353dccaf8aec762fb604e4072965abff85bc42ff0eea55433cd06bcde56ffc47aa63fde4f460a9f9afb15e5445712824643a5a1205515aa7d2fedfc2f7847b86341a205a0c4610e9719c552baf96c94b38d79e2737ebb291799a5e04c5d47ac2a57cd98ecfc3a6", 0x46, "726df292b6a46f01325b681f5f47a33e6a4a6f7d7f9d8720061855a250bf988a6dd47f6041c7e691ec4af0a23b2dc1d7bbed9794856645bee508af3b946dc9c295330822ca80"}, 0x48, "525d8d6683e216c07c86bf480c0f5eee60b492029840476300fc42d18e6de5e96d532d2119b33ac5f2ef5bf89c2146b96225928b7d688a650dbf1f1e4d0329e271dec3a54f60b041"}, 0x14e})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r5=>0x0})
r6 = socket$netlink(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000580), r6)
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000f80)=ANY=[@ANYBLOB="440000001000030500"/20, @ANYBLOB="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", @ANYRESDEC=r1, @ANYRES32=r5], 0x44}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r3, 0x0, 0x8000}, 0x18)
r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/resume', 0x169a82, 0x109)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000900)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r9, 0x0, 0xfffffffffffffffe}, 0x18)
sendfile(r7, r7, 0x0, 0xb)
sendmsg$NFT_BATCH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a50000000060a0b040000000000000000020000002400048020000180070001006374000014000280080004400000000008000240000000110900010073797a30000000000900020073797a32"], 0x78}}, 0x0)

233.186096ms ago: executing program 1 (id=1913):
r0 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000140)={'veth0_to_team\x00', &(0x7f0000000280)=@ethtool_channels={0x3d, 0x0, 0x0, 0x0, 0x4, 0x2, 0x1}})
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000002c0)={'veth0_to_team\x00', &(0x7f0000000080)=@ethtool_regs={0x4, 0x400, 0xa, "baec4ee4497bd34d4bed"}})
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000040)={'veth0_to_team\x00', 0x800})

68.230009ms ago: executing program 1 (id=1914):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_CM_ID_GET(r0, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000e00)={0x18, 0x140b, 0x1, 0x70bd2a, 0x25dfdbfd, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}]}, 0x18}, 0x1, 0x0, 0x0, 0xc004}, 0x40095)

288.27µs ago: executing program 1 (id=1915):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (async)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0) (async)
prctl$PR_SET_SECUREBITS(0x1c, 0x7) (async)
setfsuid(0xee00) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x40000000, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) (async)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x8, &(0x7f0000000000)=@raw=[@tail_call={{0x18, 0x2, 0x1, 0x0, r0}}, @btf_id={0x18, 0x0, 0x3, 0x0, 0x1}, @jmp={0x5, 0x0, 0x0, 0x0, 0x3, 0xffffffffffffffe0, 0xfffffffffffffffc}], &(0x7f0000000040)='syzkaller\x00', 0x3, 0x6b, &(0x7f0000000280)=""/107, 0x41000, 0x20, '\x00', 0x0, 0x0, r1, 0x8, &(0x7f00000001c0)={0x0, 0x1}, 0x8, 0x10, &(0x7f0000000300)={0xfff, 0x6, 0x8, 0x8}, 0x10, 0x0, 0x0, 0x4, 0x0, &(0x7f0000000340)=[{0x0, 0x1, 0x4}, {0x1, 0x1, 0x2, 0xa}, {0x3, 0x2, 0xaa63, 0x4}, {0x2, 0x3, 0x1}], 0x10, 0x1, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r2}, &(0x7f0000000580), &(0x7f00000005c0)=r3}, 0x20) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10) (async)
quotactl$Q_QUOTAON(0xffffffff80000200, &(0x7f00000002c0)=@nullb, 0x0, &(0x7f0000000400)='./file0\x00') (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (async)
bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0) (async)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r4}, 0x10)
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000140)=@base={0x6, 0x4, 0x8000, 0x5c, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x3, 0x0, @void, @value, @void, @value}, 0x50)

0s ago: executing program 1 (id=1916):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000100)=0xcf5)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x4, 0x0, 0x0, 0x0, "0062ba7d82000000000000000000f7ffffff00"})
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_pts(r0, 0x0)
r1 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000000)={0x2001}, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f00000003c0), 0xffffffffffffffff)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000500000002"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f00000012c0)='sys_enter\x00', r3}, 0x10)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000004850000006d00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfe33, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r4, 0x0, 0x1}, 0x18)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, r2, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x200, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r6 = mq_open(&(0x7f0000000040)='!\x7f\x00\xca\x00\x00\x00\f\x00\x00\x01E!Tnux\x00', 0x6e93ebbbcc0884f2, 0xe1, &(0x7f0000000000)={0x0, 0x1, 0x8})
mq_timedreceive(r6, &(0x7f0000000180)=""/196, 0xc4, 0x0, 0x0)
mq_timedsend(r6, 0x0, 0x0, 0x100000000000000, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.436115][ T7476] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28
[   94.439463][ T7512] Alternate GPT is invalid, using primary GPT.
[   94.449446][ T7476] EXT4-fs (loop2): This should not happen!! Data will be lost
[   94.449446][ T7476] 
[   94.455706][ T7512]  loop1: p1 p2 p3
[   94.457915][ T7509] FAULT_INJECTION: forcing a failure.
[   94.457915][ T7509] name failslab, interval 1, probability 0, space 0, times 0
[   94.476359][ T7476] EXT4-fs (loop2): Total free blocks count 0
[   94.483309][ T7509] CPU: 1 UID: 0 PID: 7509 Comm: syz.5.1500 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(voluntary) 
[   94.483345][ T7509] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   94.483362][ T7509] Call Trace:
[   94.483369][ T7509]  <TASK>
[   94.483378][ T7509]  dump_stack_lvl+0xf6/0x150
[   94.483483][ T7509]  dump_stack+0x15/0x1a
[   94.483504][ T7509]  should_fail_ex+0x261/0x270
[   94.483530][ T7509]  should_failslab+0x8f/0xb0
[   94.483562][ T7509]  __kmalloc_noprof+0xad/0x410
[   94.483620][ T7509]  ? qtree_write_dquot+0x73/0x320
[   94.483649][ T7509]  qtree_write_dquot+0x73/0x320
[   94.483679][ T7509]  ? __filemap_get_folio+0x481/0x6b0
[   94.483721][ T7509]  ? kmem_cache_alloc_noprof+0x19a/0x340
[   94.483763][ T7509]  v2_write_dquot+0xd6/0x130
[   94.483836][ T7509]  dquot_commit+0x21c/0x260
[   94.483873][ T7509]  ext4_write_dquot+0x12c/0x1d0
[   94.483901][ T7509]  ext4_mark_dquot_dirty+0x94/0xd0
[   94.483975][ T7509]  __dquot_free_space+0x685/0x830
[   94.484025][ T7509]  ext4_free_blocks+0xe87/0x14c0
[   94.484072][ T7509]  ext4_ext_remove_space+0x19d6/0x2910
[   94.484113][ T7509]  ? ext4_reserve_inode_write+0x1c1/0x240
[   94.484218][ T7509]  ? ext4_es_remove_extent+0x1b6/0x2c0
[   94.484258][ T7509]  ext4_ext_truncate+0xc2/0x160
[   94.484372][ T7509]  ext4_truncate+0x792/0xb30
[   94.484406][ T7509]  ? __ext4_journal_start_sb+0x130/0x340
[   94.484435][ T7509]  ext4_evict_inode+0x8ce/0xdf0
[   94.484479][ T7509]  ? __pfx_ext4_evict_inode+0x10/0x10
[   94.484583][ T7509]  evict+0x2de/0x550
[   94.484613][ T7509]  iput+0x42a/0x5b0
[   94.484650][ T7509]  do_unlinkat+0x250/0x4b0
[   94.484686][ T7509]  __x64_sys_unlink+0x2e/0x40
[   94.484716][ T7509]  x64_sys_call+0x2358/0x2e10
[   94.484796][ T7509]  do_syscall_64+0xc9/0x1c0
[   94.484840][ T7509]  ? clear_bhb_loop+0x25/0x80
[   94.484867][ T7509]  ? clear_bhb_loop+0x25/0x80
[   94.484893][ T7509]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.484969][ T7509] RIP: 0033:0x7feadb07d169
[   94.484989][ T7509] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   94.485011][ T7509] RSP: 002b:00007fead96df038 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
[   94.485115][ T7509] RAX: ffffffffffffffda RBX: 00007feadb295fa0 RCX: 00007feadb07d169
[   94.485132][ T7509] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000180
[   94.485147][ T7509] RBP: 00007fead96df090 R08: 0000000000000000 R09: 0000000000000000
[   94.485162][ T7509] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   94.485177][ T7509] R13: 0000000000000000 R14: 00007feadb295fa0 R15: 00007ffe1cf89688
[   94.485276][ T7509]  </TASK>
[   94.485290][ T7509] EXT4-fs error (device loop5): ext4_write_dquot:6915: comm syz.5.1500: Failed to commit dquot type 1
[   94.489718][ T7476] EXT4-fs (loop2): Free/Dirty block details
[   94.521377][ T7509] EXT4-fs (loop5): Remounting filesystem read-only
[   94.809117][ T7476] EXT4-fs (loop2): free_blocks=0
[   94.814586][ T7476] EXT4-fs (loop2): dirty_blocks=2
[   94.820858][ T7476] EXT4-fs (loop2): Block reservation details
[   94.827616][ T7476] EXT4-fs (loop2): i_reserved_data_blocks=2
[   94.843508][ T3847] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.897035][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.019181][ T7539] loop4: detected capacity change from 0 to 512
[   95.044985][ T7544] netlink: 'syz.0.1516': attribute type 3 has an invalid length.
[   95.068775][ T7544] vhci_hcd: default hub control req: 800c v0000 i0000 l0
[   95.077264][ T7539] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   95.117639][ T7556] FAULT_INJECTION: forcing a failure.
[   95.117639][ T7556] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   95.130923][ T7556] CPU: 1 UID: 0 PID: 7556 Comm: syz.5.1515 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(voluntary) 
[   95.131001][ T7556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   95.131015][ T7556] Call Trace:
[   95.131024][ T7556]  <TASK>
[   95.131033][ T7556]  dump_stack_lvl+0xf6/0x150
[   95.131121][ T7556]  dump_stack+0x15/0x1a
[   95.131140][ T7556]  should_fail_ex+0x261/0x270
[   95.131193][ T7556]  should_fail+0xb/0x10
[   95.131238][ T7556]  should_fail_usercopy+0x1a/0x20
[   95.131265][ T7556]  _copy_from_user+0x1c/0xa0
[   95.131296][ T7556]  __sys_bpf+0x16a/0x800
[   95.131327][ T7556]  __x64_sys_bpf+0x43/0x50
[   95.131364][ T7556]  x64_sys_call+0x23da/0x2e10
[   95.131483][ T7556]  do_syscall_64+0xc9/0x1c0
[   95.131525][ T7556]  ? clear_bhb_loop+0x25/0x80
[   95.131551][ T7556]  ? clear_bhb_loop+0x25/0x80
[   95.131573][ T7556]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.131598][ T7556] RIP: 0033:0x7feadb07d169
[   95.131616][ T7556] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.131668][ T7556] RSP: 002b:00007fead96df038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   95.131687][ T7556] RAX: ffffffffffffffda RBX: 00007feadb295fa0 RCX: 00007feadb07d169
[   95.131698][ T7556] RDX: 0000000000000050 RSI: 0000200000000380 RDI: 0000000000000009
[   95.131709][ T7556] RBP: 00007fead96df090 R08: 0000000000000000 R09: 0000000000000000
[   95.131720][ T7556] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   95.131730][ T7556] R13: 0000000000000001 R14: 00007feadb295fa0 R15: 00007ffe1cf89688
[   95.131751][ T7556]  </TASK>
[   95.349238][ T7539] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   95.386015][ T7565] loop1: detected capacity change from 0 to 2048
[   95.404163][ T7557] serio: Serial port ptm0
[   95.427398][ T7565] Alternate GPT is invalid, using primary GPT.
[   95.434184][ T7565]  loop1: p1 p2 p3
[   95.481261][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.673668][ T3383] IPVS: starting estimator thread 0...
[   95.751411][ T7606] ip6gretap0: entered promiscuous mode
[   95.765311][ T7606] ip6gretap0: left promiscuous mode
[   95.771132][ T7600] IPVS: using max 2400 ests per chain, 120000 per kthread
[   95.847434][ T7615] loop5: detected capacity change from 0 to 512
[   95.854101][ T7615] EXT4-fs: Ignoring removed i_version option
[   95.878632][ T7615] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   95.891426][ T7615] ext4 filesystem being mounted at /269/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   95.904536][ T7615] EXT4-fs error (device loop5): ext4_do_update_inode:5194: inode #4: comm REJECT: corrupted inode contents
[   95.916371][ T7615] EXT4-fs error (device loop5): ext4_dirty_inode:6086: inode #4: comm REJECT: mark_inode_dirty error
[   95.927895][ T7615] EXT4-fs error (device loop5): ext4_do_update_inode:5194: inode #4: comm REJECT: corrupted inode contents
[   95.939730][ T7615] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #4: comm REJECT: mark_inode_dirty error
[   95.951233][ T7615] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm REJECT: Failed to acquire dquot type 1
[   96.147912][ T3847] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.189313][ T7622] loop2: detected capacity change from 0 to 512
[   96.220294][ T7630] FAULT_INJECTION: forcing a failure.
[   96.220294][ T7630] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   96.233861][ T7630] CPU: 1 UID: 0 PID: 7630 Comm: syz.4.1540 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(voluntary) 
[   96.233894][ T7630] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   96.233909][ T7630] Call Trace:
[   96.233918][ T7630]  <TASK>
[   96.233928][ T7630]  dump_stack_lvl+0xf6/0x150
[   96.233984][ T7630]  dump_stack+0x15/0x1a
[   96.234003][ T7630]  should_fail_ex+0x261/0x270
[   96.234046][ T7630]  should_fail+0xb/0x10
[   96.234066][ T7630]  should_fail_usercopy+0x1a/0x20
[   96.234092][ T7630]  _copy_from_user+0x1c/0xa0
[   96.234122][ T7630]  io_eventfd_register+0x7a/0x1e0
[   96.234210][ T7630]  __se_sys_io_uring_register+0xb34/0x1f50
[   96.234241][ T7630]  ? kstrtouint_from_user+0xbf/0x100
[   96.234262][ T7630]  ? 0xffffffff81000000
[   96.234275][ T7630]  ? __rcu_read_unlock+0x4e/0x70
[   96.234375][ T7630]  ? get_pid_task+0x94/0xd0
[   96.234403][ T7630]  ? proc_fail_nth_write+0x12d/0x160
[   96.234438][ T7630]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   96.234473][ T7630]  ? vfs_write+0x669/0x950
[   96.234527][ T7630]  ? putname+0xe1/0x100
[   96.234559][ T7630]  ? __fget_files+0x186/0x1c0
[   96.234590][ T7630]  ? fput+0x99/0xd0
[   96.234655][ T7630]  ? ksys_write+0x180/0x1b0
[   96.234678][ T7630]  __x64_sys_io_uring_register+0x55/0x70
[   96.234709][ T7630]  x64_sys_call+0xb9d/0x2e10
[   96.234731][ T7630]  do_syscall_64+0xc9/0x1c0
[   96.234751][ T7630]  ? clear_bhb_loop+0x25/0x80
[   96.234783][ T7630]  ? clear_bhb_loop+0x25/0x80
[   96.234806][ T7630]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.234828][ T7630] RIP: 0033:0x7f94fc55d169
[   96.234845][ T7630] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.234864][ T7630] RSP: 002b:00007f94fabc7038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[   96.234884][ T7630] RAX: ffffffffffffffda RBX: 00007f94fc775fa0 RCX: 00007f94fc55d169
[   96.234976][ T7630] RDX: 00002000000003c0 RSI: 0000000000000007 RDI: 0000000000000006
[   96.234989][ T7630] RBP: 00007f94fabc7090 R08: 0000000000000000 R09: 0000000000000000
[   96.235000][ T7630] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[   96.235012][ T7630] R13: 0000000000000000 R14: 00007f94fc775fa0 R15: 00007ffc76dd8678
[   96.235085][ T7630]  </TASK>
[   96.472642][ T7622] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   96.503749][ T7622] ext4 filesystem being mounted at /337/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   96.570022][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.579667][ T7637] netem: change failed
[   96.680884][ T7663] loop5: detected capacity change from 0 to 764
[   96.689772][ T7663] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   96.749707][ T7664] loop1: detected capacity change from 0 to 2048
[   96.759400][ T7666] pim6reg1: entered promiscuous mode
[   96.764759][ T7666] pim6reg1: entered allmulticast mode
[   96.789356][ T7664] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   96.804257][ T7664] EXT4-fs error (device loop1): ext4_find_extent:938: inode #2: comm syz.1.1550: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   96.822598][   T29] kauditd_printk_skb: 144 callbacks suppressed
[   96.822615][   T29] audit: type=1326 audit(2000000014.110:19840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7659 comm="syz.1.1550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa43a3fd169 code=0x7ffc0000
[   96.822920][ T7664] EXT4-fs error (device loop1): ext4_find_extent:938: inode #2: comm syz.1.1550: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   96.829117][   T29] audit: type=1326 audit(2000000014.110:19841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7659 comm="syz.1.1550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=86 compat=0 ip=0x7fa43a3fd169 code=0x7ffc0000
[   96.893328][   T29] audit: type=1326 audit(2000000014.160:19842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7659 comm="syz.1.1550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa43a3fd169 code=0x7ffc0000
[   96.917303][   T29] audit: type=1326 audit(2000000014.160:19843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7659 comm="syz.1.1550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa43a3fd169 code=0x7ffc0000
[   96.935721][ T7672] loop2: detected capacity change from 0 to 512
[   96.960817][ T7672] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   96.974935][ T7674] loop5: detected capacity change from 0 to 2048
[   96.978955][ T7672] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   96.994222][ T7672] ext4 filesystem being mounted at /340/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   97.007630][   T29] audit: type=1400 audit(2000000014.290:19844): avc:  denied  { create } for  pid=7671 comm="syz.2.1553" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[   97.051448][   T29] audit: type=1400 audit(2000000014.300:19845): avc:  denied  { read } for  pid=7671 comm="syz.2.1553" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop2" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[   97.053658][ T7674] Alternate GPT is invalid, using primary GPT.
[   97.100004][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.101922][ T7674]  loop5: p1 p2 p3
[   97.352470][ T7681] cgroup: fork rejected by pids controller in /syz2
[   97.611305][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.715899][ T7691] __nla_validate_parse: 76 callbacks suppressed
[   97.715917][ T7691] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1559'.
[   97.731516][ T7691] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1559'.
[   97.819877][ T7691] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1559'.
[   97.858542][ T7691] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1559'.
[   97.867721][ T7691] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1559'.
[   97.876960][ T7691] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1559'.
[   97.901240][ T7699] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1558'.
[   97.910831][   T29] audit: type=1400 audit(2000000015.180:19846): avc:  denied  { wake_alarm } for  pid=7697 comm="syz.1.1558" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   97.940624][ T7703] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[   98.042243][ T7691] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1559'.
[   98.051328][ T7691] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1559'.
[   98.061521][ T7709] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1564'.
[   98.197973][ T7710] loop5: detected capacity change from 0 to 512
[   98.208670][ T7710] EXT4-fs: Ignoring removed nobh option
[   98.425218][ T7710] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.1565: invalid indirect mapped block 256 (level 2)
[   98.500347][ T7735] loop4: detected capacity change from 0 to 1024
[   98.555320][ T7735] EXT4-fs: Ignoring removed bh option
[   98.583509][ T7710] EXT4-fs (loop5): 2 truncates cleaned up
[   98.623270][ T7735] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   98.665070][ T7710] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   98.753064][ T7710] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm syz.5.1565: bg 0: block 5: invalid block bitmap
[   98.772906][ T7710] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28
[   98.787275][ T7710] EXT4-fs (loop5): This should not happen!! Data will be lost
[   98.787275][ T7710] 
[   98.798355][ T7710] EXT4-fs (loop5): Total free blocks count 0
[   98.805255][ T7710] EXT4-fs (loop5): Free/Dirty block details
[   98.812284][ T7710] EXT4-fs (loop5): free_blocks=0
[   98.818376][ T7710] EXT4-fs (loop5): dirty_blocks=2
[   98.824143][ T7710] EXT4-fs (loop5): Block reservation details
[   98.831287][ T7710] EXT4-fs (loop5): i_reserved_data_blocks=2
[   98.840935][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.940165][ T3847] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.011142][   T29] audit: type=1400 audit(2000000001.100:19847): avc:  denied  { mount } for  pid=7748 comm="syz.2.1578" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[   99.056298][ T7753] ip6gretap0: entered promiscuous mode
[   99.086719][ T7753] ip6gretap0: left promiscuous mode
[   99.124647][   T29] audit: type=1400 audit(2000000001.130:19848): avc:  denied  { unmount } for  pid=7748 comm="syz.2.1578" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[   99.239689][ T7776] audit: audit_lost=249 audit_rate_limit=0 audit_backlog_limit=64
[   99.332277][ T7782] loop5: detected capacity change from 0 to 1024
[   99.385581][ T7781] loop4: detected capacity change from 0 to 2048
[   99.406795][ T7782] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   99.418482][ T7781] Alternate GPT is invalid, using primary GPT.
[   99.424839][ T7781]  loop4: p1 p2 p3
[   99.427107][ T7782] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   99.452570][ T7782] EXT4-fs error (device loop5): ext4_get_journal_inode:5798: inode #32: comm syz.5.1587: iget: special inode unallocated
[   99.468327][ T7782] EXT4-fs (loop5): no journal found
[   99.473587][ T7782] EXT4-fs (loop5): can't get journal size
[   99.493242][ T7782] EXT4-fs error (device loop5): ext4_protect_reserved_inode:160: inode #32: comm syz.5.1587: iget: special inode unallocated
[   99.521050][ T7786] ip6gretap0: entered promiscuous mode
[   99.528486][ T7782] EXT4-fs (loop5): failed to initialize system zone (-117)
[   99.536166][ T7782] EXT4-fs (loop5): mount failed
[   99.549760][ T7786] ip6gretap0: left promiscuous mode
[   99.818656][ T7810] loop5: detected capacity change from 0 to 512
[   99.852799][ T7810] EXT4-fs: Ignoring removed nobh option
[   99.904357][ T7829] program syz.1.1606 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   99.937569][ T7810] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.1600: invalid indirect mapped block 256 (level 2)
[   99.967462][ T7810] EXT4-fs (loop5): 2 truncates cleaned up
[   99.993566][ T7926] program syz.0.1609 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  100.003259][ T7926] FAULT_INJECTION: forcing a failure.
[  100.003259][ T7926] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  100.008357][ T7810] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.016647][ T7926] CPU: 0 UID: 0 PID: 7926 Comm: syz.0.1609 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(voluntary) 
[  100.016759][ T7926] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  100.016837][ T7926] Call Trace:
[  100.016845][ T7926]  <TASK>
[  100.016853][ T7926]  dump_stack_lvl+0xf6/0x150
[  100.016885][ T7926]  dump_stack+0x15/0x1a
[  100.016905][ T7926]  should_fail_ex+0x261/0x270
[  100.016929][ T7926]  should_fail+0xb/0x10
[  100.016949][ T7926]  should_fail_usercopy+0x1a/0x20
[  100.016988][ T7926]  _copy_to_user+0x20/0xa0
[  100.017095][ T7926]  scsi_ioctl+0x1535/0x15d0
[  100.017215][ T7926]  ? avc_has_perm+0xd6/0x150
[  100.017238][ T7926]  ? file_has_perm+0x334/0x380
[  100.017272][ T7926]  ? do_vfs_ioctl+0x977/0x1570
[  100.017355][ T7926]  sg_ioctl+0xce9/0x18a0
[  100.017400][ T7926]  ? __fget_files+0x186/0x1c0
[  100.017524][ T7926]  ? __pfx_sg_ioctl+0x10/0x10
[  100.017630][ T7926]  __se_sys_ioctl+0xc9/0x140
[  100.017657][ T7926]  __x64_sys_ioctl+0x43/0x50
[  100.017691][ T7926]  x64_sys_call+0x168d/0x2e10
[  100.017719][ T7926]  do_syscall_64+0xc9/0x1c0
[  100.017789][ T7926]  ? clear_bhb_loop+0x25/0x80
[  100.017816][ T7926]  ? clear_bhb_loop+0x25/0x80
[  100.017904][ T7926]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.017930][ T7926] RIP: 0033:0x7fabef64d169
[  100.017950][ T7926] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.017974][ T7926] RSP: 002b:00007fabedcaf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  100.017997][ T7926] RAX: ffffffffffffffda RBX: 00007fabef865fa0 RCX: 00007fabef64d169
[  100.018087][ T7926] RDX: 00002000000000c0 RSI: 0000000000000001 RDI: 0000000000000003
[  100.018102][ T7926] RBP: 00007fabedcaf090 R08: 0000000000000000 R09: 0000000000000000
[  100.018191][ T7926] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  100.018206][ T7926] R13: 0000000000000000 R14: 00007fabef865fa0 R15: 00007fff1f3b3148
[  100.018301][ T7926]  </TASK>
[  100.093248][ T7942] IPv6: syztnl0: Disabled Multicast RS
[  100.115501][ T7810] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm syz.5.1600: bg 0: block 5: invalid block bitmap
[  100.288420][ T7810] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28
[  100.302020][ T7810] EXT4-fs (loop5): This should not happen!! Data will be lost
[  100.302020][ T7810] 
[  100.319227][ T7810] EXT4-fs (loop5): Total free blocks count 0
[  100.327248][ T7810] EXT4-fs (loop5): Free/Dirty block details
[  100.334105][ T7810] EXT4-fs (loop5): free_blocks=0
[  100.339618][ T7810] EXT4-fs (loop5): dirty_blocks=2
[  100.345005][ T7810] EXT4-fs (loop5): Block reservation details
[  100.351219][ T7810] EXT4-fs (loop5): i_reserved_data_blocks=2
[  100.368721][ T7945] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  100.422163][ T3847] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.454186][ T7956] loop4: detected capacity change from 0 to 512
[  100.463479][ T7956] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.483159][ T7956] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  100.602603][ T7964] loop5: detected capacity change from 0 to 8192
[  100.708287][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.743519][ T7977] loop5: detected capacity change from 0 to 2048
[  100.765588][ T7975] SELinux: ebitmap: truncated map
[  100.774570][ T7975] SELinux: failed to load policy
[  100.799321][ T7977] Alternate GPT is invalid, using primary GPT.
[  100.805843][ T7977]  loop5: p1 p2 p3
[  100.892960][ T7982] loop4: detected capacity change from 0 to 512
[  100.906810][ T7982] EXT4-fs: Ignoring removed nobh option
[  100.945624][ T7994] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  100.957992][ T7982] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.1625: invalid indirect mapped block 256 (level 2)
[  100.981007][ T7982] EXT4-fs (loop4): 2 truncates cleaned up
[  101.000866][ T7998] loop2: detected capacity change from 0 to 512
[  101.012432][ T7982] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.059556][ T7982] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.1625: bg 0: block 5: invalid block bitmap
[  101.084701][ T7982] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28
[  101.107111][ T7982] EXT4-fs (loop4): This should not happen!! Data will be lost
[  101.107111][ T7982] 
[  101.119010][ T7982] EXT4-fs (loop4): Total free blocks count 0
[  101.125414][ T7982] EXT4-fs (loop4): Free/Dirty block details
[  101.132586][ T7982] EXT4-fs (loop4): free_blocks=0
[  101.138698][ T7982] EXT4-fs (loop4): dirty_blocks=2
[  101.144079][ T7982] EXT4-fs (loop4): Block reservation details
[  101.150537][ T7982] EXT4-fs (loop4): i_reserved_data_blocks=2
[  101.187645][ T8014] xt_hashlimit: max too large, truncated to 1048576
[  101.195128][ T8014] Cannot find set identified by id 0 to match
[  101.241015][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.257442][ T8016] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=8016 comm=syz.2.1636
[  101.301824][ T8020] xt_hashlimit: max too large, truncated to 1048576
[  101.334279][ T8020] Cannot find set identified by id 0 to match
[  101.408869][ T8020] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=8020 comm=syz.4.1637
[  101.901390][   T29] kauditd_printk_skb: 94 callbacks suppressed
[  101.901410][   T29] audit: type=1400 audit(2000000003.990:19942): avc:  denied  { bind } for  pid=8045 comm="syz.1.1645" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  101.927626][   T29] audit: type=1400 audit(2000000003.990:19943): avc:  denied  { listen } for  pid=8045 comm="syz.1.1645" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  101.947997][   T29] audit: type=1400 audit(2000000003.990:19944): avc:  denied  { write } for  pid=8045 comm="syz.1.1645" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  102.053025][ T8053] loop1: detected capacity change from 0 to 512
[  102.064135][ T8053] EXT4-fs: Ignoring removed nobh option
[  102.093197][ T8057] loop5: detected capacity change from 0 to 512
[  102.112377][ T8053] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.1647: invalid indirect mapped block 256 (level 2)
[  102.136156][ T8053] EXT4-fs (loop1): 2 truncates cleaned up
[  102.145272][ T8057] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.171524][ T8053] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.196083][ T8057] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  102.213052][ T8053] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.1647: bg 0: block 5: invalid block bitmap
[  102.221870][ T8065] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  102.237830][ T8053] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28
[  102.254596][ T8053] EXT4-fs (loop1): This should not happen!! Data will be lost
[  102.254596][ T8053] 
[  102.265672][ T8053] EXT4-fs (loop1): Total free blocks count 0
[  102.273072][ T8053] EXT4-fs (loop1): Free/Dirty block details
[  102.280376][ T8053] EXT4-fs (loop1): free_blocks=0
[  102.285844][ T8053] EXT4-fs (loop1): dirty_blocks=2
[  102.291966][ T8053] EXT4-fs (loop1): Block reservation details
[  102.298924][ T8053] EXT4-fs (loop1): i_reserved_data_blocks=2
[  102.353611][ T8069] loop4: detected capacity change from 0 to 2048
[  102.372640][ T3847] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.389796][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.415486][ T8076] (unnamed net_device) (uninitialized): option updelay: invalid value (18446744073072017408)
[  102.426335][ T8076] (unnamed net_device) (uninitialized): option updelay: allowed values 0 - 2147483647
[  102.438818][ T8069] Alternate GPT is invalid, using primary GPT.
[  102.445917][ T8069]  loop4: p1 p2 p3
[  102.492657][ T8079] loop1: detected capacity change from 0 to 512
[  102.524254][   T29] audit: type=1326 audit(2000000004.600:19945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8080 comm="syz.0.1656" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fabef64d169 code=0x0
[  102.571101][ T8077] loop5: detected capacity change from 0 to 764
[  102.579606][ T8079] Quota error (device loop1): v2_read_file_info: Block with free entry 5 out of range (1, 1).
[  102.591293][ T8079] EXT4-fs warning (device loop1): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  102.613380][ T8077] iso9660: Unknown parameter 'R«'
[  102.635996][ T8079] EXT4-fs (loop1): mount failed
[  102.830274][ T8076] __nla_validate_parse: 108 callbacks suppressed
[  102.830295][ T8076] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1652'.
[  102.845789][ T8076] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1652'.
[  102.867635][   T29] audit: type=1400 audit(2000000004.960:19946): avc:  denied  { connect } for  pid=8070 comm="syz.2.1652" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  102.944062][ T8075] Set syz1 is full, maxelem 65536 reached
[  102.999277][   T29] audit: type=1400 audit(2000000005.090:19947): avc:  denied  { getopt } for  pid=8093 comm="syz.5.1658" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  103.027927][   T29] audit: type=1400 audit(2000000005.120:19948): avc:  denied  { create } for  pid=8098 comm="syz.1.1660" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  103.114041][ T8106] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1662'.
[  103.123063][ T8106] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1662'.
[  103.132052][ T8106] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1662'.
[  103.176115][ T8111] loop4: detected capacity change from 0 to 512
[  103.177317][ T8106] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1662'.
[  103.191544][ T8106] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1662'.
[  103.214425][ T8111] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.216362][ T8106] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1662'.
[  103.275406][ T8111] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  103.275591][ T8106] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1662'.
[  103.295335][ T8106] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1662'.
[  103.320967][ T8119] loop2: detected capacity change from 0 to 512
[  103.331694][ T8119] EXT4-fs: Ignoring removed nobh option
[  103.365697][ T8119] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.1665: invalid indirect mapped block 256 (level 2)
[  103.384264][ T8119] EXT4-fs (loop2): 2 truncates cleaned up
[  103.424350][ T8119] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.457412][ T8119] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.1665: bg 0: block 5: invalid block bitmap
[  103.479741][ T8119] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28
[  103.494567][ T8119] EXT4-fs (loop2): This should not happen!! Data will be lost
[  103.494567][ T8119] 
[  103.504779][ T8119] EXT4-fs (loop2): Total free blocks count 0
[  103.510950][ T8119] EXT4-fs (loop2): Free/Dirty block details
[  103.517011][ T8119] EXT4-fs (loop2): free_blocks=0
[  103.522558][ T8119] EXT4-fs (loop2): dirty_blocks=2
[  103.527749][ T8119] EXT4-fs (loop2): Block reservation details
[  103.534031][ T8119] EXT4-fs (loop2): i_reserved_data_blocks=2
[  103.558957][ T8135] audit: audit_lost=250 audit_rate_limit=0 audit_backlog_limit=64
[  103.562677][   T29] audit: type=1326 audit(2000000005.650:19949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8134 comm="syz.0.1671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabef64d169 code=0x7ffc0000
[  103.632944][ T8137] loop1: detected capacity change from 0 to 512
[  103.643224][ T8137] ext4: Unknown parameter 'uid'
[  103.649802][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.688719][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.748422][ T8148] FAULT_INJECTION: forcing a failure.
[  103.748422][ T8148] name failslab, interval 1, probability 0, space 0, times 0
[  103.761380][ T8148] CPU: 1 UID: 0 PID: 8148 Comm: syz.4.1675 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(voluntary) 
[  103.761415][ T8148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  103.761431][ T8148] Call Trace:
[  103.761441][ T8148]  <TASK>
[  103.761450][ T8148]  dump_stack_lvl+0xf6/0x150
[  103.761481][ T8148]  dump_stack+0x15/0x1a
[  103.761538][ T8148]  should_fail_ex+0x261/0x270
[  103.761563][ T8148]  should_failslab+0x8f/0xb0
[  103.761594][ T8148]  kmem_cache_alloc_lru_noprof+0x5e/0x330
[  103.761630][ T8148]  ? __d_alloc+0x3d/0x350
[  103.761651][ T8148]  __d_alloc+0x3d/0x350
[  103.761741][ T8148]  ? from_vfsgid+0x77/0xa0
[  103.761858][ T8148]  d_alloc_pseudo+0x1e/0x80
[  103.761880][ T8148]  alloc_file_pseudo+0x75/0x160
[  103.761920][ T8148]  ? hugetlbfs_get_inode+0x265/0x380
[  103.761951][ T8148]  hugetlb_file_setup+0x290/0x3c0
[  103.762050][ T8148]  ksys_mmap_pgoff+0x174/0x340
[  103.762141][ T8148]  x64_sys_call+0x1945/0x2e10
[  103.762168][ T8148]  do_syscall_64+0xc9/0x1c0
[  103.762193][ T8148]  ? clear_bhb_loop+0x25/0x80
[  103.762284][ T8148]  ? clear_bhb_loop+0x25/0x80
[  103.762351][ T8148]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.762377][ T8148] RIP: 0033:0x7f94fc55d169
[  103.762396][ T8148] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  103.762418][ T8148] RSP: 002b:00007f94fabc7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  103.762440][ T8148] RAX: ffffffffffffffda RBX: 00007f94fc775fa0 RCX: 00007f94fc55d169
[  103.762455][ T8148] RDX: 0000000000000002 RSI: 0000000000ff5000 RDI: 0000200000000000
[  103.762470][ T8148] RBP: 00007f94fabc7090 R08: ffffffffffffffff R09: 0000000000000000
[  103.762484][ T8148] R10: 000000000004c831 R11: 0000000000000246 R12: 0000000000000001
[  103.762498][ T8148] R13: 0000000000000000 R14: 00007f94fc775fa0 R15: 00007ffc76dd8678
[  103.762584][ T8148]  </TASK>
[  103.954169][ T8150] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  104.165338][ T8171] loop2: detected capacity change from 0 to 512
[  104.187867][ T8171] EXT4-fs: Ignoring removed nobh option
[  104.233422][ T8171] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.1685: invalid indirect mapped block 256 (level 2)
[  104.255436][ T8171] EXT4-fs (loop2): 2 truncates cleaned up
[  104.265305][ T8184] loop4: detected capacity change from 0 to 512
[  104.273966][ T8184] EXT4-fs (loop4): failed to initialize system zone (-117)
[  104.282346][ T8171] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  104.291950][ T8184] EXT4-fs (loop4): mount failed
[  104.310969][ T8171] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.1685: bg 0: block 5: invalid block bitmap
[  104.343178][ T8171] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28
[  104.365555][ T8171] EXT4-fs (loop2): This should not happen!! Data will be lost
[  104.365555][ T8171] 
[  104.375605][ T8171] EXT4-fs (loop2): Total free blocks count 0
[  104.382169][ T8190] FAULT_INJECTION: forcing a failure.
[  104.382169][ T8190] name failslab, interval 1, probability 0, space 0, times 0
[  104.382232][ T8171] EXT4-fs (loop2): Free/Dirty block details
[  104.394908][ T8190] CPU: 1 UID: 0 PID: 8190 Comm: kfree Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(voluntary) 
[  104.394944][ T8190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  104.394960][ T8190] Call Trace:
[  104.394968][ T8190]  <TASK>
[  104.394976][ T8190]  dump_stack_lvl+0xf6/0x150
[  104.395008][ T8190]  dump_stack+0x15/0x1a
[  104.395092][ T8190]  should_fail_ex+0x261/0x270
[  104.395114][ T8190]  should_failslab+0x8f/0xb0
[  104.395147][ T8190]  kmem_cache_alloc_noprof+0x59/0x340
[  104.395251][ T8190]  ? getname_flags+0x81/0x3b0
[  104.395290][ T8190]  getname_flags+0x81/0x3b0
[  104.395325][ T8190]  user_path_at+0x26/0x140
[  104.395346][ T8190]  __se_sys_chdir+0x50/0x150
[  104.395379][ T8190]  __x64_sys_chdir+0x1f/0x30
[  104.395408][ T8190]  x64_sys_call+0x2919/0x2e10
[  104.395436][ T8190]  do_syscall_64+0xc9/0x1c0
[  104.395459][ T8190]  ? clear_bhb_loop+0x25/0x80
[  104.395481][ T8190]  ? clear_bhb_loop+0x25/0x80
[  104.395528][ T8190]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.395584][ T8190] RIP: 0033:0x7feadb07d169
[  104.395609][ T8190] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  104.395632][ T8190] RSP: 002b:00007fead96df038 EFLAGS: 00000246 ORIG_RAX: 0000000000000050
[  104.395658][ T8190] RAX: ffffffffffffffda RBX: 00007feadb295fa0 RCX: 00007feadb07d169
[  104.395670][ T8190] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000540
[  104.395685][ T8190] RBP: 00007fead96df090 R08: 0000000000000000 R09: 0000000000000000
[  104.395739][ T8190] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  104.395755][ T8190] R13: 0000000000000000 R14: 00007feadb295fa0 R15: 00007ffe1cf89688
[  104.395782][ T8190]  </TASK>
[  104.606941][ T8171] EXT4-fs (loop2): free_blocks=0
[  104.612419][ T8171] EXT4-fs (loop2): dirty_blocks=2
[  104.618050][ T8171] EXT4-fs (loop2): Block reservation details
[  104.624269][ T8171] EXT4-fs (loop2): i_reserved_data_blocks=2
[  104.727011][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.822083][ T8210] xt_hashlimit: max too large, truncated to 1048576
[  104.838937][ T8210] Cannot find set identified by id 0 to match
[  104.900851][ T8216] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=8216 comm=syz.4.1700
[  105.754009][ T8236] loop5: detected capacity change from 0 to 512
[  105.774729][ T8236] EXT4-fs: Ignoring removed nobh option
[  105.895899][ T8249] FAULT_INJECTION: forcing a failure.
[  105.895899][ T8249] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  105.909054][ T8249] CPU: 1 UID: 0 PID: 8249 Comm: syz.1.1713 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(voluntary) 
[  105.909116][ T8249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  105.909129][ T8249] Call Trace:
[  105.909136][ T8249]  <TASK>
[  105.909144][ T8249]  dump_stack_lvl+0xf6/0x150
[  105.909176][ T8249]  dump_stack+0x15/0x1a
[  105.909206][ T8249]  should_fail_ex+0x261/0x270
[  105.909234][ T8249]  should_fail+0xb/0x10
[  105.909255][ T8249]  should_fail_usercopy+0x1a/0x20
[  105.909280][ T8249]  _copy_to_user+0x20/0xa0
[  105.909312][ T8249]  simple_read_from_buffer+0xb2/0x130
[  105.909435][ T8249]  proc_fail_nth_read+0x103/0x140
[  105.909479][ T8249]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  105.909508][ T8249]  vfs_read+0x1b2/0x710
[  105.909527][ T8249]  ? __rcu_read_unlock+0x4e/0x70
[  105.909608][ T8249]  ? __fget_files+0x186/0x1c0
[  105.909639][ T8249]  ksys_read+0xeb/0x1b0
[  105.909661][ T8249]  __x64_sys_read+0x42/0x50
[  105.909749][ T8249]  x64_sys_call+0x2a3b/0x2e10
[  105.909775][ T8249]  do_syscall_64+0xc9/0x1c0
[  105.909829][ T8249]  ? clear_bhb_loop+0x25/0x80
[  105.909850][ T8249]  ? clear_bhb_loop+0x25/0x80
[  105.909870][ T8249]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.909938][ T8249] RIP: 0033:0x7fa43a3fbb7c
[  105.909956][ T8249] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  105.910021][ T8249] RSP: 002b:00007fa438a5f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  105.910039][ T8249] RAX: ffffffffffffffda RBX: 00007fa43a615fa0 RCX: 00007fa43a3fbb7c
[  105.910052][ T8249] RDX: 000000000000000f RSI: 00007fa438a5f0a0 RDI: 0000000000000004
[  105.910075][ T8249] RBP: 00007fa438a5f090 R08: 0000000000000000 R09: 0000000000000000
[  105.910089][ T8249] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  105.910103][ T8249] R13: 0000000000000000 R14: 00007fa43a615fa0 R15: 00007fff45cf2438
[  105.910182][ T8249]  </TASK>
[  106.271790][ T8236] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.1709: invalid indirect mapped block 256 (level 2)
[  106.354397][ T8236] EXT4-fs (loop5): 2 truncates cleaned up
[  106.382108][ T8236] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.505401][ T8265] IPv4: Oversized IP packet from 127.202.26.0
[  106.528335][ T8236] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm syz.5.1709: bg 0: block 5: invalid block bitmap
[  106.551591][ T8236] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28
[  106.567724][ T8236] EXT4-fs (loop5): This should not happen!! Data will be lost
[  106.567724][ T8236] 
[  106.578097][ T8236] EXT4-fs (loop5): Total free blocks count 0
[  106.584502][ T8236] EXT4-fs (loop5): Free/Dirty block details
[  106.591754][ T8236] EXT4-fs (loop5): free_blocks=0
[  106.598054][ T8236] EXT4-fs (loop5): dirty_blocks=2
[  106.604619][ T8236] EXT4-fs (loop5): Block reservation details
[  106.611634][ T8236] EXT4-fs (loop5): i_reserved_data_blocks=2
[  106.723730][ T3847] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.774050][ T8272] xt_hashlimit: max too large, truncated to 1048576
[  106.782039][ T8272] Cannot find set identified by id 0 to match
[  106.847594][ T8279] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=8279 comm=syz.0.1721
[  107.044376][ T8289] loop5: detected capacity change from 0 to 512
[  107.054285][ T8289] EXT4-fs (loop5): inodes count not valid: 0 vs 32
[  107.134302][ T8291] FAULT_INJECTION: forcing a failure.
[  107.134302][ T8291] name failslab, interval 1, probability 0, space 0, times 0
[  107.147175][ T8291] CPU: 0 UID: 0 PID: 8291 Comm: syz.5.1729 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(voluntary) 
[  107.147208][ T8291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  107.147278][ T8291] Call Trace:
[  107.147287][ T8291]  <TASK>
[  107.147296][ T8291]  dump_stack_lvl+0xf6/0x150
[  107.147327][ T8291]  dump_stack+0x15/0x1a
[  107.147348][ T8291]  should_fail_ex+0x261/0x270
[  107.147374][ T8291]  should_failslab+0x8f/0xb0
[  107.147408][ T8291]  kmem_cache_alloc_noprof+0x59/0x340
[  107.147471][ T8291]  ? security_inode_alloc+0x37/0x100
[  107.147505][ T8291]  security_inode_alloc+0x37/0x100
[  107.147552][ T8291]  inode_init_always_gfp+0x4a2/0x4f0
[  107.147587][ T8291]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  107.147630][ T8291]  alloc_inode+0x86/0x170
[  107.147658][ T8291]  new_inode+0x1e/0xe0
[  107.147759][ T8291]  shmem_get_inode+0x24e/0x730
[  107.147799][ T8291]  __shmem_file_setup+0x127/0x1f0
[  107.147898][ T8291]  shmem_file_setup+0x3b/0x50
[  107.147931][ T8291]  __se_sys_memfd_create+0x2e1/0x5a0
[  107.147959][ T8291]  __x64_sys_memfd_create+0x31/0x40
[  107.148045][ T8291]  x64_sys_call+0x1163/0x2e10
[  107.148072][ T8291]  do_syscall_64+0xc9/0x1c0
[  107.148097][ T8291]  ? clear_bhb_loop+0x25/0x80
[  107.148131][ T8291]  ? clear_bhb_loop+0x25/0x80
[  107.148201][ T8291]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.148227][ T8291] RIP: 0033:0x7feadb07d169
[  107.148271][ T8291] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  107.148293][ T8291] RSP: 002b:00007fead96dee18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  107.148317][ T8291] RAX: ffffffffffffffda RBX: 00000000000004c6 RCX: 00007feadb07d169
[  107.148332][ T8291] RDX: 00007fead96deef0 RSI: 0000000000000000 RDI: 00007feadb0fec3c
[  107.148352][ T8291] RBP: 0000200000000b00 R08: 00007fead96debb7 R09: 00007fead96dee40
[  107.148421][ T8291] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000080
[  107.148436][ T8291] R13: 00007fead96deef0 R14: 00007fead96deeb0 R15: 00002000000000c0
[  107.148460][ T8291]  </TASK>
[  107.195383][ T8293] loop2: detected capacity change from 0 to 512
[  107.376388][ T8293] EXT4-fs: Ignoring removed nobh option
[  107.406730][   T29] kauditd_printk_skb: 54 callbacks suppressed
[  107.406750][   T29] audit: type=1400 audit(2000000009.490:20003): avc:  denied  { kexec_image_load } for  pid=8294 comm="syz.4.1731" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[  107.445489][ T8293] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.1730: invalid indirect mapped block 256 (level 2)
[  107.469167][ T8299] loop4: detected capacity change from 0 to 128
[  107.476207][ T8299] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  107.489601][ T8293] EXT4-fs (loop2): 2 truncates cleaned up
[  107.502323][ T8293] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  107.502687][ T8299] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  107.526668][   T29] audit: type=1400 audit(2000000009.610:20004): avc:  denied  { create } for  pid=8294 comm="syz.4.1731" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  107.546280][   T29] audit: type=1400 audit(2000000009.610:20005): avc:  denied  { bind } for  pid=8294 comm="syz.4.1731" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  107.559370][ T8293] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.1730: bg 0: block 5: invalid block bitmap
[  107.588296][ T8293] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28
[  107.603471][ T8293] EXT4-fs (loop2): This should not happen!! Data will be lost
[  107.603471][ T8293] 
[  107.614087][ T8293] EXT4-fs (loop2): Total free blocks count 0
[  107.620449][ T8293] EXT4-fs (loop2): Free/Dirty block details
[  107.644713][ T8293] EXT4-fs (loop2): free_blocks=0
[  107.657558][ T8293] EXT4-fs (loop2): dirty_blocks=2
[  107.659068][   T29] audit: type=1400 audit(2000000009.720:20006): avc:  denied  { bind } for  pid=8302 comm="syz.4.1734" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  107.663355][ T8293] EXT4-fs (loop2): Block reservation details
[  107.682695][   T29] audit: type=1400 audit(2000000009.720:20007): avc:  denied  { write } for  pid=8302 comm="syz.4.1734" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  107.682784][   T29] audit: type=1326 audit(2000000009.730:20008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8300 comm="syz.5.1733" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7feadb07d169 code=0x0
[  107.734183][ T8293] EXT4-fs (loop2): i_reserved_data_blocks=2
[  107.764896][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.882073][ T8318] FAULT_INJECTION: forcing a failure.
[  107.882073][ T8318] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  107.895470][ T8318] CPU: 0 UID: 0 PID: 8318 Comm: syz.1.1742 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(voluntary) 
[  107.895508][ T8318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  107.895523][ T8318] Call Trace:
[  107.895532][ T8318]  <TASK>
[  107.895541][ T8318]  dump_stack_lvl+0xf6/0x150
[  107.895572][ T8318]  dump_stack+0x15/0x1a
[  107.895591][ T8318]  should_fail_ex+0x261/0x270
[  107.895616][ T8318]  should_fail+0xb/0x10
[  107.895636][ T8318]  should_fail_usercopy+0x1a/0x20
[  107.895753][ T8318]  _copy_from_user+0x1c/0xa0
[  107.895783][ T8318]  get_user_ifreq+0x8c/0x160
[  107.895893][ T8318]  sock_do_ioctl+0xcb/0x270
[  107.895923][ T8318]  sock_ioctl+0x436/0x630
[  107.895949][ T8318]  ? __pfx_sock_ioctl+0x10/0x10
[  107.895975][ T8318]  __se_sys_ioctl+0xc9/0x140
[  107.896002][ T8318]  __x64_sys_ioctl+0x43/0x50
[  107.896026][ T8318]  x64_sys_call+0x168d/0x2e10
[  107.896087][ T8318]  do_syscall_64+0xc9/0x1c0
[  107.896110][ T8318]  ? clear_bhb_loop+0x25/0x80
[  107.896135][ T8318]  ? clear_bhb_loop+0x25/0x80
[  107.896234][ T8318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.896260][ T8318] RIP: 0033:0x7fa43a3fd169
[  107.896279][ T8318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  107.896301][ T8318] RSP: 002b:00007fa438a5f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  107.896370][ T8318] RAX: ffffffffffffffda RBX: 00007fa43a615fa0 RCX: 00007fa43a3fd169
[  107.896385][ T8318] RDX: 0000200000000140 RSI: 0000000000008914 RDI: 0000000000000008
[  107.896399][ T8318] RBP: 00007fa438a5f090 R08: 0000000000000000 R09: 0000000000000000
[  107.896413][ T8318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  107.896427][ T8318] R13: 0000000000000000 R14: 00007fa43a615fa0 R15: 00007fff45cf2438
[  107.896450][ T8318]  </TASK>
[  108.130883][ T8328] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8328 comm=syz.0.1746
[  108.152047][ T8330] netlink: 'syz.4.1745': attribute type 4 has an invalid length.
[  108.201245][   T29] audit: type=1326 audit(2000000010.290:20009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8327 comm="syz.0.1746" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fabef64d169 code=0x0
[  108.229175][ T8333] loop1: detected capacity change from 0 to 512
[  108.239195][ T8333] EXT4-fs: Ignoring removed nobh option
[  108.261427][ T8333] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.1747: invalid indirect mapped block 256 (level 2)
[  108.284677][ T8337] xt_hashlimit: max too large, truncated to 1048576
[  108.293602][ T8337] Cannot find set identified by id 0 to match
[  108.293662][ T8333] EXT4-fs (loop1): 2 truncates cleaned up
[  108.334871][ T8333] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.356882][ T8333] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.1747: bg 0: block 5: invalid block bitmap
[  108.360274][ T8338] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=8338 comm=syz.4.1748
[  108.385889][ T8333] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28
[  108.400110][ T8333] EXT4-fs (loop1): This should not happen!! Data will be lost
[  108.400110][ T8333] 
[  108.411350][ T8333] EXT4-fs (loop1): Total free blocks count 0
[  108.418412][ T8333] EXT4-fs (loop1): Free/Dirty block details
[  108.424902][ T8333] EXT4-fs (loop1): free_blocks=0
[  108.430688][ T8333] EXT4-fs (loop1): dirty_blocks=2
[  108.436278][ T8333] EXT4-fs (loop1): Block reservation details
[  108.443334][ T8333] EXT4-fs (loop1): i_reserved_data_blocks=2
[  108.533706][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.574541][ T8342] netlink: 'syz.0.1746': attribute type 11 has an invalid length.
[  108.598525][ T8342] __nla_validate_parse: 24 callbacks suppressed
[  108.598543][ T8342] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1746'.
[  108.617734][ T8342] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1746'.
[  108.677764][   T29] audit: type=1326 audit(2000000010.770:20010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8349 comm="syz.5.1753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feadb07d169 code=0x7ffc0000
[  108.702049][   T29] audit: type=1326 audit(2000000010.770:20011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8349 comm="syz.5.1753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feadb07d169 code=0x7ffc0000
[  108.725875][   T29] audit: type=1326 audit(2000000010.770:20012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8349 comm="syz.5.1753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feadb07d169 code=0x7ffc0000
[  108.760530][ T8348] smc: net device bond0 applied user defined pnetid SYZ0
[  108.777951][ T8348] smc: net device bond0 erased user defined pnetid SYZ0
[  108.795555][ T8348] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1752'.
[  108.839033][ T8357] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1755'.
[  109.041884][ T8366] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.1758' sets config #0
[  109.108804][ T8369] loop5: detected capacity change from 0 to 512
[  109.121997][ T8369] EXT4-fs: Ignoring removed nobh option
[  109.167799][ T8369] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.1760: invalid indirect mapped block 256 (level 2)
[  109.211948][ T8369] EXT4-fs (loop5): 2 truncates cleaned up
[  109.264002][ T8369] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.321325][ T8369] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm syz.5.1760: bg 0: block 5: invalid block bitmap
[  109.339349][ T8369] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28
[  109.362246][ T8369] EXT4-fs (loop5): This should not happen!! Data will be lost
[  109.362246][ T8369] 
[  109.372427][ T8369] EXT4-fs (loop5): Total free blocks count 0
[  109.379068][ T8369] EXT4-fs (loop5): Free/Dirty block details
[  109.385288][ T8369] EXT4-fs (loop5): free_blocks=0
[  109.390566][ T8369] EXT4-fs (loop5): dirty_blocks=2
[  109.395827][ T8369] EXT4-fs (loop5): Block reservation details
[  109.402385][ T8369] EXT4-fs (loop5): i_reserved_data_blocks=2
[  109.470276][ T3847] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.499042][ T8387] loop4: detected capacity change from 0 to 256
[  109.507324][ T8387] vfat: Unknown parameter 'ÿÿÿÿ00000000000000000005ÿÿ'
[  109.550736][ T8393] loop5: detected capacity change from 0 to 512
[  109.562644][ T8393] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.606389][ T8393] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  109.634248][ T8398] loop1: detected capacity change from 0 to 512
[  109.644899][ T8399] FAULT_INJECTION: forcing a failure.
[  109.644899][ T8399] name failslab, interval 1, probability 0, space 0, times 0
[  109.653226][ T3847] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.657705][ T8399] CPU: 1 UID: 0 PID: 8399 Comm: syz.4.1771 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(voluntary) 
[  109.657791][ T8399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  109.657808][ T8399] Call Trace:
[  109.657818][ T8399]  <TASK>
[  109.657829][ T8399]  dump_stack_lvl+0xf6/0x150
[  109.657861][ T8399]  dump_stack+0x15/0x1a
[  109.657963][ T8399]  should_fail_ex+0x261/0x270
[  109.657991][ T8399]  should_failslab+0x8f/0xb0
[  109.658026][ T8399]  __kmalloc_noprof+0xad/0x410
[  109.658073][ T8399]  ? iter_file_splice_write+0xf9/0x980
[  109.658107][ T8399]  iter_file_splice_write+0xf9/0x980
[  109.658162][ T8399]  ? shmem_file_splice_read+0x595/0x5d0
[  109.658191][ T8399]  ? __pfx_iter_file_splice_write+0x10/0x10
[  109.658223][ T8399]  direct_splice_actor+0x160/0x2c0
[  109.658282][ T8399]  splice_direct_to_actor+0x305/0x680
[  109.658323][ T8399]  ? __pfx_direct_splice_actor+0x10/0x10
[  109.658359][ T8399]  do_splice_direct+0xd9/0x150
[  109.658387][ T8399]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  109.658487][ T8399]  do_sendfile+0x40a/0x690
[  109.658532][ T8399]  __x64_sys_sendfile64+0x113/0x160
[  109.658573][ T8399]  x64_sys_call+0xfc3/0x2e10
[  109.658601][ T8399]  do_syscall_64+0xc9/0x1c0
[  109.658627][ T8399]  ? clear_bhb_loop+0x25/0x80
[  109.658706][ T8399]  ? clear_bhb_loop+0x25/0x80
[  109.658737][ T8399]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.658761][ T8399] RIP: 0033:0x7f94fc55d169
[  109.658776][ T8399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.658832][ T8399] RSP: 002b:00007f94fabc7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  109.658856][ T8399] RAX: ffffffffffffffda RBX: 00007f94fc775fa0 RCX: 00007f94fc55d169
[  109.658872][ T8399] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000004
[  109.658887][ T8399] RBP: 00007f94fabc7090 R08: 0000000000000000 R09: 0000000000000000
[  109.658902][ T8399] R10: 00008000fffffffe R11: 0000000000000246 R12: 0000000000000001
[  109.658917][ T8399] R13: 0000000000000000 R14: 00007f94fc775fa0 R15: 00007ffc76dd8678
[  109.659023][ T8399]  </TASK>
[  109.754006][ T8398] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.897659][ T8403] xt_hashlimit: size too large, truncated to 1048576
[  109.904846][ T8404] xt_hashlimit: size too large, truncated to 1048576
[  109.918612][ T8398] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  110.016601][ T8411] xt_hashlimit: max too large, truncated to 1048576
[  110.045631][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.130248][ T8420] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=8420 comm=syz.5.1774
[  110.135403][ T8418] loop4: detected capacity change from 0 to 512
[  110.382410][ T8447] FAULT_INJECTION: forcing a failure.
[  110.382410][ T8447] name failslab, interval 1, probability 0, space 0, times 0
[  110.395198][ T8447] CPU: 0 UID: 0 PID: 8447 Comm: syz.4.1783 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(voluntary) 
[  110.395280][ T8447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  110.395296][ T8447] Call Trace:
[  110.395306][ T8447]  <TASK>
[  110.395316][ T8447]  dump_stack_lvl+0xf6/0x150
[  110.395347][ T8447]  dump_stack+0x15/0x1a
[  110.395424][ T8447]  should_fail_ex+0x261/0x270
[  110.395506][ T8447]  should_failslab+0x8f/0xb0
[  110.395532][ T8447]  kmem_cache_alloc_noprof+0x59/0x340
[  110.395568][ T8447]  ? audit_log_start+0x37f/0x6e0
[  110.395599][ T8447]  audit_log_start+0x37f/0x6e0
[  110.395627][ T8447]  ? kstrtouint+0x7b/0xc0
[  110.395708][ T8447]  audit_seccomp+0x4b/0x130
[  110.395733][ T8447]  __seccomp_filter+0x694/0x10e0
[  110.395811][ T8447]  ? vfs_write+0x669/0x950
[  110.395839][ T8447]  ? putname+0xe1/0x100
[  110.395882][ T8447]  __secure_computing+0x7e/0x160
[  110.395908][ T8447]  syscall_trace_enter+0xcf/0x1f0
[  110.395938][ T8447]  ? fpregs_assert_state_consistent+0x83/0xa0
[  110.395974][ T8447]  do_syscall_64+0xaa/0x1c0
[  110.396017][ T8447]  ? clear_bhb_loop+0x25/0x80
[  110.396044][ T8447]  ? clear_bhb_loop+0x25/0x80
[  110.396134][ T8447]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.396162][ T8447] RIP: 0033:0x7f94fc55d169
[  110.396181][ T8447] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  110.396231][ T8447] RSP: 002b:00007f94fabc7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000be
[  110.396255][ T8447] RAX: ffffffffffffffda RBX: 00007f94fc775fa0 RCX: 00007f94fc55d169
[  110.396270][ T8447] RDX: 0000200000000040 RSI: 0000200000000000 RDI: 0000000000000004
[  110.396284][ T8447] RBP: 00007f94fabc7090 R08: 0000000000000000 R09: 0000000000000000
[  110.396300][ T8447] R10: 0000000000000020 R11: 0000000000000246 R12: 0000000000000001
[  110.396313][ T8447] R13: 0000000000000000 R14: 00007f94fc775fa0 R15: 00007ffc76dd8678
[  110.396332][ T8447]  </TASK>
[  110.604567][ T8445] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  110.617717][ T8463] IPVS: sync thread started: state = MASTER, mcast_ifn = macvlan0, syncid = 0, id = 0
[  110.663422][ T8469] FAULT_INJECTION: forcing a failure.
[  110.663422][ T8469] name failslab, interval 1, probability 0, space 0, times 0
[  110.668651][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x1
[  110.676152][ T8469] CPU: 1 UID: 0 PID: 8469 Comm: syz.2.1785 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(voluntary) 
[  110.676191][ T8469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  110.676208][ T8469] Call Trace:
[  110.676218][ T8469]  <TASK>
[  110.676230][ T8469]  dump_stack_lvl+0xf6/0x150
[  110.676262][ T8469]  dump_stack+0x15/0x1a
[  110.676336][ T8469]  should_fail_ex+0x261/0x270
[  110.676363][ T8469]  should_failslab+0x8f/0xb0
[  110.676397][ T8469]  kmem_cache_alloc_noprof+0x59/0x340
[  110.676513][ T8469]  ? audit_log_start+0x37f/0x6e0
[  110.676548][ T8469]  audit_log_start+0x37f/0x6e0
[  110.676627][ T8469]  ? kstrtouint+0x7b/0xc0
[  110.676669][ T8469]  audit_seccomp+0x4b/0x130
[  110.676693][ T8469]  __seccomp_filter+0x694/0x10e0
[  110.676804][ T8469]  ? vfs_write+0x669/0x950
[  110.676937][ T8469]  __secure_computing+0x7e/0x160
[  110.676988][ T8469]  syscall_trace_enter+0xcf/0x1f0
[  110.677029][ T8469]  do_syscall_64+0xaa/0x1c0
[  110.677056][ T8469]  ? clear_bhb_loop+0x25/0x80
[  110.677084][ T8469]  ? clear_bhb_loop+0x25/0x80
[  110.677111][ T8469]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.677145][ T8469] RIP: 0033:0x7fe35589d169
[  110.677196][ T8469] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  110.677220][ T8469] RSP: 002b:00007fe353f07038 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  110.677246][ T8469] RAX: ffffffffffffffda RBX: 00007fe355ab5fa0 RCX: 00007fe35589d169
[  110.677265][ T8469] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  110.677373][ T8469] RBP: 00007fe353f07090 R08: 0000000000000000 R09: 0000000000000000
[  110.677388][ T8469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  110.677404][ T8469] R13: 0000000000000000 R14: 00007fe355ab5fa0 R15: 00007ffefe671838
[  110.677428][ T8469]  </TASK>
[  110.815152][ T8477] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1784'.
[  110.820885][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  110.820916][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  110.854502][ T8477] loop4: detected capacity change from 0 to 2048
[  110.861736][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  110.910611][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  110.918067][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  110.925558][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x4
[  110.933001][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  110.940518][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  110.947978][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  110.955454][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x2
[  110.962891][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  110.970329][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  110.977871][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  110.985357][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  110.992786][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.000362][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.007913][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.015503][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.022965][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.030490][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.038038][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.045441][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.053084][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.060628][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.068170][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.075723][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.083509][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.091280][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.098802][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.106749][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.115279][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.123673][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.131119][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.138732][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.146456][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.153986][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.161870][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.169308][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.176890][ T3383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  111.187266][ T3383] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  111.209975][ T8476] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1786'.
[  111.219189][ T8476] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1786'.
[  111.229444][ T8476] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1786'.
[  111.265564][ T8476] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1786'.
[  111.274611][ T8476] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1786'.
[  111.324619][ T8479] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  111.478802][ T8502] netlink: 'syz.4.1792': attribute type 3 has an invalid length.
[  111.517088][ T8509] xt_hashlimit: max too large, truncated to 1048576
[  111.531852][ T8497] loop1: detected capacity change from 0 to 512
[  111.539114][ T8508] rdma_op ffff888122032980 conn xmit_rdma 0000000000000000
[  111.571954][ T8497] EXT4-fs: Ignoring removed nobh option
[  111.598628][ T8513] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=8513 comm=syz.5.1797
[  111.762008][ T8519] loop2: detected capacity change from 0 to 512
[  111.775372][ T8497] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.1793: invalid indirect mapped block 256 (level 2)
[  111.783155][ T8519] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  111.816177][ T8497] EXT4-fs (loop1): 2 truncates cleaned up
[  111.842838][ T8497] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.862712][ T8519] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  111.996956][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.027350][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.248089][ T8550] FAULT_INJECTION: forcing a failure.
[  112.248089][ T8550] name failslab, interval 1, probability 0, space 0, times 0
[  112.260803][ T8550] CPU: 0 UID: 0 PID: 8550 Comm: syz.2.1814 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(voluntary) 
[  112.260845][ T8550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  112.260860][ T8550] Call Trace:
[  112.260868][ T8550]  <TASK>
[  112.260877][ T8550]  dump_stack_lvl+0xf6/0x150
[  112.260910][ T8550]  dump_stack+0x15/0x1a
[  112.260930][ T8550]  should_fail_ex+0x261/0x270
[  112.260956][ T8550]  should_failslab+0x8f/0xb0
[  112.260988][ T8550]  kmem_cache_alloc_noprof+0x59/0x340
[  112.261026][ T8550]  ? __inet_hash_connect+0x7f2/0x1350
[  112.261127][ T8550]  ? inet_sk_get_local_port_range+0x80/0x100
[  112.261167][ T8550]  __inet_hash_connect+0x7f2/0x1350
[  112.261195][ T8550]  ? __pfx___inet6_check_established+0x10/0x10
[  112.261274][ T8550]  inet6_hash_connect+0xaf/0xc0
[  112.261311][ T8550]  dccp_v6_connect+0x6df/0x8b0
[  112.261409][ T8550]  __inet_stream_connect+0x15c/0x7c0
[  112.261440][ T8550]  ? _raw_spin_unlock_bh+0x36/0x40
[  112.261472][ T8550]  ? _raw_spin_unlock_bh+0x36/0x40
[  112.261553][ T8550]  ? lock_sock_nested+0x114/0x140
[  112.261605][ T8550]  ? selinux_netlbl_socket_connect+0x112/0x130
[  112.261637][ T8550]  inet_stream_connect+0x48/0x70
[  112.261671][ T8550]  ? __pfx_inet_stream_connect+0x10/0x10
[  112.261705][ T8550]  __sys_connect+0x192/0x1b0
[  112.261836][ T8550]  __x64_sys_connect+0x41/0x50
[  112.261871][ T8550]  x64_sys_call+0x2030/0x2e10
[  112.261897][ T8550]  do_syscall_64+0xc9/0x1c0
[  112.261921][ T8550]  ? clear_bhb_loop+0x25/0x80
[  112.261947][ T8550]  ? clear_bhb_loop+0x25/0x80
[  112.261990][ T8550]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.262014][ T8550] RIP: 0033:0x7fe35589d169
[  112.262033][ T8550] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.262056][ T8550] RSP: 002b:00007fe353f07038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  112.262091][ T8550] RAX: ffffffffffffffda RBX: 00007fe355ab5fa0 RCX: 00007fe35589d169
[  112.262106][ T8550] RDX: 0000000000000062 RSI: 0000200000000000 RDI: 0000000000000003
[  112.262120][ T8550] RBP: 00007fe353f07090 R08: 0000000000000000 R09: 0000000000000000
[  112.262134][ T8550] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  112.262148][ T8550] R13: 0000000000000000 R14: 00007fe355ab5fa0 R15: 00007ffefe671838
[  112.262171][ T8550]  </TASK>
[  112.510179][ T8551] loop1: detected capacity change from 0 to 512
[  112.551955][ T8544] loop4: detected capacity change from 0 to 512
[  112.560192][ T8544] ext4: Unknown parameter 'noacl'
[  112.581028][ T8551] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  112.611669][ T8551] System zones: 0-2, 18-18, 34-34
[  112.625765][ T8551] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1813: bg 0: block 248: padding at end of block bitmap is not set
[  112.641023][ T8551] __quota_error: 512 callbacks suppressed
[  112.641110][ T8551] Quota error (device loop1): write_blk: dquota write failed
[  112.643108][ T8544] bridge0: port 2(bridge_slave_1) entered disabled state
[  112.647266][ T8551] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  112.654518][ T8544] bridge0: port 1(bridge_slave_0) entered disabled state
[  112.661600][ T8551] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm syz.1.1813: Failed to acquire dquot type 1
[  112.691829][   T29] audit: type=1400 audit(2000000014.780:20521): avc:  denied  { create } for  pid=8559 comm="syz.5.1815" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  112.712705][   T29] audit: type=1326 audit(2000000014.780:20522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8556 comm="syz.2.1816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe35589d169 code=0x7ffc0000
[  112.721307][ T8551] EXT4-fs (loop1): 1 truncate cleaned up
[  112.736376][   T29] audit: type=1326 audit(2000000014.780:20523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8556 comm="syz.2.1816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=428 compat=0 ip=0x7fe35589d169 code=0x7ffc0000
[  112.766251][   T29] audit: type=1326 audit(2000000014.780:20524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8556 comm="syz.2.1816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe35589d169 code=0x7ffc0000
[  112.772702][ T8551] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.790662][   T29] audit: type=1326 audit(2000000014.780:20525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8556 comm="syz.2.1816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=429 compat=0 ip=0x7fe35589d169 code=0x7ffc0000
[  112.814397][ T8551] ext4 filesystem being mounted at /336/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  112.826752][   T29] audit: type=1326 audit(2000000014.780:20526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8556 comm="syz.2.1816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe35589d169 code=0x7ffc0000
[  112.861381][   T29] audit: type=1326 audit(2000000014.780:20527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8556 comm="syz.2.1816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7fe35589d169 code=0x7ffc0000
[  112.885004][   T29] audit: type=1326 audit(2000000014.780:20528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8556 comm="syz.2.1816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe35589d169 code=0x7ffc0000
[  112.958786][ T8544] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  112.970170][ T8544] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  113.006386][ T8544] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  113.015424][ T8544] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  113.024478][ T8544] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  113.033815][ T8544] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  113.043356][ T8567] program syz.2.1819 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  113.062434][ T8560] lo: entered promiscuous mode
[  113.067495][ T8560] lo: entered allmulticast mode
[  113.125380][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.222636][ T8579] FAULT_INJECTION: forcing a failure.
[  113.222636][ T8579] name failslab, interval 1, probability 0, space 0, times 0
[  113.235528][ T8579] CPU: 1 UID: 0 PID: 8579 Comm: syz.5.1825 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(voluntary) 
[  113.235564][ T8579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  113.235579][ T8579] Call Trace:
[  113.235587][ T8579]  <TASK>
[  113.235672][ T8579]  dump_stack_lvl+0xf6/0x150
[  113.235703][ T8579]  dump_stack+0x15/0x1a
[  113.235723][ T8579]  should_fail_ex+0x261/0x270
[  113.235797][ T8579]  should_failslab+0x8f/0xb0
[  113.235835][ T8579]  __kvmalloc_node_noprof+0x12c/0x520
[  113.235875][ T8579]  ? nf_tables_newset+0xd74/0x1450
[  113.235913][ T8579]  nf_tables_newset+0xd74/0x1450
[  113.235951][ T8579]  nfnetlink_rcv+0xb6e/0x1610
[  113.236033][ T8579]  ? __kfree_skb+0x102/0x150
[  113.236098][ T8579]  netlink_unicast+0x605/0x6c0
[  113.236135][ T8579]  netlink_sendmsg+0x609/0x720
[  113.236177][ T8579]  ? __pfx_netlink_sendmsg+0x10/0x10
[  113.236216][ T8579]  __sock_sendmsg+0x140/0x180
[  113.236307][ T8579]  ____sys_sendmsg+0x350/0x4e0
[  113.236398][ T8579]  __sys_sendmsg+0x1a0/0x240
[  113.236434][ T8579]  __x64_sys_sendmsg+0x46/0x50
[  113.236456][ T8579]  x64_sys_call+0x26f3/0x2e10
[  113.236482][ T8579]  do_syscall_64+0xc9/0x1c0
[  113.236504][ T8579]  ? clear_bhb_loop+0x25/0x80
[  113.236598][ T8579]  ? clear_bhb_loop+0x25/0x80
[  113.236623][ T8579]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.236646][ T8579] RIP: 0033:0x7feadb07d169
[  113.236735][ T8579] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.236757][ T8579] RSP: 002b:00007fead96df038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  113.236787][ T8579] RAX: ffffffffffffffda RBX: 00007feadb295fa0 RCX: 00007feadb07d169
[  113.236803][ T8579] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  113.236818][ T8579] RBP: 00007fead96df090 R08: 0000000000000000 R09: 0000000000000000
[  113.236832][ T8579] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  113.236846][ T8579] R13: 0000000000000000 R14: 00007feadb295fa0 R15: 00007ffe1cf89688
[  113.236898][ T8579]  </TASK>
[  113.243778][ T8583] loop4: detected capacity change from 0 to 512
[  113.455661][ T8583] EXT4-fs: Ignoring removed orlov option
[  113.486905][ T8583] ext4 filesystem being mounted at /374/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  113.588825][ T8593] FAULT_INJECTION: forcing a failure.
[  113.588825][ T8593] name failslab, interval 1, probability 0, space 0, times 0
[  113.601661][ T8593] CPU: 1 UID: 0 PID: 8593 Comm: syz.5.1829 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(voluntary) 
[  113.601753][ T8593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  113.601875][ T8593] Call Trace:
[  113.601883][ T8593]  <TASK>
[  113.601892][ T8593]  dump_stack_lvl+0xf6/0x150
[  113.601918][ T8593]  dump_stack+0x15/0x1a
[  113.601935][ T8593]  should_fail_ex+0x261/0x270
[  113.601960][ T8593]  should_failslab+0x8f/0xb0
[  113.601985][ T8593]  kmem_cache_alloc_noprof+0x59/0x340
[  113.602088][ T8593]  ? alloc_empty_file+0x78/0x200
[  113.602119][ T8593]  ? _raw_spin_unlock+0x26/0x50
[  113.602146][ T8593]  alloc_empty_file+0x78/0x200
[  113.602199][ T8593]  alloc_file_pseudo+0xcb/0x160
[  113.602240][ T8593]  anon_inode_getfile+0xa3/0x120
[  113.602341][ T8593]  do_epoll_create+0x1ec/0x280
[  113.602382][ T8593]  __x64_sys_epoll_create1+0x1e/0x30
[  113.602417][ T8593]  x64_sys_call+0x2db5/0x2e10
[  113.602471][ T8593]  do_syscall_64+0xc9/0x1c0
[  113.602491][ T8593]  ? clear_bhb_loop+0x25/0x80
[  113.602516][ T8593]  ? clear_bhb_loop+0x25/0x80
[  113.602616][ T8593]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.602641][ T8593] RIP: 0033:0x7feadb07d169
[  113.602660][ T8593] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.602690][ T8593] RSP: 002b:00007fead96df038 EFLAGS: 00000246 ORIG_RAX: 0000000000000123
[  113.602710][ T8593] RAX: ffffffffffffffda RBX: 00007feadb295fa0 RCX: 00007feadb07d169
[  113.602721][ T8593] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  113.602745][ T8593] RBP: 00007fead96df090 R08: 0000000000000000 R09: 0000000000000000
[  113.602758][ T8593] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  113.602772][ T8593] R13: 0000000000000000 R14: 00007feadb295fa0 R15: 00007ffe1cf89688
[  113.602859][ T8593]  </TASK>
[  113.854891][ T8601] loop4: detected capacity change from 0 to 512
[  114.048856][ T8601] EXT4-fs (loop4): 1 orphan inode deleted
[  114.055704][ T8601] ext4 filesystem being mounted at /375/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  114.256430][ T8615] FAULT_INJECTION: forcing a failure.
[  114.256430][ T8615] name failslab, interval 1, probability 0, space 0, times 0
[  114.269181][ T8615] CPU: 1 UID: 0 PID: 8615 Comm: syz.5.1835 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(voluntary) 
[  114.269292][ T8615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  114.269318][ T8615] Call Trace:
[  114.269326][ T8615]  <TASK>
[  114.269334][ T8615]  dump_stack_lvl+0xf6/0x150
[  114.269406][ T8615]  dump_stack+0x15/0x1a
[  114.269422][ T8615]  should_fail_ex+0x261/0x270
[  114.269446][ T8615]  should_failslab+0x8f/0xb0
[  114.269477][ T8615]  kmem_cache_alloc_node_noprof+0x5c/0x340
[  114.269568][ T8615]  ? __alloc_skb+0x10d/0x320
[  114.269607][ T8615]  __alloc_skb+0x10d/0x320
[  114.269702][ T8615]  netlink_alloc_large_skb+0xad/0xe0
[  114.269767][ T8615]  netlink_sendmsg+0x3da/0x720
[  114.269846][ T8615]  ? __pfx_netlink_sendmsg+0x10/0x10
[  114.269880][ T8615]  __sock_sendmsg+0x140/0x180
[  114.269971][ T8615]  ____sys_sendmsg+0x350/0x4e0
[  114.270024][ T8615]  __sys_sendmsg+0x1a0/0x240
[  114.270064][ T8615]  __x64_sys_sendmsg+0x46/0x50
[  114.270087][ T8615]  x64_sys_call+0x26f3/0x2e10
[  114.270185][ T8615]  do_syscall_64+0xc9/0x1c0
[  114.270210][ T8615]  ? clear_bhb_loop+0x25/0x80
[  114.270231][ T8615]  ? clear_bhb_loop+0x25/0x80
[  114.270250][ T8615]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.270270][ T8615] RIP: 0033:0x7feadb07d169
[  114.270360][ T8615] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.270438][ T8615] RSP: 002b:00007fead96df038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  114.270461][ T8615] RAX: ffffffffffffffda RBX: 00007feadb295fa0 RCX: 00007feadb07d169
[  114.270476][ T8615] RDX: 0000000000000010 RSI: 00002000000001c0 RDI: 0000000000000006
[  114.270490][ T8615] RBP: 00007fead96df090 R08: 0000000000000000 R09: 0000000000000000
[  114.270505][ T8615] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  114.270520][ T8615] R13: 0000000000000000 R14: 00007feadb295fa0 R15: 00007ffe1cf89688
[  114.270539][ T8615]  </TASK>
[  114.773495][ T8621] loop1: detected capacity change from 0 to 512
[  114.823822][ T8626] loop2: detected capacity change from 0 to 512
[  114.833989][ T7338] EXT4-fs error (device loop4): ext4_release_dquot:6971: comm kworker/u8:15: Failed to release dquot type 1
[  114.889572][ T8621] EXT4-fs (loop1): 1 orphan inode deleted
[  114.903796][ T8621] ext4 filesystem being mounted at /342/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  114.916404][ T2104] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1
[  114.940328][ T8633] loop4: detected capacity change from 0 to 512
[  114.949805][ T8638] FAULT_INJECTION: forcing a failure.
[  114.949805][ T8638] name failslab, interval 1, probability 0, space 0, times 0
[  114.962727][ T8638] CPU: 1 UID: 0 PID: 8638 Comm: syz.0.1844 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(voluntary) 
[  114.962758][ T8638] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  114.962771][ T8638] Call Trace:
[  114.962808][ T8638]  <TASK>
[  114.962817][ T8638]  dump_stack_lvl+0xf6/0x150
[  114.962846][ T8638]  dump_stack+0x15/0x1a
[  114.962864][ T8638]  should_fail_ex+0x261/0x270
[  114.962888][ T8638]  should_failslab+0x8f/0xb0
[  114.962988][ T8638]  kmem_cache_alloc_lru_noprof+0x5e/0x330
[  114.963025][ T8638]  ? shmem_alloc_inode+0x34/0x50
[  114.963128][ T8638]  shmem_alloc_inode+0x34/0x50
[  114.963165][ T8638]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  114.963199][ T8638]  alloc_inode+0x40/0x170
[  114.963289][ T8638]  new_inode+0x1e/0xe0
[  114.963335][ T8638]  shmem_get_inode+0x24e/0x730
[  114.963373][ T8638]  __shmem_file_setup+0x127/0x1f0
[  114.963424][ T8638]  shmem_file_setup+0x3b/0x50
[  114.963512][ T8638]  __se_sys_memfd_create+0x2e1/0x5a0
[  114.963541][ T8638]  __x64_sys_memfd_create+0x31/0x40
[  114.963568][ T8638]  x64_sys_call+0x1163/0x2e10
[  114.963664][ T8638]  do_syscall_64+0xc9/0x1c0
[  114.963706][ T8638]  ? clear_bhb_loop+0x25/0x80
[  114.963732][ T8638]  ? clear_bhb_loop+0x25/0x80
[  114.963759][ T8638]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.963785][ T8638] RIP: 0033:0x7fabef64d169
[  114.963805][ T8638] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.963829][ T8638] RSP: 002b:00007fabedcaee18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  114.963905][ T8638] RAX: ffffffffffffffda RBX: 0000000000000512 RCX: 00007fabef64d169
[  114.963917][ T8638] RDX: 00007fabedcaeef0 RSI: 0000000000000000 RDI: 00007fabef6cec3c
[  114.963928][ T8638] RBP: 0000200000000c40 R08: 00007fabedcaebb7 R09: 00007fabedcaee40
[  114.963990][ T8638] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000380
[  114.964005][ T8638] R13: 00007fabedcaeef0 R14: 00007fabedcaeeb0 R15: 00002000000006c0
[  114.964029][ T8638]  </TASK>
[  115.172481][ T8633] EXT4-fs: Ignoring removed nobh option
[  115.178457][ T8636] loop5: detected capacity change from 0 to 2048
[  115.198657][ T8626] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  115.232789][ T8644] FAULT_INJECTION: forcing a failure.
[  115.232789][ T8644] name failslab, interval 1, probability 0, space 0, times 0
[  115.245561][ T8644] CPU: 0 UID: 0 PID: 8644 Comm: syz.1.1846 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(voluntary) 
[  115.245662][ T8644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  115.245675][ T8644] Call Trace:
[  115.245684][ T8644]  <TASK>
[  115.245693][ T8644]  dump_stack_lvl+0xf6/0x150
[  115.245723][ T8644]  dump_stack+0x15/0x1a
[  115.245743][ T8644]  should_fail_ex+0x261/0x270
[  115.245768][ T8644]  should_failslab+0x8f/0xb0
[  115.245851][ T8644]  kmem_cache_alloc_node_noprof+0x5c/0x340
[  115.245891][ T8644]  ? __alloc_skb+0x10d/0x320
[  115.245924][ T8644]  __alloc_skb+0x10d/0x320
[  115.246006][ T8644]  netlink_alloc_large_skb+0xad/0xe0
[  115.246034][ T8644]  netlink_sendmsg+0x3da/0x720
[  115.246086][ T8644]  ? __pfx_netlink_sendmsg+0x10/0x10
[  115.246115][ T8644]  __sock_sendmsg+0x140/0x180
[  115.246144][ T8644]  ____sys_sendmsg+0x350/0x4e0
[  115.246170][ T8644]  __sys_sendmsg+0x1a0/0x240
[  115.246240][ T8644]  __x64_sys_sendmsg+0x46/0x50
[  115.246261][ T8644]  x64_sys_call+0x26f3/0x2e10
[  115.246281][ T8644]  do_syscall_64+0xc9/0x1c0
[  115.246368][ T8644]  ? clear_bhb_loop+0x25/0x80
[  115.246390][ T8644]  ? clear_bhb_loop+0x25/0x80
[  115.246413][ T8644]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.246464][ T8644] RIP: 0033:0x7fa43a3fd169
[  115.246482][ T8644] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.246504][ T8644] RSP: 002b:00007fa438a5f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  115.246585][ T8644] RAX: ffffffffffffffda RBX: 00007fa43a615fa0 RCX: 00007fa43a3fd169
[  115.246597][ T8644] RDX: 0000000000000010 RSI: 00002000000001c0 RDI: 0000000000000006
[  115.246608][ T8644] RBP: 00007fa438a5f090 R08: 0000000000000000 R09: 0000000000000000
[  115.246619][ T8644] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  115.246630][ T8644] R13: 0000000000000000 R14: 00007fa43a615fa0 R15: 00007fff45cf2438
[  115.246648][ T8644]  </TASK>
[  115.256083][ T8648] FAULT_INJECTION: forcing a failure.
[  115.256083][ T8648] name failslab, interval 1, probability 0, space 0, times 0
[  115.285362][ T8633] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.1836: invalid indirect mapped block 256 (level 2)
[  115.289216][ T8648] CPU: 1 UID: 0 PID: 8648 Comm: syz.0.1847 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(voluntary) 
[  115.289330][ T8648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  115.289345][ T8648] Call Trace:
[  115.289352][ T8648]  <TASK>
[  115.289361][ T8648]  dump_stack_lvl+0xf6/0x150
[  115.289391][ T8648]  dump_stack+0x15/0x1a
[  115.289412][ T8648]  should_fail_ex+0x261/0x270
[  115.289440][ T8648]  should_failslab+0x8f/0xb0
[  115.289510][ T8648]  __kmalloc_cache_noprof+0x55/0x320
[  115.289559][ T8648]  ? __se_sys_memfd_create+0x1ea/0x5a0
[  115.289652][ T8648]  __se_sys_memfd_create+0x1ea/0x5a0
[  115.289680][ T8648]  __x64_sys_memfd_create+0x31/0x40
[  115.289735][ T8648]  x64_sys_call+0x1163/0x2e10
[  115.289762][ T8648]  do_syscall_64+0xc9/0x1c0
[  115.289785][ T8648]  ? clear_bhb_loop+0x25/0x80
[  115.289813][ T8648]  ? clear_bhb_loop+0x25/0x80
[  115.289842][ T8648]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.289913][ T8648] RIP: 0033:0x7fabef64d169
[  115.289935][ T8648] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.289958][ T8648] RSP: 002b:00007fabedcaee18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  115.290081][ T8648] RAX: ffffffffffffffda RBX: 0000000000000513 RCX: 00007fabef64d169
[  115.290097][ T8648] RDX: 00007fabedcaeef0 RSI: 0000000000000000 RDI: 00007fabef6cec3c
[  115.290183][ T8648] RBP: 0000200000000380 R08: 00007fabedcaebb7 R09: 00007fabedcaee40
[  115.290198][ T8648] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000080
[  115.290213][ T8648] R13: 00007fabedcaeef0 R14: 00007fabedcaeeb0 R15: 0000200000000000
[  115.290238][ T8648]  </TASK>
[  115.366312][ T8652] loop1: detected capacity change from 0 to 512
[  115.393493][ T8633] EXT4-fs (loop4): 2 truncates cleaned up
[  115.433296][ T8635] GPT:first_usable_lbas don't match.
[  115.433407][ T8635] GPT:34 != 290
[  115.433437][ T8635] GPT: Use GNU Parted to correct GPT errors.
[  115.433977][ T8635]  loop5: p1 p2 p3
[  115.457014][ T8652] EXT4-fs: Ignoring removed nobh option
[  115.568974][ T3006] GPT:first_usable_lbas don't match.
[  115.710570][ T3006] GPT:34 != 290
[  115.714102][ T3006] GPT: Use GNU Parted to correct GPT errors.
[  115.722466][ T3006]  loop5: p1 p2 p3
[  115.731291][ T8652] EXT4-fs error (device loop1): ext4_do_update_inode:5194: inode #16: comm syz.1.1849: corrupted inode contents
[  115.751807][ T8652] EXT4-fs (loop1): Remounting filesystem read-only
[  115.760228][ T8652] EXT4-fs (loop1): 1 truncate cleaned up
[  115.777945][ T7338] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  115.788608][ T7338] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  115.835425][ T8664] FAULT_INJECTION: forcing a failure.
[  115.835425][ T8664] name failslab, interval 1, probability 0, space 0, times 0
[  115.848219][ T8664] CPU: 0 UID: 0 PID: 8664 Comm: syz.4.1852 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(voluntary) 
[  115.848249][ T8664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  115.848261][ T8664] Call Trace:
[  115.848275][ T8664]  <TASK>
[  115.848284][ T8664]  dump_stack_lvl+0xf6/0x150
[  115.848312][ T8664]  dump_stack+0x15/0x1a
[  115.848361][ T8664]  should_fail_ex+0x261/0x270
[  115.848387][ T8664]  should_failslab+0x8f/0xb0
[  115.848416][ T8664]  kmem_cache_alloc_node_noprof+0x5c/0x340
[  115.848457][ T8664]  ? __alloc_skb+0x10d/0x320
[  115.848496][ T8664]  __alloc_skb+0x10d/0x320
[  115.848642][ T8664]  pfkey_sendmsg+0x10f/0x950
[  115.848676][ T8664]  ? avc_has_perm+0xd6/0x150
[  115.848782][ T8664]  ? selinux_socket_sendmsg+0x18a/0x1c0
[  115.848911][ T8664]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  115.848936][ T8664]  __sock_sendmsg+0x140/0x180
[  115.848966][ T8664]  ____sys_sendmsg+0x350/0x4e0
[  115.849027][ T8664]  __sys_sendmsg+0x1a0/0x240
[  115.849064][ T8664]  __x64_sys_sendmsg+0x46/0x50
[  115.849085][ T8664]  x64_sys_call+0x26f3/0x2e10
[  115.849110][ T8664]  do_syscall_64+0xc9/0x1c0
[  115.849204][ T8664]  ? clear_bhb_loop+0x25/0x80
[  115.849291][ T8664]  ? clear_bhb_loop+0x25/0x80
[  115.849317][ T8664]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.849343][ T8664] RIP: 0033:0x7f94fc55d169
[  115.849362][ T8664] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.849382][ T8664] RSP: 002b:00007f94fabc7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  115.849431][ T8664] RAX: ffffffffffffffda RBX: 00007f94fc775fa0 RCX: 00007f94fc55d169
[  115.849447][ T8664] RDX: 0000000000000000 RSI: 0000200000000180 RDI: 0000000000000003
[  115.849461][ T8664] RBP: 00007f94fabc7090 R08: 0000000000000000 R09: 0000000000000000
[  115.849475][ T8664] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  115.849490][ T8664] R13: 0000000000000000 R14: 00007f94fc775fa0 R15: 00007ffc76dd8678
[  115.849511][ T8664]  </TASK>
[  115.851038][ T8652] ext4 filesystem being mounted at /344/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  115.863351][ T7338] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started
[  115.867877][ T7221] udevd[7221]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  115.901112][ T8666] __nla_validate_parse: 6 callbacks suppressed
[  115.901135][ T8666] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1854'.
[  115.921518][ T7209] udevd[7209]: inotify_add_watch(7, /dev/loop5p2, 10) failed: No such file or directory
[  115.931560][ T7010] udevd[7010]: inotify_add_watch(7, /dev/loop5p3, 10) failed: No such file or directory
[  116.030639][ T8672] hub 4-0:1.0: USB hub found
[  116.130820][ T7222] udevd[7222]: inotify_add_watch(7, /dev/loop5p3, 10) failed: No such file or directory
[  116.150225][ T7221] udevd[7221]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  116.154949][ T8672] hub 4-0:1.0: 8 ports detected
[  116.179077][ T8652] loop1: detected capacity change from 0 to 512
[  116.192885][ T7010] udevd[7010]: inotify_add_watch(7, /dev/loop5p2, 10) failed: No such file or directory
[  116.209351][ T8652] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  116.242095][ T8652] EXT4-fs (loop1): 1 truncate cleaned up
[  116.543657][ T8697] netlink: 830 bytes leftover after parsing attributes in process `syz.5.1860'.
[  116.748280][ T8698] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1862'.
[  116.757601][ T8698] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1862'.
[  116.850645][ T8691] 8021q: VLANs not supported on caif0
[  117.046133][ T8705] FAULT_INJECTION: forcing a failure.
[  117.046133][ T8705] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  117.059428][ T8705] CPU: 0 UID: 0 PID: 8705 Comm: syz.1.1864 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(voluntary) 
[  117.059460][ T8705] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  117.059476][ T8705] Call Trace:
[  117.059485][ T8705]  <TASK>
[  117.059495][ T8705]  dump_stack_lvl+0xf6/0x150
[  117.059663][ T8705]  dump_stack+0x15/0x1a
[  117.059683][ T8705]  should_fail_ex+0x261/0x270
[  117.059766][ T8705]  should_fail+0xb/0x10
[  117.059786][ T8705]  should_fail_usercopy+0x1a/0x20
[  117.059813][ T8705]  _copy_from_user+0x1c/0xa0
[  117.059837][ T8705]  do_ip6t_set_ctl+0x44d/0x8c0
[  117.059859][ T8705]  ? kstrtouint+0x7b/0xc0
[  117.059964][ T8705]  nf_setsockopt+0x195/0x1b0
[  117.059999][ T8705]  ipv6_setsockopt+0x10f/0x130
[  117.060018][ T8705]  tcp_setsockopt+0x93/0xb0
[  117.060050][ T8705]  sock_common_setsockopt+0x64/0x80
[  117.060136][ T8705]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  117.060169][ T8705]  __sys_setsockopt+0x187/0x200
[  117.060207][ T8705]  __x64_sys_setsockopt+0x66/0x80
[  117.060325][ T8705]  x64_sys_call+0x2a09/0x2e10
[  117.060352][ T8705]  do_syscall_64+0xc9/0x1c0
[  117.060377][ T8705]  ? clear_bhb_loop+0x25/0x80
[  117.060398][ T8705]  ? clear_bhb_loop+0x25/0x80
[  117.060455][ T8705]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.060481][ T8705] RIP: 0033:0x7fa43a3fd169
[  117.060499][ T8705] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  117.060521][ T8705] RSP: 002b:00007fa438a5f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  117.060604][ T8705] RAX: ffffffffffffffda RBX: 00007fa43a615fa0 RCX: 00007fa43a3fd169
[  117.060617][ T8705] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000003
[  117.060628][ T8705] RBP: 00007fa438a5f090 R08: 0000000000000520 R09: 0000000000000000
[  117.060639][ T8705] R10: 0000200000000c80 R11: 0000000000000246 R12: 0000000000000001
[  117.060651][ T8705] R13: 0000000000000000 R14: 00007fa43a615fa0 R15: 00007fff45cf2438
[  117.060744][ T8705]  </TASK>
[  117.367013][ T8712] FAULT_INJECTION: forcing a failure.
[  117.367013][ T8712] name failslab, interval 1, probability 0, space 0, times 0
[  117.379758][ T8712] CPU: 0 UID: 0 PID: 8712 Comm: syz.1.1867 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(voluntary) 
[  117.379846][ T8712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  117.379876][ T8712] Call Trace:
[  117.379885][ T8712]  <TASK>
[  117.379945][ T8712]  dump_stack_lvl+0xf6/0x150
[  117.379976][ T8712]  dump_stack+0x15/0x1a
[  117.379996][ T8712]  should_fail_ex+0x261/0x270
[  117.380019][ T8712]  should_failslab+0x8f/0xb0
[  117.380120][ T8712]  kmem_cache_alloc_noprof+0x59/0x340
[  117.380159][ T8712]  ? getname_flags+0x81/0x3b0
[  117.380198][ T8712]  getname_flags+0x81/0x3b0
[  117.380235][ T8712]  __x64_sys_unlinkat+0x75/0xb0
[  117.380281][ T8712]  x64_sys_call+0x237a/0x2e10
[  117.380308][ T8712]  do_syscall_64+0xc9/0x1c0
[  117.380338][ T8712]  ? clear_bhb_loop+0x25/0x80
[  117.380363][ T8712]  ? clear_bhb_loop+0x25/0x80
[  117.380386][ T8712]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.380449][ T8712] RIP: 0033:0x7fa43a3fd169
[  117.380469][ T8712] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  117.380491][ T8712] RSP: 002b:00007fa438a5f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000107
[  117.380512][ T8712] RAX: ffffffffffffffda RBX: 00007fa43a615fa0 RCX: 00007fa43a3fd169
[  117.380523][ T8712] RDX: 0000000000000200 RSI: 00002000000003c0 RDI: 0000000000000003
[  117.380534][ T8712] RBP: 00007fa438a5f090 R08: 0000000000000000 R09: 0000000000000000
[  117.380546][ T8712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  117.380559][ T8712] R13: 0000000000000000 R14: 00007fa43a615fa0 R15: 00007fff45cf2438
[  117.380607][ T8712]  </TASK>
[  117.393855][ T8714] loop5: detected capacity change from 0 to 2048
[  117.421803][ T8709] 
: renamed from bond0
[  117.531141][ T8720] xt_hashlimit: max too large, truncated to 1048576
[  117.604956][ T8724] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  117.606441][ T8720] Cannot find set identified by id 0 to match
[  117.624185][ T8714] Alternate GPT is invalid, using primary GPT.
[  117.630705][ T8714]  loop5: p1 p2 p3
[  117.648244][ T8727] netlink: 68 bytes leftover after parsing attributes in process `syz.4.1873'.
[  117.650955][ T3006] Alternate GPT is invalid, using primary GPT.
[  117.657376][ T8727] netlink: 68 bytes leftover after parsing attributes in process `syz.4.1873'.
[  117.663748][ T3006]  loop5: p1 p2 p3
[  117.678203][ T8729] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=8729 comm=syz.2.1870
[  117.752904][ T8734] FAULT_INJECTION: forcing a failure.
[  117.752904][ T8734] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  117.766183][ T8734] CPU: 1 UID: 0 PID: 8734 Comm: syz.4.1875 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(voluntary) 
[  117.766212][ T8734] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  117.766226][ T8734] Call Trace:
[  117.766234][ T8734]  <TASK>
[  117.766279][ T8734]  dump_stack_lvl+0xf6/0x150
[  117.766308][ T8734]  dump_stack+0x15/0x1a
[  117.766328][ T8734]  should_fail_ex+0x261/0x270
[  117.766353][ T8734]  should_fail+0xb/0x10
[  117.766371][ T8734]  should_fail_usercopy+0x1a/0x20
[  117.766392][ T8734]  _copy_from_user+0x1c/0xa0
[  117.766478][ T8734]  move_addr_to_kernel+0x8c/0x130
[  117.766509][ T8734]  copy_msghdr_from_user+0x280/0x2b0
[  117.766617][ T8734]  __sys_sendmmsg+0x1eb/0x4b0
[  117.766666][ T8734]  __x64_sys_sendmmsg+0x57/0x70
[  117.766786][ T8734]  x64_sys_call+0x2b53/0x2e10
[  117.766838][ T8734]  do_syscall_64+0xc9/0x1c0
[  117.766864][ T8734]  ? clear_bhb_loop+0x25/0x80
[  117.766903][ T8734]  ? clear_bhb_loop+0x25/0x80
[  117.766923][ T8734]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.766943][ T8734] RIP: 0033:0x7f94fc55d169
[  117.766984][ T8734] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  117.767018][ T8734] RSP: 002b:00007f94fabc7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  117.767065][ T8734] RAX: ffffffffffffffda RBX: 00007f94fc775fa0 RCX: 00007f94fc55d169
[  117.767108][ T8734] RDX: 0000000000000001 RSI: 00002000000017c0 RDI: 0000000000000005
[  117.767122][ T8734] RBP: 00007f94fabc7090 R08: 0000000000000000 R09: 0000000000000000
[  117.767136][ T8734] R10: 0000000000000080 R11: 0000000000000246 R12: 0000000000000001
[  117.767150][ T8734] R13: 0000000000000000 R14: 00007f94fc775fa0 R15: 00007ffc76dd8678
[  117.767173][ T8734]  </TASK>
[  117.945374][   T29] kauditd_printk_skb: 517 callbacks suppressed
[  117.945392][   T29] audit: type=1400 audit(2000000019.880:21038): avc:  denied  { write } for  pid=8730 comm="syz.1.1874" laddr=127.0.0.1 lport=58484 faddr=127.0.0.1 fport=20000 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  118.040110][ T8736] FAULT_INJECTION: forcing a failure.
[  118.040110][ T8736] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  118.053510][ T8736] CPU: 0 UID: 0 PID: 8736 Comm: syz.4.1877 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(voluntary) 
[  118.053540][ T8736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  118.053553][ T8736] Call Trace:
[  118.053562][ T8736]  <TASK>
[  118.053571][ T8736]  dump_stack_lvl+0xf6/0x150
[  118.053598][ T8736]  dump_stack+0x15/0x1a
[  118.053627][ T8736]  should_fail_ex+0x261/0x270
[  118.053691][ T8736]  should_fail_alloc_page+0xfd/0x110
[  118.053720][ T8736]  __alloc_frozen_pages_noprof+0x11e/0x340
[  118.053747][ T8736]  alloc_pages_mpol+0xb6/0x260
[  118.053767][ T8736]  vma_alloc_folio_noprof+0x1a2/0x310
[  118.053789][ T8736]  handle_mm_fault+0xdec/0x2b30
[  118.053827][ T8736]  ? __rcu_read_lock+0x36/0x50
[  118.053861][ T8736]  ? __pte_offset_map_lock+0x1d3/0x290
[  118.053911][ T8736]  __get_user_pages+0xf64/0x2350
[  118.053956][ T8736]  __gup_longterm_locked+0x2ec/0xfb0
[  118.053983][ T8736]  pin_user_pages+0x8b/0xc0
[  118.054121][ T8736]  xdp_umem_create+0x70b/0x9a0
[  118.054179][ T8736]  xsk_setsockopt+0x4fe/0x550
[  118.054214][ T8736]  ? __pfx_xsk_setsockopt+0x10/0x10
[  118.054249][ T8736]  __sys_setsockopt+0x187/0x200
[  118.054366][ T8736]  __x64_sys_setsockopt+0x66/0x80
[  118.054432][ T8736]  x64_sys_call+0x2a09/0x2e10
[  118.054454][ T8736]  do_syscall_64+0xc9/0x1c0
[  118.054485][ T8736]  ? clear_bhb_loop+0x25/0x80
[  118.054567][ T8736]  ? clear_bhb_loop+0x25/0x80
[  118.054593][ T8736]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.054670][ T8736] RIP: 0033:0x7f94fc55d169
[  118.054690][ T8736] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  118.054712][ T8736] RSP: 002b:00007f94fabc7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  118.054735][ T8736] RAX: ffffffffffffffda RBX: 00007f94fc775fa0 RCX: 00007f94fc55d169
[  118.054749][ T8736] RDX: 0000000000000004 RSI: 000000000000011b RDI: 0000000000000004
[  118.054764][ T8736] RBP: 00007f94fabc7090 R08: 0000000000000020 R09: 0000000000000000
[  118.054778][ T8736] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000001
[  118.054792][ T8736] R13: 0000000000000000 R14: 00007f94fc775fa0 R15: 00007ffc76dd8678
[  118.054849][ T8736]  </TASK>
[  118.299782][ T8738] ip6gretap1: entered allmulticast mode
[  118.319987][   T29] audit: type=1400 audit(2000000020.410:21039): avc:  denied  { relabelfrom } for  pid=8740 comm="syz.1.1878" name="" dev="pipefs" ino=21084 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[  118.379935][   T29] audit: type=1400 audit(2000000020.470:21040): avc:  denied  { ioctl } for  pid=8742 comm="syz.4.1879" path="socket:[20394]" dev="sockfs" ino=20394 ioctlcmd=0x89e1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  118.452294][ T8747] loop5: detected capacity change from 0 to 512
[  118.466350][ T8749] xt_hashlimit: max too large, truncated to 1048576
[  118.473975][ T8749] Cannot find set identified by id 0 to match
[  118.490623][ T8747] EXT4-fs mount: 14 callbacks suppressed
[  118.490644][ T8747] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  118.546763][ T8758] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=8758 comm=syz.0.1883
[  118.564571][ T8757] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=50 sclass=netlink_tcpdiag_socket pid=8757 comm=syz.4.1885
[  118.620847][ T8747] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  118.661453][ T8763] loop1: detected capacity change from 0 to 512
[  118.670023][ T8763] EXT4-fs (loop1): orphan cleanup on readonly fs
[  118.677522][ T8763] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1887: bg 0: block 248: padding at end of block bitmap is not set
[  118.700991][ T8768] FAULT_INJECTION: forcing a failure.
[  118.700991][ T8768] name failslab, interval 1, probability 0, space 0, times 0
[  118.713923][ T8768] CPU: 1 UID: 0 PID: 8768 Comm: syz.2.1888 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(voluntary) 
[  118.713956][ T8768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  118.714041][ T8768] Call Trace:
[  118.714047][ T8768]  <TASK>
[  118.714054][ T8768]  dump_stack_lvl+0xf6/0x150
[  118.714084][ T8768]  dump_stack+0x15/0x1a
[  118.714105][ T8768]  should_fail_ex+0x261/0x270
[  118.714130][ T8768]  should_failslab+0x8f/0xb0
[  118.714156][ T8768]  kmem_cache_alloc_node_noprof+0x5c/0x340
[  118.714209][ T8768]  ? __alloc_skb+0x10d/0x320
[  118.714247][ T8768]  __alloc_skb+0x10d/0x320
[  118.714278][ T8768]  netlink_alloc_large_skb+0xad/0xe0
[  118.714345][ T8768]  netlink_sendmsg+0x3da/0x720
[  118.714379][ T8768]  ? __pfx_netlink_sendmsg+0x10/0x10
[  118.714475][ T8768]  __sock_sendmsg+0x140/0x180
[  118.714506][ T8768]  ____sys_sendmsg+0x350/0x4e0
[  118.714532][ T8768]  __sys_sendmsg+0x1a0/0x240
[  118.714571][ T8768]  __x64_sys_sendmsg+0x46/0x50
[  118.714594][ T8768]  x64_sys_call+0x26f3/0x2e10
[  118.714637][ T8768]  do_syscall_64+0xc9/0x1c0
[  118.714661][ T8768]  ? clear_bhb_loop+0x25/0x80
[  118.714686][ T8768]  ? clear_bhb_loop+0x25/0x80
[  118.714711][ T8768]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.714735][ T8768] RIP: 0033:0x7fe35589d169
[  118.714824][ T8768] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  118.714847][ T8768] RSP: 002b:00007fe353f07038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  118.714930][ T8768] RAX: ffffffffffffffda RBX: 00007fe355ab5fa0 RCX: 00007fe35589d169
[  118.714944][ T8768] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[  118.714958][ T8768] RBP: 00007fe353f07090 R08: 0000000000000000 R09: 0000000000000000
[  118.714973][ T8768] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  118.714987][ T8768] R13: 0000000000000000 R14: 00007fe355ab5fa0 R15: 00007ffefe671838
[  118.715010][ T8768]  </TASK>
[  118.728206][ T8763] Quota error (device loop1): write_blk: dquota write failed
[  118.799527][ T8770] loop2: detected capacity change from 0 to 2048
[  118.836865][   T29] audit: type=1400 audit(2000000020.920:21041): avc:  denied  { setcheckreqprot } for  pid=8766 comm="syz.4.1889" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  118.839031][ T8763] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  118.959801][ T8763] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm syz.1.1887: Failed to acquire dquot type 1
[  118.971942][ T8763] EXT4-fs (loop1): 1 truncate cleaned up
[  118.980838][ T8763] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  119.009645][   T29] audit: type=1400 audit(2000000021.100:21042): avc:  denied  { execute } for  pid=8762 comm="syz.1.1887" name="file2" dev="loop1" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  119.020132][ T3847] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.054605][   T29] audit: type=1326 audit(2000000021.140:21043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8774 comm="syz.2.1891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe35589d169 code=0x7ffc0000
[  119.082043][ T8777] FAULT_INJECTION: forcing a failure.
[  119.082043][ T8777] name failslab, interval 1, probability 0, space 0, times 0
[  119.095551][ T8777] CPU: 1 UID: 0 PID: 8777 Comm: syz.5.1892 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(voluntary) 
[  119.095641][ T8777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  119.095657][ T8777] Call Trace:
[  119.095665][ T8777]  <TASK>
[  119.095674][ T8777]  dump_stack_lvl+0xf6/0x150
[  119.095760][ T8777]  dump_stack+0x15/0x1a
[  119.095779][ T8777]  should_fail_ex+0x261/0x270
[  119.095799][ T8777]  should_failslab+0x8f/0xb0
[  119.095830][ T8777]  __kmalloc_cache_noprof+0x55/0x320
[  119.095913][ T8777]  ? proc_do_submiturb+0x845/0x1e40
[  119.095946][ T8777]  proc_do_submiturb+0x845/0x1e40
[  119.095979][ T8777]  ? avc_has_extended_perms+0x6fd/0x8f0
[  119.096033][ T8777]  ? _parse_integer+0x27/0x30
[  119.096062][ T8777]  ? should_fail_ex+0xd7/0x270
[  119.096087][ T8777]  usbdev_ioctl+0x20fe/0x3e70
[  119.096116][ T8777]  ? do_vfs_ioctl+0x977/0x1570
[  119.096138][ T8777]  ? selinux_file_ioctl+0x2f9/0x380
[  119.096182][ T8777]  ? __fget_files+0x186/0x1c0
[  119.096279][ T8777]  ? __pfx_usbdev_ioctl+0x10/0x10
[  119.096312][ T8777]  __se_sys_ioctl+0xc9/0x140
[  119.096336][ T8777]  __x64_sys_ioctl+0x43/0x50
[  119.096362][ T8777]  x64_sys_call+0x168d/0x2e10
[  119.096392][ T8777]  do_syscall_64+0xc9/0x1c0
[  119.096417][ T8777]  ? clear_bhb_loop+0x25/0x80
[  119.096483][ T8777]  ? clear_bhb_loop+0x25/0x80
[  119.096506][ T8777]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.096529][ T8777] RIP: 0033:0x7feadb07d169
[  119.096551][ T8777] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  119.096573][ T8777] RSP: 002b:00007fead96df038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  119.096596][ T8777] RAX: ffffffffffffffda RBX: 00007feadb295fa0 RCX: 00007feadb07d169
[  119.096666][ T8777] RDX: 0000200000000000 RSI: 000000008038550a RDI: 0000000000000004
[  119.096679][ T8777] RBP: 00007fead96df090 R08: 0000000000000000 R09: 0000000000000000
[  119.096693][ T8777] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  119.096761][ T8777] R13: 0000000000000000 R14: 00007feadb295fa0 R15: 00007ffe1cf89688
[  119.096781][ T8777]  </TASK>
[  119.316011][   T29] audit: type=1326 audit(2000000021.140:21044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8774 comm="syz.2.1891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe35589d169 code=0x7ffc0000
[  119.339635][   T29] audit: type=1326 audit(2000000021.140:21045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8774 comm="syz.2.1891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe35589d169 code=0x7ffc0000
[  119.368997][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.524040][ T8795] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1900'.
[  119.582048][ T8803] loop4: detected capacity change from 0 to 2048
[  119.704795][ T8809] loop2: detected capacity change from 0 to 512
[  119.711509][ T8809] EXT4-fs: Ignoring removed nobh option
[  119.718285][ T8803] Alternate GPT is invalid, using primary GPT.
[  119.724723][ T8803]  loop4: p1 p2 p3
[  119.743577][ T8809] EXT4-fs error (device loop2): ext4_do_update_inode:5194: inode #16: comm syz.2.1906: corrupted inode contents
[  120.713199][ T8809] EXT4-fs (loop2): Remounting filesystem read-only
[  120.727591][ T8809] EXT4-fs (loop2): 1 truncate cleaned up
[  120.734256][ T8809] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  120.747180][ T7335] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  120.758080][ T7335] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  121.064385][ T8809] ext4 filesystem being mounted at /408/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  121.076070][ T8809] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.229399][ T7335] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started
[  121.243024][ T8820] FAULT_INJECTION: forcing a failure.
[  121.243024][ T8820] name failslab, interval 1, probability 0, space 0, times 0
[  121.255844][ T8820] CPU: 0 UID: 0 PID: 8820 Comm: syz.0.1907 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(voluntary) 
[  121.255929][ T8820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  121.255943][ T8820] Call Trace:
[  121.255952][ T8820]  <TASK>
[  121.255961][ T8820]  dump_stack_lvl+0xf6/0x150
[  121.255987][ T8820]  dump_stack+0x15/0x1a
[  121.256008][ T8820]  should_fail_ex+0x261/0x270
[  121.256071][ T8820]  should_failslab+0x8f/0xb0
[  121.256097][ T8820]  kmem_cache_alloc_node_noprof+0x5c/0x340
[  121.256130][ T8820]  ? __alloc_skb+0x10d/0x320
[  121.256163][ T8820]  __alloc_skb+0x10d/0x320
[  121.256245][ T8820]  netlink_alloc_large_skb+0xad/0xe0
[  121.256273][ T8820]  netlink_sendmsg+0x3da/0x720
[  121.256313][ T8820]  ? __pfx_netlink_sendmsg+0x10/0x10
[  121.256407][ T8820]  __sock_sendmsg+0x140/0x180
[  121.256438][ T8820]  ____sys_sendmsg+0x350/0x4e0
[  121.256467][ T8820]  __sys_sendmsg+0x1a0/0x240
[  121.256574][ T8820]  __x64_sys_sendmsg+0x46/0x50
[  121.256593][ T8820]  x64_sys_call+0x26f3/0x2e10
[  121.256620][ T8820]  do_syscall_64+0xc9/0x1c0
[  121.256642][ T8820]  ? clear_bhb_loop+0x25/0x80
[  121.256741][ T8820]  ? clear_bhb_loop+0x25/0x80
[  121.256767][ T8820]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.256795][ T8820] RIP: 0033:0x7fabef64d169
[  121.256815][ T8820] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.256853][ T8820] RSP: 002b:00007fabedcaf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  121.256871][ T8820] RAX: ffffffffffffffda RBX: 00007fabef865fa0 RCX: 00007fabef64d169
[  121.256883][ T8820] RDX: 0000000000040010 RSI: 0000200000000e80 RDI: 0000000000000003
[  121.256894][ T8820] RBP: 00007fabedcaf090 R08: 0000000000000000 R09: 0000000000000000
[  121.256905][ T8820] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  121.256919][ T8820] R13: 0000000000000000 R14: 00007fabef865fa0 R15: 00007fff1f3b3148
[  121.256943][ T8820]  </TASK>
[  121.497206][ T8822] FAULT_INJECTION: forcing a failure.
[  121.497206][ T8822] name failslab, interval 1, probability 0, space 0, times 0
[  121.510428][ T8822] CPU: 1 UID: 0 PID: 8822 Comm: syz.0.1908 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(voluntary) 
[  121.510464][ T8822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  121.510480][ T8822] Call Trace:
[  121.510489][ T8822]  <TASK>
[  121.510499][ T8822]  dump_stack_lvl+0xf6/0x150
[  121.510603][ T8822]  dump_stack+0x15/0x1a
[  121.510623][ T8822]  should_fail_ex+0x261/0x270
[  121.510648][ T8822]  should_failslab+0x8f/0xb0
[  121.510695][ T8822]  __kmalloc_node_noprof+0xaf/0x420
[  121.510734][ T8822]  ? __vmalloc_node_range_noprof+0x3e1/0xe80
[  121.510760][ T8822]  __vmalloc_node_range_noprof+0x3e1/0xe80
[  121.510790][ T8822]  ? selinux_capable+0x1f9/0x260
[  121.510840][ T8822]  ? bpf_prog_alloc_no_stats+0x49/0x390
[  121.510863][ T8822]  __vmalloc_noprof+0x5e/0x70
[  121.510888][ T8822]  ? bpf_prog_alloc_no_stats+0x49/0x390
[  121.511017][ T8822]  bpf_prog_alloc_no_stats+0x49/0x390
[  121.511036][ T8822]  ? bpf_prog_alloc+0x28/0x150
[  121.511062][ T8822]  bpf_prog_alloc+0x3a/0x150
[  121.511079][ T8822]  bpf_prog_load+0x532/0x10e0
[  121.511112][ T8822]  __sys_bpf+0x533/0x800
[  121.511137][ T8822]  __x64_sys_bpf+0x43/0x50
[  121.511231][ T8822]  x64_sys_call+0x23da/0x2e10
[  121.511253][ T8822]  do_syscall_64+0xc9/0x1c0
[  121.511277][ T8822]  ? clear_bhb_loop+0x25/0x80
[  121.511298][ T8822]  ? clear_bhb_loop+0x25/0x80
[  121.511319][ T8822]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.511365][ T8822] RIP: 0033:0x7fabef64d169
[  121.511381][ T8822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.511462][ T8822] RSP: 002b:00007fabedcaf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  121.511481][ T8822] RAX: ffffffffffffffda RBX: 00007fabef865fa0 RCX: 00007fabef64d169
[  121.511493][ T8822] RDX: 0000000000000094 RSI: 00002000000013c0 RDI: 0000000000000005
[  121.511505][ T8822] RBP: 00007fabedcaf090 R08: 0000000000000000 R09: 0000000000000000
[  121.511516][ T8822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  121.511527][ T8822] R13: 0000000000000000 R14: 00007fabef865fa0 R15: 00007fff1f3b3148
[  121.511545][ T8822]  </TASK>
[  121.511592][ T8822] syz.0.1908: vmalloc error: size 4096, failed to allocated page array size 8, mode:0x500dc2(GFP_HIGHUSER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null)
[  121.640011][ T8831] loop5: detected capacity change from 0 to 1024
[  121.641346][ T8822] ,cpuset=/
[  121.647917][ T8831] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  121.651924][ T8822] ,mems_allowed=0
[  121.657391][ T8832] netlink: 830 bytes leftover after parsing attributes in process `syz.1.1910'.
[  121.676204][ T8822] CPU: 1 UID: 0 PID: 8822 Comm: syz.0.1908 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(voluntary) 
[  121.676247][ T8822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  121.676264][ T8822] Call Trace:
[  121.676274][ T8822]  <TASK>
[  121.676286][ T8822]  dump_stack_lvl+0xf6/0x150
[  121.676319][ T8822]  dump_stack+0x15/0x1a
[  121.676341][ T8822]  warn_alloc+0x145/0x1b0
[  121.676445][ T8822]  __vmalloc_node_range_noprof+0x478/0xe80
[  121.676486][ T8822]  ? selinux_capable+0x1f9/0x260
[  121.676520][ T8822]  ? bpf_prog_alloc_no_stats+0x49/0x390
[  121.676608][ T8822]  __vmalloc_noprof+0x5e/0x70
[  121.676695][ T8822]  ? bpf_prog_alloc_no_stats+0x49/0x390
[  121.676720][ T8822]  bpf_prog_alloc_no_stats+0x49/0x390
[  121.676745][ T8822]  ? bpf_prog_alloc+0x28/0x150
[  121.676841][ T8822]  bpf_prog_alloc+0x3a/0x150
[  121.676864][ T8822]  bpf_prog_load+0x532/0x10e0
[  121.676919][ T8822]  __sys_bpf+0x533/0x800
[  121.677014][ T8822]  __x64_sys_bpf+0x43/0x50
[  121.677067][ T8822]  x64_sys_call+0x23da/0x2e10
[  121.677097][ T8822]  do_syscall_64+0xc9/0x1c0
[  121.677124][ T8822]  ? clear_bhb_loop+0x25/0x80
[  121.677151][ T8822]  ? clear_bhb_loop+0x25/0x80
[  121.677179][ T8822]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.677206][ T8822] RIP: 0033:0x7fabef64d169
[  121.677298][ T8822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.677322][ T8822] RSP: 002b:00007fabedcaf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  121.677347][ T8822] RAX: ffffffffffffffda RBX: 00007fabef865fa0 RCX: 00007fabef64d169
[  121.677363][ T8822] RDX: 0000000000000094 RSI: 00002000000013c0 RDI: 0000000000000005
[  121.677378][ T8822] RBP: 00007fabedcaf090 R08: 0000000000000000 R09: 0000000000000000
[  121.677393][ T8822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  121.677408][ T8822] R13: 0000000000000000 R14: 00007fabef865fa0 R15: 00007fff1f3b3148
[  121.677560][ T8822]  </TASK>
[  121.677597][ T8822] Mem-Info:
[  121.881121][ T8831] EXT4-fs error (device loop5): ext4_map_blocks:706: inode #3: block 1: comm syz.5.1912: lblock 1 mapped to illegal pblock 1 (length 1)
[  121.883839][ T8822] active_anon:13846 inactive_anon:5 isolated_anon:0
[  121.883839][ T8822]  active_file:6690 inactive_file:12495 isolated_file:0
[  121.883839][ T8822]  unevictable:0 dirty:755 writeback:0
[  121.883839][ T8822]  slab_reclaimable:3105 slab_unreclaimable:19618
[  121.883839][ T8822]  mapped:29225 shmem:4905 pagetables:3791
[  121.883839][ T8822]  sec_pagetables:0 bounce:0
[  121.883839][ T8822]  kernel_misc_reclaimable:0
[  121.883839][ T8822]  free:1877712 free_pcp:7358 free_cma:0
[  121.889509][ T8831] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.1912: Failed to acquire dquot type 0
[  121.893188][ T8822] Node 0 active_anon:55384kB inactive_anon:20kB active_file:26760kB inactive_file:49980kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:116900kB dirty:3020kB writeback:0kB shmem:19620kB writeback_tmp:0kB kernel_stack:4832kB pagetables:15164kB sec_pagetables:0kB all_unreclaimable? no
[  121.900440][ T8831] EXT4-fs error (device loop5): ext4_free_blocks:6589: comm syz.5.1912: Freeing blocks not in datazone - block = 0, count = 4096
[  121.903507][ T8822] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  121.948744][ T8831] EXT4-fs error (device loop5): ext4_read_inode_bitmap:139: comm syz.5.1912: Invalid inode bitmap blk 0 in block_group 0
[  121.956310][ T8822] lowmem_reserve[]: 0 2884 7862 7862
[  121.956350][ T8822] Node 0 
[  121.966825][   T31] EXT4-fs error (device loop5): ext4_map_blocks:672: inode #3: block 1: comm kworker/u8:1: lblock 1 mapped to illegal pblock 1 (length 1)
[  121.972398][ T8822] DMA32 free:2947324kB boost:0kB min:4132kB low:7064kB high:9996kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2953408kB mlocked:0kB bounce:0kB free_pcp:6084kB local_pcp:3532kB free_cma:0kB
[  121.977299][   T31] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:1: Failed to release dquot type 0
[  121.978539][ T8822] lowmem_reserve[]:
[  122.057262][ T8831] EXT4-fs error (device loop5) in ext4_free_inode:361: Corrupt filesystem
[  122.077279][ T8822]  0 0 4978 4978
[  122.077318][ T8822] Node 0 
[  122.096525][ T8831] EXT4-fs (loop5): 1 orphan inode deleted
[  122.117609][ T8822] Normal free:4548164kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:38912kB inactive_anon:20kB active_file:26760kB inactive_file:49980kB unevictable:0kB writepending:2992kB present:5242880kB managed:5098248kB mlocked:0kB bounce:0kB free_pcp:39784kB local_pcp:8272kB free_cma:0kB
[  122.131180][ T8831] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  122.135844][ T8822] lowmem_reserve[]: 0 0 0 0
[  122.264482][ T8822] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  122.277255][ T8822] Node 0 DMA32: 3*4kB (M) 2*8kB (M) 2*16kB (M) 4*32kB (M) 3*64kB (M) 3*128kB (M) 2*256kB (M) 4*512kB (M) 3*1024kB (M) 4*2048kB (M) 716*4096kB (M) = 2947324kB
[  122.293694][ T8822] Node 0 Normal: 603*4kB (UM) 618*8kB (UME) 214*16kB (UME) 54*32kB (UM) 113*64kB (UME) 63*128kB (UME) 42*256kB (UME) 21*512kB (UME) 9*1024kB (UM) 8*2048kB (UME) 1092*4096kB (UM) = 4547740kB
[  122.312877][ T8822] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  122.322245][ T8822] 20011 total pagecache pages
[  122.327037][ T8822] 10 pages in swap cache
[  122.331290][ T8822] Free swap  = 124904kB
[  122.335497][ T8822] Total swap = 124996kB
[  122.339709][ T8822] 2097051 pages RAM
[  122.343746][ T8822] 0 pages HighMem/MovableOnly
[  122.348546][ T8822] 80297 pages reserved
[  122.353151][ T3380] ==================================================================
[  122.361271][ T3380] BUG: KCSAN: data-race in __filemap_remove_folio / nr_blockdev_pages
[  122.369465][ T3380] 
[  122.371803][ T3380] read-write to 0xffff8881006311f0 of 8 bytes by task 8809 on cpu 0:
[  122.379896][ T3380]  __filemap_remove_folio+0x1c7/0x2c0
[  122.385306][ T3380]  __remove_mapping+0x33f/0x470
[  122.390196][ T3380]  remove_mapping+0x22/0x90
[  122.394774][ T3380]  mapping_try_invalidate+0x267/0x3f0
[  122.400149][ T3380]  invalidate_mapping_pages+0x27/0x40
[  122.405528][ T3380]  invalidate_bdev+0x58/0x70
[  122.410127][ T3380]  ext4_put_super+0x65b/0x910
[  122.414806][ T3380]  generic_shutdown_super+0xe5/0x220
[  122.420108][ T3380]  kill_block_super+0x2a/0x70
[  122.424795][ T3380]  ext4_kill_sb+0x44/0x80
[  122.429226][ T3380]  deactivate_locked_super+0x7d/0x1c0
[  122.434714][ T3380]  deactivate_super+0x9f/0xb0
[  122.439394][ T3380]  cleanup_mnt+0x26e/0x2e0
[  122.443914][ T3380]  __cleanup_mnt+0x19/0x20
[  122.448435][ T3380]  task_work_run+0x13c/0x1b0
[  122.453037][ T3380]  syscall_exit_to_user_mode+0xa8/0x120
[  122.458697][ T3380]  do_syscall_64+0xd6/0x1c0
[  122.463212][ T3380]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.469125][ T3380] 
[  122.471447][ T3380] read to 0xffff8881006311f0 of 8 bytes by task 3380 on cpu 1:
[  122.478992][ T3380]  nr_blockdev_pages+0x7c/0xd0
[  122.483767][ T3380]  si_meminfo+0x87/0xd0
[  122.487943][ T3380]  update_defense_level+0x4b/0x5c0
[  122.493074][ T3380]  defense_work_handler+0x1f/0x80
[  122.498124][ T3380]  process_scheduled_works+0x4de/0xa20
[  122.503605][ T3380]  worker_thread+0x52c/0x710
[  122.508197][ T3380]  kthread+0x4b7/0x540
[  122.512272][ T3380]  ret_from_fork+0x4b/0x60
[  122.516700][ T3380]  ret_from_fork_asm+0x1a/0x30
[  122.521470][ T3380] 
[  122.523792][ T3380] value changed: 0x000000000000000b -> 0x0000000000000005
[  122.530919][ T3380] 
[  122.533267][ T3380] Reported by Kernel Concurrency Sanitizer on:
[  122.539501][ T3380] CPU: 1 UID: 0 PID: 3380 Comm: kworker/1:3 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(voluntary) 
[  122.551744][ T3380] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  122.562595][ T3380] Workqueue: events_long defense_work_handler
[  122.568712][ T3380] ==================================================================
[  122.601248][ T8831] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1912'.
[  122.615927][ T8809] loop2: detected capacity change from 0 to 512
[  122.623325][ T8809] ext4: Unknown parameter 'obj_type'
[  122.633206][ T8831] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1912'.
[  122.711339][ T3847] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.