last executing test programs:

1m28.475772246s ago: executing program 2 (id=129):
capset(&(0x7f0000000380)={0x20080522}, &(0x7f0000000040)={0x200000, 0x40200003, 0x0, 0x6, 0x7})
setrlimit(0x40000000000008, &(0x7f0000000080)={0x0, 0x6})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000700000000000000000000850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$sock_linger(r1, 0x1, 0x3c, &(0x7f0000000600)={0x200000000000001, 0x3}, 0x8)
sendto$inet6(r1, 0x0, 0x0, 0xc880, &(0x7f0000000540)={0xa, 0x4e1c, 0x6, @empty, 0x8}, 0x1c)
sendmmsg$inet6(r1, &(0x7f00000008c0)=[{{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000180)='Z', 0x1}], 0x1}}], 0x1, 0x404c484) (fail_nth: 1)

1m28.252358868s ago: executing program 2 (id=131):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0xb, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0}, 0x104b0d, 0x6, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0xb7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$pppl2tp(0x18, 0x1, 0x1)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000b00)={0xa, 0xfdfe, 0x100007, @mcast1, 0xa}, 0x1c)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmsg$inet6(r1, &(0x7f0000002280)={&(0x7f0000001e40)={0xa, 0x4e24, 0x0, @mcast1}, 0x1c, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="b005000000000000290000003600000000b2"], 0x5b0}, 0x20008001)
sendmsg$inet6(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000600)="e5f1fddfe175759743a2d6055bef6ad67f4806ff6ac3", 0x16}], 0x1}, 0x20000044)

1m28.143344189s ago: executing program 2 (id=136):
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0, 0x0, 0x2}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = gettid()
sendmsg$unix(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000002c0)="a77e", 0x2}], 0x1, &(0x7f0000001040)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r3, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r2, @ANYRES32=r1, @ANYRES32=r1, @ANYRES32=r2, @ANYRES32=r1, @ANYRES32=r2, @ANYRES32=r1, @ANYRES32=r2, @ANYBLOB="1c000000000000000100000402000000", @ANYRES32, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r1, @ANYBLOB="0000000018"], 0xa0}, 0x4004881)
recvmsg$unix(r1, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x2000)

1m28.073281289s ago: executing program 2 (id=137):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x1, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000080200000e"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0x8, &(0x7f00000005c0)=ANY=[@ANYRES32, @ANYRES32=r2, @ANYBLOB="0000000000000000b7030000ec000000850000001b000000b70000000000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff62, 0x0, r1, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000640)='netfs_read\x00', r3, 0x0, 0x7f2}, 0x18)
r5 = socket$kcm(0x10, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x2800c1e, &(0x7f00000001c0)={[{@usrquota}, {@nodelalloc}]}, 0xff, 0x25e, &(0x7f0000000e80)="$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")
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101842, 0x0)
ioctl$FS_IOC_SETFLAGS(r6, 0x40086602, &(0x7f00000005c0))
pwrite64(0xffffffffffffffff, &(0x7f00000000c0)='a', 0x1, 0x1)
setxattr$security_ima(&(0x7f0000000000)='./file1\x00', &(0x7f0000000080), 0x0, 0x0, 0x0)
ioctl$EXT4_IOC_MIGRATE(r6, 0x6609)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', 0xffffffffffffffff, 0x0, 0x9}, 0x18)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_RTHDR(r4, 0x29, 0x39, &(0x7f0000000780)=ANY=[@ANYRES64=r0], 0x8)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x400c84, &(0x7f0000000000)={[{@sysvgroups}]}, 0x1, 0x796, &(0x7f0000000800)="$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")
sendmsg$kcm(r5, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000001c0)="d8000000180081054e81f782db44b904021d005c06007c09e8fe55a10a0015400600142603600e1208000b0000000401a8001600a400014009000200036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360d070100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x0)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
r8 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x10, &(0x7f0000001100)=ANY=[@ANYBLOB="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", @ANYRES32=r8], &(0x7f0000000740)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000140)='kfree\x00', r9, 0x0, 0xffffffffffffffff}, 0x34)
setsockopt$EBT_SO_SET_ENTRIES(r7, 0x0, 0x80, &(0x7f0000001d80)=@broute={'broute\x00', 0x20, 0x2, 0x41c, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000180], 0x11, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="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"/1052]}, 0x494)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r1}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r10 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r10)
getpgrp(0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

1m27.84790016s ago: executing program 2 (id=140):
bpf$MAP_CREATE(0x0, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000dd638a49245d1f647f2681063351ad1cc8491a00d21999f633b286c78377a457b1c3a7e0c092a1e9c10e7df8f4871a33f58f5d0e3817da97edc554c41324e8ec875b7fa6e0db1d422527e3bf51f9baceeca7c8947d7b118577f22aefd5f9937a6ae1137b5f9034702e4c79c866d8e0e971369a221b2ab02629aaa7a37898c84b0afffc208d636933aca0a1baaee060cd19d96afd6a6d14e6f08a17492cef9eb314ca2b", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_RECVMSG={0xa, 0x34, 0x6, 0xffffffffffffffff, 0x0, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000000240)}, 0x0, 0x10040})
ioctl$KDGKBMETA(0xffffffffffffffff, 0x4b62, &(0x7f0000000040))
r0 = syz_io_uring_setup(0x174d, &(0x7f0000000980)={0x0, 0xf2e9, 0x4, 0xffe, 0x397}, &(0x7f0000000300)=<r1=>0x0, &(0x7f00000005c0))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/201, 0xc9}], 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r3 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
write$UHID_CREATE2(r3, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r4 = syz_open_dev$hidraw(&(0x7f0000000000), 0x0, 0x81)
ioctl$HIDIOCSFEATURE(r4, 0xc0404806, &(0x7f0000000440))
close_range(r2, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000000c0)={0x1, &(0x7f0000000200)=[{0x30, 0x4, 0x0, 0x2}]}, 0xffffffffffffff0e)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xfe, 0x0, 0x7ffc9ffe}]})
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x3, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000640)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kmem_cache_free\x00', r5, 0x0, 0x8000}, 0x18)
clock_gettime(0x0, &(0x7f0000000380))
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[], 0x20}, 0x1, 0x0, 0x0, 0x800}, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1900000003000000ffffffff03000000c0800000", @ANYRES32, @ANYBLOB="008000"/20, @ANYRES32, @ANYRES32, @ANYBLOB="050103000000008006efffffffffffff8f84c0a8", @ANYRES32, @ANYRES32=r6], 0x50)

1m27.079723005s ago: executing program 2 (id=156):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmsg$inet6(r0, &(0x7f0000002280)={&(0x7f0000001e40)={0xa, 0x4e24, 0x0, @mcast1}, 0x1c, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="b005000000000000290000003600000000b2"], 0x5b0}, 0x20008001)
sendmsg$inet6(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000600)="e5f1fddfe175759743a2d6055bef6ad67f4806ff6ac3", 0x16}], 0x1}, 0x20000044)

1m26.659631528s ago: executing program 32 (id=156):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmsg$inet6(r0, &(0x7f0000002280)={&(0x7f0000001e40)={0xa, 0x4e24, 0x0, @mcast1}, 0x1c, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="b005000000000000290000003600000000b2"], 0x5b0}, 0x20008001)
sendmsg$inet6(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000600)="e5f1fddfe175759743a2d6055bef6ad67f4806ff6ac3", 0x16}], 0x1}, 0x20000044)

4.681587431s ago: executing program 5 (id=1767):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b707000008000000850000006900000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x18)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
io_setup(0x8f0, &(0x7f0000002400))

4.575797532s ago: executing program 5 (id=1768):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYRES16=0x0], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r0}, 0x38)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000580)={0x400, <r1=>0x0}, 0x8)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000020850000006df3fb3e2b11000035e6e9e7abe3a954f85fa35d7c0e907dcb9e82ab46ddfef45f46f6c76485856f4c16f924497010b0d241ef135564845be66943d83f3c2165f14d1760dbc705af2387a328", @ANYRES32=r0], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x41, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x80000000}, 0x94)
r3 = signalfd(r2, &(0x7f0000000140)={[0x8]}, 0x8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='gpio_direction\x00', r3, 0x0, 0x6}, 0x18)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r4, 0x107, 0xd, &(0x7f0000000000)=@req3={0x410000, 0x100000001, 0x210000, 0x1, 0xa, 0x0, 0xffffffff}, 0x1c)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$VT_RESIZEX(r5, 0x560a, &(0x7f0000000000)={0x5, 0xc, 0x8009, 0x0, 0x9})
geteuid()
r6 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000000040)={0x0, <r7=>0x0}, &(0x7f00000000c0)=0xc)
sendmsg$nl_generic(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000380)=ANY=[@ANYBLOB="280000001800010000000000000000000200000008000000e00000020c00088008000c00", @ANYRES32=r7, @ANYBLOB="6f698d42d0e9351e852ab538ff78f4753920de6a14ab4372cdbbcf9243e1886b72242fb26d0741d8b7cf918ffa173973d199547b0ffa10f1d6eff2223c8403d00b804e93b44b04abada89ccad62d66eed8926d0bea84c749be2c980bcf3958b9"], 0x28}}, 0x0)
getresgid(&(0x7f0000000240), &(0x7f0000000280), &(0x7f00000002c0))
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000000), 0x4)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5ba}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kmem_cache_free\x00', r8, 0x0, 0x3}, 0x18)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, &(0x7f0000000100)=0x1800, 0x4)
r9 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r9, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02030609100000000000004c9e0000000200130002000000da16c167d803f1f805000600200000000a00060000000000ff0000000000000000001ffeff0001000003f1dc7f7c6e7c02000100000000000040000280ffffff05000500000000000a"], 0x80}}, 0x0)
r10 = socket$nl_xfrm(0x10, 0x3, 0x6)
timer_settime(0x0, 0x0, 0x0, 0x0)
sendmsg$nl_xfrm(r10, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="3801000010000100feffffff00010000fc00000400000000000000000000000164010101000000000012000000000000000107144e230005000000003a00005f5c13db507e0001a39a6377df8e1c00", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ff020000000000000000000000000001000004d46c000000ac14143f000000000000000000000000000000000000000092010000000000000600000000000000ffff0000000000001c250800000000000200000000000000f8ffffffffffffff0000000000000000ffffffffffffffff00000000000000001f00000000000000feffffffffffffff02000000fcffffff000000002abd700004350000020001002000000000000000480003006465666c61746500"/240], 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)

4.532189993s ago: executing program 5 (id=1769):
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r0, 0x0, 0x2}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = gettid()
sendmsg$unix(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000002c0)="a77e", 0x2}], 0x1, &(0x7f0000001040)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r3, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r2, @ANYRES32=r1, @ANYRES32=r1, @ANYRES32=r2, @ANYRES32=r1, @ANYRES32=r2, @ANYRES32=r1, @ANYRES32=r2, @ANYBLOB="1c000000000000000100000402000000", @ANYRES32, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="000000001400000000000000010000000100", @ANYRES32=r1, @ANYBLOB="0000000018"], 0xa0}, 0x4004881)
recvmsg$unix(r1, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x2000)

3.623984558s ago: executing program 5 (id=1784):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = gettid()
sendmsg$unix(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000002c0)="a77e", 0x2}], 0x1, &(0x7f0000001040)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r2, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="1c000000000000000100000402000000", @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r0, @ANYBLOB="0000000018"], 0xa0}, 0x4004881)
recvmsg$unix(r0, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x2000)

2.742246253s ago: executing program 5 (id=1794):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x5, 0x7fffffff}]})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[], 0x50)
socket$packet(0x11, 0x3, 0x300)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYRES16=r1, @ANYRESHEX=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='kfree\x00', r3}, 0x18)
write$selinux_validatetrans(r0, &(0x7f0000001cc0)=ANY=[@ANYBLOB='system_h:object_r:semanage_t system_u:object_r:fixed_disk_device_t:s0 00000000000w'], 0x79)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'bridge0\x00'})
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="440000001000ffff27bd7000fbdbdf2500000000", @ANYBLOB="082a6dba7d9870aec42d87d9272fe8e229333c518c212daa625bf99a7a363ee1edf9ca8da53d4189f67f81db81a4a9058972bef1639c3cac6cea8cfa685243e32f5a58c659aa6ff4192dbd56bf32339190e055fd288e65ea7b", @ANYRESOCT=r2, @ANYRES16=r0, @ANYBLOB='\b\x00\n'], 0x44}, 0x1, 0x0, 0x0, 0x308}, 0x4011002)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r6 = syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301)
ioctl$USBDEVFS_IOCTL(r6, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r6, 0x80045505, &(0x7f0000000040)=@usbdevfs_connect)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x3, 0x1d459d, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x183, 0x6}, 0x6025, 0x4005, 0xb, 0x0, 0x1, 0x1, 0xb, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r7}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r8 = mq_open(&(0x7f0000000080)='$@\x00', 0x40, 0xb4, 0x0)
fcntl$setlease(r8, 0x400, 0x0)
mq_open(&(0x7f0000000140)='$@\x00', 0x1, 0x0, 0x0)
ioctl$USBDEVFS_SETCONFIGURATION(r6, 0x80045505, &(0x7f0000000000)=0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)

1.932019428s ago: executing program 1 (id=1804):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = gettid()
sendmsg$unix(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000002c0)="a77e", 0x2}], 0x1, &(0x7f0000001040)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r2, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="1c000000000000000100000402000000", @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r0, @ANYBLOB="0000000018"], 0xa0}, 0x4004881)
recvmsg$unix(r0, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x2000)

1.754724689s ago: executing program 3 (id=1805):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000001580)='kmem_cache_free\x00', r0, 0x0, 0x3}, 0x18)
r1 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_opts(r1, 0x0, 0x4, 0x0, 0x28)
socket(0x2, 0x80805, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x18, 0xf, &(0x7f0000000d80)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70300000000000085"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000001c0), 0x1, 0x553, &(0x7f0000001080)="$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")
r3 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r3, 0x2007ffc)
sendfile(r3, r3, 0x0, 0x800000009)

1.715994969s ago: executing program 5 (id=1806):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
fcntl$setsig(r0, 0xa, 0x13)
fcntl$setlease(r0, 0x400, 0x0)
sendmsg$kcm(r0, &(0x7f0000000480)={&(0x7f0000000000)=@ethernet={0x306, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, 0x80, &(0x7f0000000440)=[{&(0x7f0000000380)="475c2dec8a1c576d5987298ed8bf2f35b066d8cb80752f8912d58cfa0130c7ebebf1bced73d0510d59d5f096b19b924c6b9b5eae80eeb3bf0e1238cf4a7fde48b3e5ee7bcbdce178522fdbabd45378084fedcd71b1904e968dc7c5b4f2965b029628b3a722540294cde90968b476c32a3b4f95c949a47a4884b16ed19ae9b052a52e718eb94bd4a9f23f36a5243f9fa152316b3c046d6b5a8ca3aeb3cbcd8d06b2626944", 0xa4}], 0x1, &(0x7f0000003280)=[{0x1010, 0x0, 0x9, "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"}, {0x110, 0x113, 0x67c, "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"}, {0x68, 0x10d, 0x7, "00e7aa6cc16fa4400f7f2d89b0bec4ef1380ff7b3bca01cc2bf494134caa6309386480b10cfb87a79a831f8b3bcf88ccc1e883d31c9484de1fad11620bc9cb2f84dc56042003dd8a2c8cbd610816526df67638e7b96e"}, {0x70, 0x0, 0x6, "e9bb2dd780dcce9e3b8d9b3643a91bdf7294c4833141e8c063b95dcf84ce11629283b13be32c42ec6588c149c8f5c76d854c5c80785ac35d4fdc5950cf2890c71fed6a85d9f7207378d0ea69d3c954adf0b4949715989ec1cbb0d4bf702468"}, {0x48, 0x108, 0x8, "1abc9851a93aeb8e18606fefc665f6bf63e1078df5f585a1a079a44194054b5033fea2eb7d84d99b9c388ca46583330d3bc105467a2c"}, {0x98, 0x6, 0x5, "6e4d6f247341edd24a53b2449f9f1af9173deb8ee65e95eee6d7dc2a667e285ef788eb109591d6c8a68793325d2648384cdd4489681326f7be2df4ca596ace2aad1dad69dbd927311d7cb19b3e967781ed9c27db0a2283e55d09da1af20517e610c33ec916a2468f9f7b496c4671031c1b134dd5074308f847daae07c509b53ba143d18bc3a5cae7"}, {0x60, 0x109, 0x3, "0433f458dd6fcaa1cbde668e0242e984d1e7a0d5a04fd51433f2bec32186667d47ccd0a73a34ac535d10373f58d0cffea1dff7fa241882712b090062a917d0dc03353f60d847eadc923fdf"}], 0x1338}, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x103341, 0x0)
ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000003})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
io_uring_setup(0x792b, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmsg$inet(r3, &(0x7f0000001580)={0x0, 0xffffffffffffff3c, &(0x7f0000000300)=[{&(0x7f0000000080)="3bfdd75fa5717852d59a9367444a2130e72cd4dabc8854532cca0c32a5b9f844a4610c7525650ce3d3b76b15026d93e6dee896115e9364066aa3d14e33ef732b4681335c576902153114bdb9c74b538a71115fb1d1a63d1b04129661b29aab89d0be999a6b7c9bea755adedbf305a79f70b71d3d4c98577b49db4963ce89b0def5e840f459659cb6f86d56b069a5de11d601d348ff88ca6e5e2cfe40176880b33e9e8dbc32ba2e6a99b1b50276dc4f06166000d7069a3cc76f", 0xb9}, {&(0x7f0000000180)="892950e2405ee8629d9384a91c16d1706a3e61f305119f95cac0f1927f4c205b971eb41147cb1f86883d6910e68ac3996551800b3ec64b77f8444b18345a2c8b178eeeba0cde7319a5a46bfe7f5770e019efd9d52069edcced33a758c4e657f3a792dc193a1911040000000000000003c851a8", 0x73}, {&(0x7f0000000200)="a68cde0d56b170df7710b54f17d9a39c4f98f3547190", 0x20000216}, {&(0x7f0000000240)="45e04400f2b383517a08c397dd0a76e67ecfc8e74573c24dedd3a48fb62458c1412fdcd15e888cb0f5d02e77bfecefda6b064c0bb2b66a9a522e63873dde02330510255eec7dfa1af708cdab59fb71eca786a359a2c3b0cbad35144ec5b069c53f90e43339845dc7fd140c55b0149ab38eb27c140f374bcc2c95b0b121d1a9302f3a01b888243b3fc0d46f0de0", 0x8d}, {&(0x7f00000025c0)="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", 0xcb3}, {&(0x7f00000006c0)="97b13f5cf9f584c87e0e637d2ff483a311bb412cb3b03c3d9e97e435f2fceb58ff0402ed7b96244b43386c222917662028d7a01206a1990722ccef1d8f39f7c8ae242e58359217b1c6161ea741445cf16b0c48eb18a6c72174dfb7cd1bd0f409dad5a432bed4afb470da3656dd30d70769e229dc91037321d618e1eff4a176ea46d5cd4d5da97f80356e46d9e8166bf2d97210b631654ece218a2a204a1786ab5a60a881a7a294cd2f92438350e6e3ec4439ebe06133ff65b1e32b809ba0482783b563ec8e5778285da5211e5821135433053a7921319c544d5e797f"}, {&(0x7f00000007c0)="75c37714a0bada8343bceb64ccb6d95a2a37b020e0bf1f6a1de4584223a2f285aaca30a9554cd5cdc1659cb9fec462cc5c2220a7cd891ec3bad99fe3c06e15a109ec0fdb6aeeee5ef8e4bfc28e17984a3860b907d549492d47a447782b7357ea72f4b2c26512a6a33c0247b730a6182ea5a99aee25fcee07f9cb0a80595cd5f744fa6898fdffda5b34b19474b8e853467329e4aea36cfd0e00735d37beb0f895c5688259a8935194eefd3a96d55707133a08f03e14da563160a545396b93341f41c161c93687e28a"}, {&(0x7f0000000b00)="1b080b7a30aec939ce8e26e0cbbe37fc064ceef965fd5e3b6739c966492dbdf71c04423d8a403e56dfd224e4e55918a5e31e683fec5cc9460882a0d1628d02d51a8da997073f856e2cd00586c6e8c89c71cf8be6121b0b3a85d597a1afb0cc311f30cc26183c8e594ce5ff62661c9e32cbc9dd9a72985e9857f3bddb52382b6c27ca85d5774cf17b92e2d2097f12a8687e70f90d46381a47706a9124a2cf61b84f26aae22fd4da84ae35b93f7be9fdfdfbf33c59f5c657e9f7e81b81b786082f88af4de07808ff3c954bae"}], 0x5, &(0x7f0000001480)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @private, @multicast1}}}], 0x20}, 0x0)
recvmsg$unix(r4, &(0x7f0000001140)={0x0, 0x2, &(0x7f0000001040)=[{&(0x7f00000015c0)=""/4096, 0x7ffff000}], 0x1}, 0x40000100)

1.55721023s ago: executing program 0 (id=1811):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = gettid()
sendmsg$unix(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000002c0)="a77e", 0x2}], 0x1, &(0x7f0000001040)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r2, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="1c0000000000000001000004", @ANYRES32, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r0, @ANYBLOB="0000000018"], 0xa0}, 0x4004881)
recvmsg$unix(r0, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x2000)

1.554095161s ago: executing program 4 (id=1813):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000000), 0x111, 0x2}}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000340)='kfree\x00', r2, 0x0, 0x7fff}, 0x18)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x1, &(0x7f00000001c0), 0x13f, 0x8}}, 0x20)
close(r3)

1.529682721s ago: executing program 4 (id=1814):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
write$UHID_CREATE2(r1, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a1000"/196], 0x119)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_open_dev$hidraw(&(0x7f0000000000), 0x0, 0x81)
ioctl$HIDIOCSFEATURE(r2, 0xc0404806, &(0x7f0000000440))
close_range(r0, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000280)={0x100000000}, 0xffffffffffffffff, 0x3, 0x0, 0x1})
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1900000003000000ffffffff03000000c0800000", @ANYRES32, @ANYBLOB="008000"/20, @ANYRES32, @ANYRES32, @ANYBLOB="050103000000008006efffffffffffff8f84c0a8", @ANYRES32, @ANYRES32], 0x50)

1.324544302s ago: executing program 3 (id=1815):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000130000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='kfree\x00'}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x200000, &(0x7f0000000300)={[{@dioread_nolock}, {@norecovery}, {@min_batch_time={'min_batch_time', 0x3d, 0x1}}, {@nojournal_checksum}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@nodelalloc}, {@errors_remount}, {@acl}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x343}}, {@jqfmt_vfsold}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@nombcache}], [{@fowner_eq}, {@func={'func', 0x3d, 'KEXEC_INITRAMFS_CHECK'}}, {@fsname={'fsname', 0x3d, '.'}}, {@subj_type={'subj_type', 0x3d, '/)/-:$//('}}, {@rootcontext={'rootcontext', 0x3d, 'unconfined_u'}}]}, 0xfd, 0x573, &(0x7f0000000cc0)="$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")
renameat2(0xffffffffffffff9c, &(0x7f00000007c0)='./file1\x00', 0xffffffffffffff9c, &(0x7f00000005c0)='./file3\x00', 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket(0x28, 0x5, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0600000004000000ff0f0000"], 0x39)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, 0x0, 0x0)
socket$kcm(0x21, 0x2, 0x2)
r3 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r3, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r3, 0x4)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000fcffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
connect$vsock_stream(r1, &(0x7f0000000080), 0x10)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x2}, 0x94)
close(r5)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000600)={0x18, 0x6, &(0x7f00000001c0)=ANY=[@ANYBLOB="180000000000000000000000ffffff80e500020000000000c500fcff000000007f00feffd100000095"], &(0x7f00000000c0)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffff6f}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='virtio_transport_alloc_pkt\x00', r5}, 0x18)
sendmmsg(r1, &(0x7f0000000b40)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000380)="1b", 0x1}], 0x1}}], 0x1, 0x0)

1.275679142s ago: executing program 4 (id=1816):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x5, 0x7fffffff}]})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[], 0x50)
socket$packet(0x11, 0x3, 0x300)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYRES16=r1, @ANYRESHEX=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='kfree\x00', r3}, 0x18)
write$selinux_validatetrans(r0, &(0x7f0000001cc0)=ANY=[@ANYBLOB='system_h:object_r:semanage_t system_u:object_r:fixed_disk_device_t:s0 00000000000w'], 0x79)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'bridge0\x00'})
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="440000001000ffff27bd7000fbdbdf2500000000", @ANYBLOB="082a6dba7d9870aec42d87d9272fe8e229333c518c212daa625bf99a7a363ee1edf9ca8da53d4189f67f81db81a4a9058972bef1639c3cac6cea8cfa685243e32f5a58c659aa6ff4192dbd56bf32339190e055fd288e65ea7b", @ANYRESOCT=r2, @ANYRES16=r0, @ANYBLOB='\b\x00\n'], 0x44}, 0x1, 0x0, 0x0, 0x308}, 0x4011002)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r6 = syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301)
ioctl$USBDEVFS_IOCTL(r6, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r6, 0x80045505, &(0x7f0000000040)=@usbdevfs_connect)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x3, 0x1d459d, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x183, 0x6}, 0x6025, 0x4005, 0xb, 0x0, 0x1, 0x1, 0xb, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r7}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r8 = mq_open(&(0x7f0000000080)='$@\x00', 0x40, 0xb4, 0x0)
fcntl$setlease(r8, 0x400, 0x0)
mq_open(&(0x7f0000000140)='$@\x00', 0x1, 0x0, 0x0)
ioctl$USBDEVFS_SETCONFIGURATION(r6, 0x80045505, &(0x7f0000000000)=0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)

1.036929143s ago: executing program 1 (id=1817):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8d}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3, 0x0, 0x1}, 0x18)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000180)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r1], 0x50}, 0x1, 0x0, 0x0, 0x4}, 0x0)

1.005464334s ago: executing program 1 (id=1818):
r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x50, &(0x7f00000002c0), 0x64, 0x505, &(0x7f0000000940)="$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")
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x12, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb702000008000000182300", @ANYBLOB="0000000000000000b7040000010000008500000078"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff010000850000000e000000850000005000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x9)
timer_create(0x2, 0x0, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000300)={{0x77359400}, {0x0, 0x3938700}}, &(0x7f0000000440)={{}, {<r3=>0x0, <r4=>0x0}})
r5 = inotify_init()
inotify_add_watch(r5, &(0x7f00000000c0)='./file0/file0\x00', 0x540000b9)
memfd_create(&(0x7f0000000b40)='Y\xff\xff\x00\x00\x00\x00\x00K\xb2\x02\x80B\xe9\xe8\xcc\xde\x06\x00l\xa8\x1aJ\xaf\xb2M\xba\xb8_\x05U\xcd<|>\x9e\xec^\x0e\xbe\x18+-\x9b\x893\x02\x00\xa6\x1f+\xb3\xc5\x90z5\xe0\xdfi\xb7\x9f\xb4QW\xc9\xc9\x92\x03\t\x00\x00\x00\x00\x00\xb2\x0f\xee\xbe\f8\xcc\x7f\x00\x00\x00Z\x81\x00\x00\x00\x00\x18I\x13\xf1\xa2x\x04\x81R\xd45R\xae\x84\xcdN\xf7\xf6\b~\xed_M^dQ:\xbc\xafq\x88\x19nSF|;]\xe1A\x8c\x8a\x98\xd7|\xadNaC\xa6\xf9\xa7>c\x84\xd8\xfa\xf1\r\xb1\xfd\xbf!\xc7u\xccP\xdd\x13~\x89\xcf\x85\xca\xa0%\xc6\xc7\x11\x00\x00\x00\x00\x00\x00\x00?M9\\\av~\'\xd9\xb0\xacdya]8\x9d\xb7\v\xf39\xc5{\x9c!\x0f/\xb8g8\xb9\x8d\x19\xe2\xca\x01y\x83\xe7\ng\x87\xd93<u\xbe\xeag\xd2\x04e\xf2s\xde}o#\x90\xda\x9cs,r\xfd:\xcb\xc7\vTmPZH\xac\x8b\xd0\xc0\xbcRK\xcb\x1e8\xce\xbd[N\xb0\xb4<\xeb\x86[\xec\x8f\x14\xea\x82\x9e&\\\xb7!\xed\xa0\xc3,\x90m\x0f\x00\x00\x00\x00\x00\x00\xff\xd0\xb3\x94\x00\x00\x00\x00\x00\x00\x00\x9dH\xf8\xffRo\xa3W\xe1\x0f\x8eS\xaeX\x93\x7f\xd3\xb9a\xe4\xe0\xbd\xd9\xf5\xe4e\xf9\xcam\xe3\x03\xe4\xad\xd5&A\x02\xc8\xa9\xfe\xcb\x87\xd9\xd3\x84\f\xc08T~\xc4\xbd\x90?\x1f\x9c\x9b0\x19 \x9f\xd1p`\xc0/\x00u\x19\x1d\xac\xe8%\xb7\t\x9f4\xbb\x89\xe9\xc1\x81\xb0\xd6\xf7\x05\x16\xb9\xe9\xdc~\xd3-s\xe6;\x94\x1c^\x06\xdav;\xccD\x95sj\xe0\xd5\xbeS\xac\xe5N\xea\x9eyl[[\xce5\xee\x05\x9c\x96\x87\x9dp\xea?/\xcb\x9a\xaa5\'Q\fuG\x81\x8a@\x97M=v\xfe\a\xabp\xf3\x93\x9d\x7f@9\xc0\xd2\xf1#\xe7N\x89\xf8\xe8+\xa1\x82\x13\xb2\xa9\xef\xa5\xf8\x8b \x00\x9ev\x92\x0e\xd1\x1f\x17Dx[\xad\xb0\x9d/\x96\xe42mO\x9fh\xea\xf3\x14\xcd\x96\x89_)2\xe2\xd6\x81\x00b\xaf;\x92T\xafz\x94\x9fG\xfb\xfd|&k\x03\xd7;\x9ay\xee\xf9W?\xb3\xf9\xf8I.E4\xc3eWq\xfa\":$\xd0\x17Q\x94\xf5\xe5mk\x8e&\xf1;#z\xef*\xce\x99\x04\xb9\x90\xbc\xc9#-\x8di\xae\xc5\xdf\x13\xd2K\x8b\xf5\f\xb2x\xdd\xd5\xb4\xa9^~O<\x12\xe3\xc2Ru2Ht\re\xa1\xf6\xbd\xaa\xb0\x83}i\xc3P|7\xc4\xc8\xb1r0Z\x98\x87^\xc8C\x1b\x96\xb4lsyF\xc5\xbc\xffOE\xe9\xd70\xe7\xfep\x83\xa7\xa1\xd9\xe4\xba\x92\x17\xbf\xe0\xe1\x01\xb7\x8b\x18j\x19n\xc8\xff\xe9\xf4\xf4\xcf a\xd7_w\x0f\x9dF\xae\xccA-/\x83\xabU\xd5\xbf\xa4O\xb4\xed\xc8\xccH\xd1=\x81\x00\x00\x00\xc7;Lb\xce\x1a\xcc\x98\xe8\xe9e\xe0\xc2N\xe7\xd7\x1d\x92\x87F8\x9e\xd6\xdd\xdaW\xf5X\x80\xa0f\xceo\xd8\x7f\xc0\x96\bSB\xce&\x04$\xc3\xe31U\x84\x82\xf0{i\x1d\x02\x10\x86C\x01^\xcf\x93?w\x01\x84\xa0\xd6\xa2\x10\xa4\xfcG\xabD\xd6dGZ\xb2Cx\x1b\xfdD9\x17U\xf0\x16K\xf9&@\xb1[\xe2j$F1n@\xde\n%t.[\xad\xb5\f<o\xdb\xa4\x90\xc4\xd0I\xa6\x96\xa1\x00\xbb\xdd\x94\x00t/1YekG\x7f\xbdrI\x1e\x8a4=\xa2\xe9\x82<\x9e|\xf5#\x7f\xa8\x1f\x14\x82ih\xf9?\x03Q\xf5\xc4\x95\x99 \xa7v~:$\x02O\xe3\xaa\x1f\x00\xebk\'\xd2q\x10\x1e\x94n\xd7w\xb1\xc8G\x89\xf4\x8ct\xf9R\x850\b,r\xc6r\xf7=\xfe\xc1\x16\xe6\xee\xbb:-h\x03;\xe5\x04\xd8\xa9\x9a\xd3\x05(\x7f|\xadU\xafe\x87V.i4$6U,R\x9b\n{\'\xfe1\xc4\xb09\x96\x87\xc0e\xab\xe7\xa9\xb4\x1a\n\xf5\xd7zuvz\x972\xd4\xfb\x13u2\xab\x18\x01~r\xbbcW!\xec\xf7$\xc2\xbaU \x98\xb2\xe3I\xbd\x16T\xb75\xa6\a\xb7\xa1\x8d\xc9\x12\xb1\xbd\xbc\xd9c\xe9\"k\xee\x06\x83\xf4\xab\x18\x038\x8f\xc9^\x0f\xab\xea&P\b\xef#\xf6\xc3\xfc\xd4\xa0\xfd\x15N\xd3\xa0\x80\x9f\bU\xa63\xf6\xc9\xec\x01\'\t\x89(\xf9\x98B\xaf\xde*\x91\xd5k\xa1`d\xf0\x97\xc9e\xc1\"EC\x9a?x\x89\x8d\xb3\xfaF}\x82D\xf8\f\xf1`\x90D\xd1|%(\xd8\t\xea\xdfC\xce\x7fo+?v\xee\xc6bL\x1d\xbe\x84\x0e\xa7U\xc7}\xea.U`\x1b*\xcep\x8d\xa3\xec\xf7\xe0\xfe\x8c=<\xf2\x1f@\xc9\xcfw\xf3\x02\x1b\xde\xc3\x86\xe66E\xa7\x9c\xd3\xb6\xf5\xe0\x14\xb8\xd4`\x85\xe3;\x8c\xf8\xf2\xd9)\x0e\xd0\xff\xa5K\xf3\xf1\xc4\x18\xf4Z\xdci\x91\x84\xe8\xb7\x10\x90\xbc\xect\x13\xdfR\xe2\x80\xf8a\x92\xb2R\xdf0\xcdQ\xdf\x83\xbdjp,\xe8\xbb\xe6\xc6Db\xb8\xd6\xcd\x1ch3h\xcf<\x82\x97\xa5s/m\xb2\x1dd\xf7\xfc\xf5\xa9\x1d\xd34{\xcc\x1f\t,i\x16\x82\xad\x8e\xb6\x17\x0f\xaa\x85^/w\xbb~\xff\xce\x92\x90\x83\n\xe5\x14\x95\x92|\xfe-S%\x91i\xafh\x97z\x00@K\xbb\xc2\fcD\xff\xdcl\xa1\xfaR\xbc\xd4k7L\x8a\xa3Z\xf9%{\xfax\x9a\x04\'/\x90\xe6\xe2\xe9\xf1@o\x0ez\xb8\xce\xbeF\x0fkE\xf4ry\x92n\xff\xcb\xf8e\xf3j\xc5[wK\x91\xdb\xf7-r\xd3\x1bx\x9b$\x91\x03q~@\xd8R\x11\x05|\x8f\xb4\xc9\x16\x87C\xab\x96\xc4\xef\xea\xb9\r\xf5\xf3\xbe\x8a\t\xc7\x88\xc0sL;.\xcf\x1d\xc4^\xb0l\xbb\x97\xc5\xf6n\xca\x18M\xb8\x81\xff\xa9~\xf7\xa3\xa6\xd3\x15I\xecXG\x89\xa8\b\x8b\xcc\xe8\x88\xa07Z\x03\xff14\x87I\xc7\\vK<m2\x16\x03\xcd\xc1\xa8.\x7f\x16qlk\xf1\xf1y\x8c\xde\xd6|\xa1(\xf4\x12O\xca3\xf8%1\x8d\xd7\a\xfeJ\xe6\x8bc\xb3\x1bKC.\xafB\x8d\xdd\xf9\x1e\x9d\xa7\x13\x00\x14\xc7\xa1\xf3\x1e\xcb\x19\x13z`\xac\xf3\xd1x\x1b#}\xfaYR\xc5#Zoag@\x18\xfa*\xb4\xc4\x04\x03V\x87\xc5\xe7\xb5\x9bJ\x85-\x7f\xfe\xc0\xb7g\xe8\'`\x96q\x88[\xf8\xe8L\x12\x85\xf5t\x99\x0e}\xd3H\xed\xda\xf3>\xd8\x12\x8cXc5%\x03\x8d`\xdayC\x9b\x9a\xd9c\xe9\xb4\v\x99\x87\xe4\x00\x8a\x8eS\x8e\f\x05ZH\xa2\x0e\xbc\x9c\x95\b2Cf6\x9a\xe7\xb9\x86\xbe\xd0\xda\x91\xc1sl\x11PA\x93\xa5\x93\xc8\xf1w\x7fp6z\xbf\xe8[\'u\xb8\xd2$K\x12\rt\x87\x00\x00\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00r\xe2`\xdf\xd2\xb3\xaf\xe9\xc4!Z\xb4&\xa2\x12\xe2i\x91kC$A\xafR\xb3\xff\x1d=Z\x0e\xde\x99\xec\x10\xb4+\x13\'\x92>\x14\x00\a\xb6R\x8b\xdcz\xc3\xd1Y\xd6\xd9;s \xb0\x938\xb7D9\xdcN\xbd\xdbn\xe35\xa7\x02\x9c\xc1\xd9\x13?\xc9\xd7\xab\x9c\xf3\x82\xd1\xee^kk\xce\xdbn\x02\x1f\x80\t\xdbr\xa9\xcc\xf1\xcb\x9f@\x8c\xfc\x02W/p\x97\xb0\xbd\x8f\xdb|n2a\xee\x95u\x83\xca\x8a>}\xd3\xd0\xff6.pa\x17\xe3e\xd2\x7f\xf6\xbc\x9d\x112\x1b\x14<B\x91\xc0{{\x9d@\xb3a\xad\x14\xe9\xcc|\xd7\xa1\xc6\xb9F\x04\xce]\xb9Y\xbd\xbd\f\xa4F;q\xec\x83\x9bM\x93\xa4\x9c\xdd\x93\xa0\x82E\x02d\xd4RAI\xd9O\x17\xa6P#\xa35\a\xf6\xbb\t>p\xa1\xd6u\xefn\xb4\xa3\x05D\x8c\xc5l\xcc\b\xeb\xf42\xe9\xf15\xf3\xf2\xee\xd6\xed\t\xb3\xf7\x1a\x7f\xe6\xb4z\x19\xe1\xb4w\xf7\xa6\xd7\\\xfa\x96\xe2\xf9\xb1\x81\xba\xdfg\xadI\x1c\xde*_\xd5\xdf\xeeA\xcd \x91\xc9\xd4\xd1\xcd*.t\x80]\xd5~\xfb\xfb>\x9d\x91Kq]N\x87\x0f\x04L\xd4(\xf2G \xfdr~:\xc4\xc3\xfe\x14G\xadG~^l\xe0:(Y`\x0e\x90\xfa\x1c\xb6\f6\x92B\x92\xd3\xa9BG\xd2*AB\x1e\x01\xf0m+\x02\x87\x81aj;\xb6y.g\xeb\xc4\x0f\xd3\x85\xa5\x00\xa1\xa6iP\x0f\x02\x14\x90q\x94\xab\xb3\x0f\x01=\x06\x98\xa8\x87\xd9=\xce\xbef<\x1d\v\xba[\xd8]\x9e\xf30\xb8\xf1\b\x06M\x18w\xdc\x0e\x98?\x04G\xf9\x99\xab\xc1\xc0z\xe9Fu\x03\x9aj\xc0]\xb47\xd5\xb8]\x98y@\x8c\x8fM\x8c],\x1b\x03\xaa\'gv\xeb\xbf\xa8d\"\x94e3Q\xfci\xdf\xad\x819\xd1\xf3\xaa\xc8i\xf2\x8a\xc4CU3\x87Ns\x9f\x9f\xcd\x05\x06g\x9aRBg\x98\x10Ch\x1c\x96\xd3\xce', 0x7)
read(r2, &(0x7f0000001600)=""/238, 0xee)
r6 = perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x47, 0x1e0411, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfefffffe, 0x1, @perf_bp={0x0, 0x3}, 0x300, 0x4005, 0xb, 0x3, 0x4, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap$perf(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1, 0x4000011, r6, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8514, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, @perf_config_ext={0x8, 0x6}, 0x120, 0x10000, 0x2, 0x1, 0x8, 0x20007, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, r6, 0x2)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)=ANY=[@ANYRESDEC=r3, @ANYRES64=r0, @ANYRESDEC=r4], 0x48)
pipe(&(0x7f00000002c0)={<r7=>0xffffffffffffffff})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r8 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES16=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000880)={'veth1_to_bridge\x00', 0x1000})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r9}, 0x10)
sendmsg$netlink(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000001480)=ANY=[@ANYBLOB="140100002900030000000000fcdbdf250401f2800c0018000bac0f000000000014000100"], 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0)

966.004694ms ago: executing program 3 (id=1819):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b700000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x18)
shutdown(0xffffffffffffffff, 0x1)

918.426154ms ago: executing program 3 (id=1820):
syz_open_procfs(0x0, &(0x7f0000000040)='net/vlan/vlan0\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x181)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000740)='kfree\x00', r1, 0x0, 0x40008003}, 0x18)
capset(&(0x7f0000000380)={0x19980330}, &(0x7f0000000040)={0x200000, 0x40200003, 0x0, 0x6, 0x7})
setrlimit(0x40000000000008, &(0x7f0000000080)={0x0, 0x6})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r2, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
sendmmsg$inet(r2, 0x0, 0x0, 0x4000804)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
dup(r3)
mbind(&(0x7f0000feb000/0x13000)=nil, 0x13000, 0x8000, &(0x7f0000000000)=0x1, 0x400000000003, 0x4)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
gettid()
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
eventfd(0x0)
futex(0x0, 0xd, 0x0, 0x0, 0x0, 0x2)

916.172424ms ago: executing program 3 (id=1821):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000000085000000720000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xc, '\x00', 0x0, @fallback=0x3c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r1, 0x0, 0x0)

844.598795ms ago: executing program 3 (id=1822):
r0 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
r1 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r1, &(0x7f0000000000)={0x2a, 0x0, 0x2}, 0xc)
pselect6(0x40, &(0x7f00000002c0)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001}, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_config_ext={0x0, 0xe62}, 0xc902, 0xc8, 0x0, 0x6, 0x10001, 0x0, 0xfffa, 0x0, 0xa, 0x0, 0x69}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x3)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
close(r3)
recvmsg$unix(r2, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r5=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r5, &(0x7f0000000080)=ANY=[@ANYBLOB="8fedcb7910009875f37538e486dd6317ce8102033300bc08000e40000200875a65969ff57b00ff020000000000000000000000000001"], 0xfdef)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$tipc(r0, &(0x7f00000005c0)={&(0x7f0000000000), 0x10, &(0x7f0000000480)}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x200000000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r8 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7020000140000e5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup/cgroup.procs\x00', 0x80042, 0x20262076a4e6d5e)
write$binfmt_format(r9, &(0x7f0000000180)='-1\x00', 0x3)
r10 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r9, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, r10}, './file0\x00'})
syz_open_dev$tty1(0xc, 0x4, 0x1)

735.034345ms ago: executing program 0 (id=1823):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x65, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1, 0x0, 0xffffffffffffffff}, 0x18)
lsm_get_self_attr(0x69, &(0x7f00000008c0)={0x0, 0x0, 0xe8, 0xc8, ""/200}, &(0x7f0000000040)=0xe8, 0x0)

717.938516ms ago: executing program 1 (id=1824):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000000), 0x111, 0x2}}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000340)='kfree\x00', r2, 0x0, 0x7fff}, 0x18)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x1, &(0x7f00000001c0), 0x13f, 0x8}}, 0x20)
close(r3)

663.950046ms ago: executing program 0 (id=1825):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000001580)='kmem_cache_free\x00', r0, 0x0, 0x3}, 0x18)
r1 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_opts(r1, 0x0, 0x4, 0x0, 0x28)
socket(0x2, 0x80805, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x18, 0xf, &(0x7f0000000d80)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[], 0x50)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70300000000000085"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000001c0), 0x1, 0x553, &(0x7f0000001080)="$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")
r3 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r3, 0x2007ffc)
sendfile(r3, r3, 0x0, 0x800000009)

647.493156ms ago: executing program 1 (id=1826):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8d}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x0, 0x2, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x3, 0x0, 0x0, 0x40f00, 0x60, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffff9}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3, 0x0, 0x1}, 0x18)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000180)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000008000000180001801400020073797a5f74756e00000000000000000024000280040001001c000380"], 0x50}, 0x1, 0x0, 0x0, 0x4}, 0x0)

617.223096ms ago: executing program 1 (id=1827):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = gettid()
sendmsg$unix(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000002c0)="a77e", 0x2}], 0x1, &(0x7f0000001040)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r2, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="1c000000000000000100000402000000", @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r0, @ANYBLOB="0000000018"], 0xa0}, 0x4004881)
recvmsg$unix(r0, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x2000)

536.935137ms ago: executing program 0 (id=1828):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000940)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0x14, 0x4, 0x4, 0x22}, 0x50)
r3 = socket$inet(0x2, 0x2, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={r2, &(0x7f00000001c0), &(0x7f00000004c0)=@udp=r3}, 0x20)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000000))
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
bpf$TOKEN_CREATE(0x24, &(0x7f0000000040)={0x0, r2}, 0x8)
io_setup(0x2, &(0x7f0000000000))
prctl$PR_SET_NAME(0xf, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000005c00)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546000677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289d01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5467a932b77674e802a0d42bc6099ad238af770b5ed8925161729298700000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb076719237c8d0e60b0eea24492a660583eecdbf5bcd3de3ac3209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b135ab6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809b5b9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed3957f813567f7a95435ac15fc0288d9b2a169cdcacc413b48dafb7a2c8cb482bac0ac559eaf39027ceb379a902d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385beef3282830689da6b53b263339863297771429d120000003341bf4abacac94500fca0493cf29b33dcc9ffffffffffffffd39f6ce0c6ff01589646efd1cf870cd7bb2366fdf870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1293b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd000c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c7df8be5877050c91301fb997316dbf17866fb84d4173731efe895ff2e1c55ef08235a0126e01254c44060926e90109b598502d3e959efc71f665c4d75cf2458e3542c9062ece84c99a861887a20639b41c8c12ee86c50804042b3eac1f879b136345cf67ca3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc74aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7ad333545794f37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f4df90400000000000000d6b2c5ea139376f24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8e3070000001e48418046c216c1f895778cb25122a2a998de0842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec84ac3571f02f647b3385b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba2f58ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df986741517abf11389b751f4e109b60000000000000000d6d5210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750890ae71555b3228b1bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e7a45319f18101288d139bd3da230ed05a8fe64680b0a3f9f2dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30235b9100000000a55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854356cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c776f4b4ce07e1c6fa66fcfc7a228805f76785efc0ceb1c8e5729c66418d169fc03aa18854693ad2a182068e1e3a0e2505bc7f41019645466ac96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7e478950aa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab848753203b458b97ec1afb079b4b4ba686fcdf240430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7db3c4be290159f6bcd75f0dda9de5532e71ae9e48b0ed1254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6c30ebc660309e1e245b0fdf9743af932cd6db49a47613808bad959719c0000000000378ac2e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6ca0400966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e3030108000000000000c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bffef97dcecc467ace456597685c5870d25f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4cba6e6390a9f302c6eb2df7766411bef0ebb5000000000006065d6735eb7a00e127c0000000000000000000000bfb0bba79344643b1d8daa9f38e4b62c1e2af68c6f5054b078acd74b4a9c944e4505da485a3a4154387a0a88372091cd397b09c5888a06431df3f68abf0b366c4d5f8bea7b29c257ed756dff7a21c6b661cbdd43de65afd7f661d5c84f915c90e3d6ea012b68b787eb01d8320000000000000060176dacba0ec503a37fae6b472ec369c79ee6a420c0fd8d8d82fe136d5af6c30bfeb0a7275babfdb96a127aa9386e0671c6454245a18c1c8c49552cff5d27b547cdc34c0858c77a47a9ff86ee9fbd9ceda428716a4218821176d8067997527230fa67d26950d3e4f2750fa7c872874ad3a2d11f9f6eb08e6d7b6fa257b04d8ce36360f524e3dfd2211641f3d2637d86b80681eca50ce0eecafdd22d41fa515c15591e70ded4b70efac3cb42fb352d82e8f7573e8ed8248da356fa91a252976d3a4d8c1843a8d5bb7f5f1028453a0562a3ea93117076dd4940b7df50d78289fe66197525f6095f8662d232970bef61b03fa83027963a1a2e07cfee30c0d0b4c5877f93b3637ca21eab5afcf5d4638dfe8f9202aaad51c979049dd76d65368cbd4187d9f74257c7c4a23ac4a34eec5aa17e78c5167216f5e72138d20f8325dd5f8f96c32189c904eaef580987f1ce601a7cdc35461db9981ac42f9e24b0699bbe4e3d986e38952b0b7938eefd9e7a292bbb66367ad77045fdc18855c81c031dedd185c723238373fc698d676791d04f1ff5f0825a6619e844882f31ed190233d58ecee949e310bf2b1a51b8a33ae65a06d2b6ad386bf8dc49dd328bcd75d1843a13d68560175a18af7efc3c0f20e32f84f6aaaf000000000000000000000013a6c66bce74a8fb9092023df695da2714a7933d699d42de2bc4a85e0a0e22228290a7a7553ab93a16e42453ed86869a02df2f47d4088fac1772d3cd955c81cbf91c2ca7942942f61723b558079b82547844f92df2499c4b2c2ef2539e5daa8d8727baaa6b5755e6f83bbfca00000000000000000000007925d0f1256330b9e2aa9a18cea8e009116f63c6c7d8f7f95bf0f6731e5eb1dcdc534f357b9f08e7a9a3aebeca145d695053b5bef004ca24e6c57ed10f01488d38b8b0b68d93e3cf630837915d518fde2115e66615786fe7b9216de958119cf762cac77ac829a02f48e72c0d2841880b2c"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff7e}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000400)={0xffffffffffffffff, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000005c0)=[0x7], 0x0, 0x0, 0x1}}, 0x40)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000011008108090f9becdb4cb92e264831371900000069bd6efb2502eaf60d002700020400bf050005001201", 0x2e}], 0x1}, 0x0)
eventfd(0x74c)
splice(r1, 0x0, 0xffffffffffffffff, 0x0, 0xf3a, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000000000)=0x10001)
write(r0, 0x0, 0x0)
r7 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x40000, 0x52)
fcntl$notify(r7, 0x402, 0x40000029)
openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x40000, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000008c0)={0x10, 0x2, &(0x7f0000000100)=@raw=[@ldst={0x1, 0x2, 0x4, 0x0, 0x1, 0x4}, @jmp={0x5, 0x0, 0x9, 0x0, 0x6, 0x40, 0xfffffffffffffff0}], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
r8 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/mem_sleep', 0x101a02, 0x0)
copy_file_range(r8, &(0x7f0000000000)=0x8, r8, 0x0, 0x4, 0x0)
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x42, 0x0)
ioctl$TUNSETIFF(r9, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})

444.815607ms ago: executing program 4 (id=1829):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000340)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x10, 0x7ffc1ffb}]})
statfs(&(0x7f0000002000)='./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

421.256727ms ago: executing program 4 (id=1830):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000130000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='kfree\x00'}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x200000, &(0x7f0000000300)={[{@dioread_nolock}, {@norecovery}, {@min_batch_time={'min_batch_time', 0x3d, 0x1}}, {@nojournal_checksum}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@nodelalloc}, {@errors_remount}, {@acl}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x343}}, {@jqfmt_vfsold}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@nombcache}], [{@fowner_eq}, {@func={'func', 0x3d, 'KEXEC_INITRAMFS_CHECK'}}, {@fsname={'fsname', 0x3d, '.'}}, {@subj_type={'subj_type', 0x3d, '/)/-:$//('}}, {@rootcontext={'rootcontext', 0x3d, 'unconfined_u'}}]}, 0xfd, 0x573, &(0x7f0000000cc0)="$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")
renameat2(0xffffffffffffff9c, &(0x7f00000007c0)='./file1\x00', 0xffffffffffffff9c, &(0x7f00000005c0)='./file3\x00', 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket(0x28, 0x5, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0600000004000000ff0f0000"], 0x39)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, 0x0, 0x0)
socket$kcm(0x21, 0x2, 0x2)
r3 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r3, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r3, 0x4)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000fcffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
connect$vsock_stream(r1, &(0x7f0000000080), 0x10)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x2}, 0x94)
close(r5)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000600)={0x18, 0x6, &(0x7f00000001c0)=ANY=[@ANYBLOB="180000000000000000000000ffffff80e500020000000000c500fcff000000007f00feffd100000095"], &(0x7f00000000c0)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffff6f}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='virtio_transport_alloc_pkt\x00', r5}, 0x18)
sendmmsg(r1, &(0x7f0000000b40)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000380)="1b", 0x1}], 0x1}}], 0x1, 0x0)

22.10546ms ago: executing program 0 (id=1831):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b700000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x18)
shutdown(0xffffffffffffffff, 0x1)

587.31µs ago: executing program 0 (id=1832):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="020000000400000008000000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b707000008000000850000006900000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x18)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
io_setup(0x8f0, &(0x7f0000002400))

0s ago: executing program 4 (id=1833):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = gettid()
sendmsg$unix(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000002c0)="a77e", 0x2}], 0x1, &(0x7f0000001040)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r2, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="1c00000000000000010000040200", @ANYRES32, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r0, @ANYBLOB="0000000018"], 0xa0}, 0x4004881)
recvmsg$unix(r0, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x2000)

kernel console output (not intermixed with test programs):

f855759f6c9
[   79.240074][ T5979] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.240124][ T5979] RSP: 002b:00007f8556007038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   79.240145][ T5979] RAX: ffffffffffffffda RBX: 00007f85577f5fa0 RCX: 00007f855759f6c9
[   79.240161][ T5979] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[   79.240228][ T5979] RBP: 00007f8556007090 R08: 0000000000000000 R09: 0000000000000000
[   79.240240][ T5979] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   79.240252][ T5979] R13: 00007f85577f6038 R14: 00007f85577f5fa0 R15: 00007ffe6d154c48
[   79.240273][ T5979]  </TASK>
[   79.703776][ T6009] loop5: detected capacity change from 0 to 1024
[   79.711694][ T6009] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   79.730232][ T6009] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.794: Invalid block bitmap block 0 in block_group 0
[   79.752580][ T6009] EXT4-fs error (device loop5): ext4_acquire_dquot:6945: comm syz.5.794: Failed to acquire dquot type 0
[   79.768350][ T6009] EXT4-fs error (device loop5): ext4_free_blocks:6706: comm syz.5.794: Freeing blocks not in datazone - block = 0, count = 4096
[   79.784935][ T6009] EXT4-fs error (device loop5): ext4_read_inode_bitmap:139: comm syz.5.794: Invalid inode bitmap blk 0 in block_group 0
[   79.807703][   T42] EXT4-fs error (device loop5): ext4_release_dquot:6981: comm kworker/u8:2: Failed to release dquot type 0
[   79.841406][ T6009] EXT4-fs error (device loop5) in ext4_free_inode:361: Corrupt filesystem
[   79.850433][ T6009] EXT4-fs (loop5): 1 orphan inode deleted
[   79.934770][ T6026] netlink: 36 bytes leftover after parsing attributes in process `syz.5.800'.
[   80.000987][ T6031] hub 1-0:1.0: USB hub found
[   80.021150][ T6031] hub 1-0:1.0: 8 ports detected
[   80.125891][ T6047] netlink: 64 bytes leftover after parsing attributes in process `syz.1.810'.
[   80.138381][ T6047] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[   80.165876][ T6051] ieee802154 phy1 wpan1: encryption failed: -22
[   80.424344][ T6072] ieee802154 phy1 wpan1: encryption failed: -22
[   80.434841][ T6072] tipc: New replicast peer: 255.255.255.255
[   80.441047][ T6072] tipc: Enabled bearer <udp:syz2>, priority 10
[   80.478409][ T6074] netlink: 64 bytes leftover after parsing attributes in process `syz.4.823'.
[   80.489048][ T6074] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[   80.939250][   T29] kauditd_printk_skb: 786 callbacks suppressed
[   80.939265][   T29] audit: type=1326 audit(1762761167.763:5087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6103 comm="syz.4.835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f855759f6c9 code=0x7ffc0000
[   80.946946][ T6106] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   80.983399][ T6104] netlink: 64 bytes leftover after parsing attributes in process `syz.4.835'.
[   80.993660][ T6104] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[   81.022008][   T29] audit: type=1326 audit(1762761167.793:5088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6101 comm="syz.0.836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f0ec23f6567 code=0x7ffc0000
[   81.045383][   T29] audit: type=1326 audit(1762761167.793:5089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6101 comm="syz.0.836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f0ec239b779 code=0x7ffc0000
[   81.068646][   T29] audit: type=1326 audit(1762761167.793:5090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6101 comm="syz.0.836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ec23ff6c9 code=0x7ffc0000
[   81.092012][   T29] audit: type=1326 audit(1762761167.793:5091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6101 comm="syz.0.836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ec23ff6c9 code=0x7ffc0000
[   81.115304][   T29] audit: type=1326 audit(1762761167.803:5092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6103 comm="syz.4.835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f855759f6c9 code=0x7ffc0000
[   81.138724][   T29] audit: type=1326 audit(1762761167.803:5093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6103 comm="syz.4.835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f855759f6c9 code=0x7ffc0000
[   81.162093][   T29] audit: type=1326 audit(1762761167.803:5094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6103 comm="syz.4.835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=125 compat=0 ip=0x7f855759f6c9 code=0x7ffc0000
[   81.185442][   T29] audit: type=1326 audit(1762761167.803:5095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6103 comm="syz.4.835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f855759f6c9 code=0x7ffc0000
[   81.208920][   T29] audit: type=1326 audit(1762761167.803:5096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6103 comm="syz.4.835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f855759f6c9 code=0x7ffc0000
[   81.312072][ T6115] lo speed is unknown, defaulting to 1000
[   81.354408][ T6125] netlink: 19 bytes leftover after parsing attributes in process `syz.1.846'.
[   81.379946][ T6127] ieee802154 phy1 wpan1: encryption failed: -22
[   81.417510][ T6130] netlink: 64 bytes leftover after parsing attributes in process `syz.5.849'.
[   81.422885][ T6115] lo speed is unknown, defaulting to 1000
[   81.441394][ T6130] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[   81.568190][ T3415] tipc: Node number set to 2332861483
[   81.582180][ T6145] veth8: entered promiscuous mode
[   81.587236][ T6145] veth8: entered allmulticast mode
[   81.605028][ T6145] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   81.667668][ T6154] ieee802154 phy1 wpan1: encryption failed: -22
[   81.679755][ T6154] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[   81.747373][ T6164] netlink: 64 bytes leftover after parsing attributes in process `syz.1.861'.
[   81.763424][ T6164] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[   81.807406][ T6172] netlink: 'syz.1.864': attribute type 1 has an invalid length.
[   81.825370][ T6172] 8021q: adding VLAN 0 to HW filter on device bond1
[   81.837786][ T6172] netlink: 4 bytes leftover after parsing attributes in process `syz.1.864'.
[   81.885307][ T6172] bond1 (unregistering): Released all slaves
[   82.044467][ T6189] veth12: entered promiscuous mode
[   82.049648][ T6189] veth12: entered allmulticast mode
[   82.082148][ T6194] ieee802154 phy1 wpan1: encryption failed: -22
[   82.105313][ T6195] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   82.136831][ T6194] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[   82.147642][ T6197] loop5: detected capacity change from 0 to 1024
[   82.154946][ T6197] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   82.195556][ T6197] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.872: Invalid block bitmap block 0 in block_group 0
[   82.214849][ T6197] EXT4-fs error (device loop5): ext4_acquire_dquot:6945: comm syz.5.872: Failed to acquire dquot type 0
[   82.228564][ T6197] EXT4-fs error (device loop5): ext4_free_blocks:6706: comm syz.5.872: Freeing blocks not in datazone - block = 0, count = 4096
[   82.259177][ T6204] netlink: 64 bytes leftover after parsing attributes in process `syz.0.874'.
[   82.290373][ T6197] EXT4-fs error (device loop5): ext4_read_inode_bitmap:139: comm syz.5.872: Invalid inode bitmap blk 0 in block_group 0
[   82.303373][ T6204] sch_tbf: burst 3298 is lower than device lo mtu (11337746) !
[   82.311215][ T2674] EXT4-fs error (device loop5): ext4_release_dquot:6981: comm kworker/u8:6: Failed to release dquot type 0
[   82.354636][ T6197] EXT4-fs error (device loop5) in ext4_free_inode:361: Corrupt filesystem
[   82.384222][ T6197] EXT4-fs (loop5): 1 orphan inode deleted
[   82.396939][ T6213] loop1: detected capacity change from 0 to 128
[   82.462390][ T6222] netlink: 'syz.5.883': attribute type 39 has an invalid length.
[   82.529447][ T6228] netlink: 32 bytes leftover after parsing attributes in process `syz.1.885'.
[   82.538389][ T6228] netem: unknown loss type 13
[   82.543061][ T6228] netem: change failed
[   82.571125][ T6229] netlink: 36 bytes leftover after parsing attributes in process `syz.4.884'.
[   82.613906][ T6228] loop1: detected capacity change from 0 to 1024
[   82.640816][ T6231] hub 1-0:1.0: USB hub found
[   82.645567][ T6231] hub 1-0:1.0: 8 ports detected
[   82.815448][ T6245] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[   82.826816][ T6246] hub 1-0:1.0: USB hub found
[   82.833234][ T6246] hub 1-0:1.0: 8 ports detected
[   82.929256][ T6255] loop3: detected capacity change from 0 to 1024
[   82.936273][ T6255] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   82.948461][ T6255] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.894: Invalid block bitmap block 0 in block_group 0
[   82.962253][ T6255] EXT4-fs error (device loop3): ext4_acquire_dquot:6945: comm syz.3.894: Failed to acquire dquot type 0
[   82.978209][ T6255] EXT4-fs error (device loop3): ext4_free_blocks:6706: comm syz.3.894: Freeing blocks not in datazone - block = 0, count = 4096
[   82.994051][ T6255] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.894: Invalid inode bitmap blk 0 in block_group 0
[   82.995430][ T6259] loop1: detected capacity change from 0 to 128
[   83.006936][ T6255] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[   83.021500][   T42] EXT4-fs error (device loop3): ext4_release_dquot:6981: comm kworker/u8:2: Failed to release dquot type 0
[   83.033257][ T6255] EXT4-fs (loop3): 1 orphan inode deleted
[   83.102163][ T6267] veth10: entered promiscuous mode
[   83.107300][ T6267] veth10: entered allmulticast mode
[   83.122874][ T6267] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   83.160280][ T6269] netlink: 'syz.3.899': attribute type 39 has an invalid length.
[   83.465736][ T6287] loop0: detected capacity change from 0 to 1024
[   83.473353][ T6287] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   83.485587][ T6287] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.908: Invalid block bitmap block 0 in block_group 0
[   83.499678][ T6287] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.908: Failed to acquire dquot type 0
[   83.511344][ T6287] EXT4-fs error (device loop0): ext4_free_blocks:6706: comm syz.0.908: Freeing blocks not in datazone - block = 0, count = 4096
[   83.524948][ T6287] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.908: Invalid inode bitmap blk 0 in block_group 0
[   83.537708][ T2674] EXT4-fs error (device loop0): ext4_release_dquot:6981: comm kworker/u8:6: Failed to release dquot type 0
[   83.549921][ T6289] loop4: detected capacity change from 0 to 1024
[   83.556347][ T6287] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[   83.565359][ T6287] EXT4-fs (loop0): 1 orphan inode deleted
[   83.631936][ T6297] veth2: entered promiscuous mode
[   83.636972][ T6297] veth2: entered allmulticast mode
[   83.685313][ T6297] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   83.711800][ T6307] loop5: detected capacity change from 0 to 1024
[   83.734787][ T6309] netlink: 'syz.4.916': attribute type 39 has an invalid length.
[   83.785382][ T6307] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4193: comm syz.5.914: Allocating blocks 449-513 which overlap fs metadata
[   83.808864][ T6304] EXT4-fs (loop5): pa ffff88810552e460: logic 48, phys. 177, len 21
[   83.816936][ T6304] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4
[   83.851797][ T6320] hub 1-0:1.0: USB hub found
[   83.859580][ T6320] hub 1-0:1.0: 8 ports detected
[   83.883087][ T6322] loop5: detected capacity change from 0 to 1024
[   83.926030][ T6326] loop5: detected capacity change from 0 to 1024
[   83.933053][ T6326] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   83.950252][ T6326] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.921: Invalid block bitmap block 0 in block_group 0
[   83.964157][ T6326] EXT4-fs error (device loop5): ext4_acquire_dquot:6945: comm syz.5.921: Failed to acquire dquot type 0
[   83.975594][ T6326] EXT4-fs error (device loop5): ext4_free_blocks:6706: comm syz.5.921: Freeing blocks not in datazone - block = 0, count = 4096
[   83.989499][ T6326] EXT4-fs error (device loop5): ext4_read_inode_bitmap:139: comm syz.5.921: Invalid inode bitmap blk 0 in block_group 0
[   84.002431][ T6326] EXT4-fs error (device loop5) in ext4_free_inode:361: Corrupt filesystem
[   84.011165][ T2674] EXT4-fs error (device loop5): ext4_release_dquot:6981: comm kworker/u8:6: Failed to release dquot type 0
[   84.022687][ T6326] EXT4-fs (loop5): 1 orphan inode deleted
[   84.090935][ T6337] veth4: entered promiscuous mode
[   84.095993][ T6337] veth4: entered allmulticast mode
[   84.120850][ T6337] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   84.199708][ T6343] loop4: detected capacity change from 0 to 1024
[   84.679923][ T6374] loop4: detected capacity change from 0 to 1024
[   84.761213][ T6388] ipvlan1: entered promiscuous mode
[   84.766448][ T6388] ipvlan1: entered allmulticast mode
[   84.771790][ T6388] veth0_vlan: entered allmulticast mode
[   85.023545][ T6407] FAULT_INJECTION: forcing a failure.
[   85.023545][ T6407] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   85.036697][ T6407] CPU: 0 UID: 0 PID: 6407 Comm: syz.4.949 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   85.036724][ T6407] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   85.036805][ T6407] Call Trace:
[   85.036811][ T6407]  <TASK>
[   85.036819][ T6407]  __dump_stack+0x1d/0x30
[   85.036845][ T6407]  dump_stack_lvl+0xe8/0x140
[   85.036870][ T6407]  dump_stack+0x15/0x1b
[   85.036889][ T6407]  should_fail_ex+0x265/0x280
[   85.036993][ T6407]  should_fail+0xb/0x20
[   85.037011][ T6407]  should_fail_usercopy+0x1a/0x20
[   85.037099][ T6407]  _copy_from_user+0x1c/0xb0
[   85.037127][ T6407]  ___sys_sendmsg+0xc1/0x1d0
[   85.037226][ T6407]  __x64_sys_sendmsg+0xd4/0x160
[   85.037258][ T6407]  x64_sys_call+0x191e/0x3000
[   85.037285][ T6407]  do_syscall_64+0xd2/0x200
[   85.037310][ T6407]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   85.037370][ T6407]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   85.037419][ T6407]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.037445][ T6407] RIP: 0033:0x7f855759f6c9
[   85.037463][ T6407] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.037490][ T6407] RSP: 002b:00007f8556007038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   85.037510][ T6407] RAX: ffffffffffffffda RBX: 00007f85577f5fa0 RCX: 00007f855759f6c9
[   85.037593][ T6407] RDX: 0000000024000090 RSI: 0000200000000080 RDI: 0000000000000003
[   85.037607][ T6407] RBP: 00007f8556007090 R08: 0000000000000000 R09: 0000000000000000
[   85.037620][ T6407] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   85.037633][ T6407] R13: 00007f85577f6038 R14: 00007f85577f5fa0 R15: 00007ffe6d154c48
[   85.037656][ T6407]  </TASK>
[   85.271017][ T6416] hub 1-0:1.0: USB hub found
[   85.275714][ T6416] hub 1-0:1.0: 8 ports detected
[   85.375527][ T6433] __nla_validate_parse: 6 callbacks suppressed
[   85.375544][ T6433] netlink: 20 bytes leftover after parsing attributes in process `syz.3.964'.
[   85.407041][ T6432] netlink: 64 bytes leftover after parsing attributes in process `syz.4.963'.
[   85.418884][ T6432] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[   85.532197][ T6448] loop4: detected capacity change from 0 to 1024
[   85.553487][ T6448] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   85.564481][ T6448] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   85.578686][ T6448] JBD2: no valid journal superblock found
[   85.584426][ T6448] EXT4-fs (loop4): Could not load journal inode
[   85.645025][ T6443] ALSA: seq fatal error: cannot create timer (-19)
[   85.846584][ T6480] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   85.857000][ T6478] netlink: 19 bytes leftover after parsing attributes in process `syz.1.980'.
[   85.985048][ T6492] loop1: detected capacity change from 0 to 512
[   85.997173][ T6492] EXT4-fs: Ignoring removed i_version option
[   86.003491][ T6492] EXT4-fs: Ignoring removed bh option
[   86.021098][ T6492] ext4 filesystem being mounted at /235/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   86.031973][ T6501] loop4: detected capacity change from 0 to 512
[   86.039451][ T6501] EXT4-fs: Ignoring removed i_version option
[   86.045459][ T6501] EXT4-fs: Ignoring removed bh option
[   86.052798][ T6496] loop3: detected capacity change from 0 to 1024
[   86.060443][ T6496] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   86.075903][ T6501] ext4 filesystem being mounted at /156/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   86.094755][ T6496] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.988: Invalid block bitmap block 0 in block_group 0
[   86.132405][ T6496] __quota_error: 1259 callbacks suppressed
[   86.132418][ T6496] Quota error (device loop3): write_blk: dquota write failed
[   86.145653][ T6496] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[   86.177907][ T6496] EXT4-fs error (device loop3): ext4_acquire_dquot:6945: comm syz.3.988: Failed to acquire dquot type 0
[   86.190249][ T6496] EXT4-fs error (device loop3): ext4_free_blocks:6706: comm syz.3.988: Freeing blocks not in datazone - block = 0, count = 4096
[   86.204361][ T6496] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.988: Invalid inode bitmap blk 0 in block_group 0
[   86.217014][   T31] Quota error (device loop3): do_check_range: Getting block 0 out of range 1-7
[   86.225988][   T31] EXT4-fs error (device loop3): ext4_release_dquot:6981: comm kworker/u8:1: Failed to release dquot type 0
[   86.240415][ T6496] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[   86.249530][ T6496] EXT4-fs (loop3): 1 orphan inode deleted
[   86.278905][ T6492] vhci_hcd: invalid port number 96
[   86.284087][ T6492] vhci_hcd: default hub control req: 2000 vfffc i0060 l7
[   86.354519][ T6512] netlink: 'syz.3.993': attribute type 1 has an invalid length.
[   86.372839][ T6501] xt_bpf: check failed: parse error
[   86.379264][ T6501] vhci_hcd: invalid port number 96
[   86.382607][ T6512] 8021q: adding VLAN 0 to HW filter on device bond1
[   86.384386][ T6501] vhci_hcd: default hub control req: 2000 vfffc i0060 l7
[   86.404618][ T6512] netlink: 4 bytes leftover after parsing attributes in process `syz.3.993'.
[   86.416364][ T6512] bond1 (unregistering): Released all slaves
[   86.497489][   T29] audit: type=1326 audit(1762761173.313:6344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6521 comm="syz.3.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[   86.512013][ T6522] netlink: 19 bytes leftover after parsing attributes in process `syz.3.997'.
[   86.520853][   T29] audit: type=1326 audit(1762761173.313:6345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6521 comm="syz.3.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[   86.554178][   T29] audit: type=1326 audit(1762761173.313:6346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6521 comm="syz.3.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=238 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[   86.577631][   T29] audit: type=1326 audit(1762761173.313:6347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6521 comm="syz.3.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[   86.601072][   T29] audit: type=1326 audit(1762761173.313:6348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6521 comm="syz.3.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[   86.624590][   T29] audit: type=1326 audit(1762761173.333:6349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6521 comm="syz.3.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[   86.647955][   T29] audit: type=1326 audit(1762761173.333:6350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6521 comm="syz.3.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[   86.718813][ T6536] loop5: detected capacity change from 0 to 512
[   86.754123][ T6536] EXT4-fs: Ignoring removed i_version option
[   86.760285][ T6536] EXT4-fs: Ignoring removed bh option
[   86.791110][ T6536] ext4 filesystem being mounted at /148/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   86.806563][ T6550] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   86.872002][ T6556] veth12: entered promiscuous mode
[   86.877141][ T6556] veth12: entered allmulticast mode
[   86.904532][ T6556] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   86.911821][ T6558] veth14: entered promiscuous mode
[   86.916938][ T6558] veth14: entered allmulticast mode
[   86.970094][ T3415] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[   86.980637][ T3415] hid-generic 0000:0000:0000.0012: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   86.997292][ T6558] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   87.075404][ T6572] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1018'.
[   87.086518][ T6572] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[   87.109003][ T6536] vhci_hcd: invalid port number 96
[   87.114159][ T6536] vhci_hcd: default hub control req: 2000 vfffc i0060 l7
[   87.132045][ T6578] ieee802154 phy1 wpan1: encryption failed: -22
[   87.140987][ T6578] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[   87.192521][ T6582] loop1: detected capacity change from 0 to 1024
[   87.257010][ T6588] veth14: entered promiscuous mode
[   87.262231][ T6588] veth14: entered allmulticast mode
[   87.310853][ T6589] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   87.508431][ T6591] loop5: detected capacity change from 0 to 512
[   87.532433][ T6591] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1026: bg 0: block 248: padding at end of block bitmap is not set
[   87.566036][ T6591] EXT4-fs error (device loop5): ext4_acquire_dquot:6945: comm syz.5.1026: Failed to acquire dquot type 1
[   87.643484][ T6591] EXT4-fs (loop5): 1 truncate cleaned up
[   87.650016][ T6591] ext4 filesystem being mounted at /149/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   87.667640][ T6608] loop4: detected capacity change from 0 to 1024
[   87.691145][ T6591] EXT4-fs error (device loop5): ext4_lookup:1791: inode #2: comm syz.5.1026: deleted inode referenced: 12
[   87.706308][ T6591] netlink: 'syz.5.1026': attribute type 1 has an invalid length.
[   87.714114][ T6591] netlink: 224 bytes leftover after parsing attributes in process `syz.5.1026'.
[   87.737491][ T6608] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4193: comm syz.4.1033: Allocating blocks 449-513 which overlap fs metadata
[   87.768619][ T6607] EXT4-fs (loop4): pa ffff888106ecbaf0: logic 48, phys. 177, len 21
[   87.776621][ T6607] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4
[   87.869092][ T6627] ieee802154 phy1 wpan1: encryption failed: -22
[   87.889266][ T6627] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[   88.040610][ T6645] loop4: detected capacity change from 0 to 1024
[   88.074967][ T6633] netlink: 14 bytes leftover after parsing attributes in process `syz.0.1043'.
[   88.082248][ T6645] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4193: comm syz.4.1049: Allocating blocks 449-513 which overlap fs metadata
[   88.101335][ T6633] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   88.112876][ T6644] EXT4-fs (loop4): pa ffff88810552e3f0: logic 48, phys. 177, len 21
[   88.121491][ T6644] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4
[   88.133220][ T6633] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   88.159541][ T6633] bond0 (unregistering): Released all slaves
[   88.175199][ T6653] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1051'.
[   88.184174][ T6653] netem: unknown loss type 13
[   88.188934][ T6653] netem: change failed
[   88.257124][ T6658] loop1: detected capacity change from 0 to 512
[   88.264010][ T6658] EXT4-fs: dax option not supported
[   88.328385][ T6663] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=6663 comm=syz.1.1055
[   88.354066][ T6662] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=6662 comm=syz.1.1055
[   88.366737][ T6667] lo speed is unknown, defaulting to 1000
[   88.417348][ T6667] lo speed is unknown, defaulting to 1000
[   88.531855][ T6683] loop4: detected capacity change from 0 to 1024
[   88.564552][ T6683] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4193: comm syz.4.1062: Allocating blocks 449-513 which overlap fs metadata
[   88.581212][ T6682] EXT4-fs (loop4): pa ffff88810552e540: logic 48, phys. 177, len 21
[   88.589788][ T6682] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4
[   88.631794][ T6690] loop4: detected capacity change from 0 to 1024
[   88.642389][ T6690] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   88.659227][ T6690] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.1063: Invalid block bitmap block 0 in block_group 0
[   88.673225][ T6690] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.1063: Failed to acquire dquot type 0
[   88.685139][ T6690] EXT4-fs error (device loop4): ext4_free_blocks:6706: comm syz.4.1063: Freeing blocks not in datazone - block = 0, count = 4096
[   88.698647][ T6690] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.1063: Invalid inode bitmap blk 0 in block_group 0
[   88.711446][ T6690] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[   88.720127][   T31] EXT4-fs error (device loop4): ext4_release_dquot:6981: comm kworker/u8:1: Failed to release dquot type 0
[   88.720506][ T6690] EXT4-fs (loop4): 1 orphan inode deleted
[   88.827800][ T6695] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1064'.
[   88.836822][ T6695] netem: unknown loss type 13
[   88.840169][ T6697] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   88.841527][ T6695] netem: change failed
[   88.902878][ T6695] loop4: detected capacity change from 0 to 512
[   88.909758][ T6695] EXT4-fs: dax option not supported
[   88.945919][ T6707] hub 1-0:1.0: USB hub found
[   88.950841][ T6705] loop4: detected capacity change from 0 to 512
[   88.956536][ T6707] hub 1-0:1.0: 8 ports detected
[   88.986006][ T6705] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1070: bg 0: block 248: padding at end of block bitmap is not set
[   89.003015][ T6705] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.1070: Failed to acquire dquot type 1
[   89.014865][ T6705] EXT4-fs (loop4): 1 truncate cleaned up
[   89.021332][ T6705] ext4 filesystem being mounted at /172/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   89.035846][ T6705] EXT4-fs error (device loop4): ext4_lookup:1791: inode #2: comm syz.4.1070: deleted inode referenced: 12
[   89.067138][ T6705] netlink: 'syz.4.1070': attribute type 1 has an invalid length.
[   89.130742][ T6725] loop0: detected capacity change from 0 to 1024
[   89.159965][ T6728] veth6: entered promiscuous mode
[   89.165059][ T6728] veth6: entered allmulticast mode
[   89.193495][   T36] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[   89.206557][ T6725] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4193: comm syz.0.1073: Allocating blocks 449-513 which overlap fs metadata
[   89.220756][   T36] hid-generic 0000:0000:0000.0013: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   89.233236][ T6720] EXT4-fs (loop0): pa ffff888106ecbc40: logic 48, phys. 177, len 21
[   89.241665][ T6720] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4
[   89.261044][ T6728] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   89.312639][ T6737] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   89.535425][ T6757] loop3: detected capacity change from 0 to 512
[   89.553761][ T6755] loop0: detected capacity change from 0 to 128
[   89.563677][ T6757] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1084: bg 0: block 248: padding at end of block bitmap is not set
[   89.587222][ T6757] EXT4-fs error (device loop3): ext4_acquire_dquot:6945: comm syz.3.1084: Failed to acquire dquot type 1
[   89.601551][ T6757] EXT4-fs (loop3): 1 truncate cleaned up
[   89.607810][ T6757] ext4 filesystem being mounted at /268/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   89.622872][ T6757] EXT4-fs error (device loop3): ext4_lookup:1791: inode #2: comm syz.3.1084: deleted inode referenced: 12
[   89.637529][ T6757] netlink: 'syz.3.1084': attribute type 1 has an invalid length.
[   89.727651][ T6766] loop0: detected capacity change from 0 to 1024
[   89.767092][ T6771] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   89.793481][ T6766] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4193: comm syz.0.1087: Allocating blocks 449-513 which overlap fs metadata
[   89.812838][ T6765] EXT4-fs (loop0): pa ffff88810552e4d0: logic 48, phys. 177, len 21
[   89.820867][ T6765] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4
[   89.917447][   T10] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[   89.939089][   T10] hid-generic 0000:0000:0000.0014: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   90.165054][ T6798] loop5: detected capacity change from 0 to 512
[   90.210734][ T6798] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1099: bg 0: block 248: padding at end of block bitmap is not set
[   90.247023][ T6805] veth4: entered promiscuous mode
[   90.252090][ T6805] veth4: entered allmulticast mode
[   90.271383][ T6805] !yz!: rxe_newlink: already configured on team_slave_0
[   90.305137][ T6807] loop0: detected capacity change from 0 to 1024
[   90.325485][ T6798] EXT4-fs error (device loop5): ext4_acquire_dquot:6945: comm syz.5.1099: Failed to acquire dquot type 1
[   90.337704][ T6798] EXT4-fs (loop5): 1 truncate cleaned up
[   90.356268][ T6798] ext4 filesystem being mounted at /159/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   90.360818][ T6812] veth8: entered promiscuous mode
[   90.371545][ T6812] veth8: entered allmulticast mode
[   90.384177][ T6807] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4193: comm syz.0.1102: Allocating blocks 449-513 which overlap fs metadata
[   90.402061][ T6798] EXT4-fs error (device loop5): ext4_lookup:1791: inode #2: comm syz.5.1099: deleted inode referenced: 12
[   90.415280][ T6806] EXT4-fs (loop0): pa ffff888106ecbd20: logic 48, phys. 177, len 21
[   90.423369][ T6806] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4
[   90.441729][ T6798] netlink: 'syz.5.1099': attribute type 1 has an invalid length.
[   90.449571][ T6798] __nla_validate_parse: 4 callbacks suppressed
[   90.449583][ T6798] netlink: 224 bytes leftover after parsing attributes in process `syz.5.1099'.
[   90.484972][ T6812] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   90.663390][ T6838] netlink: 'syz.5.1112': attribute type 1 has an invalid length.
[   90.692607][ T6838] 8021q: adding VLAN 0 to HW filter on device bond1
[   90.710000][ T6838] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1112'.
[   90.717242][ T6844] loop0: detected capacity change from 0 to 1024
[   90.730193][ T6838] bond1 (unregistering): Released all slaves
[   90.772853][ T6844] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4193: comm syz.0.1114: Allocating blocks 449-513 which overlap fs metadata
[   90.781304][ T6851] loop3: detected capacity change from 0 to 1024
[   90.794165][ T6851] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   90.810894][ T6851] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.1115: Invalid block bitmap block 0 in block_group 0
[   90.828471][ T6851] EXT4-fs error (device loop3): ext4_acquire_dquot:6945: comm syz.3.1115: Failed to acquire dquot type 0
[   90.845392][ T6851] EXT4-fs error (device loop3): ext4_free_blocks:6706: comm syz.3.1115: Freeing blocks not in datazone - block = 0, count = 4096
[   90.865315][ T6843] EXT4-fs (loop0): pa ffff888106ecbcb0: logic 48, phys. 177, len 21
[   90.873558][ T6843] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4
[   90.881269][ T6851] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.1115: Invalid inode bitmap blk 0 in block_group 0
[   90.898369][ T3960] EXT4-fs error (device loop3): ext4_release_dquot:6981: comm kworker/u8:8: Failed to release dquot type 0
[   90.913928][ T6851] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[   90.926392][ T6854] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   90.927423][ T6851] EXT4-fs (loop3): 1 orphan inode deleted
[   90.956587][ T6858] loop0: detected capacity change from 0 to 512
[   90.982756][ T6861] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   91.006933][ T6858] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1118: bg 0: block 248: padding at end of block bitmap is not set
[   91.042272][ T6866] netlink: 'syz.4.1121': attribute type 1 has an invalid length.
[   91.048754][ T6858] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.1118: Failed to acquire dquot type 1
[   91.061780][ T6858] EXT4-fs (loop0): 1 truncate cleaned up
[   91.067799][ T6858] ext4 filesystem being mounted at /198/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   91.084558][ T6858] EXT4-fs error (device loop0): ext4_lookup:1791: inode #2: comm syz.0.1118: deleted inode referenced: 12
[   91.099597][ T6858] netlink: 'syz.0.1118': attribute type 1 has an invalid length.
[   91.107321][ T6858] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1118'.
[   91.107765][ T6866] 8021q: adding VLAN 0 to HW filter on device bond1
[   91.130446][ T6877] ieee802154 phy1 wpan1: encryption failed: -22
[   91.137182][ T6879] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1121'.
[   91.138441][ T6877] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[   91.164759][ T6879] bond1 (unregistering): Released all slaves
[   91.220696][ T6884] 9pnet: Could not find request transport: tc
[   91.230212][ T6889] netlink: 'syz.3.1127': attribute type 1 has an invalid length.
[   91.259482][ T6889] 8021q: adding VLAN 0 to HW filter on device bond1
[   91.261736][ T6894] loop1: detected capacity change from 0 to 1024
[   91.276060][ T6889] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1127'.
[   91.298382][ T6889] bond1 (unregistering): Released all slaves
[   91.336158][ T6894] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4193: comm syz.1.1128: Allocating blocks 449-513 which overlap fs metadata
[   91.361067][ T6904] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   91.387166][ T6893] EXT4-fs (loop1): pa ffff88810552e620: logic 48, phys. 177, len 21
[   91.395302][ T6893] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4
[   91.430340][ T6914] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   91.449901][   T29] kauditd_printk_skb: 847 callbacks suppressed
[   91.449915][   T29] audit: type=1326 audit(1762761178.273:7182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6915 comm="syz.1.1136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98f641f6c9 code=0x7ffc0000
[   91.479572][   T29] audit: type=1326 audit(1762761178.273:7183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6915 comm="syz.1.1136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f98f641df10 code=0x7ffc0000
[   91.502992][   T29] audit: type=1326 audit(1762761178.273:7184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6915 comm="syz.1.1136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98f641f6c9 code=0x7ffc0000
[   91.526494][   T29] audit: type=1326 audit(1762761178.273:7185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6915 comm="syz.1.1136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=295 compat=0 ip=0x7f98f641f6c9 code=0x7ffc0000
[   91.549985][   T29] audit: type=1326 audit(1762761178.273:7186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6915 comm="syz.1.1136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98f641f6c9 code=0x7ffc0000
[   91.573570][   T29] audit: type=1326 audit(1762761178.273:7187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6915 comm="syz.1.1136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98f641f6c9 code=0x7ffc0000
[   91.608271][ T6920] tipc: Resetting bearer <eth:syzkaller0>
[   91.622933][ T6913] tipc: Disabling bearer <eth:syzkaller0>
[   91.650975][ T6926] netlink: 'syz.3.1140': attribute type 39 has an invalid length.
[   91.753584][ T6942] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   91.801797][ T6950] loop0: detected capacity change from 0 to 1024
[   91.847020][ T6950] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4193: comm syz.0.1146: Allocating blocks 449-513 which overlap fs metadata
[   91.861677][   T29] audit: type=1326 audit(1762761178.683:7188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6956 comm="syz.3.1147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[   91.862981][ T6949] EXT4-fs (loop0): pa ffff888106ecbd90: logic 48, phys. 177, len 21
[   91.893252][ T6949] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4
[   91.927169][ T6959] netlink: 'syz.1.1148': attribute type 39 has an invalid length.
[   91.929729][   T29] audit: type=1326 audit(1762761178.713:7189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6956 comm="syz.3.1147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2d2641df10 code=0x7ffc0000
[   91.958529][   T29] audit: type=1326 audit(1762761178.713:7190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6956 comm="syz.3.1147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[   91.981922][   T29] audit: type=1326 audit(1762761178.713:7191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6956 comm="syz.3.1147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=295 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[   92.021449][ T6966] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1151'.
[   92.030516][ T6966] team0: No ports can be present during mode change
[   92.038754][ T6966] sch_tbf: burst 3298 is lower than device lo mtu (11337746) !
[   92.135705][ T6977] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[   92.158369][ T6979] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   92.193997][ T6982] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1159'.
[   92.202915][ T6982] netlink: 348 bytes leftover after parsing attributes in process `syz.0.1159'.
[   92.212034][ T6982] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1159'.
[   92.220912][ T6982] netlink: 348 bytes leftover after parsing attributes in process `syz.0.1159'.
[   92.230053][ T6983] 9pnet: Could not find request transport: tc
[   92.308134][ T6994] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=513 sclass=netlink_route_socket pid=6994 comm=syz.5.1162
[   92.325975][ T6986] loop4: detected capacity change from 0 to 128
[   92.376090][ T6994] loop5: detected capacity change from 0 to 512
[   92.397471][ T6994] ext4 filesystem being mounted at /168/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   92.505931][ T6994] lo speed is unknown, defaulting to 1000
[   92.629962][ T7012] hub 1-0:1.0: USB hub found
[   92.634995][ T7012] hub 1-0:1.0: 8 ports detected
[   92.796390][ T6994] lo speed is unknown, defaulting to 1000
[   92.993114][ T7025] hub 1-0:1.0: USB hub found
[   93.038234][ T7025] hub 1-0:1.0: 8 ports detected
[   93.121185][ T7031] loop3: detected capacity change from 0 to 128
[   93.351341][ T7046] loop3: detected capacity change from 0 to 1024
[   93.366545][ T7046] EXT4-fs: inline encryption not supported
[   93.431440][ T7052] validate_nla: 1 callbacks suppressed
[   93.431455][ T7052] netlink: 'syz.4.1183': attribute type 39 has an invalid length.
[   93.446986][ T7046] EXT4-fs error (device loop3): ext4_add_entry:2417: inode #2: comm syz.3.1180: Directory hole found for htree leaf block 0
[   93.468869][ T7046] EXT4-fs (loop3): Remounting filesystem read-only
[   93.685669][ T7067] loop4: detected capacity change from 0 to 512
[   93.710760][ T7067] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1187: bg 0: block 248: padding at end of block bitmap is not set
[   93.725622][ T7067] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.1187: Failed to acquire dquot type 1
[   93.737689][ T7067] EXT4-fs (loop4): 1 truncate cleaned up
[   93.743810][ T7067] ext4 filesystem being mounted at /195/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   93.764149][ T7067] EXT4-fs error (device loop4): ext4_lookup:1791: inode #2: comm syz.4.1187: deleted inode referenced: 12
[   93.786112][ T7067] netlink: 'syz.4.1187': attribute type 1 has an invalid length.
[   93.830308][ T7076] loop0: detected capacity change from 0 to 128
[   93.946519][ T7083] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[   94.045060][ T7091] hub 1-0:1.0: USB hub found
[   94.050865][ T7091] hub 1-0:1.0: 8 ports detected
[   94.187763][ T7104] mmap: syz.3.1200 (7104) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   94.415177][ T7121] loop1: detected capacity change from 0 to 1024
[   94.448344][ T7121] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4193: comm syz.1.1208: Allocating blocks 449-513 which overlap fs metadata
[   94.463810][ T7120] EXT4-fs (loop1): pa ffff888106ecbcb0: logic 48, phys. 177, len 21
[   94.471813][ T7120] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4
[   95.247968][ T7150] loop5: detected capacity change from 0 to 1024
[   95.293129][ T7150] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4193: comm syz.5.1219: Allocating blocks 449-513 which overlap fs metadata
[   95.309181][ T7149] EXT4-fs (loop5): pa ffff888106ecbd90: logic 48, phys. 177, len 21
[   95.317182][ T7149] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4
[   95.392533][ T7155] loop5: detected capacity change from 0 to 512
[   95.403471][ T7155] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[   95.415153][ T7155] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[   95.430087][ T7155] EXT4-fs (loop5): 1 truncate cleaned up
[   95.436526][ T7155] EXT4-fs mount: 88 callbacks suppressed
[   95.436538][ T7155] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   95.487853][ T3980] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.521420][ T3401] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[   95.547378][ T3401] hid-generic 0000:0000:0000.0015: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   95.791498][ T7167] __nla_validate_parse: 16 callbacks suppressed
[   95.791510][ T7167] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1225'.
[   95.806819][ T7167] netem: unknown loss type 13
[   95.811577][ T7167] netem: change failed
[   96.085634][ T7179] loop4: detected capacity change from 0 to 1024
[   96.137014][ T7179] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   96.306197][ T7179] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4193: comm syz.4.1230: Allocating blocks 449-513 which overlap fs metadata
[   96.341949][ T7177] EXT4-fs (loop4): pa ffff88810552e690: logic 48, phys. 177, len 21
[   96.349968][ T7177] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4
[   96.498079][ T7203] loop5: detected capacity change from 0 to 512
[   96.518789][ T7203] EXT4-fs: Ignoring removed i_version option
[   96.524917][ T7203] EXT4-fs: Ignoring removed bh option
[   96.625380][ T7203] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   96.646839][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.657703][ T7208] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   96.690659][ T7203] ext4 filesystem being mounted at /183/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   96.888648][ T7225] netlink: 'syz.4.1244': attribute type 1 has an invalid length.
[   96.911407][ T7227] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[   96.942044][ T7229] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1244'.
[   96.989502][ T7225] 8021q: adding VLAN 0 to HW filter on device bond1
[   97.062949][   T29] kauditd_printk_skb: 514 callbacks suppressed
[   97.062963][   T29] audit: type=1326 audit(1762761183.883:7704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7231 comm="syz.1.1247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98f641f6c9 code=0x7ffc0000
[   97.127706][ T7229] bond1 (unregistering): Released all slaves
[   97.144567][   T29] audit: type=1326 audit(1762761183.883:7705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7231 comm="syz.1.1247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98f641f6c9 code=0x7ffc0000
[   97.168071][   T29] audit: type=1326 audit(1762761183.883:7706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7231 comm="syz.1.1247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f98f641f6c9 code=0x7ffc0000
[   97.191564][   T29] audit: type=1326 audit(1762761183.883:7707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7231 comm="syz.1.1247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98f641f6c9 code=0x7ffc0000
[   97.215103][   T29] audit: type=1326 audit(1762761183.883:7708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7231 comm="syz.1.1247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98f641f6c9 code=0x7ffc0000
[   97.238710][   T29] audit: type=1326 audit(1762761183.883:7709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7231 comm="syz.1.1247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f98f641f6c9 code=0x7ffc0000
[   97.253138][ T7239] xt_bpf: check failed: parse error
[   97.262099][   T29] audit: type=1326 audit(1762761183.913:7710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7231 comm="syz.1.1247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98f641f6c9 code=0x7ffc0000
[   97.290697][   T29] audit: type=1326 audit(1762761183.913:7711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7231 comm="syz.1.1247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f98f641f6c9 code=0x7ffc0000
[   97.314172][   T29] audit: type=1326 audit(1762761183.913:7712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7231 comm="syz.1.1247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98f641f6c9 code=0x7ffc0000
[   97.337876][   T29] audit: type=1326 audit(1762761183.913:7713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7231 comm="syz.1.1247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f98f641f6c9 code=0x7ffc0000
[   97.348226][ T7203] vhci_hcd: invalid port number 96
[   97.366384][ T7203] vhci_hcd: default hub control req: 2000 vfffc i0060 l7
[   97.405581][ T7241] loop1: detected capacity change from 0 to 1024
[   97.440828][ T7241] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   97.478960][ T7248] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1252'.
[   97.498968][ T7241] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4193: comm syz.1.1251: Allocating blocks 449-513 which overlap fs metadata
[   97.564491][ T7240] EXT4-fs (loop1): pa ffff88810552e5b0: logic 48, phys. 177, len 21
[   97.572533][ T7240] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4
[   97.578435][ T7252] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1255'.
[   97.588616][ T3980] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.591394][ T7252] netem: unknown loss type 13
[   97.605009][ T7252] netem: change failed
[   97.648800][ T7256] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1253'.
[   97.668057][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.723448][ T7258] loop0: detected capacity change from 0 to 1024
[   97.747531][ T7258] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   97.765119][ T7260] hub 1-0:1.0: USB hub found
[   97.782514][ T7260] hub 1-0:1.0: 8 ports detected
[   97.880527][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.932688][ T7269] netlink: 19 bytes leftover after parsing attributes in process `syz.1.1259'.
[   98.064598][ T7279] loop0: detected capacity change from 0 to 512
[   98.100591][ T7279] EXT4-fs: Ignoring removed i_version option
[   98.106661][ T7279] EXT4-fs: Ignoring removed bh option
[   98.130077][ T7282] netlink: 'syz.4.1265': attribute type 1 has an invalid length.
[   98.133659][ T7279] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   98.144703][ T7282] 8021q: adding VLAN 0 to HW filter on device bond1
[   98.157127][ T7279] ext4 filesystem being mounted at /246/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   98.223644][ T7289] loop4: detected capacity change from 0 to 1024
[   98.312034][ T7289] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   98.326471][ T7299] netlink: 'syz.3.1272': attribute type 39 has an invalid length.
[   98.353735][ T7289] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4193: comm syz.4.1267: Allocating blocks 449-513 which overlap fs metadata
[   98.370401][ T7288] EXT4-fs (loop4): pa ffff88810552e690: logic 48, phys. 177, len 21
[   98.378441][ T7288] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4
[   98.400755][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.423440][ T7305] netlink: 'syz.4.1273': attribute type 1 has an invalid length.
[   98.436951][ T7305] 8021q: adding VLAN 0 to HW filter on device bond2
[   98.446029][ T7305] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1273'.
[   98.457796][ T7305] bond2 (unregistering): Released all slaves
[   98.475726][ T7279] xt_bpf: check failed: parse error
[   98.497307][ T7309] netlink: 'syz.5.1274': attribute type 1 has an invalid length.
[   98.510491][ T7279] vhci_hcd: invalid port number 96
[   98.513391][ T7309] 8021q: adding VLAN 0 to HW filter on device bond1
[   98.515640][ T7279] vhci_hcd: default hub control req: 2000 vfffc i0060 l7
[   98.539836][ T7309] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1274'.
[   98.551558][ T7309] bond1 (unregistering): Released all slaves
[   98.619164][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.659238][ T7320] netlink: 'syz.0.1278': attribute type 1 has an invalid length.
[   98.659366][ T7323] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[   98.693781][ T7324] netlink: 64 bytes leftover after parsing attributes in process `syz.5.1279'.
[   98.709981][ T7320] 8021q: adding VLAN 0 to HW filter on device bond0
[   98.710557][ T7328] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1278'.
[   98.719790][ T7328] bond0 (unregistering): Released all slaves
[   98.748229][ T7324] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[   98.911815][ T7342] netlink: 'syz.0.1286': attribute type 39 has an invalid length.
[   99.047182][ T7348] netem: unknown loss type 13
[   99.051950][ T7348] netem: change failed
[   99.111560][ T7348] loop5: detected capacity change from 0 to 1024
[   99.153121][ T7348] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   99.175237][ T7353] loop1: detected capacity change from 0 to 512
[   99.190603][ T7353] EXT4-fs: Ignoring removed i_version option
[   99.196745][ T7353] EXT4-fs: Ignoring removed bh option
[   99.209686][ T7355] netlink: 'syz.0.1290': attribute type 1 has an invalid length.
[   99.236457][ T7353] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.249502][ T7355] 8021q: adding VLAN 0 to HW filter on device bond0
[   99.284904][ T7355] bond0 (unregistering): Released all slaves
[   99.291247][ T7353] ext4 filesystem being mounted at /296/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   99.324783][ T3980] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.586432][ T7383] netlink: 'syz.4.1300': attribute type 39 has an invalid length.
[   99.652758][ T7353] xt_bpf: check failed: parse error
[   99.689166][ T7353] vhci_hcd: invalid port number 96
[   99.694291][ T7353] vhci_hcd: default hub control req: 2000 vfffc i0060 l7
[   99.743821][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.771366][ T7388] loop1: detected capacity change from 0 to 1024
[   99.790785][ T7388] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   99.819072][ T7388] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4193: comm syz.1.1301: Allocating blocks 449-513 which overlap fs metadata
[   99.834434][ T7387] EXT4-fs (loop1): pa ffff888106ecbe00: logic 48, phys. 177, len 21
[   99.842547][ T7387] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4
[   99.866804][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.891588][ T7394] netlink: 'syz.4.1304': attribute type 1 has an invalid length.
[   99.905319][ T7394] 8021q: adding VLAN 0 to HW filter on device bond2
[   99.916761][ T7394] bond2 (unregistering): Released all slaves
[  100.222030][ T7408] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  100.267488][ T7412] FAULT_INJECTION: forcing a failure.
[  100.267488][ T7412] name failslab, interval 1, probability 0, space 0, times 0
[  100.280320][ T7412] CPU: 0 UID: 0 PID: 7412 Comm: syz.4.1311 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  100.280350][ T7412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  100.280362][ T7412] Call Trace:
[  100.280368][ T7412]  <TASK>
[  100.280374][ T7412]  __dump_stack+0x1d/0x30
[  100.280395][ T7412]  dump_stack_lvl+0xe8/0x140
[  100.280419][ T7412]  dump_stack+0x15/0x1b
[  100.280440][ T7412]  should_fail_ex+0x265/0x280
[  100.280463][ T7412]  should_failslab+0x8c/0xb0
[  100.280505][ T7412]  kmem_cache_alloc_noprof+0x50/0x480
[  100.280539][ T7412]  ? vm_area_alloc+0x2c/0xb0
[  100.280576][ T7412]  vm_area_alloc+0x2c/0xb0
[  100.280611][ T7412]  mmap_region+0xa99/0x1620
[  100.280643][ T7412]  ? __rcu_read_unlock+0x4f/0x70
[  100.280700][ T7412]  do_mmap+0x9b3/0xbe0
[  100.280723][ T7412]  vm_mmap_pgoff+0x17a/0x2e0
[  100.280758][ T7412]  ksys_mmap_pgoff+0xc2/0x310
[  100.280779][ T7412]  ? __x64_sys_mmap+0x49/0x70
[  100.280809][ T7412]  x64_sys_call+0x14a3/0x3000
[  100.280834][ T7412]  do_syscall_64+0xd2/0x200
[  100.280857][ T7412]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  100.280890][ T7412]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  100.280925][ T7412]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.280945][ T7412] RIP: 0033:0x7f855759f6c9
[  100.280961][ T7412] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.280982][ T7412] RSP: 002b:00007f8556007038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  100.281004][ T7412] RAX: ffffffffffffffda RBX: 00007f85577f5fa0 RCX: 00007f855759f6c9
[  100.281019][ T7412] RDX: 0000000002000006 RSI: 0000000000fbe000 RDI: 0000200000000000
[  100.281034][ T7412] RBP: 00007f8556007090 R08: ffffffffffffffff R09: 00000000d0fb8000
[  100.281049][ T7412] R10: 0000000000000031 R11: 0000000000000246 R12: 0000000000000001
[  100.281062][ T7412] R13: 00007f85577f6038 R14: 00007f85577f5fa0 R15: 00007ffe6d154c48
[  100.281082][ T7412]  </TASK>
[  100.514844][ T7416] netlink: 'syz.5.1312': attribute type 39 has an invalid length.
[  100.536603][ T7422] netlink: 'syz.0.1316': attribute type 1 has an invalid length.
[  100.556616][ T7422] 8021q: adding VLAN 0 to HW filter on device bond0
[  100.624487][ T7422] bond0 (unregistering): Released all slaves
[  100.944604][ T7456] __nla_validate_parse: 6 callbacks suppressed
[  100.944621][ T7456] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1327'.
[  101.021511][ T7426] xt_bpf: check failed: parse error
[  101.597376][ T7472] netlink: 'syz.0.1334': attribute type 39 has an invalid length.
[  101.803657][ T7486] netlink: 64 bytes leftover after parsing attributes in process `syz.5.1339'.
[  101.814481][ T7486] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  101.868856][ T7494] loop4: detected capacity change from 0 to 512
[  101.881411][ T7493] loop0: detected capacity change from 0 to 512
[  101.908700][ T7493] EXT4-fs: Ignoring removed i_version option
[  101.914771][ T7493] EXT4-fs: Ignoring removed bh option
[  101.921550][ T7494] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1343: bg 0: block 248: padding at end of block bitmap is not set
[  101.973832][ T7493] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.987594][ T7494] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.1343: Failed to acquire dquot type 1
[  101.988471][ T7493] ext4 filesystem being mounted at /256/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  102.011399][ T7506] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1346'.
[  102.024489][ T7494] EXT4-fs (loop4): 1 truncate cleaned up
[  102.032150][ T7494] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.045978][ T7494] ext4 filesystem being mounted at /234/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  102.071121][ T7494] EXT4-fs error (device loop4): ext4_lookup:1791: inode #2: comm syz.4.1343: deleted inode referenced: 12
[  102.083177][ T7509] hub 1-0:1.0: USB hub found
[  102.087927][ T7509] hub 1-0:1.0: 8 ports detected
[  102.100206][ T7494] netlink: 'syz.4.1343': attribute type 1 has an invalid length.
[  102.107943][ T7494] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1343'.
[  102.249525][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.282549][   T29] kauditd_printk_skb: 469 callbacks suppressed
[  102.282564][   T29] audit: type=1326 audit(1762761189.103:8181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7511 comm="syz.4.1347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f855759f6c9 code=0x7ffc0000
[  102.313055][ T7510] xt_bpf: check failed: parse error
[  102.325575][ T7512] netlink: 64 bytes leftover after parsing attributes in process `syz.4.1347'.
[  102.336640][ T7512] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  102.355127][ T7510] vhci_hcd: invalid port number 96
[  102.360274][ T7510] vhci_hcd: default hub control req: 2000 vfffc i0060 l7
[  102.368622][   T29] audit: type=1326 audit(1762761189.143:8182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7511 comm="syz.4.1347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f855759f6c9 code=0x7ffc0000
[  102.383124][ T7514] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1348'.
[  102.392036][   T29] audit: type=1326 audit(1762761189.143:8183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7511 comm="syz.4.1347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f855759f6c9 code=0x7ffc0000
[  102.392070][   T29] audit: type=1326 audit(1762761189.143:8184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7511 comm="syz.4.1347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f855759f6c9 code=0x7ffc0000
[  102.447935][   T29] audit: type=1326 audit(1762761189.143:8185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7511 comm="syz.4.1347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f855759f6c9 code=0x7ffc0000
[  102.471481][   T29] audit: type=1326 audit(1762761189.143:8186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7511 comm="syz.4.1347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f855759f6c9 code=0x7ffc0000
[  102.494817][   T29] audit: type=1326 audit(1762761189.143:8187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7511 comm="syz.4.1347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f855759f6c9 code=0x7ffc0000
[  102.518332][   T29] audit: type=1326 audit(1762761189.143:8188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7511 comm="syz.4.1347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f855759f6c9 code=0x7ffc0000
[  102.523055][ T7515] hub 1-0:1.0: USB hub found
[  102.541654][   T29] audit: type=1326 audit(1762761189.143:8189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7511 comm="syz.4.1347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f855759f6c9 code=0x7ffc0000
[  102.541691][   T29] audit: type=1326 audit(1762761189.143:8190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7511 comm="syz.4.1347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f855759f6c9 code=0x7ffc0000
[  102.566235][ T7515] hub 1-0:1.0: 8 ports detected
[  102.744388][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.818613][ T7521] ieee802154 phy1 wpan1: encryption failed: -22
[  102.827242][ T7521] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  102.904711][ T7523] netlink: 64 bytes leftover after parsing attributes in process `syz.5.1352'.
[  102.979342][ T7523] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  103.203896][   T36] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  103.213112][   T36] hid-generic 0000:0000:0000.0016: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  103.322062][ T7555] ieee802154 phy1 wpan1: encryption failed: -22
[  103.331653][ T7555] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  103.413772][ T7561] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1365'.
[  103.436128][ T7561] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  103.510215][ T7569] loop1: detected capacity change from 0 to 1024
[  103.517656][ T7571] validate_nla: 1 callbacks suppressed
[  103.517669][ T7571] netlink: 'syz.3.1369': attribute type 1 has an invalid length.
[  103.537101][ T7569] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.545390][ T7571] 8021q: adding VLAN 0 to HW filter on device bond1
[  103.561160][ T7571] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1369'.
[  103.610017][ T7571] bond1 (unregistering): Released all slaves
[  103.833869][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.924604][ T7596] syzkaller0: entered promiscuous mode
[  103.930159][ T7596] syzkaller0: entered allmulticast mode
[  103.932647][ T7593] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1377'.
[  103.954978][ T7593] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  104.063713][ T7603] loop5: detected capacity change from 0 to 128
[  104.250299][ T7620] veth16: entered promiscuous mode
[  104.255466][ T7620] veth16: entered allmulticast mode
[  104.261825][ T7621] hub 1-0:1.0: USB hub found
[  104.276079][ T7621] hub 1-0:1.0: 8 ports detected
[  104.300493][ T7620] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  104.328687][   T58] kworker/u8:4: attempt to access beyond end of device
[  104.328687][   T58] loop5: rw=1, sector=145, nr_sectors = 512 limit=128
[  104.371694][ T2674] kworker/u8:6: attempt to access beyond end of device
[  104.371694][ T2674] loop5: rw=2049, sector=657, nr_sectors = 64 limit=128
[  104.451749][ T2674] kworker/u8:6: attempt to access beyond end of device
[  104.451749][ T2674] loop5: rw=1, sector=721, nr_sectors = 320 limit=128
[  104.494615][ T7632] sch_tbf: burst 3298 is lower than device lo mtu (11337746) !
[  104.556366][ T7642] loop1: detected capacity change from 0 to 512
[  104.565079][ T7642] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  104.597741][ T7642] EXT4-fs (loop1): orphan cleanup on readonly fs
[  104.618821][ T7642] EXT4-fs error (device loop1): ext4_orphan_get:1418: comm syz.1.1397: bad orphan inode 15
[  104.633183][ T7642] ext4_test_bit(bit=14, block=18) = 1
[  104.638627][ T7642] is_bad_inode(inode)=0
[  104.642778][ T7642] NEXT_ORPHAN(inode)=1023
[  104.647154][ T7642] max_ino=32
[  104.650367][ T7642] i_nlink=0
[  104.670479][ T7642] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2967: inode #15: comm syz.1.1397: corrupted xattr block 19: e_value size too large
[  104.685049][ T7642] EXT4-fs warning (device loop1): ext4_evict_inode:274: xattr delete (err -117)
[  104.694763][ T7642] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  104.790548][ T7660] loop5: detected capacity change from 0 to 512
[  104.797231][ T7660] EXT4-fs: Ignoring removed i_version option
[  104.803343][ T7660] EXT4-fs: Ignoring removed bh option
[  104.817266][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.855139][ T7660] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  104.884536][ T7660] ext4 filesystem being mounted at /213/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  105.072270][ T7686] loop0: detected capacity change from 0 to 1024
[  105.085467][ T7686] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  105.120430][ T7686] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.1415: Invalid block bitmap block 0 in block_group 0
[  105.134406][ T7696] loop4: detected capacity change from 0 to 512
[  105.143208][ T7696] EXT4-fs: Ignoring removed i_version option
[  105.149390][ T7696] EXT4-fs: Ignoring removed bh option
[  105.157855][ T7686] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.1415: Failed to acquire dquot type 0
[  105.177141][ T7686] EXT4-fs error (device loop0): ext4_free_blocks:6706: comm syz.0.1415: Freeing blocks not in datazone - block = 0, count = 4096
[  105.191517][ T7694] xt_bpf: check failed: parse error
[  105.197755][ T7686] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.1415: Invalid inode bitmap blk 0 in block_group 0
[  105.210928][   T31] EXT4-fs error (device loop0): ext4_release_dquot:6981: comm kworker/u8:1: Failed to release dquot type 0
[  105.227070][ T7694] vhci_hcd: invalid port number 96
[  105.232401][ T7694] vhci_hcd: default hub control req: 2000 vfffc i0060 l7
[  105.240860][ T7686] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[  105.241993][ T7696] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.262089][ T7686] EXT4-fs (loop0): 1 orphan inode deleted
[  105.267808][ T7696] ext4 filesystem being mounted at /241/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  105.268411][ T7686] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.323686][ T7709] loop1: detected capacity change from 0 to 512
[  105.343508][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.384936][ T7709] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1424: bg 0: block 248: padding at end of block bitmap is not set
[  105.411879][ T7709] EXT4-fs error (device loop1): ext4_acquire_dquot:6945: comm syz.1.1424: Failed to acquire dquot type 1
[  105.433871][ T7709] EXT4-fs (loop1): 1 truncate cleaned up
[  105.452318][ T7709] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.467835][ T7709] ext4 filesystem being mounted at /330/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  105.477257][ T7717] loop0: detected capacity change from 0 to 512
[  105.495229][ T7717] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  105.510007][ T7717] EXT4-fs (loop0): orphan cleanup on readonly fs
[  105.516930][ T7709] EXT4-fs error (device loop1): ext4_lookup:1791: inode #2: comm syz.1.1424: deleted inode referenced: 12
[  105.523147][ T7717] EXT4-fs error (device loop0): ext4_orphan_get:1418: comm syz.0.1427: bad orphan inode 15
[  105.538473][ T7717] ext4_test_bit(bit=14, block=18) = 1
[  105.543865][ T7717] is_bad_inode(inode)=0
[  105.548091][ T7717] NEXT_ORPHAN(inode)=1023
[  105.552466][ T7717] max_ino=32
[  105.555654][ T7717] i_nlink=0
[  105.558952][ T7717] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2967: inode #15: comm syz.0.1427: corrupted xattr block 19: e_value size too large
[  105.573802][ T7718] xt_bpf: check failed: parse error
[  105.580351][ T7717] EXT4-fs warning (device loop0): ext4_evict_inode:274: xattr delete (err -117)
[  105.590147][ T7717] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  105.592954][ T7709] netlink: 'syz.1.1424': attribute type 1 has an invalid length.
[  105.609146][ T7718] vhci_hcd: invalid port number 96
[  105.614965][ T7718] vhci_hcd: default hub control req: 2000 vfffc i0060 l7
[  105.662742][ T3980] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.750978][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.820058][ T7736] FAULT_INJECTION: forcing a failure.
[  105.820058][ T7736] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  105.833233][ T7736] CPU: 1 UID: 0 PID: 7736 Comm: syz.5.1435 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  105.833251][ T7736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  105.833388][ T7736] Call Trace:
[  105.833391][ T7736]  <TASK>
[  105.833396][ T7736]  __dump_stack+0x1d/0x30
[  105.833411][ T7736]  dump_stack_lvl+0xe8/0x140
[  105.833424][ T7736]  dump_stack+0x15/0x1b
[  105.833435][ T7736]  should_fail_ex+0x265/0x280
[  105.833448][ T7736]  should_fail+0xb/0x20
[  105.833529][ T7736]  should_fail_usercopy+0x1a/0x20
[  105.833557][ T7736]  _copy_from_user+0x1c/0xb0
[  105.833575][ T7736]  do_sys_poll+0x149/0xbd0
[  105.833595][ T7736]  ? avc_has_perm+0xf7/0x180
[  105.833633][ T7736]  ? timespec64_add_safe+0x106/0x150
[  105.833649][ T7736]  ? set_user_sigmask+0x84/0x190
[  105.833808][ T7736]  __se_sys_ppoll+0x1b9/0x200
[  105.833826][ T7736]  __x64_sys_ppoll+0x67/0x80
[  105.833842][ T7736]  x64_sys_call+0x1d52/0x3000
[  105.833856][ T7736]  do_syscall_64+0xd2/0x200
[  105.833881][ T7736]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  105.833899][ T7736]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  105.833936][ T7736]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.833949][ T7736] RIP: 0033:0x7f16c14df6c9
[  105.834031][ T7736] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.834043][ T7736] RSP: 002b:00007f16bff47038 EFLAGS: 00000246 ORIG_RAX: 000000000000010f
[  105.834055][ T7736] RAX: ffffffffffffffda RBX: 00007f16c1735fa0 RCX: 00007f16c14df6c9
[  105.834063][ T7736] RDX: 0000200000000300 RSI: 20000000000000e0 RDI: 0000200000000d40
[  105.834071][ T7736] RBP: 00007f16bff47090 R08: 0000000000000000 R09: 0000000000000000
[  105.834133][ T7736] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  105.834140][ T7736] R13: 00007f16c1736038 R14: 00007f16c1735fa0 R15: 00007ffe96246b48
[  105.834177][ T7736]  </TASK>
[  106.063935][ T7739] loop5: detected capacity change from 0 to 512
[  106.084124][ T7742] loop1: detected capacity change from 0 to 512
[  106.108348][ T7742] EXT4-fs: Ignoring removed i_version option
[  106.110085][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.114419][ T7742] EXT4-fs: Ignoring removed bh option
[  106.131678][ T7739] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1436: bg 0: block 248: padding at end of block bitmap is not set
[  106.146793][ T7739] EXT4-fs error (device loop5): ext4_acquire_dquot:6945: comm syz.5.1436: Failed to acquire dquot type 1
[  106.151841][ T7742] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.158537][ T7739] EXT4-fs (loop5): 1 truncate cleaned up
[  106.176537][ T7739] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.189206][ T7739] ext4 filesystem being mounted at /220/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  106.194629][ T7742] ext4 filesystem being mounted at /333/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  106.217619][ T7739] EXT4-fs error (device loop5): ext4_lookup:1791: inode #2: comm syz.5.1436: deleted inode referenced: 12
[  106.232942][ T7739] netlink: 'syz.5.1436': attribute type 1 has an invalid length.
[  106.240797][ T7739] __nla_validate_parse: 7 callbacks suppressed
[  106.240810][ T7739] netlink: 224 bytes leftover after parsing attributes in process `syz.5.1436'.
[  106.314684][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.330789][ T3980] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.558465][ T7764] xt_bpf: check failed: parse error
[  106.560898][ T7770] loop0: detected capacity change from 0 to 1024
[  106.573657][ T7770] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  106.589050][ T7764] vhci_hcd: invalid port number 96
[  106.594185][ T7764] vhci_hcd: default hub control req: 2000 vfffc i0060 l7
[  106.595754][ T7770] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.1450: Invalid block bitmap block 0 in block_group 0
[  106.616277][ T7770] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.1450: Failed to acquire dquot type 0
[  106.627881][ T7770] EXT4-fs error (device loop0): ext4_free_blocks:6706: comm syz.0.1450: Freeing blocks not in datazone - block = 0, count = 4096
[  106.641432][ T7770] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.1450: Invalid inode bitmap blk 0 in block_group 0
[  106.654171][ T7770] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[  106.664973][ T3960] EXT4-fs error (device loop0): ext4_release_dquot:6981: comm kworker/u8:8: Failed to release dquot type 0
[  106.676557][ T7770] EXT4-fs (loop0): 1 orphan inode deleted
[  106.682698][ T7770] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.722349][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.906926][ T7795] veth4: entered promiscuous mode
[  106.912080][ T7795] veth4: entered allmulticast mode
[  106.926292][ T7797] loop0: detected capacity change from 0 to 1024
[  106.941898][ T7795] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  106.963507][ T7797] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.001174][ T7802] netlink: 'syz.5.1462': attribute type 39 has an invalid length.
[  107.269594][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.290371][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.355930][   T36] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[  107.370356][   T29] kauditd_printk_skb: 836 callbacks suppressed
[  107.370371][   T29] audit: type=1326 audit(1762761194.193:9017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7811 comm="syz.3.1467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[  107.372407][ T7812] netlink: 19 bytes leftover after parsing attributes in process `syz.3.1467'.
[  107.376603][   T29] audit: type=1326 audit(1762761194.193:9018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7811 comm="syz.3.1467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=238 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[  107.432330][   T29] audit: type=1326 audit(1762761194.193:9019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7811 comm="syz.3.1467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[  107.455812][   T29] audit: type=1326 audit(1762761194.193:9020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7811 comm="syz.3.1467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[  107.479231][   T29] audit: type=1326 audit(1762761194.193:9021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7811 comm="syz.3.1467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[  107.502723][   T29] audit: type=1326 audit(1762761194.193:9022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7811 comm="syz.3.1467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[  107.526170][   T29] audit: type=1326 audit(1762761194.193:9023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7811 comm="syz.3.1467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[  107.558470][   T36] hid-generic 0000:0000:0000.0017: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  107.692106][   T29] audit: type=1326 audit(1762761194.193:9024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7811 comm="syz.3.1467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[  107.715583][   T29] audit: type=1326 audit(1762761194.193:9025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7811 comm="syz.3.1467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[  107.739128][   T29] audit: type=1326 audit(1762761194.193:9026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7811 comm="syz.3.1467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[  107.793514][ T7833] veth6: entered promiscuous mode
[  107.798601][ T7833] veth6: entered allmulticast mode
[  107.845913][ T7833] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  107.865989][ T7841] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1476'.
[  107.874986][ T7841] netem: unknown loss type 13
[  107.879695][ T7841] netem: change failed
[  107.913512][ T7843] loop5: detected capacity change from 0 to 1024
[  107.922842][ T7843] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  107.949680][ T7843] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.1477: Invalid block bitmap block 0 in block_group 0
[  107.967702][ T7843] EXT4-fs error (device loop5): ext4_acquire_dquot:6945: comm syz.5.1477: Failed to acquire dquot type 0
[  107.988415][ T7843] EXT4-fs error (device loop5): ext4_free_blocks:6706: comm syz.5.1477: Freeing blocks not in datazone - block = 0, count = 4096
[  108.009770][ T7845] loop1: detected capacity change from 0 to 1024
[  108.041560][ T7845] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  108.054094][ T7843] EXT4-fs error (device loop5): ext4_read_inode_bitmap:139: comm syz.5.1477: Invalid inode bitmap blk 0 in block_group 0
[  108.071150][   T12] EXT4-fs error (device loop5): ext4_release_dquot:6981: comm kworker/u8:0: Failed to release dquot type 0
[  108.089354][ T7843] EXT4-fs error (device loop5) in ext4_free_inode:361: Corrupt filesystem
[  108.102482][ T7843] EXT4-fs (loop5): 1 orphan inode deleted
[  108.108703][ T7843] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.141952][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.152906][ T3980] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.211290][ T7850] netlink: 64 bytes leftover after parsing attributes in process `syz.1.1478'.
[  108.224589][ T7850] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  108.249353][ T7838] xt_bpf: check failed: parse error
[  108.300114][ T7858] netlink: 19 bytes leftover after parsing attributes in process `syz.1.1482'.
[  108.359252][ T7867] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1486'.
[  108.360113][ T7865] syzkaller0: entered promiscuous mode
[  108.373794][ T7865] syzkaller0: entered allmulticast mode
[  108.455304][ T7871] hub 1-0:1.0: USB hub found
[  108.468308][ T7871] hub 1-0:1.0: 8 ports detected
[  108.486124][ T7873] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1488'.
[  108.495262][ T7873] netem: unknown loss type 13
[  108.500085][ T7873] netem: change failed
[  108.544315][ T7873] loop1: detected capacity change from 0 to 1024
[  108.560657][ T7873] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  108.591546][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.678119][ T7885] FAULT_INJECTION: forcing a failure.
[  108.678119][ T7885] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  108.691356][ T7885] CPU: 1 UID: 0 PID: 7885 Comm: syz.1.1492 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  108.691408][ T7885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  108.691424][ T7885] Call Trace:
[  108.691432][ T7885]  <TASK>
[  108.691440][ T7885]  __dump_stack+0x1d/0x30
[  108.691465][ T7885]  dump_stack_lvl+0xe8/0x140
[  108.691565][ T7885]  dump_stack+0x15/0x1b
[  108.691587][ T7885]  should_fail_ex+0x265/0x280
[  108.691615][ T7885]  should_fail+0xb/0x20
[  108.691635][ T7885]  should_fail_usercopy+0x1a/0x20
[  108.691668][ T7885]  _copy_from_user+0x1c/0xb0
[  108.691740][ T7885]  autofs_dev_ioctl+0xdd/0x6a0
[  108.691764][ T7885]  ? __pfx_autofs_dev_ioctl+0x10/0x10
[  108.691785][ T7885]  __se_sys_ioctl+0xce/0x140
[  108.691813][ T7885]  __x64_sys_ioctl+0x43/0x50
[  108.691839][ T7885]  x64_sys_call+0x1816/0x3000
[  108.691941][ T7885]  do_syscall_64+0xd2/0x200
[  108.691966][ T7885]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  108.692051][ T7885]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  108.692093][ T7885]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.692114][ T7885] RIP: 0033:0x7f98f641f6c9
[  108.692128][ T7885] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.692205][ T7885] RSP: 002b:00007f98f4e87038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  108.692225][ T7885] RAX: ffffffffffffffda RBX: 00007f98f6675fa0 RCX: 00007f98f641f6c9
[  108.692238][ T7885] RDX: 0000200000000200 RSI: 00000000c018937e RDI: 0000000000000003
[  108.692253][ T7885] RBP: 00007f98f4e87090 R08: 0000000000000000 R09: 0000000000000000
[  108.692269][ T7885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  108.692282][ T7885] R13: 00007f98f6676038 R14: 00007f98f6675fa0 R15: 00007ffda7cb3ad8
[  108.692303][ T7885]  </TASK>
[  108.694660][ T7886] FAULT_INJECTION: forcing a failure.
[  108.694660][ T7886] name failslab, interval 1, probability 0, space 0, times 0
[  108.756477][ T7890] netlink: 19 bytes leftover after parsing attributes in process `syz.1.1496'.
[  108.757413][ T7886] CPU: 1 UID: 0 PID: 7886 Comm: syz.4.1493 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  108.757440][ T7886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  108.757453][ T7886] Call Trace:
[  108.757459][ T7886]  <TASK>
[  108.757466][ T7886]  __dump_stack+0x1d/0x30
[  108.757491][ T7886]  dump_stack_lvl+0xe8/0x140
[  108.757514][ T7886]  dump_stack+0x15/0x1b
[  108.757533][ T7886]  should_fail_ex+0x265/0x280
[  108.757554][ T7886]  should_failslab+0x8c/0xb0
[  108.757586][ T7886]  kmem_cache_alloc_noprof+0x50/0x480
[  108.757617][ T7886]  ? mas_alloc_nodes+0x1a2/0x210
[  108.757646][ T7886]  mas_alloc_nodes+0x1a2/0x210
[  108.757667][ T7886]  mas_preallocate+0x2ca/0x510
[  108.757695][ T7886]  __split_vma+0x240/0x650
[  108.757730][ T7886]  vms_gather_munmap_vmas+0x17a/0x7b0
[  108.757756][ T7886]  ? selinux_file_open+0x2df/0x330
[  108.757790][ T7886]  ? __rcu_read_unlock+0x4f/0x70
[  108.757819][ T7886]  do_vmi_align_munmap+0x1ac/0x3d0
[  108.757859][ T7886]  do_vmi_munmap+0x1db/0x220
[  108.757886][ T7886]  mremap_at+0xfc/0x610
[  108.757921][ T7886]  __se_sys_mremap+0x6d7/0xb30
[  108.757962][ T7886]  ? fput+0x8f/0xc0
[  108.757981][ T7886]  ? ksys_write+0x192/0x1a0
[  108.758009][ T7886]  __x64_sys_mremap+0x67/0x80
[  108.758040][ T7886]  x64_sys_call+0x2a28/0x3000
[  108.758064][ T7886]  do_syscall_64+0xd2/0x200
[  108.758085][ T7886]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  108.758116][ T7886]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  108.758158][ T7886]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.758180][ T7886] RIP: 0033:0x7f855759f6c9
[  108.758195][ T7886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.758214][ T7886] RSP: 002b:00007f8556007038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  108.758233][ T7886] RAX: ffffffffffffffda RBX: 00007f85577f5fa0 RCX: 00007f855759f6c9
[  108.758247][ T7886] RDX: 0000000000001000 RSI: 0000000000c00000 RDI: 0000200000400000
[  108.758260][ T7886] RBP: 00007f8556007090 R08: 00002000008b5000 R09: 0000000000000000
[  108.758273][ T7886] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  108.758286][ T7886] R13: 00007f85577f6038 R14: 00007f85577f5fa0 R15: 00007ffe6d154c48
[  108.758308][ T7886]  </TASK>
[  108.975824][ T7899] syzkaller0: entered promiscuous mode
[  109.123311][ T7899] syzkaller0: entered allmulticast mode
[  109.304464][ T7923] netlink: 19 bytes leftover after parsing attributes in process `syz.3.1509'.
[  109.859762][ T7951] netlink: 'syz.0.1520': attribute type 1 has an invalid length.
[  109.906405][ T7953] netlink: 19 bytes leftover after parsing attributes in process `syz.3.1521'.
[  110.232891][ T7972] syzkaller0: entered promiscuous mode
[  110.238496][ T7972] syzkaller0: entered allmulticast mode
[  110.350189][ T7980] netem: unknown loss type 13
[  110.355053][ T7980] netem: change failed
[  110.403217][ T7984] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  110.430474][ T7980] loop0: detected capacity change from 0 to 1024
[  110.444210][ T7988] loop5: detected capacity change from 0 to 1024
[  110.459457][ T7980] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  110.490192][ T7988] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  110.514135][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.574112][ T7988] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4193: comm syz.5.1537: Allocating blocks 449-513 which overlap fs metadata
[  110.604796][ T7987] EXT4-fs (loop5): pa ffff888106ecbf50: logic 48, phys. 177, len 21
[  110.612826][ T7987] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4
[  110.635458][ T3980] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.716427][ T8002] loop0: detected capacity change from 0 to 1024
[  110.729003][ T8002] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  110.756336][ T8002] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.1542: Invalid block bitmap block 0 in block_group 0
[  110.850470][ T8005] syzkaller0: entered promiscuous mode
[  110.856013][ T8005] syzkaller0: entered allmulticast mode
[  110.863403][ T8002] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.1542: Failed to acquire dquot type 0
[  110.878195][ T8002] EXT4-fs error (device loop0): ext4_free_blocks:6706: comm syz.0.1542: Freeing blocks not in datazone - block = 0, count = 4096
[  110.898528][ T8002] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.1542: Invalid inode bitmap blk 0 in block_group 0
[  110.932340][ T3960] EXT4-fs error (device loop0): ext4_release_dquot:6981: comm kworker/u8:8: Failed to release dquot type 0
[  110.933926][ T8002] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[  110.953147][ T8002] EXT4-fs (loop0): 1 orphan inode deleted
[  110.959506][ T8002] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.008524][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.027449][ T8011] loop5: detected capacity change from 0 to 512
[  111.034161][ T8011] EXT4-fs: Ignoring removed i_version option
[  111.040246][ T8011] EXT4-fs: Ignoring removed bh option
[  111.058615][ T8011] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.078224][ T8011] ext4 filesystem being mounted at /244/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  111.183021][ T8021] loop0: detected capacity change from 0 to 128
[  111.215789][ T8021] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none.
[  111.288699][ T8021] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  111.297823][ T8026] loop4: detected capacity change from 0 to 1024
[  111.334906][ T8011] xt_bpf: check failed: parse error
[  111.335811][ T8026] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  111.399654][ T8011] vhci_hcd: invalid port number 96
[  111.404802][ T8011] vhci_hcd: default hub control req: 2000 vfffc i0060 l7
[  111.417725][ T8026] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4193: comm syz.4.1551: Allocating blocks 449-513 which overlap fs metadata
[  111.436219][ T8025] EXT4-fs (loop4): pa ffff888106ecbf50: logic 48, phys. 177, len 21
[  111.444328][ T8025] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4
[  111.481233][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.524406][ T8043] syzkaller0: entered promiscuous mode
[  111.529958][ T8043] syzkaller0: entered allmulticast mode
[  111.537660][ T3980] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.594328][ T8051] loop4: detected capacity change from 0 to 512
[  111.599685][ T8053] ieee802154 phy1 wpan1: encryption failed: -22
[  111.617454][ T8053] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  111.637217][ T8051] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1561: bg 0: block 248: padding at end of block bitmap is not set
[  111.659704][ T8051] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.1561: Failed to acquire dquot type 1
[  111.661658][ T8059] veth8: entered promiscuous mode
[  111.671871][ T8051] EXT4-fs (loop4): 1 truncate cleaned up
[  111.676136][ T8059] veth8: entered allmulticast mode
[  111.687576][ T8051] ext4 filesystem being mounted at /257/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  111.704776][ T8059] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  111.771563][ T8051] EXT4-fs error (device loop4): ext4_lookup:1791: inode #2: comm syz.4.1561: deleted inode referenced: 12
[  111.786841][ T8051] netlink: 'syz.4.1561': attribute type 1 has an invalid length.
[  111.794683][ T8051] __nla_validate_parse: 2 callbacks suppressed
[  111.794694][ T8051] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1561'.
[  111.869883][ T8075] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1569'.
[  111.878937][ T8075] netem: unknown loss type 13
[  111.883952][ T8075] netem: change failed
[  111.927468][ T8075] loop0: detected capacity change from 0 to 1024
[  111.944882][ T8080] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1573'.
[  111.979254][ T8083] tipc: New replicast peer: 255.255.255.255
[  111.985323][ T8083] tipc: Enabled bearer <udp:syz2>, priority 10
[  112.168635][ T8110] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  112.247860][ T8114] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1587'.
[  112.284211][ T8118] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1589'.
[  112.293195][ T8118] netem: unknown loss type 13
[  112.297881][ T8118] netem: change failed
[  112.359571][ T8118] loop5: detected capacity change from 0 to 1024
[  112.450517][   T29] kauditd_printk_skb: 674 callbacks suppressed
[  112.450534][   T29] audit: type=1326 audit(1762761199.273:9693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8130 comm="syz.1.1594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98f641f6c9 code=0x7ffc0000
[  112.480310][   T29] audit: type=1326 audit(1762761199.273:9694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8130 comm="syz.1.1594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f98f641df10 code=0x7ffc0000
[  112.503730][   T29] audit: type=1326 audit(1762761199.273:9695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8130 comm="syz.1.1594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98f641f6c9 code=0x7ffc0000
[  112.527138][   T29] audit: type=1326 audit(1762761199.273:9696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8130 comm="syz.1.1594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=295 compat=0 ip=0x7f98f641f6c9 code=0x7ffc0000
[  112.550604][   T29] audit: type=1326 audit(1762761199.273:9697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8130 comm="syz.1.1594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98f641f6c9 code=0x7ffc0000
[  112.551558][ T8135] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1595'.
[  112.574738][   T29] audit: type=1326 audit(1762761199.333:9698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8099 comm="syz.4.1580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f855759f6c9 code=0x7ffc0000
[  112.606379][   T29] audit: type=1326 audit(1762761199.333:9699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8099 comm="syz.4.1580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f855759f6c9 code=0x7ffc0000
[  112.629829][   T29] audit: type=1326 audit(1762761199.333:9700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8099 comm="syz.4.1580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=152 compat=0 ip=0x7f855759f6c9 code=0x7ffc0000
[  112.653341][   T29] audit: type=1326 audit(1762761199.333:9701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8099 comm="syz.4.1580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f855759f6c9 code=0x7ffc0000
[  112.656614][ T8140] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8140 comm=syz.5.1597
[  112.676734][   T29] audit: type=1326 audit(1762761199.333:9702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8099 comm="syz.4.1580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f855759f6c9 code=0x7ffc0000
[  112.949573][ T8152] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1602'.
[  112.978274][ T3415] tipc: Node number set to 2138153534
[  113.023864][ T8156] hub 1-0:1.0: USB hub found
[  113.029220][ T8156] hub 1-0:1.0: 8 ports detected
[  113.527956][ T8163] netlink: 'syz.5.1606': attribute type 3 has an invalid length.
[  113.536739][ T8163] netlink: 'syz.5.1606': attribute type 3 has an invalid length.
[  113.588844][ T8167] loop5: detected capacity change from 0 to 128
[  113.764613][ T8177] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1612'.
[  113.776367][ T8177] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  114.018684][ T8192] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1619'.
[  114.428288][ T8198] FAULT_INJECTION: forcing a failure.
[  114.428288][ T8198] name failslab, interval 1, probability 0, space 0, times 0
[  114.440954][ T8198] CPU: 0 UID: 0 PID: 8198 Comm: syz.1.1621 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  114.440983][ T8198] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  114.441043][ T8198] Call Trace:
[  114.441049][ T8198]  <TASK>
[  114.441066][ T8198]  __dump_stack+0x1d/0x30
[  114.441091][ T8198]  dump_stack_lvl+0xe8/0x140
[  114.441180][ T8198]  dump_stack+0x15/0x1b
[  114.441191][ T8198]  should_fail_ex+0x265/0x280
[  114.441204][ T8198]  should_failslab+0x8c/0xb0
[  114.441222][ T8198]  __kmalloc_node_track_caller_noprof+0xa5/0x580
[  114.441270][ T8198]  ? sidtab_sid2str_get+0xa0/0x130
[  114.441290][ T8198]  kmemdup_noprof+0x2b/0x70
[  114.441310][ T8198]  sidtab_sid2str_get+0xa0/0x130
[  114.441378][ T8198]  security_sid_to_context_core+0x1eb/0x2e0
[  114.441405][ T8198]  security_sid_to_context+0x27/0x40
[  114.441427][ T8198]  sel_write_context+0x12f/0x200
[  114.441441][ T8198]  selinux_transaction_write+0xc6/0x110
[  114.441454][ T8198]  ? __pfx_selinux_transaction_write+0x10/0x10
[  114.441544][ T8198]  vfs_write+0x269/0x960
[  114.441560][ T8198]  ? __rcu_read_unlock+0x4f/0x70
[  114.441628][ T8198]  ? __fget_files+0x184/0x1c0
[  114.441646][ T8198]  ksys_write+0xda/0x1a0
[  114.441663][ T8198]  __x64_sys_write+0x40/0x50
[  114.441679][ T8198]  x64_sys_call+0x2802/0x3000
[  114.441702][ T8198]  do_syscall_64+0xd2/0x200
[  114.441715][ T8198]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  114.441732][ T8198]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  114.441752][ T8198]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.441845][ T8198] RIP: 0033:0x7f98f641f6c9
[  114.441855][ T8198] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.441867][ T8198] RSP: 002b:00007f98f4e87038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  114.441948][ T8198] RAX: ffffffffffffffda RBX: 00007f98f6675fa0 RCX: 00007f98f641f6c9
[  114.442006][ T8198] RDX: 000000000000001d RSI: 0000200000000340 RDI: 0000000000000003
[  114.442019][ T8198] RBP: 00007f98f4e87090 R08: 0000000000000000 R09: 0000000000000000
[  114.442033][ T8198] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  114.442045][ T8198] R13: 00007f98f6676038 R14: 00007f98f6675fa0 R15: 00007ffda7cb3ad8
[  114.442072][ T8198]  </TASK>
[  114.860095][ T8218] netlink: 'syz.0.1628': attribute type 39 has an invalid length.
[  114.871062][ T8220] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1629'.
[  114.880056][ T8220] netem: unknown loss type 13
[  114.884896][ T8220] netem: change failed
[  114.916062][ T8225] ieee802154 phy1 wpan1: encryption failed: -22
[  114.924604][ T8225] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  114.955503][ T8220] loop1: detected capacity change from 0 to 1024
[  115.041442][ T8235] loop0: detected capacity change from 0 to 512
[  115.062798][ T8235] EXT4-fs: Ignoring removed i_version option
[  115.068904][ T8235] EXT4-fs: Ignoring removed bh option
[  115.090182][ T8235] ext4 filesystem being mounted at /329/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  115.312817][ T8235] xt_bpf: check failed: parse error
[  115.636723][ T8262] netlink: 'syz.3.1645': attribute type 39 has an invalid length.
[  115.785099][ T8268] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 !
[  115.810807][ T8266] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  115.821323][ T8266] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  115.828946][ T8266] batman_adv: batadv0: Removing interface: batadv_slave_0
[  115.836746][ T8266] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  115.844207][ T8266] batman_adv: batadv0: Removing interface: batadv_slave_1
[  115.919213][ T8272] FAULT_INJECTION: forcing a failure.
[  115.919213][ T8272] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  115.932261][ T8272] CPU: 1 UID: 0 PID: 8272 Comm: syz.1.1649 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  115.932291][ T8272] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  115.932306][ T8272] Call Trace:
[  115.932314][ T8272]  <TASK>
[  115.932322][ T8272]  __dump_stack+0x1d/0x30
[  115.932404][ T8272]  dump_stack_lvl+0xe8/0x140
[  115.932428][ T8272]  dump_stack+0x15/0x1b
[  115.932450][ T8272]  should_fail_ex+0x265/0x280
[  115.932475][ T8272]  should_fail+0xb/0x20
[  115.932539][ T8272]  should_fail_usercopy+0x1a/0x20
[  115.932561][ T8272]  _copy_from_user+0x1c/0xb0
[  115.932592][ T8272]  ___sys_sendmsg+0xc1/0x1d0
[  115.932638][ T8272]  __x64_sys_sendmsg+0xd4/0x160
[  115.932730][ T8272]  x64_sys_call+0x191e/0x3000
[  115.932778][ T8272]  do_syscall_64+0xd2/0x200
[  115.932799][ T8272]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  115.932834][ T8272]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  115.932874][ T8272]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.932976][ T8272] RIP: 0033:0x7f98f641f6c9
[  115.932992][ T8272] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.933014][ T8272] RSP: 002b:00007f98f4e87038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  115.933037][ T8272] RAX: ffffffffffffffda RBX: 00007f98f6675fa0 RCX: 00007f98f641f6c9
[  115.933052][ T8272] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000006
[  115.933119][ T8272] RBP: 00007f98f4e87090 R08: 0000000000000000 R09: 0000000000000000
[  115.933175][ T8272] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  115.933187][ T8272] R13: 00007f98f6676038 R14: 00007f98f6675fa0 R15: 00007ffda7cb3ad8
[  115.933210][ T8272]  </TASK>
[  116.254054][ T8284] veth16: entered promiscuous mode
[  116.259251][ T8284] veth16: entered allmulticast mode
[  116.291856][ T8284] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  116.341214][ T8292] netlink: 'syz.3.1658': attribute type 39 has an invalid length.
[  116.371718][ T8294] loop4: detected capacity change from 0 to 512
[  116.384266][ T8296] syzkaller0: entered promiscuous mode
[  116.389768][ T8296] syzkaller0: entered allmulticast mode
[  116.397791][ T8294] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1661: bg 0: block 248: padding at end of block bitmap is not set
[  116.417442][ T8294] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.1661: Failed to acquire dquot type 1
[  116.432679][ T8294] EXT4-fs (loop4): 1 truncate cleaned up
[  116.456442][ T8294] ext4 filesystem being mounted at /285/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  116.573312][ T8294] EXT4-fs error (device loop4): ext4_lookup:1791: inode #2: comm syz.4.1661: deleted inode referenced: 12
[  116.613483][ T8294] netlink: 'syz.4.1661': attribute type 1 has an invalid length.
[  116.746778][ T8317] netem: unknown loss type 13
[  116.751570][ T8317] netem: change failed
[  116.841418][ T8319] loop4: detected capacity change from 0 to 1024
[  116.914109][ T8325] netlink: 'syz.4.1672': attribute type 39 has an invalid length.
[  116.996863][ T8332] syzkaller0: entered promiscuous mode
[  117.002416][ T8332] syzkaller0: entered allmulticast mode
[  117.111611][ T8340] __nla_validate_parse: 2 callbacks suppressed
[  117.111625][ T8340] netlink: 19 bytes leftover after parsing attributes in process `syz.3.1679'.
[  117.126983][ T8335] loop0: detected capacity change from 0 to 1024
[  117.214620][ T8348] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1682'.
[  117.223659][ T8348] netem: unknown loss type 13
[  117.228437][ T8348] netem: change failed
[  117.462438][   T29] kauditd_printk_skb: 602 callbacks suppressed
[  117.462453][   T29] audit: type=1326 audit(1762761204.283:10303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8357 comm="syz.3.1686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[  117.494970][   T29] audit: type=1326 audit(1762761204.313:10304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8357 comm="syz.3.1686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[  117.518536][   T29] audit: type=1326 audit(1762761204.313:10305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8357 comm="syz.3.1686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[  117.632876][ T8362] netlink: 'syz.5.1687': attribute type 39 has an invalid length.
[  117.711387][   T29] audit: type=1326 audit(1762761204.533:10306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8368 comm="syz.3.1690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[  117.737667][   T29] audit: type=1326 audit(1762761204.553:10307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8368 comm="syz.3.1690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[  117.761209][   T29] audit: type=1326 audit(1762761204.553:10308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8368 comm="syz.3.1690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[  117.784683][   T29] audit: type=1326 audit(1762761204.553:10309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8368 comm="syz.3.1690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[  117.824167][   T29] audit: type=1326 audit(1762761204.633:10310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8368 comm="syz.3.1690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[  117.847715][   T29] audit: type=1326 audit(1762761204.633:10311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8368 comm="syz.3.1690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[  117.871204][   T29] audit: type=1326 audit(1762761204.633:10312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8368 comm="syz.3.1690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[  117.943243][ T8374] netlink: 19 bytes leftover after parsing attributes in process `syz.1.1692'.
[  117.974280][ T8381] loop5: detected capacity change from 0 to 1024
[  118.013629][ T8383] loop0: detected capacity change from 0 to 128
[  118.140751][ T8390] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=8390 comm=syz.3.1698
[  118.527434][ T8416] netlink: 19 bytes leftover after parsing attributes in process `syz.3.1707'.
[  118.728590][ T8419] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1709'.
[  118.886079][ T8419] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  118.933405][ T8425] loop5: detected capacity change from 0 to 512
[  118.943088][ T8425] EXT4-fs: Ignoring removed i_version option
[  118.949265][ T8425] EXT4-fs: Ignoring removed bh option
[  118.957196][ T8426] loop0: detected capacity change from 0 to 128
[  119.017088][ T8425] ext4 filesystem being mounted at /270/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  119.409162][   T12] kworker/u8:0: attempt to access beyond end of device
[  119.409162][   T12] loop0: rw=1, sector=145, nr_sectors = 896 limit=128
[  119.588761][ T8448] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1721'.
[  119.637833][ T8425] xt_bpf: check failed: parse error
[  119.663195][ T8451] loop4: detected capacity change from 0 to 1024
[  119.680103][ T8425] vhci_hcd: invalid port number 96
[  119.685256][ T8425] vhci_hcd: default hub control req: 2000 vfffc i0060 l7
[  119.759441][ T8451] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4193: comm syz.4.1722: Allocating blocks 449-513 which overlap fs metadata
[  119.795667][ T8450] EXT4-fs (loop4): pa ffff88810552e700: logic 48, phys. 177, len 21
[  119.803706][ T8450] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4
[  119.850726][ T8457] loop5: detected capacity change from 0 to 128
[  119.854207][ T8458] FAULT_INJECTION: forcing a failure.
[  119.854207][ T8458] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  119.870075][ T8458] CPU: 1 UID: 0 PID: 8458 Comm: syz.1.1724 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  119.870163][ T8458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  119.870175][ T8458] Call Trace:
[  119.870182][ T8458]  <TASK>
[  119.870191][ T8458]  __dump_stack+0x1d/0x30
[  119.870249][ T8458]  dump_stack_lvl+0xe8/0x140
[  119.870341][ T8458]  dump_stack+0x15/0x1b
[  119.870363][ T8458]  should_fail_ex+0x265/0x280
[  119.870385][ T8458]  should_fail+0xb/0x20
[  119.870402][ T8458]  should_fail_usercopy+0x1a/0x20
[  119.870425][ T8458]  _copy_from_user+0x1c/0xb0
[  119.870454][ T8458]  ___sys_sendmsg+0xc1/0x1d0
[  119.870509][ T8458]  __x64_sys_sendmsg+0xd4/0x160
[  119.870537][ T8458]  x64_sys_call+0x191e/0x3000
[  119.870589][ T8458]  do_syscall_64+0xd2/0x200
[  119.870610][ T8458]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  119.870690][ T8458]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  119.870733][ T8458]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.870757][ T8458] RIP: 0033:0x7f98f641f6c9
[  119.870772][ T8458] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  119.870861][ T8458] RSP: 002b:00007f98f4e87038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  119.870880][ T8458] RAX: ffffffffffffffda RBX: 00007f98f6675fa0 RCX: 00007f98f641f6c9
[  119.870893][ T8458] RDX: 0000000020004000 RSI: 0000200000000040 RDI: 0000000000000005
[  119.870968][ T8458] RBP: 00007f98f4e87090 R08: 0000000000000000 R09: 0000000000000000
[  119.870983][ T8458] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  119.870998][ T8458] R13: 00007f98f6676038 R14: 00007f98f6675fa0 R15: 00007ffda7cb3ad8
[  119.871024][ T8458]  </TASK>
[  120.131372][ T8469] atomic_op ffff8881283a8928 conn xmit_atomic 0000000000000000
[  120.228747][ T8481] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1732'.
[  120.234527][ T8484] loop1: detected capacity change from 0 to 512
[  120.246086][ T8483] netlink: 131740 bytes leftover after parsing attributes in process `syz.0.1735'.
[  120.265850][ T8483] netlink: zone id is out of range
[  120.271014][ T8483] netlink: zone id is out of range
[  120.277711][ T8484] EXT4-fs: Ignoring removed i_version option
[  120.283794][ T8484] EXT4-fs: Ignoring removed bh option
[  120.291422][ T8483] netlink: zone id is out of range
[  120.296527][ T8483] netlink: zone id is out of range
[  120.316771][ T8483] netlink: del zone limit has 8 unknown bytes
[  120.332236][ T8484] ext4 filesystem being mounted at /382/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  120.422237][ T8484] xt_bpf: check failed: parse error
[  120.471405][ T8484] vhci_hcd: invalid port number 96
[  120.476535][ T8484] vhci_hcd: default hub control req: 2000 vfffc i0060 l7
[  120.494812][ T8499] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1742'.
[  120.567933][ T8504] IPVS: set_ctl: invalid protocol: 12 255.255.255.255:20000
[  120.636531][ T8508] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1745'.
[  120.653078][ T8466] loop4: detected capacity change from 0 to 128
[  120.671893][ T8504] loop1: detected capacity change from 0 to 4096
[  120.684810][ T8504] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  120.760934][ T8513] hub 1-0:1.0: USB hub found
[  120.768256][ T8513] hub 1-0:1.0: 8 ports detected
[  120.939290][   T12] kworker/u8:0: attempt to access beyond end of device
[  120.939290][   T12] loop4: rw=1, sector=145, nr_sectors = 896 limit=128
[  120.976890][ T8517] netem: unknown loss type 13
[  120.981628][ T8517] netem: change failed
[  121.055675][ T8518] loop4: detected capacity change from 0 to 1024
[  121.132838][ T8527] loop1: detected capacity change from 0 to 512
[  121.139979][ T8528] SELinux:  Context system_u:object_r:systemd_passwd_agent_exec_t:s0 is not valid (left unmapped).
[  121.142315][ T8527] EXT4-fs: Ignoring removed i_version option
[  121.156743][ T8527] EXT4-fs: Ignoring removed bh option
[  121.171662][ T8527] ext4 filesystem being mounted at /386/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  121.248853][ T8527] xt_bpf: check failed: parse error
[  121.264413][ T8533] loop4: detected capacity change from 0 to 512
[  121.279293][ T8527] vhci_hcd: invalid port number 96
[  121.284506][ T8527] vhci_hcd: default hub control req: 2000 vfffc i0060 l7
[  121.314511][ T8533] ext4 filesystem being mounted at /298/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  121.453211][ T8540] lo speed is unknown, defaulting to 1000
[  121.461601][ T8542] loop4: detected capacity change from 0 to 512
[  121.492388][ T8540] lo speed is unknown, defaulting to 1000
[  121.510866][ T8542] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1755: bg 0: block 248: padding at end of block bitmap is not set
[  121.542843][ T8542] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.1755: Failed to acquire dquot type 1
[  121.568713][ T8542] EXT4-fs (loop4): 1 truncate cleaned up
[  121.577275][ T8542] ext4 filesystem being mounted at /299/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  121.610610][ T8542] EXT4-fs error (device loop4): ext4_lookup:1791: inode #2: comm syz.4.1755: deleted inode referenced: 12
[  121.625573][ T8542] netlink: 'syz.4.1755': attribute type 1 has an invalid length.
[  121.739697][ T8560] netem: unknown loss type 13
[  121.744475][ T8560] netem: change failed
[  121.774525][ T8562] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  121.806316][ T8560] loop5: detected capacity change from 0 to 1024
[  121.821783][ T8564] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  121.831445][ T8564] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  122.373796][ T8587] loop1: detected capacity change from 0 to 512
[  122.401084][ T8587] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1773: bg 0: block 248: padding at end of block bitmap is not set
[  122.442505][ T8587] EXT4-fs error (device loop1): ext4_acquire_dquot:6945: comm syz.1.1773: Failed to acquire dquot type 1
[  122.451885][ T8593] __nla_validate_parse: 4 callbacks suppressed
[  122.451900][ T8593] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1776'.
[  122.468789][   T29] kauditd_printk_skb: 730 callbacks suppressed
[  122.468802][   T29] audit: type=1326 audit(1762761217.296:11039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8581 comm="syz.3.1771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f2d26451f85 code=0x7ffc0000
[  122.468954][ T8593] netem: unknown loss type 13
[  122.475217][   T29] audit: type=1326 audit(1762761217.296:11040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8581 comm="syz.3.1771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f2d26451f85 code=0x7ffc0000
[  122.498519][ T8593] netem: change failed
[  122.536759][   T29] audit: type=1326 audit(1762761217.356:11041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8581 comm="syz.3.1771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[  122.560299][   T29] audit: type=1326 audit(1762761217.356:11042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8581 comm="syz.3.1771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[  122.583912][   T29] audit: type=1326 audit(1762761217.356:11043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8581 comm="syz.3.1771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[  122.584008][ T8595] loop4: detected capacity change from 0 to 1024
[  122.608616][ T8587] EXT4-fs (loop1): 1 truncate cleaned up
[  122.623550][   T29] audit: type=1326 audit(1762761217.446:11044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8581 comm="syz.3.1771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[  122.624296][ T8587] ext4 filesystem being mounted at /390/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  122.665924][ T8587] EXT4-fs error (device loop1): ext4_lookup:1791: inode #2: comm syz.1.1773: deleted inode referenced: 12
[  122.686145][ T8598] loop0: detected capacity change from 0 to 1024
[  122.708975][ T8587] netlink: 'syz.1.1773': attribute type 1 has an invalid length.
[  122.716849][ T8587] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1773'.
[  122.728211][   T29] audit: type=1326 audit(1762761217.546:11045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8600 comm="syz.3.1777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[  122.734708][ T8595] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4193: comm syz.4.1775: Allocating blocks 449-513 which overlap fs metadata
[  122.751825][   T29] audit: type=1326 audit(1762761217.546:11046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8600 comm="syz.3.1777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2d2641df10 code=0x7ffc0000
[  122.751864][   T29] audit: type=1326 audit(1762761217.546:11047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8600 comm="syz.3.1777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2d2641df10 code=0x7ffc0000
[  122.812685][   T29] audit: type=1326 audit(1762761217.546:11048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8600 comm="syz.3.1777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2641f6c9 code=0x7ffc0000
[  122.839546][ T8605] netlink: 'syz.3.1779': attribute type 39 has an invalid length.
[  122.853773][ T8594] EXT4-fs (loop4): pa ffff888106ecbee0: logic 48, phys. 177, len 21
[  122.861909][ T8594] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4
[  122.909251][ T8610] loop0: detected capacity change from 0 to 1024
[  123.342137][ T8635] loop0: detected capacity change from 0 to 128
[  123.394159][ T8635] ext4 filesystem being mounted at /362/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  123.516332][ T8637] loop1: detected capacity change from 0 to 8192
[  123.626449][ T8641] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1792'.
[  123.635447][ T8641] netem: unknown loss type 13
[  123.640220][ T8641] netem: change failed
[  123.720834][ T8641] loop4: detected capacity change from 0 to 1024
[  123.934378][ T8647] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1794'.
[  124.044926][ T8648] hub 1-0:1.0: USB hub found
[  124.054645][ T8648] hub 1-0:1.0: 8 ports detected
[  124.390581][ T8650] loop4: detected capacity change from 0 to 512
[  124.458437][ T8650] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1793: bg 0: block 248: padding at end of block bitmap is not set
[  124.520341][ T8650] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.1793: Failed to acquire dquot type 1
[  124.543612][ T8650] EXT4-fs (loop4): 1 truncate cleaned up
[  124.550129][ T8650] ext4 filesystem being mounted at /306/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  124.568394][ T8650] EXT4-fs error (device loop4): ext4_lookup:1791: inode #2: comm syz.4.1793: deleted inode referenced: 12
[  124.583294][ T8650] netlink: 'syz.4.1793': attribute type 1 has an invalid length.
[  124.591068][ T8650] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1793'.
[  124.660154][ T8670] netlink: 64 bytes leftover after parsing attributes in process `syz.1.1803'.
[  124.671905][ T8670] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  124.711609][ T8671] loop0: detected capacity change from 0 to 128
[  125.337526][ T8698] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1816'.
[  125.416213][ T8701] hub 1-0:1.0: USB hub found
[  125.423093][ T8701] hub 1-0:1.0: 8 ports detected
[  125.649894][ T8705] loop1: detected capacity change from 0 to 512
[  125.682184][ T8705] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1818: bg 0: block 248: padding at end of block bitmap is not set
[  125.697734][ T8705] EXT4-fs error (device loop1): ext4_acquire_dquot:6945: comm syz.1.1818: Failed to acquire dquot type 1
[  125.711465][ T8705] EXT4-fs (loop1): 1 truncate cleaned up
[  125.717825][ T8705] EXT4-fs mount: 48 callbacks suppressed
[  125.717840][ T8705] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  125.736155][ T8705] ext4 filesystem being mounted at /400/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  125.750481][ T8705] EXT4-fs error (device loop1): ext4_lookup:1791: inode #2: comm syz.1.1818: deleted inode referenced: 12
[  125.766071][ T8705] netlink: 'syz.1.1818': attribute type 1 has an invalid length.
[  125.773842][ T8705] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1818'.
[  125.910110][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  125.945259][ T8721] loop0: detected capacity change from 0 to 1024
[  125.962391][ T8721] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  126.035929][ T8721] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4193: comm syz.0.1825: Allocating blocks 449-513 which overlap fs metadata
[  126.058894][ T8720] EXT4-fs (loop0): pa ffff888106ecbf50: logic 48, phys. 177, len 21
[  126.066961][ T8720] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4
[  126.092713][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.126688][ T8732] netlink: 'syz.0.1828': attribute type 39 has an invalid length.
[  126.225202][ T8736] loop4: detected capacity change from 0 to 1024
[  126.248871][ T8736] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  126.611262][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.631419][ T8741] ==================================================================
[  126.639512][ T8741] BUG: KCSAN: data-race in memcpy_and_pad / release_task
[  126.646548][ T8741] 
[  126.648858][ T8741] write to 0xffff88812957e7c8 of 8 bytes by task 8738 on cpu 0:
[  126.656470][ T8741]  release_task+0x6f9/0xb60
[  126.660973][ T8741]  do_exit+0xd81/0x15c0
[  126.665110][ T8741]  kthread_exit+0x94/0x190
[  126.669514][ T8741]  kthread+0x491/0x510
[  126.673575][ T8741]  ret_from_fork+0x122/0x1b0
[  126.678156][ T8741]  ret_from_fork_asm+0x1a/0x30
[  126.682911][ T8741] 
[  126.685216][ T8741] read to 0xffff88812957e300 of 3264 bytes by task 8741 on cpu 1:
[  126.693001][ T8741]  memcpy_and_pad+0x48/0x80
[  126.697503][ T8741]  arch_dup_task_struct+0x2c/0x40
[  126.702517][ T8741]  dup_task_struct+0x83/0x6b0
[  126.707189][ T8741]  copy_process+0x399/0x2000
[  126.711776][ T8741]  kernel_clone+0x16c/0x5c0
[  126.716276][ T8741]  __se_sys_clone3+0x1c2/0x200
[  126.721037][ T8741]  __x64_sys_clone3+0x31/0x40
[  126.725720][ T8741]  x64_sys_call+0x1fc9/0x3000
[  126.730388][ T8741]  do_syscall_64+0xd2/0x200
[  126.734878][ T8741]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.740762][ T8741] 
[  126.743065][ T8741] Reported by Kernel Concurrency Sanitizer on:
[  126.749205][ T8741] CPU: 1 UID: 0 PID: 8741 Comm: syz.0.1832 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  126.758908][ T8741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  126.768948][ T8741] ==================================================================