last executing test programs:

7m43.886908672s ago: executing program 0 (id=239):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f0000"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x65, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$PPPIOCSFLAGS1(0xffffffffffffffff, 0x40047459, &(0x7f0000000100)=0x2000004)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r2, 0x84, 0x81, &(0x7f00000002c0)="1ae96d0103010000", 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r2, 0x84, 0x17, &(0x7f0000000340)=ANY=[], 0xffc9)

7m43.734021665s ago: executing program 0 (id=240):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1900000004000000080000000c"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e00000018110000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_DEL(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="0100cd7881a9b45dea5e54"], 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x0)

7m43.644071786s ago: executing program 0 (id=241):
openat$thread_pidfd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x72, 0x0, 0x7fff0000}]})
ioctl$EVIOCGMTSLOTS(0xffffffffffffffff, 0x8040450a, &(0x7f0000000000)=""/4101)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

7m43.525843997s ago: executing program 0 (id=242):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$rds(0x15, 0x5, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000180), 0x1, 0x553, &(0x7f0000001080)="$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")
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r3}, 0x10)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
fallocate(r4, 0x0, 0x0, 0x8000c62)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r6 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000220000000000000000000000850000006d00000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r8}, 0x10)
ioctl$VT_DISALLOCATE(r6, 0x5608)
pwritev2(r5, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0)
bind$rds(r2, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r2, &(0x7f0000000080)={&(0x7f0000000040)={0x2, 0x4, @local}, 0x10, 0x0, 0x0, &(0x7f0000000240)=[@rdma_args={0x48, 0x114, 0x1, {{0x5}, {0x0}, &(0x7f0000000300)=[{&(0x7f0000000880)=""/4096, 0x1000}], 0x1}}], 0x48}, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
clock_gettime(0x0, &(0x7f0000000340)={<r10=>0x0, <r11=>0x0})
utimes(&(0x7f0000000200)='./file0\x00', &(0x7f00000003c0)={{r10, r11/1000+10000}})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f0000000380)={0x2})
r12 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r12)
syz_open_dev$MSR(&(0x7f0000000000), 0x1000, 0x0)

7m42.944366815s ago: executing program 0 (id=254):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1, 0x0, 0x20000}, 0x18)
r2 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000000), 0x103902, 0x0)
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000d40)=ANY=[@ANYBLOB="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"], 0xfe, 0x2ae, &(0x7f0000000a40)="$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")
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc4042, 0x1ef)
sendfile(r3, r2, 0x0, 0xfffa83)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x70, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0xfff, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a, @void, @value}, 0x94)

7m42.617914679s ago: executing program 0 (id=262):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x65, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$PPPIOCSFLAGS1(0xffffffffffffffff, 0x40047459, &(0x7f0000000100)=0x2000004)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r2, 0x84, 0x81, &(0x7f00000002c0)="1ae96d0103010000", 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r2, 0x84, 0x17, &(0x7f0000000340)=ANY=[], 0xffc9)

7m42.55924046s ago: executing program 32 (id=262):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x65, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$PPPIOCSFLAGS1(0xffffffffffffffff, 0x40047459, &(0x7f0000000100)=0x2000004)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r2, 0x84, 0x81, &(0x7f00000002c0)="1ae96d0103010000", 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r2, 0x84, 0x17, &(0x7f0000000340)=ANY=[], 0xffc9)

2m37.65555291s ago: executing program 5 (id=2705):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000a40000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
syz_open_procfs(0xffffffffffffffff, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000100f00000000002a000000180001801400020073797a5f74756e"], 0x2c}, 0x1, 0x0, 0x0, 0x40040}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$sock_int(r6, 0x1, 0x4c, &(0x7f0000000000)=0xb, 0x4)
bind$bt_hci(r6, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffef5, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00'}, 0x10)
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0xc40a, &(0x7f0000000280)={[{@noblock_validity}, {@dioread_lock}, {@nobh}, {@minixdf}, {@acl}, {@usrjquota, 0x2e}, {@grpquota}, {@nodiscard}, {@jqfmt_vfsv0}, {@noload}], [], 0x2c}, 0x84, 0x459, &(0x7f0000000900)="$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")
syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x41, &(0x7f0000000880)={[{@bsdgroups}, {@nodiscard}, {@usrjquota}, {@grpjquota}, {@grpjquota}, {@minixdf}, {@prjquota}, {@noload}, {@block_validity}]}, 0x64, 0x50a, &(0x7f0000000200)="$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")
syz_mount_image$msdos(&(0x7f0000000800), &(0x7f0000000f00)='.\x00', 0x1aca421, &(0x7f00000008c0)=ANY=[], 0xb, 0x0, &(0x7f0000000000))

2m37.576910431s ago: executing program 5 (id=2706):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
r3 = syz_io_uring_setup(0x1725, &(0x7f0000000080)={0x0, 0x0, 0x80, 0x400002, 0x9c}, &(0x7f0000000100)=<r4=>0x0, &(0x7f0000000200)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000240)=0xfffffc04, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_MKDIRAT={0x25, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000280)='./file0\x00', 0x84, 0x0, 0x1})
io_uring_enter(r3, 0x264b, 0x4, 0x1, 0x0, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r6}, 0x10)

2m35.915428193s ago: executing program 5 (id=2722):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000006c0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
timer_create(0x8, 0x0, &(0x7f0000000000))
timer_delete(0x0)

2m35.810915055s ago: executing program 5 (id=2724):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000180)='./file0\x00', 0x800400, &(0x7f0000000000)=ANY=[], 0xd, 0x282, &(0x7f00000006c0)="$eJzs3M9qK2UYB+B3TnNO2gOHdKEURXDEfWkr7ly0SAvFgKJkoSuDTVGaWmgg0C6auPIS3Ogt6NJtwYW49QZEkCq4aXXThTDSpM3fpphimkP7PJt5mZlf55v5ynzJIu/Hr+zubO3Vts/OTmJ2NnmcO86y7DyJ+ehqBgBwn5xnWZxmbdMeCwBwN6z/APDwdNf/ZGj9T5qdzwTv3f3IAIBJ8f0fAB6eDz786J21YnH9/dN0NmL3y3qpXmpvn7WOr23HZ1GNSixFIf6JyDra9VebxfWl9MLv81HabVzmG/XSTH9+OQoxP5zf2CyuL6dtPfm5zRefdPK/PI1KrEQhXrg+vzKcb9QfR8TrPddfjEL8/EnsRTW24iLbzR8tp+nb7xb786V867wnU50dAAAAAAAAAAAAAAAAAAAAAADuq8VHrdY5WT5N2/17/u7v39OM9MpAf592vrc/0Nw1/YE2Ov2BBvrzlHLxcm669w4AAAAAAAAAAAAAAAAAAADPi9rB4U65mkREq6hW9mvDxec/ffvDiEPjFsnldXsOXfYLaJSr+ZuH8f8Wz1777evR53zR93xufa2nMX7q+NWJ33t/cfHY82Omfjz59KU3agtvjjonchMb86PbTMqfhYn9a313Vaz+VUtyEXc3cTcVM4N7Fr5ZLX9/9Osf//Xv9L4lRjXqeGtusm8nAAAAAAAAAAAAAAAAAAB4WLo/+p32SAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgemoHrU1zJg4Od8rVamW/1l8kMbhn3KI57XsEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIB/AwAA//9tX6Sc")
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, 0x0)
timer_settime(0x0, 0x0, 0x0, 0x0)
syz_clone(0x800500, 0x0, 0x0, 0x0, 0x0, 0x0)
io_submit(0x0, 0x0, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
move_pages(0x0, 0xffffffffffffffdc, 0x0, 0x0, 0x0, 0x4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000a0000000000000018110000", @ANYRES8=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r3}, 0x10)
setitimer(0x2, 0x0, 0x0)
open(&(0x7f0000000040)='./bus\x00', 0x143142, 0x80)

2m35.016747906s ago: executing program 5 (id=2733):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0xf, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0xfffffffc, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x400}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x2000002, 0xe, 0x0, &(0x7f0000000200)="df33c9f7b9a60000000000000000", 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

2m34.566091722s ago: executing program 5 (id=2741):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009900000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
pause()

2m34.490013492s ago: executing program 33 (id=2741):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009900000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
pause()

4.300626972s ago: executing program 3 (id=4249):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000020000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x1f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x800, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r2}, 0x10)
openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r3 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000300)=@broute={'broute\x00', 0x20, 0x0, 0x90, [0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000040], 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='\x00'/19]}, 0x8b)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r4, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x402, @loopback}], 0x1c)
sendto$inet6(r4, &(0x7f0000000100)="b8", 0xffe0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r4, 0x84, 0x18, &(0x7f0000000300), 0x8)

4.299485072s ago: executing program 3 (id=4250):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000e5ff00000000009500001280000000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x42, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
setitimer(0x1, 0x0, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/power/image_size', 0xa3002, 0x90)
write$P9_RLERROR(r1, &(0x7f0000000200)=ANY=[], 0xa)
socket$packet(0x11, 0x3, 0x300)
socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7813, 0x3, 0x0, 0x81, 0x1ff, 0x1, 0x1}, 0x1c)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
r2 = openat$sysfs(0xffffff9c, &(0x7f0000000040)='/sys/kernel/notes', 0x0, 0x1a2)
finit_module(r2, 0x0, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb7020000080000"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x76, @void, @value}, 0x94)
recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000180)='./file0\x00', 0x20044e, &(0x7f0000000340)={[{@minixdf}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1ff}}, {@stripe}, {@noblock_validity}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x8}}]}, 0x3, 0x451, &(0x7f0000000f80)="$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")
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents(r4, 0x0, 0x0)
close_range(r3, 0xffffffffffffffff, 0x0)

3.751279679s ago: executing program 3 (id=4251):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
socket$rds(0x15, 0x5, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000180), 0x1, 0x553, &(0x7f0000001080)="$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")
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
fallocate(r3, 0x0, 0x0, 0x8000c62)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB='\v\x00\x00\x00\b\x00\x00\x00\f'], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000220000000000000000000000850000006d00000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r6}, 0x10)
pwritev2(r4, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0)

3.623253271s ago: executing program 3 (id=4253):
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = syz_io_uring_setup(0x1104, &(0x7f0000000300)={0x0, 0x0, 0x80, 0x0, 0x21e}, &(0x7f00000003c0)=<r2=>0x0, &(0x7f0000000040)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000380)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x7, 0x0, 0x0, 0x200, 0x0, 0x1})
io_uring_enter(r1, 0x47fa, 0x0, 0x0, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r4=>0xffffffffffffffff})
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x20, 0x0, r4, 0x0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0, 0x20002, 0x1})
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x10c)
fcntl$notify(r5, 0x402, 0x4)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x18, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000c40)=ANY=[@ANYBLOB="02130000050000000000000000000000030008"], 0x28}}, 0x80000)

3.456954713s ago: executing program 3 (id=4259):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000380)='kfree\x00', r1}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_clone(0x630c1100, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000003a80)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x5}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x54, 0x3, 0xa, 0x301, 0x0, 0x0, {0x5}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x28, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x12}, @NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_HOOK_DEV={0x14, 0x3, 'vlan0\x00'}]}]}], {0x14}}, 0x9c}}, 0x40044)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), 0xffffffffffffffff)
fspick(0xffffffffffffffff, 0x0, 0x1)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, 0x0)
gettid()
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r4, 0x0, 0x4000000)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, 0x0)
sendmsg$NL802154_CMD_SET_PAN_ID(r4, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000780)={0x60, r5, 0x400, 0x70bd26, 0x25dfdbfc, {}, [@NL802154_ATTR_PAN_ID={0x6, 0x9, 0x2}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_PAN_ID={0x6, 0x9, 0x2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_PAN_ID={0x6, 0x9, 0x2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_PAN_ID={0x6, 0x9, 0x1}, @NL802154_ATTR_WPAN_DEV={0xc}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000014}, 0xc080)
fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f0000000380)={0x2})
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r6)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00'}, 0x10)
syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f00000002c0)='./file0\x00', 0xc80, &(0x7f0000020100)=ANY=[@ANYBLOB="00631dda01aef2456795dd9b26209f1c0f624854ea3dd5a00bd6df44035f5c3ae796fec6d633a0ffad0569794acfef7da01767fd4175f2cd82df769aa2ee7bfe3640554507d2e660c9f9e222a72e1e3e71145c480657d2864e5e276f028d64701ae31cde0ceaf408fdb05c0f4142da00e900000100000149e6d308cbe315789f4baffe39bbced9b1d421d2e290e9fc563b62225f002ee310e1fa7321000000000000d6231001a4b2d467825f3abb0c167e129cf1fa0e7854103f4bf2d3a0194983bc86cbd3d75ccef3c8ac4516dac102"], 0x1, 0x27c, &(0x7f0000000600)="$eJzs281qE1EYxvGnH9ov20Sr1VbEF93oZmjjFYTSghhQaiN+gDC1Ew2ZJiUTKhGx3bn1LoTi0p0g3kA3XoELd9247EIc6UxskzaiFXRs8/9tzhvOPOGcnDPhLGY2775aKhUCp+DW1N1l6pX6tSWl1a0exboabXdUH1ezNV0dzX26cPve/RvZXG5mzmw2O38tY2YjF98/ff7m0ofa0J23I+/6tJF+uPkl83ljbGN889v8k2JgxcDKlZq5tlCp1NwF37PFYlByzG75nht4ViwHXrWlv+BXlpfr5pYXhweXq14QmFuuW8mrW61itWrd3MdusWyO49jwoPAr+fW5OTeb9Cjwd1WrWXda0sS+nvx6IgMCAACJanP+X+P83yk4/3eC7fP/g8b924rzPwAAAAAAAAAAAAAAAAAAAAAAh8FWGKbCMEz9aI9J0Rs+YePzgKRBSUOSTkgaljQiKSUpLemkpFOSRiWdlnRG0piks5LOSRpv+q6k54r9kln/gSSnjCbc/52N9e9sTS/u9ktLL1fyK/m4jfuzBRXly9OkUvoarWVDXM9ez81MWiSt80urjfzqSr6nNT+l1PaGaZefivPWmu+L9t1OPqPU9gZrl8+0zffryuWmvKOUPj5SRb4Woz25m38xZTZ9M7cnPxFdd9Q5tqPt+jnOz/rj/AH2x57ft1cTvcnOHVJQf1Zyfd+rUlAcheK1/othHP4i6X8m/Au7i570SAAAAAAAAAAAAAAAAAAAB/GnTwiGq3H+dy5Oeo4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOz1PQAA//+5gF2o")
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x84042, 0x1fb)
write$P9_RUNLINKAT(r7, &(0x7f0000000000)={0xfffffffffffffecb, 0x4d, 0x1}, 0xffffffd7)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000"], 0x48)
r8 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00'}, 0x10)
perf_event_open(&(0x7f00000004c0)={0x2, 0x80, 0xfe, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x4}, 0x40db, 0x0, 0x4, 0x8, 0xa, 0x100, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$nl_route(0x10, 0x3, 0x0)

2.411924797s ago: executing program 2 (id=4274):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000000)={0x2, &(0x7f0000000080)=[{0x20, 0x0, 0x0, 0xfffff008}, {0x6}]}, 0x10)
syz_emit_ethernet(0x4a, &(0x7f00000003c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x2f, 0x0, @remote, @local, {[], {{0x3c00, 0x22eb, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000abd92de000000000000ea04850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r4}, &(0x7f0000000180), &(0x7f00000001c0)}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r5}, 0x10)
tkill(0x0, 0x7)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @link_local})
close(r0)

2.378565728s ago: executing program 1 (id=4275):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket(0x1e, 0x5, 0x0)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000040)=@req3={0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x1c)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r2, 0x84, 0x6c, &(0x7f0000001640)={<r3=>0x0, 0x19, "d77efbdec6a3be23f9ece71f06f87cad60d0b94661d7b6536d"}, &(0x7f0000001680)=0x21)
setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(0xffffffffffffffff, 0x84, 0x23, &(0x7f00000016c0)={r3}, 0x8)
r4 = socket(0x1e, 0x805, 0x0)
sendmsg$tipc(r4, &(0x7f0000000080)={&(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x0, 0x4}}}, 0x10, 0x0}, 0x0)
setsockopt$packet_tx_ring(r4, 0x10f, 0x87, &(0x7f00000000c0)=@req3={0x80000000, 0x0, 0x2}, 0x1c)
accept4$inet6(r2, 0x0, 0x0, 0x800)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000380)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r6, 0x0, 0x5}, 0x18)
sendmsg$tipc(r4, &(0x7f0000000640)={&(0x7f0000000300), 0x10, 0x0}, 0x0)

2.311444399s ago: executing program 2 (id=4276):
openat$selinux_policy(0xffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a0000000200", 0x6)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x402, @loopback}], 0x1c)
sendto$inet6(r0, &(0x7f0000000100)="b8", 0xffe0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000300), 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r0, 0x84, 0x19, &(0x7f0000000400)={0x0, 0x200}, 0x8)

2.309183059s ago: executing program 3 (id=4277):
mount$tmpfs(0x0, &(0x7f0000000000)='./cgroup\x00', &(0x7f0000000140), 0x3200841, &(0x7f0000000380)={[{@nr_blocks={'nr_blocks', 0x3d, [0x74]}}]})
socket(0x10, 0x2, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000300)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800"], 0x48)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_MSG_GETFLOWTABLE(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000c00)=ANY=[@ANYBLOB="20000000170a0102060000000000000002"], 0x20}}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000240)='kfree\x00', r3, 0x0, 0x4ab}, 0x18)
r4 = socket$kcm(0x10, 0x2, 0x0)
recvmsg(r4, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x2000)
write$cgroup_subtree(r4, &(0x7f0000000000)=ANY=[@ANYBLOB="364000002600913e"], 0xfe33)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000003100)=@gcm_128={{0x303}, "0400", "0d00e8ffff1a8600", "cf0d00", "8657e2b7e43b34e4"}, 0x28)
write$binfmt_script(r0, &(0x7f0000000780)={'#! ', './file0'}, 0xb)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {{0x18, 0x1, 0x1, 0x0, r5}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r6}, 0x10)
r7 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000003000000850000"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r8}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x7, 0x7, 0xff, 0x7ffc1ffb}]})
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x1b, &(0x7f0000002140)={0x1, &(0x7f00000000c0)=[{0x6}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x18, 0xc, &(0x7f0000000040)=@framed={{0x18, 0x8, 0x0, 0x0, 0x4}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r7}}, @func={0x85, 0x0, 0x1, 0x0, 0x3}, @initr0={0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x1}, @exit], {0x95, 0x0, 0xff85}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xbb2, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000002900000005"], 0x48)

2.289974749s ago: executing program 1 (id=4279):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB='\v\x00\x00\x00\b\x00\x00\x00\f'], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000220000000000000000000000850000006d000000181100", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
pwritev2(r0, 0x0, 0x0, 0xe7b, 0x0, 0x0)

2.23453737s ago: executing program 1 (id=4281):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x785, &(0x7f0000001900)="$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")
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/key-users\x00', 0x0, 0x0)
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0)
sendfile(r1, r0, 0x0, 0x2)
r2 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r3 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
write(r4, &(0x7f0000004200)='t', 0x1)
sendfile(r4, r3, 0x0, 0x3ffff)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f00000001c0))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendfile(r4, r3, 0x0, 0x7ffff000)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480), 0x4)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000510700140000000000000001b7080000000000007b8af8ff00000000b7080000fcffffff7b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
setpriority(0x1, 0x0, 0x8)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x88882, 0x0)
r7 = openat(0xffffffffffffff9c, 0x0, 0x1c5902, 0x0)
write$RDMA_USER_CM_CMD_DESTROY_ID(r7, &(0x7f0000003280)={0x1, 0x10, 0xfa00, {0x0}}, 0x18)
sendfile(r7, r6, 0x0, 0x7ffff000)
fallocate(r2, 0x1, 0x0, 0x1001f0)

2.23395325s ago: executing program 2 (id=4282):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000e5ff00000000009500001280000000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x42, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
setitimer(0x1, 0x0, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/power/image_size', 0xa3002, 0x90)
write$P9_RLERROR(r1, &(0x7f0000000200)=ANY=[], 0xa)
socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000240)={0x0, 0x9004}, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f0000"], 0x48)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
r2 = openat$sysfs(0xffffff9c, &(0x7f0000000040)='/sys/kernel/notes', 0x0, 0x1a2)
finit_module(r2, 0x0, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb7020000080000"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x76, @void, @value}, 0x94)
recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x18)
r3 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000180)='./file0\x00', 0x20044e, &(0x7f0000000340)={[{@minixdf}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1ff}}, {@stripe}, {@noblock_validity}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x8}}]}, 0x3, 0x451, &(0x7f0000000f80)="$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")
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents(r4, 0x0, 0x0)
close_range(r3, 0xffffffffffffffff, 0x0)
ioctl$SIOCGSTAMP(r1, 0x8906, &(0x7f00000001c0))
bpf$MAP_CREATE(0x0, &(0x7f0000000fc0)=ANY=[@ANYBLOB="12000000030000000400000002"], 0x50)

2.004352763s ago: executing program 2 (id=4284):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x18)
syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={0x0, 0x40}, 0x1, 0x0, 0x0, 0x40}, 0x0)

1.975045783s ago: executing program 2 (id=4286):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb70200"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000001c0)='sched_switch\x00', r1}, 0x10)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f00000003c0)={0x0, 0xfff, 0x3})

1.946927584s ago: executing program 2 (id=4287):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8052, &(0x7f00000000c0)={[{@noauto_da_alloc}, {@init_itable_val={'init_itable', 0x3d, 0x6}}, {@dioread_nolock}, {@grpquota}]}, 0x5, 0x4dd, &(0x7f0000000c40)="$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")
r1 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r1, &(0x7f0000000300)=""/168, 0xa8)
socket$pppoe(0x18, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x4508, &(0x7f0000000300)={[{@noinit_itable}, {@block_validity}, {@usrquota}, {@nombcache}]}, 0x1, 0x4e1, &(0x7f0000001400)="$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")
syz_usb_connect(0x2, 0x0, 0x0, 0x0)
r2 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
ioctl$int_in(r2, 0x5452, &(0x7f0000000040)=0xffffffffffffffff)
connect$llc(r2, &(0x7f0000000180)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @broadcast}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0xfffffffd, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00'}, 0x18)
r4 = socket$packet(0x11, 0x3, 0x300)
bind$packet(r4, &(0x7f00000000c0)={0x11, 0x8, 0x0, 0x1, 0x2, 0x6, @random="0700ffffa1f6"}, 0x14)

1.47933214s ago: executing program 4 (id=4293):
openat$selinux_policy(0xffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a000000020000", 0x7)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x402, @loopback}], 0x1c)
sendto$inet6(r0, &(0x7f0000000100)="b8", 0xffe0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000300), 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r0, 0x84, 0x19, &(0x7f0000000400)={0x0, 0x200}, 0x8)

1.412784511s ago: executing program 4 (id=4294):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000003200)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r2, &(0x7f0000000200)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@dev, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x3}, {}, 0x0, 0x0, 0x1}, {{@in=@empty, 0x0, 0x33}, 0x0, @in=@private=0xa010100, 0x0, 0x0, 0x0, 0xb7, 0xffffffff}}, 0xe8)
sendmmsg(r2, &(0x7f0000007fc0), 0x800001d, 0x0)

1.382350751s ago: executing program 6 (id=4295):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000e5ff00000000009500001280000000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x42, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
setitimer(0x1, 0x0, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/power/image_size', 0xa3002, 0x90)
write$P9_RLERROR(r1, &(0x7f0000000200)=ANY=[], 0xa)
socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000240)={0x0, 0x9004}, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f0000"], 0x48)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
r2 = openat$sysfs(0xffffff9c, &(0x7f0000000040)='/sys/kernel/notes', 0x0, 0x1a2)
finit_module(r2, 0x0, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb7020000080000"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x76, @void, @value}, 0x94)
recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x18)
r3 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000180)='./file0\x00', 0x20044e, &(0x7f0000000340)={[{@minixdf}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1ff}}, {@stripe}, {@noblock_validity}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x8}}]}, 0x3, 0x451, &(0x7f0000000f80)="$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")
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents(r4, 0x0, 0x0)
close_range(r3, 0xffffffffffffffff, 0x0)
ioctl$SIOCGSTAMP(r1, 0x8906, &(0x7f00000001c0))
bpf$MAP_CREATE(0x0, &(0x7f0000000fc0)=ANY=[@ANYBLOB="12000000030000000400000002"], 0x50)

1.307815012s ago: executing program 1 (id=4296):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x18)
syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={0x0, 0x40}, 0x1, 0x0, 0x0, 0x40}, 0x0)

1.274703973s ago: executing program 1 (id=4297):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x18)
socket$kcm(0x10, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000180)={@multicast1, @loopback}, 0xc)
r3 = socket$netlink(0x10, 0x3, 0x0)
writev(r3, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)

1.144629745s ago: executing program 6 (id=4298):
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x1}, 0x8002, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)
sendmsg$TEAM_CMD_PORT_LIST_GET(r1, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000100)=ANY=[@ANYBLOB="40010000", @ANYRES16=r2, @ANYBLOB="150500000000ffdbdf2503"], 0x140}}, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SET_FPEMU(0xa, 0x0)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000000), r3)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), 0xffffffffffffffff)
r6 = gettid()
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r4, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x500, 0x0, 0x2000040}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x24, r5, 0x1, 0x70bd28, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_PID={0x8, 0x1c, r6}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000040}, 0x4000000)
dup2(r0, r0)
ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000080)={'wpan3\x00'})
socket$kcm(0x10, 0x2, 0x4)
ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000100)={'wpan4\x00'})
sendmsg$NL802154_CMD_NEW_SEC_KEY(r3, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, r5, 0x300, 0x70bd2a, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x81}, 0x80)
socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="84020000100001042cbd7000fedbdf2500000000", @ANYRES32=0x0, @ANYBLOB="7b130000018000003c0012800b00010062726964676500002c00028008001b00e709000008001b00ff03001005002c000500000005001600000000000800"], 0x284}}, 0x20000844)
sendmmsg(r7, &(0x7f00000002c0), 0x40000000000009f, 0x0)

1.015447216s ago: executing program 1 (id=4299):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xffd, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r5}, 0x18)
unshare(0x62040200)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000880)=ANY=[@ANYBLOB="6400000000010104000000000000000302000007240001801400018008000100e0000001080002007f0000010c0002800500010000000000240002801400018008000100e0000001080002007f0000010c0002800500010000020000080007"], 0x64}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
ioperm(0x0, 0xab49, 0x7)
socket$unix(0x1, 0x5, 0x0)
syz_usbip_server_init(0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', 0xffffffffffffffff, 0x0, 0x100}, 0x18)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000980)=@raw={'raw\x00', 0x3c1, 0x3, 0x3f0, 0x0, 0xc8, 0x8, 0x1c0, 0x5803, 0x320, 0x2e8, 0x2e8, 0x320, 0x2e8, 0x3, 0x0, {[{{@ipv6={@ipv4={'\x00', '\xff\xff', @multicast1}, @mcast1, [], [], 'erspan0\x00', 'geneve1\x00'}, 0x0, 0x190, 0x1c0, 0x0, {0x0, 0x2000000000000}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'kmp\x00', "cfcaf80c672f61cd17ae5119b5135c2aee68d23a465cd431e1ecef50c3234e082555f67222476147864fa03182f5cf11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac07a602061c96baebc989f1f34a214e67262c1fe4b124e0f7323a587d2a1fcfe36bbf12eca0a7b66c60c527bac2b5", 0x1}}, @common=@inet=@socket3={{0x28}}]}, @common=@unspec=@CONNMARK={0x30}}, {{@uncond, 0x0, 0xf8, 0x160, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x13}}, @inet=@rpfilter={{0x28}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x450)

843.632578ms ago: executing program 6 (id=4300):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000a40000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
syz_open_procfs(0xffffffffffffffff, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r5], 0x2c}, 0x1, 0x0, 0x0, 0x40040}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$sock_int(r6, 0x1, 0x4c, &(0x7f0000000000)=0xb, 0x4)
bind$bt_hci(r6, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffef5, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00'}, 0x10)
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0xc40a, &(0x7f0000000280)={[{@noblock_validity}, {@dioread_lock}, {@nobh}, {@minixdf}, {@acl}, {@usrjquota, 0x2e}, {@grpquota}, {@nodiscard}, {@jqfmt_vfsv0}, {@noload}], [], 0x2c}, 0x84, 0x459, &(0x7f0000000900)="$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")
syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x41, &(0x7f0000000880)={[{@bsdgroups}, {@nodiscard}, {@usrjquota}, {@grpjquota}, {@grpjquota}, {@minixdf}, {@prjquota}, {@noload}, {@block_validity}]}, 0x64, 0x50a, &(0x7f0000000200)="$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")
syz_mount_image$msdos(&(0x7f0000000800), &(0x7f0000000f00)='.\x00', 0x1aca421, &(0x7f00000008c0)=ANY=[], 0xb, 0x0, &(0x7f0000000000))

339.591995ms ago: executing program 4 (id=4301):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000020000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x1f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x800, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r5}, 0x10)
r6 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r7 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r7, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
write$selinux_load(r6, &(0x7f0000000740)=ANY=[@ANYRES64=r1, @ANYRESDEC=r8, @ANYRES16, @ANYRES16=r3, @ANYBLOB="8473b522dc21d28b6ff9e68d9a6e20493115d0d983b50481d9a4cd6f34edc6a063a41412e97831c8d2a88bf0255737332732fab048dbd20c721eba82f2d6ac48afd4b68c92b02ae85624dcf71b5576612d81ac2ec6", @ANYBLOB="d34adba06b646f32becc3498868819914f1a38e516086ad3715ae0db0c54bb39448aae0997c30f7a7c15195245c67bcad025f13aafeadf76c40d0009432e24279f75765954a635cbc4286f7f223c18f5d62764e36c42f4b7007051b702e482deb870175d2712fe8a52bd7eccb2a58f7cf404d74714625c9b61adee6fc91506c91488511a00229f36884f3c4f56308fe0e1823c8077414400e6ffa56867bd1225b2eb2231cc5149d2ca73407c9aec552cc002ab146d575b3bc3210511c93769e3b6b4feebd59e380504d89dbcc3827cf874ff66eda7d8c0", @ANYBLOB="b916a94397afbd6e91738bcbec7089790038cd59c088de4b1957ec03234fa3cd9e6c388f34d65c47692b085efe0a5bafad35d8737c63b9964b3d19be418d967d9ca44060060bc0c4bd16b958eb485607aa0de6b37f883c62a8b11b21d572d1869f34430187ab7a1126bb46915fd7a99b9c28d1d5f45043b7ae8ec52c7bf4d72959a701bfdb3b499fafd386403e3cae09f723b302871498961fe499b11d605e108ae11a367916860b98a2df2971c42c1de6a5edb53d878b", @ANYRESDEC=r0], 0x2000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10)
r9 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r9, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x402, @loopback}], 0x1c)
sendto$inet6(r9, &(0x7f0000000100)="b8", 0xffe0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r9, 0x84, 0x18, &(0x7f0000000300), 0x8)

80.639389ms ago: executing program 4 (id=4302):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket(0x1e, 0x5, 0x0)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000040)=@req3={0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x1c)
listen(r2, 0x0)
r3 = socket(0x1e, 0x805, 0x0)
sendmsg$tipc(r3, &(0x7f0000000080)={&(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x0, 0x4}}}, 0x10, 0x0}, 0x0)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f00000000c0)=@req3={0x80000000, 0x0, 0x2}, 0x1c)
accept4$inet6(r2, 0x0, 0x0, 0x800)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000380)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r5, 0x0, 0x5}, 0x18)
sendmsg$tipc(r3, &(0x7f0000000640)={&(0x7f0000000300), 0x10, 0x0}, 0x0)

68.415959ms ago: executing program 6 (id=4303):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB='\v\x00\x00\x00\b\x00\x00\x00\f'], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000220000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
pwritev2(r0, 0x0, 0x0, 0xe7b, 0x0, 0x0)

56.480569ms ago: executing program 4 (id=4304):
openat$selinux_policy(0xffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a000000020000", 0x7)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x402, @loopback}], 0x1c)
sendto$inet6(r0, &(0x7f0000000100)="b8", 0xffe0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000300), 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r0, 0x84, 0x19, &(0x7f0000000400)={0x0, 0x200}, 0x8)

740.49µs ago: executing program 4 (id=4305):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x11, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r1}, 0x18)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000002c0)=0x1)
r2 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f00000000c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}})
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000f00000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
flistxattr(r5, 0x0, 0x0)

397.42µs ago: executing program 6 (id=4306):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000220000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
pwritev2(r0, 0x0, 0x0, 0xe7b, 0x0, 0x0)

0s ago: executing program 6 (id=4307):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x785, &(0x7f0000001900)="$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")
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/key-users\x00', 0x0, 0x0)
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0)
sendfile(r1, r0, 0x0, 0x2)
r2 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$eJzs3c9vFFUcAPDvbH/QUrSFGBUP0sQYSJSWFjDEeICrIQ3+iBcvVloQKdDQGi2aUBK8mBgvxph48iD+F0rkyklPHrx4MiREDUcT18x2pnTb2ZYubacyn0+y9M17O7w33X773r6+NxtAZQ2m/9Qi9kbEdBLRn8wvlnVGVji48Lx7f39yOn0kUa+/8WcSSZaXPz/JvvZlJ/dExM8/JbGnY2W9M3NXzo9PTU1ezo6HZy9MD8/MXTl47sL42cmzkxdHXxo9dvTI0WMjh9q6rqsFeSevv/9h/2djb3/3zT/JyPe/jSVxPF7Nnrj0OjbKYAw2vifJyqK+YxtdWUk6sp+TpS9x0llig1iX/PXrioinoj864v6L1x+fvlZq44BNVU8i6kBFJeIfKiofB+Tv7Ze/D66VMioBtsLdEwsTACvjv3NhbjB6GnMDO+8lsXRaJ4mI9mbmmu2KiNu3xq6fuTV2PTZpHg4oNn8tIp4uiv+kEf8D0RMDjfivNcV/Oi44lX1N819vs/7lU8XiH7bOQvz3rBr/0SL+31kS/++2Wf/g/eR7vU3x39vuJQEAAAAAAEBl3TwRES8W/f2/trj+JwrW//RFxPENqH9w2fHKv//X7mxANUCBuyciXilc/1vLV/8OdGSpxxrrAbqSM+emJg9FxOMRcSC6dqTHI6vUcfDzPV+3KhvM1v/lj7T+29lawKwddzp3NJ8zMT47/rDXDUTcvRbxTOH632Sx/08K+v/098H0A9ax5/kbp1qVrR3/wGapfxuxv7D/v3/XimT1+3MMN8YDw/moYKVnP/7ih1b1txv/bjEBDy/t/3euHv8DydL79cysv47Dc531VmXtjv+7kzcbt5zpzvI+Gp+dvTwS0Z2c7Ehzm/JH199meBTl8ZDHSxr/B55bff6vaPzfGxHzy/7v5K/mPcW5J//t+71Ve4z/oTxp/E+sq/9ff2L0xsCPrep/sP7/SKOvP5DlmP+DBV/lYdrdnF8Qjp1FRVvdXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FNQiYlcktaHFdK02NBTRFxFPxM7a1KWZ2RfOXPrg4kRa1vj8/1r+Sb/9C8dJ/vn/A0uOR5cdH46I3RHxZUdv43jo9KWpibIvHgAAAAAAAAAAAAAAAAAAALaJvhb7/1N/dJTdOmDTdZbdAKA0BfH/SxntALae/h+qS/xDdYl/qC7xD9Ul/qG6xD9Ul/iH6hL/AAAAAADwSNm97+avSUTMv9zbeKS6s7KuUlsGbLZa2Q0ASuMWP1Bdlv5AdXmPDyRrlPe0PGmtM1czffohTgYAAAAAAAAAAACAytm/1/5/qCr7/6G67P+H6sr3/+8ruR3A1vMeH4g1dvIX7v9f8ywAAAAAAAAAAAAAYCPNzF05Pz41NXlZ4q3t0YytTNTr9avpT8F2ac//PJEvhd8u7VmWyPf6PdhZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0XAAD//xYSJMU=")
r3 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
write(r4, &(0x7f0000004200)='t', 0x1)
sendfile(r4, r3, 0x0, 0x3ffff)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f00000001c0))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendfile(r4, r3, 0x0, 0x7ffff000)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480), 0x4)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000510700140000000000000001b7080000000000007b8af8ff00000000b7080000fcffffff7b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
setpriority(0x1, 0x0, 0x8)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x88882, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c5902, 0x0)
write$RDMA_USER_CM_CMD_DESTROY_ID(r7, 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffff000)
fallocate(r2, 0x1, 0x0, 0x1001f0)

kernel console output (not intermixed with test programs):

loop6): dirty_blocks=0
[  466.300197][T17561] EXT4-fs (loop6): Block reservation details
[  466.306317][T17561] EXT4-fs (loop6): i_reserved_data_blocks=0
[  466.323302][T17580] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  466.344704][T17574] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  466.394866][T17586] C speed is unknown, defaulting to 1000
[  467.028630][T17656] FAULT_INJECTION: forcing a failure.
[  467.028630][T17656] name failslab, interval 1, probability 0, space 0, times 0
[  467.041348][T17656] CPU: 0 UID: 0 PID: 17656 Comm: syz.2.3685 Not tainted 6.15.0-rc7-syzkaller-00002-gb36ddb9210e6 #0 PREEMPT(voluntary) 
[  467.041420][T17656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  467.041435][T17656] Call Trace:
[  467.041444][T17656]  <TASK>
[  467.041454][T17656]  __dump_stack+0x1d/0x30
[  467.041480][T17656]  dump_stack_lvl+0xe8/0x140
[  467.041578][T17656]  dump_stack+0x15/0x1b
[  467.041597][T17656]  should_fail_ex+0x265/0x280
[  467.041645][T17656]  should_failslab+0x8c/0xb0
[  467.041678][T17656]  kmem_cache_alloc_noprof+0x50/0x310
[  467.041703][T17656]  ? skb_clone+0x151/0x1f0
[  467.041729][T17656]  skb_clone+0x151/0x1f0
[  467.041825][T17656]  __netlink_deliver_tap+0x2c9/0x500
[  467.041853][T17656]  netlink_unicast+0x64c/0x670
[  467.041899][T17656]  netlink_sendmsg+0x58b/0x6b0
[  467.041985][T17656]  ? __pfx_netlink_sendmsg+0x10/0x10
[  467.042063][T17656]  __sock_sendmsg+0x145/0x180
[  467.042091][T17656]  ____sys_sendmsg+0x31e/0x4e0
[  467.042188][T17656]  ___sys_sendmsg+0x17b/0x1d0
[  467.042224][T17656]  __x64_sys_sendmsg+0xd4/0x160
[  467.042303][T17656]  x64_sys_call+0x2999/0x2fb0
[  467.042329][T17656]  do_syscall_64+0xd0/0x1a0
[  467.042442][T17656]  ? clear_bhb_loop+0x40/0x90
[  467.042464][T17656]  ? clear_bhb_loop+0x40/0x90
[  467.042488][T17656]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  467.042569][T17656] RIP: 0033:0x7f911a10e969
[  467.042632][T17656] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  467.042651][T17656] RSP: 002b:00007f9118777038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  467.042676][T17656] RAX: ffffffffffffffda RBX: 00007f911a335fa0 RCX: 00007f911a10e969
[  467.042693][T17656] RDX: 0000000000000000 RSI: 00002000000037c0 RDI: 0000000000000003
[  467.042710][T17656] RBP: 00007f9118777090 R08: 0000000000000000 R09: 0000000000000000
[  467.042727][T17656] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  467.042808][T17656] R13: 0000000000000000 R14: 00007f911a335fa0 R15: 00007ffe1ed13088
[  467.042827][T17656]  </TASK>
[  467.044484][T17657] program syz.4.3684 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  467.118106][T14047] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  467.305395][T17669] loop6: detected capacity change from 0 to 1024
[  467.376728][T17669] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  467.404379][T17675] C speed is unknown, defaulting to 1000
[  467.421966][   T29] kauditd_printk_skb: 8 callbacks suppressed
[  467.421987][   T29] audit: type=1326 audit(1747812517.844:4831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17676 comm="syz.2.3693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f911a10e969 code=0x7ffc0000
[  467.475296][T17669] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4113: comm syz.6.3690: Allocating blocks 385-513 which overlap fs metadata
[  467.511026][T17671] Invalid ELF header magic: != ELF
[  467.519361][T17671] loop3: detected capacity change from 0 to 512
[  467.530333][T17684] EXT4-fs (loop6): pa ffff888106dee850: logic 16, phys. 129, len 24
[  467.538541][T17684] EXT4-fs error (device loop6): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[  467.549464][T17671] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  467.633144][T17671] EXT4-fs (loop3): 1 truncate cleaned up
[  467.639638][T17671] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  467.703545][T13862] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  467.739618][T14047] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  467.802655][T17689] loop3: detected capacity change from 0 to 512
[  467.822353][T17689] EXT4-fs: Ignoring removed nobh option
[  467.841982][T17689] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  467.932221][T17699] program syz.4.3700 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  467.974796][T17689] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.3696: invalid indirect mapped block 2683928664 (level 1)
[  468.003379][T17689] EXT4-fs (loop3): 1 truncate cleaned up
[  468.009403][T17689] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  468.036585][T17706] netlink: 'syz.6.3703': attribute type 4 has an invalid length.
[  468.153628][T17709] C speed is unknown, defaulting to 1000
[  468.307690][T17709] C speed is unknown, defaulting to 1000
[  468.414067][   T29] audit: type=1326 audit(1747812518.714:4832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17707 comm="syz.4.3704" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ef0ace969 code=0x7ffc0000
[  468.437648][   T29] audit: type=1326 audit(1747812518.714:4833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17707 comm="syz.4.3704" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ef0ace969 code=0x7ffc0000
[  468.626067][T14047] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  468.654355][T17715] loop2: detected capacity change from 0 to 1024
[  468.852840][T17715] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  468.899587][T17715] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4113: comm syz.2.3706: Allocating blocks 385-513 which overlap fs metadata
[  468.921050][   T29] audit: type=1326 audit(1747812519.344:4834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17716 comm="syz.6.3708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2c7b6e969 code=0x7ffc0000
[  468.944660][   T29] audit: type=1326 audit(1747812519.344:4835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17716 comm="syz.6.3708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff2c7b6e969 code=0x7ffc0000
[  468.968261][   T29] audit: type=1326 audit(1747812519.344:4836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17716 comm="syz.6.3708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2c7b6e969 code=0x7ffc0000
[  468.991934][   T29] audit: type=1326 audit(1747812519.344:4837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17716 comm="syz.6.3708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff2c7b6e969 code=0x7ffc0000
[  469.015476][   T29] audit: type=1326 audit(1747812519.344:4838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17716 comm="syz.6.3708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2c7b6e969 code=0x7ffc0000
[  469.039141][   T29] audit: type=1326 audit(1747812519.344:4839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17716 comm="syz.6.3708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff2c7b6e969 code=0x7ffc0000
[  469.062753][   T29] audit: type=1326 audit(1747812519.344:4840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17716 comm="syz.6.3708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2c7b6e969 code=0x7ffc0000
[  469.065306][T17715] EXT4-fs (loop2): pa ffff888105ae4f50: logic 16, phys. 129, len 24
[  469.094471][T17715] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[  469.119602][T17726] C speed is unknown, defaulting to 1000
[  469.142197][T17737] program syz.6.3712 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  469.184960][T15201] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  469.194871][T17739] loop4: detected capacity change from 0 to 764
[  469.243846][T17739] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  469.323822][T17758] loop4: detected capacity change from 0 to 512
[  469.347143][T17758] EXT4-fs: Ignoring removed mblk_io_submit option
[  469.354100][T17758] ext4: Unknown parameter 'hash'
[  469.442385][T17764] netlink: 256 bytes leftover after parsing attributes in process `syz.2.3719'.
[  469.567727][T17771] loop4: detected capacity change from 0 to 512
[  469.574360][T17771] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  469.585640][T17771] netlink: 'syz.4.3718': attribute type 10 has an invalid length.
[  469.939633][T17778] SELinux:  policydb magic number 0xffffffff does not match expected magic number 0xf97cff8c
[  469.950130][T17778] SELinux: failed to load policy
[  470.239009][T17826] loop2: detected capacity change from 0 to 512
[  470.280976][T17826] EXT4-fs: Ignoring removed nobh option
[  470.298142][T17852] program syz.6.3728 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  470.338208][T17826] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2
[  470.348459][T17861] netlink: 552 bytes leftover after parsing attributes in process `syz.4.3729'.
[  470.360343][T17861] bridge1: the hash_elasticity option has been deprecated and is always 16
[  470.370348][T17826] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.3725: invalid indirect mapped block 2683928664 (level 1)
[  470.391043][T17826] EXT4-fs (loop2): 1 truncate cleaned up
[  470.401101][T17826] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  470.498095][T15201] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  470.594050][T17875] C speed is unknown, defaulting to 1000
[  470.660131][T17880] loop4: detected capacity change from 0 to 128
[  470.699473][T17875] bio_check_eod: 4 callbacks suppressed
[  470.699491][T17875] syz.4.3734: attempt to access beyond end of device
[  470.699491][T17875] loop4: rw=2049, sector=132, nr_sectors = 8 limit=128
[  470.720439][T17875] syz.4.3734: attempt to access beyond end of device
[  470.720439][T17875] loop4: rw=2049, sector=148, nr_sectors = 8 limit=128
[  470.735472][T17877] SELinux:  policydb magic number 0xffffffff does not match expected magic number 0xf97cff8c
[  470.767969][T17877] SELinux: failed to load policy
[  470.777675][T17875] syz.4.3734: attempt to access beyond end of device
[  470.777675][T17875] loop4: rw=2049, sector=142, nr_sectors = 1 limit=128
[  470.791203][T17875] buffer_io_error: 2 callbacks suppressed
[  470.791219][T17875] Buffer I/O error on dev loop4, logical block 142, lost async page write
[  470.843846][T17875] syz.4.3734: attempt to access beyond end of device
[  470.843846][T17875] loop4: rw=2049, sector=143, nr_sectors = 1 limit=128
[  470.857376][T17875] Buffer I/O error on dev loop4, logical block 143, lost async page write
[  470.867168][T17875] syz.4.3734: attempt to access beyond end of device
[  470.867168][T17875] loop4: rw=2049, sector=144, nr_sectors = 1 limit=128
[  470.880742][T17875] Buffer I/O error on dev loop4, logical block 144, lost async page write
[  470.907199][T17875] syz.4.3734: attempt to access beyond end of device
[  470.907199][T17875] loop4: rw=2049, sector=145, nr_sectors = 1 limit=128
[  470.920778][T17875] Buffer I/O error on dev loop4, logical block 145, lost async page write
[  470.934095][T17875] syz.4.3734: attempt to access beyond end of device
[  470.934095][T17875] loop4: rw=2049, sector=146, nr_sectors = 1 limit=128
[  470.947649][T17875] Buffer I/O error on dev loop4, logical block 146, lost async page write
[  470.957512][T17875] syz.4.3734: attempt to access beyond end of device
[  470.957512][T17875] loop4: rw=2049, sector=147, nr_sectors = 1 limit=128
[  470.959307][T17894] loop3: detected capacity change from 0 to 128
[  470.970994][T17875] Buffer I/O error on dev loop4, logical block 147, lost async page write
[  471.008582][T17894] syz.3.3738: attempt to access beyond end of device
[  471.008582][T17894] loop3: rw=2049, sector=132, nr_sectors = 8 limit=128
[  471.023346][T17875] syz.4.3734: attempt to access beyond end of device
[  471.023346][T17875] loop4: rw=2049, sector=156, nr_sectors = 1 limit=128
[  471.036846][T17875] Buffer I/O error on dev loop4, logical block 156, lost async page write
[  471.037002][T17894] Buffer I/O error on dev loop3, logical block 142, lost async page write
[  471.051760][T17890] C speed is unknown, defaulting to 1000
[  471.081276][T17894] Buffer I/O error on dev loop3, logical block 143, lost async page write
[  471.082648][T17875] Buffer I/O error on dev loop4, logical block 157, lost async page write
[  471.121386][T17899] program syz.2.3742 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  471.156631][T17904] loop4: detected capacity change from 0 to 2048
[  471.185229][T17904] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  471.226489][T17912] loop3: detected capacity change from 0 to 1024
[  471.305444][T17912] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  471.355246][T17912] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.3745: Allocating blocks 385-513 which overlap fs metadata
[  471.403729][T17912] EXT4-fs (loop3): pa ffff888105ae4ee0: logic 16, phys. 129, len 24
[  471.411901][T17912] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[  471.453426][T17923] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  471.465782][T17923] EXT4-fs (loop4): This should not happen!! Data will be lost
[  471.465782][T17923] 
[  471.475497][T17923] EXT4-fs (loop4): Total free blocks count 0
[  471.481598][T17923] EXT4-fs (loop4): Free/Dirty block details
[  471.487511][T17923] EXT4-fs (loop4): free_blocks=0
[  471.492501][T17923] EXT4-fs (loop4): dirty_blocks=0
[  471.497554][T17923] EXT4-fs (loop4): Block reservation details
[  471.503597][T17923] EXT4-fs (loop4): i_reserved_data_blocks=0
[  471.510044][T17904] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  471.533033][T14047] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  471.679734][T17951] loop3: detected capacity change from 0 to 1024
[  471.731635][T17951] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  472.071824][T17951] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  472.091167][T17951] EXT4-fs (loop3): orphan cleanup on readonly fs
[  472.098922][T17951] EXT4-fs error (device loop3): ext4_ext_check_inode:524: inode #3: comm syz.3.3751: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 2(4), depth 0(0)
[  472.159054][T17951] EXT4-fs error (device loop3): ext4_quota_enable:7129: comm syz.3.3751: Bad quota inode: 3, type: 0
[  472.180032][T17951] EXT4-fs warning (device loop3): ext4_enable_quotas:7170: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  472.194774][T17951] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  472.226531][T17951] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  472.251098][T18002] program syz.2.3755 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  472.270368][T18001] C speed is unknown, defaulting to 1000
[  472.284639][T17951] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  472.348198][T18006] loop2: detected capacity change from 0 to 2048
[  472.357108][T14047] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  472.368075][T18001] loop6: detected capacity change from 0 to 128
[  472.384174][T18006] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  472.609846][   T29] kauditd_printk_skb: 34 callbacks suppressed
[  472.609863][   T29] audit: type=1326 audit(1747812523.034:4875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18022 comm="syz.3.3763" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceba59e969 code=0x7ffc0000
[  472.639598][   T29] audit: type=1326 audit(1747812523.034:4876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18022 comm="syz.3.3763" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceba59e969 code=0x7ffc0000
[  472.690044][T18024] C speed is unknown, defaulting to 1000
[  472.798023][T18027] ip6t_rpfilter: unknown options
[  473.041511][T18024] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(8)
[  473.048116][T18024] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  473.055803][T18024] vhci_hcd vhci_hcd.0: Device attached
[  473.215733][T15201] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  473.307863][T18025] vhci_hcd: connection closed
[  473.308207][T11255] vhci_hcd: stop threads
[  473.317353][T11255] vhci_hcd: release socket
[  473.321966][T11255] vhci_hcd: disconnect device
[  473.326683][   T36] usb 13-1: new low-speed USB device number 4 using vhci_hcd
[  473.338771][   T36] usb 13-1: enqueue for inactive port 0
[  473.346547][   T29] audit: type=1326 audit(1747812523.764:4877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18054 comm="syz.2.3766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f911a10e969 code=0x7ffc0000
[  473.370306][   T29] audit: type=1326 audit(1747812523.764:4878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18054 comm="syz.2.3766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f911a10e969 code=0x7ffc0000
[  473.393991][   T29] audit: type=1326 audit(1747812523.764:4879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18054 comm="syz.2.3766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f911a10e969 code=0x7ffc0000
[  473.417530][   T29] audit: type=1326 audit(1747812523.764:4880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18054 comm="syz.2.3766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f911a10e969 code=0x7ffc0000
[  473.441153][   T29] audit: type=1326 audit(1747812523.764:4881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18054 comm="syz.2.3766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f911a10e969 code=0x7ffc0000
[  473.464689][   T29] audit: type=1326 audit(1747812523.764:4882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18054 comm="syz.2.3766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f911a10e969 code=0x7ffc0000
[  473.488299][   T29] audit: type=1326 audit(1747812523.764:4883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18054 comm="syz.2.3766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f911a10e969 code=0x7ffc0000
[  473.512070][   T29] audit: type=1326 audit(1747812523.764:4884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18054 comm="syz.2.3766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f911a10e969 code=0x7ffc0000
[  473.535747][   T36] usb 13-1: enqueue for inactive port 0
[  473.541438][   T36] usb 13-1: enqueue for inactive port 0
[  473.610756][   T36] vhci_hcd: vhci_device speed not set
[  473.674901][T18083] C speed is unknown, defaulting to 1000
[  473.867692][T18119] loop4: detected capacity change from 0 to 1024
[  473.879047][T18119] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  473.895575][T18119] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  473.959934][T18119] EXT4-fs (loop4): orphan cleanup on readonly fs
[  474.011327][T18119] EXT4-fs error (device loop4): ext4_ext_check_inode:524: inode #3: comm syz.4.3773: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 2(4), depth 0(0)
[  474.069514][T18119] EXT4-fs error (device loop4): ext4_quota_enable:7129: comm syz.4.3773: Bad quota inode: 3, type: 0
[  474.090421][T18119] EXT4-fs warning (device loop4): ext4_enable_quotas:7170: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  474.105291][T18119] EXT4-fs (loop4): Cannot turn on quotas: error -117
[  474.126074][T18115] IPv6: Can't replace route, no match found
[  474.144663][T18119] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  474.165646][T18119] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  474.173414][T18123] C speed is unknown, defaulting to 1000
[  474.179551][T18115] netlink: 'syz.3.3771': attribute type 4 has an invalid length.
[  474.188130][T18126] loop2: detected capacity change from 0 to 2048
[  474.225378][T14783] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  474.263743][T18126] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  474.373730][T18123] C speed is unknown, defaulting to 1000
[  474.410850][T18146] program syz.1.3781 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  474.441983][T18148] loop3: detected capacity change from 0 to 512
[  474.449041][T18148] EXT4-fs: Ignoring removed nobh option
[  474.496695][T18150] C speed is unknown, defaulting to 1000
[  474.611513][T18151] C speed is unknown, defaulting to 1000
[  474.673405][T18148] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  474.807388][T18148] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.3782: invalid indirect mapped block 2683928664 (level 1)
[  475.265501][T18156] netlink: 'syz.1.3783': attribute type 10 has an invalid length.
[  475.301225][T18148] EXT4-fs (loop3): 1 truncate cleaned up
[  475.504199][T18148] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  475.589435][T14047] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  475.612361][T15201] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  475.656161][T18164] loop6: detected capacity change from 0 to 1024
[  475.685515][T18164] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  475.701467][T18170] SELinux:  policydb magic number 0xffffffff does not match expected magic number 0xf97cff8c
[  475.703465][T18164] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4113: comm syz.6.3789: Allocating blocks 385-513 which overlap fs metadata
[  475.731511][T18170] SELinux: failed to load policy
[  475.734602][T18164] EXT4-fs (loop6): pa ffff888105ae4d90: logic 16, phys. 129, len 24
[  475.744685][T18164] EXT4-fs error (device loop6): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[  475.794978][T13862] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  475.818618][T18180] SELinux:  policydb magic number 0xffffffff does not match expected magic number 0xf97cff8c
[  475.834477][T18180] SELinux: failed to load policy
[  475.843975][T18183] loop6: detected capacity change from 0 to 764
[  475.869285][T18183] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  475.898504][T18188] loop6: detected capacity change from 0 to 512
[  475.915434][T18188] EXT4-fs: Ignoring removed mblk_io_submit option
[  475.934755][T18188] ext4: Unknown parameter 'hash'
[  476.173203][T18200] loop6: detected capacity change from 0 to 512
[  476.179755][T18200] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  476.190904][T18200] netlink: 'syz.6.3797': attribute type 10 has an invalid length.
[  476.573223][T18202] loop4: detected capacity change from 0 to 1024
[  476.595400][T18202] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  476.645691][T18206] SELinux:  policydb magic number 0xffffffff does not match expected magic number 0xf97cff8c
[  476.652038][T18202] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  476.671354][T18202] EXT4-fs (loop4): orphan cleanup on readonly fs
[  476.677065][T18206] SELinux: failed to load policy
[  476.677754][T18202] EXT4-fs error (device loop4): ext4_ext_check_inode:524: inode #3: comm syz.4.3802: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 2(4), depth 0(0)
[  476.701916][T18202] EXT4-fs error (device loop4): ext4_quota_enable:7129: comm syz.4.3802: Bad quota inode: 3, type: 0
[  476.713130][T18202] EXT4-fs warning (device loop4): ext4_enable_quotas:7170: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  476.727995][T18202] EXT4-fs (loop4): Cannot turn on quotas: error -117
[  476.741071][T18202] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  476.814071][T18210] loop6: detected capacity change from 0 to 2048
[  476.860661][T18202] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  476.890851][T18210] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  476.918709][T18218] loop3: detected capacity change from 0 to 764
[  476.927216][T18214] SELinux:  policydb magic number 0xffffffff does not match expected magic number 0xf97cff8c
[  476.942674][T18214] SELinux: failed to load policy
[  476.957478][T18218] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  476.974377][T14783] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  477.040774][T18222] C speed is unknown, defaulting to 1000
[  477.147549][T18235] program syz.3.3815 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  477.169141][T18210] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  477.181576][T18210] EXT4-fs (loop6): This should not happen!! Data will be lost
[  477.181576][T18210] 
[  477.191319][T18210] EXT4-fs (loop6): Total free blocks count 0
[  477.197372][T18210] EXT4-fs (loop6): Free/Dirty block details
[  477.203329][T18210] EXT4-fs (loop6): free_blocks=0
[  477.208310][T18210] EXT4-fs (loop6): dirty_blocks=0
[  477.213395][T18210] EXT4-fs (loop6): Block reservation details
[  477.219404][T18210] EXT4-fs (loop6): i_reserved_data_blocks=0
[  477.230937][T18222] loop4: detected capacity change from 0 to 128
[  477.252807][T18222] bio_check_eod: 32 callbacks suppressed
[  477.252823][T18222] syz.4.3810: attempt to access beyond end of device
[  477.252823][T18222] loop4: rw=2049, sector=132, nr_sectors = 8 limit=128
[  477.309325][T18241] loop3: detected capacity change from 0 to 2048
[  477.322767][T18222] syz.4.3810: attempt to access beyond end of device
[  477.322767][T18222] loop4: rw=2049, sector=148, nr_sectors = 8 limit=128
[  477.337606][T18222] syz.4.3810: attempt to access beyond end of device
[  477.337606][T18222] loop4: rw=2049, sector=142, nr_sectors = 1 limit=128
[  477.351111][T18222] buffer_io_error: 26 callbacks suppressed
[  477.351127][T18222] Buffer I/O error on dev loop4, logical block 142, lost async page write
[  477.361031][T18229] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  477.379797][T18241] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  477.580575][T18222] syz.4.3810: attempt to access beyond end of device
[  477.580575][T18222] loop4: rw=2049, sector=143, nr_sectors = 1 limit=128
[  477.594175][T18222] Buffer I/O error on dev loop4, logical block 143, lost async page write
[  477.604042][T18222] syz.4.3810: attempt to access beyond end of device
[  477.604042][T18222] loop4: rw=2049, sector=144, nr_sectors = 1 limit=128
[  477.617506][T18222] Buffer I/O error on dev loop4, logical block 144, lost async page write
[  477.627541][T18222] syz.4.3810: attempt to access beyond end of device
[  477.627541][T18222] loop4: rw=2049, sector=145, nr_sectors = 1 limit=128
[  477.641057][T18222] Buffer I/O error on dev loop4, logical block 145, lost async page write
[  477.677463][T18222] syz.4.3810: attempt to access beyond end of device
[  477.677463][T18222] loop4: rw=2049, sector=146, nr_sectors = 1 limit=128
[  477.691050][T18222] Buffer I/O error on dev loop4, logical block 146, lost async page write
[  477.728217][T18222] syz.4.3810: attempt to access beyond end of device
[  477.728217][T18222] loop4: rw=2049, sector=147, nr_sectors = 1 limit=128
[  477.741846][T18222] Buffer I/O error on dev loop4, logical block 147, lost async page write
[  477.764588][T18222] syz.4.3810: attempt to access beyond end of device
[  477.764588][T18222] loop4: rw=2049, sector=156, nr_sectors = 1 limit=128
[  477.778111][T18222] Buffer I/O error on dev loop4, logical block 156, lost async page write
[  477.789314][T18222] syz.4.3810: attempt to access beyond end of device
[  477.789314][T18222] loop4: rw=2049, sector=157, nr_sectors = 1 limit=128
[  477.802846][T18222] Buffer I/O error on dev loop4, logical block 157, lost async page write
[  477.813359][T18222] Buffer I/O error on dev loop4, logical block 160, lost async page write
[  477.822160][T18222] Buffer I/O error on dev loop4, logical block 161, lost async page write
[  478.074866][T18255] loop6: detected capacity change from 0 to 764
[  478.102086][T18255] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  478.125457][T14047] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  478.318821][T18261] SELinux:  policydb magic number 0xffffffff does not match expected magic number 0xf97cff8c
[  478.343940][T18261] SELinux: failed to load policy
[  478.415148][T18263] C speed is unknown, defaulting to 1000
[  478.494068][T18263] C speed is unknown, defaulting to 1000
[  478.672611][T18267] netlink: 256 bytes leftover after parsing attributes in process `syz.2.3826'.
[  478.725091][T18265] C speed is unknown, defaulting to 1000
[  478.814224][T18268] C speed is unknown, defaulting to 1000
[  478.867884][T18275] loop4: detected capacity change from 0 to 512
[  478.874597][T18275] EXT4-fs: Ignoring removed nobh option
[  478.884085][T18277] loop2: detected capacity change from 0 to 1024
[  478.892643][T18275] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[  478.902001][T18275] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.3828: invalid indirect mapped block 2683928664 (level 1)
[  478.907330][T18277] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  478.918781][T18275] EXT4-fs (loop4): 1 truncate cleaned up
[  478.933403][T18277] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4113: comm syz.2.3829: Allocating blocks 385-513 which overlap fs metadata
[  478.948876][T18276] EXT4-fs (loop2): pa ffff888105ae4e70: logic 16, phys. 129, len 24
[  478.950192][T18275] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  478.956908][T18276] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[  478.996540][T15201] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  479.007669][T14783] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  479.103007][T18288] C speed is unknown, defaulting to 1000
[  479.149659][T18294] loop3: detected capacity change from 0 to 2048
[  479.165527][T18294] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  479.177866][T18288] loop6: detected capacity change from 0 to 128
[  479.310432][T18304] netlink: 256 bytes leftover after parsing attributes in process `syz.6.3836'.
[  479.335710][T18302] loop4: detected capacity change from 0 to 2048
[  479.421519][T18302] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  479.519641][T18310] loop6: detected capacity change from 0 to 2048
[  479.595156][T18310] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  479.754554][T18318] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3838'.
[  479.822323][T18314] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  479.834608][T18314] EXT4-fs (loop4): This should not happen!! Data will be lost
[  479.834608][T18314] 
[  479.844439][T18314] EXT4-fs (loop4): Total free blocks count 0
[  479.850567][T18314] EXT4-fs (loop4): Free/Dirty block details
[  479.856564][T18314] EXT4-fs (loop4): free_blocks=0
[  479.861596][T18314] EXT4-fs (loop4): dirty_blocks=0
[  479.866662][T18314] EXT4-fs (loop4): Block reservation details
[  479.872737][T18314] EXT4-fs (loop4): i_reserved_data_blocks=0
[  479.872983][T18320] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.3838'.
[  479.897225][T18318] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.3838'.
[  479.911153][T18302] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  479.959195][T18319] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  479.971574][T18319] EXT4-fs (loop6): This should not happen!! Data will be lost
[  479.971574][T18319] 
[  479.981437][T18319] EXT4-fs (loop6): Total free blocks count 0
[  479.987442][T18319] EXT4-fs (loop6): Free/Dirty block details
[  479.993431][T18319] EXT4-fs (loop6): free_blocks=0
[  479.998397][T18319] EXT4-fs (loop6): dirty_blocks=0
[  480.003529][T18319] EXT4-fs (loop6): Block reservation details
[  480.009534][T18319] EXT4-fs (loop6): i_reserved_data_blocks=0
[  480.016644][   T29] kauditd_printk_skb: 24 callbacks suppressed
[  480.016660][   T29] audit: type=1326 audit(1747812530.444:4909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18316 comm="syz.1.3838" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6b2e0ee969 code=0x0
[  480.056236][T18315] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  480.066228][   T29] audit: type=1326 audit(1747812530.484:4910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18316 comm="syz.1.3838" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6b2e0ee969 code=0x0
[  480.104494][T14047] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  480.127909][T18324] loop4: detected capacity change from 0 to 1024
[  480.182161][T18324] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  480.205550][T18324] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4113: comm syz.4.3840: Allocating blocks 385-513 which overlap fs metadata
[  480.221954][T18323] EXT4-fs (loop4): pa ffff888105ae4e70: logic 16, phys. 129, len 24
[  480.230097][T18323] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[  480.286822][T14783] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  480.289551][T18335] netlink: 256 bytes leftover after parsing attributes in process `syz.2.3839'.
[  480.346157][T18334] loop6: detected capacity change from 0 to 512
[  480.372580][T18334] EXT4-fs: Ignoring removed nobh option
[  480.393809][T18342] C speed is unknown, defaulting to 1000
[  480.487530][T18342] C speed is unknown, defaulting to 1000
[  480.547264][T18334] EXT4-fs (loop6): Cannot turn on journaled quota: type 0: error -2
[  480.570315][T18334] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #13: comm syz.6.3843: invalid indirect mapped block 2683928664 (level 1)
[  480.640647][T18334] EXT4-fs (loop6): 1 truncate cleaned up
[  480.668539][T18334] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  480.807833][T13862] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  480.897113][T18366] program syz.6.3847 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  481.080950][T18393] loop3: detected capacity change from 0 to 2048
[  481.098620][T18393] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  481.349790][T18420] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  481.362136][T18420] EXT4-fs (loop3): This should not happen!! Data will be lost
[  481.362136][T18420] 
[  481.371827][T18420] EXT4-fs (loop3): Total free blocks count 0
[  481.377854][T18420] EXT4-fs (loop3): Free/Dirty block details
[  481.383906][T18420] EXT4-fs (loop3): free_blocks=0
[  481.388867][T18420] EXT4-fs (loop3): dirty_blocks=0
[  481.393982][T18420] EXT4-fs (loop3): Block reservation details
[  481.400001][T18420] EXT4-fs (loop3): i_reserved_data_blocks=0
[  481.410650][T18420] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  481.455059][T18430] loop2: detected capacity change from 0 to 1024
[  481.500592][T18430] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  481.515110][T18438] program syz.4.3857 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  481.622376][T18430] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4113: comm syz.2.3854: Allocating blocks 385-513 which overlap fs metadata
[  481.647653][T18429] EXT4-fs (loop2): pa ffff888105ae4e70: logic 16, phys. 129, len 24
[  481.655759][T18429] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[  481.687729][T15201] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  481.697014][T18440] loop4: detected capacity change from 0 to 1024
[  481.726080][T18442] program syz.2.3859 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  481.736322][T18440] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  481.782485][T18440] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4113: comm syz.4.3858: Allocating blocks 385-513 which overlap fs metadata
[  481.797315][T18446] C speed is unknown, defaulting to 1000
[  481.841245][T18440] EXT4-fs (loop4): pa ffff888105ae4e70: logic 16, phys. 129, len 24
[  481.849307][T18440] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[  481.875850][T18446] loop2: detected capacity change from 0 to 128
[  481.922265][T14783] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  482.014729][T18457] netlink: 552 bytes leftover after parsing attributes in process `syz.4.3865'.
[  482.028522][T18457] bridge1: the hash_elasticity option has been deprecated and is always 16
[  482.058656][T18462] netlink: 256 bytes leftover after parsing attributes in process `syz.2.3867'.
[  482.109629][T18466] SELinux:  policydb magic number 0xffffffff does not match expected magic number 0xf97cff8c
[  482.120276][T18466] SELinux: failed to load policy
[  482.185146][T18480] loop4: detected capacity change from 0 to 1024
[  482.339030][T18483] program syz.2.3870 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  482.355864][T18480] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  482.369915][T18480] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4113: comm syz.4.3869: Allocating blocks 385-513 which overlap fs metadata
[  482.399654][T18478] EXT4-fs (loop4): pa ffff888106dee690: logic 16, phys. 129, len 24
[  482.401894][T18516] Invalid ELF header magic: != ELF
[  482.407734][T18478] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[  482.419436][T18516] loop2: detected capacity change from 0 to 512
[  482.430148][T18516] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  482.442685][T14783] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  482.452245][T18516] EXT4-fs (loop2): 1 truncate cleaned up
[  482.458581][T18516] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  482.489590][T15201] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  482.506746][T18523] loop4: detected capacity change from 0 to 1024
[  482.515070][T18523] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  482.539106][T18523] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  482.547378][T18523] EXT4-fs (loop4): orphan cleanup on readonly fs
[  482.553966][T18523] EXT4-fs error (device loop4): ext4_ext_check_inode:524: inode #3: comm syz.4.3872: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 2(4), depth 0(0)
[  482.573517][T18523] EXT4-fs error (device loop4): ext4_quota_enable:7129: comm syz.4.3872: Bad quota inode: 3, type: 0
[  482.587383][T18523] EXT4-fs warning (device loop4): ext4_enable_quotas:7170: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  482.602071][T18523] EXT4-fs (loop4): Cannot turn on quotas: error -117
[  482.609654][T18523] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  482.640434][T18523] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  482.766782][T18555] loop4: detected capacity change from 0 to 2048
[  482.836426][T18569] C speed is unknown, defaulting to 1000
[  482.973298][T18582] netlink: 256 bytes leftover after parsing attributes in process `syz.3.3879'.
[  483.104057][T18555] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  483.116418][T18555] EXT4-fs (loop4): This should not happen!! Data will be lost
[  483.116418][T18555] 
[  483.126114][T18555] EXT4-fs (loop4): Total free blocks count 0
[  483.132228][T18555] EXT4-fs (loop4): Free/Dirty block details
[  483.138164][T18555] EXT4-fs (loop4): free_blocks=0
[  483.143210][T18555] EXT4-fs (loop4): dirty_blocks=0
[  483.148424][T18555] EXT4-fs (loop4): Block reservation details
[  483.154536][T18555] EXT4-fs (loop4): i_reserved_data_blocks=0
[  483.170653][T18575] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  483.182993][T18575] EXT4-fs (loop4): This should not happen!! Data will be lost
[  483.182993][T18575] 
[  483.313568][T18616] loop6: detected capacity change from 0 to 512
[  483.324415][T18618] Invalid ELF header magic: != ELF
[  483.330627][T18616] EXT4-fs: Ignoring removed nobh option
[  483.339189][T18616] EXT4-fs (loop6): Cannot turn on journaled quota: type 0: error -2
[  483.348720][T18616] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #13: comm syz.6.3884: invalid indirect mapped block 2683928664 (level 1)
[  483.364345][T18616] EXT4-fs (loop6): 1 truncate cleaned up
[  483.373094][T18618] loop4: detected capacity change from 0 to 512
[  483.380116][T18618] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  483.415131][T18618] EXT4-fs (loop4): 1 truncate cleaned up
[  483.522720][T18611] loop2: detected capacity change from 0 to 32768
[  483.531898][T18630] program syz.6.3889 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  483.561016][T18611]  loop2: p1 p2 p3 < p5 p6 >
[  483.571770][   T29] audit: type=1326 audit(1747812534.004:4911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18627 comm="syz.4.3888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ef0ace969 code=0x7ffc0000
[  483.595369][   T29] audit: type=1326 audit(1747812534.004:4912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18627 comm="syz.4.3888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7ef0ace969 code=0x7ffc0000
[  483.629195][T18611] loop2: p1 size 242222080 extends beyond EOD, truncated
[  483.648524][T18611] loop2: p2 start 4294967295 is beyond EOD, truncated
[  483.662688][   T29] audit: type=1326 audit(1747812534.004:4913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18627 comm="syz.4.3888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ef0ace969 code=0x7ffc0000
[  483.686282][   T29] audit: type=1326 audit(1747812534.004:4914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18627 comm="syz.4.3888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7ef0ace969 code=0x7ffc0000
[  483.710137][   T29] audit: type=1326 audit(1747812534.004:4915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18627 comm="syz.4.3888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ef0ace969 code=0x7ffc0000
[  483.733816][   T29] audit: type=1326 audit(1747812534.004:4916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18627 comm="syz.4.3888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f7ef0ace969 code=0x7ffc0000
[  483.757386][   T29] audit: type=1326 audit(1747812534.004:4917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18627 comm="syz.4.3888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ef0ace969 code=0x7ffc0000
[  483.780982][   T29] audit: type=1326 audit(1747812534.004:4918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18627 comm="syz.4.3888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ef0ace969 code=0x7ffc0000
[  483.823676][T18644] loop4: detected capacity change from 0 to 2048
[  483.847379][T18633] C speed is unknown, defaulting to 1000
[  483.911792][T18633] C speed is unknown, defaulting to 1000
[  484.059846][T18644] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  484.072207][T18644] EXT4-fs (loop4): This should not happen!! Data will be lost
[  484.072207][T18644] 
[  484.077123][T18656] C speed is unknown, defaulting to 1000
[  484.081943][T18644] EXT4-fs (loop4): Total free blocks count 0
[  484.081963][T18644] EXT4-fs (loop4): Free/Dirty block details
[  484.081976][T18644] EXT4-fs (loop4): free_blocks=0
[  484.104713][T18644] EXT4-fs (loop4): dirty_blocks=0
[  484.109761][T18644] EXT4-fs (loop4): Block reservation details
[  484.115893][T18644] EXT4-fs (loop4): i_reserved_data_blocks=0
[  484.130691][T18648] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  484.142971][T18648] EXT4-fs (loop4): This should not happen!! Data will be lost
[  484.142971][T18648] 
[  484.163147][T18657] loop2: detected capacity change from 0 to 128
[  484.247790][T18668] loop4: detected capacity change from 0 to 512
[  484.256189][T18656] bio_check_eod: 32 callbacks suppressed
[  484.256279][T18656] syz.2.3897: attempt to access beyond end of device
[  484.256279][T18656] loop2: rw=2049, sector=132, nr_sectors = 8 limit=128
[  484.256410][T18668] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.3901: bg 0: block 5: invalid block bitmap
[  484.262227][T18656] syz.2.3897: attempt to access beyond end of device
[  484.262227][T18656] loop2: rw=2049, sector=148, nr_sectors = 8 limit=128
[  484.294612][T18668] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  484.310320][T18668] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.3901: invalid indirect mapped block 3 (level 2)
[  484.329601][T18668] EXT4-fs (loop4): 2 truncates cleaned up
[  484.337097][T18656] syz.2.3897: attempt to access beyond end of device
[  484.337097][T18656] loop2: rw=2049, sector=142, nr_sectors = 1 limit=128
[  484.350631][T18656] buffer_io_error: 26 callbacks suppressed
[  484.350646][T18656] Buffer I/O error on dev loop2, logical block 142, lost async page write
[  484.368448][T18656] syz.2.3897: attempt to access beyond end of device
[  484.368448][T18656] loop2: rw=2049, sector=143, nr_sectors = 1 limit=128
[  484.382012][T18656] Buffer I/O error on dev loop2, logical block 143, lost async page write
[  484.400537][T18656] syz.2.3897: attempt to access beyond end of device
[  484.400537][T18656] loop2: rw=2049, sector=144, nr_sectors = 1 limit=128
[  484.414090][T18656] Buffer I/O error on dev loop2, logical block 144, lost async page write
[  484.428001][T18656] syz.2.3897: attempt to access beyond end of device
[  484.428001][T18656] loop2: rw=2049, sector=145, nr_sectors = 1 limit=128
[  484.441535][T18656] Buffer I/O error on dev loop2, logical block 145, lost async page write
[  484.451478][T18656] syz.2.3897: attempt to access beyond end of device
[  484.451478][T18656] loop2: rw=2049, sector=146, nr_sectors = 1 limit=128
[  484.465104][T18656] Buffer I/O error on dev loop2, logical block 146, lost async page write
[  484.479646][T18656] syz.2.3897: attempt to access beyond end of device
[  484.479646][T18656] loop2: rw=2049, sector=147, nr_sectors = 1 limit=128
[  484.493158][T18656] Buffer I/O error on dev loop2, logical block 147, lost async page write
[  484.503122][T18656] syz.2.3897: attempt to access beyond end of device
[  484.503122][T18656] loop2: rw=2049, sector=156, nr_sectors = 1 limit=128
[  484.516667][T18656] Buffer I/O error on dev loop2, logical block 156, lost async page write
[  484.544751][T18656] syz.2.3897: attempt to access beyond end of device
[  484.544751][T18656] loop2: rw=2049, sector=157, nr_sectors = 1 limit=128
[  484.558271][T18656] Buffer I/O error on dev loop2, logical block 157, lost async page write
[  484.585262][T18656] Buffer I/O error on dev loop2, logical block 160, lost async page write
[  484.594716][T18656] Buffer I/O error on dev loop2, logical block 161, lost async page write
[  484.627698][T18691] loop6: detected capacity change from 0 to 512
[  484.636559][T18691] EXT4-fs: Ignoring removed mblk_io_submit option
[  484.653009][T18691] ext4: Unknown parameter 'hash'
[  484.765830][T18698] loop2: detected capacity change from 0 to 2048
[  484.897390][T18703] loop6: detected capacity change from 0 to 512
[  484.904140][T18703] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  484.918618][T18703] netlink: 'syz.6.3911': attribute type 10 has an invalid length.
[  485.344074][T18693] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  485.356525][T18693] EXT4-fs (loop2): This should not happen!! Data will be lost
[  485.356525][T18693] 
[  485.366206][T18693] EXT4-fs (loop2): Total free blocks count 0
[  485.372243][T18693] EXT4-fs (loop2): Free/Dirty block details
[  485.378158][T18693] EXT4-fs (loop2): free_blocks=0
[  485.383127][T18693] EXT4-fs (loop2): dirty_blocks=0
[  485.388246][T18693] EXT4-fs (loop2): Block reservation details
[  485.394266][T18693] EXT4-fs (loop2): i_reserved_data_blocks=0
[  485.545773][   T29] kauditd_printk_skb: 8 callbacks suppressed
[  485.545793][   T29] audit: type=1326 audit(1747812535.924:4927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18710 comm="syz.3.3916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceba59e969 code=0x7ffc0000
[  485.575732][   T29] audit: type=1326 audit(1747812535.924:4928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18710 comm="syz.3.3916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fceba59e969 code=0x7ffc0000
[  485.599534][   T29] audit: type=1326 audit(1747812535.924:4929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18710 comm="syz.3.3916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceba59e969 code=0x7ffc0000
[  485.623329][   T29] audit: type=1326 audit(1747812535.924:4930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18710 comm="syz.3.3916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fceba59e969 code=0x7ffc0000
[  485.647349][   T29] audit: type=1326 audit(1747812535.924:4931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18710 comm="syz.3.3916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceba59e969 code=0x7ffc0000
[  485.670996][   T29] audit: type=1326 audit(1747812535.974:4932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18710 comm="syz.3.3916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fceba59e969 code=0x7ffc0000
[  485.694493][   T29] audit: type=1326 audit(1747812535.974:4933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18710 comm="syz.3.3916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceba59e969 code=0x7ffc0000
[  485.738407][T18714] SELinux:  policydb magic number 0xffffffff does not match expected magic number 0xf97cff8c
[  485.749054][T18714] SELinux: failed to load policy
[  485.756849][T18718] SELinux:  policydb magic number 0xffffffff does not match expected magic number 0xf97cff8c
[  485.791565][T18718] SELinux: failed to load policy
[  485.880067][   T29] audit: type=1326 audit(1747812536.304:4934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18724 comm="syz.6.3922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2c7b6e969 code=0x7ffc0000
[  485.904753][   T29] audit: type=1326 audit(1747812536.304:4935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18724 comm="syz.6.3922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2c7b6e969 code=0x7ffc0000
[  485.933425][T18721] C speed is unknown, defaulting to 1000
[  486.066789][T18730] C speed is unknown, defaulting to 1000
[  486.171276][T18735] C speed is unknown, defaulting to 1000
[  486.279921][T18735] C speed is unknown, defaulting to 1000
[  486.674422][T18744] loop3: detected capacity change from 0 to 128
[  486.681178][T18746] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[  486.687811][T18746] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  486.695399][T18746] vhci_hcd vhci_hcd.0: Device attached
[  486.702123][T18746] ip6t_rpfilter: unknown options
[  486.902601][T18750] loop6: detected capacity change from 0 to 512
[  486.941033][T18743] C speed is unknown, defaulting to 1000
[  486.990645][ T3486] usb 5-1: new low-speed USB device number 13 using vhci_hcd
[  486.996069][T18750] EXT4-fs: Ignoring removed nobh option
[  487.009976][T18750] EXT4-fs (loop6): Cannot turn on journaled quota: type 0: error -2
[  487.019563][T18750] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #13: comm syz.6.3927: invalid indirect mapped block 2683928664 (level 1)
[  487.042111][T18750] EXT4-fs (loop6): 1 truncate cleaned up
[  487.048955][T18738] C speed is unknown, defaulting to 1000
[  487.196184][T18760] netlink: 256 bytes leftover after parsing attributes in process `syz.6.3929'.
[  487.214453][   T29] audit: type=1326 audit(1747812537.644:4936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18757 comm="syz.3.3930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceba59e969 code=0x7ffc0000
[  487.265544][T18747] vhci_hcd: connection reset by peer
[  487.279966][T14284] vhci_hcd: stop threads
[  487.284391][T14284] vhci_hcd: release socket
[  487.288834][T14284] vhci_hcd: disconnect device
[  487.316990][T18766] loop3: detected capacity change from 0 to 2048
[  487.377837][T18770] loop6: detected capacity change from 0 to 2048
[  487.591270][T18777] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  487.603617][T18777] EXT4-fs (loop3): This should not happen!! Data will be lost
[  487.603617][T18777] 
[  487.613320][T18777] EXT4-fs (loop3): Total free blocks count 0
[  487.619415][T18777] EXT4-fs (loop3): Free/Dirty block details
[  487.625611][T18777] EXT4-fs (loop3): free_blocks=0
[  487.630733][T18777] EXT4-fs (loop3): dirty_blocks=0
[  487.635830][T18777] EXT4-fs (loop3): Block reservation details
[  487.641921][T18777] EXT4-fs (loop3): i_reserved_data_blocks=0
[  487.653007][T18766] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  487.665276][T18766] EXT4-fs (loop3): This should not happen!! Data will be lost
[  487.665276][T18766] 
[  487.703538][T18768] Invalid ELF header magic: != ELF
[  487.711943][T18768] loop4: detected capacity change from 0 to 512
[  487.744594][T18768] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  487.816496][T18768] EXT4-fs (loop4): 1 truncate cleaned up
[  487.897482][T18786] netlink: 256 bytes leftover after parsing attributes in process `syz.3.3935'.
[  488.278361][T18801] C speed is unknown, defaulting to 1000
[  488.346217][T18799] program syz.3.3941 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  488.388464][T18801] C speed is unknown, defaulting to 1000
[  488.468901][T18797] C speed is unknown, defaulting to 1000
[  488.569057][T18803] C speed is unknown, defaulting to 1000
[  488.625985][T18811] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3942'.
[  488.655553][T18811] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3942'.
[  488.670360][T18805] C speed is unknown, defaulting to 1000
[  489.033498][T18826] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(8)
[  489.040213][T18826] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  489.047776][T18826] vhci_hcd vhci_hcd.0: Device attached
[  489.054780][T18826] ip6t_rpfilter: unknown options
[  489.075734][T18821] C speed is unknown, defaulting to 1000
[  489.273236][T18832] C speed is unknown, defaulting to 1000
[  489.320828][ T3375] usb 13-1: new low-speed USB device number 5 using vhci_hcd
[  489.346383][T18833] loop2: detected capacity change from 0 to 128
[  489.390051][T18833] bio_check_eod: 18 callbacks suppressed
[  489.390066][T18833] syz.2.3948: attempt to access beyond end of device
[  489.390066][T18833] loop2: rw=2049, sector=132, nr_sectors = 8 limit=128
[  489.413363][T18833] syz.2.3948: attempt to access beyond end of device
[  489.413363][T18833] loop2: rw=2049, sector=148, nr_sectors = 8 limit=128
[  489.432162][T18833] syz.2.3948: attempt to access beyond end of device
[  489.432162][T18833] loop2: rw=2049, sector=142, nr_sectors = 1 limit=128
[  489.445660][T18833] buffer_io_error: 14 callbacks suppressed
[  489.445675][T18833] Buffer I/O error on dev loop2, logical block 142, lost async page write
[  489.460447][T18833] syz.2.3948: attempt to access beyond end of device
[  489.460447][T18833] loop2: rw=2049, sector=143, nr_sectors = 1 limit=128
[  489.474019][T18833] Buffer I/O error on dev loop2, logical block 143, lost async page write
[  489.503422][T18846] program syz.3.3953 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  489.513648][T18833] syz.2.3948: attempt to access beyond end of device
[  489.513648][T18833] loop2: rw=2049, sector=144, nr_sectors = 1 limit=128
[  489.527164][T18833] Buffer I/O error on dev loop2, logical block 144, lost async page write
[  489.535966][T18833] syz.2.3948: attempt to access beyond end of device
[  489.535966][T18833] loop2: rw=2049, sector=145, nr_sectors = 1 limit=128
[  489.549524][T18833] Buffer I/O error on dev loop2, logical block 145, lost async page write
[  489.583182][T18833] syz.2.3948: attempt to access beyond end of device
[  489.583182][T18833] loop2: rw=2049, sector=146, nr_sectors = 1 limit=128
[  489.596749][T18833] Buffer I/O error on dev loop2, logical block 146, lost async page write
[  489.611288][T18833] syz.2.3948: attempt to access beyond end of device
[  489.611288][T18833] loop2: rw=2049, sector=147, nr_sectors = 1 limit=128
[  489.624764][T18833] Buffer I/O error on dev loop2, logical block 147, lost async page write
[  489.634413][T18827] vhci_hcd: connection reset by peer
[  489.640019][   T31] vhci_hcd: stop threads
[  489.640062][T18833] syz.2.3948: attempt to access beyond end of device
[  489.640062][T18833] loop2: rw=2049, sector=156, nr_sectors = 1 limit=128
[  489.644322][   T31] vhci_hcd: release socket
[  489.644340][   T31] vhci_hcd: disconnect device
[  489.657770][T18833] Buffer I/O error on dev loop2, logical block 156, lost async page write
[  489.690747][T18833] syz.2.3948: attempt to access beyond end of device
[  489.690747][T18833] loop2: rw=2049, sector=157, nr_sectors = 1 limit=128
[  489.700620][T18848] SELinux:  policydb magic number 0xffffffff does not match expected magic number 0xf97cff8c
[  489.704203][T18833] Buffer I/O error on dev loop2, logical block 157, lost async page write
[  489.730878][T18833] Buffer I/O error on dev loop2, logical block 160, lost async page write
[  489.739995][T18833] Buffer I/O error on dev loop2, logical block 161, lost async page write
[  489.748742][T18848] SELinux: failed to load policy
[  489.903194][T18861] loop4: detected capacity change from 0 to 512
[  489.921069][T18861] EXT4-fs: Ignoring removed mblk_io_submit option
[  489.984205][T18862] C speed is unknown, defaulting to 1000
[  490.044080][T18861] ext4: Unknown parameter 'hash'
[  490.108696][T18864] C speed is unknown, defaulting to 1000
[  490.474183][T18868] loop4: detected capacity change from 0 to 512
[  490.480955][T18868] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  490.492132][T18868] netlink: 'syz.4.3959': attribute type 10 has an invalid length.
[  490.558808][   T29] kauditd_printk_skb: 12 callbacks suppressed
[  490.558826][   T29] audit: type=1326 audit(1747812540.984:4949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18869 comm="syz.6.3961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2c7b6e969 code=0x7ffc0000
[  490.871833][   T29] audit: type=1326 audit(1747812540.984:4950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18869 comm="syz.6.3961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2c7b6e969 code=0x7ffc0000
[  490.910297][T18880] program syz.4.3965 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  490.926990][T18877] C speed is unknown, defaulting to 1000
[  491.057226][T18883] C speed is unknown, defaulting to 1000
[  491.127126][T18891] C speed is unknown, defaulting to 1000
[  491.308321][T18891] loop3: detected capacity change from 0 to 128
[  491.366471][T18902] loop4: detected capacity change from 0 to 512
[  491.399614][T18905] loop2: detected capacity change from 0 to 2048
[  491.493494][T18902] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.3974: bg 0: block 5: invalid block bitmap
[  491.513851][T18908] loop3: detected capacity change from 0 to 512
[  491.522911][T18908] EXT4-fs: Ignoring removed nobh option
[  491.535767][T18902] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  491.545466][T18908] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  491.554616][T18908] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.3975: invalid indirect mapped block 2683928664 (level 1)
[  491.570215][T18908] EXT4-fs (loop3): 1 truncate cleaned up
[  491.578130][T18902] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.3974: invalid indirect mapped block 3 (level 2)
[  491.783261][T18913] C speed is unknown, defaulting to 1000
[  491.829695][T18914] C speed is unknown, defaulting to 1000
[  491.918907][T18902] EXT4-fs (loop4): 2 truncates cleaned up
[  492.041909][ T3486] usb 5-1: enqueue for inactive port 0
[  492.066965][ T3486] usb 5-1: enqueue for inactive port 0
[  492.156605][T18916] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  492.169066][T18916] EXT4-fs (loop2): This should not happen!! Data will be lost
[  492.169066][T18916] 
[  492.178772][T18916] EXT4-fs (loop2): Total free blocks count 0
[  492.184819][T18916] EXT4-fs (loop2): Free/Dirty block details
[  492.190894][T18916] EXT4-fs (loop2): free_blocks=0
[  492.195931][T18916] EXT4-fs (loop2): dirty_blocks=0
[  492.201069][T18916] EXT4-fs (loop2): Block reservation details
[  492.207135][T18916] EXT4-fs (loop2): i_reserved_data_blocks=0
[  492.214516][ T3486] vhci_hcd: vhci_device speed not set
[  492.235677][T18905] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  492.247951][T18905] EXT4-fs (loop2): This should not happen!! Data will be lost
[  492.247951][T18905] 
[  492.355213][T18925] SELinux:  policydb magic number 0xffffffff does not match expected magic number 0xf97cff8c
[  492.365725][T18925] SELinux: failed to load policy
[  492.396925][T18936] program syz.2.3979 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  492.455263][   T29] audit: type=1326 audit(1747812542.874:4951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18943 comm="syz.3.3985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceba59e969 code=0x7ffc0000
[  492.478917][   T29] audit: type=1326 audit(1747812542.874:4952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18943 comm="syz.3.3985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceba59e969 code=0x7ffc0000
[  492.569031][T18951] loop3: detected capacity change from 0 to 512
[  492.575916][T18951] EXT4-fs: Ignoring removed nobh option
[  492.600519][T18951] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  492.629296][T18951] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.3986: invalid indirect mapped block 2683928664 (level 1)
[  492.670669][T18951] EXT4-fs (loop3): 1 truncate cleaned up
[  492.714518][T18957] C speed is unknown, defaulting to 1000
[  492.751434][T18948] netlink: 'syz.2.3984': attribute type 4 has an invalid length.
[  492.835802][T18957] C speed is unknown, defaulting to 1000
[  492.843191][T18972] Invalid ELF header magic: != ELF
[  492.854420][T18972] loop2: detected capacity change from 0 to 512
[  492.893117][T18972] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  492.926042][T18972] EXT4-fs (loop2): 1 truncate cleaned up
[  493.185779][T19002] C speed is unknown, defaulting to 1000
[  493.309082][T19003] C speed is unknown, defaulting to 1000
[  493.639398][T19029] loop6: detected capacity change from 0 to 2048
[  493.682930][T19035] program syz.1.3995 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  493.870901][T19037] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  493.883455][T19037] EXT4-fs (loop6): This should not happen!! Data will be lost
[  493.883455][T19037] 
[  493.893293][T19037] EXT4-fs (loop6): Total free blocks count 0
[  493.899312][T19037] EXT4-fs (loop6): Free/Dirty block details
[  493.905436][T19037] EXT4-fs (loop6): free_blocks=0
[  493.910866][T19037] EXT4-fs (loop6): dirty_blocks=0
[  493.915932][T19037] EXT4-fs (loop6): Block reservation details
[  493.922243][T19037] EXT4-fs (loop6): i_reserved_data_blocks=0
[  493.928992][T19029] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  493.941298][T19029] EXT4-fs (loop6): This should not happen!! Data will be lost
[  493.941298][T19029] 
[  494.055732][T19050] Invalid ELF header magic: != ELF
[  494.064144][T19050] loop2: detected capacity change from 0 to 512
[  494.073081][T19050] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  494.087910][T13862] EXT4-fs unmount: 31 callbacks suppressed
[  494.090443][T19050] EXT4-fs (loop2): 1 truncate cleaned up
[  494.107885][T19050] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  494.141015][T19044] netlink: 'syz.3.3998': attribute type 4 has an invalid length.
[  494.180384][T15201] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  494.254369][T19064] program syz.3.4004 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  494.393762][T14783] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  494.422839][T19079] program syz.3.4007 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  494.440614][ T3375] usb 13-1: enqueue for inactive port 0
[  494.464084][ T3375] usb 13-1: enqueue for inactive port 0
[  494.472989][T19081] C speed is unknown, defaulting to 1000
[  494.561829][ T3375] vhci_hcd: vhci_device speed not set
[  494.571534][T19088] loop4: detected capacity change from 0 to 128
[  494.611011][T19088] bio_check_eod: 18 callbacks suppressed
[  494.611033][T19088] syz.4.4008: attempt to access beyond end of device
[  494.611033][T19088] loop4: rw=2049, sector=132, nr_sectors = 8 limit=128
[  494.690995][T19088] syz.4.4008: attempt to access beyond end of device
[  494.690995][T19088] loop4: rw=2049, sector=148, nr_sectors = 8 limit=128
[  494.736009][T19075] Invalid ELF header magic: != ELF
[  494.752277][T19088] syz.4.4008: attempt to access beyond end of device
[  494.752277][T19088] loop4: rw=2049, sector=142, nr_sectors = 1 limit=128
[  494.765873][T19088] buffer_io_error: 14 callbacks suppressed
[  494.765887][T19088] Buffer I/O error on dev loop4, logical block 142, lost async page write
[  494.790283][T19099] loop2: detected capacity change from 0 to 512
[  494.805279][T19110] netlink: 612 bytes leftover after parsing attributes in process `syz.3.4013'.
[  494.830144][T19088] syz.4.4008: attempt to access beyond end of device
[  494.830144][T19088] loop4: rw=2049, sector=143, nr_sectors = 1 limit=128
[  494.843719][T19088] Buffer I/O error on dev loop4, logical block 143, lost async page write
[  494.860691][T19099] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  494.864210][T19088] syz.4.4008: attempt to access beyond end of device
[  494.864210][T19088] loop4: rw=2049, sector=144, nr_sectors = 1 limit=128
[  494.884071][T19088] Buffer I/O error on dev loop4, logical block 144, lost async page write
[  494.885253][T19099] EXT4-fs (loop2): 1 truncate cleaned up
[  494.901256][T19114] Invalid ELF header magic: != ELF
[  494.909452][T19114] loop3: detected capacity change from 0 to 512
[  494.918276][T19114] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  494.921131][T19099] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  494.943443][T19114] EXT4-fs (loop3): 1 truncate cleaned up
[  494.951374][T19114] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  494.963829][T19088] syz.4.4008: attempt to access beyond end of device
[  494.963829][T19088] loop4: rw=2049, sector=145, nr_sectors = 1 limit=128
[  494.977463][T19088] Buffer I/O error on dev loop4, logical block 145, lost async page write
[  495.080777][T19088] syz.4.4008: attempt to access beyond end of device
[  495.080777][T19088] loop4: rw=2049, sector=146, nr_sectors = 1 limit=128
[  495.094468][T19088] Buffer I/O error on dev loop4, logical block 146, lost async page write
[  495.112184][T14047] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  495.160663][T19088] syz.4.4008: attempt to access beyond end of device
[  495.160663][T19088] loop4: rw=2049, sector=147, nr_sectors = 1 limit=128
[  495.174165][T19088] Buffer I/O error on dev loop4, logical block 147, lost async page write
[  495.201005][T15201] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  495.204084][T19149] netlink: 552 bytes leftover after parsing attributes in process `syz.3.4016'.
[  495.232379][T19149] bridge1: the hash_elasticity option has been deprecated and is always 16
[  495.246931][T19088] syz.4.4008: attempt to access beyond end of device
[  495.246931][T19088] loop4: rw=2049, sector=156, nr_sectors = 1 limit=128
[  495.260705][T19088] Buffer I/O error on dev loop4, logical block 156, lost async page write
[  495.289721][T19088] syz.4.4008: attempt to access beyond end of device
[  495.289721][T19088] loop4: rw=2049, sector=157, nr_sectors = 1 limit=128
[  495.303394][T19088] Buffer I/O error on dev loop4, logical block 157, lost async page write
[  495.319392][T19088] Buffer I/O error on dev loop4, logical block 160, lost async page write
[  495.328947][T19088] Buffer I/O error on dev loop4, logical block 161, lost async page write
[  495.337938][T19120] IPv6: Can't replace route, no match found
[  495.338094][T19161] loop6: detected capacity change from 0 to 2048
[  495.362362][T19163] netlink: 256 bytes leftover after parsing attributes in process `syz.2.4020'.
[  495.383060][T19161] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  495.428947][T19171] program syz.3.4023 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  495.448422][   T29] audit: type=1326 audit(1747812545.874:4953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19164 comm="syz.4.4021" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ef0ace969 code=0x7ffc0000
[  495.472128][   T29] audit: type=1326 audit(1747812545.874:4954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19164 comm="syz.4.4021" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ef0ace969 code=0x7ffc0000
[  495.516836][T19175] loop2: detected capacity change from 0 to 1024
[  495.536488][T19175] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  495.542899][T19180] netlink: 612 bytes leftover after parsing attributes in process `syz.3.4025'.
[  495.661777][T15201] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  495.692680][T19185] loop2: detected capacity change from 0 to 2048
[  495.722678][T19185] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  495.802876][T19196] program syz.1.4029 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  495.946175][T19199] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  495.958543][T19199] EXT4-fs (loop2): This should not happen!! Data will be lost
[  495.958543][T19199] 
[  495.968451][T19199] EXT4-fs (loop2): Total free blocks count 0
[  495.974549][T19199] EXT4-fs (loop2): Free/Dirty block details
[  495.980557][T19199] EXT4-fs (loop2): free_blocks=0
[  495.985756][T19199] EXT4-fs (loop2): dirty_blocks=0
[  495.991598][T19199] EXT4-fs (loop2): Block reservation details
[  495.998455][T19199] EXT4-fs (loop2): i_reserved_data_blocks=0
[  496.006988][T19194] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  496.075296][T19204] C speed is unknown, defaulting to 1000
[  496.133496][T19204] loop2: detected capacity change from 0 to 128
[  496.163616][T13862] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  496.240842][T19216] loop4: detected capacity change from 0 to 1024
[  496.248910][T19216] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  496.259666][T19218] netlink: 612 bytes leftover after parsing attributes in process `syz.2.4038'.
[  496.259927][T19216] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  496.277727][T19216] EXT4-fs (loop4): orphan cleanup on readonly fs
[  496.284237][T19216] EXT4-fs error (device loop4): ext4_ext_check_inode:524: inode #3: comm syz.4.4037: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 2(4), depth 0(0)
[  496.302210][T19216] EXT4-fs error (device loop4): ext4_quota_enable:7129: comm syz.4.4037: Bad quota inode: 3, type: 0
[  496.314265][T19216] EXT4-fs warning (device loop4): ext4_enable_quotas:7170: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  496.328932][T19216] EXT4-fs (loop4): Cannot turn on quotas: error -117
[  496.336323][T19216] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  496.356531][T19216] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  496.378164][T14783] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  496.554493][T19233] loop2: detected capacity change from 0 to 2048
[  496.572057][T19233] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  496.594387][T19231] C speed is unknown, defaulting to 1000
[  496.652871][T19231] C speed is unknown, defaulting to 1000
[  496.706967][T19241] C speed is unknown, defaulting to 1000
[  496.746223][T19247] loop3: detected capacity change from 0 to 128
[  496.777200][T19251] program syz.1.4049 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  496.910214][T19257] netlink: 612 bytes leftover after parsing attributes in process `syz.3.4051'.
[  497.080687][T19262] loop3: detected capacity change from 0 to 512
[  497.089265][T19262] EXT4-fs: Ignoring removed nobh option
[  497.126409][T19262] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  497.137292][T19262] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.4053: invalid indirect mapped block 2683928664 (level 1)
[  497.153841][T19262] EXT4-fs (loop3): 1 truncate cleaned up
[  497.159977][T19262] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  497.281468][T14047] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  497.421702][T19275] SELinux:  policydb magic number 0xffffffff does not match expected magic number 0xf97cff8c
[  497.431996][T19275] SELinux: failed to load policy
[  497.483308][T19280] loop3: detected capacity change from 0 to 512
[  497.496337][T15201] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  497.506198][T19280] EXT4-fs: Ignoring removed mblk_io_submit option
[  497.512783][T19280] ext4: Unknown parameter 'hash'
[  497.658045][T19288] netlink: 256 bytes leftover after parsing attributes in process `syz.2.4063'.
[  497.726692][T19291] loop3: detected capacity change from 0 to 512
[  497.733483][T19291] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  497.744523][T19291] netlink: 'syz.3.4060': attribute type 10 has an invalid length.
[  498.056669][T19295] C speed is unknown, defaulting to 1000
[  498.459979][T19318] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4075'.
[  498.478905][T19316] C speed is unknown, defaulting to 1000
[  498.519098][T19320] SELinux:  policydb magic number 0xffffffff does not match expected magic number 0xf97cff8c
[  498.529747][T19320] SELinux: failed to load policy
[  498.651514][T19331] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[  498.658079][T19331] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  498.665623][T19331] vhci_hcd vhci_hcd.0: Device attached
[  498.672902][T19331] ip6t_rpfilter: unknown options
[  498.685887][   T29] audit: type=1326 audit(1747812549.114:4955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19317 comm="syz.6.4075" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff2c7b6e969 code=0x0
[  498.735247][T19335] program syz.1.4078 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  498.749590][   T29] audit: type=1326 audit(1747812549.164:4956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19317 comm="syz.6.4075" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff2c7b6e969 code=0x0
[  498.779670][T19327] netlink: 16402 bytes leftover after parsing attributes in process `syz.6.4075'.
[  498.803543][T19318] netlink: 16402 bytes leftover after parsing attributes in process `syz.6.4075'.
[  498.848974][T19316] C speed is unknown, defaulting to 1000
[  498.870061][T19328] C speed is unknown, defaulting to 1000
[  498.990539][ T3486] usb 5-1: new low-speed USB device number 14 using vhci_hcd
[  498.996714][   T29] audit: type=1326 audit(1747812549.274:4957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19317 comm="syz.6.4075" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff2c7b6e969 code=0x0
[  499.021031][   T29] audit: type=1326 audit(1747812549.364:4958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19317 comm="syz.6.4075" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff2c7b6e969 code=0x0
[  499.084919][T19345] loop3: detected capacity change from 0 to 2048
[  499.104792][T19345] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  499.217471][T19351] loop4: detected capacity change from 0 to 2048
[  499.235085][T19332] vhci_hcd: connection reset by peer
[  499.241114][ T3413] vhci_hcd: stop threads
[  499.245553][ T3413] vhci_hcd: release socket
[  499.250012][ T3413] vhci_hcd: disconnect device
[  499.256803][T19351] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  499.327750][T19352] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  499.340202][T19352] EXT4-fs (loop3): This should not happen!! Data will be lost
[  499.340202][T19352] 
[  499.349897][T19352] EXT4-fs (loop3): Total free blocks count 0
[  499.355939][T19352] EXT4-fs (loop3): Free/Dirty block details
[  499.361927][T19352] EXT4-fs (loop3): free_blocks=0
[  499.366906][T19352] EXT4-fs (loop3): dirty_blocks=0
[  499.371986][T19352] EXT4-fs (loop3): Block reservation details
[  499.378004][T19352] EXT4-fs (loop3): i_reserved_data_blocks=0
[  499.384767][T19345] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  499.653817][T19363] C speed is unknown, defaulting to 1000
[  499.704921][T19363] loop3: detected capacity change from 0 to 128
[  499.762606][T19363] bio_check_eod: 32 callbacks suppressed
[  499.762624][T19363] syz.3.4086: attempt to access beyond end of device
[  499.762624][T19363] loop3: rw=2049, sector=132, nr_sectors = 8 limit=128
[  499.790859][T19363] syz.3.4086: attempt to access beyond end of device
[  499.790859][T19363] loop3: rw=2049, sector=148, nr_sectors = 8 limit=128
[  499.819180][T19363] syz.3.4086: attempt to access beyond end of device
[  499.819180][T19363] loop3: rw=2049, sector=142, nr_sectors = 1 limit=128
[  499.832696][T19363] buffer_io_error: 26 callbacks suppressed
[  499.832712][T19363] Buffer I/O error on dev loop3, logical block 142, lost async page write
[  499.865548][T19369] loop2: detected capacity change from 0 to 512
[  499.872267][T19369] EXT4-fs: Ignoring removed mblk_io_submit option
[  499.878751][T19369] ext4: Unknown parameter 'hash'
[  499.974582][T19363] syz.3.4086: attempt to access beyond end of device
[  499.974582][T19363] loop3: rw=2049, sector=143, nr_sectors = 1 limit=128
[  499.988316][T19363] Buffer I/O error on dev loop3, logical block 143, lost async page write
[  499.997677][T19363] syz.3.4086: attempt to access beyond end of device
[  499.997677][T19363] loop3: rw=2049, sector=144, nr_sectors = 1 limit=128
[  500.011231][T19363] Buffer I/O error on dev loop3, logical block 144, lost async page write
[  500.026073][T19363] syz.3.4086: attempt to access beyond end of device
[  500.026073][T19363] loop3: rw=2049, sector=145, nr_sectors = 1 limit=128
[  500.039530][T19363] Buffer I/O error on dev loop3, logical block 145, lost async page write
[  500.048302][T19363] syz.3.4086: attempt to access beyond end of device
[  500.048302][T19363] loop3: rw=2049, sector=146, nr_sectors = 1 limit=128
[  500.061926][T19363] Buffer I/O error on dev loop3, logical block 146, lost async page write
[  500.104500][T19371] loop2: detected capacity change from 0 to 512
[  500.111673][T19371] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  500.122563][T19371] netlink: 'syz.2.4087': attribute type 10 has an invalid length.
[  500.130663][T19371] bridge0: port 2(bridge_slave_1) entered disabled state
[  500.137819][T19371] bridge0: port 1(bridge_slave_0) entered disabled state
[  500.230276][T19363] syz.3.4086: attempt to access beyond end of device
[  500.230276][T19363] loop3: rw=2049, sector=147, nr_sectors = 1 limit=128
[  500.243837][T19363] Buffer I/O error on dev loop3, logical block 147, lost async page write
[  500.437260][T19363] syz.3.4086: attempt to access beyond end of device
[  500.437260][T19363] loop3: rw=2049, sector=156, nr_sectors = 1 limit=128
[  500.450874][T19363] Buffer I/O error on dev loop3, logical block 156, lost async page write
[  500.566206][T19363] syz.3.4086: attempt to access beyond end of device
[  500.566206][T19363] loop3: rw=2049, sector=157, nr_sectors = 1 limit=128
[  500.579908][T19363] Buffer I/O error on dev loop3, logical block 157, lost async page write
[  500.630658][T19363] Buffer I/O error on dev loop3, logical block 160, lost async page write
[  500.648327][T19363] Buffer I/O error on dev loop3, logical block 161, lost async page write
[  500.709358][T14783] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  500.764693][T19377] loop2: detected capacity change from 0 to 512
[  500.822746][T19375] SELinux:  policydb magic number 0xffffffff does not match expected magic number 0xf97cff8c
[  500.833747][T19377] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.4090: bg 0: block 5: invalid block bitmap
[  500.850595][T19375] SELinux: failed to load policy
[  500.855800][T19377] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  500.875066][T19377] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.4090: invalid indirect mapped block 3 (level 2)
[  500.898942][T19384] program syz.4.4093 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  500.910006][T19377] EXT4-fs (loop2): 2 truncates cleaned up
[  500.916485][T19377] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  500.972057][T19388] loop4: detected capacity change from 0 to 1024
[  500.982723][T19388] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  500.994360][T19388] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  501.003607][T19388] EXT4-fs (loop4): orphan cleanup on readonly fs
[  501.010397][T19388] EXT4-fs error (device loop4): ext4_ext_check_inode:524: inode #3: comm syz.4.4095: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 2(4), depth 0(0)
[  501.029792][T19388] EXT4-fs error (device loop4): ext4_quota_enable:7129: comm syz.4.4095: Bad quota inode: 3, type: 0
[  501.042585][T19388] EXT4-fs warning (device loop4): ext4_enable_quotas:7170: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  501.057539][T19388] EXT4-fs (loop4): Cannot turn on quotas: error -117
[  501.064759][T19388] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  501.083624][T19388] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  501.104572][T14783] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  501.124461][T19391] C speed is unknown, defaulting to 1000
[  501.140301][T19395] C speed is unknown, defaulting to 1000
[  501.169083][T19397] Invalid ELF header magic: != ELF
[  501.177933][T19397] loop4: detected capacity change from 0 to 512
[  501.185382][T19397] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  501.202575][T19397] EXT4-fs (loop4): 1 truncate cleaned up
[  501.204785][T19391] C speed is unknown, defaulting to 1000
[  501.226314][T19397] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  501.238730][T19395] loop3: detected capacity change from 0 to 128
[  501.270789][T14783] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  501.291658][T19404] loop4: detected capacity change from 0 to 1024
[  501.315180][T19404] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  501.330419][T19404] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4113: comm syz.4.4099: Allocating blocks 385-513 which overlap fs metadata
[  501.348619][T19404] EXT4-fs (loop4): pa ffff888106dee690: logic 16, phys. 129, len 24
[  501.356903][T19404] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[  501.384629][T14783] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  501.385855][T19410] loop3: detected capacity change from 0 to 512
[  501.401029][T19410] EXT4-fs: Ignoring removed mblk_io_submit option
[  501.410562][T19410] ext4: Unknown parameter 'hash'
[  501.517694][T19421] program syz.6.4105 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  501.624642][T19424] loop3: detected capacity change from 0 to 512
[  501.631506][T19424] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  501.642487][T19424] netlink: 'syz.3.4101': attribute type 10 has an invalid length.
[  501.891052][T19426] netlink: 'syz.4.4106': attribute type 4 has an invalid length.
[  502.014253][T19430] netlink: 552 bytes leftover after parsing attributes in process `syz.6.4109'.
[  502.023435][T19430] netlink: 32 bytes leftover after parsing attributes in process `syz.6.4109'.
[  502.088172][T19434] C speed is unknown, defaulting to 1000
[  502.110757][T19436] Invalid ELF header magic: != ELF
[  502.124280][T19436] loop6: detected capacity change from 0 to 512
[  502.162705][T19436] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  502.179522][T19434] loop4: detected capacity change from 0 to 128
[  502.198696][T19436] EXT4-fs (loop6): 1 truncate cleaned up
[  502.206917][T19436] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  502.290494][   T29] audit: type=1326 audit(1747812552.714:4959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19443 comm="syz.3.4113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceba59e969 code=0x7ffc0000
[  502.314090][   T29] audit: type=1326 audit(1747812552.714:4960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19443 comm="syz.3.4113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceba59e969 code=0x7ffc0000
[  502.351797][T13862] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  502.371614][T19446] loop3: detected capacity change from 0 to 2048
[  502.383097][T19450] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4116'.
[  502.415386][T19446] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  502.485798][T19456] SELinux:  policydb magic number 0xffffffff does not match expected magic number 0xf97cff8c
[  502.497124][T19457] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.4116'.
[  502.510989][T19450] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.4116'.
[  502.521634][T19456] SELinux: failed to load policy
[  502.581004][   T29] audit: type=1326 audit(1747812553.014:4961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19447 comm="syz.4.4116" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7ef0ace969 code=0x0
[  502.672738][   T29] audit: type=1326 audit(1747812553.054:4962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19447 comm="syz.4.4116" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7ef0ace969 code=0x0
[  502.677403][T19462] program syz.6.4119 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  502.734959][T19446] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  502.747237][T19446] EXT4-fs (loop3): This should not happen!! Data will be lost
[  502.747237][T19446] 
[  502.757040][T19446] EXT4-fs (loop3): Total free blocks count 0
[  502.763139][T19446] EXT4-fs (loop3): Free/Dirty block details
[  502.769116][T19446] EXT4-fs (loop3): free_blocks=0
[  502.774117][T19446] EXT4-fs (loop3): dirty_blocks=0
[  502.779165][T19446] EXT4-fs (loop3): Block reservation details
[  502.785203][T19446] EXT4-fs (loop3): i_reserved_data_blocks=0
[  502.794762][T19446] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  502.807230][T19464] loop6: detected capacity change from 0 to 1024
[  502.814734][T19464] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  502.836020][T19464] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  502.844199][T19464] EXT4-fs (loop6): orphan cleanup on readonly fs
[  502.850641][T19464] EXT4-fs error (device loop6): ext4_ext_check_inode:524: inode #3: comm syz.6.4120: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 2(4), depth 0(0)
[  502.868900][T19464] EXT4-fs error (device loop6): ext4_quota_enable:7129: comm syz.6.4120: Bad quota inode: 3, type: 0
[  502.880221][T19464] EXT4-fs warning (device loop6): ext4_enable_quotas:7170: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  502.894930][T19464] EXT4-fs (loop6): Cannot turn on quotas: error -117
[  502.902331][T19464] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  502.920547][T19464] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  502.945863][T13862] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  503.093832][T19467] netlink: 'syz.1.4122': attribute type 4 has an invalid length.
[  503.201434][T19479] program syz.1.4126 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  503.255717][T19481] C speed is unknown, defaulting to 1000
[  503.297503][T19483] C speed is unknown, defaulting to 1000
[  503.352716][T19483] loop3: detected capacity change from 0 to 128
[  503.521361][T19497] loop3: detected capacity change from 0 to 1024
[  503.528660][T19497] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  503.539786][T19497] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  503.547978][T19497] EXT4-fs (loop3): orphan cleanup on readonly fs
[  503.554543][T19497] EXT4-fs error (device loop3): ext4_ext_check_inode:524: inode #3: comm syz.3.4132: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 2(4), depth 0(0)
[  503.574230][T19497] EXT4-fs error (device loop3): ext4_quota_enable:7129: comm syz.3.4132: Bad quota inode: 3, type: 0
[  503.585796][T19497] EXT4-fs warning (device loop3): ext4_enable_quotas:7170: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  503.600624][T19497] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  503.607701][T19497] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  503.624763][T19497] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  503.640574][T14047] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  503.769098][T15201] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  503.791591][T19504] loop2: detected capacity change from 0 to 2048
[  503.812164][T19504] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  503.912333][T19512] netlink: 'syz.6.4136': attribute type 4 has an invalid length.
[  503.963387][T19515] SELinux:  policydb magic number 0xffffffff does not match expected magic number 0xf97cff8c
[  503.974113][T19515] SELinux: failed to load policy
[  504.017365][T19513] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  504.029680][T19513] EXT4-fs (loop2): This should not happen!! Data will be lost
[  504.029680][T19513] 
[  504.039425][T19513] EXT4-fs (loop2): Total free blocks count 0
[  504.042803][ T3486] usb 5-1: enqueue for inactive port 0
[  504.045507][T19513] EXT4-fs (loop2): Free/Dirty block details
[  504.052555][ T3486] usb 5-1: enqueue for inactive port 0
[  504.056946][T19513] EXT4-fs (loop2): free_blocks=0
[  504.067402][T19513] EXT4-fs (loop2): dirty_blocks=0
[  504.072498][T19513] EXT4-fs (loop2): Block reservation details
[  504.078723][T19513] EXT4-fs (loop2): i_reserved_data_blocks=0
[  504.086124][T19508] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  504.142495][ T3486] vhci_hcd: vhci_device speed not set
[  504.238635][T19526] SELinux:  policydb magic number 0xffffffff does not match expected magic number 0xf97cff8c
[  504.250433][T19526] SELinux: failed to load policy
[  504.412469][T19558] netlink: 256 bytes leftover after parsing attributes in process `syz.1.4143'.
[  504.572713][T19572] C speed is unknown, defaulting to 1000
[  504.656781][T19572] C speed is unknown, defaulting to 1000
[  505.118693][T19609] SELinux:  policydb magic number 0xffffffff does not match expected magic number 0xf97cff8c
[  505.129343][T19609] SELinux: failed to load policy
[  505.146121][T19611] loop6: detected capacity change from 0 to 512
[  505.153954][T19611] EXT4-fs: Ignoring removed mblk_io_submit option
[  505.160425][T19611] ext4: Unknown parameter 'hash'
[  505.411026][T19620] loop6: detected capacity change from 0 to 512
[  505.417540][T19620] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  505.428563][T19620] netlink: 'syz.6.4146': attribute type 10 has an invalid length.
[  506.295856][T19622] C speed is unknown, defaulting to 1000
[  506.586906][T19626] SELinux:  policydb magic number 0xffffffff does not match expected magic number 0xf97cff8c
[  506.598355][T19626] SELinux: failed to load policy
[  506.624065][T19619] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[  506.630710][T19619] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  506.638311][T19619] vhci_hcd vhci_hcd.0: Device attached
[  506.664234][T19619] ip6t_rpfilter: unknown options
[  506.724602][T19632] netlink: 'syz.3.4152': attribute type 4 has an invalid length.
[  506.810972][T19627] vhci_hcd: connection closed
[  506.811084][T17811] vhci_hcd: stop threads
[  506.820138][T17811] vhci_hcd: release socket
[  506.824679][T17811] vhci_hcd: disconnect device
[  506.843072][   T10] vhci_hcd: vhci_device speed not set
[  507.027397][T19649] netlink: 256 bytes leftover after parsing attributes in process `syz.6.4160'.
[  507.074070][T19656] program syz.6.4162 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  507.142085][T19643] Invalid ELF header magic: != ELF
[  507.165155][T19643] loop4: detected capacity change from 0 to 512
[  507.182180][T19643] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  507.467304][T19643] EXT4-fs (loop4): 1 truncate cleaned up
[  507.478320][T19643] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  507.550434][T19701] SELinux:  policydb magic number 0xffffffff does not match expected magic number 0xf97cff8c
[  507.575571][T19701] SELinux: failed to load policy
[  507.608713][T14783] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  507.641405][T19712] netlink: 'syz.4.4166': attribute type 4 has an invalid length.
[  507.742884][T19728] loop3: detected capacity change from 0 to 2048
[  507.786453][T19728] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  507.883250][T19748] program syz.4.4173 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  507.997239][T19765] program syz.4.4174 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  508.130270][T19745] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  508.134996][T19784] Invalid ELF header magic: != ELF
[  508.142575][T19745] EXT4-fs (loop3): This should not happen!! Data will be lost
[  508.142575][T19745] 
[  508.157589][T19745] EXT4-fs (loop3): Total free blocks count 0
[  508.157609][T19745] EXT4-fs (loop3): Free/Dirty block details
[  508.157623][T19745] EXT4-fs (loop3): free_blocks=0
[  508.157639][T19745] EXT4-fs (loop3): dirty_blocks=0
[  508.157655][T19745] EXT4-fs (loop3): Block reservation details
[  508.157669][T19745] EXT4-fs (loop3): i_reserved_data_blocks=0
[  508.168790][T19750] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  508.183103][T19781] loop2: detected capacity change from 0 to 512
[  508.183341][T19781] EXT4-fs: Ignoring removed nobh option
[  508.215817][T19781] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2
[  508.216065][T19781] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.4176: invalid indirect mapped block 2683928664 (level 1)
[  508.216798][T19781] EXT4-fs (loop2): 1 truncate cleaned up
[  508.217272][T19781] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  508.223647][T19796] 9pnet_fd: Insufficient options for proto=fd
[  508.242278][T19784] loop6: detected capacity change from 0 to 512
[  508.243003][T19784] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  508.262814][T19784] EXT4-fs (loop6): 1 truncate cleaned up
[  508.263305][T19784] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  508.266989][T15201] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  508.399413][T19794] netlink: 'syz.1.4179': attribute type 4 has an invalid length.
[  508.410120][T13862] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  508.477512][T19807] program syz.4.4183 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  508.511737][T19805] SELinux:  policydb magic number 0xffffffff does not match expected magic number 0xf97cff8c
[  508.546448][T19805] SELinux: failed to load policy
[  508.597651][T19812] C speed is unknown, defaulting to 1000
[  508.670604][T19819] loop2: detected capacity change from 0 to 128
[  508.709686][T19824] program syz.4.4189 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  508.762637][T19812] bio_check_eod: 46 callbacks suppressed
[  508.762658][T19812] syz.2.4185: attempt to access beyond end of device
[  508.762658][T19812] loop2: rw=2049, sector=132, nr_sectors = 8 limit=128
[  508.783363][T19812] syz.2.4185: attempt to access beyond end of device
[  508.783363][T19812] loop2: rw=2049, sector=148, nr_sectors = 8 limit=128
[  508.797536][T19812] syz.2.4185: attempt to access beyond end of device
[  508.797536][T19812] loop2: rw=2049, sector=142, nr_sectors = 1 limit=128
[  508.811117][T19812] buffer_io_error: 38 callbacks suppressed
[  508.811134][T19812] Buffer I/O error on dev loop2, logical block 142, lost async page write
[  508.819719][T19826] C speed is unknown, defaulting to 1000
[  508.834514][T19812] syz.2.4185: attempt to access beyond end of device
[  508.834514][T19812] loop2: rw=2049, sector=143, nr_sectors = 1 limit=128
[  508.848097][T19812] Buffer I/O error on dev loop2, logical block 143, lost async page write
[  508.913969][T19836] C speed is unknown, defaulting to 1000
[  508.999374][T19832] loop6: detected capacity change from 0 to 512
[  509.016898][T19839] ip6t_rpfilter: unknown options
[  509.032611][T19832] EXT4-fs: Ignoring removed mblk_io_submit option
[  509.057738][T19826] loop4: detected capacity change from 0 to 128
[  509.083800][T19836] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[  509.090361][T19836] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  509.097909][T19836] vhci_hcd vhci_hcd.0: Device attached
[  509.109819][T19832] ext4: Unknown parameter 'hash'
[  509.149718][T19826] syz.4.4191: attempt to access beyond end of device
[  509.149718][T19826] loop4: rw=2049, sector=132, nr_sectors = 8 limit=128
[  509.178560][T19812] syz.2.4185: attempt to access beyond end of device
[  509.178560][T19812] loop2: rw=2049, sector=144, nr_sectors = 1 limit=128
[  509.192107][T19812] Buffer I/O error on dev loop2, logical block 144, lost async page write
[  509.211000][T19826] syz.4.4191: attempt to access beyond end of device
[  509.211000][T19826] loop4: rw=2049, sector=148, nr_sectors = 8 limit=128
[  509.340599][T19812] syz.2.4185: attempt to access beyond end of device
[  509.340599][T19812] loop2: rw=2049, sector=145, nr_sectors = 1 limit=128
[  509.354167][T19812] Buffer I/O error on dev loop2, logical block 145, lost async page write
[  509.354344][T19826] syz.4.4191: attempt to access beyond end of device
[  509.354344][T19826] loop4: rw=2049, sector=142, nr_sectors = 1 limit=128
[  509.362917][T19812] syz.2.4185: attempt to access beyond end of device
[  509.362917][T19812] loop2: rw=2049, sector=146, nr_sectors = 1 limit=128
[  509.376150][T19826] Buffer I/O error on dev loop4, logical block 142, lost async page write
[  509.376229][T19826] Buffer I/O error on dev loop4, logical block 143, lost async page write
[  509.389693][T19812] Buffer I/O error on dev loop2, logical block 146, lost async page write
[  509.390152][T19812] Buffer I/O error on dev loop2, logical block 147, lost async page write
[  509.425171][T19826] Buffer I/O error on dev loop4, logical block 144, lost async page write
[  509.483584][T19812] Buffer I/O error on dev loop2, logical block 156, lost async page write
[  509.499865][T19846] loop6: detected capacity change from 0 to 512
[  509.506737][T19846] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  509.517880][T19846] netlink: 'syz.6.4192': attribute type 10 has an invalid length.
[  509.652046][T19840] vhci_hcd: connection closed
[  509.709600][ T3413] vhci_hcd: stop threads
[  509.718660][ T3413] vhci_hcd: release socket
[  509.723194][ T3413] vhci_hcd: disconnect device
[  509.850028][T19853] program syz.2.4197 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  509.857727][ T3486] usb 3-1: new low-speed USB device number 15 using vhci_hcd
[  509.866816][ T3486] usb 3-1: enqueue for inactive port 0
[  509.890533][ T3486] usb 3-1: enqueue for inactive port 0
[  509.896081][ T3486] usb 3-1: enqueue for inactive port 0
[  509.930717][T19860] loop2: detected capacity change from 0 to 1024
[  509.938085][T19860] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  509.950116][T19860] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  509.958463][T19860] EXT4-fs (loop2): orphan cleanup on readonly fs
[  509.966231][T19860] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #3: comm syz.2.4200: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 2(4), depth 0(0)
[  509.984142][ T3486] vhci_hcd: vhci_device speed not set
[  509.997735][T19860] EXT4-fs error (device loop2): ext4_quota_enable:7129: comm syz.2.4200: Bad quota inode: 3, type: 0
[  510.009014][T19860] EXT4-fs warning (device loop2): ext4_enable_quotas:7170: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  510.018592][T19844] C speed is unknown, defaulting to 1000
[  510.023664][T19860] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  510.036650][T19860] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  510.129576][T19863] C speed is unknown, defaulting to 1000
[  510.205660][T19863] C speed is unknown, defaulting to 1000
[  510.401117][T19860] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  510.434268][   T29] audit: type=1326 audit(1747812560.844:4963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19867 comm="syz.1.4202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b2e0ee969 code=0x7ffc0000
[  510.457883][   T29] audit: type=1326 audit(1747812560.844:4964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19867 comm="syz.1.4202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b2e0ee969 code=0x7ffc0000
[  510.484724][T19866] loop4: detected capacity change from 0 to 2048
[  510.504714][T15201] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  510.507315][T19844] C speed is unknown, defaulting to 1000
[  510.523262][T19866] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  510.548062][T19875] program syz.2.4204 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  510.590165][T19877] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4205'.
[  510.663042][T19881] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.4205'.
[  510.674366][T19877] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.4205'.
[  510.791450][T19882] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  510.803798][T19882] EXT4-fs (loop4): This should not happen!! Data will be lost
[  510.803798][T19882] 
[  510.813558][T19882] EXT4-fs (loop4): Total free blocks count 0
[  510.819669][T19882] EXT4-fs (loop4): Free/Dirty block details
[  510.822268][   T29] audit: type=1326 audit(1747812561.244:4965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19876 comm="syz.2.4205" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f911a10e969 code=0x0
[  510.825621][T19882] EXT4-fs (loop4): free_blocks=0
[  510.853761][T19882] EXT4-fs (loop4): dirty_blocks=0
[  510.858874][T19882] EXT4-fs (loop4): Block reservation details
[  510.864953][T19882] EXT4-fs (loop4): i_reserved_data_blocks=0
[  510.872155][   T29] audit: type=1326 audit(1747812561.284:4966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19876 comm="syz.2.4205" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f911a10e969 code=0x0
[  510.906718][T19879] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  510.926643][T19890] loop6: detected capacity change from 0 to 1024
[  510.933220][T19892] loop3: detected capacity change from 0 to 512
[  510.939874][T19892] EXT4-fs: Ignoring removed mblk_io_submit option
[  510.953258][T19892] ext4: Unknown parameter 'hash'
[  510.955832][T19890] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  510.972081][T19890] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  511.026050][T19890] EXT4-fs (loop6): orphan cleanup on readonly fs
[  511.035521][T19890] EXT4-fs error (device loop6): ext4_ext_check_inode:524: inode #3: comm syz.6.4209: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 2(4), depth 0(0)
[  511.054702][T19890] EXT4-fs error (device loop6): ext4_quota_enable:7129: comm syz.6.4209: Bad quota inode: 3, type: 0
[  511.074381][T19890] EXT4-fs warning (device loop6): ext4_enable_quotas:7170: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  511.089123][T19890] EXT4-fs (loop6): Cannot turn on quotas: error -117
[  511.096657][T19890] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  511.120352][T19890] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  511.185689][T19900] loop3: detected capacity change from 0 to 512
[  511.192287][T19900] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  511.202938][T19900] netlink: 'syz.3.4210': attribute type 10 has an invalid length.
[  511.518895][T13862] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  511.575428][T19906] netlink: 256 bytes leftover after parsing attributes in process `syz.1.4213'.
[  511.630433][T19908] SELinux:  policydb magic number 0xffffffff does not match expected magic number 0xf97cff8c
[  511.654215][T19908] SELinux: failed to load policy
[  511.669797][T19916] program syz.1.4214 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  511.749760][T19924] C speed is unknown, defaulting to 1000
[  511.816851][T19932] program syz.3.4218 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  512.395709][T20024] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4222'.
[  512.468922][T20028] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.4222'.
[  512.486557][T20029] loop6: detected capacity change from 0 to 1024
[  512.494231][T20024] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.4222'.
[  512.526206][T20029] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  512.544965][T20029] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4113: comm syz.6.4224: Allocating blocks 385-513 which overlap fs metadata
[  512.561399][   T29] audit: type=1326 audit(1747812562.994:4967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20022 comm="syz.1.4222" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6b2e0ee969 code=0x0
[  512.564477][T20029] EXT4-fs (loop6): pa ffff888105ae4e00: logic 16, phys. 129, len 24
[  512.592748][T20029] EXT4-fs error (device loop6): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[  512.614177][   T29] audit: type=1326 audit(1747812563.044:4968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20022 comm="syz.1.4222" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6b2e0ee969 code=0x0
[  512.642851][T13862] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  512.667047][T20036] netlink: 256 bytes leftover after parsing attributes in process `syz.6.4225'.
[  512.697205][T20040] netlink: 552 bytes leftover after parsing attributes in process `syz.6.4227'.
[  512.706605][T20040] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4227'.
[  512.731662][T20042] SELinux:  policydb magic number 0xffffffff does not match expected magic number 0xf97cff8c
[  512.742215][T20042] SELinux: failed to load policy
[  512.752225][T20045] loop4: detected capacity change from 0 to 512
[  512.758839][T20045] EXT4-fs: Ignoring removed mblk_io_submit option
[  512.765640][T20045] ext4: Unknown parameter 'hash'
[  512.873050][T20048] program syz.6.4230 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  512.945973][T20051] loop4: detected capacity change from 0 to 512
[  512.952781][T20051] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  512.964005][T20051] netlink: 'syz.4.4229': attribute type 10 has an invalid length.
[  513.338539][T20068] Invalid ELF header magic: != ELF
[  513.382342][T20068] loop3: detected capacity change from 0 to 512
[  513.413741][T20068] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  513.468743][T20068] EXT4-fs (loop3): 1 truncate cleaned up
[  513.477217][T20068] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  513.504600][T14047] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  513.534053][T20080] loop3: detected capacity change from 0 to 512
[  513.542541][T20080] EXT4-fs: Ignoring removed nobh option
[  513.550027][T20080] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  513.562439][T20080] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.4235: invalid indirect mapped block 2683928664 (level 1)
[  513.578393][T20080] EXT4-fs (loop3): 1 truncate cleaned up
[  513.649418][T20080] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  513.675820][T20087] loop4: detected capacity change from 0 to 1024
[  513.703529][T20091] loop2: detected capacity change from 0 to 2048
[  513.713574][T20087] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  513.740955][T20091] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  513.755220][T20087] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4113: comm syz.4.4236: Allocating blocks 385-513 which overlap fs metadata
[  513.840815][T14047] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  513.887364][T20087] EXT4-fs (loop4): pa ffff888106dee000: logic 16, phys. 129, len 24
[  513.890427][T20124] netlink: 256 bytes leftover after parsing attributes in process `syz.3.4238'.
[  513.895527][T20087] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[  513.963409][T20128] loop3: detected capacity change from 0 to 512
[  513.969964][T20128] EXT4-fs: Ignoring removed nobh option
[  513.988968][T20128] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  514.019802][T20132] netlink: 552 bytes leftover after parsing attributes in process `syz.6.4241'.
[  514.029058][T20132] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4241'.
[  514.040066][T20128] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.4239: invalid indirect mapped block 2683928664 (level 1)
[  514.054754][T20128] EXT4-fs (loop3): 1 truncate cleaned up
[  514.165658][T20137] SELinux:  policydb magic number 0xffffffff does not match expected magic number 0xf97cff8c
[  514.184505][T20137] SELinux: failed to load policy
[  514.190891][T20135] netlink: 'syz.4.4240': attribute type 4 has an invalid length.
[  514.288485][T20146] Invalid ELF header magic: != ELF
[  514.298857][T20146] loop3: detected capacity change from 0 to 512
[  514.311865][T20146] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  514.334798][T20149] loop4: detected capacity change from 0 to 512
[  514.341514][T20149] EXT4-fs: Ignoring removed mblk_io_submit option
[  514.348362][T20149] ext4: Unknown parameter 'hash'
[  514.356666][T20146] EXT4-fs (loop3): 1 truncate cleaned up
[  514.584217][T20158] loop4: detected capacity change from 0 to 512
[  514.590853][T20158] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  514.601652][T20158] netlink: 'syz.4.4247': attribute type 10 has an invalid length.
[  514.677066][T20156] Invalid ELF header magic: != ELF
[  514.717531][T20156] loop3: detected capacity change from 0 to 512
[  514.747079][T20156] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  514.873091][T20156] EXT4-fs (loop3): 1 truncate cleaned up
[  515.017627][T20162] loop3: detected capacity change from 0 to 1024
[  515.050998][T20162] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.4251: Allocating blocks 385-513 which overlap fs metadata
[  515.090798][T20162] EXT4-fs (loop3): pa ffff888106dee690: logic 16, phys. 129, len 24
[  515.098866][T20162] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[  515.125336][T20166] netlink: 256 bytes leftover after parsing attributes in process `syz.2.4252'.
[  515.247458][T20178] program syz.2.4256 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  515.259334][T20177] SELinux:  policydb magic number 0xffffffff does not match expected magic number 0xf97cff8c
[  515.269832][T20177] SELinux: failed to load policy
[  515.308744][T20183] C speed is unknown, defaulting to 1000
[  515.356139][T20186] loop3: detected capacity change from 0 to 128
[  515.417228][T20197] loop6: detected capacity change from 0 to 1024
[  515.467775][T20197] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4113: comm syz.6.4264: Allocating blocks 385-513 which overlap fs metadata
[  515.490616][T20197] EXT4-fs (loop6): pa ffff888106dee000: logic 16, phys. 129, len 24
[  515.498996][T20197] EXT4-fs error (device loop6): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[  515.523842][T20207] loop4: detected capacity change from 0 to 2048
[  515.549779][T20183] bio_check_eod: 18 callbacks suppressed
[  515.549796][T20183] syz.3.4259: attempt to access beyond end of device
[  515.549796][T20183] loop3: rw=2049, sector=132, nr_sectors = 8 limit=128
[  515.573115][T20183] syz.3.4259: attempt to access beyond end of device
[  515.573115][T20183] loop3: rw=2049, sector=148, nr_sectors = 8 limit=128
[  515.592185][T20183] syz.3.4259: attempt to access beyond end of device
[  515.592185][T20183] loop3: rw=2049, sector=142, nr_sectors = 1 limit=128
[  515.605747][T20183] buffer_io_error: 14 callbacks suppressed
[  515.605763][T20183] Buffer I/O error on dev loop3, logical block 142, lost async page write
[  515.620356][T20183] syz.3.4259: attempt to access beyond end of device
[  515.620356][T20183] loop3: rw=2049, sector=143, nr_sectors = 1 limit=128
[  515.633877][T20183] Buffer I/O error on dev loop3, logical block 143, lost async page write
[  515.691786][T20183] syz.3.4259: attempt to access beyond end of device
[  515.691786][T20183] loop3: rw=2049, sector=144, nr_sectors = 1 limit=128
[  515.705311][T20183] Buffer I/O error on dev loop3, logical block 144, lost async page write
[  515.722590][T20216] netlink: 'syz.1.4268': attribute type 10 has an invalid length.
[  515.819108][T20183] syz.3.4259: attempt to access beyond end of device
[  515.819108][T20183] loop3: rw=2049, sector=145, nr_sectors = 1 limit=128
[  515.832718][T20183] Buffer I/O error on dev loop3, logical block 145, lost async page write
[  516.090534][T20183] syz.3.4259: attempt to access beyond end of device
[  516.090534][T20183] loop3: rw=2049, sector=146, nr_sectors = 1 limit=128
[  516.104125][T20183] Buffer I/O error on dev loop3, logical block 146, lost async page write
[  516.112954][T20183] syz.3.4259: attempt to access beyond end of device
[  516.112954][T20183] loop3: rw=2049, sector=147, nr_sectors = 1 limit=128
[  516.126425][T20183] Buffer I/O error on dev loop3, logical block 147, lost async page write
[  516.143788][T20183] syz.3.4259: attempt to access beyond end of device
[  516.143788][T20183] loop3: rw=2049, sector=156, nr_sectors = 1 limit=128
[  516.157381][T20183] Buffer I/O error on dev loop3, logical block 156, lost async page write
[  516.183746][T20183] syz.3.4259: attempt to access beyond end of device
[  516.183746][T20183] loop3: rw=2049, sector=157, nr_sectors = 1 limit=128
[  516.197269][T20183] Buffer I/O error on dev loop3, logical block 157, lost async page write
[  516.251466][T20183] Buffer I/O error on dev loop3, logical block 160, lost async page write
[  516.252025][T20223] program syz.2.4271 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  516.312984][T20183] Buffer I/O error on dev loop3, logical block 161, lost async page write
[  516.556668][T20247] Invalid ELF header magic: != ELF
[  516.596861][   T29] audit: type=1326 audit(1747812567.024:4969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20233 comm="syz.3.4277" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fceba59e969 code=0x0
[  516.622594][T20247] loop2: detected capacity change from 0 to 512
[  516.629898][T20253] netlink: 'syz.4.4283': attribute type 4 has an invalid length.
[  516.646706][   T29] audit: type=1326 audit(1747812567.074:4970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20233 comm="syz.3.4277" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fceba59e969 code=0x0
[  516.652303][T20247] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  516.700391][T20247] EXT4-fs (loop2): 1 truncate cleaned up
[  516.777816][T20262] program syz.2.4286 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  516.807439][T20264] loop2: detected capacity change from 0 to 512
[  516.818047][T20264] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.4287: bg 0: block 5: invalid block bitmap
[  516.833808][T20264] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  516.842883][T20264] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.4287: invalid indirect mapped block 3 (level 2)
[  516.862140][T20264] EXT4-fs (loop2): 2 truncates cleaned up
[  516.939752][T20267] C speed is unknown, defaulting to 1000
[  516.984318][T20267] loop4: detected capacity change from 0 to 128
[  517.373523][T20293] Invalid ELF header magic: != ELF
[  517.387773][T20293] loop6: detected capacity change from 0 to 512
[  517.401861][T20293] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  517.492791][T20293] EXT4-fs (loop6): 1 truncate cleaned up
[  517.647055][T20309] netlink: 'syz.1.4297': attribute type 4 has an invalid length.
[  517.712712][T20318] __nla_validate_parse: 6 callbacks suppressed
[  517.712784][T20318] netlink: 552 bytes leftover after parsing attributes in process `syz.6.4298'.
[  517.916196][T20349] loop6: detected capacity change from 0 to 512
[  517.937441][T20349] EXT4-fs: Ignoring removed nobh option
[  517.948238][T20349] EXT4-fs (loop6): Cannot turn on journaled quota: type 0: error -2
[  517.989941][T20355] C speed is unknown, defaulting to 1000
[  518.098064][T20349] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #13: comm syz.6.4300: invalid indirect mapped block 2683928664 (level 1)
[  518.122986][T20355] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[  518.129537][T20355] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  518.137148][T20355] vhci_hcd vhci_hcd.0: Device attached
[  518.146303][T20355] ip6t_rpfilter: unknown options
[  518.356662][T20349] EXT4-fs (loop6): 1 truncate cleaned up
[  518.410521][ T3486] usb 3-1: new low-speed USB device number 16 using vhci_hcd
[  518.587941][T20378] SELinux:  policydb magic number 0xffffffff does not match expected magic number 0xf97cff8c
[  518.598578][T20378] SELinux: failed to load policy
[  518.649308][T20356] vhci_hcd: connection reset by peer
[  518.655065][   T51] vhci_hcd: stop threads
[  518.659385][   T51] vhci_hcd: release socket
[  518.663847][   T51] vhci_hcd: disconnect device
[  518.738469][T20396] loop6: detected capacity change from 0 to 2048
[  518.945770][T20396] ==================================================================
[  518.953885][T20396] BUG: KCSAN: data-race in filemap_write_and_wait_range / xas_set_mark
[  518.962141][T20396] 
[  518.964456][T20396] write to 0xffff888106ea7374 of 4 bytes by task 20400 on cpu 1:
[  518.972161][T20396]  xas_set_mark+0x12b/0x140
[  518.976664][T20396]  __folio_start_writeback+0x1dd/0x430
[  518.982112][T20396]  ext4_bio_write_folio+0x590/0x9d0
[  518.987301][T20396]  mpage_process_page_bufs+0x46c/0x5b0
[  518.992750][T20396]  mpage_prepare_extent_to_map+0x775/0xb80
[  518.998635][T20396]  ext4_do_writepages+0xa25/0x2270
[  519.003737][T20396]  ext4_writepages+0x176/0x300
[  519.008507][T20396]  do_writepages+0x1d2/0x480
[  519.013086][T20396]  file_write_and_wait_range+0x156/0x2c0
[  519.018710][T20396]  generic_buffers_fsync_noflush+0x45/0x120
[  519.024597][T20396]  ext4_sync_file+0x1ab/0x690
[  519.029266][T20396]  vfs_fsync_range+0x10a/0x130
[  519.034022][T20396]  ext4_buffered_write_iter+0x34f/0x3c0
[  519.039570][T20396]  ext4_file_write_iter+0xdbf/0xf00
[  519.044758][T20396]  iter_file_splice_write+0x5f2/0x970
[  519.050122][T20396]  direct_splice_actor+0x153/0x2a0
[  519.055218][T20396]  splice_direct_to_actor+0x30f/0x680
[  519.060588][T20396]  do_splice_direct+0xda/0x150
[  519.065368][T20396]  do_sendfile+0x380/0x640
[  519.069767][T20396]  __x64_sys_sendfile64+0x105/0x150
[  519.074983][T20396]  x64_sys_call+0xb39/0x2fb0
[  519.079561][T20396]  do_syscall_64+0xd0/0x1a0
[  519.084052][T20396]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  519.089942][T20396] 
[  519.092252][T20396] read to 0xffff888106ea7374 of 4 bytes by task 20396 on cpu 0:
[  519.099869][T20396]  filemap_write_and_wait_range+0xfc/0x340
[  519.105669][T20396]  filemap_invalidate_pages+0xa4/0x1a0
[  519.111225][T20396]  kiocb_invalidate_pages+0x6e/0x80
[  519.116429][T20396]  __iomap_dio_rw+0x5d4/0x1250
[  519.121220][T20396]  iomap_dio_rw+0x40/0x90
[  519.125559][T20396]  ext4_file_write_iter+0xad9/0xf00
[  519.130748][T20396]  iter_file_splice_write+0x5f2/0x970
[  519.136108][T20396]  direct_splice_actor+0x153/0x2a0
[  519.141210][T20396]  splice_direct_to_actor+0x30f/0x680
[  519.146597][T20396]  do_splice_direct+0xda/0x150
[  519.151366][T20396]  do_sendfile+0x380/0x640
[  519.155793][T20396]  __x64_sys_sendfile64+0x105/0x150
[  519.161000][T20396]  x64_sys_call+0xb39/0x2fb0
[  519.165613][T20396]  do_syscall_64+0xd0/0x1a0
[  519.170127][T20396]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  519.176008][T20396] 
[  519.178329][T20396] value changed: 0x0a000021 -> 0x04000021
[  519.184044][T20396] 
[  519.186350][T20396] Reported by Kernel Concurrency Sanitizer on:
[  519.192490][T20396] CPU: 0 UID: 0 PID: 20396 Comm: syz.6.4307 Not tainted 6.15.0-rc7-syzkaller-00002-gb36ddb9210e6 #0 PREEMPT(voluntary) 
[  519.205060][T20396] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  519.215112][T20396] ==================================================================
[  523.550546][ T3486] usb 3-1: enqueue for inactive port 0
[  523.556147][ T3486] usb 3-1: enqueue for inactive port 0
[  523.630554][ T3486] vhci_hcd: vhci_device speed not set