last executing test programs:

4.04003806s ago: executing program 0 (id=2617):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xf, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES64=0x0, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = syz_open_dev$loop(0x0, 0x75f, 0xa382)
sendfile(r1, r1, 0x0, 0x24002de8)
msgrcv(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x1000)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000040)='9p_protocol_dump\x00', r2}, 0x10)
pipe2$9p(&(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000a40)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@version_u}]}})
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
msgsnd(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="030000000000000007dbe075b9f97dd2fb0e14b53288df106b358fadcd9ad2c7b4d72e23aacca2167cd31a8557"], 0xf1, 0x800)

3.168695195s ago: executing program 0 (id=2624):
r0 = socket$igmp(0x2, 0x3, 0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa20000000000000702d493f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000180)={0x0, r2}, 0x8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
mmap(&(0x7f0000000000/0x400000)=nil, 0x1400000, 0x0, 0xc3072, 0xffffffffffffffff, 0x0)
setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x30, &(0x7f0000000040)={0x0, {{0x2, 0x4e24, @remote}}}, 0x90)

3.108774236s ago: executing program 0 (id=2625):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a34000000000a4f1c0000000000000000020000000900010073797a300000000008000240000000020900010073797a310000000014000000110001"], 0x5c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a50000000030a010800000000000000000200000008000b40000000000900010073797a31000000002800048008000240148bc9a008000140000000001400030064766d72703000000000000000000000140000001100010074000000000000000100000a"], 0x78}}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000500)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, @void, @value}, 0x94)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r2, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r2, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r2, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x700, 0x0, 0xfffffffffffffd25)
setsockopt$inet_tcp_int(r2, 0x6, 0x2, &(0x7f0000000000)=0x6, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x5}, 0x18)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="020900000700000000000000000000000500", @ANYRES32], 0x38}}, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
r5 = dup2(r4, 0xffffffffffffffff)
write$P9_RLERRORu(r5, &(0x7f0000000240)=ANY=[@ANYBLOB="1a0000000701000d007368613232342d61326d363400ffffffff"], 0x1a)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x2000)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f0000000300)={0xfffffffb, 0x2, 0x1, 'queue0\x00'})
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r6, 0x404c534a, &(0x7f0000000400)={0x0, 0x1f000000})
setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000f40)={'filter\x00', 0x10, 0x4, 0x3f0, 0x110, 0x0, 0x0, 0x308, 0x308, 0x308, 0x4, 0x0, {[{{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@random="e5fce0c960bc", @private=0xa010102, @dev={0xac, 0x14, 0x14, 0x1e}, 0xf, 0xffffffff}}}, {{@uncond, 0xc0, 0xe8}, @unspec=@CLASSIFY={0x28, 'CLASSIFY\x00', 0x0, {0x2}}}, {{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@remote, @broadcast, @loopback, 0x1, 0x1}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x440)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="640000000206050000000000000000000000000015000300686173683a69702c706f72742c6e6574000000000900020073797a30000000000500040000400000050005000a0000000500010006000000140007800800064000000000080013"], 0x64}}, 0x24002800)
r7 = getuid()
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000140)={&(0x7f00000009c0)=@getpolicy={0x30c, 0x15, 0x200, 0x70bd25, 0x25dfdbfc, {{@in=@multicast1, @in=@local, 0x4e22, 0x0, 0x4e24, 0x0, 0x0, 0xa0, 0xa0, 0x4b, 0x0, r7}, 0x0, 0x1}, [@extra_flags={0x8, 0x18, 0x7}, @tmpl={0x84, 0x5, [{{@in=@private=0xa010101, 0x4d3, 0x33}, 0xa, @in6=@remote, 0x3503, 0x0, 0x3, 0x2, 0x6, 0x8, 0xb}, {{@in6=@private0, 0x4d3, 0x2b}, 0x2, @in=@remote, 0x34ff, 0x3, 0x2, 0x3, 0x7, 0x400, 0x9}]}, @tmpl={0xc4, 0x5, [{{@in=@dev={0xac, 0x14, 0x14, 0x2c}, 0x4d3, 0x6c}, 0x8, @in6=@mcast1, 0x3505, 0x2, 0x2, 0xf, 0xf, 0x8, 0x10}, {{@in6=@loopback, 0x4d2, 0xff}, 0xa, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x3504, 0x0, 0x2, 0x2, 0x8, 0x7, 0x5}, {{@in=@remote, 0x4d5, 0x6c}, 0xa, @in6=@empty, 0x0, 0x1, 0x1, 0x4, 0xffff, 0xae38, 0x7dc75102}]}, @XFRMA_SET_MARK={0x8, 0x1d, 0x5}, @extra_flags={0x8, 0x18, 0x4}, @XFRMA_IF_ID={0x8, 0x1f, 0x1}, @proto={0x5, 0x19, 0xff}, @algo_auth_trunc={0x149, 0x14, {{'sha224-arm64\x00'}, 0x7e8, 0xc0, "af19bfd791375f9c7d66f84a2ae049933393cfd5fae3068ecde79a4c31a63e919c3033020eecbb6a5282c58b34eb54018f1e6b70ff79b7e6aac59057f0b719df93632cc0bbfdd582ce33f960f6421b2e83eb1de3dbbbffc5477b2f72a82d671fd23d7c334139465555ceb04fae7b1878bdaca77e1f031c74b5c9f38d22db0b1be953ad2630ff00ab4c9b1501f1cced4d33b52b33bee1e25361e551c1329ebd389cb1c5f735d788ff45a491313af5f3935d151570cefe8ba838e12a48b226553bb5337b4ed20d3a69e53db1efb8b7a3034228f198d1a04a7c089f07732663f01e2c5093d4f4b092c0c0eb5d383fd33abd40bf03f913c61da75419db55a2"}}]}, 0x30c}}, 0xc0)

2.249513471s ago: executing program 2 (id=2637):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x58, &(0x7f0000000b40)={[{@inode_readahead_blks}, {@grpquota}, {@nomblk_io_submit}, {@stripe={'stripe', 0x3d, 0x4ffff}}, {@norecovery}, {@errors_remount}, {@grpquota}], [{@fscontext={'fscontext', 0x3d, 'sysadm_u'}}, {@uid_lt}]}, 0xfe, 0x799, &(0x7f00000001c0)="$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")
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
unlinkat(r0, &(0x7f0000000c40)='./file0\x00', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0500000004000000df7f00000100000000000000d05f4e3d21f911ce6173952467643b1d49e0e6d515cf3bfb3bc5d2b2ff8f077dae8924a1a791a91538cbc75ffbdcbaa1645d430a92a97d51864108628294052271ee5942d6e028a829d46ed1b57ff7b3ff528d473993bc9bdb35dacc93faa4a9c6f6f91441159de66cde5dbfe7eea1ebd82a644be15c5a5ad7e0ea08313bca607d36df1ba11a2606458442eac352d7ac9f193810c41706768e4c555451823ed9950b3e293f7fea75dac00ffe61ae600a1b0f88d46199aa082bd3bc0363ab69c9126348574130d36e1d4f55aa4d89d0f816", @ANYRES32, @ANYBLOB='\x00'/15, @ANYRES32=0x0, @ANYRES16=r0, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x3, &(0x7f00000001c0)=ANY=[@ANYBLOB="398b842a33f8510fd4c000"/23], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
socket$packet(0x11, 0xa, 0x300)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="259a53f271a76d2688ca4c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x38, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44000000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10)
syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "4dd308", 0x14, 0x6, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @local, {[], {{0x0, 0x4001, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x10, 0x2}}}}}}}, 0x0)
bind$inet(r1, &(0x7f00000000c0)={0x2, 0x4e20, @broadcast}, 0x10)
sendto$inet(r1, &(0x7f0000000140), 0xffffffffffffff58, 0x20008005, &(0x7f0000000100)={0x2, 0x4e20}, 0x10)
shutdown(r1, 0x1)
recvfrom(r1, &(0x7f0000000480)=""/110, 0x28000, 0x734, 0x0, 0xfffffffffffffecb)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e20, @empty}], 0x10)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x4c, &(0x7f00000003c0)=[@in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x2c}}, @in={0x2, 0x4e20, @loopback}, @in={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}, @in6={0xa, 0x4e20, 0x1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x200000}]}, &(0x7f0000000100)=0x10)
recvmmsg(r1, &(0x7f00000052c0)=[{{0x0, 0x0, 0x0}, 0x9c}], 0x1, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00'}, 0x10)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000001c0)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@quota}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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")
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000c00)={r3, 0x58, &(0x7f0000000ac0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000cc0)=ANY=[@ANYRES64=r3, @ANYRES32, @ANYBLOB="1200000000000003b702040000000000850000ccdd9decc5d8b000a800000018110200", @ANYRESHEX=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r6, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000140)=[{0x6, 0x0, 0xe, 0x7fff0000}]})
close_range(r7, 0xffffffffffffffff, 0x0)

2.158172343s ago: executing program 0 (id=2639):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, 0x0, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a50000000030a010800000000000000000200000008000b40000000000900010073797a31000000002800048008000240148bc9a008000140000000001400030064766d72703000000000000000000000140000001100010074000000000000000100000a"], 0x78}}, 0x0)
sendmsg$nl_xfrm(r0, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000500)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, @void, @value}, 0x94)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r3, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r3, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x700, 0x0, 0xfffffffffffffd25)
setsockopt$inet_tcp_int(r3, 0x6, 0x2, &(0x7f0000000000)=0x6, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r2, 0x0, 0x5}, 0x18)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="020900000700000000000000000000000500", @ANYRES32], 0x38}}, 0x0)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
r6 = dup2(r5, 0xffffffffffffffff)
write$P9_RLERRORu(r6, &(0x7f0000000240)=ANY=[@ANYBLOB="1a0000000701000d007368613232342d61326d363400ffffffff"], 0x1a)
r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x2000)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r7, 0xc08c5332, &(0x7f0000000300)={0xfffffffb, 0x2, 0x1, 'queue0\x00'})
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r7, 0x404c534a, &(0x7f0000000400)={0x0, 0x1f000000})
setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000f40)={'filter\x00', 0x10, 0x4, 0x3f0, 0x110, 0x0, 0x0, 0x308, 0x308, 0x308, 0x4, 0x0, {[{{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@random="e5fce0c960bc", @private=0xa010102, @dev={0xac, 0x14, 0x14, 0x1e}, 0xf, 0xffffffff}}}, {{@uncond, 0xc0, 0xe8}, @unspec=@CLASSIFY={0x28, 'CLASSIFY\x00', 0x0, {0x2}}}, {{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@remote, @broadcast, @loopback, 0x1, 0x1}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x440)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="640000000206050000000000000000000000000015000300686173683a69702c706f72742c6e6574000000000900020073797a30000000000500040000400000050005000a0000000500010006000000140007800800064000000000080013"], 0x64}}, 0x24002800)
r8 = getuid()
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000140)={&(0x7f00000009c0)=@getpolicy={0x30c, 0x15, 0x200, 0x70bd25, 0x25dfdbfc, {{@in=@multicast1, @in=@local, 0x4e22, 0x0, 0x4e24, 0x0, 0x0, 0xa0, 0xa0, 0x4b, 0x0, r8}, 0x0, 0x1}, [@extra_flags={0x8, 0x18, 0x7}, @tmpl={0x84, 0x5, [{{@in=@private=0xa010101, 0x4d3, 0x33}, 0xa, @in6=@remote, 0x3503, 0x0, 0x3, 0x2, 0x6, 0x8, 0xb}, {{@in6=@private0, 0x4d3, 0x2b}, 0x2, @in=@remote, 0x34ff, 0x3, 0x2, 0x3, 0x7, 0x400, 0x9}]}, @tmpl={0xc4, 0x5, [{{@in=@dev={0xac, 0x14, 0x14, 0x2c}, 0x4d3, 0x6c}, 0x8, @in6=@mcast1, 0x3505, 0x2, 0x2, 0xf, 0xf, 0x8, 0x10}, {{@in6=@loopback, 0x4d2, 0xff}, 0xa, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x3504, 0x0, 0x2, 0x2, 0x8, 0x7, 0x5}, {{@in=@remote, 0x4d5, 0x6c}, 0xa, @in6=@empty, 0x0, 0x1, 0x1, 0x4, 0xffff, 0xae38, 0x7dc75102}]}, @XFRMA_SET_MARK={0x8, 0x1d, 0x5}, @extra_flags={0x8, 0x18, 0x4}, @XFRMA_IF_ID={0x8, 0x1f, 0x1}, @proto={0x5, 0x19, 0xff}, @algo_auth_trunc={0x149, 0x14, {{'sha224-arm64\x00'}, 0x7e8, 0xc0, "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"}}]}, 0x30c}}, 0xc0)

1.964757026s ago: executing program 2 (id=2640):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x800040, &(0x7f0000000340), 0x1, 0x597, &(0x7f0000000b80)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000072000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000200000000000000001809"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x61, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
r2 = fsopen(&(0x7f0000000300)='tracefs\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000180)='rootcontext', &(0x7f0000000040)='E\xe1\x85\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
msgrcv(0x0, 0x0, 0x0, 0x3, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000180081064e81f782db44b904021d080006007c09e8fe55a10a0015400100142603600e120800060000000401a80016000800014003e00200036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e00000000000000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
pwrite64(r0, &(0x7f0000000140)='Q', 0x1, 0x200980)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
sendfile(r4, r4, 0x0, 0xe0000000)
rename(&(0x7f0000000780)='./file1\x00', &(0x7f00000002c0)='./file0/file0\x00')

1.854626808s ago: executing program 0 (id=2642):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x11}, @NFTA_CT_SREG={0x8, 0x4, 0x1, 0x0, 0x2}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x78}}, 0x0)

1.854147668s ago: executing program 4 (id=2643):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001540)=ANY=[@ANYBLOB="280000001e00010000000000000000"], 0x28}}, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0xa82, 0x0)
write$cgroup_int(r1, &(0x7f0000000040)=0x1000903, 0x12)
setsockopt$MRT_ADD_VIF(r1, 0x0, 0xca, &(0x7f0000000180)={0x1, 0x1, 0x4, 0x80000000, @vifc_lcl_ifindex, @local}, 0x10)
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3af, 0x4}, 0x100000, 0x0, 0x0, 0x3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
syz_clone(0x4021400, 0x0, 0x9000, 0x0, 0x0, 0x0)
r2 = socket$phonet_pipe(0x23, 0x5, 0x2)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000740)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x9, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES32=r1, @ANYBLOB='\x00\x00\x00\x00=v\x00\x00'], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x14, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x20400, @void, @value}, 0x94)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000c80)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0x14, 0x2, [@TCA_HHF_RESET_TIMEOUT={0x8, 0x4, 0xffffff40}, @TCA_HHF_ADMIT_BYTES={0x8}]}}]}, 0x40}}, 0x0)
connect$phonet_pipe(r2, &(0x7f0000000040)={0x23, 0x0, 0x0, 0x1}, 0x10)
openat$selinux_member(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000020000000000000000180900", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x48)
r5 = socket$kcm(0x10, 0x2, 0x0)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r5, 0x8982, &(0x7f0000000400)={0x0, 'batadv0\x00', {0x5}})
sendmsg$kcm(r5, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73f72cc9f0ba1f848140000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)

1.800243899s ago: executing program 0 (id=2644):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bf"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = gettid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setsig(r2, 0xa, 0x12)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000800000000000000000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r6}, 0x10)
poll(&(0x7f0000000300)=[{r3, 0x400}], 0x1, 0xffffffffffbffff8)
dup2(r2, r3)
fcntl$setown(r2, 0x8, r1)
tkill(r1, 0x13)
mount$cgroup(0x0, &(0x7f0000000040)='.\x00', 0x0, 0x8000, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r7 = socket$key(0xf, 0x3, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r8}, 0x10)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x10840, &(0x7f0000000100)={[{@iocharset={'iocharset', 0x3d, 'utf8'}}, {@shortname_winnt}, {@shortname_win95}, {@uni_xlate}, {@fat=@showexec}, {@shortname_winnt}, {@shortname_win95}, {@numtail}, {@rodir}, {@numtail}, {@shortname_mixed}, {@fat=@nfs_nostale_ro}]}, 0x1, 0x26c, &(0x7f0000000340)="$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")
r9 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
getdents64(r9, &(0x7f0000000f80)=""/4096, 0x1000)
sendmsg$key(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="0213db6aa17c1d00000a00000003000000fddbdf25"], 0x10}}, 0x40040)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000015c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

1.72373271s ago: executing program 2 (id=2647):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
syz_usbip_server_init(0x5)

1.668433061s ago: executing program 4 (id=2649):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000006c59850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = gettid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$int_in(r2, 0x5452, &(0x7f0000b28000)=0x3)
fcntl$setsig(r2, 0xa, 0x12)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000800000000000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r6}, 0x10)
poll(&(0x7f0000000300)=[{r3, 0x400}], 0x1, 0xffffffffffbffff8)
dup2(r2, r3)
fcntl$setown(r2, 0x8, r1)
tkill(r1, 0x13)
mount$cgroup(0x0, &(0x7f0000000040)='.\x00', 0x0, 0x8000, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r7 = socket$key(0xf, 0x3, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r8}, 0x10)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x10840, &(0x7f0000000100)={[{@iocharset={'iocharset', 0x3d, 'utf8'}}, {@shortname_winnt}, {@shortname_win95}, {@uni_xlate}, {@fat=@showexec}, {@shortname_winnt}, {@shortname_win95}, {@numtail}, {@rodir}, {@numtail}, {@shortname_mixed}, {@fat=@nfs_nostale_ro}]}, 0x1, 0x26c, &(0x7f0000000340)="$eJzs3U9rU1kYB+A3bTpJC0OyGCgzDMwdZjOr0HaYfcrQgWECipKFriw2RWlqoYWCLtruit9Bv4Iu3QouxK1fQASpghvrqgshEm//JDWJjZpG7PNs+nLu++Ock17upYueXPl1eWlhZW1xd3cn8vlMZMtRjr1MFGMkRiO1FQDA92Sv0Yg3jdSw1wIAnA7vfwA4e3q9/zNbh2PnT39lAMCgfNHf/yMDWRIAMGAXL13+f7ZSmbuQJPmI5e316no1/Zlen12M61GPWkxFId5FNA6l9b//VeamkqaXxcgvb46k+c316mh7fjoKUeycn05SUW3mDvJjMbGffzYRtZiJQvzUOT/TMf9D/PlHy/ylKMTTq7ES9ViIZjbN5yJiYzpJ/jlXOZbPfegDAAAAAAAAAAAAAAAAAAAAAIBBKCWHiu3n36Tn95RK3a6n+dbzgcZ7nQ/U2Dx2vk42fskOd+8AAAAAAAAAAAAAAAAAAADwrVi7eWtpvl6vrfYqbjy592gnlwY+2dy7yOzP219qu2fP+Ml2caz48fcXdzpdykWu38/n84qxiGgdSfanfPjbACf9WsXjnWs//7U2+Xe3nsi2jtxubrWtp8uNlB3UB/66ENG1J9/3Ddla3D8oym8/6jm4lWqr48P+xU3eLc8/2Hj+6qSpHg+NxuggHkUAAAAAAAAAAAAAAAAAAHDmHf3T77BXAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADDc/T9//0WuWgbyXdt3hr2HgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4H0AAAD//7qXlSU=")
r9 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
getdents64(r9, &(0x7f0000000f80)=""/4096, 0x1000)
sendmsg$key(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="0213db6aa17c1d00000a00000003000000fddbdf25"], 0x10}}, 0x40040)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000015c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

1.606188322s ago: executing program 3 (id=2651):
socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000180)={'tunl0\x00', &(0x7f0000000800)={'syztnl0\x00', 0x0, 0x7, 0x1, 0xaf, 0x81, {{0x65, 0x4, 0x3, 0x7, 0x194, 0x64, 0x0, 0x6, 0x2f, 0x0, @private=0xa010101, @loopback, {[@cipso={0x86, 0x72, 0x3, [{0x6, 0x12, "bc86c7339897809fd029bb012078067b"}, {0x1, 0x6, "e5a3b2d3"}, {0x7, 0x9, "161934bc0bd3c5"}, {0x1, 0x12, "6f2ca1d74e436c80b90297cd548b6b5a"}, {0x5, 0x3, '2'}, {0x2, 0xc, "a393920110860367a67b"}, {0x2, 0x12, "92a68de965b0d1afca7360688da0c6ae"}, {0x8, 0x8, "8c0a0dc9753d"}, {0x0, 0x6, "f2922097"}, {0x6, 0xa, "cd68ff11419e5960"}]}, @timestamp_prespec={0x44, 0x34, 0x52, 0x3, 0x5, [{@initdev={0xac, 0x1e, 0x0, 0x0}, 0x5}, {@loopback, 0x2}, {@loopback, 0x8}, {@broadcast, 0x4ac}, {@loopback, 0x80d8}, {@loopback, 0xffff}]}, @timestamp_prespec={0x44, 0x24, 0x90, 0x3, 0xe, [{@dev={0xac, 0x14, 0x14, 0x28}, 0x7}, {@private=0xa010102, 0x6}, {@remote, 0xb}, {@dev={0xac, 0x14, 0x14, 0x36}, 0x5}]}, @ssrr={0x89, 0x13, 0x16, [@remote, @broadcast, @empty, @remote]}, @cipso={0x86, 0x50, 0xffffffffffffffff, [{0x2, 0xb, "b39859d78d27def977"}, {0x2, 0xb, "a5f44660677a109535"}, {0x0, 0x10, "1d72f95d777f4f3117271ca8ff6b"}, {0x2, 0x12, "0e000001000000010000000040000000"}, {0x2, 0xd, "d7c24d5f131d4440f6cd75"}, {0x1, 0x3, "f7"}, {0x7, 0x2}]}, @lsrr={0x83, 0xf, 0x46, [@remote, @loopback, @private=0xa010102]}, @rr={0x7, 0x23, 0x7c, [@multicast2, @local, @rand_addr=0x64010100, @initdev={0xac, 0x1e, 0x0, 0x0}, @local, @rand_addr=0x64010102, @local, @multicast2]}, @cipso={0x86, 0x20, 0x0, [{0x2, 0x7, "dc17a60be1"}, {0x0, 0x8, "2fb73b0c0fd4"}, {0x5, 0xb, "35a0afc1abeedc295d"}]}]}}}}})
getresuid(&(0x7f0000000380), &(0x7f00000001c0), &(0x7f0000000400)=<r0=>0x0)
quotactl$Q_QUOTAON(0xffffffff80000200, &(0x7f0000000040)=@nullb, r0, &(0x7f0000000280)='./file0\x00')
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x0, &(0x7f00000021c0)={[{@dioread_nolock}, {@minixdf}, {@nolazytime}, {}]}, 0x1, 0x783, &(0x7f0000002200)="$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")
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480), 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x10, &(0x7f0000000840)=@framed={{}, [@snprintf]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r2, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)

1.547064993s ago: executing program 4 (id=2653):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, 0x0, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a50000000030a010800000000000000000200000008000b40000000000900010073797a31000000002800048008000240148bc9a008000140000000001400030064766d72703000000000000000000000140000001100010074000000000000000100000a"], 0x78}}, 0x0)
sendmsg$nl_xfrm(r0, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000500)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, @void, @value}, 0x94)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r3, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r3, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x700, 0x0, 0xfffffffffffffd25)
setsockopt$inet_tcp_int(r3, 0x6, 0x2, &(0x7f0000000000)=0x6, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r2, 0x0, 0x5}, 0x18)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="020900000700000000000000000000000500", @ANYRES32], 0x38}}, 0x0)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
r6 = dup2(r5, 0xffffffffffffffff)
write$P9_RLERRORu(r6, &(0x7f0000000240)=ANY=[@ANYBLOB="1a0000000701000d007368613232342d61326d363400ffffffff"], 0x1a)
r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x2000)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r7, 0xc08c5332, &(0x7f0000000300)={0xfffffffb, 0x2, 0x1, 'queue0\x00'})
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r7, 0x404c534a, &(0x7f0000000400)={0x0, 0x1f000000})
setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000f40)={'filter\x00', 0x10, 0x4, 0x3f0, 0x110, 0x0, 0x0, 0x308, 0x308, 0x308, 0x4, 0x0, {[{{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@random="e5fce0c960bc", @private=0xa010102, @dev={0xac, 0x14, 0x14, 0x1e}, 0xf, 0xffffffff}}}, {{@uncond, 0xc0, 0xe8}, @unspec=@CLASSIFY={0x28, 'CLASSIFY\x00', 0x0, {0x2}}}, {{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@remote, @broadcast, @loopback, 0x1, 0x1}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x440)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="640000000206050000000000000000000000000015000300686173683a69702c706f72742c6e6574000000000900020073797a30000000000500040000400000050005000a0000000500010006000000140007800800064000000000080013"], 0x64}}, 0x24002800)
r8 = getuid()
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000140)={&(0x7f00000009c0)=@getpolicy={0x30c, 0x15, 0x200, 0x70bd25, 0x25dfdbfc, {{@in=@multicast1, @in=@local, 0x4e22, 0x0, 0x4e24, 0x0, 0x0, 0xa0, 0xa0, 0x4b, 0x0, r8}, 0x0, 0x1}, [@extra_flags={0x8, 0x18, 0x7}, @tmpl={0x84, 0x5, [{{@in=@private=0xa010101, 0x4d3, 0x33}, 0xa, @in6=@remote, 0x3503, 0x0, 0x3, 0x2, 0x6, 0x8, 0xb}, {{@in6=@private0, 0x4d3, 0x2b}, 0x2, @in=@remote, 0x34ff, 0x3, 0x2, 0x3, 0x7, 0x400, 0x9}]}, @tmpl={0xc4, 0x5, [{{@in=@dev={0xac, 0x14, 0x14, 0x2c}, 0x4d3, 0x6c}, 0x8, @in6=@mcast1, 0x3505, 0x2, 0x2, 0xf, 0xf, 0x8, 0x10}, {{@in6=@loopback, 0x4d2, 0xff}, 0xa, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x3504, 0x0, 0x2, 0x2, 0x8, 0x7, 0x5}, {{@in=@remote, 0x4d5, 0x6c}, 0xa, @in6=@empty, 0x0, 0x1, 0x1, 0x4, 0xffff, 0xae38, 0x7dc75102}]}, @XFRMA_SET_MARK={0x8, 0x1d, 0x5}, @extra_flags={0x8, 0x18, 0x4}, @XFRMA_IF_ID={0x8, 0x1f, 0x1}, @proto={0x5, 0x19, 0xff}, @algo_auth_trunc={0x149, 0x14, {{'sha224-arm64\x00'}, 0x7e8, 0xc0, "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"}}]}, 0x30c}}, 0xc0)

1.121562451s ago: executing program 3 (id=2654):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x11}, @NFTA_CT_SREG={0x8, 0x4, 0x1, 0x0, 0x2}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x78}}, 0x0)

1.009747342s ago: executing program 2 (id=2655):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d00000007"], &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb8af, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000600)='kfree\x00', r0}, 0x18)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000540), 0x84)
perf_event_open(&(0x7f00000004c0)={0x8, 0x80, 0x0, 0xf, 0x0, 0x0, 0x82, 0x200000000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000080), 0x9}, 0x18204, 0x0, 0x3, 0x0, 0x0, 0x5338c7af, 0x0, 0x0, 0x1, 0x0, 0x2}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

930.486814ms ago: executing program 3 (id=2656):
r0 = socket$igmp(0x2, 0x3, 0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa20000000000000702d493f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
mmap(&(0x7f0000000000/0x400000)=nil, 0x1400000, 0x0, 0xc3072, 0xffffffffffffffff, 0x0)
setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x30, &(0x7f0000000040)={0x0, {{0x2, 0x4e24, @remote}}}, 0x90)

899.876884ms ago: executing program 3 (id=2657):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000080)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x200, 0xfffffffd}}, 0x10)
socket$tipc(0x1e, 0x2, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000007000000000000000000008500000023"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
fchmod(0xffffffffffffffff, 0x180)
r2 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r2, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x3, 0x4}}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00'}, 0x10)
bind$tipc(r2, &(0x7f0000000140)=@name={0x1e, 0x2, 0x0, {{0x42, 0x2}}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x1}, 0x10)

899.442575ms ago: executing program 3 (id=2658):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x800040, &(0x7f0000000340), 0x1, 0x597, &(0x7f0000000b80)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000072000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000200000000000000001809"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x61, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
r2 = fsopen(&(0x7f0000000300)='tracefs\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000180)='rootcontext', &(0x7f0000000040)='E\xe1\x85\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
msgrcv(0x0, 0x0, 0x0, 0x3, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000180081064e81f782db44b904021d080006007c09e8fe55a10a0015400100142603600e120800060000000401a80016000800014003e00200036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e00000000000000001801", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
pwrite64(r0, &(0x7f0000000140)='Q', 0x1, 0x200980)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
sendfile(r4, r4, 0x0, 0xe0000000)
rename(&(0x7f0000000780)='./file1\x00', &(0x7f00000002c0)='./file0/file0\x00')

884.333705ms ago: executing program 2 (id=2659):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={0x0, r0}, 0x18)
openat$cgroup_subtree(0xffffffffffffffff, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff00000000000000", @ANYRES32], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
socket$igmp(0x2, 0x3, 0x2)
syz_read_part_table(0x635, &(0x7f0000000000)="$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")
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r5}, 0x10)

661.517028ms ago: executing program 3 (id=2661):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xf, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES64=0x0, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = syz_open_dev$loop(0x0, 0x75f, 0xa382)
sendfile(r1, r1, 0x0, 0x24002de8)
msgrcv(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x1000)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000040)='9p_protocol_dump\x00', r2}, 0x10)
pipe2$9p(&(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000a40)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@version_u}]}})
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
msgsnd(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="030000000000000007dbe075b9f97dd2fb0e14b53288df106b358fadcd9ad2c7b4d72e23aacca2167cd31a8557"], 0xf1, 0x800)

581.19602ms ago: executing program 4 (id=2662):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000200b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000080)='mm_page_alloc\x00', r1}, 0x10)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000540)=@raw={'raw\x00', 0x8, 0x3, 0x2a8, 0x0, 0x11, 0x148, 0x0, 0x0, 0x440, 0x2a8, 0x2a8, 0x440, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0xc8, 0x110, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'ip_vti0\x00', {0x0, 0x0, 0x3f, 0x0, 0x88000000, 0x3, 0x7}}}]}, @unspec=@CT0={0x48}}, {{@ip={@multicast2, @empty, 0x0, 0x0, 'vlan0\x00', 'netdevsim0\x00'}, 0x0, 0xd0, 0x100, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@unspec=@quota={{0x38}, {0x0, 0x0, 0x81}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x308)

580.60849ms ago: executing program 4 (id=2663):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000006c59850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = gettid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$int_in(r2, 0x5452, &(0x7f0000b28000)=0x3)
fcntl$setsig(r2, 0xa, 0x12)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r6}, 0x10)
poll(&(0x7f0000000300)=[{r3, 0x400}], 0x1, 0xffffffffffbffff8)
dup2(r2, r3)
fcntl$setown(r2, 0x8, r1)
tkill(r1, 0x13)
mount$cgroup(0x0, &(0x7f0000000040)='.\x00', 0x0, 0x8000, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r7 = socket$key(0xf, 0x3, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r8}, 0x10)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x10840, &(0x7f0000000100)={[{@iocharset={'iocharset', 0x3d, 'utf8'}}, {@shortname_winnt}, {@shortname_win95}, {@uni_xlate}, {@fat=@showexec}, {@shortname_winnt}, {@shortname_win95}, {@numtail}, {@rodir}, {@numtail}, {@shortname_mixed}, {@fat=@nfs_nostale_ro}]}, 0x1, 0x26c, &(0x7f0000000340)="$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")
r9 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
getdents64(r9, &(0x7f0000000f80)=""/4096, 0x1000)
sendmsg$key(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="0213db6aa17c1d00000a00000003000000fddbdf25"], 0x10}}, 0x40040)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000015c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

452.269782ms ago: executing program 1 (id=2664):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x58, &(0x7f0000000b40)={[{@inode_readahead_blks}, {@grpquota}, {@nomblk_io_submit}, {@stripe={'stripe', 0x3d, 0x4ffff}}, {@norecovery}, {@errors_remount}, {@grpquota}], [{@fscontext={'fscontext', 0x3d, 'sysadm_u'}}, {@uid_lt}]}, 0xfe, 0x799, &(0x7f00000001c0)="$eJzs3c1rHGUYAPBnNp+m1UYQbL00Jy2UbtoaWwWh8SSChYKebcNmG2I22ZLdlCbkYBFBEEGLB0Evnv2oN28ievZv8CIiLVXTYsWDrMx+JJtukm7TTdI2vx9M8r4zs/PMs7Pzvu/uDLsB7FpD6Z9MxIGI+CiJ2Fefn0RET7XUHTFaW+/20mIunZKoVN74M6muc2tpMRdNj0ntqVf2R8SP70UczrTGLc0vTI0VCvnZen24PH1huDS/cGRyemwiP5GfOXFsZOT4yRdOnuhcrn//vLD3+sevPvfN6L/vPn31w5+SGI299WXNeXTKUAzVn5Oe9Cms+b7TUR4MyU7vAJuSnppdtbM8DsS+6KqWAIBHWdr/VwCAXSbR/wPALtP4HODW0mKuMe3sJxLb68YrEdFfy79xfbO2pLt+za6/eh104Fay6spIEhGDHYi/PyI+/+6tr9Iptug6JMBa3rkcEecGh1rb/2TlnoVNOtrGOkN31LV/sH1+SMc/L641/sssj39ijfFP3xrn7mYMRfTWN1fVev5nrq0K2nCqA8Hr47+Xa/e2pYk2jf+Wb1ob7KrXHk8rByNispBP27YnIuJQ9PSdnyzkj20Q49DN/26ut2yoafz315W3v0zjp/9X1shc6+5b/ZjxsfLY/eTc7MbliGe6V+7tu93S/jeOeuv498xGGz64Unztpfc/W2+1NP8038bUmv/WqnwR8WysnX9DsuH9icPp4T9a+7t2jG9//XRgvfjNxz+d0viN9wLbIT3+AxvnP5g0369Z6mz8u+e//Ppf3qH09d+bvFkt99bnXRorl2ePRfQmr7fOP76ytUa9sX6af23Di72xKv+V9i9Zo/1L3xOeazPH7ut/fL35/LdWmv/4PR3/ey9cvT3VtV789o7/SLV0qD6nnfav3R28n+cOAAAAAAAAAAAAAAAAAAAAAAAAANqViYi9kWSyy+VMJput/Yb3UzGQKRRL5cPni3Mz41H9rezB6Mk0vupyX62eNL7/dLCpfvyO+vMR8WREfNL3WLWezRUL4zudPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADU7Vnn9/9Tv/ft9N4BAFumv2VOpVKpNNdv5jdcDAA8dFr7fwDgUaf/B4DdR/8PALuP/h8Adh/9PwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFvszOnT6VT5Z2kxl9bHL87PTRUvHhnPl6ay03O5bK44eyE7USxOFPLZXHH6btsrFIsXRmJm7tJwOV8qD5fmF85OF+dmymcnp8dOxdl8z7ZkBQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD3pjS/MDVWKORnH4nCBxHxAOyGQmcLvx35Zf9G61y5y8t4tI1Y/fUT4gFJeecLO9wwAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwk/g8AAP//Ez0kyA==")
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
unlinkat(r0, &(0x7f0000000c40)='./file0\x00', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0500000004000000df7f00000100000000000000d05f4e3d21f911ce6173952467643b1d49e0e6d515cf3bfb3bc5d2b2ff8f077dae8924a1a791a91538cbc75ffbdcbaa1645d430a92a97d51864108628294052271ee5942d6e028a829d46ed1b57ff7b3ff528d473993bc9bdb35dacc93faa4a9c6f6f91441159de66cde5dbfe7eea1ebd82a644be15c5a5ad7e0ea08313bca607d36df1ba11a2606458442eac352d7ac9f193810c41706768e4c555451823ed9950b3e293f7fea75dac00ffe61ae600a1b0f88d46199aa082bd3bc0363ab69c9126348574130d36e1d4f55aa4d89d0f816", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES16=r0, @ANYBLOB='\x00'/25], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x3, &(0x7f00000001c0)=ANY=[@ANYBLOB="398b842a33f8510fd4c000"/23], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
socket$packet(0x11, 0xa, 0x300)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="259a53f271a76d2688ca4c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x38, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44000000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10)
syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "4dd308", 0x14, 0x6, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @local, {[], {{0x0, 0x4001, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x10, 0x2}}}}}}}, 0x0)
bind$inet(r1, 0x0, 0x0)
sendto$inet(r1, &(0x7f0000000140), 0xffffffffffffff58, 0x20008005, &(0x7f0000000100)={0x2, 0x4e20}, 0x10)
shutdown(r1, 0x1)
recvfrom(r1, &(0x7f0000000480)=""/110, 0x28000, 0x734, 0x0, 0xfffffffffffffecb)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e20, @empty}], 0x10)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x4c, &(0x7f00000003c0)=[@in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x2c}}, @in={0x2, 0x4e20, @loopback}, @in={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}, @in6={0xa, 0x4e20, 0x1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x200000}]}, &(0x7f0000000100)=0x10)
recvmmsg(r1, &(0x7f00000052c0)=[{{0x0, 0x0, 0x0}, 0x9c}], 0x1, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00'}, 0x10)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000001c0)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@quota}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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")
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000c00)={r3, 0x58, &(0x7f0000000ac0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000cc0)=ANY=[@ANYRES64=r3, @ANYRES32, @ANYBLOB="1200000000000003b702040000000000850000ccdd9decc5d8b000a800000018110200", @ANYRESHEX=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r6, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000140)=[{0x6, 0x0, 0xe, 0x7fff0000}]})
close_range(r7, 0xffffffffffffffff, 0x0)

450.891632ms ago: executing program 4 (id=2665):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
syz_usbip_server_init(0x5)

245.176685ms ago: executing program 1 (id=2666):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x11}, @NFTA_CT_SREG={0x8, 0x4, 0x1, 0x0, 0x2}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x78}}, 0x0)

219.598996ms ago: executing program 1 (id=2667):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='dctcp\x00', 0x6)
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000000)=0x4, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ed, 0x0, 0x0)

193.267266ms ago: executing program 1 (id=2668):
r0 = socket$igmp(0x2, 0x3, 0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa20000000000000702d493f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
mmap(&(0x7f0000000000/0x400000)=nil, 0x1400000, 0x0, 0xc3072, 0xffffffffffffffff, 0x0)
setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x30, &(0x7f0000000040)={0x0, {{0x2, 0x4e24, @remote}}}, 0x90)

192.986106ms ago: executing program 1 (id=2669):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d0000000700000000"], &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb8af, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000600)='kfree\x00', r0}, 0x18)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000540), 0x84)
perf_event_open(&(0x7f00000004c0)={0x8, 0x80, 0x0, 0xf, 0x0, 0x0, 0x82, 0x200000000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000080), 0x9}, 0x18204, 0x0, 0x3, 0x0, 0x0, 0x5338c7af, 0x0, 0x0, 0x1, 0x0, 0x2}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

111.720888ms ago: executing program 1 (id=2670):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x1f)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x5}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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")
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x88882, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r2, &(0x7f0000004200)='t', 0x1)
sendfile(r2, r1, 0x0, 0x3ffff)
sendfile(r2, r1, 0x0, 0x7ffff000)

0s ago: executing program 2 (id=2671):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xc, &(0x7f0000000440)=ANY=[@ANYRESHEX=r1, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000004c0)=ANY=[], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r4}, 0x4)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x19, 0x10, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000510700140000000000000001b7080000000000007b8af8ff00000000b7080000fcffffff7b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb7020000080000", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCMIWAIT(r6, 0x545c, 0x0)
ioctl$TIOCVHANGUP(r6, 0x5437, 0x300)
ptrace$ARCH_ENABLE_TAGGED_ADDR(0x1e, 0xffffffffffffffff, 0x1, 0x4002)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x5, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_bp={0x0, 0x11}, 0x1100, 0x5dd8, 0x3, 0x5, 0x0, 0x8, 0xff7b, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xb, 0xffffffffffffffff, 0x8)
r7 = socket$kcm(0x10, 0x2, 0x10)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(0xffffffffffffffff, 0x8983, &(0x7f00000001c0)={0x0, 'veth1_macvtap\x00'})
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18020000f78eea79fc000000fdffffff85000000410000009500000000000000"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0xd, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000500)='GPL\x00', 0x80000, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r8, 0x0, 0xf7}, 0x18)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000031c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf7cf39e3100c8acaa47684f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d7559f3b14820ed58b15627c95aa0b784625704f07372c29184ff7f4a7c0000070015006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e000000000000041201baa80b0b8ed8fb1ec577c377f627daaf787a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bdeda7be586602d985430cea080000000000fb1a26abfb0767192361448279b05d96a703a660587a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aab926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb155481ef836eb0f8c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaed2b25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec0271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761036eafed1fb2b98b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe514283707c70600000000000000b7561301bb997316db01ee601f2c9659db9bc04f7089a660d8dcc3ae83169cf331efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a515d83129cd857c775f9e7d6101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbe3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562e00e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb2214209ed2d5d776e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b55ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f608ce27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e30400000000000000000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a95d32f46ed9bd1f00fb8191bbab2dc599dda61ee2010000294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bfe2777e808fcba821a00e8c5c39609ff854256cb490000000000c1fee30a3f7a85d1b2b458c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd210819203828b202779d386ed295f023c67d867014d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff00004043060000005dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df40600000000000000e9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f00000000010000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b0600b805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1202000000b59fed817072a0da60160761fd3dffda0f7c742eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7000000000000000542954c167dd9b4acd946ffffffffffffffff1389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c9e281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b630500163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6e452a31bde54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f700400fa0c61d5fe6d8ff353f631080405547d65375ae04f44f0c2543c772c5ccb137be7dc87746e1785a8214454d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b036e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e010000005a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb3985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1428c0805b4031a667e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f1400010000ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1b0100448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a9cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab9100781b9912160a3fd2a2e74dd690c57bdfdc1f069f9491bca7a8c59363799be7005c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c1227c8bed10591958c906321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b863af34bac64c247672a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677ec97c5c568a89d6e36b165c39132a0f27080ece2a94c360b002c77f82662675a7713c7067081cac1599a998c41ff4754268ae1676384ff799783f55d7e5a1a0920300000000000000d98440c355927629f2bcf9dc215a18ca0265400abf38e90000000000000000008faf2cddffbfa66bf32eb718e88ec75603ed7c7a8825ce0f27a114bd7a4ab74d0c7b8d90ccc1c3ca6620def782e24d75aed70eb676437f62677a69e0994cd82d72e95493c830fe9515329f40b7025326dec33a527c5d999298eaa3690fd0d38a02fc6e0bc16dbe19f353027edc014411e1138087221492f5d5e5cc9d0a1acd3f581eda9a807aa0e609f935f626d96351e0ff116686cbeb8939feecd5dac8cf45101942ce18e57bb7f337df5435bcf7e504b7c427f70a10e1cb8993a661306a0576b638a0171e6800b5b35589d676eb30ed1a72e8f7b057eb281c4504195635b6b285ebaba019913a2520e43ed790231f047f7d3789c10ae7d724929f77aec1d33d9587580268ee14396f71e7ef588cb2560d6bd0795a9b97281229eb16de286553469fad7214ffc3e416f8b8e442dce1d37f9b1c88a5d8a8d9f2fe45bd8df213ecb4194c8554aea13cadcd502e51f6fec80418e772b5bd8d0228949058038b185909ee542848680f9ad43f4057d676d5e21ae3d7e0e4a28c03f112a94707f032b35915e42993ff148291b8babe026646ee41905992db217561b90811c4702a14f312fe5d2ae7257db6be1034cc1c346b76a853ce274bf0435e18f7e86c660c18c872a4882d21db2046a1893b83c62d61bfeadc1f913e4cab2b897e096dd3fe3525090410cb23bab36cdf200a36014032cf6e5121803c5a0c4a273a19f340163fc6265441d513a1294b8439276394945d94a589708e32a1cb30a8b07b391201385e0b92ecbb7b13d7a87284164018ace6ce58a82c5de321452461089cdd69259f5390f5f508646a524490583c30630bedb47e158ad41c0a653e86a4f4f255cd2a6e95f33b586823aef5564d9de1f5bdd8c80e193f0597b8003860302cd243c00bc5a82c52afb115d16258d507937966bb89409d6d47b8b652d0761d7c72875ae1efb9bc7c6807c2d783e31fd9cd7e84d3d50d8fc44ab8ac9ccd2c0d42e3bd4c029241320446bbf47e23d1320de30fbdf7ed13f80c28fb5c13fccc2e3f73509bdcddad8a2fe48cdd61f2f43611704af64eed8b0cbbd08754f93b8f3d6347aad5cde1ccc5cbd5eaa87e52cea257c856a4af5243eeb5e89f0000000000000000f420df5e4c6d856b3d55e455c08110b2ef4255a38f81555e8e1f22d59c0bc3c9013e66a1f5bda1b695e1602c0afb5c35b2f68f3b151b1e869f40ff4d1bef5e926e1ff95f6321131e4cb797f53455a093a95e67605222d6acc29c46e5db1ef3b8b07e2169fb24ced4b3ae87ebeca06df93212e465bbd1a7e41df2e1a0d508f86cfc7a469ac682685c44692877d03c34c23a65d2677acc73b5d276fdebd685c9b7a079eae228d8426188cb19b083548f5f29e493ab079f33d1965dcbb165015c46998ad410d60cc65fcfa73bd65a43fc024455c4bf530d663976cf71490577251780ab6b1cf8d397444b5be575229f687a3d95ea6b2aa62fce8acb3d4a6a130b4fefa55d0c1d6f3fa448ee24e588e2965c9a442f0baf90923dda91a6850fb7b9c7f432b63001423fedcf053fa28024cc9a178a07042dabc07176fc524032c2edb340c9c18a83565c431aeb0c869683507255254430f90f61e4eca9c8fa98c000b35fec357ee1ebd08439bd95c1ab0753dfd2603d1608bd8c589a1e160000a6ee0ad13346e08738c2d7b00b5d121d918f1dc8bceded939fa8605b54b37cdfcea0bf2bc63e655dc04a2e50212ff89d6587d49896ce18916cf3adc12839c345ca91bb232b891fae2fdd68aaa38281c0feb2c107af3e080d6cdd1c6646ec6804d7e9960c02aa0db9eda24bbcb287fd2a890fa7f9d6ae0c0b1f8dd1603c9ea2f66b572276f96a28b5b6dd9f9bf6ad4bdaa2139b90faf1f40b0f141258578bd825daaaf718d21b7ac05fe5d1b699e5422ca341fe1c944f68fe3a6d783dcf30b0e09d7688f696883b61cb64464b04d351a0a69b0733c348049b0430ed40e200f4ff0000000000000000000000996bcc1b721b152c892fab887e7d20466d90c049c0fdf51dcc16d226a2619c6f47bc25b7f5df5c09fed638922ed127ab36aa7b0c58a2ce5894b1b0f5375d340d96b69b966b05daaf585121a9c7605ed8e9964eef1f14b74cbb2ccdadc6d0b77cf0492b75e1cd11bfdcfddde91b20366715ba0cbe1041be2a65c25d7ca15ef8b71bd2ab9a4294899a1964b0152518fc2ac15a728bcb9e2bc4b551dfdf9011a2a607bc39ad2c4d7c64dcf967724e9b63c397d5265ad3f1da4395a5a800d8845257dcbf210d4f00fe0bd3deed05e506736e6bb6d40ee6cb960bcdb33633ee87f82beb665a9a4c2d4d2b06479ade3a4cd6bba765c9f52b52a0bdd0849ab92baae3775570accb5a57ee9f0035fc6d3df4eebec2e7eb4ff863d3979a20f4428ddca471037b49d4fd130743a97faa02c293b721e52bf53d64c6585e138162331ef98792e1e9b21a6a084fb7b42c64062ef1323a8a65a8ed6038f274f28ff4f78136a1ef108efbe8c4f4e347d50dcdbc33bf3ade4c3a39d316061930d7dd39b8acdecc3f27830e3eda40e648328d95a9aee65a9dd09fd4e96d5b852025dc53ec3f30cc753e6a796084b4e34f521dbb230ae0f3b79142073d437e1fd22d3b7503ffa95b1d5c7740b0ecbfd35dc0f8af895583dfcc2689f6e02c2dd4b57f3dcac54f40da013eb221fa3d65de760576031052c25a96ed4b20230b36d46d3d3fd6bb1d77cc8a48a6b10fa0149e55ccde4a2b26cca2d1ca9191c74ab006a602543fc24d1283e353cfb917620000000024bf3eed258c02a591ec4cd295212d9a98d38745f6f6c4530900000000000000f184f239098bf32551c7cf454e2865974f6520112743f73c619c3cab5609e00178f7393e53462f31559220c026bbde09837bf1b3ffe748a3247c9569f0c5e99f4494f93e0fa1badca90c888616eca97bddabd8003fc12a084d4b11d841979e161b998ddda92f194c4ec7947b7b303be11e0962d429a2c542a28c4932e14c123dfe2b8ec47a11cce134fd6e42a9f4e00ab6de6b45"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
sendmsg$kcm(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000080)="2e00000038000511d25a80698c63d40d0124fc602f6e35400c000200001ec00037153e370a00018025581d00d1bd", 0x2e}, {&(0x7f0000000200)="07c580a2f0ea421df1b32f73706f91c97b7f322b8bfc117d1792c01baea314a361ac378f303d3e6f184e5d7400588fe5aa8e72da53a4249df1bcd9fff726", 0x3e}, {&(0x7f00000000c0)="0142dc2b5a6c5075c52c97e21cbee52309bee5c631c619d09ede8c201443766669e637580ae98aec3884659570d71d98", 0x30}, {&(0x7f00000002c0)="347e54f4b4fc5652308a2a5bd5012d5dd1d66fc4454dee15407fb6a697", 0x1d}], 0x4, 0x0, 0x0, 0x39c}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000380)={0x0, 0x3}, 0x50)
sendto$inet6(r0, &(0x7f0000000040)="aa", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x3}, 0x3}, 0x1c)
shutdown(r0, 0x1)
r9 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000100)={0x1b, 0x0, 0x0, 0xff, 0x0, 0xffffffffffffffff, 0x6, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x4, 0x2, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002640)={0x1e, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000004000000000000000a00000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b70200e014000000b7030000000000e10000000083000000bf09000000000000550901000000000095000000000000007785050009000000bf91000000000000b7020000000000008100000084000000b7000000000000009500000000020000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

kernel console output (not intermixed with test programs):

 T9960] SELinux: security_context_str_to_sid () failed with errno=-22
[  163.537758][ T9968] loop2: detected capacity change from 0 to 2048
[  163.547044][ T9968] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  163.566347][ T9970] loop0: detected capacity change from 0 to 526
[  163.574623][ T9970] EXT4-fs (loop0): failed to parse options in superblock: aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  163.592012][ T9970] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 not in group (block 1633771873)!
[  163.602987][ T9970] EXT4-fs (loop0): group descriptors corrupted!
[  163.681502][ T9978] loop0: detected capacity change from 0 to 1024
[  163.705299][ T9978] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  163.717504][ T9978] ext4 filesystem being mounted at /367/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  163.730595][ T9978] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22
[  163.738680][ T9968] loop2: detected capacity change from 0 to 512
[  163.746133][ T9978] netlink: 'syz.0.2102': attribute type 21 has an invalid length.
[  163.754158][ T9978] netlink: 156 bytes leftover after parsing attributes in process `syz.0.2102'.
[  163.765732][ T9968] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.778914][ T9968] ext4 filesystem being mounted at /419/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  163.803351][ T9978] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2102: bg 0: block 393: padding at end of block bitmap is not set
[  163.803771][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.819262][ T9978] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2035 with error 117
[  163.839319][ T9978] EXT4-fs (loop0): This should not happen!! Data will be lost
[  163.839319][ T9978] 
[  163.872388][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.894384][ T9987] loop0: detected capacity change from 0 to 2048
[  163.900887][ T9987] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  163.914091][ T9988] loop2: detected capacity change from 0 to 256
[  163.921033][ T9988] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  164.045646][ T9987] loop0: detected capacity change from 0 to 512
[  164.046052][ T9995] SELinux: security_context_str_to_sid () failed with errno=-22
[  164.075696][ T9987] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.089998][ T9987] ext4 filesystem being mounted at /368/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  164.114812][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.213397][T10009] openvswitch: netlink: Message has 6 unknown bytes.
[  164.352971][    C0] vcan0: j1939_tp_rxtimer: 0xffff8881194fb200: rx timeout, send abort
[  164.480005][T10011] loop4: detected capacity change from 0 to 526
[  164.487688][T10011] EXT4-fs (loop4): failed to parse options in superblock: aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  164.500791][T10011] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 1633771873)!
[  164.511707][T10011] EXT4-fs (loop4): group descriptors corrupted!
[  164.605761][T10014] openvswitch: netlink: Message has 6 unknown bytes.
[  164.852985][    C0] vcan0: j1939_tp_rxtimer: 0xffff8881194fbc00: rx timeout, send abort
[  164.861223][    C0] vcan0: j1939_tp_rxtimer: 0xffff8881194fb200: abort rx timeout. Force session deactivation
[  164.899100][T10016] loop2: detected capacity change from 0 to 2048
[  164.926376][T10016] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  165.005116][T10020] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[  165.011639][T10020] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  165.019351][T10020] vhci_hcd vhci_hcd.0: Device attached
[  165.026008][T10021] vhci_hcd: connection closed
[  165.027776][   T48] vhci_hcd: stop threads
[  165.036743][   T48] vhci_hcd: release socket
[  165.041239][   T48] vhci_hcd: disconnect device
[  165.179741][T10029] openvswitch: netlink: Message has 6 unknown bytes.
[  165.361206][    C0] vcan0: j1939_tp_rxtimer: 0xffff8881194fbc00: abort rx timeout. Force session deactivation
[  165.407124][T10031] loop4: detected capacity change from 0 to 2048
[  165.414059][T10031] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  165.563723][T10034] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2120'.
[  165.592344][T10032] loop4: detected capacity change from 0 to 512
[  165.628209][T10032] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.641902][T10032] ext4 filesystem being mounted at /435/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  165.710344][T10045] openvswitch: netlink: Message has 6 unknown bytes.
[  165.783531][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.843667][T10047] loop2: detected capacity change from 0 to 526
[  165.851073][T10047] EXT4-fs (loop2): failed to parse options in superblock: aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  165.864148][T10047] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 1633771873)!
[  165.875129][T10047] EXT4-fs (loop2): group descriptors corrupted!
[  165.910770][T10049] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4)
[  165.917316][T10049] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  165.925045][T10049] vhci_hcd vhci_hcd.0: Device attached
[  165.930863][T10050] vhci_hcd: connection closed
[  165.931006][   T31] vhci_hcd: stop threads
[  165.939954][   T31] vhci_hcd: release socket
[  165.944468][   T31] vhci_hcd: disconnect device
[  166.242583][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.279429][T10061] loop4: detected capacity change from 0 to 2048
[  166.286140][T10061] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  166.445443][   T29] kauditd_printk_skb: 567 callbacks suppressed
[  166.445458][   T29] audit: type=1400 audit(1745132409.381:16590): avc:  denied  { create } for  pid=10063 comm="syz.2.2129" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  166.472092][   T29] audit: type=1400 audit(1745132409.381:16591): avc:  denied  { write } for  pid=10063 comm="syz.2.2129" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  166.493414][T10062] loop4: detected capacity change from 0 to 512
[  166.496703][   T29] audit: type=1326 audit(1745132409.421:16592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10063 comm="syz.2.2129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febc712e169 code=0x7ffc0000
[  166.525097][   T29] audit: type=1326 audit(1745132409.451:16593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10063 comm="syz.2.2129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febc712e169 code=0x7ffc0000
[  166.548817][   T29] audit: type=1326 audit(1745132409.451:16594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10063 comm="syz.2.2129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7febc712e169 code=0x7ffc0000
[  166.572353][   T29] audit: type=1326 audit(1745132409.461:16595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10063 comm="syz.2.2129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febc712e169 code=0x7ffc0000
[  166.596013][   T29] audit: type=1326 audit(1745132409.461:16596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10063 comm="syz.2.2129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febc712e169 code=0x7ffc0000
[  166.600730][T10068] loop3: detected capacity change from 0 to 512
[  166.619645][   T29] audit: type=1326 audit(1745132409.461:16597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10063 comm="syz.2.2129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=31 compat=0 ip=0x7febc712e169 code=0x7ffc0000
[  166.649507][   T29] audit: type=1326 audit(1745132409.461:16598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10063 comm="syz.2.2129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febc712e169 code=0x7ffc0000
[  166.650659][T10068] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  166.673140][   T29] audit: type=1326 audit(1745132409.461:16599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10063 comm="syz.2.2129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febc712e169 code=0x7ffc0000
[  166.693926][T10062] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  166.723299][T10062] ext4 filesystem being mounted at /437/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  166.743503][T10076] loop1: detected capacity change from 0 to 512
[  166.754991][T10068] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  166.761457][T10076] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  166.762989][T10068] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e000e118, mo2=0002]
[  166.781267][T10068] System zones: 0-1, 15-15, 18-18, 34-34
[  166.782692][T10076] EXT4-fs (loop1): 1 truncate cleaned up
[  166.790143][T10068] EXT4-fs (loop3): orphan cleanup on readonly fs
[  166.795374][T10076] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  166.799164][T10068] EXT4-fs warning (device loop3): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  166.813708][T10076] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.825474][T10068] EXT4-fs (loop3): Cannot turn on quotas: error -22
[  166.843274][T10068] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2130: bg 0: block 40: padding at end of block bitmap is not set
[  166.858176][T10068] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  166.867191][T10068] EXT4-fs (loop3): 1 truncate cleaned up
[  166.874065][T10068] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  166.894567][T10068] EXT4-fs error (device loop3): ext4_encrypted_get_link:46: inode #16: comm syz.3.2130: bad symlink.
[  166.901492][T10083] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=207 sclass=netlink_route_socket pid=10083 comm=syz.1.2135
[  166.907279][T10068] EXT4-fs error (device loop3): ext4_encrypted_get_link:46: inode #16: comm syz.3.2130: bad symlink.
[  166.927091][T10080] loop0: detected capacity change from 0 to 256
[  166.943557][T10080] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  166.958580][T10068] EXT4-fs error (device loop3): ext4_encrypted_get_link:46: inode #16: comm wg1: bad symlink.
[  166.979813][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.054175][T10093] loop0: detected capacity change from 0 to 2048
[  167.079620][T10095] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2140'.
[  167.090720][T10093] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  167.118385][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.298770][T10073] loop2: detected capacity change from 0 to 1764
[  167.324882][T10110] SELinux: security_context_str_to_sid () failed with errno=-22
[  167.489931][T10113] loop4: detected capacity change from 0 to 526
[  167.498272][T10113] EXT4-fs (loop4): failed to parse options in superblock: aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  167.514106][T10113] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 1633771873)!
[  167.525053][T10113] EXT4-fs (loop4): group descriptors corrupted!
[  167.588425][T10115] xt_hashlimit: max too large, truncated to 1048576
[  167.623749][T10117] loop2: detected capacity change from 0 to 2048
[  167.636818][T10117] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  167.649099][T10117] ext4 filesystem being mounted at /431/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  168.130930][T10123] loop1: detected capacity change from 0 to 2048
[  168.245999][T10123]  loop1: p1 < > p3
[  168.251537][T10123] loop1: p3 size 134217728 extends beyond EOD, truncated
[  168.316670][   T31] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm kworker/u8:1: bg 0: block 345: padding at end of block bitmap is not set
[  168.352209][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.363436][   T31] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2048 with error 117
[  168.376062][   T31] EXT4-fs (loop2): This should not happen!! Data will be lost
[  168.376062][   T31] 
[  168.422833][T10125] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2151'.
[  168.476135][T10129] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3)
[  168.482676][T10129] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  168.490442][T10129] vhci_hcd vhci_hcd.0: Device attached
[  168.511661][   T31] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 2065 with max blocks 2040 with error 28
[  168.524387][   T31] EXT4-fs (loop2): This should not happen!! Data will be lost
[  168.524387][   T31] 
[  168.534087][   T31] EXT4-fs (loop2): Total free blocks count 0
[  168.539042][T10130] vhci_hcd: connection closed
[  168.540090][   T31] EXT4-fs (loop2): Free/Dirty block details
[  168.540107][   T31] EXT4-fs (loop2): free_blocks=0
[  168.545174][ T8144] vhci_hcd: stop threads
[  168.550760][   T31] EXT4-fs (loop2): dirty_blocks=2048
[  168.550773][   T31] EXT4-fs (loop2): Block reservation details
[  168.571305][ T8144] vhci_hcd: release socket
[  168.575753][ T8144] vhci_hcd: disconnect device
[  168.635248][T10139] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4)
[  168.641778][T10139] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  168.649453][T10139] vhci_hcd vhci_hcd.0: Device attached
[  168.656459][T10140] vhci_hcd: connection closed
[  168.656656][   T48] vhci_hcd: stop threads
[  168.657348][T10143] SELinux: security_context_str_to_sid () failed with errno=-22
[  168.661324][   T48] vhci_hcd: release socket
[  168.661332][   T48] vhci_hcd: disconnect device
[  168.716355][T10145] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2156'.
[  168.841541][T10157] openvswitch: netlink: Message has 6 unknown bytes.
[  169.035527][T10149] loop0: detected capacity change from 0 to 1764
[  169.120956][T10162] openvswitch: netlink: Message has 6 unknown bytes.
[  169.228739][T10164] loop2: detected capacity change from 0 to 526
[  169.236464][T10164] EXT4-fs (loop2): failed to parse options in superblock: aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  169.249467][T10164] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 1633771873)!
[  169.260369][T10164] EXT4-fs (loop2): group descriptors corrupted!
[  169.306339][T10166] netlink: 136 bytes leftover after parsing attributes in process `syz.2.2161'.
[  169.315473][T10166] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  169.653175][T10168] loop0: detected capacity change from 0 to 256
[  169.660680][T10168] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  169.695131][T10173] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2164'.
[  169.733610][T10170] loop1: detected capacity change from 0 to 512
[  169.755810][T10170] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.768692][T10170] ext4 filesystem being mounted at /415/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  169.780924][T10177] netlink: 'syz.0.2164': attribute type 10 has an invalid length.
[  169.804273][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.823470][T10181] SELinux: security_context_str_to_sid () failed with errno=-22
[  169.868818][T10185] loop1: detected capacity change from 0 to 2048
[  169.875467][T10185] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  169.971557][T10192] openvswitch: netlink: Message has 6 unknown bytes.
[  170.039775][T10185] loop1: detected capacity change from 0 to 512
[  170.055798][T10185] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  170.068355][T10185] ext4 filesystem being mounted at /418/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  170.096159][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.142165][T10200] loop0: detected capacity change from 0 to 512
[  170.146892][T10198] loop1: detected capacity change from 0 to 2048
[  170.159271][T10200] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  170.170703][T10198] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  170.190965][T10206] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2175'.
[  170.203564][T10200] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  170.211584][T10200] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e000e118, mo2=0002]
[  170.263960][T10200] System zones: 0-1, 15-15, 18-18, 34-34
[  170.269840][T10200] EXT4-fs (loop0): orphan cleanup on readonly fs
[  170.276408][T10200] EXT4-fs warning (device loop0): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  170.280068][T10212] netlink: 'syz.2.2175': attribute type 10 has an invalid length.
[  170.290940][T10200] EXT4-fs (loop0): Cannot turn on quotas: error -22
[  170.339107][T10200] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2173: bg 0: block 40: padding at end of block bitmap is not set
[  170.356337][T10200] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  170.366794][T10200] EXT4-fs (loop0): 1 truncate cleaned up
[  170.392962][T10200] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  170.440170][T10200] EXT4-fs error (device loop0): ext4_encrypted_get_link:46: inode #16: comm syz.0.2173: bad symlink.
[  170.465875][T10200] EXT4-fs error (device loop0): ext4_encrypted_get_link:46: inode #16: comm syz.0.2173: bad symlink.
[  170.515454][T10200] EXT4-fs error (device loop0): ext4_encrypted_get_link:46: inode #16: comm wg1: bad symlink.
[  170.539773][T10218] loop3: detected capacity change from 0 to 256
[  170.546615][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.547386][T10218] vfat: Unknown parameter 'a'
[  170.573242][T10218] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2178'.
[  170.582358][T10218] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2178'.
[  170.601305][T10220] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2180'.
[  170.688264][T10225] netlink: 'syz.2.2180': attribute type 10 has an invalid length.
[  170.732636][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.825536][T10238] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  170.847614][T10242] loop0: detected capacity change from 0 to 2048
[  170.890980][T10241] loop4: detected capacity change from 0 to 512
[  170.896454][T10242]  loop0: p1 < > p3
[  170.905703][T10242] loop0: p3 size 134217728 extends beyond EOD, truncated
[  170.959859][T10231] loop2: detected capacity change from 0 to 512
[  170.971130][T10247] loop1: detected capacity change from 0 to 526
[  170.994277][T10247] EXT4-fs (loop1): failed to parse options in superblock: aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  171.003663][T10231] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  171.024001][T10247] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 not in group (block 1633771873)!
[  171.035045][T10247] EXT4-fs (loop1): group descriptors corrupted!
[  171.071028][T10256] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2192'.
[  171.080993][T10231] EXT4-fs (loop2): 1 truncate cleaned up
[  171.087253][T10231] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  171.175126][T10261] loop1: detected capacity change from 0 to 2048
[  171.199330][T10263] netlink: 'syz.4.2192': attribute type 10 has an invalid length.
[  171.254576][T10261] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  171.274518][T10261] ext4 filesystem being mounted at /425/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  171.297704][T10269] loop4: detected capacity change from 0 to 2048
[  171.320818][T10269] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  171.331961][T10270] openvswitch: netlink: Message has 6 unknown bytes.
[  171.486695][   T29] kauditd_printk_skb: 1462 callbacks suppressed
[  171.486707][   T29] audit: type=1400 audit(1745132414.421:18060): avc:  denied  { bind } for  pid=10268 comm="syz.4.2196" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  171.512618][   T29] audit: type=1400 audit(1745132414.421:18061): avc:  denied  { name_bind } for  pid=10268 comm="syz.4.2196" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[  171.534661][   T29] audit: type=1400 audit(1745132414.421:18062): avc:  denied  { node_bind } for  pid=10268 comm="syz.4.2196" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=sctp_socket permissive=1
[  171.558030][   T29] audit: type=1400 audit(1745132414.491:18063): avc:  denied  { name_connect } for  pid=10268 comm="syz.4.2196" dest=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[  171.608973][T10271] loop4: detected capacity change from 0 to 512
[  171.625308][T10271] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.647605][T10271] ext4 filesystem being mounted at /451/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  171.666939][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.729781][ T8144] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm kworker/u8:7: bg 0: block 345: padding at end of block bitmap is not set
[  171.747486][ T8144] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2048 with error 117
[  171.760134][ T8144] EXT4-fs (loop1): This should not happen!! Data will be lost
[  171.760134][ T8144] 
[  171.800371][  T377] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 2065 with max blocks 2040 with error 28
[  171.813122][  T377] EXT4-fs (loop1): This should not happen!! Data will be lost
[  171.813122][  T377] 
[  171.822877][  T377] EXT4-fs (loop1): Total free blocks count 0
[  171.828913][  T377] EXT4-fs (loop1): Free/Dirty block details
[  171.834992][  T377] EXT4-fs (loop1): free_blocks=0
[  171.840054][  T377] EXT4-fs (loop1): dirty_blocks=2048
[  171.845369][  T377] EXT4-fs (loop1): Block reservation details
[  171.866372][   T29] audit: type=1326 audit(1745132414.781:18064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10282 comm="syz.2.2202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febc712e169 code=0x7ffc0000
[  171.889992][   T29] audit: type=1326 audit(1745132414.781:18065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10282 comm="syz.2.2202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febc712e169 code=0x7ffc0000
[  171.913628][   T29] audit: type=1326 audit(1745132414.781:18066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10282 comm="syz.2.2202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7febc712e169 code=0x7ffc0000
[  171.914610][T10290] 9pnet_fd: Insufficient options for proto=fd
[  171.937214][   T29] audit: type=1326 audit(1745132414.781:18067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10282 comm="syz.2.2202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febc712e169 code=0x7ffc0000
[  171.966841][   T29] audit: type=1326 audit(1745132414.781:18068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10282 comm="syz.2.2202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febc712e169 code=0x7ffc0000
[  171.990517][   T29] audit: type=1326 audit(1745132414.781:18069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10282 comm="syz.2.2202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7febc712e169 code=0x7ffc0000
[  172.029559][T10289] loop2: detected capacity change from 0 to 526
[  172.037455][T10289] EXT4-fs (loop2): failed to parse options in superblock: aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  172.050734][T10289] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 1633771873)!
[  172.061779][T10289] EXT4-fs (loop2): group descriptors corrupted!
[  172.085797][T10294] loop1: detected capacity change from 0 to 512
[  172.092522][T10294] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  172.103961][T10294] EXT4-fs (loop1): 1 truncate cleaned up
[  172.110860][T10294] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  172.126374][T10294] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.136981][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.148076][T10299] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2206'.
[  172.213515][T10306] netlink: 'syz.3.2206': attribute type 10 has an invalid length.
[  172.268456][T10308] loop1: detected capacity change from 0 to 2048
[  172.294049][T10308] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  172.311739][T10308] ext4 filesystem being mounted at /429/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  172.352918][T10313] openvswitch: netlink: Message has 6 unknown bytes.
[  172.499178][T10320] loop2: detected capacity change from 0 to 2048
[  172.516560][T10302] A link change request failed with some changes committed already. Interface ip6gretap0 may have been left with an inconsistent configuration, please check.
[  172.533082][T10320] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  172.544019][ T1038] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  172.595936][ T8144] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm kworker/u8:7: bg 0: block 345: padding at end of block bitmap is not set
[  172.610949][T10302] loop4: detected capacity change from 0 to 4096
[  172.617895][ T8144] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2048 with error 117
[  172.630637][ T8144] EXT4-fs (loop1): This should not happen!! Data will be lost
[  172.630637][ T8144] 
[  172.637689][T10302] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  172.660449][   T12] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 2065 with max blocks 2040 with error 28
[  172.673207][   T12] EXT4-fs (loop1): This should not happen!! Data will be lost
[  172.673207][   T12] 
[  172.682879][   T12] EXT4-fs (loop1): Total free blocks count 0
[  172.688888][   T12] EXT4-fs (loop1): Free/Dirty block details
[  172.694855][   T12] EXT4-fs (loop1): free_blocks=0
[  172.699807][   T12] EXT4-fs (loop1): dirty_blocks=2048
[  172.705267][   T12] EXT4-fs (loop1): Block reservation details
[  172.722791][T10327] openvswitch: netlink: Message has 6 unknown bytes.
[  172.786999][T10332] loop4: detected capacity change from 0 to 2048
[  172.787405][T10332] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  172.887820][T10335] loop0: detected capacity change from 0 to 256
[  172.894873][ T1038] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  172.895015][T10335] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  172.918804][T10337] loop4: detected capacity change from 0 to 512
[  172.969503][T10337] ext4 filesystem being mounted at /453/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  172.999318][T10341] loop1: detected capacity change from 0 to 512
[  173.015684][T10341] ext4 filesystem being mounted at /432/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  173.053025][T10353] loop1: detected capacity change from 0 to 2048
[  173.059743][T10353] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  173.095686][T10356] loop1: detected capacity change from 0 to 2048
[  173.105584][T10356] ext4 filesystem being mounted at /434/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  173.152279][T10360] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2226'.
[  173.358653][   T12] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm kworker/u8:0: bg 0: block 345: padding at end of block bitmap is not set
[  173.373478][   T12] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2048 with error 117
[  173.386148][   T12] EXT4-fs (loop1): This should not happen!! Data will be lost
[  173.386148][   T12] 
[  173.411175][   T12] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 2065 with max blocks 2040 with error 28
[  173.423928][   T12] EXT4-fs (loop1): This should not happen!! Data will be lost
[  173.423928][   T12] 
[  173.433578][   T12] EXT4-fs (loop1): Total free blocks count 0
[  173.439837][   T12] EXT4-fs (loop1): Free/Dirty block details
[  173.444226][T10367] loop3: detected capacity change from 0 to 512
[  173.445748][   T12] EXT4-fs (loop1): free_blocks=0
[  173.456988][   T12] EXT4-fs (loop1): dirty_blocks=2048
[  173.457332][T10367] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  173.462279][   T12] EXT4-fs (loop1): Block reservation details
[  173.476937][   T12] EXT4-fs (loop1): i_reserved_data_blocks=128
[  173.495203][T10367] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  173.503128][T10367] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e000e118, mo2=0002]
[  173.511205][T10367] System zones: 0-1, 15-15, 18-18, 34-34
[  173.517187][T10367] EXT4-fs (loop3): orphan cleanup on readonly fs
[  173.523617][T10367] EXT4-fs warning (device loop3): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  173.538387][T10367] EXT4-fs (loop3): Cannot turn on quotas: error -22
[  173.545325][T10367] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2229: bg 0: block 40: padding at end of block bitmap is not set
[  173.563663][T10372] 9pnet_fd: Insufficient options for proto=fd
[  173.570340][T10367] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  173.579413][T10367] EXT4-fs (loop3): 1 truncate cleaned up
[  173.588653][T10367] EXT4-fs error (device loop3): ext4_encrypted_get_link:46: inode #16: comm syz.3.2229: bad symlink.
[  173.600070][T10367] EXT4-fs error (device loop3): ext4_encrypted_get_link:46: inode #16: comm syz.3.2229: bad symlink.
[  173.624395][T10367] EXT4-fs error (device loop3): ext4_encrypted_get_link:46: inode #16: comm wg1: bad symlink.
[  173.725724][T10383] loop3: detected capacity change from 0 to 526
[  173.733280][T10383] EXT4-fs (loop3): failed to parse options in superblock: aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  173.740124][T10390] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2237'.
[  173.746609][T10383] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 1633771873)!
[  173.765930][T10383] EXT4-fs (loop3): group descriptors corrupted!
[  173.837230][T10404] FAULT_INJECTION: forcing a failure.
[  173.837230][T10404] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  173.850375][T10404] CPU: 1 UID: 0 PID: 10404 Comm: syz.3.2242 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[  173.850416][T10404] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  173.850426][T10404] Call Trace:
[  173.850430][T10404]  <TASK>
[  173.850436][T10404]  dump_stack_lvl+0xf6/0x150
[  173.850455][T10404]  dump_stack+0x15/0x1a
[  173.850470][T10404]  should_fail_ex+0x261/0x270
[  173.850496][T10404]  should_fail+0xb/0x10
[  173.850572][T10404]  should_fail_usercopy+0x1a/0x20
[  173.850598][T10404]  strncpy_from_user+0x25/0x230
[  173.850616][T10404]  ? __se_sys_memfd_create+0x1ea/0x5a0
[  173.850652][T10404]  __se_sys_memfd_create+0x218/0x5a0
[  173.850748][T10404]  __x64_sys_memfd_create+0x31/0x40
[  173.850841][T10404]  x64_sys_call+0x1163/0x2e10
[  173.850864][T10404]  do_syscall_64+0xc9/0x1a0
[  173.850889][T10404]  ? clear_bhb_loop+0x25/0x80
[  173.850920][T10404]  ? clear_bhb_loop+0x25/0x80
[  173.850970][T10404]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.850988][T10404] RIP: 0033:0x7efff012e169
[  173.850999][T10404] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.851015][T10404] RSP: 002b:00007effee796e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  173.851034][T10404] RAX: ffffffffffffffda RBX: 000000000000044a RCX: 00007efff012e169
[  173.851046][T10404] RDX: 00007effee796ef0 RSI: 0000000000000000 RDI: 00007efff01b1404
[  173.851057][T10404] RBP: 0000200000000400 R08: 00007effee796bb7 R09: 00007effee796e40
[  173.851105][T10404] R10: 000000000000000a R11: 0000000000000202 R12: 00002000000001c0
[  173.851117][T10404] R13: 00007effee796ef0 R14: 00007effee796eb0 R15: 0000200000000040
[  173.851135][T10404]  </TASK>
[  174.036303][T10407] loop0: detected capacity change from 0 to 512
[  174.040023][T10406] openvswitch: netlink: Message has 6 unknown bytes.
[  174.051766][T10407] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  174.061165][T10411] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4)
[  174.067713][T10411] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  174.075495][T10411] vhci_hcd vhci_hcd.0: Device attached
[  174.079288][T10407] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  174.088888][T10407] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e000e118, mo2=0002]
[  174.088979][T10412] vhci_hcd: connection closed
[  174.098990][   T31] vhci_hcd: stop threads
[  174.099090][T10407] System zones: 
[  174.103672][   T31] vhci_hcd: release socket
[  174.107897][T10407] 0-1
[  174.111413][   T31] vhci_hcd: disconnect device
[  174.123141][T10407] , 15-15, 18-18, 34-34
[  174.124833][T10409] loop3: detected capacity change from 0 to 2048
[  174.127434][T10407] EXT4-fs (loop0): orphan cleanup on readonly fs
[  174.140093][T10407] EXT4-fs warning (device loop0): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  174.154733][T10407] EXT4-fs (loop0): Cannot turn on quotas: error -22
[  174.161655][T10407] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2243: bg 0: block 40: padding at end of block bitmap is not set
[  174.176576][T10407] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  174.186822][T10407] EXT4-fs (loop0): 1 truncate cleaned up
[  174.197006][T10407] EXT4-fs error (device loop0): ext4_encrypted_get_link:46: inode #16: comm syz.0.2243: bad symlink.
[  174.208156][T10407] EXT4-fs error (device loop0): ext4_encrypted_get_link:46: inode #16: comm syz.0.2243: bad symlink.
[  174.232797][T10407] EXT4-fs error (device loop0): ext4_encrypted_get_link:46: inode #16: comm wg1: bad symlink.
[  174.318838][T10432] loop0: detected capacity change from 0 to 256
[  174.325885][T10432] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  174.341029][T10430] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2251'.
[  174.383291][T10437] loop0: detected capacity change from 0 to 2048
[  174.390313][T10437] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  174.399814][T10441] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2255'.
[  174.423270][T10439] loop3: detected capacity change from 0 to 512
[  174.473951][T10443] netlink: 136 bytes leftover after parsing attributes in process `syz.3.2256'.
[  174.483026][T10443] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  174.540111][T10437] loop0: detected capacity change from 0 to 512
[  174.547031][T10441] netlink: 'syz.2.2255': attribute type 10 has an invalid length.
[  174.558240][T10450] loop3: detected capacity change from 0 to 512
[  174.566517][T10450] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  174.578864][T10437] ext4 filesystem being mounted at /399/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  174.613530][T10450] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  174.621572][T10450] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e000e118, mo2=0002]
[  174.629811][T10450] System zones: 0-1, 15-15, 18-18, 34-34
[  174.635870][T10450] EXT4-fs (loop3): orphan cleanup on readonly fs
[  174.642787][T10450] EXT4-fs warning (device loop3): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  174.657419][T10450] EXT4-fs (loop3): Cannot turn on quotas: error -22
[  174.665951][T10450] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2258: bg 0: block 40: padding at end of block bitmap is not set
[  174.693220][T10450] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  174.702362][T10450] EXT4-fs (loop3): 1 truncate cleaned up
[  174.717435][T10460] loop1: detected capacity change from 0 to 256
[  174.740678][T10450] EXT4-fs error (device loop3): ext4_encrypted_get_link:46: inode #16: comm syz.3.2258: bad symlink.
[  174.751808][T10450] EXT4-fs error (device loop3): ext4_encrypted_get_link:46: inode #16: comm syz.3.2258: bad symlink.
[  174.770675][T10460] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  174.792629][T10450] EXT4-fs error (device loop3): ext4_encrypted_get_link:46: inode #16: comm wg1: bad symlink.
[  174.819566][T10476] loop0: detected capacity change from 0 to 1024
[  174.858990][T10480] loop3: detected capacity change from 0 to 512
[  174.866243][T10480] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  174.952206][T10483] loop2: detected capacity change from 0 to 2048
[  174.984298][T10483]  loop2: p1 < > p3
[  174.994821][T10483] loop2: p3 size 134217728 extends beyond EOD, truncated
[  175.037760][T10480] EXT4-fs (loop3): 1 truncate cleaned up
[  175.045989][T10476] ext4 filesystem being mounted at /402/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  175.134506][T10476] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22
[  175.173644][T10496] xt_hashlimit: max too large, truncated to 1048576
[  175.184955][T10494] loop4: detected capacity change from 0 to 2048
[  175.191892][T10494] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  175.200639][T10476] netlink: 'syz.0.2266': attribute type 21 has an invalid length.
[  175.226468][T10497] netlink: 'syz.1.2270': attribute type 10 has an invalid length.
[  175.290644][T10499] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2266: bg 0: block 393: padding at end of block bitmap is not set
[  175.305468][T10499] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2035 with error 117
[  175.318207][T10499] EXT4-fs (loop0): This should not happen!! Data will be lost
[  175.318207][T10499] 
[  175.374885][T10504] loop4: detected capacity change from 0 to 512
[  175.384899][T10508] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  175.390459][T10504] ext4 filesystem being mounted at /462/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  175.466907][T10516] loop0: detected capacity change from 0 to 256
[  175.474187][T10516] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  175.495490][T10528] openvswitch: netlink: Message has 6 unknown bytes.
[  175.697826][T10552] loop2: detected capacity change from 0 to 512
[  175.844730][T10555] loop0: detected capacity change from 0 to 2048
[  175.876654][T10555]  loop0: p1 < > p3
[  175.904345][T10555] loop0: p3 size 134217728 extends beyond EOD, truncated
[  175.960910][T10557] loop2: detected capacity change from 0 to 526
[  175.969768][T10557] EXT4-fs (loop2): failed to parse options in superblock: aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  175.983313][T10557] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 1633771873)!
[  175.994454][T10557] EXT4-fs (loop2): group descriptors corrupted!
[  176.269794][T10563] __nla_validate_parse: 4 callbacks suppressed
[  176.269808][T10563] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2295'.
[  176.285074][T10563] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  176.292476][T10563] batman_adv: batadv0: Removing interface: batadv_slave_0
[  176.300599][T10563] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  176.308019][T10563] batman_adv: batadv0: Removing interface: batadv_slave_1
[  176.322139][T10563] bond0: (slave batadv0): Releasing backup interface
[  176.332231][T10567] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4)
[  176.338818][T10567] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  176.346562][T10567] vhci_hcd vhci_hcd.0: Device attached
[  176.353050][T10568] vhci_hcd: connection closed
[  176.354156][   T12] vhci_hcd: stop threads
[  176.359298][T10571] loop3: detected capacity change from 0 to 2048
[  176.363067][   T12] vhci_hcd: release socket
[  176.363076][   T12] vhci_hcd: disconnect device
[  176.379079][T10571] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  176.494752][   T29] kauditd_printk_skb: 745 callbacks suppressed
[  176.494822][   T29] audit: type=1326 audit(1745132419.431:18812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10582 comm="syz.2.2302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7febc712e169 code=0x7ffc0000
[  176.526002][T10585] loop3: detected capacity change from 0 to 512
[  176.532754][   T29] audit: type=1326 audit(1745132419.461:18813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10582 comm="syz.2.2302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febc712e169 code=0x7ffc0000
[  176.532870][T10585] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  176.556361][   T29] audit: type=1326 audit(1745132419.461:18814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10582 comm="syz.2.2302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febc712e169 code=0x7ffc0000
[  176.571851][T10585] EXT4-fs (loop3): 1 truncate cleaned up
[  176.589809][   T29] audit: type=1326 audit(1745132419.461:18815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10582 comm="syz.2.2302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7febc712e169 code=0x7ffc0000
[  176.619100][   T29] audit: type=1400 audit(1745132419.461:18816): avc:  denied  { create } for  pid=10582 comm="syz.2.2302" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  176.638672][   T29] audit: type=1326 audit(1745132419.461:18817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10582 comm="syz.2.2302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febc712e169 code=0x7ffc0000
[  176.662209][   T29] audit: type=1326 audit(1745132419.461:18818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10582 comm="syz.2.2302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febc712e169 code=0x7ffc0000
[  176.685749][   T29] audit: type=1326 audit(1745132419.461:18819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10582 comm="syz.2.2302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7febc712e169 code=0x7ffc0000
[  176.709300][   T29] audit: type=1400 audit(1745132419.461:18820): avc:  denied  { ioctl } for  pid=10582 comm="syz.2.2302" path="socket:[25660]" dev="sockfs" ino=25660 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  176.734125][   T29] audit: type=1326 audit(1745132419.461:18821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10582 comm="syz.2.2302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febc712e169 code=0x7ffc0000
[  176.805954][T10593] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[  176.812658][T10593] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  176.813731][T10597] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  176.820426][T10593] vhci_hcd vhci_hcd.0: Device attached
[  176.826769][T10597] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  176.826884][T10597] vhci_hcd vhci_hcd.0: Device attached
[  176.836702][T10594] vhci_hcd: connection closed
[  176.845931][   T41] vhci_hcd: stop threads
[  176.851408][T10598] vhci_hcd: connection closed
[  176.855008][   T41] vhci_hcd: release socket
[  176.864224][   T41] vhci_hcd: disconnect device
[  176.869218][   T41] vhci_hcd: stop threads
[  176.873469][   T41] vhci_hcd: release socket
[  176.877962][   T41] vhci_hcd: disconnect device
[  176.898502][T10603] xt_hashlimit: max too large, truncated to 1048576
[  176.925667][T10609] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  176.949081][T10611] loop2: detected capacity change from 0 to 2048
[  176.955734][T10611] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  177.034755][T10611] loop2: detected capacity change from 0 to 512
[  177.038322][T10615] loop1: detected capacity change from 0 to 526
[  177.048304][T10615] EXT4-fs (loop1): failed to parse options in superblock: aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  177.055867][T10611] ext4 filesystem being mounted at /469/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  177.061396][T10615] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 not in group (block 1633771873)!
[  177.082439][T10615] EXT4-fs (loop1): group descriptors corrupted!
[  177.122131][T10621] FAULT_INJECTION: forcing a failure.
[  177.122131][T10621] name failslab, interval 1, probability 0, space 0, times 0
[  177.134784][T10621] CPU: 0 UID: 0 PID: 10621 Comm: syz.1.2315 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[  177.134814][T10621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  177.134827][T10621] Call Trace:
[  177.134833][T10621]  <TASK>
[  177.134840][T10621]  dump_stack_lvl+0xf6/0x150
[  177.134935][T10621]  dump_stack+0x15/0x1a
[  177.134952][T10621]  should_fail_ex+0x261/0x270
[  177.134977][T10621]  should_failslab+0x8f/0xb0
[  177.135000][T10621]  __kmalloc_cache_noprof+0x55/0x320
[  177.135059][T10621]  ? audit_log_d_path+0x8e/0x150
[  177.135092][T10621]  audit_log_d_path+0x8e/0x150
[  177.135124][T10621]  audit_log_d_path_exe+0x42/0x70
[  177.135154][T10621]  audit_log_task+0x1f1/0x250
[  177.135227][T10621]  ? kstrtouint+0x7b/0xc0
[  177.135251][T10621]  audit_seccomp+0x62/0x100
[  177.135277][T10621]  __seccomp_filter+0x694/0x10e0
[  177.135299][T10621]  ? vfs_write+0x669/0x950
[  177.135324][T10621]  __secure_computing+0x7e/0x150
[  177.135418][T10621]  syscall_trace_enter+0xcf/0x1f0
[  177.135441][T10621]  do_syscall_64+0xaa/0x1a0
[  177.135462][T10621]  ? clear_bhb_loop+0x25/0x80
[  177.135481][T10621]  ? clear_bhb_loop+0x25/0x80
[  177.135603][T10621]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.135624][T10621] RIP: 0033:0x7f0e8330e169
[  177.135639][T10621] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  177.135719][T10621] RSP: 002b:00007f0e81976e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  177.135737][T10621] RAX: ffffffffffffffda RBX: 0000000000000531 RCX: 00007f0e8330e169
[  177.135750][T10621] RDX: 00007f0e81976ef0 RSI: 0000000000000000 RDI: 00007f0e83391404
[  177.135762][T10621] RBP: 0000200000000640 R08: 00007f0e81976bb7 R09: 00007f0e81976e40
[  177.135774][T10621] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000140
[  177.135786][T10621] R13: 00007f0e81976ef0 R14: 00007f0e81976eb0 R15: 00002000000003c0
[  177.135805][T10621]  </TASK>
[  177.139663][T10621] loop1: detected capacity change from 0 to 512
[  177.156665][T10623] loop2: detected capacity change from 0 to 512
[  177.184878][T10621] EXT4-fs warning (device loop1): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  177.362527][T10621] EXT4-fs (loop1): mount failed
[  177.373920][T10629] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[  177.380449][T10629] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  177.388199][T10629] vhci_hcd vhci_hcd.0: Device attached
[  177.402352][T10630] vhci_hcd: connection closed
[  177.402611][  T377] vhci_hcd: stop threads
[  177.410606][T10635] xt_hashlimit: max too large, truncated to 1048576
[  177.411581][  T377] vhci_hcd: release socket
[  177.411591][  T377] vhci_hcd: disconnect device
[  177.442445][T10641] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2322'.
[  177.537781][T10641] netlink: 'syz.1.2322': attribute type 10 has an invalid length.
[  177.569090][T10650] loop1: detected capacity change from 0 to 2048
[  177.578233][T10650] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  177.745819][T10654] loop2: detected capacity change from 0 to 2048
[  177.757874][T10655] loop1: detected capacity change from 0 to 512
[  177.774235][T10654]  loop2: p1 < > p3
[  177.810067][T10654] loop2: p3 size 134217728 extends beyond EOD, truncated
[  177.835088][T10655] ext4 filesystem being mounted at /456/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  177.892436][T10660] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2326'.
[  177.960165][T10662] netlink: 'syz.1.2326': attribute type 10 has an invalid length.
[  177.995195][T10664] loop3: detected capacity change from 0 to 2048
[  178.001883][T10664] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  178.150853][T10664] loop3: detected capacity change from 0 to 512
[  178.167917][T10664] ext4 filesystem being mounted at /517/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  178.243510][T10672] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[  178.250042][T10672] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  178.257726][T10672] vhci_hcd vhci_hcd.0: Device attached
[  178.263719][T10673] vhci_hcd: connection closed
[  178.264896][   T31] vhci_hcd: stop threads
[  178.273944][   T31] vhci_hcd: release socket
[  178.278350][   T31] vhci_hcd: disconnect device
[  178.419932][T10684] loop2: detected capacity change from 0 to 512
[  178.420399][T10677] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2330'.
[  178.426503][T10684] EXT4-fs: Ignoring removed nobh option
[  178.440894][T10684] EXT4-fs: journaled quota format not specified
[  178.507476][T10691] xt_hashlimit: max too large, truncated to 1048576
[  178.551726][T10695] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2335'.
[  178.562701][T10696] loop2: detected capacity change from 0 to 2048
[  178.570785][T10696] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  178.640952][T10698] netlink: 'syz.0.2335': attribute type 10 has an invalid length.
[  178.766029][T10696] loop2: detected capacity change from 0 to 512
[  178.956245][T10705] loop0: detected capacity change from 0 to 2048
[  178.996968][T10696] ext4 filesystem being mounted at /477/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  179.034258][T10705]  loop0: p1 < > p3
[  179.039411][T10705] loop0: p3 size 134217728 extends beyond EOD, truncated
[  179.161883][T10710] loop3: detected capacity change from 0 to 2048
[  179.173803][T10713] openvswitch: netlink: Message has 6 unknown bytes.
[  179.327465][T10710]  loop3: p1 < > p3
[  179.360853][T10710] loop3: p3 size 134217728 extends beyond EOD, truncated
[  179.934686][T10731] openvswitch: netlink: Message has 6 unknown bytes.
[  179.992101][T10737] xt_hashlimit: max too large, truncated to 1048576
[  180.068742][T10745] loop2: detected capacity change from 0 to 512
[  180.075612][T10745] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  180.102930][T10745] EXT4-fs (loop2): 1 truncate cleaned up
[  180.134720][T10750] loop2: detected capacity change from 0 to 2048
[  180.141378][T10750] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  180.180736][T10752] loop4: detected capacity change from 0 to 2048
[  180.187346][T10752] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  180.328267][T10766] openvswitch: netlink: Message has 6 unknown bytes.
[  180.346792][T10750] loop2: detected capacity change from 0 to 512
[  180.356048][T10768] loop3: detected capacity change from 0 to 512
[  180.363020][T10768] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  180.374105][T10768] EXT4-fs (loop3): 1 truncate cleaned up
[  180.385769][T10750] ext4 filesystem being mounted at /483/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  180.416510][T10759] loop4: detected capacity change from 0 to 512
[  180.436242][T10759] ext4 filesystem being mounted at /467/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  180.450883][T10781] FAULT_INJECTION: forcing a failure.
[  180.450883][T10781] name failslab, interval 1, probability 0, space 0, times 0
[  180.463598][T10781] CPU: 0 UID: 0 PID: 10781 Comm: syz.3.2360 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[  180.463623][T10781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  180.463634][T10781] Call Trace:
[  180.463639][T10781]  <TASK>
[  180.463644][T10781]  dump_stack_lvl+0xf6/0x150
[  180.463715][T10781]  dump_stack+0x15/0x1a
[  180.463729][T10781]  should_fail_ex+0x261/0x270
[  180.463749][T10781]  should_failslab+0x8f/0xb0
[  180.463817][T10781]  kmem_cache_alloc_noprof+0x59/0x340
[  180.463841][T10781]  ? alloc_empty_file+0x78/0x200
[  180.463969][T10781]  alloc_empty_file+0x78/0x200
[  180.463995][T10781]  path_openat+0x6f/0x2000
[  180.464020][T10781]  ? _parse_integer_limit+0x167/0x180
[  180.464042][T10781]  ? kstrtoull+0x115/0x140
[  180.464136][T10781]  ? kstrtouint+0x7b/0xc0
[  180.464154][T10781]  do_filp_open+0x115/0x240
[  180.464215][T10781]  do_sys_openat2+0xaa/0x110
[  180.464313][T10781]  __x64_sys_openat+0xf8/0x120
[  180.464339][T10781]  x64_sys_call+0x1ac/0x2e10
[  180.464358][T10781]  do_syscall_64+0xc9/0x1a0
[  180.464380][T10781]  ? clear_bhb_loop+0x25/0x80
[  180.464469][T10781]  ? clear_bhb_loop+0x25/0x80
[  180.464487][T10781]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.464505][T10781] RIP: 0033:0x7efff012e169
[  180.464518][T10781] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  180.464533][T10781] RSP: 002b:00007effee797038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  180.464549][T10781] RAX: ffffffffffffffda RBX: 00007efff0355fa0 RCX: 00007efff012e169
[  180.464560][T10781] RDX: 0000000000000000 RSI: 0000200000000240 RDI: ffffffffffffff9c
[  180.464647][T10781] RBP: 00007effee797090 R08: 0000000000000000 R09: 0000000000000000
[  180.464724][T10781] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  180.464734][T10781] R13: 0000000000000000 R14: 00007efff0355fa0 R15: 00007ffcf641ed38
[  180.464831][T10781]  </TASK>
[  180.716414][T10793] loop2: detected capacity change from 0 to 2048
[  180.723127][T10793] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  180.760169][T10798] openvswitch: netlink: Message has 6 unknown bytes.
[  180.836642][T10801] openvswitch: netlink: Message has 6 unknown bytes.
[  181.025016][T10803] loop4: detected capacity change from 0 to 512
[  181.031663][T10803] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  181.042495][T10803] EXT4-fs (loop4): 1 truncate cleaned up
[  181.136041][T10814] loop1: detected capacity change from 0 to 512
[  181.225754][T10823] loop1: detected capacity change from 0 to 2048
[  181.232333][T10823] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  181.247697][T10820] loop4: detected capacity change from 0 to 256
[  181.254850][T10820] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  181.313588][T10832] loop1: detected capacity change from 0 to 512
[  181.320110][T10830] loop4: detected capacity change from 0 to 2048
[  181.320619][T10832] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  181.326802][T10830] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  181.338876][T10832] EXT4-fs (loop1): 1 truncate cleaned up
[  181.380231][T10836] loop4: detected capacity change from 0 to 526
[  181.387624][T10836] EXT4-fs (loop4): failed to parse options in superblock: aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  181.401433][T10836] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 1633771873)!
[  181.412337][T10836] EXT4-fs (loop4): group descriptors corrupted!
[  181.515394][   T29] kauditd_printk_skb: 451 callbacks suppressed
[  181.515408][   T29] audit: type=1326 audit(1745132424.451:19272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10835 comm="syz.4.2382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f7e1962e169 code=0x7ffc0000
[  181.545409][   T29] audit: type=1326 audit(1745132424.451:19273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10835 comm="syz.4.2382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e1962e169 code=0x7ffc0000
[  181.569097][   T29] audit: type=1326 audit(1745132424.451:19274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10835 comm="syz.4.2382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e1962e169 code=0x7ffc0000
[  181.592653][   T29] audit: type=1326 audit(1745132424.451:19275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10835 comm="syz.4.2382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f7e1962e169 code=0x7ffc0000
[  181.616280][   T29] audit: type=1326 audit(1745132424.451:19276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10835 comm="syz.4.2382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e1962e169 code=0x7ffc0000
[  181.639876][   T29] audit: type=1326 audit(1745132424.451:19277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10835 comm="syz.4.2382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=119 compat=0 ip=0x7f7e1962e169 code=0x7ffc0000
[  181.663429][   T29] audit: type=1326 audit(1745132424.451:19278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10835 comm="syz.4.2382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e1962e169 code=0x7ffc0000
[  181.687186][   T29] audit: type=1326 audit(1745132424.451:19279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10835 comm="syz.4.2382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7e1962e169 code=0x7ffc0000
[  181.710925][   T29] audit: type=1326 audit(1745132424.451:19280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10835 comm="syz.4.2382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e1962e169 code=0x7ffc0000
[  181.734740][   T29] audit: type=1326 audit(1745132424.451:19281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10835 comm="syz.4.2382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e1962e169 code=0x7ffc0000
[  181.772361][T10846] loop2: detected capacity change from 0 to 1024
[  181.802085][T10848] loop3: detected capacity change from 0 to 2048
[  181.910101][T10849] loop1: detected capacity change from 0 to 2048
[  181.919265][T10846] EXT4-fs: Ignoring removed nomblk_io_submit option
[  181.926718][T10848] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  181.985659][T10849]  loop1: p1 < > p3
[  182.010651][T10845] netlink: 'syz.2.2385': attribute type 10 has an invalid length.
[  182.019224][T10849] loop1: p3 size 134217728 extends beyond EOD, truncated
[  182.034898][T10845] hsr_slave_0: left promiscuous mode
[  182.064036][T10845] hsr_slave_1: left promiscuous mode
[  182.201495][T10854] loop3: detected capacity change from 0 to 512
[  182.223135][T10856] loop0: detected capacity change from 0 to 512
[  182.229453][T10859] loop4: detected capacity change from 0 to 2048
[  182.229639][T10859] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  182.284359][T10854] ext4 filesystem being mounted at /525/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  182.411056][T10869] loop2: detected capacity change from 0 to 2048
[  182.417690][T10869] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  182.443651][T10871] loop4: detected capacity change from 0 to 2048
[  182.480731][T10871] ext4 filesystem being mounted at /478/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  182.632501][T10885] loop0: detected capacity change from 0 to 2048
[  182.674411][T10885]  loop0: p1 < > p3
[  182.697248][T10887] openvswitch: netlink: Message has 6 unknown bytes.
[  182.754229][T10885] loop0: p3 size 134217728 extends beyond EOD, truncated
[  182.867453][T10890] loop1: detected capacity change from 0 to 2048
[  182.885787][T10890] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  183.034840][T10892] loop3: detected capacity change from 0 to 256
[  183.041720][T10892] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  183.048380][   T41] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm kworker/u8:2: bg 0: block 345: padding at end of block bitmap is not set
[  183.068728][   T41] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2048 with error 117
[  183.081409][   T41] EXT4-fs (loop4): This should not happen!! Data will be lost
[  183.081409][   T41] 
[  183.111507][  T377] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 2065 with max blocks 2040 with error 28
[  183.124236][  T377] EXT4-fs (loop4): This should not happen!! Data will be lost
[  183.124236][  T377] 
[  183.124593][T10890] loop1: detected capacity change from 0 to 512
[  183.133851][  T377] EXT4-fs (loop4): Total free blocks count 0
[  183.133892][  T377] EXT4-fs (loop4): Free/Dirty block details
[  183.152022][  T377] EXT4-fs (loop4): free_blocks=0
[  183.157005][  T377] EXT4-fs (loop4): dirty_blocks=2048
[  183.162291][  T377] EXT4-fs (loop4): Block reservation details
[  183.168340][  T377] EXT4-fs (loop4): i_reserved_data_blocks=128
[  183.220129][T10890] ext4 filesystem being mounted at /475/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  183.308253][T10905] loop1: detected capacity change from 0 to 512
[  183.396970][T10917] loop4: detected capacity change from 0 to 512
[  183.404487][T10917] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  183.535082][T10917] EXT4-fs (loop4): 1 truncate cleaned up
[  183.587864][T10928] loop2: detected capacity change from 0 to 2048
[  183.615493][T10928] ext4 filesystem being mounted at /496/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  183.662871][T10930] loop0: detected capacity change from 0 to 256
[  183.678178][T10930] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  183.724243][T10937] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2411'.
[  183.794121][T10937] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  183.823492][T10937] loop4: detected capacity change from 0 to 1024
[  183.831384][T10937] ext2: Bad value for 'barrier'
[  183.845272][T10946] openvswitch: netlink: Message has 6 unknown bytes.
[  183.896599][T10948] loop4: detected capacity change from 0 to 512
[  183.940203][   T41] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm kworker/u8:2: bg 0: block 345: padding at end of block bitmap is not set
[  183.959510][   T41] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2048 with error 117
[  183.972202][   T41] EXT4-fs (loop2): This should not happen!! Data will be lost
[  183.972202][   T41] 
[  183.999436][ T8144] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 2065 with max blocks 2040 with error 28
[  184.012269][ T8144] EXT4-fs (loop2): This should not happen!! Data will be lost
[  184.012269][ T8144] 
[  184.022034][ T8144] EXT4-fs (loop2): Total free blocks count 0
[  184.028387][ T8144] EXT4-fs (loop2): Free/Dirty block details
[  184.034326][ T8144] EXT4-fs (loop2): free_blocks=0
[  184.039354][ T8144] EXT4-fs (loop2): dirty_blocks=2048
[  184.044664][ T8144] EXT4-fs (loop2): Block reservation details
[  184.050674][ T8144] EXT4-fs (loop2): i_reserved_data_blocks=128
[  184.060163][T10959] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  184.147347][T10959] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  184.282686][T10959] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  184.336402][T10959] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  184.403749][T10959] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  184.417780][T10978] loop3: detected capacity change from 0 to 2048
[  184.427508][T10959] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  184.438961][T10959] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  184.450380][T10959] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  184.475123][T10978]  loop3: p1 < > p3
[  184.483764][T10978] loop3: p3 size 134217728 extends beyond EOD, truncated
[  184.496843][T10981] loop4: detected capacity change from 0 to 512
[  185.062606][T10995] loop0: detected capacity change from 0 to 2048
[  185.114305][T10995]  loop0: p1 < > p3
[  185.124191][T10995] loop0: p3 size 134217728 extends beyond EOD, truncated
[  185.268490][T11001] openvswitch: netlink: Message has 6 unknown bytes.
[  185.368635][T11011] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2434'.
[  185.405816][T11015] loop4: detected capacity change from 0 to 512
[  185.412369][T11015] EXT4-fs: Ignoring removed nobh option
[  185.431945][T11017] netlink: 'syz.3.2434': attribute type 10 has an invalid length.
[  185.442839][T11015] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #16: comm syz.4.2436: corrupted inode contents
[  185.455053][T11015] EXT4-fs (loop4): Remounting filesystem read-only
[  185.461735][T11015] EXT4-fs (loop4): 1 truncate cleaned up
[  185.467950][T11015] ext4 filesystem being mounted at /490/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  185.478546][   T41] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  185.489074][   T41] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  185.511923][   T41] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[  185.517278][T11022] loop3: detected capacity change from 0 to 512
[  185.523919][T11015] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[  185.537754][T11015] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[  185.547126][T11015] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[  185.557307][T11015] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[  185.566544][T11015] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[  185.585855][T11024] loop3: detected capacity change from 0 to 2048
[  185.645143][T11028] loop4: detected capacity change from 0 to 1024
[  185.651875][T11028] EXT4-fs: Ignoring removed nomblk_io_submit option
[  185.892112][T11041] 9pnet_fd: Insufficient options for proto=fd
[  185.967634][T11042] loop4: detected capacity change from 0 to 2048
[  186.024267][T11042]  loop4: p1 < > p3
[  186.043967][T11042] loop4: p3 size 134217728 extends beyond EOD, truncated
[  186.133272][T11044] loop2: detected capacity change from 0 to 1024
[  186.185974][T11044] ext4 filesystem being mounted at /501/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  186.222059][T11044] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22
[  186.275211][T11044] netlink: 'syz.2.2442': attribute type 21 has an invalid length.
[  186.283990][T11044] netlink: 156 bytes leftover after parsing attributes in process `syz.2.2442'.
[  186.367346][T11047] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2442: bg 0: block 393: padding at end of block bitmap is not set
[  186.395929][T11047] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 1200 with error 117
[  186.408655][T11047] EXT4-fs (loop2): This should not happen!! Data will be lost
[  186.408655][T11047] 
[  186.469303][T11053] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2445'.
[  186.496574][T11047] syz.2.2442 (11047) used greatest stack depth: 9160 bytes left
[  186.515537][   T12] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 28
[  186.528110][   T12] EXT4-fs (loop2): This should not happen!! Data will be lost
[  186.528110][   T12] 
[  186.537861][   T12] EXT4-fs (loop2): Total free blocks count 0
[  186.543900][   T12] EXT4-fs (loop2): Free/Dirty block details
[  186.548358][T11056] netlink: 'syz.3.2445': attribute type 10 has an invalid length.
[  186.549780][   T12] EXT4-fs (loop2): free_blocks=0
[  186.557602][   T29] kauditd_printk_skb: 2019 callbacks suppressed
[  186.557612][   T29] audit: type=1400 audit(1745132429.481:21293): avc:  denied  { create } for  pid=11052 comm="syz.3.2445" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  186.562547][   T12] EXT4-fs (loop2): dirty_blocks=32
[  186.568900][   T29] audit: type=1400 audit(1745132429.481:21294): avc:  denied  { connect } for  pid=11052 comm="syz.3.2445" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  186.588643][   T12] EXT4-fs (loop2): Block reservation details
[  186.588655][   T12] EXT4-fs (loop2): i_reserved_data_blocks=2
[  186.634964][   T29] audit: type=1400 audit(1745132429.531:21295): avc:  denied  { execute } for  pid=11050 comm="syz.1.2444" path="/479/cpu.stat" dev="tmpfs" ino=2676 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  186.693776][T11062] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2447'.
[  186.719280][T11061] loop2: detected capacity change from 0 to 512
[  186.753971][T11064] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4)
[  186.760555][T11064] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  186.767926][T11067] netlink: 'syz.0.2447': attribute type 10 has an invalid length.
[  186.768213][T11064] vhci_hcd vhci_hcd.0: Device attached
[  186.785365][T11065] vhci_hcd: connection closed
[  186.785616][   T12] vhci_hcd: stop threads
[  186.794555][   T12] vhci_hcd: release socket
[  186.798964][   T12] vhci_hcd: disconnect device
[  186.840497][T11071] loop3: detected capacity change from 0 to 1024
[  186.854470][   T29] audit: type=1400 audit(1745132429.791:21296): avc:  denied  { create } for  pid=11077 comm="syz.4.2451" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  186.879004][   T29] audit: type=1400 audit(1745132429.811:21297): avc:  denied  { create } for  pid=11077 comm="syz.4.2451" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  186.899925][   T29] audit: type=1400 audit(1745132429.811:21298): avc:  denied  { write } for  pid=11077 comm="syz.4.2451" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  186.904149][T11082] loop0: detected capacity change from 0 to 512
[  186.922047][T11071] ext4 filesystem being mounted at /541/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  186.937520][T11082] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  186.947015][T11071] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22
[  186.955680][T11071] netlink: 'syz.3.2450': attribute type 21 has an invalid length.
[  186.963575][T11071] netlink: 156 bytes leftover after parsing attributes in process `syz.3.2450'.
[  186.965694][T11082] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  186.980576][T11082] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e000e118, mo2=0002]
[  186.988618][T11082] System zones: 0-1, 15-15, 18-18, 34-34
[  186.994422][T11082] EXT4-fs (loop0): orphan cleanup on readonly fs
[  187.000764][T11082] Quota error (device loop0): v2_read_header: Failed header read: expected=8 got=0
[  187.010216][T11082] EXT4-fs warning (device loop0): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  187.016017][T11071] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2450: bg 0: block 393: padding at end of block bitmap is not set
[  187.024734][T11082] EXT4-fs (loop0): Cannot turn on quotas: error -22
[  187.042947][   T29] audit: type=1400 audit(1745132429.981:21299): avc:  denied  { create } for  pid=11077 comm="syz.4.2451" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  187.045994][T11082] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2453: bg 0: block 40: padding at end of block bitmap is not set
[  187.065170][   T29] audit: type=1400 audit(1745132429.981:21300): avc:  denied  { write } for  pid=11077 comm="syz.4.2451" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  187.079669][T11082] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  187.098754][   T29] audit: type=1400 audit(1745132429.981:21301): avc:  denied  { write } for  pid=11077 comm="syz.4.2451" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  187.107826][T11082] EXT4-fs (loop0): 1 truncate cleaned up
[  187.130334][T11071] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2035 with error 117
[  187.145995][T11071] EXT4-fs (loop3): This should not happen!! Data will be lost
[  187.145995][T11071] 
[  187.157886][T11082] EXT4-fs error (device loop0): ext4_encrypted_get_link:46: inode #16: comm syz.0.2453: bad symlink.
[  187.169554][T11082] EXT4-fs error (device loop0): ext4_encrypted_get_link:46: inode #16: comm syz.0.2453: bad symlink.
[  187.195789][T11082] EXT4-fs error (device loop0): ext4_encrypted_get_link:46: inode #16: comm wg1: bad symlink.
[  187.237644][T11091] loop3: detected capacity change from 0 to 2048
[  187.256431][T11091] EXT4-fs mount: 70 callbacks suppressed
[  187.256447][T11091] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  187.304793][T11098] 9pnet_fd: Insufficient options for proto=fd
[  187.371619][T11106] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2460'.
[  187.380883][T11103] loop2: detected capacity change from 0 to 512
[  187.525763][T11110] netlink: 'syz.1.2460': attribute type 10 has an invalid length.
[  187.580324][T11116] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2463'.
[  187.645975][T11119] netlink: 'syz.1.2463': attribute type 10 has an invalid length.
[  187.696547][T11118] loop2: detected capacity change from 0 to 2048
[  187.724318][T11118]  loop2: p1 < > p3
[  187.730330][T11118] loop2: p3 size 134217728 extends beyond EOD, truncated
[  187.743626][T11123] loop1: detected capacity change from 0 to 2048
[  187.750314][T11123] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  187.994507][T11130] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  188.128069][T11123] loop1: detected capacity change from 0 to 512
[  188.147629][T11137] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(4)
[  188.154155][T11137] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  188.161895][T11137] vhci_hcd vhci_hcd.0: Device attached
[  188.170393][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.171042][T11123] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  188.180105][T11138] vhci_hcd: connection closed
[  188.191834][T11123] ext4 filesystem being mounted at /484/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  188.207051][ T8144] vhci_hcd: stop threads
[  188.211312][ T8144] vhci_hcd: release socket
[  188.215747][ T8144] vhci_hcd: disconnect device
[  188.333151][T11143] loop4: detected capacity change from 0 to 2048
[  188.364450][T11143]  loop4: p1 < > p3
[  188.369082][T11143] loop4: p3 size 134217728 extends beyond EOD, truncated
[  188.432044][T11145] loop3: detected capacity change from 0 to 2048
[  188.442370][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.468402][T11145] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  188.538116][T11147] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2472'.
[  188.645443][T11151] netlink: 'syz.1.2472': attribute type 10 has an invalid length.
[  188.665620][T11145] loop3: detected capacity change from 0 to 512
[  188.708223][T11145] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  188.721175][T11145] ext4 filesystem being mounted at /544/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  188.751895][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.795705][T11165] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2475'.
[  188.805136][T11161] loop2: detected capacity change from 0 to 2048
[  188.833189][T11161] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  188.864585][T11169] loop0: detected capacity change from 0 to 256
[  188.871526][T11169] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  188.886843][T11174] netlink: 'syz.3.2475': attribute type 10 has an invalid length.
[  188.978131][T11181] loop0: detected capacity change from 0 to 526
[  188.985822][T11181] EXT4-fs (loop0): failed to parse options in superblock: aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  188.993819][T11183] openvswitch: netlink: Message has 6 unknown bytes.
[  189.000196][T11181] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 not in group (block 1633771873)!
[  189.016433][T11181] EXT4-fs (loop0): group descriptors corrupted!
[  189.080211][T11161] loop2: detected capacity change from 0 to 512
[  189.083627][T11190] program syz.4.2481 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  189.114193][T11190] block device autoloading is deprecated and will be removed.
[  189.123222][T11190] bio_check_eod: 10 callbacks suppressed
[  189.123235][T11190] syz.4.2481: attempt to access beyond end of device
[  189.123235][T11190] md30: rw=2048, sector=0, nr_sectors = 8 limit=0
[  189.156035][T11161] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  189.168673][T11161] ext4 filesystem being mounted at /507/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  189.194511][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  189.289701][T11202] loop2: detected capacity change from 0 to 512
[  189.296825][T11202] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  189.314796][T11203] loop0: detected capacity change from 0 to 2048
[  189.321443][T11202] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  189.329355][T11202] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e000e118, mo2=0002]
[  189.337368][T11202] System zones: 0-1, 15-15, 18-18, 34-34
[  189.343195][T11202] EXT4-fs (loop2): orphan cleanup on readonly fs
[  189.349577][T11202] EXT4-fs warning (device loop2): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  189.364144][T11202] EXT4-fs (loop2): Cannot turn on quotas: error -22
[  189.371088][T11202] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2487: bg 0: block 40: padding at end of block bitmap is not set
[  189.385564][T11203]  loop0: p1 < > p3
[  189.389796][T11202] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  189.398692][T11203] loop0: p3 size 134217728 extends beyond EOD, truncated
[  189.405957][T11202] EXT4-fs (loop2): 1 truncate cleaned up
[  189.412016][T11202] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  189.427800][T11202] EXT4-fs error (device loop2): ext4_encrypted_get_link:46: inode #16: comm syz.2.2487: bad symlink.
[  189.438944][T11202] EXT4-fs error (device loop2): ext4_encrypted_get_link:46: inode #16: comm syz.2.2487: bad symlink.
[  189.464488][T11202] EXT4-fs error (device loop2): ext4_encrypted_get_link:46: inode #16: comm wg1: bad symlink.
[  189.485179][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  189.502336][T11207] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4)
[  189.508867][T11207] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  189.516624][T11207] vhci_hcd vhci_hcd.0: Device attached
[  189.522545][T11208] vhci_hcd: connection closed
[  189.522605][  T377] vhci_hcd: stop threads
[  189.531603][  T377] vhci_hcd: release socket
[  189.536123][  T377] vhci_hcd: disconnect device
[  189.899953][T11216] loop4: detected capacity change from 0 to 526
[  189.907964][T11216] EXT4-fs (loop4): failed to parse options in superblock: aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  189.937047][T11216] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 1633771873)!
[  189.947953][T11216] EXT4-fs (loop4): group descriptors corrupted!
[  190.141184][T11234] loop3: detected capacity change from 0 to 2048
[  190.155020][T11235] 9pnet_fd: Insufficient options for proto=fd
[  190.174196][T11234]  loop3: p1 < > p3
[  190.185206][T11229] loop0: detected capacity change from 0 to 256
[  190.192964][T11229] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  190.205085][T11234] loop3: p3 size 134217728 extends beyond EOD, truncated
[  190.284028][T11242] openvswitch: netlink: Message has 6 unknown bytes.
[  190.481629][T11250] loop0: detected capacity change from 0 to 2048
[  190.488407][T11250] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  190.644897][T11250] loop0: detected capacity change from 0 to 512
[  190.657267][T11257] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2504'.
[  190.666145][T11250] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  190.666280][T11250] ext4 filesystem being mounted at /443/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  190.710663][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.762836][T11257] netlink: 'syz.1.2504': attribute type 10 has an invalid length.
[  190.828656][T11267] loop0: detected capacity change from 0 to 526
[  190.838006][T11267] EXT4-fs (loop0): failed to parse options in superblock: aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  190.853264][T11267] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 not in group (block 1633771873)!
[  190.864245][T11267] EXT4-fs (loop0): group descriptors corrupted!
[  190.865608][T11272] loop1: detected capacity change from 0 to 2048
[  190.877373][T11272] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  190.883446][T11274] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[  190.892286][T11274] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  190.900072][T11274] vhci_hcd vhci_hcd.0: Device attached
[  190.907955][T11275] vhci_hcd: connection closed
[  190.908152][   T12] vhci_hcd: stop threads
[  190.917102][   T12] vhci_hcd: release socket
[  190.921603][   T12] vhci_hcd: disconnect device
[  190.989410][T11283] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4)
[  190.995983][T11283] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  191.003776][T11283] vhci_hcd vhci_hcd.0: Device attached
[  191.009798][T11285] vhci_hcd: connection closed
[  191.009931][   T31] vhci_hcd: stop threads
[  191.018895][   T31] vhci_hcd: release socket
[  191.023307][   T31] vhci_hcd: disconnect device
[  191.066492][T11272] loop1: detected capacity change from 0 to 512
[  191.095625][T11272] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  191.109412][T11272] ext4 filesystem being mounted at /495/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  191.121335][T11303] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2519'.
[  191.159738][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.193335][T11309] netlink: 'syz.0.2519': attribute type 10 has an invalid length.
[  191.207597][T11310] 9pnet_fd: Insufficient options for proto=fd
[  191.251941][T11314] loop0: detected capacity change from 0 to 1024
[  191.265217][T11314] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  191.277925][T11314] ext4 filesystem being mounted at /451/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  191.291328][T11314] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22
[  191.300140][T11314] netlink: 'syz.0.2524': attribute type 21 has an invalid length.
[  191.308069][T11314] netlink: 156 bytes leftover after parsing attributes in process `syz.0.2524'.
[  191.355774][T11314] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2524: bg 0: block 393: padding at end of block bitmap is not set
[  191.370680][T11314] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2035 with error 117
[  191.383378][T11314] EXT4-fs (loop0): This should not happen!! Data will be lost
[  191.383378][T11314] 
[  191.415566][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.455687][T11320] loop0: detected capacity change from 0 to 526
[  191.460176][T11322] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[  191.463452][T11320] EXT4-fs (loop0): failed to parse options in superblock: aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  191.468510][T11322] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  191.468645][T11322] vhci_hcd vhci_hcd.0: Device attached
[  191.469441][T11323] vhci_hcd: connection closed
[  191.482788][T11320] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 not in group (block 1633771873)!
[  191.491915][   T31] vhci_hcd: stop threads
[  191.494665][T11320] EXT4-fs (loop0): group descriptors corrupted!
[  191.499299][   T31] vhci_hcd: release socket
[  191.499309][   T31] vhci_hcd: disconnect device
[  191.596443][T11336] loop1: detected capacity change from 0 to 2048
[  191.603297][T11336] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  191.625326][T11341] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2534'.
[  191.688162][T11344] netlink: 'syz.0.2534': attribute type 10 has an invalid length.
[  191.746121][T11347] loop0: detected capacity change from 0 to 1024
[  191.752608][T11336] loop1: detected capacity change from 0 to 512
[  191.765395][T11347] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  191.777893][T11347] ext4 filesystem being mounted at /456/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  191.778512][T11336] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  191.801413][T11336] ext4 filesystem being mounted at /500/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  191.802998][T11347] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22
[  191.821616][T11347] netlink: 'syz.0.2535': attribute type 21 has an invalid length.
[  191.829550][T11347] netlink: 156 bytes leftover after parsing attributes in process `syz.0.2535'.
[  191.840457][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.858818][   T29] kauditd_printk_skb: 675 callbacks suppressed
[  191.858831][   T29] audit: type=1326 audit(1745132434.791:21976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11352 comm="syz.1.2536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e8330e169 code=0x7ffc0000
[  191.892464][   T29] audit: type=1326 audit(1745132434.791:21977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11352 comm="syz.1.2536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e8330e169 code=0x7ffc0000
[  191.895029][T11356] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2535: bg 0: block 393: padding at end of block bitmap is not set
[  191.916200][   T29] audit: type=1326 audit(1745132434.791:21978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11352 comm="syz.1.2536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e8330e169 code=0x7ffc0000
[  191.932845][T11356] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 1264 with error 117
[  191.954184][   T29] audit: type=1326 audit(1745132434.791:21979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11352 comm="syz.1.2536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e8330e169 code=0x7ffc0000
[  191.966641][T11356] EXT4-fs (loop0): This should not happen!! Data will be lost
[  191.966641][T11356] 
[  192.000122][   T29] audit: type=1326 audit(1745132434.791:21980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11352 comm="syz.1.2536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e8330e169 code=0x7ffc0000
[  192.007126][T11361] FAULT_INJECTION: forcing a failure.
[  192.007126][T11361] name failslab, interval 1, probability 0, space 0, times 0
[  192.023755][   T29] audit: type=1326 audit(1745132434.791:21981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11352 comm="syz.1.2536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e8330e169 code=0x7ffc0000
[  192.036259][T11361] CPU: 0 UID: 0 PID: 11361 Comm: syz.1.2538 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[  192.036316][T11361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  192.036331][T11361] Call Trace:
[  192.036337][T11361]  <TASK>
[  192.036345][T11361]  dump_stack_lvl+0xf6/0x150
[  192.036372][T11361]  dump_stack+0x15/0x1a
[  192.036390][T11361]  should_fail_ex+0x261/0x270
[  192.036416][T11361]  should_failslab+0x8f/0xb0
[  192.036486][T11361]  kmem_cache_alloc_noprof+0x59/0x340
[  192.036545][T11361]  ? skb_clone+0x154/0x1f0
[  192.036572][T11361]  skb_clone+0x154/0x1f0
[  192.036597][T11361]  __netlink_deliver_tap+0x2bd/0x4f0
[  192.036626][T11361]  netlink_unicast+0x69e/0x6c0
[  192.036738][T11361]  netlink_sendmsg+0x609/0x720
[  192.036764][T11361]  ? __pfx_netlink_sendmsg+0x10/0x10
[  192.036859][T11361]  __sock_sendmsg+0x140/0x180
[  192.036898][T11361]  ____sys_sendmsg+0x350/0x4e0
[  192.036933][T11361]  __sys_sendmsg+0x1a0/0x240
[  192.036973][T11361]  __x64_sys_sendmsg+0x46/0x50
[  192.036998][T11361]  x64_sys_call+0x26f3/0x2e10
[  192.037074][T11361]  do_syscall_64+0xc9/0x1a0
[  192.037154][T11361]  ? clear_bhb_loop+0x25/0x80
[  192.037242][T11361]  ? clear_bhb_loop+0x25/0x80
[  192.037266][T11361]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.037368][T11361] RIP: 0033:0x7f0e8330e169
[  192.037384][T11361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  192.037406][T11361] RSP: 002b:00007f0e81956038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  192.037427][T11361] RAX: ffffffffffffffda RBX: 00007f0e83536080 RCX: 00007f0e8330e169
[  192.037470][T11361] RDX: 0000000004040000 RSI: 00002000000016c0 RDI: 0000000000000003
[  192.037483][T11361] RBP: 00007f0e81956090 R08: 0000000000000000 R09: 0000000000000000
[  192.037539][T11361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  192.037552][T11361] R13: 0000000000000000 R14: 00007f0e83536080 R15: 00007fff0ae627b8
[  192.037572][T11361]  </TASK>
[  192.063398][T11360] loop4: detected capacity change from 0 to 256
[  192.072383][   T29] audit: type=1326 audit(1745132434.791:21982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11352 comm="syz.1.2536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=37 compat=0 ip=0x7f0e8330e169 code=0x7ffc0000
[  192.104098][T11360] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  192.106862][   T29] audit: type=1326 audit(1745132434.791:21983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11352 comm="syz.1.2536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e8330e169 code=0x7ffc0000
[  192.324934][   T29] audit: type=1326 audit(1745132434.941:21984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11359 comm="syz.4.2539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e1962e169 code=0x7ffc0000
[  192.348510][   T29] audit: type=1326 audit(1745132434.941:21985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11359 comm="syz.4.2539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e1962e169 code=0x7ffc0000
[  192.356199][  T377] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 28
[  192.384630][  T377] EXT4-fs (loop0): This should not happen!! Data will be lost
[  192.384630][  T377] 
[  192.391920][T11366] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2542'.
[  192.394284][  T377] EXT4-fs (loop0): Total free blocks count 0
[  192.409205][  T377] EXT4-fs (loop0): Free/Dirty block details
[  192.415347][  T377] EXT4-fs (loop0): free_blocks=0
[  192.420339][  T377] EXT4-fs (loop0): dirty_blocks=32
[  192.425459][  T377] EXT4-fs (loop0): Block reservation details
[  192.471102][T11364] loop3: detected capacity change from 0 to 526
[  192.493051][T11364] EXT4-fs (loop3): failed to parse options in superblock: aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  192.506397][T11377] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(4)
[  192.506483][T11364] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 1633771873)!
[  192.512936][T11377] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  192.513003][T11377] vhci_hcd vhci_hcd.0: Device attached
[  192.535266][T11381] loop2: detected capacity change from 0 to 2048
[  192.537150][T11364] EXT4-fs (loop3): group descriptors corrupted!
[  192.553709][T11375] loop1: detected capacity change from 0 to 2048
[  192.558123][T11378] vhci_hcd: connection closed
[  192.560700][T11381] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  192.564711][   T12] vhci_hcd: stop threads
[  192.578025][   T12] vhci_hcd: release socket
[  192.582438][   T12] vhci_hcd: disconnect device
[  192.588677][T11375] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  192.715556][T11390] loop3: detected capacity change from 0 to 526
[  192.724659][T11390] EXT4-fs (loop3): failed to parse options in superblock: aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  192.741403][T11381] loop2: detected capacity change from 0 to 512
[  192.748354][T11390] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 1633771873)!
[  192.759277][T11390] EXT4-fs (loop3): group descriptors corrupted!
[  192.779204][T11381] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  192.794088][T11381] ext4 filesystem being mounted at /517/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  192.817832][T11396] loop3: detected capacity change from 0 to 1024
[  192.826583][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.847914][T11396] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  192.862566][T11400] FAULT_INJECTION: forcing a failure.
[  192.862566][T11400] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  192.875745][T11400] CPU: 1 UID: 0 PID: 11400 Comm: syz.2.2552 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[  192.875811][T11400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  192.875823][T11400] Call Trace:
[  192.875830][T11400]  <TASK>
[  192.875844][T11400]  dump_stack_lvl+0xf6/0x150
[  192.875868][T11400]  dump_stack+0x15/0x1a
[  192.875886][T11400]  should_fail_ex+0x261/0x270
[  192.875986][T11400]  should_fail+0xb/0x10
[  192.876041][T11400]  should_fail_usercopy+0x1a/0x20
[  192.876072][T11400]  strncpy_from_user+0x25/0x230
[  192.876092][T11400]  ? __se_sys_memfd_create+0x1ea/0x5a0
[  192.876181][T11400]  __se_sys_memfd_create+0x218/0x5a0
[  192.876241][T11400]  __x64_sys_memfd_create+0x31/0x40
[  192.876375][T11400]  x64_sys_call+0x1163/0x2e10
[  192.876397][T11400]  do_syscall_64+0xc9/0x1a0
[  192.876483][T11400]  ? clear_bhb_loop+0x25/0x80
[  192.876525][T11400]  ? clear_bhb_loop+0x25/0x80
[  192.876545][T11400]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.876562][T11400] RIP: 0033:0x7febc712e169
[  192.876592][T11400] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  192.876608][T11400] RSP: 002b:00007febc5796d68 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  192.876623][T11400] RAX: ffffffffffffffda RBX: 00000000000005e9 RCX: 00007febc712e169
[  192.876633][T11400] RDX: 00007febc5796dec RSI: 0000000000000000 RDI: 00007febc71b1404
[  192.876643][T11400] RBP: 0000200000000600 R08: 00007febc5796b07 R09: 0000000000000000
[  192.876653][T11400] R10: 000000000000000a R11: 0000000000000202 R12: 0000000000000001
[  192.876664][T11400] R13: 00007febc5796dec R14: 00007febc5796df0 R15: 00007ffd1c050198
[  192.876684][T11400]  </TASK>
[  192.922992][T11396] ext4 filesystem being mounted at /556/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  193.085699][T11402] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2553'.
[  193.135850][T11396] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22
[  193.146709][T11396] netlink: 'syz.3.2551': attribute type 21 has an invalid length.
[  193.162313][T11396] netlink: 156 bytes leftover after parsing attributes in process `syz.3.2551'.
[  193.177177][T11407] loop2: detected capacity change from 0 to 512
[  193.197442][T11407] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  193.210069][T11407] ext4 filesystem being mounted at /519/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  193.224619][T11406] loop0: detected capacity change from 0 to 256
[  193.231618][T11406] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  193.243630][T11396] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2551: bg 0: block 393: padding at end of block bitmap is not set
[  193.259377][T11396] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2035 with error 117
[  193.272102][T11396] EXT4-fs (loop3): This should not happen!! Data will be lost
[  193.272102][T11396] 
[  193.327612][T11418] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2558'.
[  193.369661][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.397391][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.420846][T11424] netlink: 'syz.0.2558': attribute type 10 has an invalid length.
[  193.433129][T11427] capability: warning: `syz.4.2560' uses deprecated v2 capabilities in a way that may be insecure
[  193.557429][T11437] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(4)
[  193.563963][T11437] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  193.571719][T11437] vhci_hcd vhci_hcd.0: Device attached
[  193.578324][T11438] vhci_hcd: connection closed
[  193.578516][   T12] vhci_hcd: stop threads
[  193.587519][   T12] vhci_hcd: release socket
[  193.591954][   T12] vhci_hcd: disconnect device
[  193.739078][T11440] loop3: detected capacity change from 0 to 2048
[  193.794366][T11440]  loop3: p1 < > p3
[  193.834188][T11440] loop3: p3 size 134217728 extends beyond EOD, truncated
[  193.963630][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.054163][T11445] loop2: detected capacity change from 0 to 256
[  194.061374][T11445] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  194.128834][T11455] loop0: detected capacity change from 0 to 1024
[  194.168592][T11455] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  194.181028][T11455] ext4 filesystem being mounted at /465/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  194.194814][T11455] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22
[  194.203408][T11455] netlink: 'syz.0.2570': attribute type 21 has an invalid length.
[  194.211427][T11455] netlink: 156 bytes leftover after parsing attributes in process `syz.0.2570'.
[  194.242818][T11459] loop1: detected capacity change from 0 to 512
[  194.266688][T11461] loop2: detected capacity change from 0 to 2048
[  194.280608][T11464] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2570: bg 0: block 393: padding at end of block bitmap is not set
[  194.295613][T11464] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 1776 with error 117
[  194.308303][T11464] EXT4-fs (loop0): This should not happen!! Data will be lost
[  194.308303][T11464] 
[  194.339992][T11461] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  194.450118][  T377] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 28
[  194.462696][  T377] EXT4-fs (loop0): This should not happen!! Data will be lost
[  194.462696][  T377] 
[  194.472541][  T377] EXT4-fs (loop0): Total free blocks count 0
[  194.478572][  T377] EXT4-fs (loop0): Free/Dirty block details
[  194.484521][  T377] EXT4-fs (loop0): free_blocks=0
[  194.489456][  T377] EXT4-fs (loop0): dirty_blocks=32
[  194.494593][  T377] EXT4-fs (loop0): Block reservation details
[  194.619885][T11483] loop1: detected capacity change from 0 to 2048
[  194.654275][T11483]  loop1: p1 < > p3
[  194.695818][T11484] 9pnet_fd: Insufficient options for proto=fd
[  194.707086][T11483] loop1: p3 size 134217728 extends beyond EOD, truncated
[  195.257556][T11488] loop3: detected capacity change from 0 to 256
[  195.295217][T11488] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  195.335409][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.423536][T11500] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4)
[  195.430064][T11500] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  195.437042][T11504] loop0: detected capacity change from 0 to 512
[  195.437772][T11500] vhci_hcd vhci_hcd.0: Device attached
[  195.479370][T11502] vhci_hcd: connection closed
[  195.480705][ T8144] vhci_hcd: stop threads
[  195.489704][ T8144] vhci_hcd: release socket
[  195.494137][ T8144] vhci_hcd: disconnect device
[  195.504907][T11514] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2587'.
[  195.528846][T11507] loop3: detected capacity change from 0 to 256
[  195.535773][T11507] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  195.575291][T11522] netlink: 'syz.0.2587': attribute type 10 has an invalid length.
[  195.656501][T11531] loop3: detected capacity change from 0 to 512
[  195.663511][T11530] 9pnet_fd: Insufficient options for proto=fd
[  195.670533][T11531] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  195.682101][T11531] EXT4-fs (loop3): 1 truncate cleaned up
[  195.688401][T11531] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  195.746295][T11540] loop4: detected capacity change from 0 to 1024
[  195.755536][T11540] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  195.767772][T11540] ext4 filesystem being mounted at /520/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  195.781530][T11540] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22
[  195.795442][T11540] netlink: 'syz.4.2597': attribute type 21 has an invalid length.
[  195.803596][T11540] netlink: 156 bytes leftover after parsing attributes in process `syz.4.2597'.
[  195.845403][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.849945][T11540] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2597: bg 0: block 393: padding at end of block bitmap is not set
[  195.869031][T11540] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2035 with error 117
[  195.881717][T11540] EXT4-fs (loop4): This should not happen!! Data will be lost
[  195.881717][T11540] 
[  195.958053][T11545] loop0: detected capacity change from 0 to 2048
[  195.994294][T11545]  loop0: p1 < > p3
[  195.999179][T11545] loop0: p3 size 134217728 extends beyond EOD, truncated
[  196.016094][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.295261][T11549] loop3: detected capacity change from 0 to 512
[  196.429147][T11557] loop2: detected capacity change from 0 to 2048
[  196.443467][T11555] loop4: detected capacity change from 0 to 256
[  196.484719][T11555] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  196.514425][T11557]  loop2: p1 < > p3
[  196.537480][T11557] loop2: p3 size 134217728 extends beyond EOD, truncated
[  196.680476][T11571] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2605'.
[  196.701675][T11569] loop0: detected capacity change from 0 to 526
[  196.709403][T11569] EXT4-fs (loop0): failed to parse options in superblock: aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  196.722597][T11573] loop4: detected capacity change from 0 to 512
[  196.729130][T11569] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 not in group (block 1633771873)!
[  196.740020][T11569] EXT4-fs (loop0): group descriptors corrupted!
[  196.747114][T11573] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  196.757836][T11574] netlink: 'syz.1.2605': attribute type 10 has an invalid length.
[  196.850811][T11573] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  196.863557][T11573] ext4 filesystem being mounted at /523/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  196.878656][   T29] kauditd_printk_skb: 652 callbacks suppressed
[  196.878670][   T29] audit: type=1326 audit(1745132439.811:22638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11580 comm="syz.1.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e8330e169 code=0x7ffc0000
[  196.909889][   T29] audit: type=1326 audit(1745132439.811:22639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11580 comm="syz.1.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e8330e169 code=0x7ffc0000
[  196.933537][   T29] audit: type=1326 audit(1745132439.811:22640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11580 comm="syz.1.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e8330e169 code=0x7ffc0000
[  196.957116][   T29] audit: type=1326 audit(1745132439.811:22641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11580 comm="syz.1.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e8330e169 code=0x7ffc0000
[  196.961702][T11583] loop0: detected capacity change from 0 to 1024
[  196.980690][   T29] audit: type=1326 audit(1745132439.811:22642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11580 comm="syz.1.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e8330e169 code=0x7ffc0000
[  196.980722][   T29] audit: type=1326 audit(1745132439.811:22643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11580 comm="syz.1.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e8330e169 code=0x7ffc0000
[  197.034702][   T29] audit: type=1326 audit(1745132439.811:22644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11580 comm="syz.1.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e8330e169 code=0x7ffc0000
[  197.040335][T11584] loop1: detected capacity change from 0 to 512
[  197.058281][   T29] audit: type=1326 audit(1745132439.811:22645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11580 comm="syz.1.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e8330e169 code=0x7ffc0000
[  197.067198][T11584] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  197.088202][   T29] audit: type=1326 audit(1745132439.811:22646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11580 comm="syz.1.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e8330e169 code=0x7ffc0000
[  197.108312][T11573] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2606: bg 0: block 304: padding at end of block bitmap is not set
[  197.121493][   T29] audit: type=1326 audit(1745132439.841:22647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11580 comm="syz.1.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e8330e169 code=0x7ffc0000
[  197.123629][T11583] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  197.159906][T11573] EXT4-fs (loop4): Remounting filesystem read-only
[  197.172694][T11584] EXT4-fs (loop1): 1 truncate cleaned up
[  197.178321][T11583] ext4 filesystem being mounted at /473/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  197.211139][T11584] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  197.233141][T11583] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22
[  197.241856][T11583] netlink: 'syz.0.2609': attribute type 21 has an invalid length.
[  197.244348][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.249754][T11583] netlink: 156 bytes leftover after parsing attributes in process `syz.0.2609'.
[  197.322648][T11583] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2609: bg 0: block 393: padding at end of block bitmap is not set
[  197.338143][T11583] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2035 with error 117
[  197.350794][T11583] EXT4-fs (loop0): This should not happen!! Data will be lost
[  197.350794][T11583] 
[  197.363348][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.397472][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.410966][T11604] openvswitch: netlink: Message has 6 unknown bytes.
[  197.425351][T11603] openvswitch: netlink: Message has 6 unknown bytes.
[  197.460328][T11611] 9pnet_fd: Insufficient options for proto=fd
[  197.682214][T11615] loop3: detected capacity change from 0 to 2048
[  197.724309][T11615]  loop3: p1 < > p3
[  197.764238][T11615] loop3: p3 size 134217728 extends beyond EOD, truncated
[  198.154870][T11619] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2618'.
[  198.225338][T11623] netlink: 'syz.4.2618': attribute type 10 has an invalid length.
[  198.260735][T11625] loop1: detected capacity change from 0 to 2048
[  198.305708][T11630] loop4: detected capacity change from 0 to 2048
[  198.312423][T11630] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  198.387974][T11625]  loop1: unable to read partition table
[  198.393642][T11625] loop1: partition table beyond EOD, truncated
[  198.399919][T11625] loop_reread_partitions: partition scan of loop1 () failed (rc=-5)
[  198.420978][T11639] loop3: detected capacity change from 0 to 526
[  198.433895][T11639] EXT4-fs (loop3): failed to parse options in superblock: aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  198.470717][T11639] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 1633771873)!
[  198.481668][T11639] EXT4-fs (loop3): group descriptors corrupted!
[  198.514972][T11647] loop1: detected capacity change from 0 to 1024
[  198.544679][T11647] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  198.565620][T11647] ext4 filesystem being mounted at /519/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  198.587984][T11647] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22
[  198.596583][T11647] netlink: 'syz.1.2626': attribute type 21 has an invalid length.
[  198.604509][T11647] netlink: 156 bytes leftover after parsing attributes in process `syz.1.2626'.
[  198.634601][T11640] loop4: detected capacity change from 0 to 512
[  198.669689][T11654] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4)
[  198.676211][T11654] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  198.683887][T11654] vhci_hcd vhci_hcd.0: Device attached
[  198.690615][T11640] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  198.716977][T11652] loop3: detected capacity change from 0 to 526
[  198.723465][T11640] ext4 filesystem being mounted at /527/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  198.724569][T11647] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2626: bg 0: block 393: padding at end of block bitmap is not set
[  198.735852][T11652] EXT4-fs (loop3): failed to parse options in superblock: aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  198.760804][T11657] vhci_hcd: connection closed
[  198.761082][   T48] vhci_hcd: stop threads
[  198.770026][   T48] vhci_hcd: release socket
[  198.774571][   T48] vhci_hcd: disconnect device
[  198.779445][T11652] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 1633771873)!
[  198.779645][T11647] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2035 with error 117
[  198.790345][T11652] EXT4-fs (loop3): group descriptors corrupted!
[  198.802896][T11647] EXT4-fs (loop1): This should not happen!! Data will be lost
[  198.802896][T11647] 
[  198.835628][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.892713][T11667] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2632'.
[  198.919675][T11668] 9pnet_fd: Insufficient options for proto=fd
[  198.955034][T11670] netlink: 'syz.3.2632': attribute type 10 has an invalid length.
[  199.143081][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.162816][T11680] loop4: detected capacity change from 0 to 512
[  199.170679][T11680] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.2636: invalid indirect mapped block 256 (level 2)
[  199.184325][T11680] EXT4-fs (loop4): 2 truncates cleaned up
[  199.190484][T11680] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  199.203906][T11680] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.2636: bg 0: block 5: invalid block bitmap
[  199.216563][T11680] EXT4-fs warning (device loop4): ext4_block_to_path:107: block 3355443200 > max in inode 15
[  199.226864][T11680] EXT4-fs warning (device loop4): ext4_block_to_path:107: block 3355443201 > max in inode 15
[  199.294965][T11684] loop2: detected capacity change from 0 to 2048
[  199.301588][T11684] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  199.345835][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.450923][T11684] loop2: detected capacity change from 0 to 512
[  199.502516][T11684] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  199.516503][T11684] ext4 filesystem being mounted at /529/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  199.569081][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.602130][T11698] loop2: detected capacity change from 0 to 1024
[  199.630186][T11698] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  199.644168][T11698] ext4 filesystem being mounted at /530/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  199.657328][T11698] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22
[  199.669041][T11698] netlink: 'syz.2.2640': attribute type 21 has an invalid length.
[  199.677121][T11698] netlink: 156 bytes leftover after parsing attributes in process `syz.2.2640'.
[  199.688819][T11704] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2643'.
[  199.733277][T11698] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2640: bg 0: block 393: padding at end of block bitmap is not set
[  199.748153][T11698] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2035 with error 117
[  199.760788][T11698] EXT4-fs (loop2): This should not happen!! Data will be lost
[  199.760788][T11698] 
[  199.786637][T11712] netlink: 'syz.4.2643': attribute type 10 has an invalid length.
[  199.820206][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.845026][T11719] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4)
[  199.851557][T11719] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  199.859378][T11719] vhci_hcd vhci_hcd.0: Device attached
[  199.866392][T11720] vhci_hcd: connection closed
[  199.866658][   T48] vhci_hcd: stop threads
[  199.875601][   T48] vhci_hcd: release socket
[  199.880089][   T48] vhci_hcd: disconnect device
[  199.895478][T11717] loop1: detected capacity change from 0 to 256
[  199.902434][T11717] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  199.917722][T11728] loop3: detected capacity change from 0 to 2048
[  199.928990][T11723] loop4: detected capacity change from 0 to 256
[  199.935999][T11723] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  199.961896][T11728] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  199.974104][T11728] ext4 filesystem being mounted at /579/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  200.252996][T11738] loop1: detected capacity change from 0 to 2048
[  200.394479][T11738]  loop1: p1 < > p3
[  200.429171][   T48] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm kworker/u8:3: bg 0: block 345: padding at end of block bitmap is not set
[  200.444381][T11738] loop1: p3 size 134217728 extends beyond EOD, truncated
[  200.458432][   T48] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2048 with error 117
[  200.471131][   T48] EXT4-fs (loop3): This should not happen!! Data will be lost
[  200.471131][   T48] 
[  200.499144][   T48] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 2065 with max blocks 2040 with error 28
[  200.511925][   T48] EXT4-fs (loop3): This should not happen!! Data will be lost
[  200.511925][   T48] 
[  200.521696][   T48] EXT4-fs (loop3): Total free blocks count 0
[  200.527893][   T48] EXT4-fs (loop3): Free/Dirty block details
[  200.533847][   T48] EXT4-fs (loop3): free_blocks=0
[  200.538820][   T48] EXT4-fs (loop3): dirty_blocks=2048
[  200.544126][   T48] EXT4-fs (loop3): Block reservation details
[  200.642600][T11750] loop3: detected capacity change from 0 to 1024
[  200.675531][T11750] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  200.687767][T11750] ext4 filesystem being mounted at /583/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  200.700875][T11750] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22
[  200.709556][T11750] netlink: 'syz.3.2658': attribute type 21 has an invalid length.
[  200.718239][T11750] netlink: 156 bytes leftover after parsing attributes in process `syz.3.2658'.
[  200.762843][T11750] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2658: bg 0: block 393: padding at end of block bitmap is not set
[  200.777369][T11750] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2035 with error 117
[  200.790015][T11750] EXT4-fs (loop3): This should not happen!! Data will be lost
[  200.790015][T11750] 
[  200.892955][T11757] loop2: detected capacity change from 0 to 2048
[  200.903366][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.942355][T11766] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2660'.
[  200.981692][T11757]  loop2: p1 < > p3
[  201.000685][T11757] loop2: p3 size 134217728 extends beyond EOD, truncated
[  201.012848][T11771] netlink: 'syz.1.2660': attribute type 10 has an invalid length.
[  201.044724][T11768] loop4: detected capacity change from 0 to 256
[  201.051650][T11768] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  201.096209][T11776] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(4)
[  201.102809][T11776] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  201.110533][T11776] vhci_hcd vhci_hcd.0: Device attached
[  201.110867][T11775] loop1: detected capacity change from 0 to 2048
[  201.122853][T11775] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  201.134572][T11777] vhci_hcd: connection closed
[  201.134895][   T48] vhci_hcd: stop threads
[  201.143900][   T48] vhci_hcd: release socket
[  201.148301][   T48] vhci_hcd: disconnect device
[  201.219382][T11775] loop1: detected capacity change from 0 to 512
[  201.255329][T11775] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  201.267804][T11775] ext4 filesystem being mounted at /527/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  201.288408][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  201.436130][T11790] loop1: detected capacity change from 0 to 2048
[  201.445418][T11790] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  201.593235][T11790] ==================================================================
[  201.601340][T11790] BUG: KCSAN: data-race in generic_buffers_fsync_noflush / writeback_single_inode
[  201.610563][T11790] 
[  201.612893][T11790] write to 0xffff888117e40a98 of 4 bytes by task 11793 on cpu 1:
[  201.620607][T11790]  writeback_single_inode+0x14f/0x3f0
[  201.625989][T11790]  sync_inode_metadata+0x60/0x90
[  201.630946][T11790]  generic_buffers_fsync_noflush+0xd8/0x120
[  201.636866][T11790]  ext4_sync_file+0x1c3/0x6c0
[  201.641550][T11790]  vfs_fsync_range+0x116/0x130
[  201.646319][T11790]  ext4_buffered_write_iter+0x358/0x3c0
[  201.651871][T11790]  ext4_file_write_iter+0x3b2/0xf80
[  201.657091][T11790]  iter_file_splice_write+0x5f2/0x980
[  201.662488][T11790]  direct_splice_actor+0x160/0x2c0
[  201.667629][T11790]  splice_direct_to_actor+0x305/0x680
[  201.673022][T11790]  do_splice_direct+0xd9/0x150
[  201.677818][T11790]  do_sendfile+0x40a/0x690
[  201.682252][T11790]  __x64_sys_sendfile64+0x113/0x160
[  201.687514][T11790]  x64_sys_call+0xfc3/0x2e10
[  201.692120][T11790]  do_syscall_64+0xc9/0x1a0
[  201.696645][T11790]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  201.702551][T11790] 
[  201.704898][T11790] read to 0xffff888117e40a98 of 4 bytes by task 11790 on cpu 0:
[  201.712557][T11790]  generic_buffers_fsync_noflush+0x83/0x120
[  201.718467][T11790]  ext4_sync_file+0x1c3/0x6c0
[  201.723162][T11790]  vfs_fsync_range+0x116/0x130
[  201.727948][T11790]  ext4_buffered_write_iter+0x358/0x3c0
[  201.733526][T11790]  ext4_file_write_iter+0x3b2/0xf80
[  201.738747][T11790]  iter_file_splice_write+0x5f2/0x980
[  201.744162][T11790]  direct_splice_actor+0x160/0x2c0
[  201.749292][T11790]  splice_direct_to_actor+0x305/0x680
[  201.754688][T11790]  do_splice_direct+0xd9/0x150
[  201.759466][T11790]  do_sendfile+0x40a/0x690
[  201.763901][T11790]  __x64_sys_sendfile64+0x113/0x160
[  201.769097][T11790]  x64_sys_call+0xfc3/0x2e10
[  201.773704][T11790]  do_syscall_64+0xc9/0x1a0
[  201.778216][T11790]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  201.784101][T11790] 
[  201.786429][T11790] value changed: 0x00000020 -> 0x00000002
[  201.792138][T11790] 
[  201.794457][T11790] Reported by Kernel Concurrency Sanitizer on:
[  201.800597][T11790] CPU: 0 UID: 0 PID: 11790 Comm: syz.1.2670 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[  201.813092][T11790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  201.823163][T11790] ==================================================================
[  201.835945][T11800] openvswitch: netlink: Message has 6 unknown bytes.
[  202.344328][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.