last executing test programs:

1.862853786s ago: executing program 0 (id=2746):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000030000000000000000000018110000", @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000000007020000f8"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x3, 0xc, &(0x7f0000000280)=ANY=[@ANYRESDEC=r0], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x41, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@ipv6_newnexthop={0x24, 0x68, 0x309, 0x0, 0x0, {}, [@NHA_BLACKHOLE={0x4}, @NHA_ID={0x8, 0x1, 0x1}]}, 0x24}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180600000100a7d90000000000000000850000007b"], &(0x7f0000000140)='syzkaller\x00', 0x200, 0xfffffffffffffff6, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00'}, 0x10)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000c80)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c}}]}, 0x4c}}, 0x0)

1.80883562s ago: executing program 0 (id=2749):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000300000000000000000000181100", @ANYRES32, @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000c80)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c}}]}, 0x4c}}, 0x0)

1.790589112s ago: executing program 0 (id=2751):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000001000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
pipe(&(0x7f0000000100)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r2, 0x0, r5, 0x0, 0x8ec0, 0x0)
dup3(r3, r4, 0x0)
request_key(&(0x7f0000000400)='dns_resolver\x00', &(0x7f0000000280)={'syz', 0x1}, &(0x7f0000000240)='![\'[\'^-.-]{$5#\x00', 0x0)

1.69517996s ago: executing program 1 (id=2756):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f0000000c00), 0x1, 0xb80, &(0x7f0000000c40)="$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")
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffffb, 0x4002011, r0, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000f4)
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x1, 0x7a00, 0x0, 0x3)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x84182, 0x0)
write$P9_RREMOVE(r1, &(0x7f0000000100)={0x7, 0x7b, 0x2}, 0x7)
preadv2(r2, &(0x7f0000000400)=[{&(0x7f0000001140)=""/4096, 0x2007ffb}], 0x1, 0x10000, 0x0, 0x1d)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000e27b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000004"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x2000081, &(0x7f0000000080)=ANY=[@ANYRES8=0x0, @ANYRES8, @ANYRES64, @ANYRES64=0x0], 0x0, 0x23e, &(0x7f0000000bc0)="$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")
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r5, 0xa02000000000000, 0x60, &(0x7f0000000000)={'filter\x00', 0xb001, 0x4, 0x3e8, 0x0, 0x0, 0x130, 0x300, 0x300, 0x300, 0x7fffffe, 0x0, {[{{@arp={@local, @empty, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'pimreg\x00', 'veth0_to_bridge\x00'}, 0xc0, 0x130}, @unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f67b23ffdfa27f907a03732da3acbc6518e62a77ca06f258762e88c0d9f9d2f413b94a105f4bdf01425ce81c5d000000000000000500ffffffff00"}}}, {{@arp={@multicast2, @empty, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_to_team\x00', 'ip6tnl0\x00'}, 0xc0, 0xe8}, @unspec=@CLASSIFY={0x28}}, {{@uncond, 0xc0, 0xe8}, @unspec=@NFQUEUE3={0x28}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)

1.308361574s ago: executing program 2 (id=2766):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xea, 0xea, 0x6, [@func={0xd, 0x0, 0x0, 0xc, 0x4}, @typedef={0xd, 0x0, 0x0, 0x8, 0x2}, @volatile={0xc}, @struct={0xf, 0x2, 0x0, 0x4, 0x1, 0x9, [{0x6, 0x4, 0x5b2b3718}, {0x6, 0x3, 0x7ff}]}, @int={0x10, 0x0, 0x0, 0x1, 0x0, 0x23, 0x0, 0x22, 0x1}, @volatile, @int={0xd, 0x0, 0x0, 0x1, 0x0, 0x37, 0x0, 0x63, 0x2}, @datasec={0xe, 0x1, 0x0, 0xf, 0x2, [{0x1, 0x2, 0x1000}], "8d1c"}, @enum={0x3, 0xa, 0x0, 0x6, 0x4, [{0x9, 0x2}, {0x7, 0x6}, {0x7, 0x5}, {0x1, 0x3}, {0xa, 0x7}, {0x7, 0x5}, {0x4, 0x9}, {0xf, 0x1}, {0xc, 0x4}, {0x5, 0x4}]}]}, {0x0, [0x0, 0x2e, 0x30, 0x5f]}}, &(0x7f0000000140)=""/55, 0x10a, 0x37, 0x0, 0x5a, 0x10000, @value}, 0x28)
r1 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, r0, 0x0, 0x0, 0x80000, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000400)={r1, &(0x7f0000000300), 0x0}, 0x20)

1.307944234s ago: executing program 2 (id=2767):
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0), 0x400040, 0x0)
ioctl$TIOCEXCL(r0, 0x540c)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000200)={'ip6tnl0\x00', &(0x7f00000004c0)={'syztnl2\x00', <r1=>0x0, 0x0, 0xf7, 0x8, 0x800, 0x8, @private0, @loopback, 0x80, 0x7800, 0xffffffff, 0x1ff}})
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYRES64=0x0], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r1, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$KDENABIO(r3, 0x4b36)
rt_tgsigqueueinfo(0x0, 0x0, 0x1, &(0x7f0000000000)={0x8000000}) (async, rerun: 64)
getsockopt$bt_BT_RCVMTU(0xffffffffffffffff, 0x112, 0xd, &(0x7f0000000000)=0x2, &(0x7f0000000040)=0x2) (async, rerun: 64)
bind$isdn(r0, &(0x7f00000001c0)={0x22, 0x40, 0x7f, 0x2, 0x6}, 0x6) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r2}, 0x10) (async, rerun: 64)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2800001, 0xc3072, 0xffffffffffffffff, 0x0) (async, rerun: 64)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) (async)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='9p_protocol_dump\x00', r5}, 0x10) (async)
pipe2$9p(&(0x7f0000000180)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="1b000000000000000005009b7b36000000000000000008", @ANYRES32=r0, @ANYBLOB="008000"/20, @ANYRES32=r1, @ANYRES32=r3, @ANYBLOB="03000000000000000200"/28], 0x50)
r8 = dup(r7)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r6, @ANYBLOB=',wfdno=', @ANYRESHEX=r8]) (async)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600600, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil)

1.307595874s ago: executing program 2 (id=2768):
r0 = syz_io_uring_setup(0xd79, &(0x7f00000035c0)={0x0, 0x0, 0x10100}, &(0x7f0000000300), &(0x7f0000000040))
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x16, 0x0, 0x4, 0xffff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001280)=[r1], 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x4, 0x4, 0x9, 0x0, r1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000024c0), &(0x7f0000001280), 0x2, r2}, 0x90)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x10000, r2}, 0x38)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001480), 0x42002, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r3, r4, 0x0, 0x20000023896)
syz_clone3(&(0x7f0000000500)={0x281400, &(0x7f0000000200), &(0x7f0000000240), &(0x7f0000000280)=<r5=>0x0, {0x32}, &(0x7f0000000340)=""/192, 0xc0, &(0x7f0000000400)=""/67, &(0x7f00000002c0)=[0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0], 0xa}, 0x58)
ioprio_set$pid(0x2, r5, 0x4004)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0xe, 0x42031, 0xffffffffffffffff, 0x180000000)
syz_clone(0x20003000, 0x0, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r0, 0x291c, 0x0, 0x0, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000080)='fdinfo/3\x00')
r6 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x9, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r4, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000780)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r7, @ANYBLOB="00000000007578b04f597b32fcb90cc8c863208a000000b7020000f3ffffb015000000860000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r6, 0x40042408, r8)
creat(&(0x7f0000000040)='./file0\x00', 0x2)

1.079427794s ago: executing program 1 (id=2769):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{}, &(0x7f00000006c0), &(0x7f0000000700)=r1}, 0x20)
ioctl$sock_SIOCSIFBR(r0, 0x8941, &(0x7f0000000180)=@generic={0x1, 0x8000, 0x7fff})

1.055865167s ago: executing program 1 (id=2770):
r0 = syz_io_uring_setup(0xd79, &(0x7f00000035c0)={0x0, 0x0, 0x10100}, &(0x7f0000000300), &(0x7f0000000040))
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x16, 0x0, 0x4, 0xffff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001280)=[r1], 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x4, 0x4, 0x9, 0x0, r1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000024c0), &(0x7f0000001280), 0x2, r2}, 0x90)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x10000, r2}, 0x38)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001480), 0x42002, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r3, r4, 0x0, 0x20000023896)
syz_clone3(&(0x7f0000000500)={0x281400, &(0x7f0000000200), &(0x7f0000000240), &(0x7f0000000280)=<r5=>0x0, {0x32}, &(0x7f0000000340)=""/192, 0xc0, &(0x7f0000000400)=""/67, &(0x7f00000002c0)=[0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0], 0xa}, 0x58)
ioprio_set$pid(0x2, r5, 0x4004)
accept4$vsock_stream(0xffffffffffffffff, &(0x7f0000000000)={0x28, 0x0, 0xffffffff, @my=0x0}, 0x10, 0x80000)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0xe, 0x42031, 0xffffffffffffffff, 0x180000000)
io_uring_enter(r0, 0x291c, 0x0, 0x0, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000080)='fdinfo/3\x00')
r6 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x9, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r4, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000780)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r7, @ANYBLOB="00000000007578b04f597b32fcb90cc8c863208a000000b7020000f3ffffb015000000860000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r6, 0x40042408, r8)
creat(&(0x7f0000000040)='./file0\x00', 0x2)

972.438474ms ago: executing program 3 (id=2774):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007014d52fd56ffffb702000002000000b7030000faffff"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa10000000000000701000003ff"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000000)={'geneve1\x00', 0x400})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000004850000006d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r2 = socket$inet6_sctp(0xa, 0x801, 0x84)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000280)={'batadv0\x00', <r3=>0x0})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r3}}, 0x24}}, 0x0)

936.608007ms ago: executing program 0 (id=2775):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000000540)=ANY=[], 0x8, 0x2fd, &(0x7f0000000e40)="$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")
r0 = creat(&(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
r1 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
write$cgroup_freezer_state(0xffffffffffffffff, &(0x7f0000000040)='FROZEN\x00', 0x7)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r1, 0x0)
r2 = open_tree(r0, &(0x7f00000004c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x8801)
setsockopt$RDS_GET_MR(r2, 0x114, 0x2, &(0x7f0000000600)={{&(0x7f0000001140)=""/4096, 0x1000}, &(0x7f00000000c0), 0x1e}, 0x20)
pwritev2(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x1}], 0x1, 0x7000, 0x0, 0x0)
r3 = open(&(0x7f0000007f80)='./bus\x00', 0x145142, 0x0)
sendfile(r0, r3, 0x0, 0x1000000201005)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500970083000000bf506ff7a26b13e84fa0dcde807eff014309000000000000550901000000000095a12cf5480000000091000000010000000000008500000700000004b70000000000000095000000000000006751b40ab54bb2ad18bcb7c050c5944d07eef395a96480e61f7d3b121657b2f43c21972e03d280bba1fa"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r6}, 0x10)
sendmsg$nl_xfrm(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=@newsa={0x138, 0x10, 0x713, 0x0, 0x0, {{@in=@loopback}, {@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x32}, @in6=@loopback, {0x0, 0x0, 0x0, 0x2}, {}, {0x101}, 0x0, 0x0, 0x2, 0x1}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}]}, 0x138}}, 0x0)

903.52998ms ago: executing program 3 (id=2776):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x3, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = dup(0xffffffffffffffff)
write$UHID_INPUT(r1, &(0x7f00000010c0)={0xb, {"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", 0x1000}}, 0x1006)
ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r1, 0xc058534f, &(0x7f0000000280)={{0x5, 0xf}, 0x0, 0xa, 0x6, {0xa, 0x7}, 0x8})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
r2 = syz_open_procfs(0x0, &(0x7f0000000400)='stack\x00')
pread64(r2, &(0x7f000001a240)=""/102386, 0x18ff2, 0x0)

889.110942ms ago: executing program 3 (id=2777):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
dup(r1)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
ioperm(0x1, 0x5, 0xdd)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x41555856, 0x1, 0x0, 0x0, &(0x7f0000000040))
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000740)='scsi_dispatch_cmd_start\x00', r4}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='scsi_dispatch_cmd_start\x00', r5}, 0x10)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r8}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000340)='kfree\x00'}, 0x10)
r9 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$SG_IO(r9, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x40002, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})

854.687104ms ago: executing program 3 (id=2778):
close(0xffffffffffffffff)
openat$vcsu(0xffffffffffffff9c, &(0x7f0000000380), 0x103000, 0x0)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
mount$9p_fd(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f0000000440)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}})

854.036164ms ago: executing program 3 (id=2779):
socket$kcm(0x10, 0x2, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000300", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000005000000001456d874e72ba342c491d88ece0000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = syz_open_dev$usbfs(&(0x7f0000000080), 0x74, 0x101301)
ioctl$USBDEVFS_FREE_STREAMS(r2, 0x8008551d, &(0x7f0000000400)=ANY=[@ANYBLOB="5cc700001700"])
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@bloom_filter={0x1e, 0x3, 0x7, 0x5, 0x8040, 0xffffffffffffffff, 0x10000, '\x00', 0x0, r0, 0x1, 0x4, 0x0, 0x3, @value=r2, @void, @void, @value}, 0x50)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000080)={<r4=>0x0, @broadcast, @loopback}, &(0x7f0000000280)=0xc)
r5 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000600), 0x731800, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r5, 0xc0502100, &(0x7f0000000640))
r6 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000440)={&(0x7f00000002c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x98, 0x98, 0x5, [@restrict={0x0, 0x0, 0x0, 0xb, 0x1}, @fwd={0x10}, @ptr={0x5, 0x0, 0x0, 0x2, 0x4}, @enum={0x5, 0x4, 0x0, 0x6, 0x4, [{0x6, 0x3}, {0x8, 0x7}, {0x7}, {0x0, 0x7212}]}, @var={0xd, 0x0, 0x0, 0xe, 0x4}, @const={0x2}, @enum={0x0, 0x4, 0x0, 0x6, 0x4, [{0x1, 0x95}, {0x5, 0x9}, {0xc, 0x8}, {0x0, 0x7}]}]}, {0x0, [0x0, 0x5f, 0x61]}}, &(0x7f0000000380)=""/149, 0xb5, 0x95, 0x0, 0x5, 0x10000, @value}, 0x28)
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=@base={0xf, 0x1000, 0x7fff, 0x6, 0x21440, r3, 0x2, '\x00', r4, r6, 0x4, 0x5, 0x4, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
pipe(&(0x7f0000000500)={<r7=>0xffffffffffffffff})
r8 = syz_open_dev$usbmon(0x0, 0x7, 0x0)
signalfd(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r9 = getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_open_procfs(r9, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000006c0)=ANY=[@ANYRESDEC, @ANYRES16=r11, @ANYRES32=r7], 0x1c8}}, 0x0)
bpf$MAP_LOOKUP_ELEM(0x1, 0x0, 0x0)
ioctl$MON_IOCX_MFETCH(r8, 0xc0109207, 0x0)
ioctl$MON_IOCX_GETX(r8, 0x80089203, 0x0)

623.721675ms ago: executing program 3 (id=2786):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000001000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={<r2=>0xffffffffffffffff})
pipe(&(0x7f0000000100)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r2, 0x0, r3, 0x0, 0x8ec0, 0x0)
request_key(&(0x7f0000000400)='dns_resolver\x00', &(0x7f0000000280)={'syz', 0x1}, &(0x7f0000000240)='![\'[\'^-.-]{$5#\x00', 0x0)

473.394418ms ago: executing program 2 (id=2792):
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_BIND_MAP(0xa, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000140), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000400)=@gcm_128={{0x303, 0x38}, "be00", "00000c70423a000000000000ffff00", "ec69d337", "df02000000000ece"}, 0x28) (fail_nth: 6)
creat(0x0, 0x0)
rename(&(0x7f0000000100)='./file0\x00', &(0x7f0000000240)='./file1\x00')
utime(&(0x7f0000000200)='./file0\x00', 0x0)

439.218551ms ago: executing program 4 (id=2793):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x2, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, 0x0, &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000a00), r1)
sendmsg$NFC_CMD_DEP_LINK_UP(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f0000000a40)={0x24, r2, 0x1, 0x70bd2d, 0x25dfdbff, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_COMM_MODE={0x5, 0xa, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x810)

421.318322ms ago: executing program 4 (id=2794):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000030000000000000000000018110000", @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x3, 0xc, &(0x7f0000000280)=ANY=[@ANYRESDEC=r0], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x41, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@ipv6_newnexthop={0x24, 0x68, 0x309, 0x0, 0x0, {}, [@NHA_BLACKHOLE={0x4}, @NHA_ID={0x8, 0x1, 0x1}]}, 0x24}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180600000100a7d90000000000000000850000007b"], &(0x7f0000000140)='syzkaller\x00', 0x200, 0xfffffffffffffff6, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00'}, 0x10)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000c80)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c}}]}, 0x4c}}, 0x0)

207.599101ms ago: executing program 4 (id=2795):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01000000", @ANYRES32=0x1, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00+\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000ffffffff00"/28], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0), &(0x7f00000003c0), 0x5, r0}, 0x38)
perf_event_open(&(0x7f0000000440)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4006, 0xf, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext={0x0, 0x5}, 0x21, 0x0, 0xfffffffe, 0x1, 0x0, 0x40}, 0xffffffffffffffff, 0xfffffffffffffffc, 0xffffffffffffffff, 0x9)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/19, @ANYRES32, @ANYBLOB="0000000000000000b7080000002000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000f00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1, 0xffffffffffffffff, 0x8, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0xc, 0x1c, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000001509010000000000b500f8ffffff000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000000a36c00850000001700000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x11, &(0x7f0000000100)={[{@noblock_validity}, {@stripe={'stripe', 0x3d, 0x2}}, {@norecovery}, {@min_batch_time={'min_batch_time', 0x3d, 0x71d}}, {@abort}]}, 0x1, 0x610, &(0x7f0000000a40)="$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")
r2 = open(&(0x7f0000000480)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_GETFSMAP(r2, 0xc0c0583b, &(0x7f0000001b00)={0x0, 0x2904c, 0x0, 0x10003, '\x00', [{0x0, 0x0, 0x0, 0x1}, {0xffffffff, 0x0, 0x0, 0xff}]})

189.300083ms ago: executing program 1 (id=2796):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6b, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00'}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
writev(r1, &(0x7f0000000300)=[{&(0x7f00000000c0)="c057", 0x2}], 0x1)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x82, 0x1004000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000080)}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

122.733539ms ago: executing program 1 (id=2797):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1e000000000000fc0f0000004599c55d00000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x1c, 0x1c, 0x9, [@ptr={0x1, 0x0, 0x0, 0x2, 0x4}, @var={0xc, 0x0, 0x0, 0xe, 0x2, 0x1}]}, {0x0, [0x5f, 0x0, 0x30, 0x30, 0x61, 0x2e, 0x0]}}, &(0x7f00000000c0)=""/101, 0x3d, 0x65, 0x0, 0x2, 0x0, @void, @value}, 0x28)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES16=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x43, '\x00', 0x0, 0x25, r1, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(0xffffffffffffffff, 0x401c5820, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000008850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r4}, 0x10)
getresgid(0x0, 0x0, 0x0)
r5 = open_tree(0xffffffffffffff9c, 0x0, 0x81000)
renameat2(r5, 0x0, r5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r7}, 0x10)
sendmsg$nl_xfrm(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="2001000012001307"], 0x120}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
lsm_get_self_attr(0x67, 0x0, &(0x7f0000000680), 0x0)

104.525511ms ago: executing program 2 (id=2798):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x3, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
dup(0xffffffffffffffff)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = syz_open_procfs(0x0, &(0x7f0000000400)='stack\x00')
pread64(r2, &(0x7f000001a240)=""/102386, 0x18ff2, 0x0)

87.888452ms ago: executing program 0 (id=2799):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="150000004effff000000000800395032303030"], 0x15)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff0180"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000180)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="7f450700000053c407cd"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000001340)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r3}, 0x10)
msgget$private(0x0, 0x420)
readv(r0, &(0x7f0000000100)=[{&(0x7f0000000340)=""/4096, 0x1000}], 0x1)
chdir(&(0x7f0000000200)='./file0\x00')
openat2$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', &(0x7f0000000080)={0x0, 0x0, 0xb}, 0x18)

87.509462ms ago: executing program 1 (id=2800):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x3, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = dup(0xffffffffffffffff)
write$UHID_INPUT(r1, &(0x7f00000010c0)={0xb, {"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", 0x1000}}, 0x1006)
ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r1, 0xc058534f, &(0x7f0000000280)={{0x5, 0xf}, 0x0, 0xa, 0x6, {0xa, 0x7}, 0x8})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
mknod$loop(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x2080c0, &(0x7f00000003c0), 0x1, 0x598, &(0x7f0000000800)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000180)='./file1\x00', 0x8c48, &(0x7f0000000240)=ANY=[@ANYRES8=0x0, @ANYRES32, @ANYRES32], 0x1, 0x5b9, &(0x7f0000000340)="$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")
r3 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
getdents64(r3, &(0x7f00000029c0)=""/250, 0xfa)

73.861933ms ago: executing program 4 (id=2801):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000400180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
bpf$OBJ_PIN_MAP(0x6, &(0x7f00000000c0)=@generic={0x0, r0}, 0x18)

65.250834ms ago: executing program 2 (id=2802):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$kcm(0x29, 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r3 = socket$kcm(0x2, 0x1, 0x0)
sendmsg$inet(r3, &(0x7f0000000fc0)={&(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x20000811)
ioctl$sock_kcm_SIOCKCMATTACH(r1, 0x89e0, &(0x7f0000000040)={r3, r2})
sendmsg$kcm(r1, &(0x7f0000002080)={0x0, 0x0, &(0x7f0000002000)=[{&(0x7f0000000880)="1a", 0x1a002}], 0x1}, 0x0)

49.198965ms ago: executing program 0 (id=2803):
r0 = syz_io_uring_setup(0xd79, &(0x7f00000035c0)={0x0, 0x0, 0x10100}, &(0x7f0000000300), &(0x7f0000000040))
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x16, 0x0, 0x4, 0xffff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001280)=[r1], 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x4, 0x4, 0x9, 0x0, r1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000024c0), &(0x7f0000001280), 0x2, r2}, 0x90)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x10000, r2}, 0x38)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001480), 0x42002, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r3, r4, 0x0, 0x20000023896)
syz_clone3(&(0x7f0000000500)={0x281400, &(0x7f0000000200), &(0x7f0000000240), &(0x7f0000000280)=<r5=>0x0, {0x32}, &(0x7f0000000340)=""/192, 0xc0, &(0x7f0000000400)=""/67, &(0x7f00000002c0)=[0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0], 0xa}, 0x58)
ioprio_set$pid(0x2, r5, 0x4004)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0xe, 0x42031, 0xffffffffffffffff, 0x180000000)
syz_clone(0x20003000, 0x0, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r0, 0x291c, 0x0, 0x0, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000080)='fdinfo/3\x00')
r6 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x9, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r4, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000780)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r7, @ANYBLOB="00000000007578b04f597b32fcb90cc8c863208a000000b7020000f3ffffb015000000860000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r6, 0x40042408, r8)
creat(&(0x7f0000000040)='./file0\x00', 0x2)

396.51µs ago: executing program 4 (id=2804):
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000300)={0xffffffffffffffff, 0xe0, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, &(0x7f0000000340), 0x0, 0x0, 0x88, 0x8, 0x0, 0x0}}, 0x10)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000180)={0x5, 0x3, &(0x7f0000000000)=@raw=[@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @exit], &(0x7f0000000040)='syzkaller\x00', 0x6, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000980)={r1, 0xe0, &(0x7f0000000880)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x21, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)

0s ago: executing program 4 (id=2805):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000030000000000000000000018110000", @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x3, 0xc, &(0x7f0000000280)=ANY=[@ANYRESDEC=r0], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x41, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@ipv6_newnexthop={0x24, 0x68, 0x309, 0x0, 0x0, {}, [@NHA_BLACKHOLE={0x4}, @NHA_ID={0x8, 0x1, 0x1}]}, 0x24}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180600000100a7d90000000000000000850000007b"], &(0x7f0000000140)='syzkaller\x00', 0x200, 0xfffffffffffffff6, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00'}, 0x10)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000c80)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c}}]}, 0x4c}}, 0x0)

kernel console output (not intermixed with test programs):

0
[  118.808137][ T9281]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.814127][ T9281] RIP: 0033:0x7f1b0437def9
[  118.818687][ T9281] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  118.838359][ T9281] RSP: 002b:00007f1b02ff7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  118.846884][ T9281] RAX: ffffffffffffffda RBX: 00007f1b04535f80 RCX: 00007f1b0437def9
[  118.854868][ T9281] RDX: 0000000000000090 RSI: 00000000200005c0 RDI: 0000000000000005
[  118.862843][ T9281] RBP: 00007f1b02ff7090 R08: 0000000000000000 R09: 0000000000000000
[  118.870974][ T9281] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  118.878948][ T9281] R13: 0000000000000000 R14: 00007f1b04535f80 R15: 00007ffd1eecd1b8
[  118.886939][ T9281]  </TASK>
[  118.890694][ T9281] Mem-Info:
[  118.893858][ T9281] active_anon:11317 inactive_anon:114 isolated_anon:0
[  118.893858][ T9281]  active_file:4491 inactive_file:15639 isolated_file:0
[  118.893858][ T9281]  unevictable:0 dirty:426 writeback:18
[  118.893858][ T9281]  slab_reclaimable:2607 slab_unreclaimable:14073
[  118.893858][ T9281]  mapped:20873 shmem:449 pagetables:577
[  118.893858][ T9281]  sec_pagetables:0 bounce:0
[  118.893858][ T9281]  kernel_misc_reclaimable:0
[  118.893858][ T9281]  free:1852140 free_pcp:51662 free_cma:0
[  118.939191][ T9281] Node 0 active_anon:45268kB inactive_anon:456kB active_file:17964kB inactive_file:62556kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:83492kB dirty:1704kB writeback:72kB shmem:1796kB writeback_tmp:0kB kernel_stack:2880kB pagetables:2308kB sec_pagetables:0kB all_unreclaimable? no
[  118.967221][ T9281] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  118.994051][ T9281] lowmem_reserve[]: 0 2866 7844 0
[  118.999256][ T9281] Node 0 DMA32 free:2950436kB boost:0kB min:4136kB low:7068kB high:10000kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2953968kB mlocked:0kB bounce:0kB free_pcp:3532kB local_pcp:0kB free_cma:0kB
[  119.027783][ T9281] lowmem_reserve[]: 0 0 4978 0
[  119.032703][ T9281] Node 0 Normal free:4442764kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:45268kB inactive_anon:456kB active_file:17964kB inactive_file:62556kB unevictable:0kB writepending:1776kB present:5242880kB managed:5098208kB mlocked:0kB bounce:0kB free_pcp:203116kB local_pcp:166784kB free_cma:0kB
[  119.063375][ T9281] lowmem_reserve[]: 0 0 0 0
[  119.067893][ T9281] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  119.080687][ T9281] Node 0 DMA32: 3*4kB (M) 3*8kB (M) 4*16kB (M) 2*32kB (M) 4*64kB (M) 3*128kB (M) 2*256kB (M) 2*512kB (M) 3*1024kB (M) 2*2048kB (M) 718*4096kB (M) = 2950436kB
[  119.097257][ T9281] Node 0 Normal: 899*4kB (UME) 465*8kB (UME) 307*16kB (UME) 261*32kB (UME) 179*64kB (UME) 129*128kB (UME) 115*256kB (UME) 85*512kB (UME) 52*1024kB (UME) 38*2048kB (UME) 1023*4096kB (UM) = 4442788kB
[  119.116808][ T9281] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  119.126271][ T9281] 20730 total pagecache pages
[  119.130985][ T9281] 131 pages in swap cache
[  119.135322][ T9281] Free swap  = 124160kB
[  119.139721][ T9281] Total swap = 124996kB
[  119.143989][ T9281] 2097051 pages RAM
[  119.147823][ T9281] 0 pages HighMem/MovableOnly
[  119.152540][ T9281] 80167 pages reserved
[  119.157046][   T29] audit: type=1400 audit(1726228819.563:16049): avc:  denied  { unlink } for  pid=3668 comm="syz-executor" name="bus" dev="loop0" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  119.157549][ T3336] tipc: Node number set to 2886997162
[  119.203088][   T29] audit: type=1326 audit(1726228819.613:16050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9285 comm="syz.4.2100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b0437def9 code=0x7ffc0000
[  119.221132][ T9284] loop1: detected capacity change from 0 to 4096
[  119.226708][   T29] audit: type=1326 audit(1726228819.613:16051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9285 comm="syz.4.2100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b0437def9 code=0x7ffc0000
[  119.337415][ T9304] loop3: detected capacity change from 0 to 1024
[  119.345705][ T9304] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  119.355729][ T9304] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  119.377651][ T9310] loop1: detected capacity change from 0 to 1024
[  119.400198][ T9304] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  119.410521][ T9310] EXT4-fs: Ignoring removed orlov option
[  119.416414][ T9310] EXT4-fs: Ignoring removed nomblk_io_submit option
[  119.425501][ T9304] EXT4-fs error (device loop3): ext4_get_journal_inode:5740: inode #5: comm syz.3.2108: unexpected bad inode w/o EXT4_IGET_BAD
[  119.446865][ T9312] loop2: detected capacity change from 0 to 256
[  119.447589][ T9314] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2111'.
[  119.463778][ T9304] EXT4-fs (loop3): no journal found
[  119.469023][ T9304] EXT4-fs (loop3): can't get journal size
[  119.482293][ T9304] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2108: bg 0: block 32: padding at end of block bitmap is not set
[  119.489207][ T9312] FAT-fs (loop2): Directory bread(block 64) failed
[  119.502400][ T9323] loop4: detected capacity change from 0 to 1764
[  119.503555][ T9312] FAT-fs (loop2): Directory bread(block 65) failed
[  119.518787][ T9312] FAT-fs (loop2): Directory bread(block 66) failed
[  119.527552][ T9312] FAT-fs (loop2): Directory bread(block 67) failed
[  119.534186][ T9312] FAT-fs (loop2): Directory bread(block 68) failed
[  119.540874][ T9312] FAT-fs (loop2): Directory bread(block 69) failed
[  119.547538][ T9312] FAT-fs (loop2): Directory bread(block 70) failed
[  119.551920][ T9326] loop0: detected capacity change from 0 to 512
[  119.554172][ T9312] FAT-fs (loop2): Directory bread(block 71) failed
[  119.568323][ T9312] FAT-fs (loop2): Directory bread(block 72) failed
[  119.575239][ T9312] FAT-fs (loop2): Directory bread(block 73) failed
[  119.612369][ T9326] ext4 filesystem being mounted at /408/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  119.679875][ T9335] loop0: detected capacity change from 0 to 128
[  119.695169][ T9335] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  119.714693][ T9335] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  119.806334][ T9355] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2123'.
[  119.815565][ T9355] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  119.823171][ T9355] batman_adv: batadv0: Removing interface: batadv_slave_0
[  119.832037][ T9355] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  119.839616][ T9355] batman_adv: batadv0: Removing interface: batadv_slave_1
[  119.865432][ T9358] loop0: detected capacity change from 0 to 1024
[  119.874754][ T9358] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  119.884682][ T9358] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  119.895171][ T9358] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  119.905899][ T9358] EXT4-fs error (device loop0): ext4_get_journal_inode:5740: inode #5: comm syz.0.2124: unexpected bad inode w/o EXT4_IGET_BAD
[  119.919639][ T9358] EXT4-fs (loop0): no journal found
[  119.924963][ T9358] EXT4-fs (loop0): can't get journal size
[  119.932552][ T9358] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2124: bg 0: block 32: padding at end of block bitmap is not set
[  119.969832][ T9361] loop0: detected capacity change from 0 to 1024
[  119.977091][ T9361] EXT4-fs: Ignoring removed orlov option
[  119.983174][ T9361] EXT4-fs: Ignoring removed nomblk_io_submit option
[  120.030543][ T9368] loop0: detected capacity change from 0 to 512
[  120.048266][ T9370] Invalid ELF header len 2
[  120.055734][ T9368] ext4 filesystem being mounted at /413/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  120.092897][ T9380] loop2: detected capacity change from 0 to 128
[  120.105564][ T9380] syz.2.2132: attempt to access beyond end of device
[  120.105564][ T9380] loop2: rw=2049, sector=177, nr_sectors = 1 limit=128
[  120.119667][ T9380] syz.2.2132: attempt to access beyond end of device
[  120.119667][ T9380] loop2: rw=2049, sector=153, nr_sectors = 24 limit=128
[  120.122291][ T3336] kernel write not supported for file /949/attr/keycreate (pid: 3336 comm: kworker/1:3)
[  120.138651][ T9380] syz.2.2132: attempt to access beyond end of device
[  120.138651][ T9380] loop2: rw=2049, sector=177, nr_sectors = 1 limit=128
[  120.156430][ T9380] Buffer I/O error on dev loop2, logical block 177, lost async page write
[  120.198348][ T9391] loop1: detected capacity change from 0 to 1024
[  120.205463][ T9391] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  120.215246][ T9391] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  120.224941][ T9391] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  120.235336][ T9391] EXT4-fs error (device loop1): ext4_get_journal_inode:5740: inode #5: comm syz.1.2136: unexpected bad inode w/o EXT4_IGET_BAD
[  120.248824][ T9391] EXT4-fs (loop1): no journal found
[  120.252228][ T9393] loop0: detected capacity change from 0 to 1024
[  120.254070][ T9391] EXT4-fs (loop1): can't get journal size
[  120.260959][ T9393] EXT4-fs (loop0): inodes count not valid: 2 vs 32
[  120.281380][ T9391] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2136: bg 0: block 32: padding at end of block bitmap is not set
[  120.337875][ T9396] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2137'.
[  120.503635][ T9408] loop4: detected capacity change from 0 to 256
[  120.518952][ T9408] FAT-fs (loop4): Directory bread(block 64) failed
[  120.526026][ T9408] FAT-fs (loop4): Directory bread(block 65) failed
[  120.533050][ T9408] FAT-fs (loop4): Directory bread(block 66) failed
[  120.539763][ T9408] FAT-fs (loop4): Directory bread(block 67) failed
[  120.546474][ T9408] FAT-fs (loop4): Directory bread(block 68) failed
[  120.553192][ T9408] FAT-fs (loop4): Directory bread(block 69) failed
[  120.559955][ T9408] FAT-fs (loop4): Directory bread(block 70) failed
[  120.566974][ T9408] FAT-fs (loop4): Directory bread(block 71) failed
[  120.573627][ T9408] FAT-fs (loop4): Directory bread(block 72) failed
[  120.580351][ T9408] FAT-fs (loop4): Directory bread(block 73) failed
[  120.962939][ T9413] Invalid ELF header len 2
[  120.997003][ T9417] loop2: detected capacity change from 0 to 512
[  121.012203][ T9417] ext4 filesystem being mounted at /442/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  121.055653][ T9381] Process accounting resumed
[  121.060333][ T9381] kernel write not supported for file /asound/timers (pid: 9381 comm: syz.0.2133)
[  121.091728][ T9425] kernel write not supported for file /asound/timers (pid: 9425 comm: syz.0.2147)
[  121.137889][ T9436] kernel write not supported for file /asound/timers (pid: 9436 comm: syz.0.2151)
[  121.160857][ T9446] loop2: detected capacity change from 0 to 128
[  121.167638][ T9443] kernel write not supported for file /asound/timers (pid: 9443 comm: syz.0.2155)
[  121.171538][ T9446] syz.2.2153: attempt to access beyond end of device
[  121.171538][ T9446] loop2: rw=2049, sector=177, nr_sectors = 1 limit=128
[  121.187858][ T9448] loop0: detected capacity change from 0 to 512
[  121.212833][ T9448] ext4 filesystem being mounted at /418/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  121.215106][ T9449] loop4: detected capacity change from 0 to 1764
[  121.233599][ T9447] kernel write not supported for file /asound/timers (pid: 9447 comm: syz.0.2156)
[  121.395707][ T9466] loop0: detected capacity change from 0 to 256
[  121.411094][ T9466] FAT-fs (loop0): Directory bread(block 64) failed
[  121.417707][ T9466] FAT-fs (loop0): Directory bread(block 65) failed
[  121.424404][ T9466] FAT-fs (loop0): Directory bread(block 66) failed
[  121.431137][ T9466] FAT-fs (loop0): Directory bread(block 67) failed
[  121.437773][ T9466] FAT-fs (loop0): Directory bread(block 68) failed
[  121.444830][ T9466] FAT-fs (loop0): Directory bread(block 69) failed
[  121.451648][ T9466] FAT-fs (loop0): Directory bread(block 70) failed
[  121.458444][ T9466] FAT-fs (loop0): Directory bread(block 71) failed
[  121.465261][ T9466] FAT-fs (loop0): Directory bread(block 72) failed
[  121.471953][ T9466] FAT-fs (loop0): Directory bread(block 73) failed
[  121.500309][ T9476] loop1: detected capacity change from 0 to 256
[  121.515508][ T9476] FAT-fs (loop1): Directory bread(block 64) failed
[  121.522150][ T9476] FAT-fs (loop1): Directory bread(block 65) failed
[  121.529005][ T9476] FAT-fs (loop1): Directory bread(block 66) failed
[  121.535775][ T9476] FAT-fs (loop1): Directory bread(block 67) failed
[  121.542557][ T9476] FAT-fs (loop1): Directory bread(block 68) failed
[  121.549178][ T9476] FAT-fs (loop1): Directory bread(block 69) failed
[  121.556382][ T9476] FAT-fs (loop1): Directory bread(block 70) failed
[  121.563051][ T9476] FAT-fs (loop1): Directory bread(block 71) failed
[  121.569715][ T9476] FAT-fs (loop1): Directory bread(block 72) failed
[  121.576516][ T9476] FAT-fs (loop1): Directory bread(block 73) failed
[  122.005411][   T36] kworker/u8:2: attempt to access beyond end of device
[  122.005411][   T36] loop2: rw=1, sector=153, nr_sectors = 24 limit=128
[  122.019533][   T36] kworker/u8:2: attempt to access beyond end of device
[  122.019533][   T36] loop2: rw=1, sector=177, nr_sectors = 1 limit=128
[  122.033134][   T36] Buffer I/O error on dev loop2, logical block 177, lost async page write
[  122.063195][ T9466] kernel write not supported for file /asound/timers (pid: 9466 comm: syz.0.2157)
[  122.100880][ T9484] loop2: detected capacity change from 0 to 512
[  122.114773][ T9486] kernel write not supported for file /asound/timers (pid: 9486 comm: syz.0.2167)
[  122.114990][ T9484] ext4 filesystem being mounted at /450/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.183440][ T9493] kernel write not supported for file /asound/timers (pid: 9493 comm: syz.0.2170)
[  122.214307][ T9507] loop0: detected capacity change from 0 to 128
[  122.231361][ T9507] syz.0.2175: attempt to access beyond end of device
[  122.231361][ T9507] loop0: rw=2049, sector=177, nr_sectors = 1 limit=128
[  122.282544][ T9518] loop2: detected capacity change from 0 to 1764
[  122.298446][ T9522] loop4: detected capacity change from 0 to 512
[  122.312454][ T9522] ext4 filesystem being mounted at /330/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.371150][ T9525] loop1: detected capacity change from 0 to 256
[  122.385367][ T9530] loop4: detected capacity change from 0 to 512
[  122.386924][ T9525] FAT-fs (loop1): Directory bread(block 64) failed
[  122.398931][ T9525] FAT-fs (loop1): Directory bread(block 65) failed
[  122.405931][ T9525] FAT-fs (loop1): Directory bread(block 66) failed
[  122.413075][ T9525] FAT-fs (loop1): Directory bread(block 67) failed
[  122.420171][ T9525] FAT-fs (loop1): Directory bread(block 68) failed
[  122.427279][ T9525] FAT-fs (loop1): Directory bread(block 69) failed
[  122.434233][ T9525] FAT-fs (loop1): Directory bread(block 70) failed
[  122.441195][ T9525] FAT-fs (loop1): Directory bread(block 71) failed
[  122.448111][ T9525] FAT-fs (loop1): Directory bread(block 72) failed
[  122.454981][ T9525] FAT-fs (loop1): Directory bread(block 73) failed
[  122.472192][ T9530] ext4 filesystem being mounted at /331/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.608750][ T9535] loop4: detected capacity change from 0 to 512
[  122.621814][ T9535] ext4 filesystem being mounted at /331/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.673378][ T9535] loop4: detected capacity change from 0 to 736
[  122.751346][ T9548] loop3: detected capacity change from 0 to 512
[  122.771665][ T9548] ext4 filesystem being mounted at /416/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.952428][ T9563] loop4: detected capacity change from 0 to 512
[  122.965116][ T9563] ext4 filesystem being mounted at /337/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.970932][ T9566] loop3: detected capacity change from 0 to 512
[  123.002495][ T9566] ext4 filesystem being mounted at /416/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  123.021672][ T9548] loop3: detected capacity change from 0 to 736
[  123.052392][ T9523] kernel write not supported for file /asound/timers (pid: 9523 comm: syz.0.2175)
[  123.070569][ T3376] kworker/u8:7: attempt to access beyond end of device
[  123.070569][ T3376] loop0: rw=1, sector=153, nr_sectors = 24 limit=128
[  123.094245][ T3376] kworker/u8:7: attempt to access beyond end of device
[  123.094245][ T3376] loop0: rw=1, sector=177, nr_sectors = 1 limit=128
[  123.107833][ T3376] Buffer I/O error on dev loop0, logical block 177, lost async page write
[  123.283195][ T9606] loop3: detected capacity change from 0 to 128
[  123.294162][ T9606] syz.3.2206: attempt to access beyond end of device
[  123.294162][ T9606] loop3: rw=2049, sector=177, nr_sectors = 1 limit=128
[  123.309291][   T29] kauditd_printk_skb: 61 callbacks suppressed
[  123.309305][   T29] audit: type=1326 audit(1726228823.723:16113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9605 comm="syz.3.2206" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb51183def9 code=0x0
[  123.365622][ T9607] loop0: detected capacity change from 0 to 256
[  123.380712][ T9607] FAT-fs (loop0): Directory bread(block 64) failed
[  123.387274][ T9607] FAT-fs (loop0): Directory bread(block 65) failed
[  123.394046][ T9607] FAT-fs (loop0): Directory bread(block 66) failed
[  123.400730][ T9607] FAT-fs (loop0): Directory bread(block 67) failed
[  123.407568][ T9607] FAT-fs (loop0): Directory bread(block 68) failed
[  123.414189][ T9607] FAT-fs (loop0): Directory bread(block 69) failed
[  123.420777][ T9607] FAT-fs (loop0): Directory bread(block 70) failed
[  123.427521][ T9607] FAT-fs (loop0): Directory bread(block 71) failed
[  123.434133][ T9607] FAT-fs (loop0): Directory bread(block 72) failed
[  123.440663][ T9607] FAT-fs (loop0): Directory bread(block 73) failed
[  123.917715][ T9622] loop4: detected capacity change from 0 to 2048
[  123.924383][ T9622] EXT4-fs: Ignoring removed mblk_io_submit option
[  123.960395][ T9625] loop0: detected capacity change from 0 to 1764
[  123.990045][ T9622] loop4: detected capacity change from 2048 to 0
[  123.997127][ T9622] EXT4-fs (loop4): shut down requested (0)
[  124.003712][ T9622] Buffer I/O error on dev loop4, logical block 0, lost sync page write
[  124.012808][ T9622] EXT4-fs (loop4): I/O error while writing superblock
[  124.019694][ T9622] VFS:Filesystem freeze failed
[  124.041406][ T4554] EXT4-fs error (device loop4): ext4_get_inode_loc:4574: inode #2: block 4: comm syz-executor: unable to read itable block
[  124.054742][ T4554] Buffer I/O error on dev loop4, logical block 0, lost sync page write
[  124.063486][ T4554] EXT4-fs (loop4): I/O error while writing superblock
[  124.072891][ T4554] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5810: IO failure
[  124.081942][ T4554] Buffer I/O error on dev loop4, logical block 0, lost sync page write
[  124.090518][ T4554] EXT4-fs (loop4): I/O error while writing superblock
[  124.097384][ T4554] EXT4-fs error (device loop4): ext4_dirty_inode:6014: inode #2: comm syz-executor: mark_inode_dirty error
[  124.108833][ T4554] Buffer I/O error on dev loop4, logical block 0, lost sync page write
[  124.117124][ T4554] EXT4-fs (loop4): I/O error while writing superblock
[  124.124002][ T7983] EXT4-fs error (device loop4): __ext4_get_inode_loc_noinmem:4559: inode #2: block 4: comm kworker/u8:8: unable to read itable block
[  124.137819][ T7983] Buffer I/O error on dev loop4, logical block 0, lost sync page write
[  124.138228][   T36] Buffer I/O error on dev loop3, logical block 177, lost async page write
[  124.146166][ T7983] EXT4-fs (loop4): I/O error while writing superblock
[  124.162817][ T4554] Buffer I/O error on dev loop4, logical block 0, lost sync page write
[  124.171147][ T4554] EXT4-fs (loop4): I/O error while writing superblock
[  124.222118][ T9634] loop3: detected capacity change from 0 to 736
[  124.351898][   T29] audit: type=1400 audit(1726228824.763:16114): avc:  denied  { connect } for  pid=9637 comm="syz.3.2217" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  124.408372][ T9644] loop3: detected capacity change from 0 to 256
[  124.418006][ T9644] FAT-fs (loop3): error, fat_free: invalid cluster chain (i_pos 196)
[  124.426210][ T9644] FAT-fs (loop3): Filesystem has been set read-only
[  124.435568][ T7983] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  124.458133][ T3258] FAT-fs (loop3): error, fat_free: invalid cluster chain (i_pos 196)
[  124.479016][   T29] audit: type=1400 audit(1726228824.883:16115): avc:  denied  { mounton } for  pid=9649 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  124.504764][ T7983] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  124.541825][ T9657] loop3: detected capacity change from 0 to 512
[  124.553105][ T7983] bond0: (slave netdevsim1): Releasing backup interface
[  124.561784][ T9657] ext4 filesystem being mounted at /429/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  124.563207][ T7983] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  124.615941][ T7983] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  124.659749][ T9672] loop3: detected capacity change from 0 to 736
[  124.685042][ T9649] chnl_net:caif_netlink_parms(): no params data found
[  124.736520][ T9649] bridge0: port 1(bridge_slave_0) entered blocking state
[  124.743697][ T9649] bridge0: port 1(bridge_slave_0) entered disabled state
[  124.763483][ T9649] bridge_slave_0: entered allmulticast mode
[  124.770489][ T9649] bridge_slave_0: entered promiscuous mode
[  124.779854][ T7983] bridge_slave_1: left allmulticast mode
[  124.785628][ T7983] bridge_slave_1: left promiscuous mode
[  124.791422][ T7983] bridge0: port 2(bridge_slave_1) entered disabled state
[  124.800473][ T7983] bridge_slave_0: left allmulticast mode
[  124.806247][ T7983] bridge_slave_0: left promiscuous mode
[  124.812285][ T7983] bridge0: port 1(bridge_slave_0) entered disabled state
[  124.836977][ T9691] loop3: detected capacity change from 0 to 512
[  124.853070][ T9691] ext4 filesystem being mounted at /439/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  124.914247][ T9696] FAULT_INJECTION: forcing a failure.
[  124.914247][ T9696] name failslab, interval 1, probability 0, space 0, times 0
[  124.927012][ T9696] CPU: 0 UID: 0 PID: 9696 Comm: syz.3.2235 Not tainted 6.11.0-rc7-syzkaller-00093-gfdf042df0463 #0
[  124.937787][ T9696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  124.947887][ T9696] Call Trace:
[  124.951182][ T9696]  <TASK>
[  124.954127][ T9696]  dump_stack_lvl+0xf2/0x150
[  124.958827][ T9696]  dump_stack+0x15/0x20
[  124.962991][ T9696]  should_fail_ex+0x229/0x230
[  124.967694][ T9696]  ? skb_clone+0x154/0x1f0
[  124.972288][ T9696]  should_failslab+0x8f/0xb0
[  124.976910][ T9696]  kmem_cache_alloc_noprof+0x4c/0x290
[  124.982364][ T9696]  skb_clone+0x154/0x1f0
[  124.986722][ T9696]  __netlink_deliver_tap+0x2bd/0x4c0
[  124.992028][ T9696]  netlink_sendskb+0x126/0x150
[  124.996800][ T9696]  netlink_unicast+0x291/0x670
[  125.001662][ T9696]  netlink_ack+0x4c4/0x4f0
[  125.006104][ T9696]  netlink_rcv_skb+0x19c/0x230
[  125.010905][ T9696]  ? __pfx_genl_rcv_msg+0x10/0x10
[  125.016003][ T9696]  genl_rcv+0x28/0x40
[  125.020005][ T9696]  netlink_unicast+0x599/0x670
[  125.024780][ T9696]  netlink_sendmsg+0x5cc/0x6e0
[  125.029742][ T9696]  ? __pfx_netlink_sendmsg+0x10/0x10
[  125.035110][ T9696]  __sock_sendmsg+0x140/0x180
[  125.039851][ T9696]  ____sys_sendmsg+0x312/0x410
[  125.044646][ T9696]  __sys_sendmsg+0x1e9/0x280
[  125.049285][ T9696]  __x64_sys_sendmsg+0x46/0x50
[  125.054224][ T9696]  x64_sys_call+0x2689/0x2d60
[  125.058994][ T9696]  do_syscall_64+0xc9/0x1c0
[  125.063602][ T9696]  ? clear_bhb_loop+0x55/0xb0
[  125.068296][ T9696]  ? clear_bhb_loop+0x55/0xb0
[  125.072991][ T9696]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.078924][ T9696] RIP: 0033:0x7fb51183def9
[  125.083376][ T9696] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  125.103055][ T9696] RSP: 002b:00007fb5104b1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  125.111477][ T9696] RAX: ffffffffffffffda RBX: 00007fb5119f5f80 RCX: 00007fb51183def9
[  125.119450][ T9696] RDX: 0000000000000000 RSI: 0000000020000400 RDI: 0000000000000004
[  125.127484][ T9696] RBP: 00007fb5104b1090 R08: 0000000000000000 R09: 0000000000000000
[  125.135473][ T9696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  125.143454][ T9696] R13: 0000000000000000 R14: 00007fb5119f5f80 R15: 00007ffcb3468a58
[  125.151446][ T9696]  </TASK>
[  125.166606][ T9701] warn_unsupported: 10 callbacks suppressed
[  125.166653][ T9701] kernel write not supported for file /asound/timers (pid: 9701 comm: syz.0.2237)
[  125.190834][ T7983] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  125.193868][ T9707] loop0: detected capacity change from 0 to 736
[  125.208828][ T7983] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  125.229166][ T7983] bond0 (unregistering): Released all slaves
[  125.235058][ T9707] kernel write not supported for file /asound/timers (pid: 9707 comm: syz.0.2239)
[  125.244903][ T9649] bridge0: port 2(bridge_slave_1) entered blocking state
[  125.252202][ T9649] bridge0: port 2(bridge_slave_1) entered disabled state
[  125.259576][ T9649] bridge_slave_1: entered allmulticast mode
[  125.266881][ T9649] bridge_slave_1: entered promiscuous mode
[  125.277053][ T9711] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  125.301977][ T9649] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  125.311998][ T9712] kernel write not supported for file /asound/timers (pid: 9712 comm: syz.0.2242)
[  125.315069][ T9715] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  125.331272][ T9649] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  125.348628][ T9717] loop0: detected capacity change from 0 to 512
[  125.365332][ T7983] hsr_slave_0: left promiscuous mode
[  125.372625][ T7983] hsr_slave_1: left promiscuous mode
[  125.372869][ T9717] ext4 filesystem being mounted at /435/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  125.392999][ T7983] veth1_macvtap: left promiscuous mode
[  125.398648][ T7983] veth0_macvtap: left promiscuous mode
[  125.404248][ T7983] veth1_vlan: left allmulticast mode
[  125.404402][ T9716] kernel write not supported for file /asound/timers (pid: 9716 comm: syz.0.2244)
[  125.409534][ T7983] veth1_vlan: left promiscuous mode
[  125.409577][ T7983] veth0_vlan: left promiscuous mode
[  125.423049][   T29] audit: type=1400 audit(1726228825.833:16116): avc:  denied  { create } for  pid=9722 comm="syz.3.2246" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  125.449350][   T29] audit: type=1400 audit(1726228825.833:16117): avc:  denied  { getopt } for  pid=9722 comm="syz.3.2246" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  125.476741][ T9725] kernel write not supported for file /asound/timers (pid: 9725 comm: syz.0.2247)
[  125.501754][ T9728] kernel write not supported for file /asound/timers (pid: 9728 comm: syz.0.2248)
[  125.527053][ T9730] kernel write not supported for file /asound/timers (pid: 9730 comm: syz.0.2249)
[  125.549172][ T7983] macvlan0 (unregistering): left allmulticast mode
[  125.555993][ T9732] kernel write not supported for file /asound/timers (pid: 9732 comm: syz.0.2250)
[  125.577511][ T9734] loop0: detected capacity change from 0 to 512
[  125.591393][ T7983] team0 (unregistering): Port device team_slave_1 removed
[  125.592575][ T9734] ext4 filesystem being mounted at /440/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  125.609541][ T7983] team0 (unregistering): Port device team_slave_0 removed
[  125.653161][ T9649] team0: Port device team_slave_0 added
[  125.660009][ T9649] team0: Port device team_slave_1 added
[  125.693208][ T9649] batman_adv: batadv0: Adding interface: batadv_slave_0
[  125.700583][ T9649] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  125.726632][ T9649] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  125.738667][ T9649] batman_adv: batadv0: Adding interface: batadv_slave_1
[  125.745663][ T9649] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  125.771702][ T9649] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  125.788394][ T9739] loop0: detected capacity change from 0 to 736
[  125.813173][ T9738] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  125.823959][ T9649] hsr_slave_0: entered promiscuous mode
[  125.839573][ T9649] hsr_slave_1: entered promiscuous mode
[  125.847991][ T9649] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  125.855905][ T9649] Cannot create hsr debugfs directory
[  126.042642][ T9734] kernel write not supported for file /asound/timers (pid: 9734 comm: syz.0.2251)
[  126.062636][ T9756] loop0: detected capacity change from 0 to 128
[  126.074170][ T9756] bio_check_eod: 20 callbacks suppressed
[  126.074183][ T9756] syz.0.2260: attempt to access beyond end of device
[  126.074183][ T9756] loop0: rw=2049, sector=177, nr_sectors = 1 limit=128
[  126.095617][   T29] audit: type=1326 audit(1726228826.503:16118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9755 comm="syz.0.2260" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fda4215def9 code=0x0
[  126.134470][ T9759] loop3: detected capacity change from 0 to 256
[  126.150792][ T9759] FAT-fs (loop3): Directory bread(block 64) failed
[  126.157599][ T9759] FAT-fs (loop3): Directory bread(block 65) failed
[  126.164513][ T9759] FAT-fs (loop3): Directory bread(block 66) failed
[  126.171333][ T9759] FAT-fs (loop3): Directory bread(block 67) failed
[  126.177980][ T9759] FAT-fs (loop3): Directory bread(block 68) failed
[  126.185572][ T9759] FAT-fs (loop3): Directory bread(block 69) failed
[  126.192273][ T9759] FAT-fs (loop3): Directory bread(block 70) failed
[  126.199023][ T9759] FAT-fs (loop3): Directory bread(block 71) failed
[  126.201193][ T9764] loop1: detected capacity change from 0 to 1764
[  126.206119][ T9759] FAT-fs (loop3): Directory bread(block 72) failed
[  126.218037][ T9649] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  126.218787][ T9759] FAT-fs (loop3): Directory bread(block 73) failed
[  126.236578][ T9649] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  126.246631][ T9649] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  126.256458][ T9649] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  126.309779][ T9649] 8021q: adding VLAN 0 to HW filter on device bond0
[  126.330853][ T9649] 8021q: adding VLAN 0 to HW filter on device team0
[  126.342231][   T28] bridge0: port 1(bridge_slave_0) entered blocking state
[  126.349416][   T28] bridge0: port 1(bridge_slave_0) entered forwarding state
[  126.363668][ T7983] bridge0: port 2(bridge_slave_1) entered blocking state
[  126.370909][ T7983] bridge0: port 2(bridge_slave_1) entered forwarding state
[  126.447963][ T9649] 8021q: adding VLAN 0 to HW filter on device batadv0
[  126.572844][ T9649] veth0_vlan: entered promiscuous mode
[  126.581778][ T9649] veth1_vlan: entered promiscuous mode
[  126.599360][ T9649] veth0_macvtap: entered promiscuous mode
[  126.607182][ T9649] veth1_macvtap: entered promiscuous mode
[  126.619222][ T9649] batman_adv: batadv0: Interface activated: batadv_slave_0
[  126.632049][ T9649] batman_adv: batadv0: Interface activated: batadv_slave_1
[  126.642282][ T9649] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  126.651224][ T9649] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  126.660275][ T9649] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  126.669203][ T9649] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  126.689753][   T29] audit: type=1400 audit(1726228827.093:16119): avc:  denied  { mounton } for  pid=9649 comm="syz-executor" path="/root/syzkaller.t5zHU0/syz-tmp" dev="sda1" ino=1956 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[  126.716337][   T29] audit: type=1400 audit(1726228827.093:16120): avc:  denied  { mount } for  pid=9649 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  126.738879][   T29] audit: type=1400 audit(1726228827.093:16121): avc:  denied  { mount } for  pid=9649 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  126.761079][   T29] audit: type=1400 audit(1726228827.133:16122): avc:  denied  { mounton } for  pid=9649 comm="syz-executor" path="/dev/binderfs" dev="devtmpfs" ino=454 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[  126.798625][ T9787] loop4: detected capacity change from 0 to 1024
[  126.805651][ T9787] EXT4-fs: Ignoring removed orlov option
[  126.811397][ T9787] EXT4-fs: Ignoring removed nomblk_io_submit option
[  126.851626][ T9792] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  126.901111][ T9763] kernel write not supported for file /asound/timers (pid: 9763 comm: syz.0.2260)
[  126.912397][ T7983] kworker/u8:8: attempt to access beyond end of device
[  126.912397][ T7983] loop0: rw=1, sector=153, nr_sectors = 24 limit=128
[  126.964350][ T9808] loop4: detected capacity change from 0 to 512
[  126.983709][ T9813] loop0: detected capacity change from 0 to 128
[  126.985112][ T9808] ext4 filesystem being mounted at /5/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  127.001091][ T9815] loop3: detected capacity change from 0 to 1764
[  127.021365][ T9813] syz.0.2273: attempt to access beyond end of device
[  127.021365][ T9813] loop0: rw=2049, sector=177, nr_sectors = 1 limit=128
[  127.037040][ T9808] loop4: detected capacity change from 0 to 736
[  127.099683][ T9819] loop1: detected capacity change from 0 to 1024
[  127.106378][ T9819] EXT4-fs: Ignoring removed orlov option
[  127.112171][ T9819] EXT4-fs: Ignoring removed nomblk_io_submit option
[  127.204446][ T9831] loop4: detected capacity change from 0 to 256
[  127.218091][ T9831] FAT-fs (loop4): Directory bread(block 64) failed
[  127.225104][ T9831] FAT-fs (loop4): Directory bread(block 65) failed
[  127.231921][ T9831] FAT-fs (loop4): Directory bread(block 66) failed
[  127.238562][ T9831] FAT-fs (loop4): Directory bread(block 67) failed
[  127.245635][ T9831] FAT-fs (loop4): Directory bread(block 68) failed
[  127.252639][ T9831] FAT-fs (loop4): Directory bread(block 69) failed
[  127.259303][ T9831] FAT-fs (loop4): Directory bread(block 70) failed
[  127.266088][ T9831] FAT-fs (loop4): Directory bread(block 71) failed
[  127.273432][ T9831] FAT-fs (loop4): Directory bread(block 72) failed
[  127.280471][ T9831] FAT-fs (loop4): Directory bread(block 73) failed
[  127.824158][   T28] kworker/u8:1: attempt to access beyond end of device
[  127.824158][   T28] loop0: rw=1, sector=153, nr_sectors = 24 limit=128
[  127.833633][ T9839] loop4: detected capacity change from 0 to 512
[  127.844802][ T9839] EXT4-fs: Ignoring removed oldalloc option
[  127.855807][ T9839] EXT4-fs error (device loop4): ext4_xattr_inode_iget:436: comm syz.4.2280: Parent and EA inode have the same ino 15
[  127.871820][ T9839] EXT4-fs (loop4): Remounting filesystem read-only
[  127.878535][ T9839] EXT4-fs warning (device loop4): ext4_evict_inode:254: couldn't mark inode dirty (err -5)
[  127.888754][ T9839] EXT4-fs (loop4): 1 orphan inode deleted
[  127.896001][ T9839] SELinux: (dev loop4, type ext4) getxattr errno 5
[  127.941001][ T9852] loop3: detected capacity change from 0 to 1024
[  127.947973][ T9852] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  127.957831][ T9852] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  127.967874][ T9852] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  127.988984][ T9852] EXT4-fs error (device loop3): ext4_get_journal_inode:5740: inode #5: comm syz.3.2286: unexpected bad inode w/o EXT4_IGET_BAD
[  127.989700][ T9853] loop0: detected capacity change from 0 to 1764
[  128.007236][ T9852] EXT4-fs (loop3): no journal found
[  128.014016][ T9852] EXT4-fs (loop3): can't get journal size
[  128.017276][ T9855] loop4: detected capacity change from 0 to 1024
[  128.027411][ T9855] EXT4-fs: Ignoring removed orlov option
[  128.029147][ T9852] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2286: bg 0: block 32: padding at end of block bitmap is not set
[  128.033217][ T9855] EXT4-fs: Ignoring removed nomblk_io_submit option
[  128.134913][ T9869] loop1: detected capacity change from 0 to 128
[  128.188122][ T9870] loop4: detected capacity change from 0 to 256
[  128.218437][ T9870] FAT-fs (loop4): Directory bread(block 64) failed
[  128.225785][ T9870] FAT-fs (loop4): Directory bread(block 65) failed
[  128.232615][ T9870] FAT-fs (loop4): Directory bread(block 66) failed
[  128.239439][ T9870] FAT-fs (loop4): Directory bread(block 67) failed
[  128.246170][ T9870] FAT-fs (loop4): Directory bread(block 68) failed
[  128.252842][ T9870] FAT-fs (loop4): Directory bread(block 69) failed
[  128.259432][ T9870] FAT-fs (loop4): Directory bread(block 70) failed
[  128.266193][ T9870] FAT-fs (loop4): Directory bread(block 71) failed
[  128.272864][ T9870] FAT-fs (loop4): Directory bread(block 72) failed
[  128.279751][ T9870] FAT-fs (loop4): Directory bread(block 73) failed
[  128.342890][ T9889] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2299'.
[  128.352921][ T9896] loop4: detected capacity change from 0 to 512
[  128.371891][ T9896] EXT4-fs mount: 88 callbacks suppressed
[  128.371933][ T9896] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  128.390244][ T9896] ext4 filesystem being mounted at /11/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  128.417157][ T9649] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.477816][ T9910] loop3: detected capacity change from 0 to 512
[  128.492295][ T9910] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  128.505862][ T9910] ext4 filesystem being mounted at /474/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  128.517817][ T9910] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.534933][ T9910] loop3: detected capacity change from 0 to 736
[  128.706058][ T9927] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2312'.
[  128.759626][   T29] kauditd_printk_skb: 2 callbacks suppressed
[  128.759667][   T29] audit: type=1326 audit(1726228829.163:16125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9930 comm="syz.3.2313" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb51183def9 code=0x0
[  129.003586][   T29] audit: type=1400 audit(1726228829.413:16126): avc:  denied  { ioctl } for  pid=9943 comm="syz.1.2317" path="socket:[24823]" dev="sockfs" ino=24823 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  129.043241][ T9949] loop1: detected capacity change from 0 to 512
[  129.078699][ T9949] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.095929][ T9949] ext4 filesystem being mounted at /307/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  129.108042][ T9949] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.125915][ T9949] loop1: detected capacity change from 0 to 736
[  129.220549][ T9967] loop4: detected capacity change from 0 to 512
[  129.234374][ T9967] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.247779][ T9965] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2324'.
[  129.259694][ T9967] ext4 filesystem being mounted at /17/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  129.271685][ T9967] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.326678][ T9973] loop1: detected capacity change from 0 to 128
[  129.352331][   T29] audit: type=1326 audit(1726228829.763:16127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9972 comm="syz.1.2326" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f08108bdef9 code=0x0
[  129.462352][ T9975] loop4: detected capacity change from 0 to 512
[  129.493663][ T9975] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.510437][ T9975] ext4 filesystem being mounted at /17/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  129.528838][ T9975] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.551033][ T9975] loop4: detected capacity change from 0 to 736
[  129.690613][ T9985] netlink: 36 bytes leftover after parsing attributes in process `syz.0.2329'.
[  129.739506][ T9992] loop4: detected capacity change from 0 to 512
[  129.776433][ T9992] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.789559][ T9992] ext4 filesystem being mounted at /19/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  129.813516][ T9649] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.854149][T10002] loop4: detected capacity change from 0 to 512
[  129.871934][T10002] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.884862][T10002] ext4 filesystem being mounted at /20/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  129.895865][T10002] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.911448][T10002] loop4: detected capacity change from 0 to 736
[  129.959907][T10013] loop0: detected capacity change from 0 to 1764
[  130.024758][T10017] loop4: detected capacity change from 0 to 2048
[  130.041893][T10017] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  130.056605][   T29] audit: type=1400 audit(1726228830.463:16128): avc:  denied  { map } for  pid=10014 comm="syz.4.2339" path="/22/file1/bus" dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  130.079282][   T29] audit: type=1400 audit(1726228830.463:16129): avc:  denied  { execute } for  pid=10014 comm="syz.4.2339" path="/22/file1/bus" dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  130.172320][T10023] rdma_op ffff888115decd80 conn xmit_rdma 0000000000000000
[  130.229114][T10029] loop1: detected capacity change from 0 to 1024
[  130.242633][T10029] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  130.248669][T10021] warn_unsupported: 13 callbacks suppressed
[  130.248688][T10021] kernel write not supported for file /asound/timers (pid: 10021 comm: syz.0.2337)
[  130.255230][T10029] ext4 filesystem being mounted at /314/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  130.282893][   T29] audit: type=1400 audit(1726228830.693:16130): avc:  denied  { read write } for  pid=10028 comm="+}[@" name="file1" dev="loop1" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  130.305612][   T29] audit: type=1400 audit(1726228830.693:16131): avc:  denied  { open } for  pid=10028 comm="+}[@" path="/314/file1/file1" dev="loop1" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  130.331990][   T29] audit: type=1400 audit(1726228830.743:16132): avc:  denied  { ioctl } for  pid=10028 comm="+}[@" path="/314/file1/file1" dev="loop1" ino=15 ioctlcmd=0x6628 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  130.356420][   T29] audit: type=1326 audit(1726228830.743:16133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10028 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08108bdef9 code=0x7ffc0000
[  130.379593][   T29] audit: type=1326 audit(1726228830.743:16134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10028 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08108bdef9 code=0x7ffc0000
[  130.429369][ T5144] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.489326][T10043] loop1: detected capacity change from 0 to 1024
[  130.496749][T10043] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  130.506706][T10043] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  130.517095][T10043] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  130.527578][T10043] EXT4-fs error (device loop1): ext4_get_journal_inode:5740: inode #5: comm syz.1.2348: unexpected bad inode w/o EXT4_IGET_BAD
[  130.541187][T10043] EXT4-fs (loop1): no journal found
[  130.544535][T10047] loop3: detected capacity change from 0 to 128
[  130.546648][T10043] EXT4-fs (loop1): can't get journal size
[  130.559209][T10043] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  130.573875][T10043] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2348: bg 0: block 32: padding at end of block bitmap is not set
[  130.595967][ T5144] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.673140][T10052] loop1: detected capacity change from 0 to 1764
[  130.806172][ T9649] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.812376][T10010] kernel write not supported for file /asound/timers (pid: 10010 comm: syz.0.2337)
[  130.852197][T10060] kernel write not supported for file /asound/timers (pid: 10060 comm: syz.0.2353)
[  130.889366][T10062] loop4: detected capacity change from 0 to 256
[  130.904494][T10062] FAT-fs (loop4): Directory bread(block 64) failed
[  130.911422][T10062] FAT-fs (loop4): Directory bread(block 65) failed
[  130.918180][T10062] FAT-fs (loop4): Directory bread(block 66) failed
[  130.924818][T10062] FAT-fs (loop4): Directory bread(block 67) failed
[  130.931425][T10062] FAT-fs (loop4): Directory bread(block 68) failed
[  130.937953][T10062] FAT-fs (loop4): Directory bread(block 69) failed
[  130.944600][T10062] FAT-fs (loop4): Directory bread(block 70) failed
[  130.951321][T10062] FAT-fs (loop4): Directory bread(block 71) failed
[  130.957866][T10062] FAT-fs (loop4): Directory bread(block 72) failed
[  130.964993][T10062] FAT-fs (loop4): Directory bread(block 73) failed
[  131.018432][T10064] kernel write not supported for file /asound/timers (pid: 10064 comm: syz.0.2355)
[  131.044567][T10072] kernel write not supported for file /asound/timers (pid: 10072 comm: syz.0.2358)
[  131.067223][T10074] kernel write not supported for file /asound/timers (pid: 10074 comm: syz.0.2359)
[  131.092747][T10076] kernel write not supported for file /asound/timers (pid: 10076 comm: syz.0.2360)
[  131.121657][T10078] kernel write not supported for file /asound/timers (pid: 10078 comm: syz.0.2361)
[  131.139809][T10082] loop4: detected capacity change from 0 to 512
[  131.146901][T10082] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  131.158287][T10082] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a016c018, mo2=0002]
[  131.166416][T10082] System zones: 1-12
[  131.171283][T10082] EXT4-fs (loop4): 1 truncate cleaned up
[  131.177572][T10082] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.194411][T10070] 8021q: VLANs not supported on lo
[  131.202060][T10087] loop0: detected capacity change from 0 to 1764
[  131.447812][T10096] loop3: detected capacity change from 0 to 1024
[  131.454773][T10096] EXT4-fs: Ignoring removed orlov option
[  131.460581][T10096] EXT4-fs: Ignoring removed nomblk_io_submit option
[  131.471519][T10096] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  131.495717][T10090] kernel write not supported for file /asound/timers (pid: 10090 comm: syz.0.2362)
[  131.521784][T10102] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2366'.
[  131.614940][T10106] loop1: detected capacity change from 0 to 256
[  131.628861][T10106] FAT-fs (loop1): Directory bread(block 64) failed
[  131.635975][T10106] FAT-fs (loop1): Directory bread(block 65) failed
[  131.643738][T10106] FAT-fs (loop1): Directory bread(block 66) failed
[  131.650547][T10106] FAT-fs (loop1): Directory bread(block 67) failed
[  131.657259][T10106] FAT-fs (loop1): Directory bread(block 68) failed
[  131.663959][T10106] FAT-fs (loop1): Directory bread(block 69) failed
[  131.670824][T10106] FAT-fs (loop1): Directory bread(block 70) failed
[  131.677587][T10106] FAT-fs (loop1): Directory bread(block 71) failed
[  131.684942][T10106] FAT-fs (loop1): Directory bread(block 72) failed
[  131.691909][T10106] FAT-fs (loop1): Directory bread(block 73) failed
[  131.769320][ T3258] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.868424][ T9649] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.050553][T10087] kernel write not supported for file /asound/timers (pid: 10087 comm: syz.0.2362)
[  132.132393][T10163] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  132.134595][T10165] FAULT_INJECTION: forcing a failure.
[  132.134595][T10165] name failslab, interval 1, probability 0, space 0, times 0
[  132.153734][T10165] CPU: 1 UID: 0 PID: 10165 Comm: syz.0.2393 Not tainted 6.11.0-rc7-syzkaller-00093-gfdf042df0463 #0
[  132.164528][T10165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  132.174642][T10165] Call Trace:
[  132.177925][T10165]  <TASK>
[  132.180857][T10165]  dump_stack_lvl+0xf2/0x150
[  132.185466][T10165]  dump_stack+0x15/0x20
[  132.189651][T10165]  should_fail_ex+0x229/0x230
[  132.194479][T10165]  ? vm_area_dup+0x2c/0x130
[  132.199005][T10165]  should_failslab+0x8f/0xb0
[  132.203705][T10165]  kmem_cache_alloc_noprof+0x4c/0x290
[  132.209111][T10165]  vm_area_dup+0x2c/0x130
[  132.213524][T10165]  __split_vma+0xf7/0x690
[  132.217971][T10165]  do_vmi_align_munmap+0x227/0xa60
[  132.223097][T10165]  do_vmi_munmap+0x1fb/0x250
[  132.227717][T10165]  __vm_munmap+0xec/0x210
[  132.232157][T10165]  __x64_sys_munmap+0x36/0x40
[  132.237024][T10165]  x64_sys_call+0xd32/0x2d60
[  132.242187][T10165]  do_syscall_64+0xc9/0x1c0
[  132.246717][T10165]  ? clear_bhb_loop+0x55/0xb0
[  132.251424][T10165]  ? clear_bhb_loop+0x55/0xb0
[  132.256136][T10165]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.262232][T10165] RIP: 0033:0x7fda4215def9
[  132.266788][T10165] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.286585][T10165] RSP: 002b:00007fda40dd1038 EFLAGS: 00000246 ORIG_RAX: 000000000000000b
[  132.295026][T10165] RAX: ffffffffffffffda RBX: 00007fda42315f80 RCX: 00007fda4215def9
[  132.303042][T10165] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 00000000207fe000
[  132.311055][T10165] RBP: 00007fda40dd1090 R08: 0000000000000000 R09: 0000000000000000
[  132.319032][T10165] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  132.327061][T10165] R13: 0000000000000000 R14: 00007fda42315f80 R15: 00007fff3fff64a8
[  132.335062][T10165]  </TASK>
[  132.352253][T10163] loop4: detected capacity change from 0 to 2048
[  132.405376][T10163]  loop4: unable to read partition table
[  132.411658][T10163] loop4: partition table beyond EOD, truncated
[  132.417890][T10163] loop_reread_partitions: partition scan of loop4 () failed (rc=-5)
[  132.457212][T10187] SELinux:  policydb string  does not match my string SE Linux
[  132.465066][T10187] SELinux: failed to load policy
[  132.674037][T10216] bond1: entered promiscuous mode
[  132.679250][T10216] bond1: entered allmulticast mode
[  132.684934][T10216] 8021q: adding VLAN 0 to HW filter on device bond1
[  132.702326][T10216] bond1 (unregistering): Released all slaves
[  132.724632][T10220] loop1: detected capacity change from 0 to 1024
[  132.731903][T10220] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  132.743008][T10220] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.763984][T10216] EXT4-fs error (device loop1): ext4_expand_extra_isize_ea:2792: inode #2: comm syz.1.2410: corrupted in-inode xattr: bad e_name length
[  132.788529][ T5144] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.884617][T10233] loop1: detected capacity change from 0 to 1024
[  132.912079][T10233] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  132.935653][T10233] sit0: entered allmulticast mode
[  132.952623][T10233] sit0: entered promiscuous mode
[  133.014609][T10246] loop4: detected capacity change from 0 to 256
[  133.029437][T10246] FAT-fs (loop4): Directory bread(block 64) failed
[  133.036487][T10246] FAT-fs (loop4): Directory bread(block 65) failed
[  133.041503][T10248] loop1: detected capacity change from 1024 to 1023
[  133.045247][T10246] FAT-fs (loop4): Directory bread(block 66) failed
[  133.058490][T10246] FAT-fs (loop4): Directory bread(block 67) failed
[  133.060210][T10233] EXT4-fs error (device loop1): ext4_lookup:1811: inode #12: comm syz.1.2415: iget: bad extended attribute block 257296770591160
[  133.065429][T10246] FAT-fs (loop4): Directory bread(block 68) failed
[  133.080325][T10233] EXT4-fs error (device loop1): ext4_lookup:1811: inode #12: comm syz.1.2415: iget: bad extended attribute block 257296770591160
[  133.085444][T10246] FAT-fs (loop4): Directory bread(block 69) failed
[  133.105403][T10246] FAT-fs (loop4): Directory bread(block 70) failed
[  133.112122][T10246] FAT-fs (loop4): Directory bread(block 71) failed
[  133.115522][ T5144] EXT4-fs error (device loop1): ext4_readdir:260: inode #2: block 16: comm syz-executor: path /330/file1: bad entry in directory: rec_len is smaller than minimal - offset=980, inode=0, rec_len=0, size=1024 fake=0
[  133.118835][T10246] FAT-fs (loop4): Directory bread(block 72) failed
[  133.141127][ T5144] EXT4-fs error (device loop1): ext4_lookup:1811: inode #12: comm syz-executor: iget: bad extended attribute block 257296770591160
[  133.146501][T10246] FAT-fs (loop4): Directory bread(block 73) failed
[  133.160416][ T5144] EXT4-fs error (device loop1): ext4_lookup:1811: inode #12: comm syz-executor: iget: bad extended attribute block 257296770591160
[  133.390308][T10255] chnl_net:caif_netlink_parms(): no params data found
[  133.427551][T10255] bridge0: port 1(bridge_slave_0) entered blocking state
[  133.434737][T10255] bridge0: port 1(bridge_slave_0) entered disabled state
[  133.443141][T10255] bridge_slave_0: entered allmulticast mode
[  133.449781][T10255] bridge_slave_0: entered promiscuous mode
[  133.457177][T10255] bridge0: port 2(bridge_slave_1) entered blocking state
[  133.464419][T10255] bridge0: port 2(bridge_slave_1) entered disabled state
[  133.471894][T10255] bridge_slave_1: entered allmulticast mode
[  133.478556][T10255] bridge_slave_1: entered promiscuous mode
[  133.500642][T10255] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  133.512453][T10255] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  133.536382][T10255] team0: Port device team_slave_0 added
[  133.543315][T10280] loop0: detected capacity change from 0 to 256
[  133.543873][T10255] team0: Port device team_slave_1 added
[  133.550519][T10280] FAT-fs (loop0): bogus number of FAT sectors
[  133.561672][T10280] FAT-fs (loop0): Can't find a valid FAT filesystem
[  133.576227][T10255] batman_adv: batadv0: Adding interface: batadv_slave_0
[  133.583265][T10255] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  133.609383][T10255] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  133.622290][T10255] batman_adv: batadv0: Adding interface: batadv_slave_1
[  133.629281][T10255] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  133.655260][T10255] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  133.690661][T10255] hsr_slave_0: entered promiscuous mode
[  133.697093][T10255] hsr_slave_1: entered promiscuous mode
[  133.703770][T10255] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  133.712181][T10255] Cannot create hsr debugfs directory
[  133.728595][T10286] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2431'.
[  133.795467][T10255] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  133.825045][T10292] loop0: detected capacity change from 0 to 256
[  133.850824][T10292] FAT-fs (loop0): Directory bread(block 64) failed
[  133.857587][T10292] FAT-fs (loop0): Directory bread(block 65) failed
[  133.866809][T10255] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  133.867643][T10292] FAT-fs (loop0): Directory bread(block 66) failed
[  133.884030][T10292] FAT-fs (loop0): Directory bread(block 67) failed
[  133.890987][T10292] FAT-fs (loop0): Directory bread(block 68) failed
[  133.897735][T10292] FAT-fs (loop0): Directory bread(block 69) failed
[  133.904430][T10292] FAT-fs (loop0): Directory bread(block 70) failed
[  133.911145][T10292] FAT-fs (loop0): Directory bread(block 71) failed
[  133.917857][T10292] FAT-fs (loop0): Directory bread(block 72) failed
[  133.924631][T10292] FAT-fs (loop0): Directory bread(block 73) failed
[  133.942730][T10255] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.001491][T10255] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.068915][T10255] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  134.078058][T10255] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  134.087781][T10255] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  134.096739][T10255] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  134.156060][T10255] 8021q: adding VLAN 0 to HW filter on device bond0
[  134.174204][T10255] 8021q: adding VLAN 0 to HW filter on device team0
[  134.185138][   T28] bridge0: port 1(bridge_slave_0) entered blocking state
[  134.192331][   T28] bridge0: port 1(bridge_slave_0) entered forwarding state
[  134.204634][ T7983] bridge0: port 2(bridge_slave_1) entered blocking state
[  134.211867][ T7983] bridge0: port 2(bridge_slave_1) entered forwarding state
[  134.244580][T10318] loop0: detected capacity change from 0 to 1764
[  134.267156][T10317] loop4: detected capacity change from 0 to 256
[  134.288344][T10317] FAT-fs (loop4): Directory bread(block 64) failed
[  134.300044][T10317] FAT-fs (loop4): Directory bread(block 65) failed
[  134.308002][T10255] 8021q: adding VLAN 0 to HW filter on device batadv0
[  134.318539][T10317] FAT-fs (loop4): Directory bread(block 66) failed
[  134.330885][T10317] FAT-fs (loop4): Directory bread(block 67) failed
[  134.347756][T10317] FAT-fs (loop4): Directory bread(block 68) failed
[  134.355319][T10317] FAT-fs (loop4): Directory bread(block 69) failed
[  134.362535][T10317] FAT-fs (loop4): Directory bread(block 70) failed
[  134.369130][T10317] FAT-fs (loop4): Directory bread(block 71) failed
[  134.376798][T10317] FAT-fs (loop4): Directory bread(block 72) failed
[  134.384156][T10317] FAT-fs (loop4): Directory bread(block 73) failed
[  134.446389][T10255] veth0_vlan: entered promiscuous mode
[  134.456909][T10255] veth1_vlan: entered promiscuous mode
[  134.483747][T10255] veth0_macvtap: entered promiscuous mode
[  134.492814][T10255] veth1_macvtap: entered promiscuous mode
[  134.506247][T10255] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  134.516855][T10255] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  134.527847][T10255] batman_adv: batadv0: Interface activated: batadv_slave_0
[  134.539863][T10255] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  134.550495][T10255] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  134.554250][T10341] loop4: detected capacity change from 0 to 1024
[  134.562305][T10222] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 7858: padding at end of block bitmap is not set
[  134.569313][T10255] batman_adv: batadv0: Interface activated: batadv_slave_1
[  134.592397][T10341] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  134.597591][T10255] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  134.602197][T10341] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  134.610946][T10255] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  134.629254][T10255] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  134.631073][T10341] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  134.638111][T10255] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  134.648653][T10341] EXT4-fs error (device loop4): ext4_get_journal_inode:5740: inode #5: comm syz.4.2448: unexpected bad inode w/o EXT4_IGET_BAD
[  134.670427][T10341] EXT4-fs (loop4): no journal found
[  134.675651][T10341] EXT4-fs (loop4): can't get journal size
[  134.683896][T10341] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  134.702690][T10341] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2448: bg 0: block 32: padding at end of block bitmap is not set
[  134.727953][ T9649] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.853349][T10360] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  134.985107][T10380] loop3: detected capacity change from 0 to 512
[  135.014594][T10380] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.027800][T10380] ext4 filesystem being mounted at /498/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  135.042216][ T5144] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.054506][T10389] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  135.064292][T10380] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.109157][T10380] loop3: detected capacity change from 0 to 736
[  135.178305][   T29] kauditd_printk_skb: 95 callbacks suppressed
[  135.178322][   T29] audit: type=1326 audit(1726228835.583:16230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10393 comm="syz.2.2469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf23e9def9 code=0x7ffc0000
[  135.208427][   T29] audit: type=1326 audit(1726228835.583:16231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10393 comm="syz.2.2469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf23e9def9 code=0x7ffc0000
[  135.232169][   T29] audit: type=1326 audit(1726228835.583:16232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10393 comm="syz.2.2469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7fcf23e9def9 code=0x7ffc0000
[  135.283690][T10407] warn_unsupported: 34 callbacks suppressed
[  135.283707][T10407] kernel write not supported for file /asound/timers (pid: 10407 comm: syz.0.2473)
[  135.328406][T10418] loop3: detected capacity change from 0 to 128
[  135.340184][T10418] syz.3.2476: attempt to access beyond end of device
[  135.340184][T10418] loop3: rw=2049, sector=177, nr_sectors = 1 limit=128
[  135.354556][T10414] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2475'.
[  135.368516][T10418] syz.3.2476: attempt to access beyond end of device
[  135.368516][T10418] loop3: rw=2049, sector=153, nr_sectors = 24 limit=128
[  135.382346][T10418] syz.3.2476: attempt to access beyond end of device
[  135.382346][T10418] loop3: rw=2049, sector=177, nr_sectors = 1 limit=128
[  135.395860][T10418] buffer_io_error: 1 callbacks suppressed
[  135.395872][T10418] Buffer I/O error on dev loop3, logical block 177, lost async page write
[  135.413768][   T29] audit: type=1326 audit(1726228835.823:16233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10417 comm="syz.3.2476" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb51183def9 code=0x0
[  135.437461][T10422] loop4: detected capacity change from 0 to 2048
[  135.451344][T10422] /dev/loop4: Can't open blockdev
[  135.452126][T10414] kernel write not supported for file /asound/timers (pid: 10414 comm: syz.0.2475)
[  135.456987][T10422] FAULT_INJECTION: forcing a failure.
[  135.456987][T10422] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  135.479259][T10422] CPU: 0 UID: 0 PID: 10422 Comm: syz.4.2477 Not tainted 6.11.0-rc7-syzkaller-00093-gfdf042df0463 #0
[  135.479520][T10395] chnl_net:caif_netlink_parms(): no params data found
[  135.490088][T10422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  135.490171][T10422] Call Trace:
[  135.490179][T10422]  <TASK>
[  135.490187][T10422]  dump_stack_lvl+0xf2/0x150
[  135.490217][T10422]  dump_stack+0x15/0x20
[  135.522009][T10422]  should_fail_ex+0x229/0x230
[  135.526726][T10422]  should_fail_alloc_page+0xfd/0x110
[  135.530707][T10427] kernel write not supported for file /asound/timers (pid: 10427 comm: syz.0.2478)
[  135.532058][T10422]  __alloc_pages_noprof+0x109/0x360
[  135.546577][T10422]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  135.552085][T10422]  folio_alloc_noprof+0xee/0x130
[  135.557190][T10422]  filemap_alloc_folio_noprof+0x69/0x220
[  135.562876][T10422]  __filemap_get_folio+0x298/0x5b0
[  135.568020][T10422]  iomap_write_begin+0x26e/0xdd0
[  135.573062][T10422]  ? fault_in_readable+0xee/0x1b0
[  135.578128][T10422]  ? fault_in_readable+0xf8/0x1b0
[  135.583172][T10422]  ? fault_in_readable+0x154/0x1b0
[  135.588313][T10422]  iomap_file_buffered_write+0x257/0x790
[  135.593987][T10422]  blkdev_write_iter+0x2d5/0x3c0
[  135.599036][T10422]  aio_write+0x309/0x430
[  135.603368][T10422]  io_submit_one+0xb18/0x1240
[  135.608076][T10422]  __se_sys_io_submit+0xf5/0x280
[  135.613043][T10422]  __x64_sys_io_submit+0x43/0x50
[  135.618009][T10422]  x64_sys_call+0x1ebc/0x2d60
[  135.622748][T10422]  do_syscall_64+0xc9/0x1c0
[  135.627335][T10422]  ? clear_bhb_loop+0x55/0xb0
[  135.632020][T10422]  ? clear_bhb_loop+0x55/0xb0
[  135.636703][T10422]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.642685][T10422] RIP: 0033:0x7fd9fe3fdef9
[  135.647111][T10422] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  135.666810][T10422] RSP: 002b:00007fd9fd077038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1
[  135.675442][T10422] RAX: ffffffffffffffda RBX: 00007fd9fe5b5f80 RCX: 00007fd9fe3fdef9
[  135.683423][T10422] RDX: 0000000020000540 RSI: 0000000000000008 RDI: 00007fd9ff0ee000
[  135.691400][T10422] RBP: 00007fd9fd077090 R08: 0000000000000000 R09: 0000000000000000
[  135.699485][T10422] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  135.707472][T10422] R13: 0000000000000000 R14: 00007fd9fe5b5f80 R15: 00007ffe48943e38
[  135.715587][T10422]  </TASK>
[  135.733547][T10429] kernel write not supported for file /asound/timers (pid: 10429 comm: syz.0.2479)
[  135.758767][T10434] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  135.767454][T10395] bridge0: port 1(bridge_slave_0) entered blocking state
[  135.774778][T10395] bridge0: port 1(bridge_slave_0) entered disabled state
[  135.782940][T10395] bridge_slave_0: entered allmulticast mode
[  135.789056][T10433] kernel write not supported for file /asound/timers (pid: 10433 comm: syz.0.2480)
[  135.800227][T10395] bridge_slave_0: entered promiscuous mode
[  135.807454][T10395] bridge0: port 2(bridge_slave_1) entered blocking state
[  135.814648][T10395] bridge0: port 2(bridge_slave_1) entered disabled state
[  135.815710][T10435] kernel write not supported for file /asound/timers (pid: 10435 comm: syz.0.2481)
[  135.829569][T10395] bridge_slave_1: entered allmulticast mode
[  135.846569][T10395] bridge_slave_1: entered promiscuous mode
[  135.883022][T10395] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  135.902427][T10395] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  135.937119][T10395] team0: Port device team_slave_0 added
[  135.947093][T10395] team0: Port device team_slave_1 added
[  135.965922][T10395] batman_adv: batadv0: Adding interface: batadv_slave_0
[  135.973009][T10395] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  135.998985][T10395] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  136.010986][T10395] batman_adv: batadv0: Adding interface: batadv_slave_1
[  136.017969][T10395] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  136.043947][T10395] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  136.079083][T10395] hsr_slave_0: entered promiscuous mode
[  136.086120][T10395] hsr_slave_1: entered promiscuous mode
[  136.092143][T10395] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  136.099725][T10395] Cannot create hsr debugfs directory
[  136.177607][T10395] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.192885][T10447] kernel write not supported for file /asound/timers (pid: 10447 comm: syz.0.2483)
[  136.280143][T10395] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.319092][T10461] loop3: detected capacity change from 0 to 256
[  136.338108][T10464] loop4: detected capacity change from 0 to 1764
[  136.347420][T10395] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.364340][T10461] FAT-fs (loop3): Directory bread(block 64) failed
[  136.375056][T10461] FAT-fs (loop3): Directory bread(block 65) failed
[  136.390842][T10461] FAT-fs (loop3): Directory bread(block 66) failed
[  136.407725][T10461] FAT-fs (loop3): Directory bread(block 67) failed
[  136.417923][T10461] FAT-fs (loop3): Directory bread(block 68) failed
[  136.430329][T10461] FAT-fs (loop3): Directory bread(block 69) failed
[  136.438327][T10461] FAT-fs (loop3): Directory bread(block 70) failed
[  136.451896][T10461] FAT-fs (loop3): Directory bread(block 71) failed
[  136.453808][T10395] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.468850][T10461] FAT-fs (loop3): Directory bread(block 72) failed
[  136.468880][T10461] FAT-fs (loop3): Directory bread(block 73) failed
[  136.598334][T10395] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  136.611026][T10395] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  136.619937][T10395] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  136.628987][T10395] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  136.649358][T10462] kernel write not supported for file /asound/timers (pid: 10462 comm: syz.0.2489)
[  136.677277][T10470] kernel write not supported for file /asound/timers (pid: 10470 comm: syz.0.2492)
[  136.691194][T10395] 8021q: adding VLAN 0 to HW filter on device bond0
[  136.706930][T10395] 8021q: adding VLAN 0 to HW filter on device team0
[  136.712529][T10472] kernel write not supported for file /asound/timers (pid: 10472 comm: syz.0.2493)
[  136.735259][ T7983] bridge0: port 1(bridge_slave_0) entered blocking state
[  136.742451][ T7983] bridge0: port 1(bridge_slave_0) entered forwarding state
[  136.752133][ T7983] bridge0: port 2(bridge_slave_1) entered blocking state
[  136.759734][ T7983] bridge0: port 2(bridge_slave_1) entered forwarding state
[  136.768664][   T29] audit: type=1326 audit(1726228837.163:16234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10475 comm="syz.0.2495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda4215def9 code=0x7ffc0000
[  136.792309][   T29] audit: type=1326 audit(1726228837.163:16235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10475 comm="syz.0.2495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda4215def9 code=0x7ffc0000
[  136.816330][   T29] audit: type=1326 audit(1726228837.163:16236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10475 comm="syz.0.2495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fda4215def9 code=0x7ffc0000
[  136.840199][   T29] audit: type=1326 audit(1726228837.163:16237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10475 comm="syz.0.2495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda4215def9 code=0x7ffc0000
[  136.863882][   T29] audit: type=1326 audit(1726228837.163:16238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10475 comm="syz.0.2495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda4215def9 code=0x7ffc0000
[  136.888601][   T29] audit: type=1326 audit(1726228837.163:16239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10475 comm="syz.0.2495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fda4215def9 code=0x7ffc0000
[  136.939293][T10480] loop0: detected capacity change from 0 to 128
[  136.952469][T10480] syz.0.2497: attempt to access beyond end of device
[  136.952469][T10480] loop0: rw=2049, sector=177, nr_sectors = 1 limit=128
[  136.966880][T10480] syz.0.2497: attempt to access beyond end of device
[  136.966880][T10480] loop0: rw=2049, sector=153, nr_sectors = 24 limit=128
[  136.980748][T10480] syz.0.2497: attempt to access beyond end of device
[  136.980748][T10480] loop0: rw=2049, sector=177, nr_sectors = 1 limit=128
[  136.987987][T10395] 8021q: adding VLAN 0 to HW filter on device batadv0
[  136.994401][T10480] Buffer I/O error on dev loop0, logical block 177, lost async page write
[  137.079903][T10395] veth0_vlan: entered promiscuous mode
[  137.089088][T10395] veth1_vlan: entered promiscuous mode
[  137.109384][T10395] veth0_macvtap: entered promiscuous mode
[  137.118330][T10395] veth1_macvtap: entered promiscuous mode
[  137.132924][T10395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  137.143724][T10395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  137.153860][T10395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  137.164570][T10395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  137.176532][T10395] batman_adv: batadv0: Interface activated: batadv_slave_0
[  137.188787][T10395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  137.199409][T10395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  137.209337][T10395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  137.220110][T10395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  137.232079][T10395] batman_adv: batadv0: Interface activated: batadv_slave_1
[  137.242899][T10395] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  137.251724][T10395] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  137.260464][T10395] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  137.269247][T10395] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  137.393912][T10505] loop1: detected capacity change from 0 to 1024
[  137.401626][T10505] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  137.411642][T10505] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  137.422346][T10505] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  137.433701][T10505] EXT4-fs error (device loop1): ext4_get_journal_inode:5740: inode #5: comm syz.1.2502: unexpected bad inode w/o EXT4_IGET_BAD
[  137.447840][T10505] EXT4-fs (loop1): no journal found
[  137.453256][T10505] EXT4-fs (loop1): can't get journal size
[  137.461453][T10505] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  137.475193][T10505] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2502: bg 0: block 32: padding at end of block bitmap is not set
[  137.504879][T10395] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.588789][T10509] loop1: detected capacity change from 0 to 512
[  137.623432][T10509] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.640478][T10509] ext4 filesystem being mounted at /2/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  137.651792][T10509] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.806968][T10521] loop0: detected capacity change from 0 to 1024
[  137.823838][T10521] EXT4-fs: Ignoring removed orlov option
[  137.829700][T10521] EXT4-fs: Ignoring removed nomblk_io_submit option
[  137.858583][T10526] loop1: detected capacity change from 0 to 512
[  137.867854][T10521] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  137.891984][T10526] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.904906][T10526] ext4 filesystem being mounted at /2/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  137.906672][ T3668] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.916537][T10526] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.956195][T10509] loop1: detected capacity change from 0 to 736
[  137.970491][T10533] loop3: detected capacity change from 0 to 256
[  137.985135][T10533] FAT-fs (loop3): Directory bread(block 64) failed
[  137.991981][T10533] FAT-fs (loop3): Directory bread(block 65) failed
[  137.998715][T10533] FAT-fs (loop3): Directory bread(block 66) failed
[  138.005913][T10533] FAT-fs (loop3): Directory bread(block 67) failed
[  138.012650][T10533] FAT-fs (loop3): Directory bread(block 68) failed
[  138.019724][T10533] FAT-fs (loop3): Directory bread(block 69) failed
[  138.026530][T10533] FAT-fs (loop3): Directory bread(block 70) failed
[  138.028517][T10537] loop0: detected capacity change from 0 to 1024
[  138.034071][T10533] FAT-fs (loop3): Directory bread(block 71) failed
[  138.046568][T10533] FAT-fs (loop3): Directory bread(block 72) failed
[  138.054878][T10533] FAT-fs (loop3): Directory bread(block 73) failed
[  138.084815][T10537] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  138.098244][T10537] ext4 filesystem being mounted at /510/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  138.242999][T10547] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2514'.
[  138.252147][T10547] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  138.259699][T10547] batman_adv: batadv0: Removing interface: batadv_slave_0
[  138.267853][T10547] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  138.275555][T10547] batman_adv: batadv0: Removing interface: batadv_slave_1
[  138.669910][T10558] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  138.710846][T10566] loop1: detected capacity change from 0 to 512
[  138.722424][T10566] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.735079][T10566] ext4 filesystem being mounted at /6/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  138.746288][T10566] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.772532][T10572] loop4: detected capacity change from 0 to 1764
[  138.875997][ T3668] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.987124][T10579] loop1: detected capacity change from 0 to 512
[  139.002439][T10579] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.009584][T10580] loop0: detected capacity change from 0 to 1764
[  139.015241][T10579] ext4 filesystem being mounted at /6/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  139.032643][T10579] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.707957][T10596] loop4: detected capacity change from 0 to 256
[  139.723818][T10596] FAT-fs (loop4): Directory bread(block 64) failed
[  139.730485][T10596] FAT-fs (loop4): Directory bread(block 65) failed
[  139.737141][T10596] FAT-fs (loop4): Directory bread(block 66) failed
[  139.743842][T10596] FAT-fs (loop4): Directory bread(block 67) failed
[  139.750408][T10596] FAT-fs (loop4): Directory bread(block 68) failed
[  139.756922][T10596] FAT-fs (loop4): Directory bread(block 69) failed
[  139.764002][T10596] FAT-fs (loop4): Directory bread(block 70) failed
[  139.770823][T10596] FAT-fs (loop4): Directory bread(block 71) failed
[  139.777523][T10596] FAT-fs (loop4): Directory bread(block 72) failed
[  139.785186][T10596] FAT-fs (loop4): Directory bread(block 73) failed
[  139.905572][T10605] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  139.948393][T10610] syz.0.2535[10610] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  139.948491][T10610] syz.0.2535[10610] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  139.961777][T10610] pim6reg1: entered promiscuous mode
[  139.979236][T10610] pim6reg1: entered allmulticast mode
[  139.987617][T10610] SELinux:  policydb version -1682183729 does not match my version range 15-33
[  139.996778][T10610] SELinux: failed to load policy
[  140.177701][T10628] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  140.292702][   T29] kauditd_printk_skb: 65 callbacks suppressed
[  140.292727][   T29] audit: type=1326 audit(1726228840.703:16305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10650 comm="syz.4.2553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9fe3fdef9 code=0x7ffc0000
[  140.322617][   T29] audit: type=1326 audit(1726228840.703:16306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10650 comm="syz.4.2553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9fe3fdef9 code=0x7ffc0000
[  140.346364][   T29] audit: type=1326 audit(1726228840.703:16307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10650 comm="syz.4.2553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd9fe3fdef9 code=0x7ffc0000
[  140.370039][   T29] audit: type=1326 audit(1726228840.703:16308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10650 comm="syz.4.2553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9fe3fdef9 code=0x7ffc0000
[  140.393761][   T29] audit: type=1326 audit(1726228840.703:16309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10650 comm="syz.4.2553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd9fe3fdef9 code=0x7ffc0000
[  140.417601][   T29] audit: type=1326 audit(1726228840.703:16310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10650 comm="syz.4.2553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9fe3fdef9 code=0x7ffc0000
[  140.441376][   T29] audit: type=1326 audit(1726228840.703:16311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10650 comm="syz.4.2553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9fe3fdef9 code=0x7ffc0000
[  140.465014][   T29] audit: type=1326 audit(1726228840.703:16312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10650 comm="syz.4.2553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd9fe3fdef9 code=0x7ffc0000
[  140.489091][   T29] audit: type=1326 audit(1726228840.703:16313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10650 comm="syz.4.2553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9fe3fdef9 code=0x7ffc0000
[  140.512907][   T29] audit: type=1326 audit(1726228840.703:16314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10650 comm="syz.4.2553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd9fe3fdef9 code=0x7ffc0000
[  140.551539][T10659] SELinux:  policydb version -1682183729 does not match my version range 15-33
[  140.562445][T10659] SELinux: failed to load policy
[  140.582924][T10663] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  141.226916][T10643] warn_unsupported: 15 callbacks suppressed
[  141.226937][T10643] kernel write not supported for file /asound/timers (pid: 10643 comm: syz.0.2546)
[  147.699824][T10666] kernel write not supported for file /asound/timers (pid: 10666 comm: syz.0.2560)
[  147.737293][T10679] loop0: detected capacity change from 0 to 736
[  147.755639][   T29] kauditd_printk_skb: 37 callbacks suppressed
[  147.755656][   T29] audit: type=1326 audit(1726228848.163:16352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10682 comm="syz.4.2567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9fe3fdef9 code=0x7ffc0000
[  147.785460][   T29] audit: type=1326 audit(1726228848.163:16353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10682 comm="syz.4.2567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd9fe3fdef9 code=0x7ffc0000
[  147.809300][   T29] audit: type=1326 audit(1726228848.163:16354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10682 comm="syz.4.2567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9fe3fdef9 code=0x7ffc0000
[  147.821740][T10688] loop3: detected capacity change from 0 to 1764
[  147.851318][T10687] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2568'.
[  147.854062][T10679] kernel write not supported for file /asound/timers (pid: 10679 comm: syz.0.2566)
[  147.860499][T10687] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  147.871115][   T29] audit: type=1326 audit(1726228848.163:16355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10682 comm="syz.4.2567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd9fe3fdef9 code=0x7ffc0000
[  147.877453][T10687] batman_adv: batadv0: Removing interface: batadv_slave_0
[  147.900992][   T29] audit: type=1326 audit(1726228848.163:16356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10682 comm="syz.4.2567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9fe3fdef9 code=0x7ffc0000
[  147.901036][   T29] audit: type=1326 audit(1726228848.163:16357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10682 comm="syz.4.2567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd9fe3fdef9 code=0x7ffc0000
[  147.931894][   T29] audit: type=1326 audit(1726228848.163:16358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10682 comm="syz.4.2567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9fe3fdef9 code=0x7ffc0000
[  147.979273][   T29] audit: type=1326 audit(1726228848.163:16359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10682 comm="syz.4.2567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd9fe3fdef9 code=0x7ffc0000
[  148.003040][   T29] audit: type=1326 audit(1726228848.163:16360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10682 comm="syz.4.2567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9fe3fdef9 code=0x7ffc0000
[  148.026653][   T29] audit: type=1326 audit(1726228848.163:16361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10682 comm="syz.4.2567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9fe3fdef9 code=0x7ffc0000
[  148.052195][T10687] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  148.059893][T10687] batman_adv: batadv0: Removing interface: batadv_slave_1
[  148.072207][T10689] loop2: detected capacity change from 0 to 256
[  148.087800][T10696] loop4: detected capacity change from 0 to 512
[  148.100140][T10689] FAT-fs (loop2): Directory bread(block 64) failed
[  148.106701][T10689] FAT-fs (loop2): Directory bread(block 65) failed
[  148.114814][T10689] FAT-fs (loop2): Directory bread(block 66) failed
[  148.121463][T10694] loop0: detected capacity change from 0 to 1024
[  148.123756][T10689] FAT-fs (loop2): Directory bread(block 67) failed
[  148.135116][T10694] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  148.145157][T10689] FAT-fs (loop2): Directory bread(block 68) failed
[  148.145189][T10689] FAT-fs (loop2): Directory bread(block 69) failed
[  148.145219][T10689] FAT-fs (loop2): Directory bread(block 70) failed
[  148.151870][T10694] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  148.159027][T10689] FAT-fs (loop2): Directory bread(block 71) failed
[  148.166897][T10694] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  148.180338][T10696] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  148.205789][T10694] EXT4-fs error (device loop0): ext4_get_journal_inode:5740: inode #5: comm syz.0.2570: unexpected bad inode w/o EXT4_IGET_BAD
[  148.206162][T10689] FAT-fs (loop2): Directory bread(block 72) failed
[  148.227251][T10696] ext4 filesystem being mounted at /88/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  148.238217][T10689] FAT-fs (loop2): Directory bread(block 73) failed
[  148.252078][T10694] EXT4-fs (loop0): no journal found
[  148.257341][T10694] EXT4-fs (loop0): can't get journal size
[  148.266667][T10694] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  148.280255][ T9649] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.302008][T10694] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2570: bg 0: block 32: padding at end of block bitmap is not set
[  148.305399][T10704] loop4: detected capacity change from 0 to 512
[  148.326192][T10693] kernel write not supported for file /asound/timers (pid: 10693 comm: syz.0.2570)
[  148.337138][ T3668] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.338038][T10704] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  148.359656][T10704] ext4 filesystem being mounted at /89/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  148.420946][ T9649] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.489873][T10730] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  148.498289][T10726] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2580'.
[  148.576393][T10738] loop2: detected capacity change from 0 to 4096
[  148.601695][T10738] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  148.641710][T10742] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2586'.
[  148.714603][T10753] loop7: detected capacity change from 0 to 16384
[  148.799284][T10765] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  148.852203][T10771] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2597'.
[  148.861257][T10771] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  148.868785][T10771] batman_adv: batadv0: Removing interface: batadv_slave_0
[  148.878754][T10771] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  148.886487][T10771] batman_adv: batadv0: Removing interface: batadv_slave_1
[  148.910613][T10774] loop3: detected capacity change from 0 to 256
[  148.927667][T10777] loop1: detected capacity change from 0 to 1024
[  148.927926][T10774] FAT-fs (loop3): Directory bread(block 64) failed
[  148.942642][T10777] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  148.944212][T10774] FAT-fs (loop3): Directory bread(block 65) failed
[  148.952673][T10777] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  148.959389][T10774] FAT-fs (loop3): Directory bread(block 66) failed
[  148.970015][T10777] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  148.975882][T10774] FAT-fs (loop3): Directory bread(block 67) failed
[  148.986746][T10777] EXT4-fs error (device loop1): ext4_get_journal_inode:5740: inode #5: comm syz.1.2599: unexpected bad inode w/o EXT4_IGET_BAD
[  148.992195][T10774] FAT-fs (loop3): Directory bread(block 68) failed
[  149.006436][T10777] EXT4-fs (loop1): no journal found
[  149.017818][T10774] FAT-fs (loop3): Directory bread(block 69) failed
[  149.017867][T10774] FAT-fs (loop3): Directory bread(block 70) failed
[  149.017893][T10774] FAT-fs (loop3): Directory bread(block 71) failed
[  149.017955][T10774] FAT-fs (loop3): Directory bread(block 72) failed
[  149.024650][T10777] EXT4-fs (loop1): can't get journal size
[  149.031174][T10774] FAT-fs (loop3): Directory bread(block 73) failed
[  149.038552][T10777] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  149.073247][T10777] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2599: bg 0: block 32: padding at end of block bitmap is not set
[  149.097328][T10395] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.166228][T10788] macvtap0: entered promiscuous mode
[  149.172755][T10788] macvtap0: left promiscuous mode
[  149.180970][T10790] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  149.226623][T10733] kernel write not supported for file /asound/timers (pid: 10733 comm: syz.0.2573)
[  149.244046][T10788] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2604'.
[  149.275203][T10797] FAULT_INJECTION: forcing a failure.
[  149.275203][T10797] name failslab, interval 1, probability 0, space 0, times 0
[  149.287932][T10797] CPU: 1 UID: 0 PID: 10797 Comm: syz.0.2608 Not tainted 6.11.0-rc7-syzkaller-00093-gfdf042df0463 #0
[  149.298942][T10797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  149.309024][T10797] Call Trace:
[  149.312342][T10797]  <TASK>
[  149.315288][T10797]  dump_stack_lvl+0xf2/0x150
[  149.319898][T10797]  dump_stack+0x15/0x20
[  149.324151][T10797]  should_fail_ex+0x229/0x230
[  149.328855][T10797]  ? vm_area_alloc+0x2c/0x130
[  149.333643][T10797]  should_failslab+0x8f/0xb0
[  149.338441][T10797]  kmem_cache_alloc_noprof+0x4c/0x290
[  149.343885][T10797]  vm_area_alloc+0x2c/0x130
[  149.348414][T10797]  mmap_region+0x88b/0x1620
[  149.352983][T10797]  ? security_mmap_addr+0x4c/0x70
[  149.358049][T10797]  ? __get_unmapped_area+0x2d1/0x300
[  149.363361][T10797]  do_mmap+0x72a/0xb70
[  149.367635][T10797]  ? security_mmap_file+0x128/0x150
[  149.372858][T10797]  vm_mmap_pgoff+0x133/0x290
[  149.377529][T10797]  ksys_mmap_pgoff+0xd0/0x340
[  149.382243][T10797]  ? fpregs_assert_state_consistent+0x83/0xa0
[  149.388406][T10797]  x64_sys_call+0x1884/0x2d60
[  149.393176][T10797]  do_syscall_64+0xc9/0x1c0
[  149.397708][T10797]  ? clear_bhb_loop+0x55/0xb0
[  149.402436][T10797]  ? clear_bhb_loop+0x55/0xb0
[  149.407184][T10797]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.413270][T10797] RIP: 0033:0x7fda4215df33
[  149.417761][T10797] Code: f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41 89 ca 41 f7 c1 ff 0f 00 00 75 14 b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 25 c3 0f 1f 40 00 48 c7 c0 a8 ff ff ff 64 c7
[  149.437403][T10797] RSP: 002b:00007fda40dd0d68 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  149.446035][T10797] RAX: ffffffffffffffda RBX: 00000000000005c1 RCX: 00007fda4215df33
[  149.454105][T10797] RDX: 0000000000000003 RSI: 0000000008400000 RDI: 0000000000000000
[  149.462098][T10797] RBP: 00000000200005c2 R08: 00000000ffffffff R09: 0000000000000000
[  149.470119][T10797] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000000009
[  149.478208][T10797] R13: 00007fda40dd0dec R14: 00007fda40dd0df0 R15: 00007fff3fff64a8
[  149.486360][T10797]  </TASK>
[  149.500063][T10804] loop1: detected capacity change from 0 to 1024
[  149.507191][T10804] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  149.508905][T10255] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.517194][T10804] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  149.537043][T10804] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  149.548091][T10804] EXT4-fs error (device loop1): ext4_get_journal_inode:5740: inode #5: comm syz.1.2610: unexpected bad inode w/o EXT4_IGET_BAD
[  149.574637][T10804] EXT4-fs (loop1): no journal found
[  149.579900][T10804] EXT4-fs (loop1): can't get journal size
[  149.587304][T10797] kernel write not supported for file /asound/timers (pid: 10797 comm: syz.0.2608)
[  149.600115][T10806] loop4: detected capacity change from 0 to 512
[  149.627323][T10804] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  149.648627][T10806] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  149.658729][T10804] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2610: bg 0: block 32: padding at end of block bitmap is not set
[  149.661783][T10810] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2614'.
[  149.685315][T10815] FAULT_INJECTION: forcing a failure.
[  149.685315][T10815] name failslab, interval 1, probability 0, space 0, times 0
[  149.685714][T10806] ext4 filesystem being mounted at /103/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  149.698253][T10815] CPU: 0 UID: 0 PID: 10815 Comm: syz.3.2613 Not tainted 6.11.0-rc7-syzkaller-00093-gfdf042df0463 #0
[  149.712128][T10806] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.719308][T10815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  149.719328][T10815] Call Trace:
[  149.719339][T10815]  <TASK>
[  149.744974][T10815]  dump_stack_lvl+0xf2/0x150
[  149.749748][T10815]  dump_stack+0x15/0x20
[  149.753974][T10815]  should_fail_ex+0x229/0x230
[  149.758728][T10815]  ? getname_flags+0x81/0x3b0
[  149.763563][T10815]  should_failslab+0x8f/0xb0
[  149.768356][T10815]  kmem_cache_alloc_noprof+0x4c/0x290
[  149.773837][T10815]  getname_flags+0x81/0x3b0
[  149.778446][T10815]  __x64_sys_symlink+0x40/0x60
[  149.783294][T10815]  x64_sys_call+0x2819/0x2d60
[  149.788372][T10815]  do_syscall_64+0xc9/0x1c0
[  149.793037][T10815]  ? clear_bhb_loop+0x55/0xb0
[  149.797827][T10815]  ? clear_bhb_loop+0x55/0xb0
[  149.802590][T10815]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.808664][T10815] RIP: 0033:0x7fb51183def9
[  149.813116][T10815] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.832873][T10815] RSP: 002b:00007fb5104b1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000058
[  149.841388][T10815] RAX: ffffffffffffffda RBX: 00007fb5119f5f80 RCX: 00007fb51183def9
[  149.849495][T10815] RDX: 0000000000000000 RSI: 0000000020000cc0 RDI: 0000000020000dc0
[  149.857547][T10815] RBP: 00007fb5104b1090 R08: 0000000000000000 R09: 0000000000000000
[  149.865712][T10815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  149.873777][T10815] R13: 0000000000000000 R14: 00007fb5119f5f80 R15: 00007ffcb3468a58
[  149.881764][T10815]  </TASK>
[  149.913621][T10395] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.926618][T10820] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  149.963860][T10825] loop2: detected capacity change from 0 to 512
[  149.977854][T10810] kernel write not supported for file /asound/timers (pid: 10810 comm: syz.0.2614)
[  150.004055][T10825] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  150.005963][T10823] loop1: detected capacity change from 0 to 2048
[  150.036741][T10827] kernel write not supported for file /asound/timers (pid: 10827 comm: syz.0.2620)
[  150.046265][T10825] ext4 filesystem being mounted at /20/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  150.062561][T10825] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.078663][T10823] /dev/loop1: Can't open blockdev
[  150.087058][T10835] FAULT_INJECTION: forcing a failure.
[  150.087058][T10835] name failslab, interval 1, probability 0, space 0, times 0
[  150.099824][T10835] CPU: 1 UID: 0 PID: 10835 Comm: syz.0.2622 Not tainted 6.11.0-rc7-syzkaller-00093-gfdf042df0463 #0
[  150.110822][T10835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  150.120899][T10835] Call Trace:
[  150.124204][T10835]  <TASK>
[  150.127230][T10835]  dump_stack_lvl+0xf2/0x150
[  150.131857][T10835]  dump_stack+0x15/0x20
[  150.136037][T10835]  should_fail_ex+0x229/0x230
[  150.140783][T10835]  ? vm_area_dup+0x98/0x130
[  150.145336][T10835]  should_failslab+0x8f/0xb0
[  150.150091][T10835]  kmem_cache_alloc_noprof+0x4c/0x290
[  150.155505][T10835]  vm_area_dup+0x98/0x130
[  150.159965][T10835]  __split_vma+0xf7/0x690
[  150.164425][T10835]  do_vmi_align_munmap+0x227/0xa60
[  150.169670][T10835]  do_vmi_munmap+0x1fb/0x250
[  150.174282][T10835]  do_munmap+0x7a/0xb0
[  150.178802][T10835]  __se_sys_mremap+0xabc/0xf20
[  150.183718][T10835]  ? bpf_trace_run2+0x123/0x1d0
[  150.188652][T10835]  __x64_sys_mremap+0x67/0x80
[  150.193425][T10835]  x64_sys_call+0x2747/0x2d60
[  150.198181][T10835]  do_syscall_64+0xc9/0x1c0
[  150.202724][T10835]  ? clear_bhb_loop+0x55/0xb0
[  150.207436][T10835]  ? clear_bhb_loop+0x55/0xb0
[  150.212164][T10835]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.218120][T10835] RIP: 0033:0x7fda4215def9
[  150.222616][T10835] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  150.242398][T10835] RSP: 002b:00007fda40dd1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  150.250826][T10835] RAX: ffffffffffffffda RBX: 00007fda42315f80 RCX: 00007fda4215def9
[  150.258864][T10835] RDX: 0000000000004000 RSI: 0000000000003000 RDI: 0000000020001000
[  150.266946][T10835] RBP: 00007fda40dd1090 R08: 0000000020005000 R09: 0000000000000000
[  150.274995][T10835] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[  150.283079][T10835] R13: 0000000000000000 R14: 00007fda42315f80 R15: 00007fff3fff64a8
[  150.291150][T10835]  </TASK>
[  150.306514][T10835] kernel write not supported for file /asound/timers (pid: 10835 comm: syz.0.2622)
[  150.323481][T10837] loop4: detected capacity change from 0 to 736
[  150.328189][T10825] loop2: detected capacity change from 0 to 736
[  150.425480][T10857] loop1: detected capacity change from 0 to 1024
[  150.440885][T10857] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (1764!=20869)
[  150.459740][T10857] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  150.476650][T10857] EXT4-fs (loop1): invalid journal inode
[  150.482776][T10857] EXT4-fs (loop1): can't get journal size
[  150.490250][T10857] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  150.537388][T10395] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.566356][T10864] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  150.588670][T10839] kernel write not supported for file /asound/timers (pid: 10839 comm: syz.0.2623)
[  150.637099][T10871] kernel write not supported for file /asound/timers (pid: 10871 comm: syz.0.2632)
[  150.637335][T10866] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2630'.
[  150.665748][T10875] loop1: detected capacity change from 0 to 1764
[  150.704064][T10877] netlink: 'syz.4.2633': attribute type 10 has an invalid length.
[  150.750539][T10874] netlink: 'syz.4.2633': attribute type 10 has an invalid length.
[  150.758598][T10874] netlink: 2 bytes leftover after parsing attributes in process `syz.4.2633'.
[  150.767889][T10874] team0: entered promiscuous mode
[  150.773225][T10874] team_slave_0: entered promiscuous mode
[  150.779125][T10874] team_slave_1: entered promiscuous mode
[  150.790970][T10874] 8021q: adding VLAN 0 to HW filter on device team0
[  150.800150][T10874] bridge0: port 3(team0) entered blocking state
[  150.806565][T10874] bridge0: port 3(team0) entered disabled state
[  150.814967][T10874] team0: entered allmulticast mode
[  150.820386][T10874] team_slave_0: entered allmulticast mode
[  150.826171][T10874] team_slave_1: entered allmulticast mode
[  150.832440][T10882] 9pnet_fd: Insufficient options for proto=fd
[  150.843927][T10885] loop2: detected capacity change from 0 to 512
[  150.853199][T10874] bridge0: port 3(team0) entered blocking state
[  150.859570][T10874] bridge0: port 3(team0) entered forwarding state
[  150.868037][T10885] ext4 filesystem being mounted at /25/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  150.894940][T10885] loop2: detected capacity change from 0 to 736
[  150.902081][T10893] FAULT_INJECTION: forcing a failure.
[  150.902081][T10893] name failslab, interval 1, probability 0, space 0, times 0
[  150.914754][T10893] CPU: 0 UID: 0 PID: 10893 Comm: syz.4.2639 Not tainted 6.11.0-rc7-syzkaller-00093-gfdf042df0463 #0
[  150.925534][T10893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  150.935688][T10893] Call Trace:
[  150.938973][T10893]  <TASK>
[  150.941994][T10893]  dump_stack_lvl+0xf2/0x150
[  150.946762][T10893]  dump_stack+0x15/0x20
[  150.951021][T10893]  should_fail_ex+0x229/0x230
[  150.955750][T10893]  ? qdisc_alloc+0x5f/0x440
[  150.960279][T10893]  should_failslab+0x8f/0xb0
[  150.964909][T10893]  __kmalloc_node_noprof+0xa8/0x380
[  150.970198][T10893]  qdisc_alloc+0x5f/0x440
[  150.974554][T10893]  ? mqprio_init+0x479/0xc30
[  150.979232][T10893]  qdisc_create_dflt+0x4c/0x280
[  150.984115][T10893]  mqprio_init+0x578/0xc30
[  150.988626][T10893]  ? __pfx_mqprio_init+0x10/0x10
[  150.993604][T10893]  qdisc_create+0x6c1/0xae0
[  150.998177][T10893]  ? __nla_parse+0x40/0x60
[  151.002617][T10893]  tc_modify_qdisc+0x65f/0x1050
[  151.007631][T10893]  ? ns_capable+0x7d/0xb0
[  151.011968][T10893]  ? __pfx_tc_modify_qdisc+0x10/0x10
[  151.017274][T10893]  rtnetlink_rcv_msg+0x6aa/0x710
[  151.022233][T10893]  ? ref_tracker_free+0x3a5/0x410
[  151.027372][T10893]  ? __dev_queue_xmit+0x161/0x1fe0
[  151.032666][T10893]  netlink_rcv_skb+0x12c/0x230
[  151.037443][T10893]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  151.043653][T10893]  rtnetlink_rcv+0x1c/0x30
[  151.048335][T10893]  netlink_unicast+0x599/0x670
[  151.053481][T10893]  netlink_sendmsg+0x5cc/0x6e0
[  151.058282][T10893]  ? __pfx_netlink_sendmsg+0x10/0x10
[  151.063641][T10893]  __sock_sendmsg+0x140/0x180
[  151.068402][T10893]  ____sys_sendmsg+0x312/0x410
[  151.073357][T10893]  __sys_sendmsg+0x1e9/0x280
[  151.077999][T10893]  __x64_sys_sendmsg+0x46/0x50
[  151.082778][T10893]  x64_sys_call+0x2689/0x2d60
[  151.087522][T10893]  do_syscall_64+0xc9/0x1c0
[  151.092215][T10893]  ? clear_bhb_loop+0x55/0xb0
[  151.096901][T10893]  ? clear_bhb_loop+0x55/0xb0
[  151.101955][T10893]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.107885][T10893] RIP: 0033:0x7fd9fe3fdef9
[  151.112313][T10893] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  151.132248][T10893] RSP: 002b:00007fd9fd077038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  151.140743][T10893] RAX: ffffffffffffffda RBX: 00007fd9fe5b5f80 RCX: 00007fd9fe3fdef9
[  151.148807][T10893] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000000000006
[  151.156789][T10893] RBP: 00007fd9fd077090 R08: 0000000000000000 R09: 0000000000000000
[  151.165615][T10893] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  151.173635][T10893] R13: 0000000000000000 R14: 00007fd9fe5b5f80 R15: 00007ffe48943e38
[  151.181716][T10893]  </TASK>
[  151.194186][T10891] Process accounting paused
[  151.242856][T10899] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  151.278957][T10909] 9pnet_fd: Insufficient options for proto=fd
[  151.306477][T10908] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2646'.
[  151.450920][T10935] loop3: detected capacity change from 0 to 512
[  151.462059][T10935] ext4 filesystem being mounted at /526/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  151.481839][T10935] loop3: detected capacity change from 0 to 736
[  151.490989][T10940] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  151.523437][T10943] loop1: detected capacity change from 0 to 736
[  151.535739][T10947] 9pnet_fd: Insufficient options for proto=fd
[  151.563149][T10953] FAULT_INJECTION: forcing a failure.
[  151.563149][T10953] name failslab, interval 1, probability 0, space 0, times 0
[  151.575918][T10953] CPU: 0 UID: 0 PID: 10953 Comm: syz.1.2662 Not tainted 6.11.0-rc7-syzkaller-00093-gfdf042df0463 #0
[  151.586741][T10953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  151.597107][T10953] Call Trace:
[  151.600473][T10953]  <TASK>
[  151.603403][T10953]  dump_stack_lvl+0xf2/0x150
[  151.608050][T10953]  dump_stack+0x15/0x20
[  151.612261][T10953]  should_fail_ex+0x229/0x230
[  151.617203][T10953]  ? skb_clone+0x154/0x1f0
[  151.621656][T10953]  should_failslab+0x8f/0xb0
[  151.626475][T10953]  kmem_cache_alloc_noprof+0x4c/0x290
[  151.631877][T10953]  skb_clone+0x154/0x1f0
[  151.636179][T10953]  dev_queue_xmit_nit+0x149/0x620
[  151.641336][T10953]  dev_hard_start_xmit+0xcc/0x3f0
[  151.646421][T10953]  ? validate_xmit_skb+0x658/0x8d0
[  151.651619][T10953]  __dev_queue_xmit+0xfd4/0x1fe0
[  151.656594][T10953]  ? __dev_queue_xmit+0x161/0x1fe0
[  151.661747][T10953]  ? should_fail_ex+0xd7/0x230
[  151.666577][T10953]  ? __skb_clone+0x2d0/0x2f0
[  151.671181][T10953]  __netlink_deliver_tap+0x39f/0x4c0
[  151.676492][T10953]  netlink_unicast+0x64a/0x670
[  151.681372][T10953]  netlink_sendmsg+0x5cc/0x6e0
[  151.686242][T10953]  ? __pfx_netlink_sendmsg+0x10/0x10
[  151.691547][T10953]  __sock_sendmsg+0x140/0x180
[  151.696354][T10953]  ____sys_sendmsg+0x312/0x410
[  151.701140][T10953]  __sys_sendmsg+0x1e9/0x280
[  151.705808][T10953]  __x64_sys_sendmsg+0x46/0x50
[  151.710698][T10953]  x64_sys_call+0x2689/0x2d60
[  151.715497][T10953]  do_syscall_64+0xc9/0x1c0
[  151.720045][T10953]  ? clear_bhb_loop+0x55/0xb0
[  151.724761][T10953]  ? clear_bhb_loop+0x55/0xb0
[  151.729528][T10953]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.735847][T10953] RIP: 0033:0x7f61f0d4def9
[  151.740335][T10953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  151.760051][T10953] RSP: 002b:00007f61ef9c7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  151.768580][T10953] RAX: ffffffffffffffda RBX: 00007f61f0f05f80 RCX: 00007f61f0d4def9
[  151.776610][T10953] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[  151.784659][T10953] RBP: 00007f61ef9c7090 R08: 0000000000000000 R09: 0000000000000000
[  151.792638][T10953] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  151.800701][T10953] R13: 0000000000000000 R14: 00007f61f0f05f80 R15: 00007fffcf082c98
[  151.808775][T10953]  </TASK>
[  151.812100][T10956] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2663'.
[  151.821284][T10953] IPv6: Can't replace route, no match found
[  151.868693][T10964] loop1: detected capacity change from 0 to 128
[  151.879919][T10964] syz.1.2666: attempt to access beyond end of device
[  151.879919][T10964] loop1: rw=2049, sector=177, nr_sectors = 1 limit=128
[  151.895899][T10964] syz.1.2666: attempt to access beyond end of device
[  151.895899][T10964] loop1: rw=2049, sector=153, nr_sectors = 24 limit=128
[  152.013021][T10979] loop3: detected capacity change from 0 to 1024
[  152.070242][T10983] loop3: detected capacity change from 0 to 1024
[  152.078405][T10983] EXT4-fs: Ignoring removed orlov option
[  152.084272][T10983] EXT4-fs: Ignoring removed nomblk_io_submit option
[  152.110462][T10901] delete_channel: no stack
[  152.324418][T11016] loop2: detected capacity change from 0 to 1024
[  152.332287][T11016] EXT4-fs: Ignoring removed orlov option
[  152.338094][T11016] EXT4-fs: Ignoring removed nomblk_io_submit option
[  152.381875][T11021] loop3: detected capacity change from 0 to 512
[  152.402938][T11021] ext4 filesystem being mounted at /544/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  152.455498][T11027] loop2: detected capacity change from 0 to 512
[  152.478742][T11027] EXT4-fs warning (device loop2): ext4_enable_quotas:7066: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  152.494053][T11027] EXT4-fs (loop2): mount failed
[  152.579140][T11042] loop2: detected capacity change from 0 to 1764
[  152.626507][T11048] loop0: detected capacity change from 0 to 128
[  152.634525][T11048] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=2560 sclass=netlink_xfrm_socket pid=11048 comm=syz.0.2698
[  152.731946][T11053] IPv6: Can't replace route, no match found
[  152.763033][   T29] kauditd_printk_skb: 396 callbacks suppressed
[  152.763050][   T29] audit: type=1326 audit(1726228853.173:16757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11054 comm="syz.1.2700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61f0d4def9 code=0x7ffc0000
[  152.793135][   T29] audit: type=1326 audit(1726228853.173:16758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11054 comm="syz.1.2700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61f0d4def9 code=0x7ffc0000
[  152.816806][   T29] audit: type=1326 audit(1726228853.173:16759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11054 comm="syz.1.2700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f61f0d4def9 code=0x7ffc0000
[  152.840506][   T29] audit: type=1326 audit(1726228853.173:16760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11054 comm="syz.1.2700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61f0d4def9 code=0x7ffc0000
[  152.864213][   T29] audit: type=1326 audit(1726228853.173:16761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11054 comm="syz.1.2700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61f0d4def9 code=0x7ffc0000
[  152.887907][   T29] audit: type=1326 audit(1726228853.173:16762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11054 comm="syz.1.2700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f61f0d4def9 code=0x7ffc0000
[  152.911533][   T29] audit: type=1326 audit(1726228853.173:16763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11054 comm="syz.1.2700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61f0d4def9 code=0x7ffc0000
[  152.935122][   T29] audit: type=1326 audit(1726228853.173:16764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11054 comm="syz.1.2700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f61f0d4c890 code=0x7ffc0000
[  152.958723][   T29] audit: type=1326 audit(1726228853.203:16765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11054 comm="syz.1.2700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61f0d4def9 code=0x7ffc0000
[  152.983453][   T29] audit: type=1326 audit(1726228853.203:16766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11054 comm="syz.1.2700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61f0d4def9 code=0x7ffc0000
[  153.089121][T11065] __nla_validate_parse: 2 callbacks suppressed
[  153.089137][T11065] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2704'.
[  153.114647][T11069] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  153.143574][T11071] loop4: detected capacity change from 0 to 512
[  153.162731][T11071] ext4 filesystem being mounted at /113/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  153.181683][T11071] loop4: detected capacity change from 0 to 736
[  153.446419][T11092] loop2: detected capacity change from 0 to 512
[  153.467919][T11092] ext4 filesystem being mounted at /40/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  153.501038][T11098] loop1: detected capacity change from 0 to 1024
[  153.507902][T11098] EXT4-fs: Ignoring removed orlov option
[  153.513681][T11098] EXT4-fs: Ignoring removed nomblk_io_submit option
[  153.543680][T11100] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2718'.
[  153.680563][T11128] loop0: detected capacity change from 0 to 1764
[  153.703682][T11131] random: crng reseeded on system resumption
[  153.989945][T11139] loop2: detected capacity change from 0 to 512
[  153.997060][T11139] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  154.008430][T11139] EXT4-fs (loop2): 1 truncate cleaned up
[  154.035789][T11142] syz.2.2732[11142] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  154.035841][T11142] syz.2.2732[11142] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  154.344945][T11155] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2736'.
[  154.562689][T11177] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2747'.
[  154.627575][T11192] loop1: detected capacity change from 0 to 512
[  154.642077][T11192] EXT4-fs warning (device loop1): ext4_enable_quotas:7066: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  154.657292][T11192] EXT4-fs (loop1): mount failed
[  154.725669][T11205] loop1: detected capacity change from 0 to 4096
[  154.782402][T11212] loop4: detected capacity change from 0 to 1764
[  154.905150][T11224] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  154.946501][T11227] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2763'.
[  155.401479][T11255] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  155.445780][T11257] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2774'.
[  155.461039][T11261] loop0: detected capacity change from 0 to 128
[  155.627030][T11274] loop4: detected capacity change from 0 to 1024
[  155.633979][T11274] EXT4-fs: Ignoring removed orlov option
[  155.639730][T11274] EXT4-fs: Ignoring removed nomblk_io_submit option
[  155.714881][T11284] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  155.745274][T11286] loop4: detected capacity change from 0 to 736
[  155.803532][T11292] loop4: detected capacity change from 0 to 512
[  155.821783][T11292] ext4 filesystem being mounted at /140/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  155.840727][T11292] loop4: detected capacity change from 0 to 736
[  155.926587][T11306] FAULT_INJECTION: forcing a failure.
[  155.926587][T11306] name failslab, interval 1, probability 0, space 0, times 0
[  155.939428][T11306] CPU: 1 UID: 0 PID: 11306 Comm: syz.2.2792 Not tainted 6.11.0-rc7-syzkaller-00093-gfdf042df0463 #0
[  155.950314][T11306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  155.960508][T11306] Call Trace:
[  155.963806][T11306]  <TASK>
[  155.966775][T11306]  dump_stack_lvl+0xf2/0x150
[  155.971392][T11306]  dump_stack+0x15/0x20
[  155.975685][T11306]  should_fail_ex+0x229/0x230
[  155.980471][T11306]  ? call_usermodehelper_setup+0x72/0x190
[  155.986294][T11306]  should_failslab+0x8f/0xb0
[  155.990957][T11306]  __kmalloc_cache_noprof+0x4b/0x2a0
[  155.996411][T11306]  call_usermodehelper_setup+0x72/0x190
[  156.002018][T11306]  ? __pfx_free_modprobe_argv+0x10/0x10
[  156.007600][T11306]  __request_module+0x25a/0x3e0
[  156.012498][T11306]  ? strcmp+0x21/0x50
[  156.016575][T11306]  ? crypto_alg_mod_lookup+0x84/0x4f0
[  156.022014][T11306]  crypto_alg_mod_lookup+0xa1/0x4f0
[  156.027372][T11306]  crypto_alloc_tfm_node+0xaa/0x250
[  156.032649][T11306]  crypto_alloc_aead+0x2f/0x40
[  156.037462][T11306]  tls_set_sw_offload+0x57f/0x810
[  156.042594][T11306]  tls_setsockopt+0x8f5/0xcb0
[  156.047320][T11306]  sock_common_setsockopt+0x64/0x80
[  156.052599][T11306]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  156.058656][T11306]  __sys_setsockopt+0x1d8/0x250
[  156.063570][T11306]  __x64_sys_setsockopt+0x66/0x80
[  156.068610][T11306]  x64_sys_call+0x278d/0x2d60
[  156.073314][T11306]  do_syscall_64+0xc9/0x1c0
[  156.077846][T11306]  ? clear_bhb_loop+0x55/0xb0
[  156.082577][T11306]  ? clear_bhb_loop+0x55/0xb0
[  156.087274][T11306]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.093212][T11306] RIP: 0033:0x7fcf23e9def9
[  156.097657][T11306] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  156.117383][T11306] RSP: 002b:00007fcf22b17038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  156.125984][T11306] RAX: ffffffffffffffda RBX: 00007fcf24055f80 RCX: 00007fcf23e9def9
[  156.134050][T11306] RDX: 0000000000000002 RSI: 000000000000011a RDI: 0000000000000004
[  156.142145][T11306] RBP: 00007fcf22b17090 R08: 0000000000000028 R09: 0000000000000000
[  156.150161][T11306] R10: 0000000020000400 R11: 0000000000000246 R12: 0000000000000001
[  156.158255][T11306] R13: 0000000000000000 R14: 00007fcf24055f80 R15: 00007ffd523cccd8
[  156.166367][T11306]  </TASK>
[  156.205577][T11317] loop4: detected capacity change from 0 to 1024
[  156.213104][T11317] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  156.223013][T11317] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  156.232975][T11317] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  156.243927][T11317] EXT4-fs error (device loop4): ext4_get_journal_inode:5740: inode #5: comm syz.4.2795: unexpected bad inode w/o EXT4_IGET_BAD
[  156.257539][T11317] EXT4-fs (loop4): no journal found
[  156.262815][T11317] EXT4-fs (loop4): can't get journal size
[  156.267995][T11323] netlink: 208 bytes leftover after parsing attributes in process `syz.1.2797'.
[  156.289090][T11317] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2795: bg 0: block 32: padding at end of block bitmap is not set
[  156.335813][T11333] loop1: detected capacity change from 0 to 512
[  156.372967][T11333] ext4 filesystem being mounted at /80/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  156.393493][T11333] loop1: detected capacity change from 0 to 736
[  156.400622][ T8192] ==================================================================
[  156.408743][ T8192] BUG: KCSAN: data-race in __filemap_add_folio / nr_blockdev_pages
[  156.416679][ T8192] 
[  156.419007][ T8192] read-write to 0xffff888100630bb0 of 8 bytes by task 11333 on cpu 1:
[  156.427229][ T8192]  __filemap_add_folio+0x439/0x710
[  156.432363][ T8192]  filemap_add_folio+0x9c/0x1b0
[  156.437236][ T8192]  __filemap_get_folio+0x2f1/0x5b0
[  156.442376][ T8192]  bdev_getblk+0x173/0x3b0
[  156.446902][ T8192]  __bread_gfp+0x52/0x280
[  156.451324][ T8192]  isofs_fill_super+0x3db/0x1290
[  156.456278][ T8192]  get_tree_bdev+0x256/0x2e0
[  156.460969][ T8192]  isofs_get_tree+0x1c/0x30
[  156.465495][ T8192]  vfs_get_tree+0x56/0x1e0
[  156.470014][ T8192]  do_new_mount+0x227/0x690
[  156.474543][ T8192]  path_mount+0x49b/0xb30
[  156.478889][ T8192]  __se_sys_mount+0x27c/0x2d0
[  156.483659][ T8192]  __x64_sys_mount+0x67/0x80
[  156.488276][ T8192]  x64_sys_call+0x203e/0x2d60
[  156.492967][ T8192]  do_syscall_64+0xc9/0x1c0
[  156.497475][ T8192]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.503389][ T8192] 
[  156.505712][ T8192] read to 0xffff888100630bb0 of 8 bytes by task 8192 on cpu 0:
[  156.513268][ T8192]  nr_blockdev_pages+0x7c/0xd0
[  156.518067][ T8192]  si_meminfo+0x87/0xd0
[  156.522270][ T8192]  update_defense_level+0x49/0x5b0
[  156.527402][ T8192]  defense_work_handler+0x1f/0x80
[  156.532437][ T8192]  process_scheduled_works+0x483/0x9a0
[  156.537915][ T8192]  worker_thread+0x51d/0x6f0
[  156.542697][ T8192]  kthread+0x1d1/0x210
[  156.546779][ T8192]  ret_from_fork+0x4b/0x60
[  156.551225][ T8192]  ret_from_fork_asm+0x1a/0x30
[  156.556023][ T8192] 
[  156.558346][ T8192] value changed: 0x0000000000000001 -> 0x0000000000000002
[  156.565452][ T8192] 
[  156.567773][ T8192] Reported by Kernel Concurrency Sanitizer on:
[  156.573931][ T8192] CPU: 0 UID: 0 PID: 8192 Comm: kworker/0:12 Not tainted 6.11.0-rc7-syzkaller-00093-gfdf042df0463 #0
[  156.584896][ T8192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  156.594976][ T8192] Workqueue: events_long defense_work_handler
[  156.601068][ T8192] ==================================================================