last executing test programs:

4m17.629538002s ago: executing program 4 (id=16696):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3)
ioctl$EVIOCGPROP(0xffffffffffffffff, 0x40047438, &(0x7f0000000180)=""/246)
r1 = dup(0xffffffffffffffff)
write$P9_RGETLOCK(r1, &(0x7f00000003c0)=ANY=[], 0x2)

4m17.574277032s ago: executing program 4 (id=16697):
mprotect(&(0x7f0000137000/0x3000)=nil, 0x3000, 0x1000005)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008005}, 0x80)
r0 = syz_usbip_server_init(0x4)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000000)={[{@bh}, {}, {@init_itable_val={'init_itable', 0x3d, 0x9}}, {@errors_remount}, {@journal_dev={'journal_dev', 0x3d, 0xd}}]}, 0x1, 0x4ce, &(0x7f0000001f80)="$eJzs3ctrXNUfAPDvzOTRpvn9+lCkrWALFeqDZvJAmqgbV+qiIBbcKNSYTGPMJBMyk9qEgqnuunAhioK4cCn4D+jGriyCuNa9dCEVrRGqIIzMI+nkMelIk47mfj5wO/eeczvfczJ8T86cuZkbQGIdr/yTiuiNiO8iYn/tcO0Jx2sPyzcvjVW2VJTLZ39JVc+rHK+cuvL/9kXEUkTsiYgXn414LbUxbnFhcWo0n8/N1Y+zpenZbHFh8dTk9OhEbiI3MzB8emRkuH9ocGTb+nrl3TeunPny+a7Pb71z49p7X39VaVZvva6xH9up1vXOONhQ1hERT+9EsDbI1Puzt7XT0zvdHv6Zyut3X0ScqOb//shUX00gCcrlcvmvcnez6qUysGulq3PgVLqvPjnrjXS6r682h78/etL5QrH0+PnC/Mx4ba58IDrT5yfzuf76e4UD0ZmqHA9U928fD647HoqozoHfz9wql8v5XN9YIT9+b4c6YJ196/L/90wt/4GE8JYfkkv+Q3LJf0gu+Q/JJf8hueQ/JJf8h+SS/5Bc8h+SS/5Dcsl/SKQXzpypbOWVv38fv7AwP1W4cGo8V5zqm54f6xsrzEXfRKH7i9aeL18ozA48EfMXs6VcsZQtLiyemy7Mz5TOTU6PTnRFrnOH+wO07uCxqz+kImLpyb3VraKrXidXYXcrv1X7DoA76IqWTgP+SzLtHoCAtrH0B8nlPT6wyVf0rrGnWcXsXUW9U1hgB/lCZkiuk0d8/gdJZf0fksv6PyTX2jm+2QAkUXvW/4F2sv4PydXbcP+fVMP9v/7XcO+u/oj4f0R8n+nsXrnXF7AbpH9K1XP/5P6He9fXdqX+qC4KdEXEmx+f/fDiaKk0N1Ap/3W1vPRRrbyrHc0HWlbN38H6o1/kAJBoyzcvja1sq4UHdj7uz8/ULkLYGL+jvja5p/oZZc9yas21CqltunZh6XJEHN4sfqp+v/PaJx89y5kN8Q/VH1O1p6i2t6N63/S7iX/9s1bjH2mI/1BD/KN3/VOBZLhaGX/6N8v/dDWnYzX/1o4/vdt0fXTz8S+9Ov5lmox/x1qM8fonb19vGv9yxNGO6I5Nxr+OevzUJvErbTvZYvwbr7z0QLO68qe159ls/F1R2cuWpmezxYXFU5PToxO5idzMwPDpkZHh/qHBkWx1jTq7slK90VOHv722Vf97msTfqv+Vskdb7P+fD37z8vEt4j9yYvPX/9AW8fdGxGMtxv9t8MdXm9VV4o836X96ffyGBb5K2VCL8YsfPNfd4qkAwD1QXFicGs3nc3N27OzkTve/oxl2Wt1p98gE7LTbSd/ulgAAAAAAAAAAAACtuheXE7e7jwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAu8HfAQAA//9s/NBa")
write$usbip_server(r0, &(0x7f0000000280)=@ret_submit={{0x3, 0x10000, 0x0, 0x1, 0x7ff}, 0x9, 0x0, 0x9, 0x0, 0x100}, 0x30)

4m16.233775372s ago: executing program 4 (id=16715):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000001e80)=0x6, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x8}, 0x1c)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000005c0)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000180)="c571f394195b00a3b32aa25e67e3acca4476e1a17ab5b628bb25e70c1d5eb56651a516a2ccb074a66ea8e68c75a1", 0x2e}, {&(0x7f0000000300)="b31ecd475401fc9eadf0fc9193d9caa686a6e45c16273dbc5b73af1db868e52dc793cd3fb70175f457e2bf69518d8467efb096d1eec103d04b2815a6fa2c3ea041", 0x41}], 0x2}}], 0x1, 0x44000)

4m16.126339012s ago: executing program 4 (id=16720):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000000240)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x80}}, {@stripe={'stripe', 0x3d, 0x4000}}, {@errors_remount}, {@max_batch_time={'max_batch_time', 0x3d, 0x4}}]}, 0x3, 0x43a, &(0x7f0000000340)="$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")
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
creat(&(0x7f0000000140)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
link(&(0x7f0000001240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000bc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
symlink(&(0x7f0000000440)='./cgroup.cpu/cgroup.procs\x00', &(0x7f0000000980)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
mount$bind(&(0x7f0000000c40)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2901090, 0x0)
chroot(0x0)

4m16.065701763s ago: executing program 4 (id=16722):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x0, 0x4000)
ioctl$USBDEVFS_DISCSIGNAL(r0, 0x8010550e, &(0x7f0000000280)={0x7439, &(0x7f00000003c0)="66c1b9f2be737a22d72c07acd94cf4609dce398997b29b6b5c695ad9e6ab2af4af639761b139c228852c7d5b057ee2ccf17a9f35118e682c48919029433f85ea276394856c6387dac880f8c43f4c2f8f20ff3704269ccc452fd57391dc23f746b0"})
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet6_dccp(0xa, 0x6, 0x0)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r2, 0x10e, 0x4, &(0x7f0000000100)=0x1, 0x4)
ioctl$AUTOFS_IOC_FAIL(r3, 0x4c80, 0x7000000)
r4 = socket(0x10, 0x3, 0x6)
r5 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r4, 0x8933, &(0x7f0000000040)={'team0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x88, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x2, [], 0x0, [0x4, 0x2, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3dc], [0x0, 0x4]}}}}]}, 0x88}}, 0x20000000)

4m15.616226656s ago: executing program 4 (id=16725):
ioctl$TIOCGSOFTCAR(0xffffffffffffffff, 0x5419, 0xfffffffffffffffd)

4m15.559482667s ago: executing program 32 (id=16725):
ioctl$TIOCGSOFTCAR(0xffffffffffffffff, 0x5419, 0xfffffffffffffffd)

4.075739302s ago: executing program 1 (id=21965):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x303600, 0x0)
fcntl$notify(r0, 0x402, 0x4)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]})
r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000200), 0x101081, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000240)={0x0, r1}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
tkill(0x0, 0x12)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x3, &(0x7f0000000040)=[{0x45, 0x0, 0x1, 0xfffffffc}, {}, {0x6, 0x0, 0x0, 0x7fff0000}]})
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
munmap(&(0x7f0000002000/0x4000)=nil, 0x4000)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000014c0)=ANY=[@ANYBLOB="1200000002000000040000000200000000000000", @ANYRES32, @ANYBLOB="00000000000000000000003de6e0f5f5c3f9d900edb78ebc9c33f7ead27037df3726679bac840257f3778e8b70303607474d5da7bdbe6eaf46c4fe17321e7378f3b63e61b23a2e11a43f0e5d7937386b0406c7bb4e083affe5025b0d618484b79d648b56145a938928fade821cb7dc280ffd0ac3b9a98740918ee5e9b35d4d9acea8a9043385e23087ca4f019fafa704981b1f7e45e7b777e6f9fdc1cfc0abcee8202e4b4ad709b2b0e6a68ae14e56c1b054", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r4}, &(0x7f0000000040), &(0x7f0000000140)=r3}, 0x20)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000001400)="acf1302bd8e09908c407277975a2ae95b61f8c154e3b64913731bfb7589a7751c1183f36461ad274cdf0dfcad2082b6eac9f7af4ed09a317712b722d1222cabf04d4bb00be6fe6e94902c20a363a298dd694cc4d08974b60f2004d01806c74bf3ed6967a21cb47519ce104de0db25cac6f0497c15bdc0357399f22466e02cfe93c7ef4d2becae4542d4399", &(0x7f0000001240)="1936f2cc56044a7ab726164647db7a55f32d4b1bfaff451e359a7a6a19b3f41b54ca4f7299f0882a7f998c251b5308fad32e802dfd8da87df3a96e6c60f9a609ccd45091c2f93328b96f58811d9b871717a8bc7736544d7f1b43b269a63711e3bd1dfcc773af8918bcaf6ddf693e1c644be237063132076e2f8a5885b7b1c6fe8c4065540d95d2b6a086c927c6cd6f25b7a5be528a", 0x4, r4, 0x4}, 0x38)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020001000900010073797a300000000008000240000000032c000000030a01030000e6ff00000027020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x2040084)
sendmsg$NFT_BATCH(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @queue={{0xa}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_QUEUE_FLAGS={0x6, 0x3, 0x1, 0x0, 0x4}, @NFTA_QUEUE_NUM={0x6}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x7c}}, 0x0)
bind$inet6(r5, &(0x7f0000000040)={0xa, 0x4e24, 0xffffffdd, @private0={0xfc, 0x0, '\x00', 0x1}, 0x9}, 0x1c)
socket$inet6_tcp(0xa, 0x1, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000001e00100000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000fcffffffb702000004000000b7030000000000de850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kmem_cache_free\x00', r7}, 0x18)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000003b40)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRES16=0x0, @ANYBLOB="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", @ANYBLOB="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", @ANYRES64], 0x8, 0x2eb, &(0x7f00000004c0)="$eJzs3E1PE10UwPHTF0pbAmXx5DGaGG50o5sJVNdKYyAxNpEgNb4kJgNMtenYkpkGU2NEV26NH8IFYcmORPkCbNzpxo07NiYuZGEc0+kMhTKAlNIi/H8JmcPce6b3zgzk3AnD+r23T4t5W8vrFQnHlYRERDZEBiUsvpC3DbtxTLZ6JZf7fnw+f+f+g1uZbHZsUqnxzNSVtFJqYOjDsxcJr9tKr6wNPlr/nv629v/a2fXfU08KtirYqlSuKF1Nl79W9GnTULMFu6gpNWEaum2oQsk2rHp7ud6eN8tzc1Wll2b7k3OWYdtKL1VV0aiqSllVrKqKPNYLJaVpmupPCvaTW5yc1DMtJs+0eTA4IpaV0SMiktjRklvsyoAAAEBXNdf/YVHtrP+XLqxW+u4uD3j1/0osqP6/+qV+rG31f1xEAut///MD63/9YPX/zorodDlU/Y/jYSi2Y1eoEdYarYye9H5+Xa8fLg27AfU/AAAAAAAAAAAAAAAAAAAAAAD/gg3HSTmOk/K3/leviMRFxP8+IDUiIte7MGS00SGuP06Axot70QER8818bj5X33odVkXEFEOGJSW/3PvBU4v9N49UzaB8NBe8/IX5XMRtyeSl4OaPSKpHmvMdZ/xmdmxE1W3P75Hk1vy0pOS/4Px0YH5MLl3ckq9JSj7NSFlMmXXH0ch/OaLUjdvZpvyE2w8AAAAAgJNAU5sC1++atlt7PX9zfd38fCDSWF8PB67Po3Iu2t25AwAAAABwWtjV50XdNA1rjyAh+/dpPYge0ZH9Gf5tlv+3DEc30z0C/8O3NcW9nW0/LaEDnJZdgrC0kjVUm4067Cz8x0a79ZGJ0c5fQTc48+79z/Yd8NpyfJ+Zth5E9r4Bejr2CwgAAABAxzSKfn/PaHcHBAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAKdSJ/47W7TkCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAx8WfAAAA//+SWQVN")
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r8, &(0x7f0000000040), 0x208e24b)

3.377302996s ago: executing program 0 (id=21980):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000006c0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x9, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
epoll_create1(0x0)

3.361518157s ago: executing program 0 (id=21981):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010328bd7000fedbdf251c0000000c00"], 0x20}}, 0x10)

3.345224817s ago: executing program 0 (id=21982):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000006c0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x9, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

3.327654396s ago: executing program 0 (id=21983):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r0, <r1=>0xffffffffffffffff}, 0x0, &(0x7f0000000040)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000001000000e000000200000000000000000000000000000000000000000a00000000000000", @ANYRES32=r1, @ANYRES32=0x0, @ANYRESOCT=0x0], 0xfc}}, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000340))
request_key(&(0x7f0000000540)='user\x00', &(0x7f00000001c0)={'syz', 0x3}, &(0x7f0000000200)=',$:@^@,\x00', 0xfffffffffffffffb)

3.207527357s ago: executing program 1 (id=21984):
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f00000700000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYBLOB="000000000000040000000000000000000000040000000000001b0000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000280), &(0x7f0000000080)=r1}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r2, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
add_key(&(0x7f00000003c0)='dns_resolver\x00', &(0x7f0000000400)={'syz', 0x3}, &(0x7f0000000080)="00000102", 0xfffff, 0x0)
r3 = socket(0x40000000015, 0x5, 0x0)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc)=<r5=>0x0)
timer_settime(r5, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
recvmmsg(r3, &(0x7f0000000040)=[{{0x0, 0x0, 0x0}}], 0x1, 0x60010020, 0x0)

3.174306728s ago: executing program 0 (id=21985):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x2}, 0x18)
r2 = getpid()
r3 = syz_pidfd_open(r2, 0x0)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f0000000040)={0x0, 0x0, 0x0, 'queue0\x00'})
close_range(r3, 0xffffffffffffffff, 0x0)

3.066920089s ago: executing program 0 (id=21987):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0xff, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0600000004000000ff0f00000700000000000000", @ANYRES32, @ANYBLOB, @ANYRES32=0x0, @ANYRES32], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='sched_switch\x00', r4}, 0x10)
socket$inet(0x2, 0x4000000000000001, 0x0)
r5 = syz_open_dev$usbfs(&(0x7f0000000080), 0x70, 0x101301)
r6 = socket$key(0xf, 0x3, 0x2)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00'}, 0x10)
sendmsg$key(r6, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000200))
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000600)=ANY=[], 0x0, 0x4e, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r7}, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xf, 0x4, 0x8, 0x63b2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x20000, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

2.266265074s ago: executing program 5 (id=21991):
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000180)={0x80000000}, 0x19a)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
process_vm_readv(0x0, 0x0, 0x0, &(0x7f0000008640)=[{&(0x7f00000003c0)=""/95, 0x5f}], 0x1, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, 0x0, 0x0)
syz_read_part_table(0x5be, &(0x7f00000005c0)="$eJzs2z9o02kYB/AnahAUzsXJ4bAOTi6KoxmsJFFRCNEu4qCgiJgpghAhINihzdDSDKVjl1LI0j9T0wwdjpYWOpfSoUehQ6ejXQpdmuOu7+3t9Q8Inw/8ePK+7zd58gy/8Q1+aZfir263m4mI7tWTf7uvlS88u116XH4dkYm3EdHzx28z/5xkUuK/X72T1ptpPTF+rTO49zTb2ni1f/fdYuNSOv+RnuuT7b5TD8e5m8ot3fjZXy0O1XKf14v17YG11ZfTu/ly+0WjOfM8++RDyi2neiXVr1GL7/El3kclKvExqmfUf6y1df/wVrE19+nRQaEzvPAg5UqnnPO4/b/1jLxp1nvvzd4cfVibXynvXD7KVf7H2wUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwMWbyi3d+NlfLQ7Vcp/Xi/XtgbXVl9O7+XL7RaM58zz75EPKLad6JdWvUYvv8SXeRyUq8TGqZ9R/rLV1//BWsTX36dFBoTO88CDlSqec87j9v/WMvGnWe+/N3hx9WJtfKe9cPspVrp7THwAAAAAAAAAAAAAAAAAAAICIyBee3S49Lr+OyMTbiGj/3vvvVf9uuu+eSbk76cNm2p8Yv9YZ3HuabW282r/7brHxZ9r/kZ7rk+2+i5+Gk/o7AAD//5Yblcc=")
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x187842, 0x147)
r1 = getpgrp(0x0)
fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000340)={0x2, 0x3, 0x6e, 0x8, r1})
pwritev2(0xffffffffffffffff, 0x0, 0x0, 0x1200, 0x30, 0x3)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mkdir(0x0, 0x0)
io_uring_setup(0x28bc, &(0x7f00000002c0)={0x0, 0x9d31, 0x82, 0x3})

2.231484604s ago: executing program 1 (id=21992):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x2}, 0x18)
r2 = getpid()
r3 = syz_pidfd_open(r2, 0x0)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000004c0), 0x48100)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r5, 0xc08c5332, &(0x7f0000000040)={0x0, 0x0, 0x0, 'queue0\x00'})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r4, 0xc08c5335, &(0x7f00000001c0)={0x0, 0x80, 0x0, 'queue0\x00'})
close_range(r3, 0xffffffffffffffff, 0x0)

2.099270095s ago: executing program 1 (id=21993):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000006c0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x9, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

1.824815587s ago: executing program 1 (id=21996):
r0 = getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socket$inet6_sctp(0xa, 0x5, 0x84)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r5}, 0x10)
setresuid(0x0, 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r6}, 0x0, &(0x7f00000002c0)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
move_pages(r1, 0x9, &(0x7f0000000240)=[&(0x7f0000ffb000/0x3000)=nil, &(0x7f00008a2000/0x4000)=nil, &(0x7f0000881000/0x4000)=nil, &(0x7f0000039000/0x1000)=nil, &(0x7f0000502000/0x4000)=nil, &(0x7f0000150000/0x2000)=nil, &(0x7f0000ff3000/0xa000)=nil, &(0x7f00001ef000/0x3000)=nil, &(0x7f000007d000/0x4000)=nil], 0x0, &(0x7f0000000100)=[0x0, 0x0, 0x0], 0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
execve(&(0x7f0000000300)='./file0\x00', 0x0, 0x0)
r7 = syz_pidfd_open(r0, 0x0)
setns(r7, 0x24020000)
sched_setscheduler(r0, 0x3, &(0x7f0000000000)=0x400)
syz_clone(0xf5982500, 0x0, 0x0, 0x0, 0x0, 0x0)

1.785038027s ago: executing program 5 (id=21997):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x2}, 0x18)
r2 = getpid()
r3 = syz_pidfd_open(r2, 0x0)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f0000000040)={0x0, 0x0, 0x0, 'queue0\x00'})
close_range(r3, 0xffffffffffffffff, 0x0)

1.698974158s ago: executing program 5 (id=21998):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32, @ANYBLOB="140001"], 0x54}, 0x1, 0x0, 0x0, 0x800}, 0x80)
sendmsg$TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000140)=ANY=[], 0x50}}, 0x4)
sendmmsg(r0, &(0x7f0000000000), 0x4000000000001f2, 0x0)

1.303376761s ago: executing program 5 (id=21999):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async, rerun: 64)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (rerun: 64)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r1}, 0x10)
pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000010000a80000000060a0904000000000000000002000000540004802c"], 0xc8}}, 0x0) (async)
sendmsg$IPSET_CMD_TEST(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)={0x68, 0xb, 0x6, 0x101, 0x0, 0x0, {0x3}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_ADT={0x3c, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_COMMENT={0x7, 0x1a, '$.\x00'}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_BYTES={0xc, 0x18, 0x1, 0x0, 0x9}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_SKBMARK={0xc, 0x1b, 0x1, 0x0, 0x10}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0xffff}}]}, @IPSET_ATTR_ADT={0x4}]}, 0x68}}, 0x0) (async, rerun: 32)
r2 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) (async, rerun: 32)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) (rerun: 32)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000013000000850000008600000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='mm_page_free\x00', r5}, 0x18) (async)
kexec_load(0x0, 0x1, &(0x7f0000000140)=[{0x0, 0x3e00, 0x116094000, 0x41000000}], 0x0) (async)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000200b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000080)='mm_page_alloc\x00', r6}, 0x10)
r7 = perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x400, 0x17b759, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, @perf_bp={0x0, 0x1}, 0x18a1, 0x3fd, 0x200, 0x8, 0x4, 0x3, 0x8}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x3)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2800004, 0x28011, r7, 0x0)
sendmsg$nl_generic(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="9100007cc48c7630e4496055272f00000000"], 0x528}}, 0xc000)

1.254969711s ago: executing program 3 (id=22000):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x42202)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x46032, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)

1.240296631s ago: executing program 3 (id=22001):
mount$tmpfs(0x0, &(0x7f0000000000)='./cgroup\x00', &(0x7f0000000140), 0x3200841, &(0x7f0000000380))

1.188004581s ago: executing program 5 (id=22002):
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/clients\x00', 0x0, 0x0)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x800)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r4, 0x4058534c, &(0x7f0000000180)={0x80, 0x2a, 0x3})
preadv(r3, &(0x7f0000004ec0)=[{&(0x7f0000004bc0)=""/68, 0x44}], 0x1, 0x8000, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000005c00)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546000677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289d01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5467a932b77674e802a0d42bc6099ad238af770b5ed8925161729298700000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb076719237c8d0e60b0eea24492a660583eecdbf5bcd3de3ac3209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b135ab6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809b5b9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed3957f813567f7a95435ac15fc0288d9b2a169cdcacc413b48dafb7a2c8cb482bac0ac559eaf39027ceb379a902d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385beef3282830689da6b53b263339863297771429d120000003341bf4abacac94500fca0493cf29b33dcc9ffffffffffffffd39f6ce0c6ff01589646efd1cf870cd7bb2366fdf870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1293b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd000c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c7df8be5877050c91301fb997316dbf17866fb84d4173731efe895ff2e1c55ef08235a0126e01254c44060926e90109b598502d3e959efc71f665c4d75cf2458e3542c9062ece84c99a861887a20639b41c8c12ee86c50804042b3eac1f879b136345cf67ca3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc74aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7ad333545794f37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f4df90400000000000000d6b2c5ea139376f24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8e3070000001e48418046c216c1f895778cb25122a2a998de0842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec84ac3571f02f647b3385b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba2f58ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df986741517abf11389b751f4e109b60000000000000000d6d5210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750890ae71555b3228b1bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e7a45319f18101288d139bd3da230ed05a8fe64680b0a3f9f2dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30235b9100000000a55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854356cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c776f4b4ce07e1c6fa66fcfc7a228805f76785efc0ceb1c8e5729c66418d169fc03aa18854693ad2a182068e1e3a0e2505bc7f41019645466ac96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7e478950aa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab848753203b458b97ec1afb079b4b4ba686fcdf240430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7db3c4be290159f6bcd75f0dda9de5532e71ae9e48b0ed1254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6c30ebc660309e1e245b0fdf9743af932cd6db49a47613808bad959719c0000000000378ac2e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6ca0400966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e3030108000000000000c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bffef97dcecc467ace456597685c5870d25f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4cba6e6390a9f302c6eb2df7766411bef0ebb5000000000006065d6735eb7a00e127c0000000000000000000000bfb0bba79344643b1d8daa9f38e4b62c1e2af68c6f5054b078acd74b4a9c944e4505da485a3a4154387a0a88372091cd397b09c5888a06431df3f68abf0b366c4d5f8bea7b29c257ed756dff7a21c6b661cbdd43de65afd7f661d5c84f915c90e3d6ea012b68b787eb01d8320000000000000060176dacba0ec503a37fae6b472ec369c79ee6a420c0fd8d8d82fe136d5af6c30bfeb0a7275babfdb96a127aa9386e0671c6454245a18c1c8c49552cff5d27b547cdc34c0858c77a47a9ff86ee9fbd9ceda428716a4218821176d8067997527230fa67d26950d3e4f2750fa7c872874ad3a2d11f9f6eb08e6d7b6fa257b04d8ce36360f524e3dfd2211641f3d2637d86b80681eca50ce0eecafdd22d41fa515c15591e70ded4b70efac3cb42fb352d82e8f7573e8ed8248da356fa91a252976d3a4d8c1843a8d5bb7f5f1028453a0562a3ea93117076dd4940b7df50d78289fe66197525f6095f8662d232970bef61b03fa83027963a1a2e07cfee30c0d0b4c5877f93b3637ca21eab5afcf5d4638dfe8f9202aaad51c979049dd76d65368cbd4187d9f74257c7c4a23ac4a34eec5aa17e78c5167216f5e72138d20f8325dd5f8f96c32189c904eaef580987f1ce601a7cdc35461db9981ac42f9e24b0699bbe4e3d986e38952b0b7938eefd9e7a292bbb66367ad77045fdc18855c81c031dedd185c723238373fc698d676791d04f1ff5f0825a6619e844882f31ed190233d58ecee949e310bf2b1a51b8a33ae65a06d2b6ad386bf8dc49dd328bcd75d1843a13d68560175a18af7efc3c0f20e32f84f6aaaf000000000000000000000013a6c66bce74a8fb9092023df695da2714a7933d699d42de2bc4a85e0a0e22228290a7a7553ab93a16e42453ed86869a02df2f47d4088fac1772d3cd955c81cbf91c2ca7942942f61723b558079b82547844f92df2499c4b2c2ef2539e5daa8d8727baaa6b5755e6f83bbfca00000000000000000000007925d0f1256330b9e2aa9a18cea8e009116f63c6c7d8f7f95bf0f6731e5eb1dcdc534f357b9f08e7a9a3aebeca145d695053b5bef004ca24e6c57ed10f01488d38b8b0b68d93e3cf630837915d518fde2115e66615786fe7b9216de958119cf762cac77ac829a02f48e72c0d2841880b2c"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff7e, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x800714, &(0x7f0000000640)={[{@orlov}, {@nodelalloc}, {@user_xattr}, {@resuid}, {@auto_da_alloc}, {@dioread_nolock}, {@quota}]}, 0xff, 0x4a9, &(0x7f00000016c0)="$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")
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x6, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18020000f9ffffff0000000000000000850000002c00000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
socket$nl_route(0x10, 0x3, 0x0)

1.187646351s ago: executing program 3 (id=22003):
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f00000700000000000000", @ANYRES32, @ANYRES32=0x0, @ANYBLOB="000000000000040000000000000000000000040000000000001b0000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000280), &(0x7f0000000080)=r1}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r2, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
add_key(&(0x7f00000003c0)='dns_resolver\x00', &(0x7f0000000400)={'syz', 0x3}, &(0x7f0000000080)="00000102", 0xfffff, 0x0)
r3 = socket(0x40000000015, 0x5, 0x0)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc)=<r5=>0x0)
timer_settime(r5, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
recvmmsg(r3, &(0x7f0000000040)=[{{0x0, 0x0, 0x0}}], 0x1, 0x60010020, 0x0)

796.236824ms ago: executing program 1 (id=22004):
r0 = socket$inet6(0xa, 0x6, 0x0)
syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000340)={'batadv_slave_0\x00'})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000540)={'ip6gre0\x00', &(0x7f00000004c0)={'ip6gre0\x00', 0x0, 0x29, 0xf8, 0x0, 0x3, 0x4, @remote, @private2={0xfc, 0x2, '\x00', 0x1}, 0x1, 0x1, 0x5555, 0x9}})
r1 = socket$netlink(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r2, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
socket(0x10, 0x803, 0x0)
socket(0x400000000010, 0x3, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4a, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)

410.632757ms ago: executing program 2 (id=22006):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000006c0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x9, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007"], 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

386.533957ms ago: executing program 2 (id=22007):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b5181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000600)=@raw={'raw\x00', 0x8, 0x3, 0x4c0, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x3f0, 0xffffffff, 0xffffffff, 0x3f0, 0xffffffff, 0xb, 0x0, {[{{@uncond, 0x0, 0x1a0, 0x1c0, 0x60030000, {0x0, 0xff000000}, [@common=@inet=@recent0={{0xf8}, {0x81, 0x0, 0x24, 0x0, 'syz1\x00'}}]}, @unspec=@TRACE={0x20}}, {{@uncond, 0x0, 0x1c8, 0x230, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x1, 0x0, 'syz0\x00'}}, @common=@inet=@set2={{0x28}, {{0x0, 0x40}}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x520)

198.831278ms ago: executing program 3 (id=22008):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x2}, 0x18)
r2 = getpid()
r3 = syz_pidfd_open(r2, 0x0)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f0000000040)={0x0, 0x0, 0x0, 'queue0\x00'})
close_range(r3, 0xffffffffffffffff, 0x0)

152.350129ms ago: executing program 5 (id=22009):
r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000600)={{0x1, 0x1, 0x18, <r1=>r0, {0xfff}}, './file0\x00'})
write$P9_RREADDIR(r1, &(0x7f0000000640)={0x49, 0x29, 0x2, {0x2, [{{0x40, 0x1, 0x7}, 0x5, 0x10, 0x7, './file0'}, {{0x80, 0x0, 0x3}, 0x100, 0x8, 0x7, './file0'}]}}, 0x49)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000540)={&(0x7f00000003c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x107, 0x107, 0x5, [@ptr={0xc, 0x0, 0x0, 0x2, 0x3}, @datasec={0xa, 0x3, 0x0, 0xf, 0x3, [{0x5, 0xbd, 0x3}, {0x1, 0x9, 0x1000}, {0x3, 0x2, 0x5}], "fec118"}, @func_proto={0x0, 0x3, 0x0, 0xd, 0x0, [{0xfffffe01, 0x5}, {0xf, 0x4}, {0x6, 0x5}]}, @float={0xc, 0x0, 0x0, 0x10, 0xc}, @decl_tag={0x10, 0x0, 0x0, 0x11, 0x4}, @int={0xc, 0x0, 0x0, 0x1, 0x0, 0x7a, 0x0, 0x2e}, @struct={0xd, 0x7, 0x0, 0x4, 0x1, 0xc, [{0x6, 0x4, 0x1}, {0x7, 0x0, 0x1ff}, {0xd, 0x2, 0x5}, {0x4, 0x0, 0x6}, {0x9, 0x0, 0x1}, {0x5, 0x3, 0x5}, {0xa, 0x3, 0x2858bde4}]}, @volatile={0xa, 0x0, 0x0, 0x9, 0x1}, @restrict={0x8, 0x0, 0x0, 0xb, 0x5}]}, {0x0, [0x2e, 0x2e, 0x30]}}, &(0x7f0000000500)=""/33, 0x125, 0x21, 0x0, 0xe21, 0x10000, @value}, 0x28)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@bloom_filter={0x1e, 0x2, 0xfd2, 0xffffffff, 0x600, 0x1, 0xea9, '\x00', 0x0, r2, 0x1, 0x4, 0x2, 0xc, @void, @value, @void, @value}, 0x50)
r3 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r4 = fcntl$dupfd(r3, 0x0, r3)
write$sndseq(r4, &(0x7f0000000200)=[{0x0, 0x0, 0x0, 0x0, @time={0x9e, 0xbdaf}, {}, {}, @raw32}, {0x3, 0x0, 0x0, 0x0, @tick=0x7, {}, {}, @ext={0x0, 0x0}}], 0x38)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f0000000000)={<r5=>0x0, 0xdd, "6a08857e29f4bd5d97521de33ad6677c0e69afab1d3e0dfeeeaeeb52b2c68cd0131675dc9b01442a20f642ba3edec0aaa5e4caf9dcf8b27459a6615ceb7005ed74536fafe185ada66a3cefd7deedb38cc1e1bcb50aca6a22f7615f7c0179df3573d6f9ffca0cb7dd4c03313f8a0e1a907f606f518e28461570094ec7de48069e788e9ce7a602570cc0d00cffd5bcf3f9101f127335999e9bdcd6d95e45c740a8a023cddee2c7855c3c097532c9e27d11665264a44397bcbf3acd763e46318e3c4f778140ff09b4c7e5a703cd46782ecf7790f97dd7f69d9d85b2eb4715"}, &(0x7f0000000100)=0xe5)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f00000001c0)={r5, 0xd8, &(0x7f0000000280)=[@in={0x2, 0x4e24, @multicast2}, @in6={0xa, 0x4e21, 0x8, @empty, 0x7ff}, @in6={0xa, 0x4e23, 0x16, @loopback, 0xa54}, @in6={0xa, 0x4e21, 0x2, @loopback, 0x1ff}, @in={0x2, 0x4e23, @rand_addr=0x64010102}, @in6={0xa, 0x4e20, 0xfffffffc, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0xffffffff}, @in6={0xa, 0x4e24, 0x5, @local, 0x5}, @in={0x2, 0x4e24, @multicast2}, @in6={0xa, 0x4e20, 0x6, @mcast1, 0xf}]}, &(0x7f0000000380)=0x10)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x41, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, r0, 0x0)

137.628639ms ago: executing program 2 (id=22010):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x1)
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0xd4)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1b, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r2}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r3}, 0x10)
r4 = dup2(r1, r1)
ioctl$BLKTRACESETUP(r4, 0x1276, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x6, 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="b4000000000000006111140000000000040000000000000095000000000000001abe5201462857a3db65e291772afa2114f5963ed660b870d974d2252829f8290f8d02e3b0096b3df3e6585851cb7efb50a982b66e14716ffe33a164c3d1ff5798fc4bd6d3e5ab096e9ad743eb00"], &(0x7f0000000080)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x21, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = socket$netlink(0x10, 0x3, 0x0)
writev(r5, &(0x7f00000000c0)=[{&(0x7f0000000080)="390000001300090468fe0700000000000000ff3f08000000480100100000000019002b000a0001000500000000000072080003000500000000", 0x39}], 0x1)
r6 = socket(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r7)
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r8, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x2f, &(0x7f0000000180)={&(0x7f0000000240)=@newtfilter={0x6c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {}, {}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x3c, 0x2, [@TCA_BASIC_EMATCHES={0x38, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xffff}}, @TCA_EMATCH_TREE_LIST={0x2c, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}, @TCF_EM_META={0x18, 0x2, 0x0, 0x0, {{}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x0, 0xe, 0x1}, {0x9, 0x8, 0x2549677028661870}}}]}}]}]}]}}]}, 0x6c}, 0x1, 0x0, 0x0, 0x400c040}, 0x0)

77.55163ms ago: executing program 3 (id=22011):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x42202)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x46032, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)

77.203829ms ago: executing program 2 (id=22012):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000006c0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x9, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007"], 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
epoll_create1(0x0)

29.508499ms ago: executing program 3 (id=22013):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x446, &(0x7f00000001c0)={[{@stripe={'stripe', 0x3d, 0x2}}, {@journal_dev={'journal_dev', 0x3d, 0x1045}}, {@oldalloc}, {@noquota}, {@data_err_ignore}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@delalloc}, {@errors_continue}, {@orlov}, {@user_xattr}, {@quota}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x1, 0x553, &(0x7f0000001080)="$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") (async, rerun: 64)
r0 = open(&(0x7f0000000540)='./file1\x00', 0x14927e, 0xc0) (rerun: 64)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000100)={'ip6gre0\x00', &(0x7f0000000080)={'ip6gre0\x00', <r1=>0x0, 0x4, 0xb, 0x9, 0x80000000, 0x20, @private2, @remote, 0x1, 0x1, 0x2, 0x10000}})
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000140)={'syztnl2\x00', &(0x7f00000002c0)={'gre0\x00', r1, 0x40, 0x8, 0x5, 0x4, {{0x33, 0x4, 0x2, 0x1, 0xcc, 0x66, 0x0, 0x9, 0x2f, 0x0, @multicast2, @local, {[@ssrr={0x89, 0x27, 0xe9, [@multicast1, @rand_addr=0x64010102, @rand_addr=0x64010102, @multicast1, @multicast2, @private=0xa010100, @multicast2, @empty, @dev={0xac, 0x14, 0x14, 0xd}]}, @lsrr={0x83, 0xf, 0x2e, [@empty, @multicast1, @private=0xa010102]}, @cipso={0x86, 0x4a, 0x3, [{0x1, 0x6, "25be3b0a"}, {0x7, 0x3, "a6"}, {0x5, 0xf, "6a40f5b86aae76dc8284b916ea"}, {0x1, 0xa, "c092dfeceb97da14"}, {0x7, 0x10, "9ee4647ccd8d1cfb92baa0bd6ca1"}, {0x1, 0x12, "54d60a51ad3014e7d5b2f3952f52c536"}]}, @cipso={0x86, 0x14, 0x3, [{0x1, 0xe, "344bd14582ee085ecadfd738"}]}, @generic={0x83, 0x7, "b8287bf043"}, @rr={0x7, 0x7, 0xaf, [@multicast1]}, @lsrr={0x83, 0xf, 0x72, [@empty, @empty, @initdev={0xac, 0x1e, 0x0, 0x0}]}, @ra={0x94, 0x4, 0x1}]}}}}})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x0, 0x0, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x2, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async, rerun: 32)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) (async, rerun: 32)
r2 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
close(r2) (async)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) (async)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r3}, 0x38)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4, 0x0, 0x2}, 0x18)
quotactl$Q_SETQUOTA(0x2, 0x0, 0x0, 0x0)
getpeername$packet(r0, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000003c0)=0x14) (async)
fallocate(r0, 0x0, 0xb7d4, 0x1001f0) (async)
stat(&(0x7f0000000400)='./file1\x00', &(0x7f0000000440))

15.99791ms ago: executing program 2 (id=22014):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x42202)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x46032, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)

0s ago: executing program 2 (id=22015):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680))
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a000000020000000110000007"], 0x50)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = syz_usb_connect$cdc_ncm(0x3, 0x74, &(0x7f0000000240)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x62, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0xb, 0x24, 0x6, 0x0, 0x1, '\x00\x00\x00\x00\x00\x00'}, {0x5}, {0xd, 0x24, 0xf, 0x1, 0x0, 0x5}, {0x6}}, {{0x9, 0x5, 0x81, 0x3, 0x200}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x200, 0x4, 0x0, 0xf9}}, {{0x9, 0x5, 0x3, 0x2, 0x8, 0x0, 0xfd}}}}}}}]}}, 0x0)
syz_usb_control_io$cdc_ncm(r3, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r3, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7030000de080000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
r6 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r6, 0x0, 0x60, &(0x7f0000000800)={'filter\x00', 0xb001, 0x4, 0x3a8, 0x0, 0x1d0, 0x0, 0x2c0, 0x2c0, 0x2c0, 0x7fffffe, 0x0, {[{{@uncond, 0xc0, 0x1d0}, @unspec=@STANDARD={0x28, '\x00', 0x0, 0x1d0}}, {{@uncond, 0xc0, 0xe8, 0x0, {0x0, 0x1e03}}, @unspec=@NFQUEUE3={0x28, 'NFQUEUE\x00', 0x3, {0x46e, 0xfffc}}}, {{@uncond, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x3f8)
syz_usb_control_io(r3, 0x0, &(0x7f0000001140)={0x84, &(0x7f0000000400)=ANY=[@ANYBLOB="00180000c3da0000c128ef"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ncm(r3, 0x0, 0x0)
r7 = syz_open_dev$usbfs(&(0x7f0000003f00), 0x1ff, 0xa401)
sendmsg$IPSET_CMD_ADD(r1, 0x0, 0x20000050)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r7, 0x8108551b, &(0x7f0000000000)={0x0, 0x0, "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"})
ioctl$USBDEVFS_CONTROL(r7, 0xc0185500, &(0x7f0000000140)={0x2, 0x6, 0x0, 0xff81, 0x0, 0xfffffff7, 0x0})
sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x59)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r8, @ANYBLOB], 0x3c}}, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newlink={0x4c, 0x10, 0xffffff1f, 0xfffffffc, 0x0, {}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @gretap={{0xb}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_GRE_TTL={0x5, 0x8, 0x2}, @IFLA_GRE_OKEY={0x8, 0x5, 0x5}, @IFLA_GRE_REMOTE={0x8, 0x7, @multicast1}]}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f00000002c0)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r8, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r9}, 0x10)
open_tree(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x9001)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r10}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[], 0xa0}, 0x1, 0x0, 0x0, 0x2005c013}, 0x0)

kernel console output (not intermixed with test programs):

 name fail_usercopy, interval 1, probability 0, space 0, times 0
[  885.120943][T26105] CPU: 1 UID: 0 PID: 26105 Comm: syz.2.21353 Tainted: G        W          6.14.0-rc5-syzkaller-00039-g848e07631744 #0
[  885.120975][T26105] Tainted: [W]=WARN
[  885.120981][T26105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  885.120989][T26105] Call Trace:
[  885.120994][T26105]  <TASK>
[  885.121000][T26105]  dump_stack_lvl+0xf2/0x150
[  885.121044][T26105]  dump_stack+0x15/0x1a
[  885.121060][T26105]  should_fail_ex+0x24a/0x260
[  885.121082][T26105]  should_fail+0xb/0x10
[  885.121100][T26105]  should_fail_usercopy+0x1a/0x20
[  885.121152][T26105]  _copy_from_user+0x1c/0xa0
[  885.121166][T26105]  sk_setsockopt+0x1c2/0x1f00
[  885.121237][T26105]  sock_setsockopt+0x3c/0x50
[  885.121253][T26105]  __sys_setsockopt+0x13d/0x200
[  885.121271][T26105]  __x64_sys_setsockopt+0x66/0x80
[  885.121288][T26105]  x64_sys_call+0x282e/0x2dc0
[  885.121332][T26105]  do_syscall_64+0xc9/0x1c0
[  885.121355][T26105]  ? clear_bhb_loop+0x55/0xb0
[  885.121375][T26105]  ? clear_bhb_loop+0x55/0xb0
[  885.121425][T26105]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  885.121444][T26105] RIP: 0033:0x7f6e9e04d169
[  885.121456][T26105] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  885.121469][T26105] RSP: 002b:00007f6e9c6b7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  885.121483][T26105] RAX: ffffffffffffffda RBX: 00007f6e9e265fa0 RCX: 00007f6e9e04d169
[  885.121492][T26105] RDX: 0000000000000033 RSI: 0000000000000001 RDI: 0000000000000008
[  885.121570][T26105] RBP: 00007f6e9c6b7090 R08: 0000000000000010 R09: 0000000000000000
[  885.121579][T26105] R10: 000040000002eff0 R11: 0000000000000246 R12: 0000000000000001
[  885.121588][T26105] R13: 0000000000000000 R14: 00007f6e9e265fa0 R15: 00007ffd490d8e18
[  885.121602][T26105]  </TASK>
[  885.306053][T26102] EXT4-fs (loop0): failed to initialize system zone (-117)
[  885.313305][T26102] EXT4-fs (loop0): mount failed
[  885.375240][T21108] EXT4-fs unmount: 7 callbacks suppressed
[  885.375252][T21108] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  885.407886][T26112] loop2: detected capacity change from 0 to 2048
[  885.442398][   T29] kauditd_printk_skb: 441 callbacks suppressed
[  885.442412][   T29] audit: type=1326 audit(1741267552.875:44315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26121 comm="syz.0.21360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f360c57d169 code=0x7ffc0000
[  885.472868][   T29] audit: type=1326 audit(1741267552.875:44316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26121 comm="syz.0.21360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f360c57d169 code=0x7ffc0000
[  885.496838][   T29] audit: type=1326 audit(1741267552.875:44317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26121 comm="syz.0.21360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f360c57d169 code=0x7ffc0000
[  885.520542][   T29] audit: type=1326 audit(1741267552.875:44318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26121 comm="syz.0.21360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f360c57d169 code=0x7ffc0000
[  885.523583][T26127] tmpfs: Bad value for 'nr_blocks'
[  885.544270][   T29] audit: type=1326 audit(1741267552.875:44319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26121 comm="syz.0.21360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f360c57d169 code=0x7ffc0000
[  885.551991][T26128] __nla_validate_parse: 9 callbacks suppressed
[  885.552004][T26128] netlink: 96 bytes leftover after parsing attributes in process `syz.0.21362'.
[  885.573088][   T29] audit: type=1326 audit(1741267552.875:44320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26121 comm="syz.0.21360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f360c57d169 code=0x7ffc0000
[  885.590310][T26112] GPT:first_usable_lbas don't match.
[  885.612060][   T29] audit: type=1326 audit(1741267552.875:44321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26121 comm="syz.0.21360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f360c57d169 code=0x7ffc0000
[  885.612086][   T29] audit: type=1326 audit(1741267552.875:44322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26121 comm="syz.0.21360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f360c57d169 code=0x7ffc0000
[  885.612108][   T29] audit: type=1326 audit(1741267552.875:44323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26121 comm="syz.0.21360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f360c57d169 code=0x7ffc0000
[  885.617422][T26112] GPT:34 != 290
[  885.640990][   T29] audit: type=1326 audit(1741267552.875:44324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26121 comm="syz.0.21360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f360c57d169 code=0x7ffc0000
[  885.664762][T26112] GPT: Use GNU Parted to correct GPT errors.
[  885.721687][T26112]  loop2: p1 p2 p3
[  885.747511][T26133] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  885.756167][T26133] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  885.767157][T26135] loop9: detected capacity change from 0 to 7
[  885.773602][T26135] Buffer I/O error on dev loop9, logical block 0, async page read
[  885.775455][T26133] netlink: 'syz.5.21363': attribute type 1 has an invalid length.
[  885.782683][T26135] Buffer I/O error on dev loop9, logical block 0, async page read
[  885.797189][T26135]  loop9: unable to read partition table
[  885.803258][T26135] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  885.803258][T26135] 
U�������) failed (rc=-5)
[  885.808767][T26133] 8021q: adding VLAN 0 to HW filter on device bond12
[  885.853115][T26144] loop2: detected capacity change from 0 to 1024
[  885.859858][T26144] EXT4-fs: Ignoring removed nobh option
[  885.865547][T26144] EXT4-fs: Ignoring removed bh option
[  885.885223][T26144] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  885.885702][T26146] netlink: 96 bytes leftover after parsing attributes in process `syz.0.21368'.
[  885.904059][T26144] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4115: comm syz.2.21367: Allocating blocks 497-513 which overlap fs metadata
[  885.924682][T26144] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4115: comm syz.2.21367: Allocating blocks 497-513 which overlap fs metadata
[  885.940505][T26144] EXT4-fs (loop2): pa ffff8881066bfb60: logic 0, phys. 113, len 25
[  885.948628][T26144] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 1
[  885.965756][T25677] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  885.999899][T26154] loop0: detected capacity change from 0 to 128
[  886.281015][T26160] netlink: 12 bytes leftover after parsing attributes in process `syz.1.21372'.
[  886.447412][T26165] tmpfs: Bad value for 'nr_blocks'
[  886.465233][T26167] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  886.938905][T26169] loop5: detected capacity change from 0 to 2048
[  887.014824][T26169] GPT:first_usable_lbas don't match.
[  887.020169][T26169] GPT:34 != 290
[  887.023645][T26169] GPT: Use GNU Parted to correct GPT errors.
[  887.029812][T26169]  loop5: p1 p2 p3
[  887.133483][T26182] loop2: detected capacity change from 0 to 1024
[  887.147359][T26183] netlink: 96 bytes leftover after parsing attributes in process `syz.5.21379'.
[  887.202720][T26182] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  887.213799][T26182] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869)
[  887.248636][T26182] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  887.263041][T26186] loop1: detected capacity change from 0 to 1024
[  887.269762][T26182] EXT4-fs (loop2): invalid journal inode
[  887.271901][T26186] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  887.286393][T26182] EXT4-fs (loop2): can't get journal size
[  887.286392][T26186] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869)
[  887.286589][T26186] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  887.303384][T26182] EXT4-fs error (device loop2): ext4_protect_reserved_inode:182: inode #3: comm syz.2.21380: blocks 2-2 from inode overlap system zone
[  887.326943][T26182] EXT4-fs (loop2): failed to initialize system zone (-117)
[  887.327347][T26186] EXT4-fs (loop1): invalid journal inode
[  887.334404][T26182] EXT4-fs (loop2): mount failed
[  887.345164][T26186] EXT4-fs (loop1): can't get journal size
[  887.351677][T26186] EXT4-fs error (device loop1): ext4_protect_reserved_inode:182: inode #3: comm syz.1.21381: blocks 2-2 from inode overlap system zone
[  887.366708][T26186] EXT4-fs (loop1): failed to initialize system zone (-117)
[  887.375017][T26186] EXT4-fs (loop1): mount failed
[  887.385620][T25911] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  887.397011][T25911] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  887.408603][T25911] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  887.419489][T25911] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  887.430186][T26196] loop5: detected capacity change from 0 to 128
[  887.477697][T26202] loop2: detected capacity change from 0 to 1024
[  887.485483][T26202] EXT4-fs: Ignoring removed nobh option
[  887.491062][T26202] EXT4-fs: Ignoring removed bh option
[  887.515380][T26200] loop3: detected capacity change from 0 to 1024
[  887.524426][T26200] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  887.535428][T26200] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869)
[  887.548008][T26200] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  887.559487][T26200] EXT4-fs (loop3): invalid journal inode
[  887.566145][T26200] EXT4-fs (loop3): can't get journal size
[  887.583187][T26202] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  887.586154][T26200] EXT4-fs error (device loop3): ext4_protect_reserved_inode:182: inode #3: comm syz.3.21386: blocks 2-2 from inode overlap system zone
[  887.604244][T26202] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4115: comm syz.2.21387: Allocating blocks 497-513 which overlap fs metadata
[  887.610011][T26200] EXT4-fs (loop3): failed to initialize system zone (-117)
[  887.630778][T26200] EXT4-fs (loop3): mount failed
[  887.634019][T26202] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4115: comm syz.2.21387: Allocating blocks 497-513 which overlap fs metadata
[  887.651683][T26202] EXT4-fs (loop2): pa ffff8881066bfaf0: logic 0, phys. 113, len 25
[  887.659685][T26202] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 1
[  887.725433][T25677] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  887.969167][T26220] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  887.995524][T26217] loop0: detected capacity change from 0 to 2048
[  888.040811][T26222] loop3: detected capacity change from 0 to 2048
[  888.048123][T26217] GPT:first_usable_lbas don't match.
[  888.053518][T26217] GPT:34 != 290
[  888.057086][T26217] GPT: Use GNU Parted to correct GPT errors.
[  888.063131][T26217]  loop0: p1 p2 p3
[  888.084785][T26222] GPT:first_usable_lbas don't match.
[  888.090124][T26222] GPT:34 != 290
[  888.093571][T26222] GPT: Use GNU Parted to correct GPT errors.
[  888.099748][T26222]  loop3: p1 p2 p3
[  888.119181][T26235] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  888.143684][T26232] loop2: detected capacity change from 0 to 128
[  888.174731][T26243] loop3: detected capacity change from 0 to 1024
[  888.182406][T26243] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  888.193319][T26243] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869)
[  888.204101][T26243] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  888.216963][T26243] EXT4-fs (loop3): invalid journal inode
[  888.224524][T26245] loop9: detected capacity change from 0 to 7
[  888.230688][T26243] EXT4-fs (loop3): can't get journal size
[  888.231670][T26245] Buffer I/O error on dev loop9, logical block 0, async page read
[  888.245740][T26245] Buffer I/O error on dev loop9, logical block 0, async page read
[  888.247850][T26243] EXT4-fs error (device loop3): ext4_protect_reserved_inode:182: inode #3: comm syz.3.21402: blocks 2-2 from inode overlap system zone
[  888.253559][T26245]  loop9: unable to read partition table
[  888.274906][T26245] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  888.274906][T26245] 
U�������) failed (rc=-5)
[  888.288951][T26243] EXT4-fs (loop3): failed to initialize system zone (-117)
[  888.296273][T26243] EXT4-fs (loop3): mount failed
[  888.312849][T26251] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  888.362301][T26255] loop0: detected capacity change from 0 to 512
[  888.369298][T26255] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  888.405823][T26255] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  888.422417][T26255] ext4 filesystem being mounted at /540/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  888.436768][T26255] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  888.442600][T26266] loop1: detected capacity change from 0 to 2048
[  888.468493][T18761] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  888.487149][T26266] GPT:first_usable_lbas don't match.
[  888.492449][T26266] GPT:34 != 290
[  888.494629][T26272] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  888.495971][T26266] GPT: Use GNU Parted to correct GPT errors.
[  888.510439][T26266]  loop1: p1 p2 p3
[  888.541722][T26279] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  888.585815][T26287] loop3: detected capacity change from 0 to 128
[  889.116403][T26302] loop2: detected capacity change from 0 to 512
[  889.127098][T26302] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  889.159948][T26302] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  889.172684][T26302] ext4 filesystem being mounted at /37/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  889.192166][T26302] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  889.242172][T26302] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  889.449539][T25677] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  889.524342][T26310] loop3: detected capacity change from 0 to 1024
[  889.531956][T26310] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  889.542940][T26310] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869)
[  889.567209][T26310] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  889.602119][T26320] loop2: detected capacity change from 0 to 2048
[  889.611382][T26310] EXT4-fs (loop3): invalid journal inode
[  889.618244][T26310] EXT4-fs (loop3): can't get journal size
[  889.627576][T26325] loop0: detected capacity change from 0 to 1024
[  889.644714][T26310] EXT4-fs error (device loop3): ext4_protect_reserved_inode:182: inode #3: comm syz.3.21428: blocks 2-2 from inode overlap system zone
[  889.647846][T26323] loop5: detected capacity change from 0 to 2048
[  889.658902][T26310] EXT4-fs (loop3): failed to initialize system zone (-117)
[  889.672680][T26325] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  889.675294][T26310] EXT4-fs (loop3): mount failed
[  889.683652][T26325] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869)
[  889.705086][T26320] GPT:first_usable_lbas don't match.
[  889.708582][T26325] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  889.710394][T26320] GPT:34 != 290
[  889.710405][T26320] GPT: Use GNU Parted to correct GPT errors.
[  889.710469][T26320]  loop2: p1 p2 p3
[  889.731383][T26325] EXT4-fs (loop0): invalid journal inode
[  889.740054][T26325] EXT4-fs (loop0): can't get journal size
[  889.754667][T26325] EXT4-fs error (device loop0): ext4_protect_reserved_inode:182: inode #3: comm syz.0.21434: blocks 2-2 from inode overlap system zone
[  889.771815][T26323] GPT:first_usable_lbas don't match.
[  889.777140][T26323] GPT:34 != 290
[  889.780596][T26323] GPT: Use GNU Parted to correct GPT errors.
[  889.786727][T26323]  loop5: p1 p2 p3
[  889.806626][T26325] EXT4-fs (loop0): failed to initialize system zone (-117)
[  889.816049][T26325] EXT4-fs (loop0): mount failed
[  889.836702][T26335] loop9: detected capacity change from 0 to 7
[  889.842892][T26335] Buffer I/O error on dev loop9, logical block 0, async page read
[  889.858971][T26335] Buffer I/O error on dev loop9, logical block 0, async page read
[  889.866861][T26335]  loop9: unable to read partition table
[  889.881733][T26335] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  889.881733][T26335] 
U�������) failed (rc=-5)
[  890.640401][T26352] loop5: detected capacity change from 0 to 512
[  890.647221][T26352] EXT4-fs: Ignoring removed orlov option
[  890.660289][T26352] EXT4-fs error (device loop5): ext4_ext_check_inode:524: inode #15: comm syz.5.21438: pblk 0 bad header/extent: invalid magic - magic 7973, entries 1402, max 27648(0), depth 25964(25964)
[  890.680292][T26352] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.21438: couldn't read orphan inode 15 (err -117)
[  890.692881][T26352] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  890.710414][   T29] kauditd_printk_skb: 243 callbacks suppressed
[  890.710425][   T29] audit: type=1326 audit(1741267558.145:44568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26350 comm="syz.0.21444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f360c57d169 code=0x7ffc0000
[  890.743712][   T29] audit: type=1326 audit(1741267558.175:44569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26350 comm="syz.0.21444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f360c57d169 code=0x7ffc0000
[  890.767520][   T29] audit: type=1326 audit(1741267558.175:44570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26350 comm="syz.0.21444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f360c57d169 code=0x7ffc0000
[  890.791258][   T29] audit: type=1326 audit(1741267558.175:44571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26350 comm="syz.0.21444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f360c57d169 code=0x7ffc0000
[  890.815146][   T29] audit: type=1326 audit(1741267558.175:44572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26350 comm="syz.0.21444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f360c57d169 code=0x7ffc0000
[  890.839049][   T29] audit: type=1326 audit(1741267558.175:44573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26350 comm="syz.0.21444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f360c57d169 code=0x7ffc0000
[  890.862764][   T29] audit: type=1326 audit(1741267558.175:44574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26350 comm="syz.0.21444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f360c57d169 code=0x7ffc0000
[  890.886441][   T29] audit: type=1326 audit(1741267558.175:44575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26350 comm="syz.0.21444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f360c57d169 code=0x7ffc0000
[  890.910188][   T29] audit: type=1326 audit(1741267558.175:44576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26350 comm="syz.0.21444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f360c57d169 code=0x7ffc0000
[  890.933911][   T29] audit: type=1326 audit(1741267558.175:44577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26350 comm="syz.0.21444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=118 compat=0 ip=0x7f360c57d169 code=0x7ffc0000
[  891.009427][T21108] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  891.056129][T26369] loop3: detected capacity change from 0 to 2048
[  891.176761][T26378] Cannot find set identified by id 0 to match
[  891.189025][T26369] GPT:first_usable_lbas don't match.
[  891.194349][T26369] GPT:34 != 290
[  891.197893][T26369] GPT: Use GNU Parted to correct GPT errors.
[  891.203970][T26369]  loop3: p1 p2 p3
[  891.983197][T26385] __nla_validate_parse: 4 callbacks suppressed
[  891.983211][T26385] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  892.131614][T26395] loop1: detected capacity change from 0 to 1024
[  892.154133][T26398] loop9: detected capacity change from 0 to 7
[  892.160267][T26398] Buffer I/O error on dev loop9, logical block 0, async page read
[  892.186509][T26395] EXT4-fs: Ignoring removed nobh option
[  892.192087][T26395] EXT4-fs: Ignoring removed bh option
[  892.222852][T26398] Buffer I/O error on dev loop9, logical block 0, async page read
[  892.230722][T26398]  loop9: unable to read partition table
[  892.238754][T26404] loop3: detected capacity change from 0 to 512
[  892.249478][T26407] loop2: detected capacity change from 0 to 1024
[  892.262659][T26404] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  892.273102][T26395] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  892.287480][T26398] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  892.287480][T26398] 
U�������) failed (rc=-5)
[  892.302688][T26407] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  892.322435][T26395] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4115: comm syz.1.21454: Allocating blocks 497-513 which overlap fs metadata
[  892.340900][T26404] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  892.379123][T26395] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4115: comm syz.1.21454: Allocating blocks 497-513 which overlap fs metadata
[  892.400171][T26404] ext4 filesystem being mounted at /32/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  892.451261][T26395] EXT4-fs (loop1): pa ffff8881066bfaf0: logic 0, phys. 113, len 25
[  892.459294][T26395] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 1
[  892.468897][T26404] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  892.475650][T26421] netlink: 96 bytes leftover after parsing attributes in process `syz.0.21464'.
[  892.503454][T26404] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  892.514888][T24547] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  892.525607][T26425] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  892.555850][T25364] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  892.589202][T26435] set match dimension is over the limit!
[  892.622924][T26439] loop0: detected capacity change from 0 to 512
[  892.631670][T26439] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  892.646414][T26439] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  892.659507][T26439] ext4 filesystem being mounted at /557/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  892.671934][T26439] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  892.703011][T18761] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  892.709356][T26451] loop5: detected capacity change from 0 to 2048
[  892.730917][T26458] loop3: detected capacity change from 0 to 512
[  892.738201][T26458] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  892.748496][T26451] GPT:first_usable_lbas don't match.
[  892.753924][T26451] GPT:34 != 290
[  892.755454][T26458] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  892.757375][T26451] GPT: Use GNU Parted to correct GPT errors.
[  892.757439][T26451]  loop5: p1 p2 p3
[  892.770089][T26458] ext4 filesystem being mounted at /37/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  892.814370][T26458] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  892.844357][T26469] loop5: detected capacity change from 0 to 1024
[  892.855610][T26458] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  892.855783][T26469] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  892.877315][T26469] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869)
[  892.888507][T26469] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  892.900953][T26469] EXT4-fs (loop5): invalid journal inode
[  892.907908][T26469] EXT4-fs (loop5): can't get journal size
[  892.914237][T26469] EXT4-fs error (device loop5): ext4_protect_reserved_inode:182: inode #3: comm syz.5.21484: blocks 2-2 from inode overlap system zone
[  892.914345][T25364] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  892.929482][T26469] EXT4-fs (loop5): failed to initialize system zone (-117)
[  892.944380][T26469] EXT4-fs (loop5): mount failed
[  892.988936][T26478] loop9: detected capacity change from 0 to 7
[  892.996798][T26478] Buffer I/O error on dev loop9, logical block 0, async page read
[  893.004847][T26478] Buffer I/O error on dev loop9, logical block 0, async page read
[  893.011671][T26480] loop3: detected capacity change from 0 to 1024
[  893.012732][T26478]  loop9: unable to read partition table
[  893.019531][T26480] EXT4-fs: Ignoring removed nobh option
[  893.027404][T26478] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  893.027404][T26478] 
U�������) failed (rc=-5)
[  893.030316][T26480] EXT4-fs: Ignoring removed bh option
[  893.073094][T25677] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  893.086262][T26480] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  893.102356][T26485] loop5: detected capacity change from 0 to 512
[  893.126038][T26485] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  893.155727][T26498] loop0: detected capacity change from 0 to 512
[  893.158592][T26480] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4115: comm syz.3.21490: Allocating blocks 497-513 which overlap fs metadata
[  893.176420][T26495] loop2: detected capacity change from 0 to 2048
[  893.183217][T26498] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  893.184178][T26500] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4115: comm syz.3.21490: Allocating blocks 497-513 which overlap fs metadata
[  893.192871][T26485] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  893.207993][T26500] EXT4-fs (loop3): pa ffff8881066bfaf0: logic 0, phys. 113, len 25
[  893.218608][T26485] ext4 filesystem being mounted at /363/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  893.225886][T26500] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 1
[  893.243380][T26485] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  893.254054][T26498] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  893.273846][T26498] ext4 filesystem being mounted at /566/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  893.276416][T26495] GPT:first_usable_lbas don't match.
[  893.289571][T26495] GPT:34 != 290
[  893.293022][T26495] GPT: Use GNU Parted to correct GPT errors.
[  893.299206][T26495]  loop2: p1 p2 p3
[  893.305157][T25364] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  893.312063][T26498] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  893.329406][T21108] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  893.348350][T26498] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  893.388500][T18761] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  893.447400][T26515] loop2: detected capacity change from 0 to 2048
[  893.475058][T26520] loop0: detected capacity change from 0 to 1024
[  893.481771][T26520] EXT4-fs: Ignoring removed nobh option
[  893.487348][T26520] EXT4-fs: Ignoring removed bh option
[  893.582139][T26520] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  893.596000][T26515] GPT:first_usable_lbas don't match.
[  893.601356][T26515] GPT:34 != 290
[  893.604953][T26515] GPT: Use GNU Parted to correct GPT errors.
[  893.611074][T26515]  loop2: p1 p2 p3
[  893.744915][    C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  894.287945][T26520] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4115: comm syz.0.21501: Allocating blocks 497-513 which overlap fs metadata
[  894.305307][T26535] netlink: 72 bytes leftover after parsing attributes in process `syz.5.21507'.
[  894.310332][T26520] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4115: comm syz.0.21501: Allocating blocks 497-513 which overlap fs metadata
[  894.331335][T26520] EXT4-fs (loop0): pa ffff8881065da000: logic 0, phys. 113, len 25
[  894.339360][T26520] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 1
[  894.370916][T18761] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  894.391269][T26541] loop5: detected capacity change from 0 to 1024
[  894.408350][T26541] EXT4-fs: Ignoring removed nobh option
[  894.414048][T26541] EXT4-fs: Ignoring removed bh option
[  894.441324][T26543] loop1: detected capacity change from 0 to 1024
[  894.455332][T26541] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  894.472817][T26545] loop2: detected capacity change from 0 to 512
[  894.481091][T26543] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  894.492017][T26543] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869)
[  894.503520][T26545] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  894.509968][T26543] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  894.531905][T26543] EXT4-fs (loop1): invalid journal inode
[  894.537800][T26554] loop0: detected capacity change from 0 to 512
[  894.544211][T26541] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4115: comm syz.5.21509: Allocating blocks 497-513 which overlap fs metadata
[  894.544721][T26543] EXT4-fs (loop1): can't get journal size
[  894.564044][T26554] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  894.564464][T26543] EXT4-fs error (device loop1): ext4_protect_reserved_inode:182: inode #3: comm syz.1.21511: blocks 2-2 from inode overlap system zone
[  894.573981][T26541] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4115: comm syz.5.21509: Allocating blocks 497-513 which overlap fs metadata
[  894.586992][T26543] EXT4-fs (loop1): failed to initialize system zone (-117)
[  894.607928][T26543] EXT4-fs (loop1): mount failed
[  894.614753][T26541] EXT4-fs (loop5): pa ffff8881065da000: logic 0, phys. 113, len 25
[  894.622659][T26541] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 1
[  894.634734][T26554] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  894.639456][T26545] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  894.659847][T26545] ext4 filesystem being mounted at /49/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  894.672474][T26554] ext4 filesystem being mounted at /569/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  894.675042][T26545] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  894.700311][T21108] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  894.702261][T26554] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  894.737355][T26545] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  894.751109][T26566] netlink: 'syz.5.21516': attribute type 1 has an invalid length.
[  894.758979][T26566] netlink: 1 bytes leftover after parsing attributes in process `syz.5.21516'.
[  894.808664][T18761] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  894.820162][T25677] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  894.845851][T26573] netlink: 72 bytes leftover after parsing attributes in process `syz.0.21519'.
[  894.858822][T26572] sit0: entered promiscuous mode
[  894.866284][T26575] loop5: detected capacity change from 0 to 512
[  894.866530][T26572] netlink: 'syz.2.21520': attribute type 1 has an invalid length.
[  894.872812][T26575] /dev/loop5: Can't open blockdev
[  894.880371][T26572] netlink: 1 bytes leftover after parsing attributes in process `syz.2.21520'.
[  895.002274][T26580] loop0: detected capacity change from 0 to 1024
[  895.076827][T26580] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  895.087846][T26580] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869)
[  895.119183][T26585] loop2: detected capacity change from 0 to 1024
[  895.127609][T26582] loop5: detected capacity change from 0 to 2048
[  895.136369][T26585] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  895.147279][T26585] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869)
[  895.158271][T26580] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  895.169835][T26580] EXT4-fs (loop0): invalid journal inode
[  895.176773][T26585] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  895.189159][T26580] EXT4-fs (loop0): can't get journal size
[  895.212807][T26582] GPT:first_usable_lbas don't match.
[  895.218141][T26582] GPT:34 != 290
[  895.221603][T26582] GPT: Use GNU Parted to correct GPT errors.
[  895.225854][T26585] EXT4-fs (loop2): invalid journal inode
[  895.227708][T26582]  loop5: p1 p2 p3
[  895.233183][T26585] EXT4-fs (loop2): can't get journal size
[  895.238410][T26580] EXT4-fs error (device loop0): ext4_protect_reserved_inode:182: inode #3: comm syz.0.21522: blocks 2-2 from inode overlap system zone
[  895.257517][T26585] EXT4-fs error (device loop2): ext4_protect_reserved_inode:182: inode #3: comm syz.2.21525: blocks 2-2 from inode overlap system zone
[  895.262460][T26580] EXT4-fs (loop0): failed to initialize system zone (-117)
[  895.272059][T26585] EXT4-fs (loop2): failed to initialize system zone (-117)
[  895.286851][T26585] EXT4-fs (loop2): mount failed
[  895.291899][T26580] EXT4-fs (loop0): mount failed
[  895.353197][T26594] loop2: detected capacity change from 0 to 1024
[  895.372948][T26594] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  895.383865][T26594] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869)
[  895.399360][T26598] loop0: detected capacity change from 0 to 512
[  895.406989][T26594] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  895.423012][T26600] loop3: detected capacity change from 0 to 512
[  895.429535][T26594] EXT4-fs (loop2): invalid journal inode
[  895.435451][T26598] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  895.444118][T26600] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  895.453373][T26594] EXT4-fs (loop2): can't get journal size
[  895.461218][T26594] EXT4-fs error (device loop2): ext4_protect_reserved_inode:182: inode #3: comm syz.2.21528: blocks 2-2 from inode overlap system zone
[  895.475541][T26594] EXT4-fs (loop2): failed to initialize system zone (-117)
[  895.483896][T26594] EXT4-fs (loop2): mount failed
[  895.490651][T26598] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  895.503301][T26598] ext4 filesystem being mounted at /573/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  895.515450][T26598] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  895.530834][T26600] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  895.545222][T26600] ext4 filesystem being mounted at /45/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  895.573691][T18761] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  895.594448][T26600] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  895.614810][T26609] loop2: detected capacity change from 0 to 512
[  895.621820][T26609] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  895.668767][T26613] netlink: 72 bytes leftover after parsing attributes in process `syz.0.21533'.
[  895.684791][T26609] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  895.700690][T26609] ext4 filesystem being mounted at /54/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  895.714333][T26619] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  895.715107][T26609] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  895.758326][T26600] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  895.780664][T26609] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  895.794924][T26624] loop0: detected capacity change from 0 to 2048
[  895.815624][T25364] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  895.834403][T26627] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  895.847908][T26624] GPT:first_usable_lbas don't match.
[  895.853287][T26624] GPT:34 != 290
[  895.856811][T26624] GPT: Use GNU Parted to correct GPT errors.
[  895.862919][T26624]  loop0: p1 p2 p3
[  895.875438][T25677] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  896.032037][T26634] loop0: detected capacity change from 0 to 1024
[  896.057249][T26638] loop2: detected capacity change from 0 to 512
[  896.064230][T26634] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  896.065842][T26638] EXT4-fs: Ignoring removed orlov option
[  896.075125][T26634] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869)
[  896.312583][T26634] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  896.474837][T26634] EXT4-fs (loop0): invalid journal inode
[  896.480631][T26634] EXT4-fs (loop0): can't get journal size
[  896.497375][T26634] EXT4-fs error (device loop0): ext4_protect_reserved_inode:182: inode #3: comm syz.0.21544: blocks 2-2 from inode overlap system zone
[  896.512339][T26638] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #15: comm syz.2.21542: pblk 0 bad header/extent: invalid magic - magic 7973, entries 1402, max 27648(0), depth 25964(25964)
[  896.532190][T26634] EXT4-fs (loop0): failed to initialize system zone (-117)
[  896.539537][T26638] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.21542: couldn't read orphan inode 15 (err -117)
[  896.554548][T26638] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  896.567092][T26634] EXT4-fs (loop0): mount failed
[  896.576110][T26654] loop5: detected capacity change from 0 to 512
[  896.583267][T26654] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  896.606146][T25677] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  896.616890][T26654] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  896.631821][T26654] ext4 filesystem being mounted at /375/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  896.643932][T26654] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  896.675585][T21108] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  896.703701][   T29] kauditd_printk_skb: 92 callbacks suppressed
[  896.703714][   T29] audit: type=1326 audit(1741267564.135:44670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26666 comm="syz.0.21552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f360c57d169 code=0x7ffc0000
[  896.753615][   T29] audit: type=1326 audit(1741267564.185:44671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26666 comm="syz.0.21552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f360c57d169 code=0x7ffc0000
[  896.777439][   T29] audit: type=1326 audit(1741267564.185:44672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26666 comm="syz.0.21552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f360c57d169 code=0x7ffc0000
[  896.777460][   T29] audit: type=1326 audit(1741267564.185:44673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26666 comm="syz.0.21552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f360c57d169 code=0x7ffc0000
[  896.777482][   T29] audit: type=1326 audit(1741267564.185:44674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26666 comm="syz.0.21552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f360c57d169 code=0x7ffc0000
[  896.777555][   T29] audit: type=1326 audit(1741267564.185:44675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26666 comm="syz.0.21552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f360c57d169 code=0x7ffc0000
[  896.777646][   T29] audit: type=1326 audit(1741267564.185:44676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26666 comm="syz.0.21552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f360c57d169 code=0x7ffc0000
[  896.777726][   T29] audit: type=1326 audit(1741267564.185:44677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26666 comm="syz.0.21552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f360c57d169 code=0x7ffc0000
[  896.777749][   T29] audit: type=1326 audit(1741267564.185:44678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26666 comm="syz.0.21552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f360c57d169 code=0x7ffc0000
[  896.777768][   T29] audit: type=1326 audit(1741267564.185:44679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26666 comm="syz.0.21552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f360c57d169 code=0x7ffc0000
[  896.797116][T26673] loop2: detected capacity change from 0 to 2048
[  896.820525][T26676] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  896.983049][T26676] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  896.994527][T26673] GPT:first_usable_lbas don't match.
[  896.999819][T26673] GPT:34 != 290
[  897.003280][T26673] GPT: Use GNU Parted to correct GPT errors.
[  897.009405][T26673]  loop2: p1 p2 p3
[  897.041281][T26676] netlink: 'syz.0.21556': attribute type 1 has an invalid length.
[  897.056232][T26676] 8021q: adding VLAN 0 to HW filter on device bond10
[  897.082998][T26687] loop5: detected capacity change from 0 to 512
[  897.099948][T26689] loop3: detected capacity change from 0 to 1024
[  897.108279][T26689] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  897.109272][T26687] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  897.119302][T26689] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869)
[  897.137444][T26689] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  897.149056][T26693] __nla_validate_parse: 3 callbacks suppressed
[  897.149090][T26693] netlink: 72 bytes leftover after parsing attributes in process `syz.1.21562'.
[  897.150193][T26689] EXT4-fs (loop3): invalid journal inode
[  897.170741][T26689] EXT4-fs (loop3): can't get journal size
[  897.180956][T26697] loop2: detected capacity change from 0 to 512
[  897.187767][T26689] EXT4-fs error (device loop3): ext4_protect_reserved_inode:182: inode #3: comm syz.3.21560: blocks 2-2 from inode overlap system zone
[  897.187949][T26697] EXT4-fs: Ignoring removed orlov option
[  897.202923][T26687] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  897.221124][T26687] ext4 filesystem being mounted at /379/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  897.222067][T26700] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  897.232255][T26697] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #15: comm syz.2.21564: pblk 0 bad header/extent: invalid magic - magic 7973, entries 1402, max 27648(0), depth 25964(25964)
[  897.260543][T26689] EXT4-fs (loop3): failed to initialize system zone (-117)
[  897.268219][T26689] EXT4-fs (loop3): mount failed
[  897.276012][T26687] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  897.283540][T26697] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.21564: couldn't read orphan inode 15 (err -117)
[  897.314958][T26697] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  897.315261][T21108] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  897.348124][T25677] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  897.349767][T26707] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  897.361334][T26705] netlink: 96 bytes leftover after parsing attributes in process `syz.1.21567'.
[  897.434648][T26717] loop1: detected capacity change from 0 to 1024
[  897.452574][T26717] EXT4-fs: Ignoring removed nobh option
[  897.458343][T26717] EXT4-fs: Ignoring removed bh option
[  897.467563][T26723] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  897.480049][T26717] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  897.533092][T26717] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4115: comm syz.1.21573: Allocating blocks 497-513 which overlap fs metadata
[  897.567311][T26733] netlink: 96 bytes leftover after parsing attributes in process `syz.3.21580'.
[  897.584225][T26717] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4115: comm syz.1.21573: Allocating blocks 497-513 which overlap fs metadata
[  897.599893][T26717] EXT4-fs (loop1): pa ffff8881065da150: logic 0, phys. 113, len 25
[  897.607991][T26717] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 1
[  897.672232][T24547] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  897.690363][T26741] netlink: 96 bytes leftover after parsing attributes in process `syz.2.21585'.
[  897.725434][T26737] loop0: detected capacity change from 0 to 1024
[  897.737460][T26737] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  897.748358][T26737] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869)
[  898.677890][T26737] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  898.704873][T26737] EXT4-fs (loop0): invalid journal inode
[  898.710610][T26737] EXT4-fs (loop0): can't get journal size
[  898.723602][T26737] EXT4-fs error (device loop0): ext4_protect_reserved_inode:182: inode #3: comm syz.0.21582: blocks 2-2 from inode overlap system zone
[  898.811220][T26758] loop2: detected capacity change from 0 to 128
[  898.828642][T26760] loop9: detected capacity change from 0 to 7
[  898.839002][T26760] Buffer I/O error on dev loop9, logical block 0, async page read
[  899.070128][T26760] Buffer I/O error on dev loop9, logical block 0, async page read
[  899.078078][T26760]  loop9: unable to read partition table
[  899.090901][T26760] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  899.090901][T26760] 
U�������) failed (rc=-5)
[  899.265606][T26737] EXT4-fs (loop0): failed to initialize system zone (-117)
[  899.275518][T26737] EXT4-fs (loop0): mount failed
[  899.306041][T26764] loop3: detected capacity change from 0 to 512
[  899.312799][T26764] EXT4-fs: Ignoring removed orlov option
[  899.322969][T26764] EXT4-fs error (device loop3): ext4_ext_check_inode:524: inode #15: comm syz.3.21588: pblk 0 bad header/extent: invalid magic - magic 7973, entries 1402, max 27648(0), depth 25964(25964)
[  899.341916][T26764] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.21588: couldn't read orphan inode 15 (err -117)
[  899.355083][T26764] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  899.665549][T26768] loop9: detected capacity change from 0 to 7
[  899.666002][T25364] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  899.671940][T26768] Buffer I/O error on dev loop9, logical block 0, async page read
[  899.703182][T26772] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  899.709514][T26768] Buffer I/O error on dev loop9, logical block 0, async page read
[  899.719648][T26768]  loop9: unable to read partition table
[  899.725650][T26768] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  899.725650][T26768] 
U�������) failed (rc=-5)
[  899.767496][T26776] netlink: 96 bytes leftover after parsing attributes in process `syz.2.21595'.
[  899.790521][T26783] netlink: 96 bytes leftover after parsing attributes in process `syz.3.21598'.
[  899.922461][T26801] loop1: detected capacity change from 0 to 128
[  899.943026][T26807] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  899.952502][T26807] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  900.024291][T26809] loop5: detected capacity change from 0 to 512
[  900.031023][T26809] EXT4-fs: Ignoring removed orlov option
[  900.039014][T26809] EXT4-fs error (device loop5): ext4_ext_check_inode:524: inode #15: comm syz.5.21601: pblk 0 bad header/extent: invalid magic - magic 7973, entries 1402, max 27648(0), depth 25964(25964)
[  900.057816][T26809] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.21601: couldn't read orphan inode 15 (err -117)
[  900.071449][T26809] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  900.107885][T26811] loop2: detected capacity change from 0 to 128
[  900.157283][T26807] netlink: 'syz.0.21609': attribute type 1 has an invalid length.
[  900.288685][T26817] loop9: detected capacity change from 0 to 7
[  900.295223][T26817] Buffer I/O error on dev loop9, logical block 0, async page read
[  900.303155][T26817] Buffer I/O error on dev loop9, logical block 0, async page read
[  900.311206][T26817]  loop9: unable to read partition table
[  900.317006][T26817] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  900.317006][T26817] 
U�������) failed (rc=-5)
[  900.649856][T26829] loop3: detected capacity change from 0 to 512
[  900.657102][T26829] EXT4-fs: Ignoring removed orlov option
[  900.757050][T26829] EXT4-fs error (device loop3): ext4_ext_check_inode:524: inode #15: comm syz.3.21617: pblk 0 bad header/extent: invalid magic - magic 7973, entries 1402, max 27648(0), depth 25964(25964)
[  900.787464][T26829] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.21617: couldn't read orphan inode 15 (err -117)
[  900.803134][T21108] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  900.814282][T26829] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  900.952638][T26840] netlink: 'syz.2.21622': attribute type 1 has an invalid length.
[  901.093732][T26854] loop1: detected capacity change from 0 to 512
[  901.100522][T26854] EXT4-fs: Ignoring removed orlov option
[  901.103798][T26856] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  901.107923][T26854] EXT4-fs error (device loop1): ext4_ext_check_inode:524: inode #15: comm syz.1.21628: pblk 0 bad header/extent: invalid magic - magic 7973, entries 1402, max 27648(0), depth 25964(25964)
[  901.116902][T26856] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  901.134212][T26854] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.21628: couldn't read orphan inode 15 (err -117)
[  901.172601][T26854] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  901.228427][T26860] loop0: detected capacity change from 0 to 512
[  901.235140][T26860] EXT4-fs: Ignoring removed orlov option
[  901.246276][T26856] netlink: 'syz.5.21629': attribute type 1 has an invalid length.
[  901.264498][T26860] EXT4-fs error (device loop0): ext4_ext_check_inode:524: inode #15: comm syz.0.21623: pblk 0 bad header/extent: invalid magic - magic 7973, entries 1402, max 27648(0), depth 25964(25964)
[  901.465617][T25364] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  901.480754][T26862] loop2: detected capacity change from 0 to 128
[  901.487122][T26860] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.21623: couldn't read orphan inode 15 (err -117)
[  901.500217][T26860] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  901.515508][T24547] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  901.620364][T26882] loop3: detected capacity change from 0 to 1024
[  901.627544][T26882] EXT4-fs: Ignoring removed nobh option
[  901.633178][T26882] EXT4-fs: Ignoring removed bh option
[  901.656580][T26882] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  901.676309][T26882] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4115: comm syz.3.21640: Allocating blocks 497-513 which overlap fs metadata
[  901.690497][T26892] loop1: detected capacity change from 0 to 512
[  901.693294][T26882] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4115: comm syz.3.21640: Allocating blocks 497-513 which overlap fs metadata
[  901.697258][T26892] EXT4-fs: Ignoring removed orlov option
[  901.712953][T26882] EXT4-fs (loop3): pa ffff8881065da1c0: logic 0, phys. 113, len 25
[  901.724586][T26882] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 1
[  901.729062][T26892] EXT4-fs error (device loop1): ext4_ext_check_inode:524: inode #15: comm syz.1.21644: pblk 0 bad header/extent: invalid magic - magic 7973, entries 1402, max 27648(0), depth 25964(25964)
[  901.754700][T26892] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.21644: couldn't read orphan inode 15 (err -117)
[  901.756032][T25364] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  901.767397][T26892] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  901.804656][T24547] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  901.873862][   T29] kauditd_printk_skb: 185 callbacks suppressed
[  901.873875][   T29] audit: type=1326 audit(1741267569.305:44865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26902 comm="syz.3.21649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f774d41d169 code=0x7ffc0000
[  901.903724][   T29] audit: type=1326 audit(1741267569.305:44866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26902 comm="syz.3.21649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f774d41d169 code=0x7ffc0000
[  901.927667][   T29] audit: type=1326 audit(1741267569.305:44867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26902 comm="syz.3.21649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f774d41d169 code=0x7ffc0000
[  901.951424][   T29] audit: type=1326 audit(1741267569.305:44868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26902 comm="syz.3.21649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f774d41d169 code=0x7ffc0000
[  901.975494][   T29] audit: type=1326 audit(1741267569.305:44869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26902 comm="syz.3.21649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f774d41d169 code=0x7ffc0000
[  901.999174][   T29] audit: type=1326 audit(1741267569.305:44870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26902 comm="syz.3.21649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f774d41d169 code=0x7ffc0000
[  902.023048][   T29] audit: type=1326 audit(1741267569.305:44871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26902 comm="syz.3.21649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f774d41d169 code=0x7ffc0000
[  902.046721][   T29] audit: type=1326 audit(1741267569.305:44872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26902 comm="syz.3.21649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f774d41d169 code=0x7ffc0000
[  902.071617][   T29] audit: type=1326 audit(1741267569.305:44873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26902 comm="syz.3.21649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f774d41d169 code=0x7ffc0000
[  902.095367][   T29] audit: type=1326 audit(1741267569.305:44874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26902 comm="syz.3.21649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f774d41d169 code=0x7ffc0000
[  902.169152][T26925] loop3: detected capacity change from 0 to 512
[  902.207037][T26933] __nla_validate_parse: 11 callbacks suppressed
[  902.207051][T26933] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  902.247478][T26939] netlink: 96 bytes leftover after parsing attributes in process `syz.0.21667'.
[  902.259775][T26941] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  902.268316][T26941] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  902.292671][T26925] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  902.382483][T26951] loop2: detected capacity change from 0 to 128
[  902.401561][T26952] loop1: detected capacity change from 0 to 512
[  902.408390][T26952] EXT4-fs: Ignoring removed orlov option
[  902.418035][T26952] EXT4-fs error (device loop1): ext4_ext_check_inode:524: inode #15: comm syz.1.21660: pblk 0 bad header/extent: invalid magic - magic 7973, entries 1402, max 27648(0), depth 25964(25964)
[  903.090031][T26952] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.21660: couldn't read orphan inode 15 (err -117)
[  903.094724][T26925] ext4 filesystem being mounted at /79/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  903.123390][T26925] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  903.275934][T26972] netlink: 'syz.1.21678': attribute type 1 has an invalid length.
[  903.283845][T26972] netlink: 1 bytes leftover after parsing attributes in process `syz.1.21678'.
[  903.307126][T26977] loop2: detected capacity change from 0 to 1024
[  903.329065][T26977] EXT4-fs: Ignoring removed nobh option
[  903.334650][T26977] EXT4-fs: Ignoring removed bh option
[  903.441935][T26977] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4115: comm syz.2.21681: Allocating blocks 497-513 which overlap fs metadata
[  903.458852][T26977] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4115: comm syz.2.21681: Allocating blocks 497-513 which overlap fs metadata
[  903.474590][T26977] EXT4-fs (loop2): pa ffff8881065da230: logic 0, phys. 113, len 25
[  903.482501][T26977] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 1
[  903.580204][T26997] loop1: detected capacity change from 0 to 128
[  903.728328][T27002] loop5: detected capacity change from 0 to 512
[  903.750946][T27002] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  903.925782][T27002] ext4 filesystem being mounted at /393/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  903.952239][T27002] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  904.005424][T27009] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  904.081246][T27011] loop2: detected capacity change from 0 to 512
[  904.088109][T27011] EXT4-fs: Ignoring removed orlov option
[  904.251035][T27011] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #15: comm syz.2.21689: pblk 0 bad header/extent: invalid magic - magic 7973, entries 1402, max 27648(0), depth 25964(25964)
[  904.269799][T27011] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.21689: couldn't read orphan inode 15 (err -117)
[  904.303027][T27013] loop5: detected capacity change from 0 to 1024
[  904.323509][T27015] sit0: entered promiscuous mode
[  904.353233][T27015] netlink: 'syz.3.21694': attribute type 1 has an invalid length.
[  904.361094][T27015] netlink: 1 bytes leftover after parsing attributes in process `syz.3.21694'.
[  904.370372][T27013] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  904.381356][T27013] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869)
[  904.447405][T27013] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  904.452046][T27021] loop3: detected capacity change from 0 to 1024
[  904.459183][T27013] EXT4-fs (loop5): invalid journal inode
[  904.471093][T27013] EXT4-fs (loop5): can't get journal size
[  904.482298][T27021] EXT4-fs: Ignoring removed nobh option
[  904.487998][T27021] EXT4-fs: Ignoring removed bh option
[  904.493853][T27013] EXT4-fs error (device loop5): ext4_protect_reserved_inode:182: inode #3: comm syz.5.21693: blocks 2-2 from inode overlap system zone
[  904.509413][T27013] EXT4-fs (loop5): failed to initialize system zone (-117)
[  904.516687][T27013] EXT4-fs (loop5): mount failed
[  904.550125][T27021] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4115: comm syz.3.21697: Allocating blocks 497-513 which overlap fs metadata
[  904.613669][T27021] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4115: comm syz.3.21697: Allocating blocks 497-513 which overlap fs metadata
[  904.649713][T27021] EXT4-fs (loop3): pa ffff8881065da230: logic 0, phys. 113, len 25
[  904.657812][T27021] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 1
[  904.743502][T27048] netlink: 'syz.3.21706': attribute type 1 has an invalid length.
[  904.751395][T27048] netlink: 1 bytes leftover after parsing attributes in process `syz.3.21706'.
[  904.806454][T27053] loop5: detected capacity change from 0 to 128
[  904.828965][T27056] loop2: detected capacity change from 0 to 128
[  904.973505][T27065] set match dimension is over the limit!
[  905.082377][T27072] loop3: detected capacity change from 0 to 1024
[  905.089404][T27072] EXT4-fs: Ignoring removed nobh option
[  905.094999][T27072] EXT4-fs: Ignoring removed bh option
[  905.125718][T27072] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4115: comm syz.3.21717: Allocating blocks 497-513 which overlap fs metadata
[  905.143036][T27072] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4115: comm syz.3.21717: Allocating blocks 497-513 which overlap fs metadata
[  905.158494][T27072] EXT4-fs (loop3): pa ffff8881066bfa10: logic 0, phys. 113, len 25
[  905.166430][T27072] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 1
[  905.198672][T27076] netlink: 96 bytes leftover after parsing attributes in process `syz.3.21718'.
[  905.403099][T27080] loop3: detected capacity change from 0 to 512
[  905.409765][T27080] EXT4-fs: Ignoring removed orlov option
[  905.466929][T27080] EXT4-fs error (device loop3): ext4_ext_check_inode:524: inode #15: comm syz.3.21719: pblk 0 bad header/extent: invalid magic - magic 7973, entries 1402, max 27648(0), depth 25964(25964)
[  905.498615][T27080] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.21719: couldn't read orphan inode 15 (err -117)
[  905.684024][T27091] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  905.692566][T27088] loop2: detected capacity change from 0 to 2048
[  905.696748][T27093] netlink: 96 bytes leftover after parsing attributes in process `syz.5.21724'.
[  905.701249][T27091] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  905.726152][T27095] loop5: detected capacity change from 0 to 512
[  905.733015][T27095] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  905.744915][T27088] GPT:first_usable_lbas don't match.
[  905.750227][T27088] GPT:34 != 290
[  905.753883][T27088] GPT: Use GNU Parted to correct GPT errors.
[  905.755716][T27095] ext4 filesystem being mounted at /400/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  905.759942][T27088]  loop2: p1 p2 p3
[  905.772913][T27095] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  905.841413][T27107] loop2: detected capacity change from 0 to 1024
[  905.848512][T27107] EXT4-fs: Ignoring removed nobh option
[  905.854216][T27107] EXT4-fs: Ignoring removed bh option
[  905.867364][T27111] loop5: detected capacity change from 0 to 2048
[  905.890421][T27107] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4115: comm syz.2.21729: Allocating blocks 497-513 which overlap fs metadata
[  905.904817][T27111] GPT:first_usable_lbas don't match.
[  905.907395][T27107] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4115: comm syz.2.21729: Allocating blocks 497-513 which overlap fs metadata
[  905.910096][T27111] GPT:34 != 290
[  905.927313][T27107] EXT4-fs (loop2): pa ffff8881065da230: logic 0, phys. 113, len 25
[  905.927560][T27111] GPT: Use GNU Parted to correct GPT errors.
[  905.935455][T27107] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 1
[  905.941477][T27111]  loop5: p1 p2 p3
[  906.019837][T27123] netlink: 96 bytes leftover after parsing attributes in process `syz.5.21735'.
[  906.033706][T27124] loop2: detected capacity change from 0 to 128
[  906.106214][T27128] loop3: detected capacity change from 0 to 512
[  906.113154][T27128] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  906.126552][T27128] ext4 filesystem being mounted at /102/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  906.138224][T27128] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  906.213566][T27141] netlink: 68 bytes leftover after parsing attributes in process `syz.5.21742'.
[  906.256368][T27144] loop1: detected capacity change from 0 to 1024
[  906.262947][T27144] EXT4-fs: Ignoring removed nobh option
[  906.268663][T27144] EXT4-fs: Ignoring removed bh option
[  906.290541][T27144] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4115: comm syz.1.21743: Allocating blocks 497-513 which overlap fs metadata
[  906.341140][T27144] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4115: comm syz.1.21743: Allocating blocks 497-513 which overlap fs metadata
[  906.358555][T27144] EXT4-fs (loop1): pa ffff8881065da380: logic 0, phys. 113, len 25
[  906.366619][T27144] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 1
[  906.390867][T27154] tmpfs: Bad value for 'nr_blocks'
[  906.630167][T27165] loop5: detected capacity change from 0 to 512
[  906.636745][T27165] EXT4-fs: Ignoring removed orlov option
[  906.646510][T27165] EXT4-fs error (device loop5): ext4_ext_check_inode:524: inode #15: comm syz.5.21748: pblk 0 bad header/extent: invalid magic - magic 7973, entries 1402, max 27648(0), depth 25964(25964)
[  906.665222][T27165] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.21748: couldn't read orphan inode 15 (err -117)
[  906.889282][T13117] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  906.909675][T27178] loop2: detected capacity change from 0 to 512
[  906.932326][T27178] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  906.952597][T27178] ext4 filesystem being mounted at /90/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  906.966283][T13117] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  906.982558][T27191] loop9: detected capacity change from 0 to 7
[  906.988861][T27178] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  907.003833][T27191] Buffer I/O error on dev loop9, logical block 0, async page read
[  907.012116][T27191] Buffer I/O error on dev loop9, logical block 0, async page read
[  907.012556][T13117] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  907.020011][T27191]  loop9: unable to read partition table
[  907.020042][T27191] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  907.020042][T27191] 
U�������) failed (rc=-5)
[  907.098802][T13117] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  907.126648][T27168] chnl_net:caif_netlink_parms(): no params data found
[  907.134637][   T29] kauditd_printk_skb: 283 callbacks suppressed
[  907.134651][   T29] audit: type=1326 audit(1741267574.575:45158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27197 comm="syz.3.21757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f774d41d169 code=0x7ffc0000
[  907.175603][   T29] audit: type=1326 audit(1741267574.605:45159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27197 comm="syz.3.21757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f774d41d169 code=0x7ffc0000
[  907.199540][   T29] audit: type=1326 audit(1741267574.605:45160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27197 comm="syz.3.21757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f774d41d169 code=0x7ffc0000
[  907.223271][   T29] audit: type=1326 audit(1741267574.605:45161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27197 comm="syz.3.21757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f774d41d169 code=0x7ffc0000
[  907.247090][   T29] audit: type=1326 audit(1741267574.605:45162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27197 comm="syz.3.21757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f774d41d169 code=0x7ffc0000
[  907.255079][T27207] loop2: detected capacity change from 0 to 1024
[  907.270736][   T29] audit: type=1326 audit(1741267574.605:45163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27197 comm="syz.3.21757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f774d41d169 code=0x7ffc0000
[  907.270767][   T29] audit: type=1326 audit(1741267574.605:45164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27197 comm="syz.3.21757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f774d41d169 code=0x7ffc0000
[  907.270787][   T29] audit: type=1326 audit(1741267574.605:45165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27197 comm="syz.3.21757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f774d41d169 code=0x7ffc0000
[  907.308134][T27207] EXT4-fs: Ignoring removed nobh option
[  907.324417][   T29] audit: type=1326 audit(1741267574.605:45166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27197 comm="syz.3.21757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f774d41d169 code=0x7ffc0000
[  907.324443][   T29] audit: type=1326 audit(1741267574.605:45167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27197 comm="syz.3.21757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f774d41d169 code=0x7ffc0000
[  907.348046][T27207] EXT4-fs: Ignoring removed bh option
[  907.466455][T27168] bridge0: port 1(bridge_slave_0) entered blocking state
[  907.473612][T27168] bridge0: port 1(bridge_slave_0) entered disabled state
[  907.475518][T27222] __nla_validate_parse: 3 callbacks suppressed
[  907.475585][T27222] netlink: 12 bytes leftover after parsing attributes in process `syz.5.21765'.
[  907.483835][T27168] bridge_slave_0: entered allmulticast mode
[  907.502420][T27207] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4115: comm syz.2.21761: Allocating blocks 497-513 which overlap fs metadata
[  907.519541][T27207] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4115: comm syz.2.21761: Allocating blocks 497-513 which overlap fs metadata
[  907.522273][T27168] bridge_slave_0: entered promiscuous mode
[  907.541776][T27207] EXT4-fs (loop2): pa ffff8881066bfa10: logic 0, phys. 113, len 25
[  907.549962][T27207] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 1
[  907.563303][T27224] loop9: detected capacity change from 0 to 7
[  907.569707][T27224] Buffer I/O error on dev loop9, logical block 0, async page read
[  907.579392][T27168] bridge0: port 2(bridge_slave_1) entered blocking state
[  907.586541][T27168] bridge0: port 2(bridge_slave_1) entered disabled state
[  907.594915][T27168] bridge_slave_1: entered allmulticast mode
[  907.601360][T27224] Buffer I/O error on dev loop9, logical block 0, async page read
[  907.601571][T27168] bridge_slave_1: entered promiscuous mode
[  907.609188][T27224]  loop9: unable to read partition table
[  907.626736][T27224] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  907.626736][T27224] 
U�������) failed (rc=-5)
[  907.647077][T27168] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  907.664841][T13117] bridge_slave_1: left allmulticast mode
[  907.670483][T13117] bridge_slave_1: left promiscuous mode
[  907.676143][T13117] bridge0: port 2(bridge_slave_1) entered disabled state
[  907.684961][T13117] bridge_slave_0: left allmulticast mode
[  907.690607][T13117] bridge_slave_0: left promiscuous mode
[  907.696339][T13117] bridge0: port 1(bridge_slave_0) entered disabled state
[  907.720891][T27233] loop2: detected capacity change from 0 to 512
[  907.738847][T27233] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  907.832957][T27246] loop5: detected capacity change from 0 to 512
[  907.839991][T27246] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  907.849421][T27233] ext4 filesystem being mounted at /95/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  907.861206][T27233] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  907.861576][T27246] ext4 filesystem being mounted at /421/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  907.950819][T27251] loop3: detected capacity change from 0 to 512
[  907.957672][T27251] EXT4-fs: Ignoring removed orlov option
[  907.981881][T27250] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  907.995122][T27246] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  908.013178][T27251] EXT4-fs error (device loop3): ext4_ext_check_inode:524: inode #15: comm syz.3.21774: pblk 0 bad header/extent: invalid magic - magic 7973, entries 1402, max 27648(0), depth 25964(25964)
[  908.033782][T27251] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.21774: couldn't read orphan inode 15 (err -117)
[  908.082333][T27246] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  908.476410][T13117] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  908.486103][T13117] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  908.495649][T13117] bond0 (unregistering): Released all slaves
[  908.504060][T13117] bond1 (unregistering): Released all slaves
[  908.512183][T13117] bond2 (unregistering): Released all slaves
[  908.520586][T13117] bond3 (unregistering): Released all slaves
[  908.528645][T13117] bond4 (unregistering): Released all slaves
[  908.537345][T13117] bond5 (unregistering): Released all slaves
[  908.546050][T13117] bond6 (unregistering): Released all slaves
[  908.554281][T13117] bond7 (unregistering): Released all slaves
[  908.562349][T13117] bond8 (unregistering): Released all slaves
[  908.570858][T13117] bond9 (unregistering): Released all slaves
[  908.579980][T13117] bond10 (unregistering): Released all slaves
[  908.589388][T27168] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  908.598829][T27230] netlink: 96 bytes leftover after parsing attributes in process `syz.1.21770'.
[  908.682720][T27259] loop2: detected capacity change from 0 to 2048
[  908.694170][T27168] team0: Port device team_slave_0 added
[  908.718213][T13117] hsr_slave_0: left promiscuous mode
[  908.724180][T13117] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  908.731622][T13117] batman_adv: batadv0: Removing interface: batadv_slave_0
[  908.740194][T13117] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  908.747656][T13117] batman_adv: batadv0: Removing interface: batadv_slave_1
[  908.775603][T27259] GPT:first_usable_lbas don't match.
[  908.781053][T27259] GPT:34 != 290
[  908.784565][T27259] GPT: Use GNU Parted to correct GPT errors.
[  908.790764][T27259]  loop2: p1 p2 p3
[  908.795126][T27270] loop9: detected capacity change from 0 to 7
[  908.801389][T27270] Buffer I/O error on dev loop9, logical block 0, async page read
[  908.811820][T13117] veth1_macvtap: left promiscuous mode
[  908.818636][T27270] Buffer I/O error on dev loop9, logical block 0, async page read
[  908.826485][T27270]  loop9: unable to read partition table
[  908.832178][T13117] veth0_macvtap: left promiscuous mode
[  908.840296][T13117] veth1_vlan: left promiscuous mode
[  908.845549][T27270] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  908.845549][T27270] 
U�������) failed (rc=-5)
[  908.859697][T13117] veth0_vlan: left promiscuous mode
[  908.876444][T27277] loop2: detected capacity change from 0 to 512
[  908.902166][T27277] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  908.952449][T27281] loop5: detected capacity change from 0 to 512
[  908.959089][T27281] EXT4-fs: Ignoring removed orlov option
[  909.013064][T27281] EXT4-fs error (device loop5): ext4_ext_check_inode:524: inode #15: comm syz.5.21781: pblk 0 bad header/extent: invalid magic - magic 7973, entries 1402, max 27648(0), depth 25964(25964)
[  909.035255][T27281] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.21781: couldn't read orphan inode 15 (err -117)
[  909.132770][T13117] team0 (unregistering): Port device team_slave_1 removed
[  909.169644][T13117] team0 (unregistering): Port device team_slave_0 removed
[  909.258688][T27277] ext4 filesystem being mounted at /97/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  909.270905][T27277] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  909.297895][T27168] team0: Port device team_slave_1 added
[  909.310104][T27279] netlink: 96 bytes leftover after parsing attributes in process `syz.1.21787'.
[  909.326749][T27168] batman_adv: batadv0: Adding interface: batadv_slave_0
[  909.333860][T27168] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  909.359918][T27168] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  909.371389][T27168] batman_adv: batadv0: Adding interface: batadv_slave_1
[  909.378368][T27168] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  909.404330][T27168] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  909.442392][T27168] hsr_slave_0: entered promiscuous mode
[  909.451149][T27168] hsr_slave_1: entered promiscuous mode
[  909.458147][T27168] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  909.459423][T27298] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  909.474563][T27168] Cannot create hsr debugfs directory
[  909.833227][T27309] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  909.899919][T27315] loop2: detected capacity change from 0 to 1024
[  909.920887][T27317] netlink: 96 bytes leftover after parsing attributes in process `syz.5.21801'.
[  909.939799][T27315] EXT4-fs: Ignoring removed nobh option
[  909.945450][T27315] EXT4-fs: Ignoring removed bh option
[  909.987888][T27315] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4115: comm syz.2.21800: Allocating blocks 497-513 which overlap fs metadata
[  910.021379][T27315] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4115: comm syz.2.21800: Allocating blocks 497-513 which overlap fs metadata
[  910.040811][T27315] EXT4-fs (loop2): pa ffff8881065da460: logic 0, phys. 113, len 25
[  910.048813][T27315] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 1
[  910.074884][T27332] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  910.122610][T27338] netlink: 96 bytes leftover after parsing attributes in process `syz.5.21811'.
[  910.199993][T27168] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  910.216056][T27168] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  910.222921][T27353] loop2: detected capacity change from 0 to 512
[  910.230014][T27353] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  910.232765][T27168] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  910.248748][T27168] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  910.257272][T27353] ext4 filesystem being mounted at /104/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  910.283551][T27358] loop1: detected capacity change from 0 to 1024
[  910.296950][T27168] 8021q: adding VLAN 0 to HW filter on device bond0
[  910.300868][T27363] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  910.307404][T27168] 8021q: adding VLAN 0 to HW filter on device team0
[  910.321578][T20205] bridge0: port 1(bridge_slave_0) entered blocking state
[  910.324511][T27358] EXT4-fs: Ignoring removed nobh option
[  910.328653][T20205] bridge0: port 1(bridge_slave_0) entered forwarding state
[  910.334255][T27358] EXT4-fs: Ignoring removed bh option
[  910.350658][T27353] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  910.371314][   T28] bridge0: port 2(bridge_slave_1) entered blocking state
[  910.378453][   T28] bridge0: port 2(bridge_slave_1) entered forwarding state
[  910.392099][T27358] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4115: comm syz.1.21820: Allocating blocks 497-513 which overlap fs metadata
[  910.406630][T27368] netlink: 96 bytes leftover after parsing attributes in process `syz.5.21822'.
[  910.421143][T27358] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4115: comm syz.1.21820: Allocating blocks 497-513 which overlap fs metadata
[  910.436623][T27358] EXT4-fs (loop1): pa ffff8881065da540: logic 0, phys. 113, len 25
[  910.444583][T27358] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 1
[  910.473526][T27353] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  910.506663][T27168] 8021q: adding VLAN 0 to HW filter on device batadv0
[  910.549731][T27381] loop5: detected capacity change from 0 to 2048
[  910.608454][T27381] GPT:first_usable_lbas don't match.
[  910.613810][T27381] GPT:34 != 290
[  910.617310][T27381] GPT: Use GNU Parted to correct GPT errors.
[  910.623390][T27381]  loop5: p1 p2 p3
[  910.636126][T27168] veth0_vlan: entered promiscuous mode
[  910.769930][T27168] veth1_vlan: entered promiscuous mode
[  911.387571][T27168] veth0_macvtap: entered promiscuous mode
[  911.396897][T27168] veth1_macvtap: entered promiscuous mode
[  911.408133][T27168] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  911.418588][T27168] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  911.428436][T27168] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  911.438861][T27168] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  911.448716][T27168] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  911.459187][T27168] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  911.469022][T27168] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  911.479488][T27168] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  911.554977][T27168] batman_adv: batadv0: Interface activated: batadv_slave_0
[  911.568578][T27401] loop3: detected capacity change from 0 to 128
[  911.579174][T27168] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  911.589667][T27168] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  911.599543][T27168] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  911.610087][T27168] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  911.613066][T27409] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  911.620025][T27168] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  911.634692][T27409] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  911.638826][T27168] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  911.656315][T27168] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  911.666984][T27168] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  911.678121][T27168] batman_adv: batadv0: Interface activated: batadv_slave_1
[  911.684643][T27407] loop1: detected capacity change from 0 to 512
[  911.686348][T27168] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  911.700300][T27168] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  911.709150][T27168] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  911.717853][T27168] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  911.724399][T27407] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  911.743105][T27411] loop5: detected capacity change from 0 to 1024
[  911.750949][T27407] ext4 filesystem being mounted at /227/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  911.752391][T27411] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  911.772399][T27411] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869)
[  911.772944][T27407] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  911.783678][T27411] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  911.810660][T27407] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  911.815786][T27411] EXT4-fs (loop5): invalid journal inode
[  911.826810][T27411] EXT4-fs (loop5): can't get journal size
[  911.844018][T27411] EXT4-fs error (device loop5): ext4_protect_reserved_inode:182: inode #3: comm syz.5.21835: blocks 2-2 from inode overlap system zone
[  911.860048][T27411] EXT4-fs (loop5): failed to initialize system zone (-117)
[  911.873327][T27411] EXT4-fs (loop5): mount failed
[  912.075995][T27441] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  913.111207][   T29] kauditd_printk_skb: 165 callbacks suppressed
[  913.111220][   T29] audit: type=1326 audit(1741267580.545:45333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27446 comm="syz.2.21847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9e04d169 code=0x7ffc0000
[  913.303666][   T29] audit: type=1326 audit(1741267580.615:45334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27446 comm="syz.2.21847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9e04d169 code=0x7ffc0000
[  913.327380][   T29] audit: type=1326 audit(1741267580.615:45335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27446 comm="syz.2.21847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6e9e04d169 code=0x7ffc0000
[  913.351201][   T29] audit: type=1326 audit(1741267580.615:45336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27446 comm="syz.2.21847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9e04d169 code=0x7ffc0000
[  913.374852][   T29] audit: type=1326 audit(1741267580.615:45337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27446 comm="syz.2.21847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9e04d169 code=0x7ffc0000
[  913.398551][   T29] audit: type=1326 audit(1741267580.615:45338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27446 comm="syz.2.21847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6e9e04d169 code=0x7ffc0000
[  913.422288][   T29] audit: type=1326 audit(1741267580.615:45339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27446 comm="syz.2.21847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9e04d169 code=0x7ffc0000
[  913.445935][   T29] audit: type=1326 audit(1741267580.615:45340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27446 comm="syz.2.21847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9e04d169 code=0x7ffc0000
[  913.469606][   T29] audit: type=1326 audit(1741267580.615:45341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27446 comm="syz.2.21847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6e9e04d169 code=0x7ffc0000
[  913.493240][   T29] audit: type=1326 audit(1741267580.615:45342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27446 comm="syz.2.21847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9e04d169 code=0x7ffc0000
[  913.615577][T27468] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  913.641999][T27465] loop1: detected capacity change from 0 to 2048
[  913.679292][T27473] netlink: 68 bytes leftover after parsing attributes in process `syz.2.21858'.
[  913.768573][T27465] GPT:first_usable_lbas don't match.
[  913.774075][T27465] GPT:34 != 290
[  913.777558][T27465] GPT: Use GNU Parted to correct GPT errors.
[  913.783681][T27465]  loop1: p1 p2 p3
[  913.796171][T27481] loop3: detected capacity change from 0 to 128
[  914.109269][T27499] loop2: detected capacity change from 0 to 512
[  914.132476][T27499] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  914.173146][T27505] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  914.186046][T27500] loop5: detected capacity change from 0 to 2048
[  914.193421][T27499] ext4 filesystem being mounted at /117/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  914.215909][T27499] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  914.265635][T27500] GPT:first_usable_lbas don't match.
[  914.270995][T27500] GPT:34 != 290
[  914.274472][T27500] GPT: Use GNU Parted to correct GPT errors.
[  914.280551][T27500]  loop5: p1 p2 p3
[  914.461975][T27521] loop1: detected capacity change from 0 to 512
[  914.468633][T27521] EXT4-fs: Ignoring removed orlov option
[  915.067349][T27524] loop2: detected capacity change from 0 to 512
[  915.074608][T27524] EXT4-fs: Ignoring removed orlov option
[  915.089870][T27521] EXT4-fs error (device loop1): ext4_ext_check_inode:524: inode #15: comm syz.1.21873: pblk 0 bad header/extent: invalid magic - magic 7973, entries 1402, max 27648(0), depth 25964(25964)
[  915.110232][T27521] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.21873: couldn't read orphan inode 15 (err -117)
[  915.149712][T27524] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #15: comm syz.2.21874: pblk 0 bad header/extent: invalid magic - magic 7973, entries 1402, max 27648(0), depth 25964(25964)
[  915.168843][T27524] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.21874: couldn't read orphan inode 15 (err -117)
[  915.203239][T27526] loop5: detected capacity change from 0 to 512
[  915.210593][T27526] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  915.225844][T27526] ext4 filesystem being mounted at /449/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  915.238988][T27526] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  915.355320][T27539] loop3: detected capacity change from 0 to 1024
[  915.362194][T27539] EXT4-fs: Ignoring removed nobh option
[  915.367801][T27539] EXT4-fs: Ignoring removed bh option
[  915.380462][T27541] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  915.416789][T25677] EXT4-fs unmount: 55 callbacks suppressed
[  915.416803][T25677] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  915.428098][T27539] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  915.444017][T27526] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  915.466611][T21108] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  915.473084][T27548] loop2: detected capacity change from 0 to 512
[  915.492383][T27539] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4115: comm syz.3.21881: Allocating blocks 497-513 which overlap fs metadata
[  915.512494][T27548] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  915.522486][T27554] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4115: comm syz.3.21881: Allocating blocks 497-513 which overlap fs metadata
[  915.539845][T27554] EXT4-fs (loop3): pa ffff8881065da540: logic 0, phys. 113, len 25
[  915.547809][T27554] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 1
[  915.570259][T25364] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  915.583589][T27559] loop5: detected capacity change from 0 to 128
[  915.592145][T27548] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  915.604919][T27548] ext4 filesystem being mounted at /120/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  915.659001][T27548] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  915.684912][T25677] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  916.283364][T27568] loop1: detected capacity change from 0 to 512
[  916.289937][T27568] EXT4-fs: Ignoring removed orlov option
[  916.667065][T27574] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  916.827991][T27577] loop9: detected capacity change from 0 to 7
[  916.835055][T27577] Buffer I/O error on dev loop9, logical block 0, async page read
[  916.942014][T27568] EXT4-fs error (device loop1): ext4_ext_check_inode:524: inode #15: comm syz.1.21888: pblk 0 bad header/extent: invalid magic - magic 7973, entries 1402, max 27648(0), depth 25964(25964)
[  916.961831][T27568] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.21888: couldn't read orphan inode 15 (err -117)
[  916.975012][T27568] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  917.103185][T27580] loop3: detected capacity change from 0 to 512
[  917.109952][T27580] EXT4-fs: Ignoring removed orlov option
[  917.245636][T27580] EXT4-fs error (device loop3): ext4_ext_check_inode:524: inode #15: comm syz.3.21892: pblk 0 bad header/extent: invalid magic - magic 7973, entries 1402, max 27648(0), depth 25964(25964)
[  917.266177][T27580] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.21892: couldn't read orphan inode 15 (err -117)
[  917.278998][T27580] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  917.296172][T24547] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  917.316183][T27577] Buffer I/O error on dev loop9, logical block 0, async page read
[  917.324031][T27577]  loop9: unable to read partition table
[  917.354954][T27577] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  917.354954][T27577] 
U�������) failed (rc=-5)
[  917.566819][T25364] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  918.929928][   T29] kauditd_printk_skb: 139 callbacks suppressed
[  918.929948][   T29] audit: type=1326 audit(1741267586.365:45482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27608 comm="syz.5.21903" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f798ef6d169 code=0x0
[  919.086971][T27604] loop2: detected capacity change from 0 to 512
[  919.093572][T27604] EXT4-fs: Ignoring removed orlov option
[  919.442404][T27605] loop1: detected capacity change from 0 to 512
[  919.449033][T27605] EXT4-fs: Ignoring removed orlov option
[  919.459893][T27605] EXT4-fs error (device loop1): ext4_ext_check_inode:524: inode #15: comm syz.1.21895: pblk 0 bad header/extent: invalid magic - magic 7973, entries 1402, max 27648(0), depth 25964(25964)
[  919.459974][T27604] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #15: comm syz.2.21896: pblk 0 bad header/extent: invalid magic - magic 7973, entries 1402, max 27648(0), depth 25964(25964)
[  919.460157][T27605] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.21895: couldn't read orphan inode 15 (err -117)
[  919.478941][T27604] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.21896: couldn't read orphan inode 15 (err -117)
[  919.509604][T27605] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  919.521375][T27604] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  919.595423][T27613] loop5: detected capacity change from 0 to 128
[  919.604348][   T29] audit: type=1326 audit(1741267587.045:45483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27614 comm="syz.3.21904" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f774d41d169 code=0x0
[  919.678981][   T29] audit: type=1326 audit(1741267587.115:45484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27614 comm="syz.3.21904" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f774d41d169 code=0x7ffc0000
[  919.711615][T27616] loop3: detected capacity change from 0 to 128
[  919.719636][   T29] audit: type=1326 audit(1741267587.115:45485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27614 comm="syz.3.21904" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f774d41d169 code=0x7ffc0000
[  919.743439][   T29] audit: type=1326 audit(1741267587.115:45486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27614 comm="syz.3.21904" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f774d41d169 code=0x7ffc0000
[  919.767073][   T29] audit: type=1326 audit(1741267587.135:45487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27614 comm="syz.3.21904" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f774d41d169 code=0x7ffc0000
[  919.790720][   T29] audit: type=1326 audit(1741267587.135:45488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27614 comm="syz.3.21904" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f774d41d169 code=0x7ffc0000
[  919.814495][   T29] audit: type=1326 audit(1741267587.135:45489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27614 comm="syz.3.21904" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f774d41d169 code=0x7ffc0000
[  919.838154][   T29] audit: type=1326 audit(1741267587.145:45490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27614 comm="syz.3.21904" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f774d41d169 code=0x7ffc0000
[  919.861859][   T29] audit: type=1326 audit(1741267587.145:45491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27614 comm="syz.3.21904" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f774d41d169 code=0x7ffc0000
[  919.941570][T25677] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  919.954934][T24547] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  920.106428][T27624] loop1: detected capacity change from 0 to 512
[  920.113277][T27624] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  920.125373][T27624] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  921.080439][T27624] ext4 filesystem being mounted at /251/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  921.132377][T27624] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  921.168684][T27631] loop5: detected capacity change from 0 to 512
[  921.175482][T27631] EXT4-fs: Ignoring removed orlov option
[  921.185222][T27631] EXT4-fs error (device loop5): ext4_ext_check_inode:524: inode #15: comm syz.5.21907: pblk 0 bad header/extent: invalid magic - magic 7973, entries 1402, max 27648(0), depth 25964(25964)
[  921.203986][T27631] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.21907: couldn't read orphan inode 15 (err -117)
[  921.219742][T27631] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  921.391576][T27624] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  921.465111][T21108] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  921.491948][T27644] loop2: detected capacity change from 0 to 512
[  921.498849][T27644] EXT4-fs: Ignoring removed orlov option
[  921.517944][T27644] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #15: comm syz.2.21911: pblk 0 bad header/extent: invalid magic - magic 7973, entries 1402, max 27648(0), depth 25964(25964)
[  921.537217][T27644] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.21911: couldn't read orphan inode 15 (err -117)
[  921.550219][T27644] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  921.574524][T24547] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  922.182673][T25677] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  922.199282][T27658] loop5: detected capacity change from 0 to 128
[  922.260276][T27662] loop2: detected capacity change from 0 to 2048
[  922.295400][T27662] GPT:first_usable_lbas don't match.
[  922.300713][T27662] GPT:34 != 290
[  922.304324][T27662] GPT: Use GNU Parted to correct GPT errors.
[  922.310438][T27662]  loop2: p1 p2 p3
[  922.343488][T27671] loop1: detected capacity change from 0 to 1024
[  922.350827][T27671] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  922.361738][T27671] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869)
[  922.372496][T27671] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  922.384848][T27671] EXT4-fs (loop1): invalid journal inode
[  922.385239][T27676] loop2: detected capacity change from 0 to 1024
[  922.390480][T27671] EXT4-fs (loop1): can't get journal size
[  922.390743][T27671] EXT4-fs error (device loop1): ext4_protect_reserved_inode:182: inode #3: comm syz.1.21923: blocks 2-2 from inode overlap system zone
[  922.397131][T27676] EXT4-fs: Ignoring removed nobh option
[  922.403478][T27671] EXT4-fs (loop1): failed to initialize system zone (-117)
[  922.416551][T27676] EXT4-fs: Ignoring removed bh option
[  922.422827][T27671] EXT4-fs (loop1): mount failed
[  922.479811][T27676] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  922.514302][T27676] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4115: comm syz.2.21925: Allocating blocks 497-513 which overlap fs metadata
[  922.531345][T27676] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4115: comm syz.2.21925: Allocating blocks 497-513 which overlap fs metadata
[  922.548666][T27676] EXT4-fs (loop2): pa ffff8881065da620: logic 0, phys. 113, len 25
[  922.556683][T27676] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 1
[  922.597790][T27684] netlink: 68 bytes leftover after parsing attributes in process `syz.1.21927'.
[  922.604764][T25677] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  922.636629][T27441] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  924.102400][   T29] kauditd_printk_skb: 112 callbacks suppressed
[  924.102416][   T29] audit: type=1326 audit(1741267591.535:45604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27705 comm="syz.2.21935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9e04d169 code=0x7ffc0000
[  924.143359][   T29] audit: type=1326 audit(1741267591.535:45605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27705 comm="syz.2.21935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9e04d169 code=0x7ffc0000
[  924.167159][   T29] audit: type=1326 audit(1741267591.535:45606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27705 comm="syz.2.21935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6e9e04d169 code=0x7ffc0000
[  924.190922][   T29] audit: type=1326 audit(1741267591.535:45607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27705 comm="syz.2.21935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9e04d169 code=0x7ffc0000
[  924.214742][   T29] audit: type=1326 audit(1741267591.535:45608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27705 comm="syz.2.21935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9e04d169 code=0x7ffc0000
[  924.238536][   T29] audit: type=1326 audit(1741267591.535:45609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27705 comm="syz.2.21935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6e9e04d169 code=0x7ffc0000
[  924.242720][T27703] loop3: detected capacity change from 0 to 2048
[  924.262336][   T29] audit: type=1326 audit(1741267591.535:45610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27705 comm="syz.2.21935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9e04d169 code=0x7ffc0000
[  924.292507][   T29] audit: type=1326 audit(1741267591.535:45611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27705 comm="syz.2.21935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6e9e04d169 code=0x7ffc0000
[  924.316366][   T29] audit: type=1326 audit(1741267591.535:45612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27705 comm="syz.2.21935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9e04d169 code=0x7ffc0000
[  924.340015][   T29] audit: type=1326 audit(1741267591.545:45613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27705 comm="syz.2.21935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6e9e04d169 code=0x7ffc0000
[  924.403793][T27726] loop5: detected capacity change from 0 to 1024
[  924.410626][T27726] EXT4-fs: Ignoring removed nobh option
[  924.416384][T27726] EXT4-fs: Ignoring removed bh option
[  924.434149][T27703] GPT:first_usable_lbas don't match.
[  924.439457][T27703] GPT:34 != 290
[  924.442971][T27703] GPT: Use GNU Parted to correct GPT errors.
[  924.449151][T27703]  loop3: p1 p2 p3
[  924.477250][T27730] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  924.486343][T27730] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  924.495993][T27730] netlink: 28 bytes leftover after parsing attributes in process `syz.3.21945'.
[  924.497421][T27726] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  924.530246][T27726] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4115: comm syz.5.21944: Allocating blocks 497-513 which overlap fs metadata
[  924.546903][T27726] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4115: comm syz.5.21944: Allocating blocks 497-513 which overlap fs metadata
[  924.562282][T27726] EXT4-fs (loop5): pa ffff8881066bf9a0: logic 0, phys. 113, len 25
[  924.570206][T27726] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 1
[  924.589067][T21108] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  924.605870][T27734] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  924.654619][T27738] loop5: detected capacity change from 0 to 512
[  924.661568][T27738] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  924.685081][T27738] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  924.697675][T27738] ext4 filesystem being mounted at /470/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  924.709673][T27738] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  924.731974][T21108] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  924.862140][T27745] netlink: 96 bytes leftover after parsing attributes in process `syz.1.21950'.
[  925.537593][T27758] loop1: detected capacity change from 0 to 512
[  925.544111][T27758] EXT4-fs: Ignoring removed orlov option
[  925.556242][T27758] EXT4-fs error (device loop1): ext4_ext_check_inode:524: inode #15: comm syz.1.21954: pblk 0 bad header/extent: invalid magic - magic 7973, entries 1402, max 27648(0), depth 25964(25964)
[  925.575518][T27758] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.21954: couldn't read orphan inode 15 (err -117)
[  925.603472][T27758] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  925.706039][T27761] loop5: detected capacity change from 0 to 512
[  925.714734][T27761] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  925.715658][T27763] netlink: 68 bytes leftover after parsing attributes in process `syz.3.21957'.
[  925.748063][T27761] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  925.761287][T27761] ext4 filesystem being mounted at /472/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  925.776543][T27761] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  925.805130][T21108] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  925.900441][T27441] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  925.906659][T24547] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  925.925186][T27773] netlink: 96 bytes leftover after parsing attributes in process `syz.3.21961'.
[  926.257872][T27441] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  926.321807][T27441] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  926.332800][T27441] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  926.345537][T27441] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  926.359850][T27441] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  926.373391][T27790] loop1: detected capacity change from 0 to 128
[  926.463427][T27799] loop0: detected capacity change from 0 to 256
[  926.471437][T27799] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  926.519326][T27802] netlink: 68 bytes leftover after parsing attributes in process `syz.0.21971'.
[  926.700858][T27805] FAULT_INJECTION: forcing a failure.
[  926.700858][T27805] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  926.714140][T27805] CPU: 1 UID: 0 PID: 27805 Comm: syz.2.21972 Tainted: G        W          6.14.0-rc5-syzkaller-00039-g848e07631744 #0
[  926.714165][T27805] Tainted: [W]=WARN
[  926.714171][T27805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  926.714183][T27805] Call Trace:
[  926.714251][T27805]  <TASK>
[  926.714257][T27805]  dump_stack_lvl+0xf2/0x150
[  926.714284][T27805]  dump_stack+0x15/0x1a
[  926.714305][T27805]  should_fail_ex+0x24a/0x260
[  926.714379][T27805]  should_fail+0xb/0x10
[  926.714405][T27805]  should_fail_usercopy+0x1a/0x20
[  926.714436][T27805]  _copy_to_user+0x20/0xa0
[  926.714454][T27805]  simple_read_from_buffer+0xa0/0x110
[  926.714503][T27805]  proc_fail_nth_read+0xf9/0x140
[  926.714554][T27805]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  926.714603][T27805]  vfs_read+0x19b/0x6f0
[  926.714623][T27805]  ? __rcu_read_unlock+0x4e/0x70
[  926.714647][T27805]  ? __fget_files+0x17c/0x1c0
[  926.714678][T27805]  ksys_read+0xe8/0x1b0
[  926.714723][T27805]  __x64_sys_read+0x42/0x50
[  926.714748][T27805]  x64_sys_call+0x2874/0x2dc0
[  926.714770][T27805]  do_syscall_64+0xc9/0x1c0
[  926.714845][T27805]  ? clear_bhb_loop+0x55/0xb0
[  926.714872][T27805]  ? clear_bhb_loop+0x55/0xb0
[  926.714898][T27805]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  926.714929][T27805] RIP: 0033:0x7f6e9e04bb7c
[  926.715006][T27805] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  926.715021][T27805] RSP: 002b:00007f6e9c6b7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  926.715099][T27805] RAX: ffffffffffffffda RBX: 00007f6e9e265fa0 RCX: 00007f6e9e04bb7c
[  926.715110][T27805] RDX: 000000000000000f RSI: 00007f6e9c6b70a0 RDI: 0000000000000004
[  926.715121][T27805] RBP: 00007f6e9c6b7090 R08: 0000000000000000 R09: 0000000000000000
[  926.715133][T27805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  926.715172][T27805] R13: 0000000000000000 R14: 00007f6e9e265fa0 R15: 00007ffd490d8e18
[  926.715188][T27805]  </TASK>
[  926.930878][T27807] sd 0:0:1:0: device reset
[  927.054340][T27828] netlink: 68 bytes leftover after parsing attributes in process `syz.0.21983'.
[  927.064802][T27817] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  927.121142][T27817] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  927.266782][T27817] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  927.289841][T27836] loop9: detected capacity change from 0 to 7
[  927.314094][T27836] Buffer I/O error on dev loop9, logical block 0, async page read
[  927.325328][T27836] Buffer I/O error on dev loop9, logical block 0, async page read
[  927.333176][T27836]  loop9: unable to read partition table
[  927.339219][T27836] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  927.339219][T27836] 
U�������) failed (rc=-5)
[  927.398363][T27817] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  927.491415][T27817] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  927.759753][T27817] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  928.010645][T27849] loop3: detected capacity change from 0 to 512
[  928.017463][T27849] EXT4-fs: Ignoring removed orlov option
[  928.030792][T27849] EXT4-fs error (device loop3): ext4_ext_check_inode:524: inode #15: comm syz.3.21989: pblk 0 bad header/extent: invalid magic - magic 7973, entries 1402, max 27648(0), depth 25964(25964)
[  928.050785][T27849] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.21989: couldn't read orphan inode 15 (err -117)
[  928.064809][T27849] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  928.108017][T27817] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  928.225884][T27853] loop5: detected capacity change from 0 to 2048
[  928.235144][T27817] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  928.474911][T27853] GPT:first_usable_lbas don't match.
[  928.480213][T27853] GPT:34 != 290
[  928.483692][T27853] GPT: Use GNU Parted to correct GPT errors.
[  928.489798][T27853]  loop5: p1 p2 p3
[  928.548561][T25364] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  928.615085][T27868] netlink: 'syz.3.21995': attribute type 1 has an invalid length.
[  928.622995][T27868] netlink: 1 bytes leftover after parsing attributes in process `syz.3.21995'.
[  928.645275][T27862] loop2: detected capacity change from 0 to 2048
[  928.678150][T27873] netlink: 40 bytes leftover after parsing attributes in process `syz.5.21998'.
[  928.706338][T27862] GPT:first_usable_lbas don't match.
[  928.711643][T27862] GPT:34 != 290
[  928.715178][T27862] GPT: Use GNU Parted to correct GPT errors.
[  928.721325][T27862]  loop2: p1 p2 p3
[  928.944056][    C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  929.555956][T27893] loop5: detected capacity change from 0 to 512
[  929.562801][T27893] EXT4-fs: Ignoring removed orlov option
[  929.628133][T27893] EXT4-fs error (device loop5): ext4_ext_check_inode:524: inode #15: comm syz.5.22002: pblk 0 bad header/extent: invalid magic - magic 7973, entries 1402, max 27648(0), depth 25964(25964)
[  929.647093][T27893] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.22002: couldn't read orphan inode 15 (err -117)
[  929.663201][T27893] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  929.676161][T27895] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  929.806885][T27895] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  929.880090][T27895] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  929.921547][   T29] kauditd_printk_skb: 174 callbacks suppressed
[  929.921562][   T29] audit: type=1326 audit(1741267597.355:45788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27900 comm="syz.2.22006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9e04d169 code=0x7ffc0000
[  929.955382][   T29] audit: type=1326 audit(1741267597.355:45789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27900 comm="syz.2.22006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9e04d169 code=0x7ffc0000
[  929.979234][   T29] audit: type=1326 audit(1741267597.355:45790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27900 comm="syz.2.22006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6e9e04d169 code=0x7ffc0000
[  930.003560][   T29] audit: type=1326 audit(1741267597.355:45791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27900 comm="syz.2.22006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9e04d169 code=0x7ffc0000
[  930.027403][   T29] audit: type=1326 audit(1741267597.355:45792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27900 comm="syz.2.22006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9e04d169 code=0x7ffc0000
[  930.051185][   T29] audit: type=1326 audit(1741267597.355:45793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27900 comm="syz.2.22006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6e9e04d169 code=0x7ffc0000
[  930.074920][   T29] audit: type=1326 audit(1741267597.355:45794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27900 comm="syz.2.22006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9e04d169 code=0x7ffc0000
[  930.098642][   T29] audit: type=1326 audit(1741267597.355:45795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27900 comm="syz.2.22006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9e04d169 code=0x7ffc0000
[  930.122933][   T29] audit: type=1326 audit(1741267597.355:45796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27900 comm="syz.2.22006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6e9e04d169 code=0x7ffc0000
[  930.146641][   T29] audit: type=1326 audit(1741267597.355:45797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27900 comm="syz.2.22006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9e04d169 code=0x7ffc0000
[  930.156519][T27903] Cannot find set identified by id 0 to match
[  930.219213][T27895] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  930.245260][T21108] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  930.266738][T27907] netlink: 'syz.2.22010': attribute type 1 has an invalid length.
[  930.274682][T27907] netlink: 1 bytes leftover after parsing attributes in process `syz.2.22010'.
[  930.304785][T27895] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  930.342308][T27895] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  930.350791][T27915] ==================================================================
[  930.358874][T27915] BUG: KCSAN: data-race in mas_replace_node / mtree_range_walk
[  930.366428][T27915] 
[  930.368747][T27915] write to 0xffff888104278b00 of 8 bytes by task 27914 on cpu 1:
[  930.376461][T27915]  mas_replace_node+0x1b8/0x430
[  930.377626][T27922] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  930.381300][T27915]  mas_wr_store_entry+0x1e12/0x23f0
[  930.381334][T27915]  mas_store_prealloc+0x6bf/0x960
[  930.381357][T27915]  mmap_region+0xf4e/0x1620
[  930.381372][T27915]  do_mmap+0x98a/0xc30
[  930.381395][T27915]  vm_mmap_pgoff+0x16d/0x2d0
[  930.381416][T27915]  ksys_mmap_pgoff+0xd0/0x330
[  930.390629][T27922] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  930.394885][T27915]  x64_sys_call+0x1940/0x2dc0
[  930.405285][T27922] netlink: 28 bytes leftover after parsing attributes in process `syz.2.22015'.
[  930.408391][T27915]  do_syscall_64+0xc9/0x1c0
[  930.443476][T27915]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  930.449370][T27915] 
[  930.451678][T27915] read to 0xffff888104278b00 of 8 bytes by task 27915 on cpu 0:
[  930.459293][T27915]  mtree_range_walk+0x33d/0x460
[  930.464136][T27915]  mas_walk+0x16e/0x320
[  930.468276][T27915]  lock_vma_under_rcu+0x95/0x270
[  930.473194][T27915]  exc_page_fault+0x150/0x650
[  930.477858][T27915]  asm_exc_page_fault+0x26/0x30
[  930.482695][T27915] 
[  930.485000][T27915] value changed: 0xffff888104278a06 -> 0xffff888104278b00
[  930.492085][T27915] 
[  930.494388][T27915] Reported by Kernel Concurrency Sanitizer on:
[  930.500516][T27915] CPU: 0 UID: 0 PID: 27915 Comm: syz.3.22013 Tainted: G        W          6.14.0-rc5-syzkaller-00039-g848e07631744 #0
[  930.512822][T27915] Tainted: [W]=WARN
[  930.516605][T27915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  930.526641][T27915] ==================================================================
[  930.537188][T27913] sg_write: data in/out 122/14 bytes for SCSI command 0x0-- guessing data in;
[  930.537188][T27913]    program syz.5.22009 not setting count and/or reply_len properly
[  930.556984][T27895] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  930.573270][T27895] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0