last executing test programs:

1.978088459s ago: executing program 1 (id=1050):
r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x201, 0x2)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000002, 0x11012, r0, 0xffffd000)
ioctl$EVIOCSCLOCKID(0xffffffffffffffff, 0x40084504, &(0x7f0000ffcffc)=0x4)
syz_clone(0x800100, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
close(r1)
signalfd4(0xffffffffffffffff, &(0x7f0000000080), 0x8, 0x0)
r2 = epoll_create1(0x80000)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000640), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}})
r3 = syz_usbip_server_init(0x5)
ioctl$VFAT_IOCTL_READDIR_SHORT(r3, 0x82307202, &(0x7f0000000100)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000540)='comm\x00')
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0)
ioctl$TIOCVHANGUP(r4, 0x5437, 0x2)

1.071030913s ago: executing program 0 (id=1077):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x18, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = syz_open_procfs(0x0, &(0x7f0000000280)='ns\x00')
readlinkat(r2, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000002780)=""/4112, 0x1010)

1.030348333s ago: executing program 0 (id=1078):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f00000006c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x43}}, 0x10)
setsockopt$inet_udp_int(r0, 0x11, 0x67, &(0x7f0000000000)=0x507, 0x4)
sendmmsg$inet(r0, &(0x7f0000000600)=[{{&(0x7f0000000c00)={0x2, 0x4e20, @multicast2}, 0x10, 0x0}}], 0x1, 0x2000c044)
sendto$inet(r0, &(0x7f00000000c0)="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", 0x467, 0x0, 0x0, 0x0)

1.003761824s ago: executing program 4 (id=1079):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, 0x0, @perf_config_ext={0x0, 0x1}, 0x100000, 0x0, 0x0, 0x6, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="180000000200000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x6f, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8f03000000000060007538e486dd630ace220005"], 0xcfa4)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0xf5ffffff, &(0x7f0000000000)='%', 0x0, 0xd01, 0xbe02, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
sendmmsg(0xffffffffffffffff, &(0x7f00000002c0), 0x40000000000009f, 0x0)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r3, 0x560a, &(0x7f0000000040)={0x0, 0x1, 0xd, 0x2, 0x3})
sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x1c, 0x0, 0x1, 0x0, 0xffffffff, {}, [@WGDEVICE_A_IFINDEX={0x8}]}, 0x1c}}, 0x20000004)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
close_range(r0, 0xffffffffffffffff, 0x0)

986.084524ms ago: executing program 0 (id=1080):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="00012dbd7000fddbdf250500000005000600070000000800090001000000113234"], 0x24}, 0x1, 0x0, 0x0, 0x44004}, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0x4, &(0x7f0000000080)=ANY=[@ANYRES8=r0], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$caif_stream(0x25, 0x1, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
socketpair(0x1, 0x5, 0x0, &(0x7f0000000740))
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
r5 = socket(0x10, 0x803, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, 0x0)
sendmsg$nl_route_sched(r5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000002400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000e00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002200000018010000202070250000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af0ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r8}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'bridge0\x00', 0xf})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x89a2, &(0x7f0000000080))

954.319305ms ago: executing program 2 (id=1081):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
r0 = socket$kcm(0x10, 0x100000000002, 0x4)
sendmsg$kcm(r0, &(0x7f00000039c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000240)="39000000140081ae00002c000500015601618575e285af018025408a63a1dfee6fa171b0d8402fdea2000000171300883795c04a75ba377a1b", 0x39}], 0x1, 0x0, 0x0, 0xc00e}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0xfffffffffffffe9c, 0x10, 0x0, 0x5c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xfffffffffffffe6a)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe, @void, @value}, 0x90)
syz_emit_ethernet(0x36, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @random="a21428c6c085", @void, {@ipv6={0x86dd, @generic={0x1, 0x6, "bcc1d7", 0x0, 0x6c, 0xff, @dev={0xfe, 0x80, '\x00', 0x33}, @loopback}}}}, 0x0)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000080)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r4}, 0x10)
recvmmsg(r0, &(0x7f0000007880)=[{{0x0, 0x0, 0x0}, 0x7}], 0x1, 0x2002, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$tipc(r5, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000660000000000"], 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000040)=ANY=[@ANYBLOB="1c60000018"], 0xfe33)

876.639516ms ago: executing program 4 (id=1083):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000004c0)=ANY=[@ANYBLOB="180100000700002c0000000000000004850000006ec80be22a00000095"], &(0x7f0000000300)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x400040000000}, 0x18)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x20900, 0x0)
ioctl$TCSETS(r2, 0x5402, &(0x7f0000000100)={0x0, 0xf4, 0x1b1d, 0x6ff, 0x14, "080c070021ab0e18a70d8d0900b1fa4dc1e957"})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000c80)=ANY=[@ANYRESHEX=r1], &(0x7f00000002c0)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, r0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r3, 0x18000000000002a0, 0xe06, 0x1000000, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000}, 0x2c)
close(r1)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{0x1}, &(0x7f0000000040), &(0x7f0000000380)=r3}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="1e00000000000000070000000fef000000400000", @ANYRES32=0x1, @ANYBLOB="0a000000000000000000000000000000ffff0000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0300000000000000030000000c00"/28], 0x50)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000005c0), 0x4)
perf_event_open(&(0x7f0000001700)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4002, 0x1, @perf_bp={0x0, 0xc}, 0x8806, 0x7c96f985, 0x634e, 0x0, 0x0, 0x0, 0xfff6, 0x0, 0xa, 0x0, 0xda8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
eventfd2(0x0, 0x180801)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='net/rt_acct\x00')
r6 = socket(0x18, 0x3, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYRES64=r0], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r7}, 0x10)
connect$pppoe(r6, &(0x7f0000000100)={0x18, 0x0, {0x2, @remote, 'vxcan1\x00'}}, 0x1e)
sendfile(r6, r5, 0x0, 0x8)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000940)={r0, 0xe0, &(0x7f0000000840)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, &(0x7f0000000680)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, &(0x7f00000006c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000700)=[0x0, 0x0], 0x0, 0xdf, &(0x7f0000000740)=[{}, {}, {}, {}, {}, {}, {}], 0x38, 0x10, &(0x7f0000000780), &(0x7f00000007c0), 0x8, 0x1b, 0x8, 0x8, &(0x7f0000000800)}}, 0x10)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000780), 0x1, r8}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x3c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000980)={{0x1, 0x1, 0x18, r2, {0x7}}, './file0\x00'})
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='rdma.current\x00', 0x275a, 0x0)
write$UHID_CREATE2(r9, &(0x7f00000000c0)=ANY=[@ANYRES16=r9], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r9, 0x0)

863.483486ms ago: executing program 0 (id=1085):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000200000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001540)={&(0x7f0000000240)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="ff02000000000000000000000000000100000000330000000a0101010000000000000000000000000000000000004e340100000000000000000000000000000004000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000a0000002bbd70000000000000000200000000000000000008000020ffffffdf2c0027cc"], 0x124}}, 0x0)

832.281706ms ago: executing program 0 (id=1086):
open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r0}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0x3, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000950000020000000045ca749622105c0a0110936b7e50c4610ec36de44324dc80a4d1b43ed4254e5239bac51bae15fe2efc655434"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff53000000800395032303030"], 0x15)
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0xfffffffff7ffffe9}, 0x18)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r3 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
syz_usb_disconnect(r3)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000280)=[{0x200000000006, 0x0, 0xfd, 0x7ffc0002}]})
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x0)

808.353097ms ago: executing program 4 (id=1088):
r0 = socket(0x2, 0x80805, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB], 0x39)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c30000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f0000000600)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x4042, &(0x7f00000000c0), 0x7, 0x4c6, &(0x7f0000000b00)="$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")
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
sendmmsg$inet(r0, &(0x7f0000000880)=[{{&(0x7f0000000080)={0x2, 0x0, @rand_addr=0xac1414bb}, 0x10, &(0x7f0000000100)=[{&(0x7f00000000c0)='Q', 0x1}], 0x1}, 0x20000000}, {{&(0x7f0000000180)={0x2, 0x0, @remote}, 0x69, &(0x7f0000000400)=[{&(0x7f0000000240)="b9", 0x26892}], 0xbb}}], 0x2, 0x0)

756.080548ms ago: executing program 3 (id=1089):
syz_emit_ethernet(0x46, &(0x7f0000000400)=ANY=[@ANYBLOB="aaaaaaaaaaaabbbbbbbbbbbb86dd606410a60010000000000000000000000000ffff0a010100fe8000000000000000000000000000aa3200"], 0x0)

755.765708ms ago: executing program 3 (id=1090):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000050000000900010073797a300000000078000000030a01030000000000000000050000000900010073797a300000000008000540000000001c0008800c00024000000000000000000c00014000000000000000000900030073797a3200000000280004800800024000000000140003007465616d5f736c6176655f3000000000080001"], 0xd4}}, 0x0)

746.618358ms ago: executing program 2 (id=1091):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000009000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0xf, 0x1fffffffffffffcd, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000072"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_device, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000010000000500000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)=@newqdisc={0x3c, 0x24, 0xd0f, 0x70bd27, 0x0, {0x60, 0x0, 0x0, 0x0, {0x0, 0x8}, {0xffff, 0xffff}, {0xfff1, 0xc}}, [@qdisc_kind_options=@q_plug={{0x9}, {0xc, 0x2, {0x3, 0x7ffffffd}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x80d1}, 0x3000c81c)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000c40)={'ip6gre0\x00', &(0x7f0000000bc0)={'ip6tnl0\x00', <r3=>0x0, 0x4, 0xa, 0x6, 0x80, 0x80, @loopback, @local, 0x20, 0x7, 0x6, 0x9}})
getpeername$packet(0xffffffffffffffff, &(0x7f0000000c80)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000010c0)=0x14)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000001140)={'sit0\x00', &(0x7f0000001100)={'syztnl0\x00', <r5=>0x0, 0x1, 0x700, 0x8, 0x40, {{0x6, 0x4, 0x3, 0x5, 0x18, 0x64, 0x0, 0x3, 0x0, 0x0, @loopback, @private=0xa010101, {[@ra={0x94, 0x4}]}}}}})
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(r7, 0x8933, &(0x7f0000004700)={'team0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, r8, {}, {}, {0x8, 0x5}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x8881}, 0x0)
sendmsg$ETHTOOL_MSG_COALESCE_GET(0xffffffffffffffff, &(0x7f0000001440)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000001400)={&(0x7f0000001480)=ANY=[@ANYBLOB="78020000", @ANYRES16=0x0, @ANYBLOB="00032cbd7000fedbdf25130000000c00018008000100", @ANYRES32=0x0, @ANYBLOB="40000180080003000100000008000100", @ANYRES32=0x0, @ANYBLOB="080003000300000014000200766c616e310000000000000000000000080003000300000008000100", @ANYRES32=0x0, @ANYBLOB="5c000180080003000100000014000200696878dc4e6e300000000000000000001400020070696d726567300000000000305f746f5f7400020070696d367265673100008a76fa535a350a8a000000000000380001800800010000000000000000000000000000000000000000770848af46865a81cdc7eb6500f25a4e2ea241d11f6aeb966bbe54c9ce21e4879833ad8fc2f2f0803c1ccca0b74bdd3c9048673da6e1de008d84e8d158028bc615fedf98f216cde293a1d558e52fdb37fb871de13d939739ace9dfe1b63b331000b01fab83bbed", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000300000000000800030003000000140002006970766c616e30000000000000000000a800018014000200766972745f776966693000000000000014000200776730000000000000000000000000001400020077673000000000000000000000000000140002006e6963766630000000000000000000001400020076657468305f766c616e0000000000000800030001000000140002006e6574706369300000000000000000000800030002000000080003000100000014000200697036746e6c3000000000000000000020000180140002006d61637365633000000000000000000008000300020000001c00018008000100", @ANYRES32=0x0, @ANYBLOB="0800030002000000080003000100000048000180080003000000000014000200626f6e643000000000000000000000001400020076657468315f746f5f626f6e64000000140002006272696467655f736c6176655f31000034000180080003000200000008000100", @ANYRES32=0x0, @ANYBLOB="080003000100000008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=r3, @ANYBLOB="08000300060000002400018008000100", @ANYRES32=r4, @ANYBLOB="080003000000000008000100", @ANYRES32=r5, @ANYBLOB="08000100", @ANYRES32=r8, @ANYBLOB], 0x278}, 0x1, 0x0, 0x0, 0x40}, 0x8081)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r2}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0a00000001010000ff7f0000cc"], 0x50)
r9 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800"], 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000500000095000000000000009500a5050000000077d8f3b423cdac8d80000000000000002be16ad10a48b243ccc42606d25dfd73a015e0ca7fc2506a0f7535f7866907dc0200000000000000ae669e17fd6587d452d6453559c3421eed73d56615fe6c54c3b3ffe1b4ce25d7c983c044c03bf3a48dfe47ec9dd6c091c30b93bfae76d9ebacd3ed3e26e7a23129d6606fd28a69989d552af6bda9df2c3af36effff9af2551ce896165127cb3f011a7d06602e2fc40848228567ffb400000000003ed38ae89d24e1cebfba2f87925bfacba83109751fe6c05405d027edd68149ee99eef6a6992308a4fc0b7c70bc677d6dd4aed4af7500d7900a820b6347184e9a217b5614cd50cbe43a1ed2526814bc0000e9e086ce48e90defb6670c3df2624f56da648d28ad0a97aec7291c25447c106a99893e10db21901eb397b2f5fd71400fa7a050fbbef9e326ea27e513e96068fd1e8a43e89f9c85c822a961546ed5363c17ff1432d08806bc376e3e49ee52b59d13182e1f24ed200ada10eb1affb87ba55b2d72078e9f40b4ae7d01000000d11cd22c35d32940000088dde499000000fdffffff00000000000f000000ef0000000000000000000000000c52f4ebd2c893bb97a068bd10734a83584898eccb26f7b789cfc4cd995fa3e11a5c74c85404e2df3ad37b729ac83b0dcb4f48f3c3356b9997fc455a17690b6f7f9ccbe4b1701941b18aba6b16455a66c3b84b138efc20a546d3d5227e23b03f2a834391ade2ff3e93ee296c4082ee73e7c353312c9d75711ce1623e9c54bdff59d2a69dcb7d84c235b23a4480c2461b405cfd1a38992f295ad3adc94cd07c850d1ce6d0b2fea02c24e9280333152fb794e4ddea02017a6c139b50101caecaf2abc0847a1ff2f7fc3c2b99a96fc4275ad107274e2934a87a4ddcdb112754ca5bdec0ead14b6c0f19a43a2f05c7f0be31491eb8c9ff68236c8600040000000000000000000066e034c81c3cab64e4fc8dc55ce0ada18dcbf31c6e82893add3bee3e10fc873d1d922b0877cbcd95b839d3059d5140a1f742f6e75741e39e5cb6a193e06a1043375b0f61b5d4e17c81baa31b924d84f224baf1221c15fa12313ffbfa7c2730309f66705b71e6205e7cbf3643561eabb9a63fcd604d5cc27e1317ad94cf438d71873e540be16b6ca205081173bd03c4754fc4674812daab482fd390a1c903b5d28a1eb247b5837d7603b92495d5c569f6433c3fca5206cb0000003fdbbd3892c52c2e7612e05de32322e980a3d69931e2c9312dd517c96f2ee90362476ed853c4c9b7d4ebf13cbaa795860e92a3d7d004f2c491db38eb769f094d5d48b262cc35c40682138cf13a49aa9f27abec00002f01ba1251aaf2385416ca719300"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r10}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x9, 0x0, 0x7ffc0002}]})
setgroups(0x0, 0x0)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB, @ANYRES32=r9, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mount_setattr(0xffffffffffffff9c, 0x0, 0x9900, &(0x7f0000000200)={0x0, 0x0, 0xc0000}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000180)='kfree\x00', r11}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="180000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b7"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x3c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r12 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
preadv(r12, &(0x7f0000000080)=[{&(0x7f0000000480)=""/240, 0xf0}, {&(0x7f00000000c0)=""/179, 0xb3}, {0x0}], 0x3, 0x0, 0x0)

736.581928ms ago: executing program 3 (id=1092):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x5, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$inet6(0xa, 0x6, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_io_uring_setup(0x3c5f, &(0x7f0000000240)={0x0, 0x0, 0x27, 0x2}, 0x0, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
listen(r2, 0x5)
r3 = socket$phonet(0x23, 0x2, 0x1)
capset(0x0, 0x0)
ioctl$SIOCPNDELRESOURCE(r3, 0x89ef, &(0x7f0000002300)=0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x22000406, &(0x7f0000001580)={[{@data_err_abort}, {@nojournal_checksum}, {@barrier_val={'barrier', 0x3d, 0x40}}, {@errors_continue}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@noload}, {@noload}, {@jqfmt_vfsv1}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x4000}}], [], 0x2c}, 0x1, 0x4bf, &(0x7f0000001000)="$eJzs3E1oHGUfAPD/TD763aR9+76v/dCuVjFYTZq0ag8eVBR6EQQ9VPAS01hq01aaCLYUG0XqUTx5VI+C4MmLJwUR9aR41bsIRXpp9SArszuT7Ca7280m29ju7we7+zzzsc/8Z54n88w8mQ2gZ5WytyRia0T8EhFD1Wz9AqXqx41rl6b+vHZpKoly+YU/kspy169dmioWLdbbkmdG0oj03ST2Nih39sLF05MzM9Pn8/zY3JnXx2YvXHzk1JnJk9Mnp89OHD165PD4449NPLomcWZxXd/z1rl9u4+99MFzU+V45fvPsu3dms+vjaNqeNVllqIU5dzi1MHK+wOr/vZ/l2016aR/HTeEFemLiOxwDVTa/1D0xeLBG4pn31nIfLNOGwh0TXZu2rFsal/+mS6cv4A7UaKNQ48qzvjZ9W/xupX9j/V29ansfboS/438VZ3TH2l2LTtcvWLva7L+/9osp7wkP5h/bo2I4/N/fZS9ouF9CACAtfVV1v95uFH/L63r22zPx1CGI+JgROyMiP9ExK6I+G/eD/p/RNy1wvJLS/LL+z8/beoosDZl/b8n8rGt+v5fmi+RLOS2VeIfSF49NTN9KN8nIzGwIcuPtyjj62d+fr/ZvFJN/y97ZeUXfcF8O37v31C/zonJuclVhFzn6tsRe/obxZ8sjARke2B3ROzp4PuzfXbqoU/3ZentW5bPv0n8rY/9GowzlT+JeLB6/OdjSfyFpFpSs/HJsY0xM31orKgVy/3w45Xna/MDNem6+De2F9PGToNtIDv+mxvW/zz+ohkU47WzKy/jyq/vNb2mWX78kzg+X7tEXv9rakJW/weTFyvp4jrqzcm5ufPjEYP5hLrpE4vrFvli+Sz+kQON2//OiL8/ztfbGxFZJb47Iu6JiP35tt8bEfdFxIEW8X/39P2vtd5Drdp/d2Xxn2h1/COGk9rx+g4Sfae//bJZ+e39/TtSSY3kU9r5+5cXXpyOmm5gp/sNAAAAbidpZQw6SUeLdM3NqV2xOZ05Nzt3sBRvnD1RHasejoG0uNM1VHM/dDy/N1zkJ5bkD0fEjsp/Gm2q5Eenzs1sW8/AgcqzOnXtP9J0dLQ677dm//QC3DlWNI5W+3Tg51+s/cYAt5TnNaF3af/Qu7R/6F3aP/SuRu3/csSNddgU4BZz/ofepf1D79L+oXdp/9CTlj8SX/zQQidP+i8mdh5b1epdT5SHuvLN8ytfq69LkUbtj3Y0TSStfhyhZSLS1ssMtlF6k8TLH1arYPcqQHrTZZ7sYul5Yn+e2BAR7a51ufO92kH9AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuP39EwAA///xS9f+")

623.00699ms ago: executing program 1 (id=1093):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'sit0\x00', <r1=>0x0})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000080)='sys_enter\x00', r2}, 0x10)
capget(&(0x7f00000001c0)={0x3553128e}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYRESHEX=r1], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800", @ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x4, &(0x7f0000000580)=ANY=[@ANYBLOB="1805000000000000000000000000000885000000490000000400000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={0x0, r4}, 0x18)
mknod(&(0x7f0000000180)='./file0\x00', 0x1ffa, 0x0)
pipe2$9p(&(0x7f0000000000)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r6, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r7 = dup(r6)
write$P9_RLERRORu(r7, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r7, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r7, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r5, @ANYBLOB=',wfdno=', @ANYRESHEX=r7])
creat(&(0x7f0000000380)='./file0\x00', 0x80)
sendmsg$key(0xffffffffffffffff, 0x0, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f00000005c0)='percpu_free_percpu\x00', r8, 0x0, 0x1000}, 0x18)
r9 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r9, 0x6, 0x0, 0x0, 0x0)
r10 = socket$key(0xf, 0x3, 0x2)
setsockopt$sock_int(r10, 0x1, 0x2d, &(0x7f0000000000)=0x7, 0x4)

518.117162ms ago: executing program 1 (id=1094):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)
sigaltstack(0x0, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
flock(r0, 0x5)
r3 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
flock(r3, 0x2)
dup3(r3, r0, 0x0)

517.369222ms ago: executing program 2 (id=1095):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000540)=@raw={'raw\x00', 0x8, 0x3, 0x4d8, 0x0, 0x11, 0x148, 0x0, 0x0, 0x440, 0x2a8, 0x2a8, 0x440, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'ip_vti0\x00', {0x0, 0x0, 0x3f, 0x0, 0x88000000, 0x3, 0x7}}}, @common=@unspec=@bpf1={{0x230}, @pinned={0x1, 0x0, 0x0, './file0\x00'}}]}, @unspec=@CT0={0x48}}, {{@ip={@multicast2, @empty, 0x0, 0x0, 'vlan0\x00', 'netdevsim0\x00'}, 0x0, 0xd0, 0x100, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@unspec=@quota={{0x38}, {0x0, 0x0, 0x81}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x538)

488.518122ms ago: executing program 2 (id=1096):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000200000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001540)={&(0x7f0000000240)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="ff02000000000000000000000000000100000000330000000a0101010000000000000000000000000000000000004e340100000000000000000000000000000004000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000a0000002bbd70000000000000000200000000000000000008000020ffffffdf2c0027cc"], 0x124}}, 0x0)

472.095542ms ago: executing program 3 (id=1097):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r0}, 0x18)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18897d9ea85e5efbb064a4cb8c83fff2407d5fb50800000010"], &(0x7f0000000100)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x400000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000780)='mm_page_free\x00', r1}, 0x18)
syz_mount_image$ext4(&(0x7f00000004c0)='ext2\x00', &(0x7f0000000180)='./file1\x00', 0x0, &(0x7f0000000580)={[{@block_validity}, {@mblk_io_submit}, {@noquota}, {@errors_remount}, {@init_itable_val={'init_itable', 0x3d, 0x4}}, {@inlinecrypt}]}, 0x1, 0x54b, &(0x7f0000000800)="$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")
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0xfffffffffffffffa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={&(0x7f0000000640)=ANY=[@ANYBLOB="9feb010018000000000000003400000034000000060000000400000000000012020000000000000000000001050000018000000000000000010000850200000000000000010000000000000400000000da"], 0x0, 0x52, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x4008032, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='svc_xprt_accept\x00', r0, 0x0, 0x8000000000000002}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffa}]})
msgget$private(0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ff"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r2}, 0x38)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x18, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB, @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
r4 = io_uring_setup(0x69cb, &(0x7f00000002c0)={0x0, 0x698c, 0x40, 0x2, 0xfffffffe})
r5 = syz_open_dev$usbfs(0x0, 0x400000001fc, 0x301)
ioctl$USBDEVFS_SUBMITURB(r5, 0x8038550a, 0x0)
close_range(r4, 0xffffffffffffffff, 0x200000000000000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x4)
msgsnd(0x0, 0x0, 0x8, 0x800)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x1b48999799ac08f)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r6}, 0x18)

471.444092ms ago: executing program 2 (id=1098):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r0}, 0x18)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18897d9ea85e5efbb064a4cb8c83fff2407d5fb50800000010"], &(0x7f0000000100)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x400000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000780)='mm_page_free\x00', r1}, 0x18)
syz_mount_image$ext4(&(0x7f00000004c0)='ext2\x00', &(0x7f0000000180)='./file1\x00', 0x0, &(0x7f0000000580)={[{@block_validity}, {@mblk_io_submit}, {@noquota}, {@errors_remount}, {@init_itable_val={'init_itable', 0x3d, 0x4}}, {@inlinecrypt}]}, 0x1, 0x54b, &(0x7f0000000800)="$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")
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0xfffffffffffffffa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={&(0x7f0000000640)=ANY=[@ANYBLOB="9feb010018000000000000003400000034000000060000000400000000000012020000000000000000000001050000018000000000000000010000850200000000000000010000000000000400000000da"], 0x0, 0x52, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x4008032, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='svc_xprt_accept\x00', r0, 0x0, 0x8000000000000002}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffa}]})
msgget$private(0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ff"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r2}, 0x38)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x18, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB, @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
r4 = io_uring_setup(0x69cb, &(0x7f00000002c0)={0x0, 0x698c, 0x40, 0x2, 0xfffffffe})
r5 = syz_open_dev$usbfs(0x0, 0x400000001fc, 0x301)
ioctl$USBDEVFS_SUBMITURB(r5, 0x8038550a, 0x0)
close_range(r4, 0xffffffffffffffff, 0x200000000000000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x4)
msgsnd(0x0, 0x0, 0x8, 0x800)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x1b48999799ac08f)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r6}, 0x18)

449.159142ms ago: executing program 4 (id=1099):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r1, &(0x7f0000002100)={0x0, 0x0, &(0x7f00000020c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="20000000020105000000000000000000000000070c0019"], 0x20}, 0x1, 0x0, 0x0, 0x1}, 0x2004000c)

439.426233ms ago: executing program 1 (id=1100):
faccessat(0xffffffffffffffff, 0x0, 0x5)

362.810404ms ago: executing program 1 (id=1101):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000004c0)=ANY=[@ANYBLOB="180100000700002c0000000000000004850000006ec80be22a00000095"], &(0x7f0000000300)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x400040000000}, 0x18)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x20900, 0x0)
ioctl$TCSETS(r2, 0x5402, &(0x7f0000000100)={0x0, 0xf4, 0x1b1d, 0x6ff, 0x14, "080c070021ab0e18a70d8d0900b1fa4dc1e957"})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000c80)=ANY=[@ANYRESHEX=r1], &(0x7f00000002c0)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, r0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r3, 0x18000000000002a0, 0xe06, 0x1000000, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000}, 0x2c)
close(r1)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{0x1}, &(0x7f0000000040), &(0x7f0000000380)=r3}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="1e00000000000000070000000fef000000400000", @ANYRES32=0x1, @ANYBLOB="0a000000000000000000000000000000ffff0000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0300000000000000030000000c00"/28], 0x50)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000005c0), 0x4)
perf_event_open(&(0x7f0000001700)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4002, 0x1, @perf_bp={0x0, 0xc}, 0x8806, 0x7c96f985, 0x634e, 0x0, 0x0, 0x0, 0xfff6, 0x0, 0xa, 0x0, 0xda8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
eventfd2(0x0, 0x180801)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='net/rt_acct\x00')
r6 = socket(0x18, 0x3, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYRES64=r0], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r7}, 0x10)
connect$pppoe(r6, &(0x7f0000000100)={0x18, 0x0, {0x2, @remote, 'vxcan1\x00'}}, 0x1e)
sendfile(r6, r5, 0x0, 0x8)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000940)={r0, 0xe0, &(0x7f0000000840)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, &(0x7f0000000680)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, &(0x7f00000006c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000700)=[0x0, 0x0], 0x0, 0xdf, &(0x7f0000000740)=[{}, {}, {}, {}, {}, {}, {}], 0x38, 0x10, &(0x7f0000000780), &(0x7f00000007c0), 0x8, 0x1b, 0x8, 0x8, &(0x7f0000000800)}}, 0x10)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000780), 0x1, r8}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x3c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000980)={{0x1, 0x1, 0x18, r2, {0x7}}, './file0\x00'})
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='rdma.current\x00', 0x275a, 0x0)
write$UHID_CREATE2(r9, &(0x7f00000000c0)=ANY=[@ANYRES16=r9], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r9, 0x0)

362.241054ms ago: executing program 4 (id=1102):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
r0 = socket$kcm(0x10, 0x100000000002, 0x4)
sendmsg$kcm(r0, &(0x7f00000039c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000240)="39000000140081ae00002c000500015601618575e285af018025408a63a1dfee6fa171b0d8402fdea2000000171300883795c04a75ba377a1b", 0x39}], 0x1, 0x0, 0x0, 0xc00e}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0xfffffffffffffe9c, 0x10, 0x0, 0x5c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xfffffffffffffe6a)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe, @void, @value}, 0x90)
syz_emit_ethernet(0x36, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @random="a21428c6c085", @void, {@ipv6={0x86dd, @generic={0x1, 0x6, "bcc1d7", 0x0, 0x6c, 0xff, @dev={0xfe, 0x80, '\x00', 0x33}, @loopback}}}}, 0x0)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000080)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r4}, 0x10)
recvmmsg(r0, &(0x7f0000007880)=[{{0x0, 0x0, 0x0}, 0x7}], 0x1, 0x2002, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$tipc(r5, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000660000000000"], 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000040)=ANY=[@ANYBLOB="1c60000018"], 0xfe33)

355.045524ms ago: executing program 1 (id=1103):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f00000017c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0xffffffff}, 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0xffffffffffffff24, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
link(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
pipe2(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
r3 = gettid()
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0x13, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="660a00000000000061118c0000000000850000001a00"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
write$P9_RGETLOCK(r2, &(0x7f0000001440)=ANY=[], 0xffffff6a)
pipe2(&(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
tee(r1, r5, 0xfffffffffffffc01, 0x0)
tee(r1, r5, 0x60000000000, 0x0)
vmsplice(r4, 0x0, 0x0, 0x8)
r6 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$restrict_keyring(0x1d, r6, 0x0, 0x0)
add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x3}, 0x0, 0x0, r6)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r7 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
setsockopt$MRT_DONE(r7, 0x0, 0xc9, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@base={0x12, 0x8, 0x4, 0x7cb4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

148.762067ms ago: executing program 4 (id=1104):
r0 = socket(0x2, 0x80805, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
sendmmsg$inet(r0, &(0x7f0000000880)=[{{&(0x7f0000000080)={0x2, 0x0, @rand_addr=0xac1414bb}, 0x10, &(0x7f0000000100)=[{&(0x7f00000000c0)='Q', 0x1}], 0x1}, 0x20000000}, {{&(0x7f0000000180)={0x2, 0x0, @remote}, 0x69, &(0x7f0000000400)=[{&(0x7f0000000240)="b9", 0x26892}], 0xbb}}], 0x2, 0x0)

60.440489ms ago: executing program 0 (id=1105):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
flock(r0, 0x5)
r2 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
flock(r2, 0x2)
dup3(r2, r0, 0x0)

56.462809ms ago: executing program 3 (id=1106):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000", @ANYRES32=0x0, @ANYRES32], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xb, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='mm_migrate_pages_start\x00', r1}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x6}, 0x18)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240), 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r2, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000200)='mm_page_free\x00', r3}, 0x10)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x28012, r4, 0xe25f5000)

16.173999ms ago: executing program 2 (id=1107):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
syz_mount_image$ext4(&(0x7f0000000400)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2000002, &(0x7f0000000280)={[{@user_xattr}]}, 0x9, 0x53f, &(0x7f0000000540)="$eJzs3c9vG1kdAPCvJ7GT7WY3LewBVkALLBRU1W7c3Wq1F7YXEFqthEAcEIduSNwo1K5L7Kw2IRLZvwEOXOFP4IDEAWlPHLhxROKAkJYDUoEI1CCBZDTjSdZNnK278Q+wPx9pNPPm2e/7ntuZN/PszAtgZl2JiP2IKEXEWxGxnO8v5Eu83l3S1z062Fs7PNhbK0Sn862/FbL8dF/0vCf1bF7mYkR882sR3yucjtva2b23Wq/XtvJ0pd14UGnt7F7fbKxu1DZq96vVWyu3brx685Xq0Np6ufGLh1/dfOPbv/7Vp9//3f6Xf5hWaynP623HkBTj+DMpHsdJzUfEG0MONilz+bo04Xrw0SQR8bGI+Fx2/C/HXPa/EwCYZp3OcnSWe9MAwLRLsjGwQlLOxwKWIknK5e4Y3gtxIak3W+1rd5vb99e7Y2UXo5jc3azXblxa+MMPsiuGYiFNr2R5WX6Wrp5I34yISxHxk4VnsnR5rVlfn9xlDwDMtGdP9P//XOj2/wPo860eAPB/Y3HA182NuB4AwPgM2v8DANND/w8As2eA/j//sn9/5HUBAMbjKe7/k1HWAwAYH+P/ADB79P8AMFO+8eab6dI5zJ9/vf72zva95tvX12ute+XG9lp5rbn1oLzRbG5kz+xpPKm8erP5YOXl2H6n0q612pXWzu6dRnP7fvtO9lzvO7XiWFoFAHyYS5ff+30hIvZfeyZbomcuB301TDe/54HZ5SF+MLvM9gWza/B7/N+OtB7A5PS9D1jsu/m4nz5FEL8zgv8pVz85+Pi/OZ5huhj/h9n10R7pvzD0egDjZ/wfZlenUzg553/pOAsAmErn+I1/50fDuggBJupJvwMeyvf/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMGWWIuL7UUjK+VzgS5Ek5XLEcxFxMYqFu5v12o2IeD4uR0RxIU2vTLrSAMA5JX8p5PN/XV1+aelkbqnwr2yy/1La++f7tlbS/X8/3r9wNH1Y9YP3nWNeQQBgyN5Zbbe3qvm650b+0cHe2tEyzvo8vB3/yaciXjs82MuWbs58zGfrxexa4sI/Cnm6OxfpixExN4T4++9GxCf6tb+QjY1czGc+7Y0feeznxho/eSx+kuV11+nF18eHUBeYNe/djojX+x1/SVzJ1v2P/8XsDHV+D293Czs69x0e7JWO4h+d/+b6xE+P+SuDxnj5N18/tbOz3M17N+LF+cfiH59/juIXzoj/0oDx//ipz/z4K2fkdX4WcTX6x++NVWk3HlRaO7vXNxurG7WN2v1q9dbKrRuv3nylWsnGqCtHI9Wn/fW1a8+fVbe0/RfOiL/Yt/2l4/d+YcD2//zfb333sx8S/0uf7xc/iRf6xu9K+8QvDhh/9cIvz5y+O42/fkb7n/Tvf23A+O//eXd9wJcCAGPQ2tm9t1qv17bOtZHehQ6jnFMbaRWHWmCfjVJP5f8Uo431VBvFUX2qI9+YP75WHG7J30lLHHNzkqG34lwbj8YVa7LnJWD0PjjoJ10TAAAAAAAAAAAAAADgLOP406VJtxEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDp9d8AAAD//+AUxos=")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$IPVS_CMD_SET_DEST(0xffffffffffffffff, 0x0, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="1b00"/20, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xcc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x4, @perf_config_ext={0x7, 0xffffffffffffffff}, 0x828, 0x0, 0x0, 0x3, 0x1, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x2b, 0x1, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0))
socket$kcm(0x10, 0x2, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000240))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000500))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100))
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0xb, 0x0, 0x0, &(0x7f00000002c0)='syzkaller\x00', 0x10, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'netdevsim0\x00'})
lsetxattr$system_posix_acl(&(0x7f00000001c0)='./file0\x00', &(0x7f00000003c0)='system.posix_acl_default\x00', &(0x7f0000000b80)={{}, {0x1, 0x4}, [{0x2, 0x7}, {0x2, 0x2}, {0x2, 0x0, 0xee00}], {0x4, 0x2}, [{0x8, 0x6}], {0x10, 0x1}, {0x20, 0x6}}, 0x44, 0x1)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x8946, &(0x7f0000000080))
getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0x14, 0x0, &(0x7f0000000140)=0x1d)
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f0000000a00)={0x2, 0x201, 0xdded, 0x5}, &(0x7f0000000c80)=0x10)
socket(0x2, 0x80805, 0x0)

0s ago: executing program 3 (id=1108):
socket$nl_xfrm(0x10, 0x3, 0x6) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000001c0)={'sit0\x00', <r3=>0x0}) (async, rerun: 64)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100000, 0x0, 0x0, 0x6, 0x3, 0x10, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) (rerun: 64)
r4 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) (async)
r5 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r5, 0x0) (async, rerun: 64)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48) (rerun: 64)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000300)=@broute={'broute\x00', 0x20, 0x0, 0x90, [0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000040], 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='\x00'/17]}, 0x89) (async)
write$selinux_load(r4, &(0x7f0000000000)=ANY=[], 0x2000) (async)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x18, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r7}, 0x10)
sendmsg$nl_route_sched(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r3, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0x10, 0x1}}]}}, @TCA_RATE={0x6}]}, 0x4c}, 0x1, 0x0, 0x0, 0x48801}, 0x0) (async, rerun: 64)
clock_gettime(0x0, &(0x7f00000003c0)={<r8=>0x0, <r9=>0x0}) (rerun: 64)
futex(&(0x7f00000002c0)=0x1, 0x7, 0x2, &(0x7f0000000400)={r8, r9+60000000}, &(0x7f0000000440)=0x2, 0x1) (async)
r10 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r11}, 0x10) (async)
r12 = perf_event_open(&(0x7f00000004c0)={0x2, 0x80, 0xfe, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3, 0x4}, 0x40db, 0x0, 0x4, 0x8, 0xa, 0x100, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$PERF_EVENT_IOC_SET_FILTER(r12, 0x40082406, &(0x7f0000000000)='cpu<=0&|!') (async, rerun: 32)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10) (rerun: 32)
r13 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r14 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000240), r13)
sendmsg$IEEE802154_START_REQ(r13, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=r14, @ANYBLOB="010000000000000000000d0000000500070012000000050018007f00000006000800feff0000050017000000000005001a000000000006000a00ffff00000500190004000000050007000700000005001b00ff0000000500010001000000060008"], 0x6c}, 0x1, 0x0, 0x0, 0x18000}, 0x0) (async)
r15 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f00001d8000/0x2000)=nil, 0x2000, 0x8, 0x12, r15, 0x0)

kernel console output (not intermixed with test programs):

:4496264kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:13852kB inactive_anon:0kB active_file:59932kB inactive_file:8144kB unevictable:0kB writepending:5888kB present:5242880kB managed:5098248kB mlocked:0kB bounce:0kB free_pcp:148116kB local_pcp:74820kB free_cma:0kB
[   53.893629][ T3873] lowmem_reserve[]: 0 0 0 0
[   53.893654][ T3873] Node 0 
[   53.898139][ T3883] , 34-34
[   53.899995][ T3883] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.145: couldn't read orphan inode 15 (err -116)
[   53.903851][ T3873] DMA: 0*4kB 0*8kB 0*16kB 
[   53.908638][ T3883] EXT4-fs (loop3): Remounting filesystem read-only
[   53.912500][ T3873] 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 
[   53.918833][ T3883] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   53.921099][ T3873] 1*2048kB (M) 3*4096kB (M) 
[   53.925659][ T3883] SELinux: (dev loop3, type ext2) getxattr errno 5
[   53.926292][ T3883] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.931236][ T3873] = 15360kB
[   53.931249][ T3873] Node 0 DMA32: 3*4kB (M) 2*8kB (M) 3*16kB (M) 3*32kB (M) 3*64kB (M) 3*128kB (M) 3*256kB (M) 3*512kB (M) 4*1024kB (M) 3*2048kB (M) 717*4096kB (M) = 2950124kB
[   54.367295][ T3873] Node 0 Normal: 36*4kB (UME) 15*8kB (UME) 12*16kB (UM) 11*32kB (M) 10*64kB (UM) 13*128kB (UME) 8*256kB (UME) 5*512kB (UM) 9*1024kB (UM) 3*2048kB (UM) 1091*4096kB (UM) = 4491816kB
[   54.385397][ T3873] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[   54.394719][ T3873] 17256 total pagecache pages
[   54.399403][ T3873] 0 pages in swap cache
[   54.403566][ T3873] Free swap  = 124744kB
[   54.407727][ T3873] Total swap = 124996kB
[   54.411877][ T3873] 2097051 pages RAM
[   54.415793][ T3873] 0 pages HighMem/MovableOnly
[   54.420477][ T3873] 80210 pages reserved
[   54.499110][ T3895] loop4: detected capacity change from 0 to 512
[   54.513256][ T3897] Cannot find del_set index 4 as target
[   54.536037][ T3898] loop0: detected capacity change from 0 to 512
[   54.543488][ T3898] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   54.554726][ T3898] EXT4-fs (loop0): orphan cleanup on readonly fs
[   54.562496][ T3898] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.142: bg 0: block 248: padding at end of block bitmap is not set
[   54.577686][ T3898] EXT4-fs error (device loop0): ext4_acquire_dquot:6927: comm syz.0.142: Failed to acquire dquot type 1
[   54.590318][ T3898] EXT4-fs (loop0): 1 truncate cleaned up
[   54.597580][ T3898] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   54.614681][ T3898] Cannot find del_set index 4 as target
[   54.635246][ T3895] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   54.643723][ T3895] EXT4-fs (loop4): orphan cleanup on readonly fs
[   54.650611][ T3895] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.149: invalid indirect mapped block 256 (level 2)
[   54.772874][ T3895] EXT4-fs (loop4): 2 truncates cleaned up
[   54.794426][ T3895] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   54.875337][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.909788][ T3911] loop3: detected capacity change from 0 to 512
[   54.937004][ T3911] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   54.957657][ T3911] ext4 filesystem being mounted at /38/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.071423][ T3918] EXT4-fs error (device loop3): ext4_do_update_inode:5158: inode #19: comm syz.3.156: corrupted inode contents
[   55.111957][ T3918] EXT4-fs error (device loop3): ext4_dirty_inode:6046: inode #19: comm syz.3.156: mark_inode_dirty error
[   55.133879][ T3918] EXT4-fs error (device loop3): ext4_do_update_inode:5158: inode #19: comm syz.3.156: corrupted inode contents
[   55.158664][ T3918] EXT4-fs error (device loop3): ext4_xattr_delete_inode:3006: inode #19: comm syz.3.156: mark_inode_dirty error
[   55.172913][ T3918] EXT4-fs error (device loop3): ext4_xattr_delete_inode:3009: inode #19: comm syz.3.156: mark inode dirty (error -117)
[   55.204879][ T3918] EXT4-fs warning (device loop3): ext4_evict_inode:276: xattr delete (err -117)
[   55.249445][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   55.371682][ T3923] FAULT_INJECTION: forcing a failure.
[   55.371682][ T3923] name failslab, interval 1, probability 0, space 0, times 0
[   55.384431][ T3923] CPU: 0 UID: 0 PID: 3923 Comm: syz.1.161 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(voluntary) 
[   55.384463][ T3923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   55.384479][ T3923] Call Trace:
[   55.384487][ T3923]  <TASK>
[   55.384495][ T3923]  dump_stack_lvl+0xf6/0x150
[   55.384523][ T3923]  dump_stack+0x15/0x1a
[   55.384570][ T3923]  should_fail_ex+0x261/0x270
[   55.384595][ T3923]  should_failslab+0x8f/0xb0
[   55.384617][ T3923]  kmem_cache_alloc_noprof+0x59/0x340
[   55.384674][ T3923]  ? getname_flags+0x81/0x3b0
[   55.384704][ T3923]  getname_flags+0x81/0x3b0
[   55.384730][ T3923]  user_path_at+0x26/0x140
[   55.384781][ T3923]  __se_sys_mount+0x25e/0x2e0
[   55.384810][ T3923]  __x64_sys_mount+0x67/0x80
[   55.384857][ T3923]  x64_sys_call+0xd11/0x2e10
[   55.384880][ T3923]  do_syscall_64+0xc9/0x1c0
[   55.384946][ T3923]  ? clear_bhb_loop+0x25/0x80
[   55.384970][ T3923]  ? clear_bhb_loop+0x25/0x80
[   55.384995][ T3923]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.385021][ T3923] RIP: 0033:0x7fc026d1d169
[   55.385040][ T3923] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   55.385110][ T3923] RSP: 002b:00007fc025381038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   55.385131][ T3923] RAX: ffffffffffffffda RBX: 00007fc026f35fa0 RCX: 00007fc026d1d169
[   55.385146][ T3923] RDX: 0000200000000040 RSI: 0000200000000000 RDI: 0000000000000000
[   55.385157][ T3923] RBP: 00007fc025381090 R08: 0000200000000100 R09: 0000000000000000
[   55.385169][ T3923] R10: 0000000000200000 R11: 0000000000000246 R12: 0000000000000001
[   55.385230][ T3923] R13: 0000000000000000 R14: 00007fc026f35fa0 R15: 00007ffff11531e8
[   55.385248][ T3923]  </TASK>
[   55.631526][ T3927] netlink: 4 bytes leftover after parsing attributes in process `syz.4.162'.
[   55.920281][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.966322][ T3959] loop1: detected capacity change from 0 to 2048
[   55.986424][   T29] kauditd_printk_skb: 236 callbacks suppressed
[   55.986498][   T29] audit: type=1326 audit(1743034391.004:682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3963 comm="syz.3.175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd5ad169 code=0x7ffc0000
[   56.017356][ T3964] FAULT_INJECTION: forcing a failure.
[   56.017356][ T3964] name failslab, interval 1, probability 0, space 0, times 0
[   56.030171][ T3964] CPU: 0 UID: 0 PID: 3964 Comm: syz.3.175 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(voluntary) 
[   56.030204][ T3964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   56.030217][ T3964] Call Trace:
[   56.030223][ T3964]  <TASK>
[   56.030231][ T3964]  dump_stack_lvl+0xf6/0x150
[   56.030257][ T3964]  dump_stack+0x15/0x1a
[   56.030327][ T3964]  should_fail_ex+0x261/0x270
[   56.030364][ T3964]  should_failslab+0x8f/0xb0
[   56.030458][ T3964]  __kmalloc_cache_noprof+0x55/0x320
[   56.030483][ T3964]  ? audit_log_d_path+0x8e/0x150
[   56.030550][ T3964]  audit_log_d_path+0x8e/0x150
[   56.030589][ T3964]  audit_log_d_path_exe+0x42/0x70
[   56.030665][ T3964]  audit_log_task+0x1f1/0x250
[   56.030697][ T3964]  audit_seccomp+0x68/0x130
[   56.030734][ T3964]  __seccomp_filter+0x694/0x10e0
[   56.030780][ T3964]  ? vfs_write+0x669/0x950
[   56.030888][ T3964]  ? putname+0xe1/0x100
[   56.030919][ T3964]  __secure_computing+0x7e/0x160
[   56.030945][ T3964]  syscall_trace_enter+0xcf/0x1f0
[   56.030971][ T3964]  ? fpregs_assert_state_consistent+0x83/0xa0
[   56.031016][ T3964]  do_syscall_64+0xaa/0x1c0
[   56.031039][ T3964]  ? clear_bhb_loop+0x25/0x80
[   56.031165][ T3964]  ? clear_bhb_loop+0x25/0x80
[   56.031200][ T3964]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.031220][ T3964] RIP: 0033:0x7f07dd5ad169
[   56.031247][ T3964] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.031264][ T3964] RSP: 002b:00007f07dbc17038 EFLAGS: 00000246 ORIG_RAX: 000000000000001a
[   56.031283][ T3964] RAX: ffffffffffffffda RBX: 00007f07dd7c5fa0 RCX: 00007f07dd5ad169
[   56.031298][ T3964] RDX: 0000000000000000 RSI: 087abbe8d1cc6ad9 RDI: 0000200000952000
[   56.031312][ T3964] RBP: 00007f07dbc17090 R08: 0000000000000000 R09: 0000000000000000
[   56.031326][ T3964] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   56.031340][ T3964] R13: 0000000000000000 R14: 00007f07dd7c5fa0 R15: 00007ffdc1f0a5d8
[   56.031359][ T3964]  </TASK>
[   56.248191][ T3970] loop0: detected capacity change from 0 to 512
[   56.255521][   T29] audit: type=1326 audit(1743034391.034:683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3963 comm="syz.3.175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f07dd5abad0 code=0x7ffc0000
[   56.278938][   T29] audit: type=1326 audit(1743034391.034:684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3963 comm="syz.3.175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f07dd5abc1f code=0x7ffc0000
[   56.302042][   T29] audit: type=1326 audit(1743034391.034:685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3963 comm="syz.3.175" exe="<no_memory>" sig=0 arch=c000003e syscall=26 compat=0 ip=0x7f07dd5ad169 code=0x7ffc0000
[   56.324668][   T29] audit: type=1326 audit(1743034391.274:686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3963 comm="syz.3.175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f07dd5abb7c code=0x7ffc0000
[   56.347860][   T29] audit: type=1326 audit(1743034391.274:687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3963 comm="syz.3.175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f07dd5abc1f code=0x7ffc0000
[   56.351134][ T3970] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   56.371058][   T29] audit: type=1326 audit(1743034391.274:688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3963 comm="syz.3.175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f07dd5abdca code=0x7ffc0000
[   56.402121][   T29] audit: type=1326 audit(1743034391.274:689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3963 comm="syz.3.175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd5ad169 code=0x7ffc0000
[   56.403649][ T3970] EXT4-fs (loop0): orphan cleanup on readonly fs
[   56.425439][   T29] audit: type=1326 audit(1743034391.274:690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3963 comm="syz.3.175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd5ad169 code=0x7ffc0000
[   56.457181][ T3970] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.178: invalid indirect mapped block 256 (level 2)
[   56.491961][ T3959] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   56.505427][ T3970] EXT4-fs (loop0): 2 truncates cleaned up
[   56.511477][ T3970] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   56.543819][ T3959] ext4 filesystem being mounted at /46/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   56.600850][ T3953] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   56.614171][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.628776][ T3953] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   56.639002][   T29] audit: type=1400 audit(1743034391.664:691): avc:  denied  { ioctl } for  pid=3952 comm="syz.4.172" path="socket:[5569]" dev="sockfs" ino=5569 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   56.676256][ T3953] netlink: 4 bytes leftover after parsing attributes in process `syz.4.172'.
[   56.688182][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.714533][ T3982] netlink: 4 bytes leftover after parsing attributes in process `syz.0.180'.
[   56.724792][ T3953] wireguard0: entered promiscuous mode
[   56.730368][ T3953] wireguard0: entered allmulticast mode
[   56.745412][ T3982] team0 (unregistering): Port device team_slave_0 removed
[   56.754755][ T3982] team0 (unregistering): Port device team_slave_1 removed
[   56.906555][ T3997] loop2: detected capacity change from 0 to 512
[   56.915290][ T3997] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   56.923403][ T3997] EXT4-fs (loop2): orphan cleanup on readonly fs
[   56.930406][ T4001] netlink: 16 bytes leftover after parsing attributes in process `syz.0.183'.
[   56.930406][ T3997] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.185: invalid indirect mapped block 256 (level 2)
[   56.953199][ T3997] EXT4-fs (loop2): 2 truncates cleaned up
[   56.959447][ T3997] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   57.125059][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.147340][ T4022] netlink: 4 bytes leftover after parsing attributes in process `syz.2.189'.
[   57.328168][ T4040] Cannot find del_set index 4 as target
[   57.430784][ T4049] loop1: detected capacity change from 0 to 512
[   57.440676][ T4049] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   57.449056][ T4049] EXT4-fs (loop1): orphan cleanup on readonly fs
[   57.458030][ T4049] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.199: invalid indirect mapped block 256 (level 2)
[   57.472159][ T4049] EXT4-fs (loop1): 2 truncates cleaned up
[   57.483498][ T4049] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   57.529731][ T4062] loop4: detected capacity change from 0 to 512
[   57.539453][ T4062] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   57.556825][ T4062] EXT4-fs (loop4): orphan cleanup on readonly fs
[   57.566372][ T4062] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.204: invalid indirect mapped block 256 (level 2)
[   57.598279][ T4062] EXT4-fs (loop4): 2 truncates cleaned up
[   57.613341][ T4062] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   57.648076][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.695190][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.822499][ T4083] loop3: detected capacity change from 0 to 512
[   57.830196][ T4083] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   57.838354][ T4083] EXT4-fs (loop3): orphan cleanup on readonly fs
[   57.845211][ T4083] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.213: invalid indirect mapped block 256 (level 2)
[   57.859088][ T4083] EXT4-fs (loop3): 2 truncates cleaned up
[   57.865304][ T4083] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   57.910638][ T4077] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   57.929686][ T4077] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   57.940436][ T4077] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.995007][ T4077] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.051832][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.062026][ T4077] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.097924][ T4098] loop3: detected capacity change from 0 to 512
[   58.114431][ T4100] loop0: detected capacity change from 0 to 512
[   58.121013][ T4100] EXT4-fs: Ignoring removed mblk_io_submit option
[   58.127792][ T4100] EXT4-fs: inline encryption not supported
[   58.131936][ T4098] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   58.146878][ T4098] ext4 filesystem being mounted at /53/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   58.148346][ T4100] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   58.166637][ T4100] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[   58.175933][ T4077] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.187088][ T4100] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended
[   58.197697][ T4100] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c02c, mo2=0002]
[   58.205977][ T4100] System zones: 0-2, 18-18, 34-34
[   58.211450][ T4100] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.219: couldn't read orphan inode 15 (err -116)
[   58.224783][ T4100] EXT4-fs (loop0): Remounting filesystem read-only
[   58.231919][ T4100] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   58.239215][ T4098] EXT4-fs error (device loop3): ext4_do_update_inode:5158: inode #19: comm syz.3.218: corrupted inode contents
[   58.246169][ T4100] SELinux: (dev loop0, type ext2) getxattr errno 5
[   58.256647][ T4098] EXT4-fs error (device loop3): ext4_dirty_inode:6046: inode #19: comm syz.3.218: mark_inode_dirty error
[   58.275537][ T4098] EXT4-fs error (device loop3): ext4_do_update_inode:5158: inode #19: comm syz.3.218: corrupted inode contents
[   58.281616][ T4077] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   58.296079][ T4100] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.305470][ T4098] EXT4-fs error (device loop3): ext4_xattr_delete_inode:3006: inode #19: comm syz.3.218: mark_inode_dirty error
[   58.310087][ T4077] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   58.327671][ T4098] EXT4-fs error (device loop3): ext4_xattr_delete_inode:3009: inode #19: comm syz.3.218: mark inode dirty (error -117)
[   58.330978][ T4077] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   58.349658][ T4098] EXT4-fs warning (device loop3): ext4_evict_inode:276: xattr delete (err -117)
[   58.352166][ T4077] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   58.396994][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   58.588211][ T4122] netlink: 4 bytes leftover after parsing attributes in process `syz.0.225'.
[   58.616753][ T4122] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.644855][ T4122] bridge_slave_1 (unregistering): left allmulticast mode
[   58.652461][ T4122] bridge_slave_1 (unregistering): left promiscuous mode
[   58.659675][ T4122] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.716662][ T4126] netlink: 4 bytes leftover after parsing attributes in process `syz.1.228'.
[   58.748081][ T4126] netlink: 4 bytes leftover after parsing attributes in process `syz.1.228'.
[   59.171345][ T4135] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   59.179923][ T4135] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   59.284429][ T4137] Cannot find del_set index 4 as target
[   59.319286][ T4142] loop3: detected capacity change from 0 to 512
[   59.346700][ T4142] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   59.360095][ T4142] ext4 filesystem being mounted at /56/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   59.451828][ T4142] EXT4-fs error (device loop3): ext4_do_update_inode:5158: inode #19: comm syz.3.233: corrupted inode contents
[   59.470079][ T4142] EXT4-fs error (device loop3): ext4_dirty_inode:6046: inode #19: comm syz.3.233: mark_inode_dirty error
[   59.481788][ T4142] EXT4-fs error (device loop3): ext4_do_update_inode:5158: inode #19: comm syz.3.233: corrupted inode contents
[   59.494273][ T4142] EXT4-fs error (device loop3): ext4_xattr_delete_inode:3006: inode #19: comm syz.3.233: mark_inode_dirty error
[   59.508354][ T4142] EXT4-fs error (device loop3): ext4_xattr_delete_inode:3009: inode #19: comm syz.3.233: mark inode dirty (error -117)
[   59.521284][ T4142] EXT4-fs warning (device loop3): ext4_evict_inode:276: xattr delete (err -117)
[   59.553159][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   59.599859][ T4165] loop1: detected capacity change from 0 to 512
[   59.630537][ T4161] netlink: 4 bytes leftover after parsing attributes in process `syz.2.241'.
[   59.639728][ T4165] EXT4-fs: Ignoring removed mblk_io_submit option
[   59.653554][ T4165] EXT4-fs: inline encryption not supported
[   59.679121][ T4165] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   59.688298][ T4165] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[   59.735774][ T4170] netlink: 8 bytes leftover after parsing attributes in process `syz.2.243'.
[   59.777956][ T4173] No such timeout policy "syz0"
[   59.797901][ T4165] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[   59.827271][ T4165] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c02c, mo2=0002]
[   59.836791][ T4165] System zones: 0-2, 18-18, 34-34
[   59.842253][ T4165] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.242: couldn't read orphan inode 15 (err -116)
[   59.855538][ T4165] EXT4-fs (loop1): Remounting filesystem read-only
[   59.862451][ T4165] SELinux: (dev loop1, type ext2) getxattr errno 5
[   60.043114][ T4186] netlink: 4 bytes leftover after parsing attributes in process `syz.4.248'.
[   60.078989][ T4186] netlink: 4 bytes leftover after parsing attributes in process `syz.4.248'.
[   60.212567][ T4206] netlink: 4 bytes leftover after parsing attributes in process `syz.1.254'.
[   60.481424][ T4221] loop2: detected capacity change from 0 to 512
[   60.500072][ T4221] ext4 filesystem being mounted at /47/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   60.669482][ T4236] EXT4-fs error (device loop2): ext4_do_update_inode:5158: inode #19: comm syz.2.259: corrupted inode contents
[   60.685763][ T4236] EXT4-fs error (device loop2): ext4_dirty_inode:6046: inode #19: comm syz.2.259: mark_inode_dirty error
[   60.697689][ T4236] EXT4-fs error (device loop2): ext4_do_update_inode:5158: inode #19: comm syz.2.259: corrupted inode contents
[   60.710782][ T4236] EXT4-fs error (device loop2): ext4_xattr_delete_inode:3006: inode #19: comm syz.2.259: mark_inode_dirty error
[   60.723099][ T4236] EXT4-fs error (device loop2): ext4_xattr_delete_inode:3009: inode #19: comm syz.2.259: mark inode dirty (error -117)
[   60.737883][ T4236] EXT4-fs warning (device loop2): ext4_evict_inode:276: xattr delete (err -117)
[   61.502084][   T29] kauditd_printk_skb: 109 callbacks suppressed
[   61.502100][   T29] audit: type=1326 audit(1743034396.514:801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4282 comm="syz.4.280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9f691d169 code=0x7ffc0000
[   61.531824][   T29] audit: type=1326 audit(1743034396.514:802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4282 comm="syz.4.280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9f691d169 code=0x7ffc0000
[   61.555187][   T29] audit: type=1326 audit(1743034396.514:803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4282 comm="syz.4.280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa9f691d169 code=0x7ffc0000
[   61.578569][   T29] audit: type=1326 audit(1743034396.514:804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4282 comm="syz.4.280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9f691d169 code=0x7ffc0000
[   61.601857][   T29] audit: type=1326 audit(1743034396.514:805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4282 comm="syz.4.280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9f691d169 code=0x7ffc0000
[   61.625565][   T29] audit: type=1326 audit(1743034396.514:806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4282 comm="syz.4.280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=86 compat=0 ip=0x7fa9f691d169 code=0x7ffc0000
[   61.648805][   T29] audit: type=1326 audit(1743034396.514:807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4282 comm="syz.4.280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9f691d169 code=0x7ffc0000
[   61.672178][   T29] audit: type=1326 audit(1743034396.514:808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4282 comm="syz.4.280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa9f691d169 code=0x7ffc0000
[   61.695381][   T29] audit: type=1326 audit(1743034396.514:809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4282 comm="syz.4.280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9f691d169 code=0x7ffc0000
[   61.718635][   T29] audit: type=1326 audit(1743034396.514:810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4282 comm="syz.4.280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fa9f691d169 code=0x7ffc0000
[   61.757131][ T4283] siw: device registration error -23
[   61.842736][ T4301] loop2: detected capacity change from 0 to 512
[   61.905114][ T4301] ext4 filesystem being mounted at /56/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.227698][ T4333] loop0: detected capacity change from 0 to 512
[   62.263995][ T4333] EXT4-fs: Ignoring removed mblk_io_submit option
[   62.264496][ T4335] netlink: 'syz.4.299': attribute type 20 has an invalid length.
[   62.270573][ T4333] EXT4-fs: inline encryption not supported
[   62.284879][ T4335] __nla_validate_parse: 6 callbacks suppressed
[   62.284956][ T4335] netlink: 8 bytes leftover after parsing attributes in process `syz.4.299'.
[   62.301435][ T4333] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   62.310526][ T4333] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[   62.339302][ T4333] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended
[   62.353020][ T4333] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c02c, mo2=0002]
[   62.362384][ T4333] System zones: 0-2, 18-18, 34-34
[   62.370654][ T4333] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.298: couldn't read orphan inode 15 (err -116)
[   62.384005][ T4333] EXT4-fs (loop0): Remounting filesystem read-only
[   62.391010][ T4333] SELinux: (dev loop0, type ext2) getxattr errno 5
[   62.527473][ T4348] loop0: detected capacity change from 0 to 512
[   62.545400][ T4348] ext4 filesystem being mounted at /53/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.687562][ T4365] netlink: 'syz.3.310': attribute type 20 has an invalid length.
[   62.702247][ T4342] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   62.702368][ T4342] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   62.722554][ T4365] netlink: 8 bytes leftover after parsing attributes in process `syz.3.310'.
[   62.736132][ T4342] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.500999][ T4372] loop0: detected capacity change from 0 to 512
[   63.713349][ T4342] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.848907][ T4373] loop2: detected capacity change from 0 to 512
[   64.554098][ T4377] loop1: detected capacity change from 0 to 512
[   64.633495][ T4372] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   64.743874][ T4377] EXT4-fs: Ignoring removed mblk_io_submit option
[   64.750447][ T4377] EXT4-fs: inline encryption not supported
[   64.779124][ T4377] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   64.788322][ T4377] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[   65.525021][ T4342] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   65.883809][ T4372] EXT4-fs (loop0): orphan cleanup on readonly fs
[   65.893652][ T4373] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   65.898126][ T4372] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.308: bg 0: block 248: padding at end of block bitmap is not set
[   65.916904][ T4373] workqueue: Failed to create a rescuer kthread for wq "ext4-rsv-conversion": -EINTR
[   65.916976][ T4373] EXT4-fs: failed to create workqueue
[   65.932617][ T4373] EXT4-fs (loop2): mount failed
[   65.939044][ T4372] EXT4-fs error (device loop0): ext4_acquire_dquot:6927: comm syz.0.308: Failed to acquire dquot type 1
[   65.952160][ T4372] EXT4-fs (loop0): 1 truncate cleaned up
[   65.959376][ T4342] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   65.970366][ T4377] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[   65.979778][ T4377] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c02c, mo2=0002]
[   65.989601][ T4377] System zones: 0-2, 18-18, 34-34
[   65.995529][ T4377] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.313: couldn't read orphan inode 15 (err -116)
[   66.019613][ T4377] EXT4-fs (loop1): Remounting filesystem read-only
[   66.032334][ T4377] SELinux: (dev loop1, type ext2) getxattr errno 5
[   66.051314][ T4342] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   66.071071][ T4342] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   66.082676][ T4342] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   66.094667][ T4342] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   66.194169][ T4390] loop2: detected capacity change from 0 to 512
[   66.204753][ T4390] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   66.227994][ T4390] EXT4-fs (loop2): orphan cleanup on readonly fs
[   66.239487][ T4390] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.316: invalid indirect mapped block 256 (level 2)
[   66.253990][ T4398] netlink: 16 bytes leftover after parsing attributes in process `syz.4.320'.
[   66.255043][ T4390] EXT4-fs (loop2): 2 truncates cleaned up
[   66.476618][ T4415] loop3: detected capacity change from 0 to 512
[   66.549647][ T4425] loop0: detected capacity change from 0 to 512
[   66.678057][ T4425] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   66.691247][ T4415] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   66.707654][ T4415] EXT4-fs (loop3): orphan cleanup on readonly fs
[   66.718828][ T4425] EXT4-fs (loop0): orphan cleanup on readonly fs
[   66.726694][ T4425] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.327: bg 0: block 248: padding at end of block bitmap is not set
[   66.741360][ T4425] __quota_error: 68 callbacks suppressed
[   66.741374][ T4425] Quota error (device loop0): write_blk: dquota write failed
[   66.754653][ T4425] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[   66.764576][ T4425] EXT4-fs error (device loop0): ext4_acquire_dquot:6927: comm syz.0.327: Failed to acquire dquot type 1
[   66.776659][ T4425] EXT4-fs (loop0): 1 truncate cleaned up
[   66.787676][ T4425] Cannot find del_set index 4 as target
[   66.809359][ T4415] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.328: invalid indirect mapped block 256 (level 2)
[   66.864866][ T4415] EXT4-fs (loop3): 2 truncates cleaned up
[   67.473880][ T4444] netlink: 16 bytes leftover after parsing attributes in process `syz.3.334'.
[   67.488788][   T29] audit: type=1326 audit(1743034402.504:877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4443 comm="syz.3.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd5ad169 code=0x7ffc0000
[   67.520797][ T4447] netlink: 4 bytes leftover after parsing attributes in process `syz.2.331'.
[   67.521123][   T29] audit: type=1326 audit(1743034402.524:878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4443 comm="syz.3.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f07dd5ad169 code=0x7ffc0000
[   67.552976][   T29] audit: type=1326 audit(1743034402.524:879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4443 comm="syz.3.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd5ad169 code=0x7ffc0000
[   67.576329][   T29] audit: type=1326 audit(1743034402.534:880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4443 comm="syz.3.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f07dd5ad169 code=0x7ffc0000
[   67.599516][   T29] audit: type=1326 audit(1743034402.534:881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4443 comm="syz.3.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd5ad169 code=0x7ffc0000
[   67.623419][   T29] audit: type=1326 audit(1743034402.534:882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4443 comm="syz.3.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f07dd5ad169 code=0x7ffc0000
[   67.647029][   T29] audit: type=1326 audit(1743034402.534:883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4443 comm="syz.3.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd5ad169 code=0x7ffc0000
[   67.670397][   T29] audit: type=1326 audit(1743034402.534:884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4443 comm="syz.3.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd5ad169 code=0x7ffc0000
[   67.785567][ T4451] loop4: detected capacity change from 0 to 512
[   67.864787][ T4451] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   67.887411][ T4451] EXT4-fs (loop4): orphan cleanup on readonly fs
[   67.895709][ T4451] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.339: invalid indirect mapped block 256 (level 2)
[   67.934949][ T4451] EXT4-fs (loop4): 2 truncates cleaned up
[   68.038176][ T4465] loop1: detected capacity change from 0 to 512
[   68.065809][ T4465] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   68.096314][ T4465] EXT4-fs (loop1): orphan cleanup on readonly fs
[   68.120692][ T4465] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.344: invalid indirect mapped block 256 (level 2)
[   68.135712][ T4465] EXT4-fs (loop1): 2 truncates cleaned up
[   68.179673][ T4479] Cannot find del_set index 4 as target
[   68.517623][ T4511] loop0: detected capacity change from 0 to 512
[   68.525729][ T4511] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   68.536618][ T4511] EXT4-fs (loop0): orphan cleanup on readonly fs
[   68.544253][ T4511] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.357: bg 0: block 248: padding at end of block bitmap is not set
[   68.560002][ T4511] EXT4-fs error (device loop0): ext4_acquire_dquot:6927: comm syz.0.357: Failed to acquire dquot type 1
[   68.572245][ T4511] EXT4-fs (loop0): 1 truncate cleaned up
[   68.598790][ T4511] Cannot find del_set index 4 as target
[   68.665290][ T4513] siw: device registration error -23
[   68.883229][ T4525] mmap: syz.3.367 (4525) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   68.937063][ T4525] xt_hashlimit: max too large, truncated to 1048576
[   69.183727][ T4532] loop3: detected capacity change from 0 to 512
[   69.285795][ T4532] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   69.327379][ T4532] EXT4-fs (loop3): orphan cleanup on readonly fs
[   69.384134][ T4532] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.370: invalid indirect mapped block 256 (level 2)
[   69.418208][ T4532] EXT4-fs (loop3): 2 truncates cleaned up
[   69.444909][ T4517] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   69.476442][ T4517] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   69.658825][ T4542] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   69.698609][ T4542] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   69.728669][ T4542] netlink: 4 bytes leftover after parsing attributes in process `syz.1.374'.
[   69.781456][ T4552] loop2: detected capacity change from 0 to 512
[   69.803898][ T4542] wireguard0: entered promiscuous mode
[   69.809435][ T4542] wireguard0: entered allmulticast mode
[   69.836425][ T4552] ext4 filesystem being mounted at /75/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   69.871339][ T4552] EXT4-fs error (device loop2): ext4_do_update_inode:5158: inode #19: comm syz.2.378: corrupted inode contents
[   69.910129][ T4552] EXT4-fs error (device loop2): ext4_dirty_inode:6046: inode #19: comm syz.2.378: mark_inode_dirty error
[   69.951435][ T4552] EXT4-fs error (device loop2): ext4_do_update_inode:5158: inode #19: comm syz.2.378: corrupted inode contents
[   69.994068][ T4552] EXT4-fs error (device loop2): ext4_xattr_delete_inode:3006: inode #19: comm syz.2.378: mark_inode_dirty error
[   70.040162][ T4552] EXT4-fs error (device loop2): ext4_xattr_delete_inode:3009: inode #19: comm syz.2.378: mark inode dirty (error -117)
[   70.088422][ T4552] EXT4-fs warning (device loop2): ext4_evict_inode:276: xattr delete (err -117)
[   70.139130][ T4564] loop4: detected capacity change from 0 to 512
[   70.160846][ T4564] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[   70.177712][ T4564] EXT4-fs error (device loop4): __ext4_fill_super:5497: inode #2: comm syz.4.381: casefold flag without casefold feature
[   70.212487][ T4564] EXT4-fs (loop4): get root inode failed
[   70.218266][ T4564] EXT4-fs (loop4): mount failed
[   70.298407][ T4564] netlink: 68 bytes leftover after parsing attributes in process `syz.4.381'.
[   70.461496][ T4570] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   70.471117][ T4570] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   70.544160][ T4593] loop0: detected capacity change from 0 to 512
[   70.566553][ T4593] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   70.577495][ T4570] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   70.607576][ T4593] EXT4-fs (loop0): orphan cleanup on readonly fs
[   70.615801][ T4593] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.390: bg 0: block 248: padding at end of block bitmap is not set
[   70.632315][ T4593] EXT4-fs error (device loop0): ext4_acquire_dquot:6927: comm syz.0.390: Failed to acquire dquot type 1
[   70.646079][ T4593] EXT4-fs (loop0): 1 truncate cleaned up
[   70.703768][ T4598] netlink: 4 bytes leftover after parsing attributes in process `syz.2.393'.
[   70.837498][ T4570] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   71.025476][ T4570] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   71.181126][ T4570] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   71.396502][ T4570] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   71.451752][ T4593] Cannot find del_set index 4 as target
[   71.506313][ T4619] netlink: 16 bytes leftover after parsing attributes in process `syz.2.400'.
[   71.520580][ T4570] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   71.619197][ T4570] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   71.647834][ T4622] loop4: detected capacity change from 0 to 512
[   71.660872][ T4622] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[   71.684706][ T4622] EXT4-fs error (device loop4): __ext4_fill_super:5497: inode #2: comm syz.4.401: casefold flag without casefold feature
[   71.701841][ T4570] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   71.710558][ T4622] EXT4-fs (loop4): get root inode failed
[   71.716267][ T4622] EXT4-fs (loop4): mount failed
[   72.056888][ T4628] loop1: detected capacity change from 0 to 512
[   72.075299][ T4628] ext4 filesystem being mounted at /89/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.091579][ T4628] EXT4-fs error (device loop1): ext4_do_update_inode:5158: inode #19: comm syz.1.403: corrupted inode contents
[   72.106587][ T4628] EXT4-fs error (device loop1): ext4_dirty_inode:6046: inode #19: comm syz.1.403: mark_inode_dirty error
[   72.131169][ T4628] EXT4-fs error (device loop1): ext4_do_update_inode:5158: inode #19: comm syz.1.403: corrupted inode contents
[   72.144917][ T4628] EXT4-fs error (device loop1): ext4_xattr_delete_inode:3006: inode #19: comm syz.1.403: mark_inode_dirty error
[   72.162513][ T4628] EXT4-fs error (device loop1): ext4_xattr_delete_inode:3009: inode #19: comm syz.1.403: mark inode dirty (error -117)
[   72.193516][ T4628] EXT4-fs warning (device loop1): ext4_evict_inode:276: xattr delete (err -117)
[   72.369077][ T4663] netlink: 4 bytes leftover after parsing attributes in process `syz.2.418'.
[   72.417910][ T4666] loop3: detected capacity change from 0 to 512
[   72.436200][ T4666] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   72.506696][ T4663] wireguard0: entered promiscuous mode
[   72.512479][ T4663] wireguard0: entered allmulticast mode
[   72.534450][ T4666] EXT4-fs (loop3): orphan cleanup on readonly fs
[   72.542225][ T4666] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.415: bg 0: block 248: padding at end of block bitmap is not set
[   72.559570][ T4666] __quota_error: 169 callbacks suppressed
[   72.559632][ T4666] Quota error (device loop3): write_blk: dquota write failed
[   72.572945][ T4666] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[   72.582903][ T4666] EXT4-fs error (device loop3): ext4_acquire_dquot:6927: comm syz.3.415: Failed to acquire dquot type 1
[   72.596352][ T4666] EXT4-fs (loop3): 1 truncate cleaned up
[   72.732512][   T29] audit: type=1326 audit(1743034407.744:1050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4676 comm="syz.0.421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b499ad169 code=0x7ffc0000
[   72.840996][   T29] audit: type=1326 audit(1743034407.784:1051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4676 comm="syz.0.421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b499ad169 code=0x7ffc0000
[   72.864557][   T29] audit: type=1326 audit(1743034407.784:1052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4676 comm="syz.0.421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9b499ad169 code=0x7ffc0000
[   72.887930][   T29] audit: type=1326 audit(1743034407.784:1053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4676 comm="syz.0.421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b499ad169 code=0x7ffc0000
[   72.911347][   T29] audit: type=1326 audit(1743034407.784:1054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4676 comm="syz.0.421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f9b499ad169 code=0x7ffc0000
[   72.934726][   T29] audit: type=1326 audit(1743034407.784:1055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4676 comm="syz.0.421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b499ad169 code=0x7ffc0000
[   72.958245][   T29] audit: type=1326 audit(1743034407.784:1056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4676 comm="syz.0.421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b499ad169 code=0x7ffc0000
[   72.981673][   T29] audit: type=1326 audit(1743034407.784:1057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4676 comm="syz.0.421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f9b499ad169 code=0x7ffc0000
[   73.140890][ T4688] netlink: 4 bytes leftover after parsing attributes in process `syz.1.424'.
[   73.311435][ T4688] team0 (unregistering): Port device team_slave_0 removed
[   73.331490][ T4694] loop4: detected capacity change from 0 to 512
[   73.380251][ T4666] EXT4-fs mount: 34 callbacks suppressed
[   73.380267][ T4666] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   73.403701][ T4666] Cannot find del_set index 4 as target
[   73.415279][ T4688] team0 (unregistering): Port device team_slave_1 removed
[   73.429956][ T4690] netlink: 'syz.0.421': attribute type 11 has an invalid length.
[   73.437823][ T4690] netlink: 140 bytes leftover after parsing attributes in process `syz.0.421'.
[   73.459953][ T4694] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   73.472789][ T4694] ext4 filesystem being mounted at /77/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   73.645781][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   73.981192][ T4701] netlink: 'syz.0.427': attribute type 7 has an invalid length.
[   74.026885][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.048050][ T4719] loop2: detected capacity change from 0 to 512
[   74.058469][ T4719] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   74.072774][ T4719] EXT4-fs (loop2): orphan cleanup on readonly fs
[   74.080649][ T4719] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.435: invalid indirect mapped block 256 (level 2)
[   74.095591][ T4719] EXT4-fs (loop2): 2 truncates cleaned up
[   74.101684][ T4719] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   74.133662][ T4729] loop3: detected capacity change from 0 to 512
[   74.168288][ T4729] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   74.187685][ T4737] loop0: detected capacity change from 0 to 512
[   74.188994][ T4729] EXT4-fs (loop3): orphan cleanup on readonly fs
[   74.200788][ T4729] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.436: invalid indirect mapped block 256 (level 2)
[   74.215636][ T4729] EXT4-fs (loop3): 2 truncates cleaned up
[   74.221753][ T4729] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   74.245061][ T4737] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   74.253162][ T4737] EXT4-fs (loop0): orphan cleanup on readonly fs
[   74.279789][ T4737] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.442: invalid indirect mapped block 256 (level 2)
[   74.303919][ T4737] EXT4-fs (loop0): 2 truncates cleaned up
[   74.310113][ T4737] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   74.515086][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.568601][ T4760] loop1: detected capacity change from 0 to 512
[   74.592972][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.618375][ T4760] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   74.632637][ T4760] ext4 filesystem being mounted at /103/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   74.646338][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.674265][ T4760] EXT4-fs error (device loop1): ext4_do_update_inode:5158: inode #19: comm syz.1.452: corrupted inode contents
[   74.687168][ T4760] EXT4-fs error (device loop1): ext4_dirty_inode:6046: inode #19: comm syz.1.452: mark_inode_dirty error
[   74.699207][ T4760] EXT4-fs error (device loop1): ext4_do_update_inode:5158: inode #19: comm syz.1.452: corrupted inode contents
[   74.713496][ T4760] EXT4-fs error (device loop1): ext4_xattr_delete_inode:3006: inode #19: comm syz.1.452: mark_inode_dirty error
[   74.728711][ T4760] EXT4-fs error (device loop1): ext4_xattr_delete_inode:3009: inode #19: comm syz.1.452: mark inode dirty (error -117)
[   74.754114][ T4760] EXT4-fs warning (device loop1): ext4_evict_inode:276: xattr delete (err -117)
[   74.825371][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   74.888277][ T4796] Cannot find del_set index 4 as target
[   74.956635][ T4812] loop4: detected capacity change from 0 to 512
[   74.966126][ T4812] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   74.974373][ T4812] EXT4-fs (loop4): orphan cleanup on readonly fs
[   74.981442][ T4812] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.471: invalid indirect mapped block 256 (level 2)
[   74.996350][ T4812] EXT4-fs (loop4): 2 truncates cleaned up
[   75.002715][ T4812] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   75.138081][ T4820] netlink: 8 bytes leftover after parsing attributes in process `syz.1.462'.
[   75.147087][ T4810] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   75.155681][ T4810] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   75.171957][ T4822] netlink: 532 bytes leftover after parsing attributes in process `syz.3.474'.
[   75.185977][ T4822] loop3: detected capacity change from 0 to 1024
[   75.207008][ T4822] EXT4-fs (loop3): orphan cleanup on readonly fs
[   75.213777][ T4822] EXT4-fs error (device loop3): ext4_orphan_get:1415: comm syz.3.474: bad orphan inode 8
[   75.214035][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.224423][ T4822] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   75.259529][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.673889][ T4820] Process accounting resumed
[   75.690357][ T4849] loop2: detected capacity change from 0 to 512
[   75.698433][ T4849] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   75.706634][ T4849] EXT4-fs (loop2): orphan cleanup on readonly fs
[   75.713843][ T4849] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.485: invalid indirect mapped block 256 (level 2)
[   75.733235][ T4849] EXT4-fs (loop2): 2 truncates cleaned up
[   75.744107][ T4849] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   75.822875][ T4859] loop1: detected capacity change from 0 to 512
[   75.845244][ T4859] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   75.857431][ T4859] EXT4-fs (loop1): orphan cleanup on readonly fs
[   75.864283][ T4859] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.489: invalid indirect mapped block 256 (level 2)
[   75.879383][ T4859] EXT4-fs (loop1): 2 truncates cleaned up
[   75.885730][ T4859] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   75.917253][ T4867] Cannot find del_set index 4 as target
[   75.959611][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.972895][ T4870] netlink: 8 bytes leftover after parsing attributes in process `syz.0.493'.
[   76.030450][ T4872] netlink: 4 bytes leftover after parsing attributes in process `syz.2.494'.
[   76.078300][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.157693][ T4889] netlink: 4 bytes leftover after parsing attributes in process `syz.1.498'.
[   76.199726][ T4889] bridge0: port 2(bridge_slave_1) entered disabled state
[   76.259721][ T4898] Cannot find del_set index 4 as target
[   76.271151][ T4889] bridge_slave_1 (unregistering): left allmulticast mode
[   76.280801][ T4889] bridge_slave_1 (unregistering): left promiscuous mode
[   76.293079][ T4889] bridge0: port 2(bridge_slave_1) entered disabled state
[   76.346521][ T4908] loop2: detected capacity change from 0 to 512
[   76.355477][ T4908] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   76.363951][ T4908] EXT4-fs (loop2): orphan cleanup on readonly fs
[   76.370711][ T4908] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.508: invalid indirect mapped block 256 (level 2)
[   76.384892][ T4908] EXT4-fs (loop2): 2 truncates cleaned up
[   76.391341][ T4908] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   76.650896][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.102692][ T4956] netlink: 4 bytes leftover after parsing attributes in process `syz.0.526'.
[   77.233865][ T4964] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   77.242421][ T4964] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   77.252291][ T4964] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.304889][ T4964] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.333338][ T4990] netlink: 4 bytes leftover after parsing attributes in process `syz.2.539'.
[   77.361147][ T4990] bridge0: port 2(bridge_slave_1) entered disabled state
[   77.368746][ T4975] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   77.378905][ T4975] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   77.404298][ T4990] bridge_slave_1 (unregistering): left allmulticast mode
[   77.411621][ T4990] bridge_slave_1 (unregistering): left promiscuous mode
[   77.420470][ T4990] bridge0: port 2(bridge_slave_1) entered disabled state
[   77.436743][ T4964] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.449745][ T4975] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.484939][ T4964] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.497910][ T4975] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.540303][ T4964] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   77.551953][ T4964] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   77.563272][ T4975] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.577155][ T4964] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   77.588633][ T4964] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   77.616186][ T4975] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.680722][ T4975] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   77.692068][ T4975] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   77.703198][ T4975] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   77.714543][ T4975] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   77.962754][ T4995] Cannot find del_set index 4 as target
[   77.990179][ T4998] netlink: 232 bytes leftover after parsing attributes in process `syz.0.542'.
[   78.161717][ T5016] loop2: detected capacity change from 0 to 512
[   78.169314][ T5016] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   78.178437][ T5016] EXT4-fs (loop2): orphan cleanup on readonly fs
[   78.185433][ T5016] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.551: invalid indirect mapped block 256 (level 2)
[   78.200280][ T5016] EXT4-fs (loop2): 2 truncates cleaned up
[   78.206665][ T5016] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   78.230208][ T5000] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.285798][ T5022] Cannot find del_set index 4 as target
[   78.307659][ T5000] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.320797][   T29] kauditd_printk_skb: 19 callbacks suppressed
[   78.320814][   T29] audit: type=1326 audit(1743034413.344:1077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5018 comm="syz.3.552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd5ad169 code=0x7ffc0000
[   78.358048][   T29] audit: type=1326 audit(1743034413.374:1078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5018 comm="syz.3.552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f07dd5ad169 code=0x7ffc0000
[   78.381537][   T29] audit: type=1326 audit(1743034413.374:1079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5018 comm="syz.3.552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd5ad169 code=0x7ffc0000
[   78.404987][   T29] audit: type=1326 audit(1743034413.374:1080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5018 comm="syz.3.552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd5ad169 code=0x7ffc0000
[   78.428768][   T29] audit: type=1326 audit(1743034413.374:1081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5018 comm="syz.3.552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=86 compat=0 ip=0x7f07dd5ad169 code=0x7ffc0000
[   78.452022][   T29] audit: type=1326 audit(1743034413.374:1082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5018 comm="syz.3.552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd5ad169 code=0x7ffc0000
[   78.475579][   T29] audit: type=1326 audit(1743034413.374:1083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5018 comm="syz.3.552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd5ad169 code=0x7ffc0000
[   78.499241][   T29] audit: type=1326 audit(1743034413.404:1084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5018 comm="syz.3.552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f07dd5ad169 code=0x7ffc0000
[   78.522774][   T29] audit: type=1326 audit(1743034413.404:1085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5018 comm="syz.3.552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd5ad169 code=0x7ffc0000
[   78.526109][ T5019] siw: device registration error -23
[   78.546131][   T29] audit: type=1326 audit(1743034413.404:1086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5018 comm="syz.3.552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd5ad169 code=0x7ffc0000
[   78.575266][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.601013][ T5000] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.696387][ T5041] loop4: detected capacity change from 0 to 512
[   78.704015][ T5039] loop2: detected capacity change from 0 to 512
[   78.710637][ T5039] EXT4-fs: Ignoring removed mblk_io_submit option
[   78.718716][ T5041] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   78.728957][ T5039] EXT4-fs: inline encryption not supported
[   78.739610][ T5000] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.751388][ T5039] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   78.760490][ T5039] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[   78.775092][ T5041] EXT4-fs (loop4): orphan cleanup on readonly fs
[   78.782496][ T5041] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.556: bg 0: block 248: padding at end of block bitmap is not set
[   78.798508][ T5041] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm syz.4.556: Failed to acquire dquot type 1
[   78.810835][ T5041] EXT4-fs (loop4): 1 truncate cleaned up
[   78.828264][ T5039] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended
[   78.839111][ T5039] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c02c, mo2=0002]
[   78.847553][ T5039] System zones: 0-2, 18-18, 34-34
[   78.853369][ T5039] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.557: couldn't read orphan inode 15 (err -116)
[   78.877983][ T5000] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   78.891555][ T5039] EXT4-fs (loop2): Remounting filesystem read-only
[   78.903370][ T5000] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   78.914084][ T5039] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.932688][ T5000] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   78.941452][ T5039] SELinux: (dev loop2, type ext2) getxattr errno 5
[   78.954790][ T5000] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   78.965445][ T5039] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.554040][ T5048] netlink: 532 bytes leftover after parsing attributes in process `syz.0.558'.
[   79.575081][ T5048] loop0: detected capacity change from 0 to 1024
[   79.591489][ T5041] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   79.608372][ T5041] Cannot find del_set index 4 as target
[   79.658079][ T5048] EXT4-fs (loop0): orphan cleanup on readonly fs
[   79.752616][ T5050] netlink: 4 bytes leftover after parsing attributes in process `syz.3.559'.
[   79.783500][ T5048] EXT4-fs error (device loop0): ext4_orphan_get:1415: comm syz.0.558: bad orphan inode 8
[   79.810098][ T5048] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   79.908787][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.037304][ T5065] Cannot find del_set index 4 as target
[   80.176413][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.186717][ T5061] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   80.196589][ T5061] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   80.207378][ T5061] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.245148][ T5061] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.273529][ T5068] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   80.282127][ T5068] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   80.302963][ T5061] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.344821][ T5061] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.678739][ T5100] loop3: detected capacity change from 0 to 512
[   80.686435][ T5100] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   80.715053][ T5100] EXT4-fs (loop3): orphan cleanup on readonly fs
[   80.722636][ T5100] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.576: bg 0: block 248: padding at end of block bitmap is not set
[   80.738596][ T5100] EXT4-fs error (device loop3): ext4_acquire_dquot:6927: comm syz.3.576: Failed to acquire dquot type 1
[   80.750692][ T5100] EXT4-fs (loop3): 1 truncate cleaned up
[   80.764787][ T5100] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   80.782008][ T5100] Cannot find del_set index 4 as target
[   80.857223][ T5103] netlink: 4 bytes leftover after parsing attributes in process `syz.1.579'.
[   80.871053][ T5105] netlink: 232 bytes leftover after parsing attributes in process `syz.2.580'.
[   80.884522][ T5103] netlink: 4 bytes leftover after parsing attributes in process `syz.1.579'.
[   80.963669][ T5108] loop2: detected capacity change from 0 to 1024
[   81.737866][ T5133] loop1: detected capacity change from 0 to 512
[   81.746899][ T5133] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   81.765610][ T5133] EXT4-fs (loop1): orphan cleanup on readonly fs
[   81.782507][ T5133] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.590: invalid indirect mapped block 256 (level 2)
[   81.818556][ T5133] EXT4-fs (loop1): 2 truncates cleaned up
[   81.836861][ T5133] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   81.876835][ T5142] netlink: 4 bytes leftover after parsing attributes in process `syz.4.591'.
[   82.262398][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.325570][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.439636][ T5161] siw: device registration error -23
[   82.542045][ T5152] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[   82.697976][ T5185] loop2: detected capacity change from 0 to 512
[   82.706077][ T5185] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   82.764546][ T5185] EXT4-fs (loop2): orphan cleanup on readonly fs
[   82.772151][ T5185] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.605: bg 0: block 248: padding at end of block bitmap is not set
[   82.786864][ T5185] EXT4-fs error (device loop2): ext4_acquire_dquot:6927: comm syz.2.605: Failed to acquire dquot type 1
[   82.798692][ T5185] EXT4-fs (loop2): 1 truncate cleaned up
[   82.911700][ T5190] loop4: detected capacity change from 0 to 512
[   82.941037][ T5190] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   82.968077][ T5190] EXT4-fs (loop4): orphan cleanup on readonly fs
[   82.991006][ T5190] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.607: invalid indirect mapped block 256 (level 2)
[   83.047337][ T5061] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   83.072802][ T5190] EXT4-fs (loop4): 2 truncates cleaned up
[   83.094978][ T5152] Process accounting resumed
[   83.105021][ T5190] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   83.122572][ T5061] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   83.137635][ T5061] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   83.217104][ T5061] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   83.589416][ T5185] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   83.606377][ T5185] Cannot find del_set index 4 as target
[   83.688529][ T5207] loop3: detected capacity change from 0 to 512
[   83.769060][ T5207] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   83.786111][ T5204] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   83.800643][ T5202] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[   83.814987][ T5207] EXT4-fs (loop3): orphan cleanup on readonly fs
[   83.824287][ T5204] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   83.843909][ T5207] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.614: invalid indirect mapped block 256 (level 2)
[   83.870300][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.881416][ T5207] EXT4-fs (loop3): 2 truncates cleaned up
[   83.891610][ T5207] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   84.392383][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.460321][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.513090][ T5201] Process accounting resumed
[   84.732048][   T29] kauditd_printk_skb: 139 callbacks suppressed
[   84.732068][   T29] audit: type=1326 audit(1743034419.744:1220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5238 comm="syz.1.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc026d1d169 code=0x7ffc0000
[   84.764805][ T5243] netlink: 8 bytes leftover after parsing attributes in process `syz.2.626'.
[   84.773898][ T5243] netlink: 4 bytes leftover after parsing attributes in process `syz.2.626'.
[   84.818956][   T29] audit: type=1326 audit(1743034419.784:1221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5238 comm="syz.1.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc026d1d169 code=0x7ffc0000
[   84.842526][   T29] audit: type=1326 audit(1743034419.784:1222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5238 comm="syz.1.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc026d1d169 code=0x7ffc0000
[   84.865945][   T29] audit: type=1326 audit(1743034419.784:1223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5238 comm="syz.1.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc026d1d169 code=0x7ffc0000
[   84.889565][   T29] audit: type=1326 audit(1743034419.784:1224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5238 comm="syz.1.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc026d1d169 code=0x7ffc0000
[   84.912957][   T29] audit: type=1326 audit(1743034419.784:1225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5238 comm="syz.1.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc026d1d169 code=0x7ffc0000
[   84.936350][   T29] audit: type=1326 audit(1743034419.804:1226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5238 comm="syz.1.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc026d1d169 code=0x7ffc0000
[   84.959864][   T29] audit: type=1326 audit(1743034419.804:1227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5238 comm="syz.1.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc026d1d169 code=0x7ffc0000
[   84.983256][   T29] audit: type=1326 audit(1743034419.804:1228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5238 comm="syz.1.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc026d1d169 code=0x7ffc0000
[   85.006987][   T29] audit: type=1326 audit(1743034419.804:1229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5238 comm="syz.1.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc026d1d169 code=0x7ffc0000
[   85.033656][ T5251] netlink: 4 bytes leftover after parsing attributes in process `syz.3.627'.
[   85.101152][ T5262] FAULT_INJECTION: forcing a failure.
[   85.101152][ T5262] name failslab, interval 1, probability 0, space 0, times 0
[   85.113882][ T5262] CPU: 1 UID: 0 PID: 5262 Comm: syz.4.634 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(voluntary) 
[   85.113919][ T5262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   85.113931][ T5262] Call Trace:
[   85.113937][ T5262]  <TASK>
[   85.113943][ T5262]  dump_stack_lvl+0xf6/0x150
[   85.113964][ T5262]  dump_stack+0x15/0x1a
[   85.114011][ T5262]  should_fail_ex+0x261/0x270
[   85.114032][ T5262]  should_failslab+0x8f/0xb0
[   85.114056][ T5262]  kmem_cache_alloc_noprof+0x59/0x340
[   85.114333][ T5262]  ? dst_alloc+0xc0/0x100
[   85.114367][ T5262]  dst_alloc+0xc0/0x100
[   85.114393][ T5262]  ip_route_output_key_hash_rcu+0xb90/0x12e0
[   85.114455][ T5262]  ip_route_output_flow+0x7e/0x130
[   85.114484][ T5262]  ip_tunnel_xmit+0x810/0x1720
[   85.114537][ T5262]  ipgre_xmit+0x622/0x6d0
[   85.114561][ T5262]  dev_hard_start_xmit+0x119/0x3f0
[   85.114664][ T5262]  __dev_queue_xmit+0x101a/0x20b0
[   85.114682][ T5262]  ? __dev_queue_xmit+0x18b/0x20b0
[   85.114701][ T5262]  ? pskb_expand_head+0x920/0xae0
[   85.114752][ T5262]  __bpf_redirect+0x729/0x970
[   85.114783][ T5262]  bpf_clone_redirect+0x190/0x200
[   85.114814][ T5262]  bpf_prog_973cd02a7a0e8181+0x5f/0x64
[   85.114828][ T5262]  ? lzma_main+0x1b10/0x22c0
[   85.114966][ T5262]  ? __rcu_read_unlock+0x4e/0x70
[   85.114989][ T5262]  ? avc_has_perm_noaudit+0x1cc/0x210
[   85.115017][ T5262]  ? avc_has_perm+0xd6/0x150
[   85.115074][ T5262]  ? __rcu_read_unlock+0x4e/0x70
[   85.115097][ T5262]  ? 0xffffffffa0000950
[   85.115107][ T5262]  ? is_bpf_text_address+0x141/0x160
[   85.115138][ T5262]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   85.115249][ T5262]  ? kernel_text_address+0x96/0xb0
[   85.115292][ T5262]  ? __kernel_text_address+0xd/0x40
[   85.115333][ T5262]  ? unwind_get_return_address+0x16/0x30
[   85.115359][ T5262]  ? arch_stack_walk+0xff/0x150
[   85.115380][ T5262]  ? find_stack+0x2c/0x170
[   85.115462][ T5262]  ? __list_add_valid_or_report+0x38/0xe0
[   85.115486][ T5262]  ? _raw_spin_unlock_irqrestore+0x2b/0x60
[   85.115522][ T5262]  ? stack_depot_save_flags+0x7a8/0x860
[   85.115552][ T5262]  ? read_tsc+0x9/0x20
[   85.115577][ T5262]  ? ktime_get+0x1ef/0x210
[   85.115604][ T5262]  bpf_test_run+0x1e7/0x4a0
[   85.115649][ T5262]  ? _raw_spin_lock_irqsave+0x40/0xb0
[   85.115677][ T5262]  ? bpf_test_run+0x106/0x4a0
[   85.115704][ T5262]  bpf_prog_test_run_skb+0x857/0xbe0
[   85.115745][ T5262]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[   85.115768][ T5262]  bpf_prog_test_run+0x20e/0x3a0
[   85.115787][ T5262]  __sys_bpf+0x40d/0x7c0
[   85.115925][ T5262]  __x64_sys_bpf+0x43/0x50
[   85.115951][ T5262]  x64_sys_call+0x23da/0x2e10
[   85.115970][ T5262]  do_syscall_64+0xc9/0x1c0
[   85.115992][ T5262]  ? clear_bhb_loop+0x25/0x80
[   85.116011][ T5262]  ? clear_bhb_loop+0x25/0x80
[   85.116081][ T5262]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.116099][ T5262] RIP: 0033:0x7fa9f691d169
[   85.116112][ T5262] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.116144][ T5262] RSP: 002b:00007fa9f4f87038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   85.116161][ T5262] RAX: ffffffffffffffda RBX: 00007fa9f6b35fa0 RCX: 00007fa9f691d169
[   85.116171][ T5262] RDX: 000000000000002c RSI: 0000200000000080 RDI: 000000000000000a
[   85.116182][ T5262] RBP: 00007fa9f4f87090 R08: 0000000000000000 R09: 0000000000000000
[   85.116206][ T5262] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   85.116219][ T5262] R13: 0000000000000000 R14: 00007fa9f6b35fa0 R15: 00007ffd7a031d88
[   85.116235][ T5262]  </TASK>
[   85.278381][ T5256] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   85.479082][ T5258] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   85.479282][ T5256] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   85.495315][ T5258] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   85.507244][ T5256] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   85.521627][ T5268] netlink: 8 bytes leftover after parsing attributes in process `syz.0.637'.
[   85.569035][ T5256] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   85.645540][ T5256] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   85.683287][ T5284] netlink: 8 bytes leftover after parsing attributes in process `syz.3.642'.
[   85.692220][ T5284] netlink: 4 bytes leftover after parsing attributes in process `syz.3.642'.
[   85.718389][ T5256] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   85.782407][ T5256] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   85.795522][ T5256] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   85.807328][ T5256] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   85.819219][ T5256] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   85.836965][ T5298] netlink: 8 bytes leftover after parsing attributes in process `syz.3.648'.
[   85.871089][ T5302] loop3: detected capacity change from 0 to 512
[   85.880960][ T5304] netlink: 4 bytes leftover after parsing attributes in process `syz.4.650'.
[   85.890059][ T5302] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   85.898552][ T5302] EXT4-fs (loop3): orphan cleanup on readonly fs
[   85.906618][ T5302] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.649: invalid indirect mapped block 256 (level 2)
[   85.906694][ T5304] netlink: 4 bytes leftover after parsing attributes in process `syz.4.650'.
[   85.929305][ T5302] EXT4-fs (loop3): 2 truncates cleaned up
[   85.935527][ T5302] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   86.110029][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.237179][ T5319] netlink: 4 bytes leftover after parsing attributes in process `syz.1.654'.
[   86.269279][ T5323] netlink: 'syz.1.655': attribute type 1 has an invalid length.
[   86.393262][ T5332] loop1: detected capacity change from 0 to 2048
[   86.405047][ T5332] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   86.421581][ T5332] 0ªX¹¦D: renamed from gretap0 (while UP)
[   86.430613][ T5332] 0ªX¹¦D: entered allmulticast mode
[   86.436392][ T5332] A link change request failed with some changes committed already. Interface 
30ªX¹¦D may have been left with an inconsistent configuration, please check.
[   86.484940][ T5332] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=5332 comm=syz.1.659
[   86.502540][ T5335] siw: device registration error -23
[   86.512163][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.538216][ T5346] loop1: detected capacity change from 0 to 512
[   86.557430][ T5346] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   86.567094][ T5346] EXT4-fs (loop1): orphan cleanup on readonly fs
[   86.573903][ T5346] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.662: invalid indirect mapped block 256 (level 2)
[   86.587615][ T5346] EXT4-fs (loop1): 2 truncates cleaned up
[   86.593781][ T5346] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   86.770663][ T5359] wireguard0: entered promiscuous mode
[   86.776231][ T5359] wireguard0: entered allmulticast mode
[   86.782291][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.991221][ T5339] Process accounting resumed
[   87.025555][ T5375] siw: device registration error -23
[   87.060823][ T5382] loop2: detected capacity change from 0 to 512
[   87.075313][ T5382] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   87.157240][ T5391] loop4: detected capacity change from 0 to 512
[   87.165158][ T5391] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   87.175669][ T5391] EXT4-fs (loop4): orphan cleanup on readonly fs
[   87.183032][ T5391] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.672: bg 0: block 248: padding at end of block bitmap is not set
[   87.198923][ T5391] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm syz.4.672: Failed to acquire dquot type 1
[   87.210921][ T5391] EXT4-fs (loop4): 1 truncate cleaned up
[   87.365719][ T5382] EXT4-fs (loop2): 1 truncate cleaned up
[   87.381336][ T5382] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   88.029939][ T5408] Cannot find del_set index 4 as target
[   88.037198][ T5391] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   88.053923][ T5391] Cannot find del_set index 4 as target
[   88.062416][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.778180][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.793128][ T5427] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   88.803122][ T5427] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   89.787032][ T5474] loop3: detected capacity change from 0 to 512
[   89.794650][ T5474] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   89.804531][ T5474] EXT4-fs (loop3): orphan cleanup on readonly fs
[   89.811714][ T5474] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.701: bg 0: block 248: padding at end of block bitmap is not set
[   89.826420][ T5474] __quota_error: 122 callbacks suppressed
[   89.826436][ T5474] Quota error (device loop3): write_blk: dquota write failed
[   89.839589][ T5474] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[   89.849580][ T5474] EXT4-fs error (device loop3): ext4_acquire_dquot:6927: comm syz.3.701: Failed to acquire dquot type 1
[   89.861494][ T5474] EXT4-fs (loop3): 1 truncate cleaned up
[   89.929751][ T5470] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   89.969315][ T5470] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   90.199616][ T5483] __nla_validate_parse: 15 callbacks suppressed
[   90.199638][ T5483] netlink: 8 bytes leftover after parsing attributes in process `syz.0.706'.
[   90.214838][ T5483] netlink: 4 bytes leftover after parsing attributes in process `syz.0.706'.
[   90.234127][ T5483] wireguard0: entered promiscuous mode
[   90.239670][ T5483] wireguard0: entered allmulticast mode
[   90.246224][ T5481] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   90.256108][ T5481] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   90.461441][ T5490] loop0: detected capacity change from 0 to 512
[   90.492001][   T29] audit: type=1400 audit(1743034425.504:1350): avc:  denied  { nlmsg_read } for  pid=5491 comm="syz.1.710" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   90.555695][ T5490] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   91.022018][ T5474] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   91.039354][ T5474] Cannot find del_set index 4 as target
[   91.050566][ T5493] netlink: 24576 bytes leftover after parsing attributes in process `syz.1.710'.
[   91.060650][   T29] audit: type=1400 audit(1743034425.604:1351): avc:  denied  { read } for  pid=5491 comm="syz.1.710" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   91.216959][ T5490] EXT4-fs (loop0): 1 truncate cleaned up
[   91.223229][ T5490] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   91.253320][ T5490] netlink: 24 bytes leftover after parsing attributes in process `syz.0.707'.
[   91.291416][ T5490] netlink: 4 bytes leftover after parsing attributes in process `syz.0.707'.
[   91.368927][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.410772][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.500778][ T5517] netlink: 8 bytes leftover after parsing attributes in process `syz.3.718'.
[   91.505577][ T5518] loop0: detected capacity change from 0 to 512
[   91.520910][ T5518] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   91.533645][ T5518] EXT4-fs (loop0): orphan cleanup on readonly fs
[   91.549555][ T5518] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.719: invalid indirect mapped block 256 (level 2)
[   91.566764][ T5521] loop3: detected capacity change from 0 to 512
[   91.584587][ T5518] EXT4-fs (loop0): 2 truncates cleaned up
[   91.595753][ T5521] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   91.596058][ T5524] netlink: 8 bytes leftover after parsing attributes in process `syz.1.721'.
[   91.622823][ T5518] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   91.637460][ T5521] EXT4-fs (loop3): orphan cleanup on readonly fs
[   91.637476][ T5526] netlink: 4 bytes leftover after parsing attributes in process `syz.4.722'.
[   91.654481][ T5521] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.720: invalid indirect mapped block 256 (level 2)
[   91.689493][ T5521] EXT4-fs (loop3): 2 truncates cleaned up
[   91.695828][ T5521] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   91.795470][   T29] audit: type=1326 audit(1743034426.814:1352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5525 comm="syz.4.722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9f691d169 code=0x7ffc0000
[   91.818890][   T29] audit: type=1326 audit(1743034426.814:1353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5525 comm="syz.4.722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7fa9f691d169 code=0x7ffc0000
[   91.842341][   T29] audit: type=1326 audit(1743034426.814:1354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5525 comm="syz.4.722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9f691d169 code=0x7ffc0000
[   91.865739][   T29] audit: type=1326 audit(1743034426.814:1355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5525 comm="syz.4.722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa9f691d169 code=0x7ffc0000
[   91.889100][   T29] audit: type=1326 audit(1743034426.814:1356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5525 comm="syz.4.722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9f691d169 code=0x7ffc0000
[   91.912534][   T29] audit: type=1326 audit(1743034426.814:1357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5525 comm="syz.4.722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=442 compat=0 ip=0x7fa9f691d169 code=0x7ffc0000
[   92.007342][ T5540] netlink: 44 bytes leftover after parsing attributes in process `syz.4.727'.
[   92.038410][ T5537] siw: device registration error -23
[   92.090070][ T5546] random: crng reseeded on system resumption
[   92.148416][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.159213][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.274140][ T5562] loop4: detected capacity change from 0 to 512
[   92.285125][ T5562] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   92.293180][ T5562] EXT4-fs (loop4): orphan cleanup on readonly fs
[   92.300514][ T5562] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.734: invalid indirect mapped block 256 (level 2)
[   92.314532][ T5562] EXT4-fs (loop4): 2 truncates cleaned up
[   92.320747][ T5562] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   92.379716][ T5569] netlink: 4 bytes leftover after parsing attributes in process `syz.1.738'.
[   92.594786][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.013928][ T5626] dummy0: entered promiscuous mode
[   93.019310][ T5626] vlan0: entered promiscuous mode
[   93.026255][ T5626] dummy0: left promiscuous mode
[   93.222331][ T5634] 9pnet_fd: Insufficient options for proto=fd
[   93.382215][ T5642] siw: device registration error -23
[   93.619026][ T5667] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5667 comm=syz.4.770
[   93.704392][ T5678] loop0: detected capacity change from 0 to 164
[   93.711671][ T5678] Unable to read rock-ridge attributes
[   93.812690][ T5692] siw: device registration error -23
[   93.906404][ T5709] loop4: detected capacity change from 0 to 512
[   93.913151][ T5709] EXT4-fs: Ignoring removed mblk_io_submit option
[   93.919815][ T5709] EXT4-fs: inline encryption not supported
[   93.926112][ T5709] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   93.935257][ T5709] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[   93.944279][ T5709] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[   93.953385][ T5709] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c02c, mo2=0002]
[   93.961642][ T5709] System zones: 0-2, 18-18, 34-34
[   93.967328][ T5709] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.788: couldn't read orphan inode 15 (err -116)
[   93.979622][ T5709] EXT4-fs (loop4): Remounting filesystem read-only
[   93.990257][ T5709] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   94.002498][ T5709] SELinux: (dev loop4, type ext2) getxattr errno 5
[   94.009398][ T5709] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.057658][ T5720] loop2: detected capacity change from 0 to 512
[   94.066363][ T5720] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   94.074973][ T5720] EXT4-fs (loop2): orphan cleanup on readonly fs
[   94.081866][ T5720] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.792: invalid indirect mapped block 256 (level 2)
[   94.099244][ T5720] EXT4-fs (loop2): 2 truncates cleaned up
[   94.105617][ T5720] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   94.251499][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.385373][ T5739] siw: device registration error -23
[   94.691052][ T5778] loop1: detected capacity change from 0 to 512
[   94.698902][ T5778] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   94.708214][ T5778] EXT4-fs (loop1): orphan cleanup on readonly fs
[   94.714932][ T5778] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.815: invalid indirect mapped block 256 (level 2)
[   94.733184][ T5780] siw: device registration error -23
[   94.740783][ T5778] EXT4-fs (loop1): 2 truncates cleaned up
[   94.761381][ T5760] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   94.804269][ T5760] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   95.210909][ T5827] loop1: detected capacity change from 0 to 512
[   95.218710][ T5827] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   95.226911][ T5827] EXT4-fs (loop1): orphan cleanup on readonly fs
[   95.234698][ T5827] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.832: invalid indirect mapped block 256 (level 2)
[   95.248661][ T5827] EXT4-fs (loop1): 2 truncates cleaned up
[   95.346414][ T5832] __nla_validate_parse: 17 callbacks suppressed
[   95.346468][ T5832] netlink: 4 bytes leftover after parsing attributes in process `syz.4.834'.
[   95.396506][ T5840] netlink: 44 bytes leftover after parsing attributes in process `syz.2.836'.
[   95.548968][   T29] kauditd_printk_skb: 409 callbacks suppressed
[   95.549050][   T29] audit: type=1326 audit(1743034430.564:1767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5849 comm="syz.2.841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d0209d169 code=0x7ffc0000
[   95.578795][   T29] audit: type=1326 audit(1743034430.564:1768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5849 comm="syz.2.841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d0209d169 code=0x7ffc0000
[   95.602225][   T29] audit: type=1326 audit(1743034430.564:1769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5849 comm="syz.2.841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0d0209d169 code=0x7ffc0000
[   95.625647][   T29] audit: type=1326 audit(1743034430.564:1770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5849 comm="syz.2.841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d0209d169 code=0x7ffc0000
[   95.649300][   T29] audit: type=1326 audit(1743034430.564:1771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5849 comm="syz.2.841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=86 compat=0 ip=0x7f0d0209d169 code=0x7ffc0000
[   95.652730][ T5852] siw: device registration error -23
[   95.672884][   T29] audit: type=1326 audit(1743034430.564:1772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5849 comm="syz.2.841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d0209d169 code=0x7ffc0000
[   95.701536][   T29] audit: type=1326 audit(1743034430.564:1773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5849 comm="syz.2.841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0d0209d169 code=0x7ffc0000
[   95.703976][ T5847] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   95.724965][   T29] audit: type=1326 audit(1743034430.564:1774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5849 comm="syz.2.841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d0209d169 code=0x7ffc0000
[   95.734964][ T5847] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   95.756482][   T29] audit: type=1326 audit(1743034430.564:1775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5849 comm="syz.2.841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f0d0209d169 code=0x7ffc0000
[   95.798823][ T5854] netlink: 8 bytes leftover after parsing attributes in process `syz.0.842'.
[   95.818652][   T29] audit: type=1326 audit(1743034430.604:1776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5849 comm="syz.2.841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d0209d169 code=0x7ffc0000
[   95.896719][ T5868] netlink: 4 bytes leftover after parsing attributes in process `syz.3.848'.
[   95.931294][ T5874] netlink: 44 bytes leftover after parsing attributes in process `syz.3.850'.
[   96.033730][ T5884] netlink: 8 bytes leftover after parsing attributes in process `syz.0.855'.
[   96.083933][ T5866] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   96.092739][ T5866] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   96.229659][ T5897] netlink: 4 bytes leftover after parsing attributes in process `syz.0.860'.
[   96.262001][ T5901] netlink: 44 bytes leftover after parsing attributes in process `syz.0.861'.
[   96.302169][ T5906] netlink: 8 bytes leftover after parsing attributes in process `syz.4.863'.
[   96.394201][ T5915] siw: device registration error -23
[   96.406972][ T5926] netlink: 44 bytes leftover after parsing attributes in process `syz.1.873'.
[   96.654641][ T5954] siw: device registration error -23
[   96.695452][ T5934] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   96.712600][ T5934] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   96.947184][ T5990] siw: device registration error -23
[   97.018128][ T6003] loop3: detected capacity change from 0 to 512
[   97.046243][ T6003] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   97.064879][ T6003] EXT4-fs (loop3): orphan cleanup on readonly fs
[   97.071611][ T6003] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.908: invalid indirect mapped block 256 (level 2)
[   97.086771][ T6003] EXT4-fs (loop3): 2 truncates cleaned up
[   97.254132][ T6019] 9pnet_fd: Insufficient options for proto=fd
[   97.382959][ T6035] FAULT_INJECTION: forcing a failure.
[   97.382959][ T6035] name failslab, interval 1, probability 0, space 0, times 0
[   97.395779][ T6035] CPU: 0 UID: 0 PID: 6035 Comm: syz.0.920 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(voluntary) 
[   97.395890][ T6035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   97.395909][ T6035] Call Trace:
[   97.395917][ T6035]  <TASK>
[   97.395926][ T6035]  dump_stack_lvl+0xf6/0x150
[   97.395986][ T6035]  dump_stack+0x15/0x1a
[   97.396001][ T6035]  should_fail_ex+0x261/0x270
[   97.396070][ T6035]  should_failslab+0x8f/0xb0
[   97.396093][ T6035]  kmem_cache_alloc_noprof+0x59/0x340
[   97.396124][ T6035]  ? locks_get_lock_context+0x87/0x220
[   97.396150][ T6035]  locks_get_lock_context+0x87/0x220
[   97.396172][ T6035]  flock_lock_inode+0x59/0xf50
[   97.396245][ T6035]  ? file_has_perm+0x334/0x380
[   97.396269][ T6035]  locks_lock_inode_wait+0x70/0x2a0
[   97.396298][ T6035]  __se_sys_flock+0x2f2/0x3b0
[   97.396329][ T6035]  __x64_sys_flock+0x31/0x40
[   97.396351][ T6035]  x64_sys_call+0x2b03/0x2e10
[   97.396405][ T6035]  do_syscall_64+0xc9/0x1c0
[   97.396472][ T6035]  ? clear_bhb_loop+0x25/0x80
[   97.396495][ T6035]  ? clear_bhb_loop+0x25/0x80
[   97.396514][ T6035]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.396534][ T6035] RIP: 0033:0x7f9b499ad169
[   97.396547][ T6035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   97.396567][ T6035] RSP: 002b:00007f9b48011038 EFLAGS: 00000246 ORIG_RAX: 0000000000000049
[   97.396599][ T6035] RAX: ffffffffffffffda RBX: 00007f9b49bc5fa0 RCX: 00007f9b499ad169
[   97.396614][ T6035] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000004
[   97.396625][ T6035] RBP: 00007f9b48011090 R08: 0000000000000000 R09: 0000000000000000
[   97.396639][ T6035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   97.396651][ T6035] R13: 0000000000000000 R14: 00007f9b49bc5fa0 R15: 00007ffcdcc6a558
[   97.396667][ T6035]  </TASK>
[   97.660656][ T6039] siw: device registration error -23
[   97.680604][ T6049] SELinux: failed to load policy
[   97.824327][ T6068] loop2: detected capacity change from 0 to 512
[   97.841659][ T6068] EXT4-fs: Ignoring removed mblk_io_submit option
[   97.848616][ T6068] EXT4-fs: inline encryption not supported
[   97.871284][ T6068] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   97.880610][ T6068] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[   97.909915][ T6079] loop0: detected capacity change from 0 to 512
[   97.916651][ T6068] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended
[   97.926199][ T6068] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c02c, mo2=0002]
[   97.934324][ T6068] System zones: 0-2, 18-18, 34-34
[   97.938636][ T6079] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   97.940137][ T6068] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.933: couldn't read orphan inode 15 (err -116)
[   97.947770][ T6079] EXT4-fs (loop0): orphan cleanup on readonly fs
[   97.960789][ T6068] EXT4-fs (loop2): Remounting filesystem read-only
[   97.967683][ T6079] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.940: invalid indirect mapped block 256 (level 2)
[   97.972769][ T6068] SELinux: (dev loop2, type ext2) getxattr errno 5
[   97.989273][ T6079] EXT4-fs (loop0): 2 truncates cleaned up
[   98.091485][ T6076] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   98.100031][ T6076] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   98.131904][ T6085] FAULT_INJECTION: forcing a failure.
[   98.131904][ T6085] name failslab, interval 1, probability 0, space 0, times 0
[   98.144638][ T6085] CPU: 0 UID: 0 PID: 6085 Comm: syz.1.942 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(voluntary) 
[   98.144751][ T6085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   98.144763][ T6085] Call Trace:
[   98.144769][ T6085]  <TASK>
[   98.144777][ T6085]  dump_stack_lvl+0xf6/0x150
[   98.144798][ T6085]  dump_stack+0x15/0x1a
[   98.144822][ T6085]  should_fail_ex+0x261/0x270
[   98.144852][ T6085]  should_failslab+0x8f/0xb0
[   98.144902][ T6085]  kmem_cache_alloc_noprof+0x59/0x340
[   98.144926][ T6085]  ? security_inode_alloc+0x37/0x100
[   98.144965][ T6085]  security_inode_alloc+0x37/0x100
[   98.144995][ T6085]  inode_init_always_gfp+0x4a2/0x4f0
[   98.145016][ T6085]  ? __pfx_shmem_alloc_inode+0x10/0x10
[   98.145106][ T6085]  alloc_inode+0x86/0x170
[   98.145129][ T6085]  new_inode+0x1e/0xe0
[   98.145148][ T6085]  shmem_get_inode+0x24e/0x730
[   98.145174][ T6085]  __shmem_file_setup+0x127/0x1f0
[   98.145227][ T6085]  shmem_file_setup+0x3b/0x50
[   98.145254][ T6085]  __se_sys_memfd_create+0x2e1/0x5a0
[   98.145292][ T6085]  __x64_sys_memfd_create+0x31/0x40
[   98.145323][ T6085]  x64_sys_call+0x1163/0x2e10
[   98.145382][ T6085]  do_syscall_64+0xc9/0x1c0
[   98.145406][ T6085]  ? clear_bhb_loop+0x25/0x80
[   98.145426][ T6085]  ? clear_bhb_loop+0x25/0x80
[   98.145451][ T6085]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.145484][ T6085] RIP: 0033:0x7fc026d1d169
[   98.145503][ T6085] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   98.145528][ T6085] RSP: 002b:00007fc025380e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   98.145545][ T6085] RAX: ffffffffffffffda RBX: 00000000000005ad RCX: 00007fc026d1d169
[   98.145558][ T6085] RDX: 00007fc025380ef0 RSI: 0000000000000000 RDI: 00007fc026d9ec3c
[   98.145569][ T6085] RBP: 0000200000000180 R08: 00007fc025380bb7 R09: 00007fc025380e40
[   98.145580][ T6085] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000040
[   98.145611][ T6085] R13: 00007fc025380ef0 R14: 00007fc025380eb0 R15: 0000200000000940
[   98.145628][ T6085]  </TASK>
[   98.408833][ T6092] FAULT_INJECTION: forcing a failure.
[   98.408833][ T6092] name failslab, interval 1, probability 0, space 0, times 0
[   98.421666][ T6092] CPU: 1 UID: 0 PID: 6092 Comm: +}[@ Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(voluntary) 
[   98.421697][ T6092] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   98.421712][ T6092] Call Trace:
[   98.421719][ T6092]  <TASK>
[   98.421743][ T6092]  dump_stack_lvl+0xf6/0x150
[   98.421769][ T6092]  dump_stack+0x15/0x1a
[   98.421789][ T6092]  should_fail_ex+0x261/0x270
[   98.421817][ T6092]  should_failslab+0x8f/0xb0
[   98.421841][ T6092]  kmem_cache_alloc_noprof+0x59/0x340
[   98.421872][ T6092]  ? dst_alloc+0xc0/0x100
[   98.421985][ T6092]  dst_alloc+0xc0/0x100
[   98.422018][ T6092]  ? rt_flush_dev+0x322/0x380
[   98.422064][ T6092]  ip_route_output_key_hash_rcu+0xb90/0x12e0
[   98.422110][ T6092]  ip_route_output_flow+0x7e/0x130
[   98.422218][ T6092]  tcp_v4_connect+0x476/0xaf0
[   98.422265][ T6092]  __inet_stream_connect+0x15c/0x7c0
[   98.422295][ T6092]  ? _raw_spin_unlock_bh+0x36/0x40
[   98.422333][ T6092]  ? lock_sock_nested+0x114/0x140
[   98.422423][ T6092]  inet_stream_connect+0x48/0x70
[   98.422453][ T6092]  kernel_connect+0x9c/0xf0
[   98.422486][ T6092]  smc_connect+0x551/0x730
[   98.422570][ T6092]  ? __pfx_smc_connect+0x10/0x10
[   98.422597][ T6092]  __sys_connect+0x192/0x1b0
[   98.422702][ T6092]  __x64_sys_connect+0x41/0x50
[   98.422738][ T6092]  x64_sys_call+0x2030/0x2e10
[   98.422761][ T6092]  do_syscall_64+0xc9/0x1c0
[   98.422792][ T6092]  ? clear_bhb_loop+0x25/0x80
[   98.422883][ T6092]  ? clear_bhb_loop+0x25/0x80
[   98.422909][ T6092]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.423013][ T6092] RIP: 0033:0x7fa9f691d169
[   98.423032][ T6092] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   98.423061][ T6092] RSP: 002b:00007fa9f4f87038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[   98.423084][ T6092] RAX: ffffffffffffffda RBX: 00007fa9f6b35fa0 RCX: 00007fa9f691d169
[   98.423099][ T6092] RDX: 0000000000000010 RSI: 0000200000000000 RDI: 0000000000000005
[   98.423113][ T6092] RBP: 00007fa9f4f87090 R08: 0000000000000000 R09: 0000000000000000
[   98.423127][ T6092] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   98.423141][ T6092] R13: 0000000000000000 R14: 00007fa9f6b35fa0 R15: 00007ffd7a031d88
[   98.423219][ T6092]  </TASK>
[   98.734369][ T6113] loop4: detected capacity change from 0 to 512
[   98.740925][ T6113] EXT4-fs: Ignoring removed mblk_io_submit option
[   98.753095][ T6113] EXT4-fs: inline encryption not supported
[   98.761950][ T6113] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   98.771112][ T6113] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[   98.781431][ T6113] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[   98.792702][ T6113] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c02c, mo2=0002]
[   98.801054][ T6113] System zones: 0-2, 18-18, 34-34
[   98.806658][ T6113] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.952: couldn't read orphan inode 15 (err -116)
[   98.819174][ T6113] EXT4-fs (loop4): Remounting filesystem read-only
[   98.826284][ T6113] SELinux: (dev loop4, type ext2) getxattr errno 5
[   98.913254][ T6134] FAULT_INJECTION: forcing a failure.
[   98.913254][ T6134] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   98.926498][ T6134] CPU: 1 UID: 0 PID: 6134 Comm: syz.4.961 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(voluntary) 
[   98.926527][ T6134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   98.926609][ T6134] Call Trace:
[   98.926637][ T6134]  <TASK>
[   98.926646][ T6134]  dump_stack_lvl+0xf6/0x150
[   98.926672][ T6134]  dump_stack+0x15/0x1a
[   98.926690][ T6134]  should_fail_ex+0x261/0x270
[   98.926718][ T6134]  should_fail+0xb/0x10
[   98.926742][ T6134]  should_fail_usercopy+0x1a/0x20
[   98.926773][ T6134]  _copy_from_user+0x1c/0xa0
[   98.926857][ T6134]  copy_msghdr_from_user+0x54/0x2b0
[   98.926890][ T6134]  ? __fget_files+0x186/0x1c0
[   98.926920][ T6134]  __sys_sendmsg+0x141/0x240
[   98.926959][ T6134]  __x64_sys_sendmsg+0x46/0x50
[   98.927010][ T6134]  x64_sys_call+0x26f3/0x2e10
[   98.927034][ T6134]  do_syscall_64+0xc9/0x1c0
[   98.927065][ T6134]  ? clear_bhb_loop+0x25/0x80
[   98.927090][ T6134]  ? clear_bhb_loop+0x25/0x80
[   98.927193][ T6134]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.927218][ T6134] RIP: 0033:0x7fa9f691d169
[   98.927236][ T6134] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   98.927257][ T6134] RSP: 002b:00007fa9f4f87038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   98.927279][ T6134] RAX: ffffffffffffffda RBX: 00007fa9f6b35fa0 RCX: 00007fa9f691d169
[   98.927294][ T6134] RDX: 0000000000000000 RSI: 00002000000004c0 RDI: 0000000000000003
[   98.927385][ T6134] RBP: 00007fa9f4f87090 R08: 0000000000000000 R09: 0000000000000000
[   98.927399][ T6134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   98.927413][ T6134] R13: 0000000000000000 R14: 00007fa9f6b35fa0 R15: 00007ffd7a031d88
[   98.927434][ T6134]  </TASK>
[   98.929318][ T6136] loop1: detected capacity change from 0 to 512
[   99.036240][ T6144] loop3: detected capacity change from 0 to 512
[   99.075017][ T6136] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   99.095185][ T6144] ext4 filesystem being mounted at /185/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   99.112722][ T6136] EXT4-fs (loop1): orphan cleanup on readonly fs
[   99.143664][ T6136] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.962: invalid indirect mapped block 256 (level 2)
[   99.157742][ T6136] EXT4-fs (loop1): 2 truncates cleaned up
[   99.315054][ T6157] siw: device registration error -23
[   99.527679][ T6180] SELinux: failed to load policy
[   99.847295][ T6193] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   99.857082][ T6193] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   99.869778][ T6210] FAULT_INJECTION: forcing a failure.
[   99.869778][ T6210] name failslab, interval 1, probability 0, space 0, times 0
[   99.882556][ T6210] CPU: 1 UID: 0 PID: 6210 Comm: syz.4.991 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(voluntary) 
[   99.882589][ T6210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   99.882604][ T6210] Call Trace:
[   99.882611][ T6210]  <TASK>
[   99.882620][ T6210]  dump_stack_lvl+0xf6/0x150
[   99.882652][ T6210]  dump_stack+0x15/0x1a
[   99.882670][ T6210]  should_fail_ex+0x261/0x270
[   99.882715][ T6210]  should_failslab+0x8f/0xb0
[   99.882737][ T6210]  __kmalloc_node_track_caller_noprof+0xaa/0x410
[   99.882770][ T6210]  ? asymmetric_lookup_restriction+0x81/0x370
[   99.882802][ T6210]  ? ktime_get_real_seconds+0x15/0x30
[   99.882886][ T6210]  kstrndup+0x77/0x120
[   99.882922][ T6210]  asymmetric_lookup_restriction+0x81/0x370
[   99.882983][ T6210]  ? strcmp+0x21/0x50
[   99.883074][ T6210]  ? __pfx_asymmetric_lookup_restriction+0x10/0x10
[   99.883149][ T6210]  keyring_restrict+0xf7/0x280
[   99.883175][ T6210]  keyctl_restrict_keyring+0x108/0x1b0
[   99.883237][ T6210]  __se_sys_keyctl+0x214/0xbe0
[   99.883268][ T6210]  ? putname+0xe1/0x100
[   99.883294][ T6210]  ? __fget_files+0x186/0x1c0
[   99.883326][ T6210]  ? fput+0x99/0xd0
[   99.883353][ T6210]  ? ksys_write+0x180/0x1b0
[   99.883388][ T6210]  __x64_sys_keyctl+0x67/0x80
[   99.883420][ T6210]  x64_sys_call+0x2b21/0x2e10
[   99.883452][ T6210]  do_syscall_64+0xc9/0x1c0
[   99.883479][ T6210]  ? clear_bhb_loop+0x25/0x80
[   99.883502][ T6210]  ? clear_bhb_loop+0x25/0x80
[   99.883625][ T6210]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.883655][ T6210] RIP: 0033:0x7fa9f691d169
[   99.883672][ T6210] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   99.883708][ T6210] RSP: 002b:00007fa9f4f87038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[   99.883730][ T6210] RAX: ffffffffffffffda RBX: 00007fa9f6b35fa0 RCX: 00007fa9f691d169
[   99.883744][ T6210] RDX: 0000200000000240 RSI: 000000003d552a61 RDI: 000000000000001d
[   99.883770][ T6210] RBP: 00007fa9f4f87090 R08: 0000000000000000 R09: 0000000000000000
[   99.883781][ T6210] R10: 0000200000000080 R11: 0000000000000246 R12: 0000000000000001
[   99.883792][ T6210] R13: 0000000000000000 R14: 00007fa9f6b35fa0 R15: 00007ffd7a031d88
[   99.883808][ T6210]  </TASK>
[  100.105845][ T6208] loop1: detected capacity change from 0 to 8192
[  100.112844][ T6202] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  100.121674][ T6202] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  100.130291][ T6208]  loop1: p1 < > p2 < p5 > p3 p4
[  100.137814][ T6208] loop1: p3 start 83890176 is beyond EOD, truncated
[  100.144478][ T6208] loop1: p4 size 16711680 extends beyond EOD, truncated
[  100.151961][ T6208] loop1: p5 size 16711680 extends beyond EOD, truncated
[  100.458732][ T6224] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  100.468418][ T6224] SELinux: failed to load policy
[  100.539954][ T6235] __nla_validate_parse: 9 callbacks suppressed
[  100.539974][ T6235] netlink: 232 bytes leftover after parsing attributes in process `syz.3.1001'.
[  100.817663][ T6261] loop0: detected capacity change from 0 to 512
[  100.835692][ T6261] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  100.844058][ T6261] EXT4-fs (loop0): orphan cleanup on readonly fs
[  100.851022][ T6261] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.1012: invalid indirect mapped block 256 (level 2)
[  100.864965][ T6261] EXT4-fs (loop0): 2 truncates cleaned up
[  100.974540][ T6257] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  100.993880][ T6257] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  101.014620][ T6266] netlink: 232 bytes leftover after parsing attributes in process `syz.0.1013'.
[  101.054661][   T29] kauditd_printk_skb: 535 callbacks suppressed
[  101.054679][   T29] audit: type=1326 audit(1743034436.074:2312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6271 comm="syz.0.1016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b499ad169 code=0x7ffc0000
[  101.097875][   T29] audit: type=1326 audit(1743034436.074:2313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6271 comm="syz.0.1016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9b499ad169 code=0x7ffc0000
[  101.121400][   T29] audit: type=1326 audit(1743034436.074:2314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6271 comm="syz.0.1016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b499ad169 code=0x7ffc0000
[  101.144867][   T29] audit: type=1326 audit(1743034436.074:2315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6271 comm="syz.0.1016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b499ad169 code=0x7ffc0000
[  101.168377][   T29] audit: type=1326 audit(1743034436.074:2316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6271 comm="syz.0.1016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9b499ad169 code=0x7ffc0000
[  101.191930][   T29] audit: type=1326 audit(1743034436.074:2317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6271 comm="syz.0.1016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b499ad169 code=0x7ffc0000
[  101.215632][   T29] audit: type=1326 audit(1743034436.074:2318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6271 comm="syz.0.1016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f9b499ad169 code=0x7ffc0000
[  101.239174][   T29] audit: type=1326 audit(1743034436.074:2319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6271 comm="syz.0.1016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b499ad169 code=0x7ffc0000
[  101.262754][   T29] audit: type=1326 audit(1743034436.074:2320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6271 comm="syz.0.1016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f9b499ad169 code=0x7ffc0000
[  101.286449][   T29] audit: type=1326 audit(1743034436.074:2321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6271 comm="syz.0.1016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b499ad169 code=0x7ffc0000
[  101.365600][ T6290] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1023'.
[  101.377040][ T6294] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  101.387253][ T6294] SELinux: failed to load policy
[  101.396712][ T6295] loop1: detected capacity change from 0 to 512
[  101.403189][ T6295] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[  101.557375][ T6314] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1033'.
[  101.594929][ T6318] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1035'.
[  101.690604][ T6306] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  101.700992][ T6306] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  101.807033][ T6332] FAULT_INJECTION: forcing a failure.
[  101.807033][ T6332] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  101.820225][ T6332] CPU: 1 UID: 0 PID: 6332 Comm: syz.2.1041 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(voluntary) 
[  101.820258][ T6332] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  101.820274][ T6332] Call Trace:
[  101.820280][ T6332]  <TASK>
[  101.820345][ T6332]  dump_stack_lvl+0xf6/0x150
[  101.820365][ T6332]  dump_stack+0x15/0x1a
[  101.820378][ T6332]  should_fail_ex+0x261/0x270
[  101.820398][ T6332]  should_fail+0xb/0x10
[  101.820471][ T6332]  should_fail_usercopy+0x1a/0x20
[  101.820494][ T6332]  _copy_from_iter+0xd8/0xd10
[  101.820522][ T6332]  ? kmalloc_reserve+0x16e/0x190
[  101.820550][ T6332]  ? __build_skb_around+0x199/0x1f0
[  101.820614][ T6332]  ? __alloc_skb+0x227/0x320
[  101.820639][ T6332]  ? __virt_addr_valid+0x1ed/0x250
[  101.820656][ T6332]  ? __check_object_size+0x367/0x510
[  101.820712][ T6332]  netlink_sendmsg+0x492/0x720
[  101.820748][ T6332]  ? __pfx_netlink_sendmsg+0x10/0x10
[  101.820791][ T6332]  __sock_sendmsg+0x140/0x180
[  101.820814][ T6332]  ____sys_sendmsg+0x350/0x4e0
[  101.820834][ T6332]  __sys_sendmsg+0x1a0/0x240
[  101.820911][ T6332]  __x64_sys_sendmsg+0x46/0x50
[  101.820927][ T6332]  x64_sys_call+0x26f3/0x2e10
[  101.820944][ T6332]  do_syscall_64+0xc9/0x1c0
[  101.820966][ T6332]  ? clear_bhb_loop+0x25/0x80
[  101.820984][ T6332]  ? clear_bhb_loop+0x25/0x80
[  101.821001][ T6332]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.821033][ T6332] RIP: 0033:0x7f0d0209d169
[  101.821090][ T6332] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  101.821106][ T6332] RSP: 002b:00007f0d00707038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  101.821122][ T6332] RAX: ffffffffffffffda RBX: 00007f0d022b5fa0 RCX: 00007f0d0209d169
[  101.821133][ T6332] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000003
[  101.821143][ T6332] RBP: 00007f0d00707090 R08: 0000000000000000 R09: 0000000000000000
[  101.821153][ T6332] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  101.821163][ T6332] R13: 0000000000000000 R14: 00007f0d022b5fa0 R15: 00007ffc192d9b58
[  101.821205][ T6332]  </TASK>
[  102.033962][ T6325] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  102.042712][ T6325] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  102.071039][ T6334] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1042'.
[  102.176968][ T6346] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1047'.
[  102.241678][ T6354] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1051'.
[  102.261344][ T6358] loop2: detected capacity change from 0 to 512
[  102.268459][ T6359] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  102.274479][ T6358] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  102.275140][ T6359] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  102.283306][ T6358] EXT4-fs (loop2): orphan cleanup on readonly fs
[  102.290860][ T6359] vhci_hcd vhci_hcd.0: Device attached
[  102.298986][ T6358] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.1052: invalid indirect mapped block 256 (level 2)
[  102.304410][ T6338] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  102.327034][ T6358] EXT4-fs (loop2): 2 truncates cleaned up
[  102.333990][ T6338] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  102.459223][ T6368] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1054'.
[  102.593557][ T4215] usb 4-1: SetAddress Request (2) to port 0
[  102.596376][ T6383] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1060'.
[  102.605086][ T4215] usb 4-1: new SuperSpeed USB device number 2 using vhci_hcd
[  102.657488][ T6385] SELinux:  policydb magic number 0x6b7a7973 does not match expected magic number 0xf97cff8c
[  102.668443][ T6385] SELinux: failed to load policy
[  102.756420][ T6399] loop0: detected capacity change from 0 to 512
[  102.763928][ T6393] 9pnet_fd: Insufficient options for proto=fd
[  102.771560][ T6399] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  102.779759][ T6399] EXT4-fs (loop0): orphan cleanup on readonly fs
[  102.786567][ T6399] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.1066: invalid indirect mapped block 256 (level 2)
[  102.800937][ T6399] EXT4-fs (loop0): 2 truncates cleaned up
[  103.039058][ T6360] vhci_hcd: connection reset by peer
[  103.047490][ T3429] vhci_hcd: stop threads
[  103.051908][ T3429] vhci_hcd: release socket
[  103.056432][ T3429] vhci_hcd: disconnect device
[  103.086748][ T6426] loop2: detected capacity change from 0 to 512
[  103.109512][ T6424] SELinux:  policydb magic number 0x6b7a7973 does not match expected magic number 0xf97cff8c
[  103.119984][ T6424] SELinux: failed to load policy
[  103.122711][ T6426] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1076: bg 0: block 248: padding at end of block bitmap is not set
[  103.141693][ T6426] EXT4-fs error (device loop2): ext4_acquire_dquot:6927: comm syz.2.1076: Failed to acquire dquot type 1
[  103.154568][ T6426] EXT4-fs (loop2): 1 truncate cleaned up
[  103.160747][ T6426] ext4 filesystem being mounted at /221/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  103.178771][ T6426] EXT4-fs error (device loop2): ext4_lookup:1817: inode #2: comm syz.2.1076: deleted inode referenced: 12
[  103.209038][ T6439] bridge0: port 2(bond0) entered blocking state
[  103.215542][ T6439] bridge0: port 2(bond0) entered disabled state
[  103.225596][ T6439] bond0: entered allmulticast mode
[  103.230894][ T6439] bond_slave_0: entered allmulticast mode
[  103.236830][ T6439] bond_slave_1: entered allmulticast mode
[  103.254684][ T6439] bond0: entered promiscuous mode
[  103.259799][ T6439] bond_slave_0: entered promiscuous mode
[  103.265650][ T6439] bond_slave_1: entered promiscuous mode
[  103.274597][ T6439] bridge0: port 2(bond0) entered blocking state
[  103.281005][ T6439] bridge0: port 2(bond0) entered forwarding state
[  103.394230][ T6459] loop4: detected capacity change from 0 to 512
[  103.412187][ T6459] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  103.433641][ T6459] EXT4-fs (loop4): orphan cleanup on readonly fs
[  103.441991][ T6459] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.1088: invalid indirect mapped block 256 (level 2)
[  103.456496][ T6459] EXT4-fs (loop4): 2 truncates cleaned up
[  103.462599][ T6459] EXT4-fs mount: 24 callbacks suppressed
[  103.462614][ T6459] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  103.484288][ T6468] loop3: detected capacity change from 0 to 512
[  103.501954][ T6468] EXT4-fs error (device loop3): ext4_xattr_block_get:596: inode #2: comm syz.3.1092: corrupted xattr block 255: invalid header
[  103.519908][ T6468] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117
[  103.574641][ T6468] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.591953][ T6468] EXT4-fs error (device loop3): ext4_xattr_block_get:596: inode #2: comm syz.3.1092: corrupted xattr block 255: invalid header
[  103.618153][ T6468] SELinux: (dev loop3, type ext4) getxattr errno 117
[  103.641660][ T6468] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.669417][ T6478] xt_hashlimit: max too large, truncated to 1048576
[  103.727134][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.738383][ T6482] loop2: detected capacity change from 0 to 512
[  103.742109][ T6484] loop3: detected capacity change from 0 to 512
[  103.745173][ T6482] EXT4-fs: Ignoring removed mblk_io_submit option
[  103.751623][ T6484] EXT4-fs: Ignoring removed mblk_io_submit option
[  103.758378][ T6482] EXT4-fs: inline encryption not supported
[  103.766208][ T6484] EXT4-fs: inline encryption not supported
[  103.776221][ T6482] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  103.785509][ T6482] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  103.820662][ T6484] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  103.830025][ T6484] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[  103.842400][ T6482] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended
[  103.851506][ T6484] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended
[  103.860769][ T6484] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c02c, mo2=0002]
[  103.870151][ T6482] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c02c, mo2=0002]
[  103.878365][ T6484] System zones: 0-2, 18-18, 34-34
[  103.884499][ T6482] System zones: 0-2, 18-18, 34-34
[  103.889961][ T6484] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.1097: couldn't read orphan inode 15 (err -116)
[  103.901934][ T6482] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.1098: couldn't read orphan inode 15 (err -116)
[  103.922306][ T6482] EXT4-fs (loop2): Remounting filesystem read-only
[  103.941922][ T6484] EXT4-fs (loop3): Remounting filesystem read-only
[  103.949025][ T6484] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.961417][ T6482] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.961455][ T6484] SELinux: (dev loop3, type ext2) getxattr errno 5
[  103.961481][ T6482] SELinux: (dev loop2, type ext2) getxattr errno 5
[  103.975461][ T6484] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.984007][ T6482] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.211800][ T6513] ==================================================================
[  104.219935][ T6513] BUG: KCSAN: data-race in mas_wr_store_entry / mtree_range_walk
[  104.227688][ T6513] 
[  104.230014][ T6513] write to 0xffff8881020a8b10 of 8 bytes by task 6512 on cpu 0:
[  104.237682][ T6513]  mas_wr_store_entry+0x1266/0x2460
[  104.242902][ T6513]  mas_store_prealloc+0x6d5/0x960
[  104.247945][ T6513]  commit_merge+0x443/0x740
[  104.252459][ T6513]  vma_expand+0x211/0x360
[  104.256803][ T6513]  vma_merge_new_range+0x2da/0x340
[  104.261941][ T6513]  mmap_region+0x7eb/0x1630
[  104.266467][ T6513]  do_mmap+0x9ef/0xc80
[  104.270556][ T6513]  vm_mmap_pgoff+0x16d/0x2d0
[  104.275154][ T6513]  ksys_mmap_pgoff+0xd0/0x340
[  104.279840][ T6513]  x64_sys_call+0x1945/0x2e10
[  104.284527][ T6513]  do_syscall_64+0xc9/0x1c0
[  104.289046][ T6513]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.294949][ T6513] 
[  104.297281][ T6513] read to 0xffff8881020a8b10 of 8 bytes by task 6513 on cpu 1:
[  104.304833][ T6513]  mtree_range_walk+0x1b3/0x460
[  104.309697][ T6513]  mas_walk+0x16e/0x320
[  104.313862][ T6513]  lock_vma_under_rcu+0x97/0x290
[  104.318814][ T6513]  exc_page_fault+0x150/0x650
[  104.323502][ T6513]  asm_exc_page_fault+0x26/0x30
[  104.328361][ T6513] 
[  104.330684][ T6513] value changed: 0x00007f07dbbf6fff -> 0x00007f07dbbd5fff
[  104.337794][ T6513] 
[  104.340119][ T6513] Reported by Kernel Concurrency Sanitizer on:
[  104.346272][ T6513] CPU: 1 UID: 0 PID: 6513 Comm: syz.3.1108 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(voluntary) 
[  104.358349][ T6513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  104.368413][ T6513] ==================================================================
[  104.463260][ T6517] loop2: detected capacity change from 0 to 512
[  104.474916][ T6517] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  104.487576][ T6517] ext4 filesystem being mounted at /227/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  104.586966][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.683543][ T4215] usb 4-1: device descriptor read/8, error -110
[  107.794464][ T4215] usb 4-1: new SuperSpeed USB device number 2 using vhci_hcd
[  107.813531][ T4215] usb 4-1: enqueue for inactive port 0
[  107.819066][ T4215] usb 4-1: enqueue for inactive port 0
[  107.824588][ T4215] usb 4-1: enqueue for inactive port 0
[  108.854652][ T4215] usb usb4-port1: attempt power cycle
[  110.673658][ T4215] usb usb4-port1: unable to enumerate USB device