last executing test programs:

1m49.108010813s ago: executing program 1 (id=24):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x800, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
r2 = getpgid(0x0)
r3 = syz_pidfd_open(r2, 0x0)
pidfd_send_signal(r3, 0x21, 0x0, 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='kfree\x00', r4, 0x0, 0x6}, 0x18)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x6}]}, @NFT_MSG_NEWSETELEM={0x44, 0x1e, 0xa, 0x105, 0x0, 0x0, {0x7}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x10, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0xa, 0x1, "fefe807eb37b"}]}]}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xc8}}, 0x0)

1m49.071267814s ago: executing program 1 (id=25):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000480)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
fstatfs(0xffffffffffffffff, 0x0)
r3 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r4 = dup(r3)
ioctl$PTP_EXTTS_REQUEST2(r4, 0x43403d05, 0x0)
r5 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r5, &(0x7f0000000100)=ANY=[@ANYBLOB="0007000042009103"], 0xfe33)
recvmsg(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001600)=""/4098, 0x1002}, {&(0x7f0000003700)=""/4081, 0xff1}, {&(0x7f0000002640)=""/4115, 0x1013}, {&(0x7f0000001300)=""/200, 0xc8}, {&(0x7f0000000200)=""/168, 0xa8}], 0x5}, 0x60012002)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000040)=<r6=>0x0)
getsockopt$inet_IP_IPSEC_POLICY(r4, 0x0, 0x10, &(0x7f0000000340)={{{@in6=@remote, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0}}, {{@in6=@remote}, 0x0, @in=@private}}, &(0x7f0000000040)=0xe8)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000004c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@nouid32}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@noblock_validity}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@resgid}]}, 0x1, 0x567, &(0x7f0000000b00)="$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")
write$P9_RSTATu(0xffffffffffffffff, &(0x7f0000000140)={0x56, 0x7d, 0x2, {{0x0, 0x41, 0xf, 0x2, {0x0, 0x1, 0x4}, 0x0, 0x1, 0x0, 0x0, 0x6, 'team0\x00', 0x1, '\xd1', 0x6, 'team0\x00', 0x1, ':'}, 0x0, '', r6, 0xee00, r7}}, 0x56)
clock_gettime(0x0, &(0x7f00000001c0)={<r8=>0x0, <r9=>0x0})
clock_gettime(0x0, &(0x7f0000000200)={<r10=>0x0, <r11=>0x0})
utimes(&(0x7f0000000080)='./file1/file0\x00', &(0x7f0000000240)={{r8, r9/1000+10000}, {r10, r11/1000+10000}})
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000700)={'team0\x00', <r12=>0x0})
sendmsg$TEAM_CMD_PORT_LIST_GET(r0, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000100)=ANY=[@ANYBLOB="40010000", @ANYRES16=r1, @ANYBLOB="150500000000ffdbdf250300000008000100", @ANYRES32=r12], 0x140}}, 0x0)

1m47.48713758s ago: executing program 1 (id=32):
perf_event_open(&(0x7f0000004cc0)={0x1, 0x80, 0x2, 0x1, 0x0, 0x0, 0x0, 0x9, 0x510, 0x6, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0xaf1d, 0x4, @perf_config_ext={0xff, 0x5}, 0x1cb8, 0x81, 0x2, 0x1, 0x402, 0x9, 0xfffd, 0x0, 0x0, 0x0, 0x40000000003}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x26, &(0x7f0000000000)={0x1})
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x199)
r2 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$qrtrtun(r1, &(0x7f0000000280)="ca1c808bb35bdabb49f35c09d456591f0c15a08769bcd510", 0x18)
write$UHID_INPUT(r1, &(0x7f0000001300)={0x8, {"af0014920c989bde943127351c7e048fe805d44569c987d51286ac5e80b0961cfe3629729c82e28c53b31e3ecbb8722bff9c0906027d5cb6fbd929cb4b5e657cc88a443809e6a720828c27b6519e7c18904d67528373733934aa5240afd60544d489e1ec3779ac45095c12c6c5f13c086306dfbbd31926b74150ff2c87db2be1d995e9b3a16fb7360de12618b05d94c291acfcdab84c919de60133f54a0a18d2517c1d0de417ae39fec1c9fa306573205051a9880da1f213b9a27c22b72d42d92b7b260b41bcc1868a0404936774ea5209f02929ec3eef4298818ddb708de6c0e1fda05436037d7d4042d2de3adebc8a62f58ec6ccb4160435c4393ba913250b56ec2fce544a01a5a3ce4363fd497fb256910f31e9416f5b719d64f931bd6d71b54787841b3e49e01fe6ac9598ddb5ef1aeb3d1cabb75845d46806a494b6cf89ec9c8203b92dd0dadc5a3c02545cd005b5f26b7d2b848cb684cb58245d591472d5109e7fbe1175656d729fdd689af57802b33d7d53d427aa57eb0af7a63d9f73be83cd9c12bd06463083b4cc853aad416e9faf484fa069d3b7599b6fc6d94152811403201b91da2547ff6721b0ea237c37464b47b3b4f37384e50ba5773a63356991a5abef659e089cc95e5c3b6d8428115efcf9e89e2743b167d7b9824392d868c159fd1264bea8b9b8b26769d15a27df3af350e2a6e9e37b35c153bf980e8ad15de3b0f3add5f98eb2cbc03eeb2b04e6fb032991d7a88b14c7d2cf2959fc4ed27c4c93c13f5760d0803f10afb91effb45967b4793c58e4bc2e4348c93b4e59f1544a01e89530f6056cda3f972050ae79d9297af71cce0d82c764db2422967f05c9847715c66321e8ab0075a361e8fd78a956074945e687ec1ad01f8dfeb7f3ae2c25daff35617a5d752ad5b019689f10c789d0196f73011f5a4e002aebb676ccb2d8b92ff6c1eb60de10ed0d42f2d19fe96786938eca0fd09a3f16f7b52ef806183282c05ff9fccf96abd096b442c73c494c78c4161ce0599bf6e637664f5dbefa129e69a0d53525d77f871716052385649c1249a402a4a9ecadfd7182a4aba3fc48d76890dfe8a5442ff1b833b95fdb7ae5f052e5c18e9b0ad482ed80c4567f0d0645e6525e3390195b3a4314ab063ffca639d2b181efe15d5bb09e967900fd55ad9db7f6ba99268e0d7e2785c5b14f801b16b6fe9966bb3fa88352bc2ca79aa9a77ec5f9c271dcc62b6124a4d5ed1014fa6eb98521d4be4ca4323311d39e44002e71469326056d98af69fd42eed1dfec48d191587b35e2641abe8c80a2553b92cb43feea49505b5b5ca35dfaf06c693730033ebcad45b6b8026d4722b5c7e13d69269808f438816f77a7b1ed2d31ab44968657e70a51e8d98e520e3628014a09e55f36ca5c4c630d687b20e5a7bdfd6d43613fd3738c8ec1464561586987388885b7a424c949a3110e5de795ffdcf1ef43fb8b5b0364cdb0e9a62c1c6922f08125d456f0ee5d58fa670ff071a8d5b57c06efe30d960f9a67d3dd7dd6ec13c799f9b89d90593ba794c5c582f8bd583af0a59043a1da36cee8e2cc173610960e33300ec48cf7281887ffe66e7ec113a29ed339556d84d638ae9554bb20f2a7695da8bcad10e5f155fe5d54eb511087f7abb4a8ae9e78e233b1e079a44c9cdf2529ed3166c24f80a2bda3b2dfdd2e1c2f650cc35fccf8cb17c03681c6f379f535eeaf46caa1dd95f0b72ea6cf301f2d713844b36c7e90e052528f04a668e1dc5ed11e95bbb86268c712af3f6c77d538c9d3dafeceaacc7ba6b20d9266d75c7470d627725700bfd36a9faf5488532a0871a00e18466f3499e3e3270513168d05f52472045b8558d3fb7880805b6fe3a56b3df9eaea72d147f94ee09e763fcf66d0c71b708fb842bbe619eeeaf483fa717864ab435ca03503285591364727a3615582c80d2023897f7bfdda9b00d095ec11f42482f3851a9232ed09ec6733d54020a9e3b98cb3a014f094e9d968672632a30f967a6d2f00c64fb0aefbeb64510edca5496c9f69379f71412f08fe6afeeb604040a42f00290bc04a40f66f0b84c9c6d7e4d1bc213ed49142215b259be08a0a305c68cbec769ce195ea62b7a2ce632da0a98b469284fd7802bb8c47943ac1c8a7a2b0ee36ed45cde2d13cc00ecc11ca9516d9e917fa28d703566b8d5743c5aba0da662f0446768c6d0df6773d1b0c46dac6a6213aa7b5095a8bd9f34048394a8baac9ec65d740ad8acb8eb683702eaf509c30b547bf355561ca00841efdccd413295a430344d17d2d5f4f435d0a33fafe1b4f6826e9d91436b379cc46039551997e54692487562f65a406b769f2856d37c87a73e2e3738c9afdfa5e0f088bbd2799c7c722c23a7cc37266af557beecb9cc8340bc76ba85a147530f3a9bd8cfe82358c0d799f0687540d463e0f010d1e914f043027284292bf31af75301e27689910393e41f877832797dd7c184249e7b2ec0a79b0decb9a3eead5b3c82ac60fe1485829bf75b8af597b5fd9e47460ebb6d809733eb790027094b019ef2bfb76d75876a5e1e312e80e841c5e074c78b35be6a4070c99372dbb13dc27966a8d448b8e3225b11af907985f3142d41da70a682166814fce9e535cca37058bbb3a02894f6ada82c266e763f431d7e1926da2fc86805b02d6af712c82e7a36e667bd3091661be9cc0cdbd3b3cc690594cf8bac39dd9dac1f883cfb0e500759b0e5dc36721b3ed452addc26d39733a2d76d852d897298009dea9546bae66e9aac7f35277e025d440ca93fdec4bbd58970a130fc79056af96f81b0461ef0e16d4fb12014313438a4bb95b2f9cac98e24a713ed14b539ceddf55e90b6c000044a24be6597e2c5a397a772d7c493ad53a05d6076b584ee7c1615ee7f9de627ac9d7d0d4a12b5a080a9c4977da436704bc9eb9f1d25ba91498e4b575550a69aab83e9157a910c4b2907ea97bcc171dcb7ff6fa982dee16d5c5aaaf93fcc225a6c67c96e54ead190f9c6f949b8025988a46d29c86cf18623882d5aa996a3ece81881ba63e0e7d62b585a179631c7e22f924be7aad5699af389c6651c92848153007d9929683648c8a3fb102a50d9a3e9c83e6cabeae5f97d7faad7a803f8c6dbd9237fa4bec7b33db2cc4db5cd7b3baf1c4f4ddc1f16ec6484cbd1adecab06617045b2d5bac8d1bf97a37ed2780a967a678095a6849cabd87256dbe46f52c960ba8ead52e666a131abfb019d2ac7dd2b055bf91168322b23821a522d241f27a2e7ef892d589a0e55b606167e53b0725a089cae5ef65f02f8a2f32dedb370bf2dc34dac5218be294e755915b399cece7e5c3fa887909961a3d626e4a43bab7edd193a9bc0a7a764640943a635fec7722ff8b3add819b26b78c4e54ff970c15d6b27971cd135d288f081a66e792a8ee5b2d89d5945a99f4216ac21fd9a61e305b4a908f4cbe38e5ccd5eab65f5962877a570524809dffa4ca0ed90d505601d7d244273f20cc47feca7259bd1362e334be459e25a59d4873fc8ede03744c88599a5e5f2a6fb0ca08d085e40c8bd71a0777f7715153e71f4a67f6bb73bbbcd766a9dd4287671dcf6b7daacc4f4b81b32ea0d0381fc32807fe9393249e596d3d5ae4bc5a1cb3e48d63478679eb381fbe8cafd2c6890ba29c1af695f2597c6b472a163b7584dde7327933b9d5e88e0d77e3a3d526a619966dde7f82c7ab7a67a59ded2c880ee0e2f736f054b7d99cc68df48c28d76ab12762c85d07a1f3215d3d4ef2ebd65b0f7eacf62ec12997ccdada731992513263a06e063c27eccfdb3c9d1199136c1a2c3d6b5ea6b2e96c9aa6be3bfbda408b2779ad4eba91809a495c1b872e40d49b0acf4b19b4677e6ea8d07b9a621816c4c5f0e5aa364d4803567da0b2b646604563b31aaa298130576690cbab52bf1ddad7c64a7a416ceb36d6b3202f377ed003e8d74cabd4a6a7be18c95716022cc30c45157d6743785746cf8b0e21ec3208336ab0a43ad9c058fffa3021f84ca8b037dea55254ab944493ca03d025a4b42df3e5b830b81471cddf81fd14aed18e45cfed27b1ef015827942f833a0eee4cc0fcd57f0180f83f32e17d27e4784e42eb1a256404aa6e12f9daabddb907230b20693f3bc74723be6808d95c6463ef7bb6bc4a756fdc805ef4077303e5cd504e6c1754ee8303ee92b94808782984f75c0df49436d3859c092133b0545dac0d8f84fc95a1f0f38e4ecbe3f935d33e86b97bb11ca6f502a602bc7e05b4e6514ddc8ae4d8231874b350b32f96ff6cfbe03f1bf5a0fda73c15eca00afe85c026f5e34e699910ab16502b224b8f383a9a863ca351a1e87c17baadb3f7141aa1295a2a6be4d88d1347da9c356ba9b3bfcc678b58add1b224a0c9b7c3cc4c828abc56acd320e8a8ad22da90a0cf6ae40a471c150581da040297aed0e4889c5963bd8c1415acecbd932f9acda87315e3b2dade276b8324dc7d95141cdd8c4fba82c834a95f9efeb2c74c31e7fd32f96a6a68d9e9942c0bdc55bedd1617e47420877b9f640094a37ceea39656468215ebe789a277f585adc1cc0285b53e33afae1616b0806aeed78b6cc4da54e3bdfa3d49ead4e4fa3623f86a4dfa3042ed403684c62a5d148a30c99c24c3cf9a8858e02800e49e0eed84472a559c9f208f6c3310050e4c5948320b5b4eeefe583bb0bcc0bc01356e76e3465f66a7d0c56ca7abc069db5bd7ad20ec01307f391b5bc890b5034271ee31d5bd374a9422a08ce949667512c8d0bb60eb5d4d22fa0e2a5d172edc7b7386abe63222ef8fc5c676828a1441c5ed19ed5827b0d73d568efc51f46f65ea4f205ac26924d6a7f11477fe23049e0de65bd534c81756556c1cd8bc70b3ce71e4e13d44500773e0767bc735c98f0e1d06dc79e43b946a2faaf698e188cf5909e433edbc546beffcbdea76064ff9d5d56273ca05af42c541b896bc5a942665599c9a8f52db36dbd6d42e8f9bb3446df5f44e3971eb408d0c63381b4aa5997441e01a5eff9fa51d82b7d60d8c3ead784e50b562db074b19e855e8290896b808611c40ed7e0691f758103208900d69cd4c86310318d339eeb473b4bea27be94622560cf35416eea7333bb72110afe202dfcc55c755ed32ea9b4851378b554546b52ebd71b90828733ac3040daf1e3d23bfcadd20bb9248731ab11155aebd259b7e693ebad5d43e6a85f14ea317f31eca905634f9e8d5b1ff73dc5dbd2bbeef6c2965932c885969e00e1939685b472c097b4504c9e6f273e1038045e5ac4010ac232288b77de7d3433a143292f145465b6d1f9020aa4f8405bda4310059b82ad8fd41e698a7824456e11f44e577dc5d5a0eb93b98421a2867c3d40627f9061c1d5689205915c7a91da42348ad3bd12038d84175bddaee423b73c93aebf873c850ef44d66324a80ad0cf268998d71fac6988cb0b1879ebcb6c4c3bce2c45daf73db246bc55fb8221341ef760f5f5264113a437e03cbcf03bb276cdc4100138afc6a1eeb9d90e7f43ce8abbd8be6b9c5b54920f76f07d1557167292feb4c970da3f582d40c0661af8f043e01db8016e2600f655175fa7d705bda3a14d1733ccf6603b7f8709b71f2046211468460791330234fa21f417e6a68cdb1d4496808923a87d02f0ebfb09e102a7c9f7c870c082d6993d10e0de2dbe119ac811848661ab30ab8d7a528acf262bf7d21c2f235e5638be58171b61bed99ac3fef801562aabcf3feff77fe9498d09de3e9c3cf18914392433030595aa31d9c79abc29350a2a2a1d0c2f311246", 0x1000}}, 0x1006)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r3, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x45c], 0x0, 0x0, 0x1, 0x1}}, 0x3c)
ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000000))
syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000240)=<r4=>0x0)
perf_event_open(&(0x7f0000000300)={0x4, 0x80, 0xc9, 0xe, 0x6, 0x15, 0x0, 0x800, 0x8000, 0x6, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, @perf_config_ext={0x4, 0x9dc}, 0x8c, 0x1, 0xa, 0x7, 0x200, 0x8, 0x9, 0x0, 0x9, 0x0, 0x6}, r4, 0xe, r1, 0xa)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x3000000, 0x20010, r0, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000000, 0x20010, r0, 0x10000000)
r5 = creat(&(0x7f00000005c0)='./file0\x00', 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r5, 0xc018937c, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x4}}, '\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r6 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000440), 0xcfe73f0322785692, 0x0)
pwritev(r6, &(0x7f0000000040)=[{&(0x7f0000000180)="80fd02000040", 0x42}], 0x2, 0x0, 0x0)

1m47.271589043s ago: executing program 1 (id=34):
socket$inet6(0xa, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
getgid()
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$sock_inet6_tcp_SIOCOUTQNSD(0xffffffffffffffff, 0x894b, &(0x7f0000000180))
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r3}, 0x10)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000580)=@raw={'raw\x00', 0x3c1, 0x3, 0x458, 0x0, 0x168, 0x10, 0x190, 0xb, 0x388, 0x250, 0x250, 0x388, 0x250, 0x3, 0x0, {[{{@ipv6={@remote, @rand_addr=' \x01\x00', [], [], 'veth1_to_batadv\x00', 'veth1_to_hsr\x00', {}, {}, 0x3a}, 0x6000000, 0x128, 0x190, 0x0, {0x0, 0x28e}, [@common=@icmp6={{0x28}, {0x0, 'K\r'}}, @common=@inet=@hashlimit1={{0x58}, {'netdevsim0\x00', {0x0, 0x0, 0x9, 0x1, 0x0, 0x10000, 0x80000001}}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'pptp\x00', 'syz1\x00'}}}, {{@uncond, 0x0, 0xd0, 0x1f8, 0x0, {}, [@common=@inet=@set2={{0x28}}]}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x0, 0x0, 'system_u:object_r:usb_device_t:s0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4b8)
flock(r1, 0x2)
r5 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000080), 0x64, 0x50a, &(0x7f0000000200)="$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")
r7 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
r8 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
write$binfmt_register(r8, &(0x7f0000000440)={0x3a, 'syz1', 0x3a, 'M', 0x3a, 0x0, 0x3a, 'usrjquota=', 0x3a, '', 0x3a, './file2', 0x3a, [0x46]}, 0x32)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r7, 0x7, 0x0, 0x0, 0x0)
flock(r5, 0x2)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)

1m46.834572321s ago: executing program 1 (id=39):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000480)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
fstatfs(0xffffffffffffffff, 0x0)
r3 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r4 = dup(r3)
ioctl$PTP_EXTTS_REQUEST2(r4, 0x43403d05, 0x0)
r5 = socket$kcm(0x10, 0x400000002, 0x0)
recvmsg(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001600)=""/4098, 0x1002}, {&(0x7f0000003700)=""/4081, 0xff1}, {&(0x7f0000002640)=""/4115, 0x1013}, {&(0x7f0000001300)=""/200, 0xc8}, {&(0x7f0000000200)=""/168, 0xa8}], 0x5}, 0x60012002)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000040)=<r6=>0x0)
getsockopt$inet_IP_IPSEC_POLICY(r4, 0x0, 0x10, &(0x7f0000000340)={{{@in6=@remote, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0}}, {{@in6=@remote}, 0x0, @in=@private}}, &(0x7f0000000040)=0xe8)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000004c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@nouid32}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@noblock_validity}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@resgid}]}, 0x1, 0x567, &(0x7f0000000b00)="$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")
write$P9_RSTATu(0xffffffffffffffff, &(0x7f0000000140)={0x56, 0x7d, 0x2, {{0x0, 0x41, 0xf, 0x2, {0x0, 0x1, 0x4}, 0x0, 0x1, 0x0, 0x0, 0x6, 'team0\x00', 0x1, '\xd1', 0x6, 'team0\x00', 0x1, ':'}, 0x0, '', r6, 0xee00, r7}}, 0x56)
clock_gettime(0x0, &(0x7f00000001c0)={<r8=>0x0, <r9=>0x0})
utimes(&(0x7f0000000080)='./file1/file0\x00', &(0x7f0000000240)={{r8, r9/1000+10000}})
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000700)={'team0\x00', <r10=>0x0})
sendmsg$TEAM_CMD_PORT_LIST_GET(r0, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000100)=ANY=[@ANYBLOB="40010000", @ANYRES16=r1, @ANYBLOB="150500000000ffdbdf250300000008000100", @ANYRES32=r10], 0x140}}, 0x0)

1m44.926458942s ago: executing program 1 (id=49):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000480)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
fstatfs(0xffffffffffffffff, 0x0)
r3 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r4 = dup(r3)
ioctl$PTP_EXTTS_REQUEST2(r4, 0x43403d05, 0x0)
r5 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r5, &(0x7f0000000100)=ANY=[@ANYBLOB="0007000042009103"], 0xfe33)
recvmsg(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001600)=""/4098, 0x1002}, {&(0x7f0000003700)=""/4081, 0xff1}, {&(0x7f0000002640)=""/4115, 0x1013}, {&(0x7f0000001300)=""/200, 0xc8}, {&(0x7f0000000200)=""/168, 0xa8}], 0x5}, 0x60012002)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000040)=<r6=>0x0)
getsockopt$inet_IP_IPSEC_POLICY(r4, 0x0, 0x10, &(0x7f0000000340)={{{@in6=@remote, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0}}, {{@in6=@remote}, 0x0, @in=@private}}, &(0x7f0000000040)=0xe8)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000004c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@nouid32}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@noblock_validity}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@resgid}]}, 0x1, 0x567, &(0x7f0000000b00)="$eJzs3d9rW1UcAPDvTX/sp66DMVRECntwMpeurT8m+DAfRYcDfZ+hvSuj6TKadKx14PbgXnyRIYg4EN/13cfhP+BfMdDBkFH0wZfKTW+6dE3atMuaznw+cMM590fOPbn3nHxPTkIC6Fuj2UMh4uWI+CaJOBIRSb5tMPKNo6v7LT+6MZUtSaysfPpXUt8vyzeeq3HcoTzzUkT89lXEqcLGcquLS7Olcjmdz/NjtbmrY9XFpdOX50oz6Ux6ZWJy8uzbkxPvvftO1+r6xoV/vv/k3odnvz6x/N0vD47eSeJcHM63NddjZ4azh5vNa0ZjNH9NhuLcE3uPP11he07S6xNgRwbydj4UWR9wJAbyVg/8/30ZEStAn0rat/9IdvVMgN3ViAMaY/vNx8EvrqWaj32ePfxgdQC0sf6Dq5+NxP762OjgcrJuZJSNd0e6UH5Wxq9/3r2TLdGVzyEAOnPzVkScGRzc2P8lef+3c2dar97fnHmyDP0f7J57WfzzZqv4p7AW/0SL+OdQi7a7E1u3/8KDLhTTVhb/vd8y/l2btBoZyHMv1GO+oeTS5XJ6Jo+GT8bQviy/2XzO2eX7bWPl5vgvW7LyG7Fgfh4PBvetP2a6VCvVP7jrgoe3Il5pGf8ma9c/aXH9s9fjQodlHE/vvtZu29b1f7ZWfop4veX1fzyjlWw+PzlWvx/GGnfFRn/fPv57u/J7Xf/s+h/cvP4jSfN8bXX7Zfy4/9+03bZ19Y/O7//h5LN6ejhfd71Uq82PRwwnH29cP/H42Ea+sX9W/5MnNu//Wt3/ByLi8w7rf/vYz692VP8eXf/pbV3/7Sfuf/TFD+3K76z/e6ueOpmvqfd/W+j0BJ/mtQMAAAAAAIC9phARhyMpFNfShUKxuPr9jmNxsFCuVGunLlUWrkxH/beyIzFUaMx0H2n6PsR4/n3YRn7iifxkRByNiG8HDtTzxalKebrXlQcAAAAAAAAAAAAAAAAAAIA94lCb3/9n/hjo9dkBz5y//Ib+tWX778Y/PQF7kvd/6F/aP/Qv7R/6l/YP/Uv7h/61rv2b9Ie+4v0f+pf2DwAAAAAAAAAAAAAAAAAAAAAAAAAAAF114fz5bFlZfnRjKstPX1tcmK1cOz2dVmeLcwtTxanK/NXiTKUyU06LU5W5rZ6vXKlcHZ+IhetjtbRaG6suLl2cqyxcqV28PFeaSS+mQ7tSKwAAAAAAAAAAAAAAAAAAAHi+VBeXZkvlcjovIbGjxODeOA2JLid63TMBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwGP/BQAA///oaTpO")
write$P9_RSTATu(0xffffffffffffffff, &(0x7f0000000140)={0x56, 0x7d, 0x2, {{0x0, 0x41, 0xf, 0x2, {0x0, 0x1, 0x4}, 0x0, 0x1, 0x0, 0x0, 0x6, 'team0\x00', 0x1, '\xd1', 0x6, 'team0\x00', 0x1, ':'}, 0x0, '', r6, 0xee00, r7}}, 0x56)
utimes(&(0x7f0000000080)='./file1/file0\x00', &(0x7f0000000240))
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000700)={'team0\x00', <r8=>0x0})
sendmsg$TEAM_CMD_PORT_LIST_GET(r0, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000100)=ANY=[@ANYBLOB="40010000", @ANYRES16=r1, @ANYBLOB="150500000000ffdbdf250300000008000100", @ANYRES32=r8], 0x140}}, 0x0)

1m44.926077232s ago: executing program 32 (id=49):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000480)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
fstatfs(0xffffffffffffffff, 0x0)
r3 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r4 = dup(r3)
ioctl$PTP_EXTTS_REQUEST2(r4, 0x43403d05, 0x0)
r5 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r5, &(0x7f0000000100)=ANY=[@ANYBLOB="0007000042009103"], 0xfe33)
recvmsg(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001600)=""/4098, 0x1002}, {&(0x7f0000003700)=""/4081, 0xff1}, {&(0x7f0000002640)=""/4115, 0x1013}, {&(0x7f0000001300)=""/200, 0xc8}, {&(0x7f0000000200)=""/168, 0xa8}], 0x5}, 0x60012002)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000040)=<r6=>0x0)
getsockopt$inet_IP_IPSEC_POLICY(r4, 0x0, 0x10, &(0x7f0000000340)={{{@in6=@remote, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0}}, {{@in6=@remote}, 0x0, @in=@private}}, &(0x7f0000000040)=0xe8)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000004c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@nouid32}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@noblock_validity}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@resgid}]}, 0x1, 0x567, &(0x7f0000000b00)="$eJzs3d9rW1UcAPDvTX/sp66DMVRECntwMpeurT8m+DAfRYcDfZ+hvSuj6TKadKx14PbgXnyRIYg4EN/13cfhP+BfMdDBkFH0wZfKTW+6dE3atMuaznw+cMM590fOPbn3nHxPTkIC6Fuj2UMh4uWI+CaJOBIRSb5tMPKNo6v7LT+6MZUtSaysfPpXUt8vyzeeq3HcoTzzUkT89lXEqcLGcquLS7Olcjmdz/NjtbmrY9XFpdOX50oz6Ux6ZWJy8uzbkxPvvftO1+r6xoV/vv/k3odnvz6x/N0vD47eSeJcHM63NddjZ4azh5vNa0ZjNH9NhuLcE3uPP11he07S6xNgRwbydj4UWR9wJAbyVg/8/30ZEStAn0rat/9IdvVMgN3ViAMaY/vNx8EvrqWaj32ePfxgdQC0sf6Dq5+NxP762OjgcrJuZJSNd0e6UH5Wxq9/3r2TLdGVzyEAOnPzVkScGRzc2P8lef+3c2dar97fnHmyDP0f7J57WfzzZqv4p7AW/0SL+OdQi7a7E1u3/8KDLhTTVhb/vd8y/l2btBoZyHMv1GO+oeTS5XJ6Jo+GT8bQviy/2XzO2eX7bWPl5vgvW7LyG7Fgfh4PBvetP2a6VCvVP7jrgoe3Il5pGf8ma9c/aXH9s9fjQodlHE/vvtZu29b1f7ZWfop4veX1fzyjlWw+PzlWvx/GGnfFRn/fPv57u/J7Xf/s+h/cvP4jSfN8bXX7Zfy4/9+03bZ19Y/O7//h5LN6ejhfd71Uq82PRwwnH29cP/H42Ea+sX9W/5MnNu//Wt3/ByLi8w7rf/vYz692VP8eXf/pbV3/7Sfuf/TFD+3K76z/e6ueOpmvqfd/W+j0BJ/mtQMAAAAAAIC9phARhyMpFNfShUKxuPr9jmNxsFCuVGunLlUWrkxH/beyIzFUaMx0H2n6PsR4/n3YRn7iifxkRByNiG8HDtTzxalKebrXlQcAAAAAAAAAAAAAAAAAAIA94lCb3/9n/hjo9dkBz5y//Ib+tWX778Y/PQF7kvd/6F/aP/Qv7R/6l/YP/Uv7h/61rv2b9Ie+4v0f+pf2DwAAAAAAAAAAAAAAAAAAAAAAAAAAAF114fz5bFlZfnRjKstPX1tcmK1cOz2dVmeLcwtTxanK/NXiTKUyU06LU5W5rZ6vXKlcHZ+IhetjtbRaG6suLl2cqyxcqV28PFeaSS+mQ7tSKwAAAAAAAAAAAAAAAAAAAHi+VBeXZkvlcjovIbGjxODeOA2JLid63TMBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwGP/BQAA///oaTpO")
write$P9_RSTATu(0xffffffffffffffff, &(0x7f0000000140)={0x56, 0x7d, 0x2, {{0x0, 0x41, 0xf, 0x2, {0x0, 0x1, 0x4}, 0x0, 0x1, 0x0, 0x0, 0x6, 'team0\x00', 0x1, '\xd1', 0x6, 'team0\x00', 0x1, ':'}, 0x0, '', r6, 0xee00, r7}}, 0x56)
utimes(&(0x7f0000000080)='./file1/file0\x00', &(0x7f0000000240))
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000700)={'team0\x00', <r8=>0x0})
sendmsg$TEAM_CMD_PORT_LIST_GET(r0, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000100)=ANY=[@ANYBLOB="40010000", @ANYRES16=r1, @ANYBLOB="150500000000ffdbdf250300000008000100", @ANYRES32=r8], 0x140}}, 0x0)

54.224225002s ago: executing program 0 (id=639):
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
sendto$inet6(r0, 0x0, 0x5c4, 0x404c844, &(0x7f0000000540)={0x2, 0x4e24, 0x0, @local}, 0x1c)

54.151408504s ago: executing program 0 (id=641):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xc, 0x10, &(0x7f0000000580)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000700)='kmem_cache_free\x00', r0}, 0x18)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'geneve1\x00', <r2=>0x0})
sendto$packet(r1, &(0x7f00000002c0)="1441c05465f0006fc8afa8e40800", 0xe, 0x4000000, &(0x7f00000000c0)={0x11, 0x10, r2, 0x1, 0x0, 0x6, @link_local}, 0x14)

54.131701644s ago: executing program 0 (id=642):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x20)
timer_create(0x0, 0x0, &(0x7f0000000100))
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x2, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_DAEMON(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000000000000000009000000440003800800010002000000140002007663616e300000000000000000000000080003000000000014000600ff"], 0x58}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18)
sendmsg$NFT_BATCH(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000004340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01040000000000000000010000000900010073797a300000000034000000030a010100000000000000000100000209000b0073797a31000000000900010073797a300000000008000a4000000004d4010000020a05"], 0x250}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
timer_delete(0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0b0000000500000008040000cd00000001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000000000000000000000b05a0f9d1146c9a387b066ecf936462601a9ddd7ec5e1901a7dfc09a93fab2f99644b8f6846785517ed9f30cb766babc10c8df761214e424b0903e08c28649a525c90d6c2e9ee535fa1244b6de3a8401a09cb9dd8eac22742604d614632fc91e0970b1ec60e6010e62a6afd323d680c7efffc2c18b3a237cf5ce0a93d8dfc2c4d244caeb97884eef2481a1888d538329cb8fa0a03bf942e3e734cfe2799fde50503d0eb9afe0e7ec6822f54c496918a169e6ca61de47cc6aa51f4f82525d94ad7aa6"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r6], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r7}, 0x10)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000080)=<r8=>0x0)
fsetxattr$security_capability(r7, &(0x7f0000000000), &(0x7f00000001c0)=@v3={0x3000000, [{0xb, 0x2}, {0x18, 0x8}], r8}, 0x18, 0x3)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
getsockopt$sock_buf(r9, 0x1, 0x1f, &(0x7f0000000840)=""/82, &(0x7f00000008c0)=0x52)

54.064584125s ago: executing program 0 (id=646):
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x10, &(0x7f0000000140)={[{@norecovery}]}, 0xee, 0x474, &(0x7f00000004c0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x1)
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x1f4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180200000020702500000000002020207b1af8ff00000000bfa100000000000007010000dbffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2b, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kfree\x00', r2, 0x0, 0xfffffffffffffffc}, 0x18)
r3 = dup2(r1, r1)
ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x200000a, 0x1, 0x8})
ioctl$BLKTRACESETUP(r3, 0x1276, 0x0)
write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
mount(&(0x7f0000000440)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r4 = open(&(0x7f0000000100)='./bus\x00', 0x14113e, 0x0)
write$binfmt_script(r4, &(0x7f0000000080), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$inet_int(r5, 0x0, 0x1, 0x0, &(0x7f00000000c0))

53.819377349s ago: executing program 0 (id=654):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000140))
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r1}, &(0x7f0000000040), &(0x7f0000000280)='%pS    \x00'}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
ioctl$PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000180)={0x1, &(0x7f00000000c0)=[{0x60, 0x1, 0x0, 0x1}]})

53.419243045s ago: executing program 0 (id=667):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000380)=ANY=[@ANYRES8=<r1=>0x0], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='mm_page_alloc\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYRESDEC=r1], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000003c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000000)={0x2, 0x24}, 0x10, &(0x7f00000002c0)=[{&(0x7f0000000400)='\b', 0x1}, {0x0}], 0x2, &(0x7f00000004c0)}, 0x20004000)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, &(0x7f0000000200)={{0x2, 0x4e24, @multicast1}, {0x306, @random="a737146951fe"}, 0x0, {0x2, 0x4e23, @broadcast}, 'hsr0\x00'})
socket$netlink(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000080"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
brk(0x4)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)

53.418196235s ago: executing program 33 (id=667):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000380)=ANY=[@ANYRES8=<r1=>0x0], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='mm_page_alloc\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYRESDEC=r1], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000003c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000000)={0x2, 0x24}, 0x10, &(0x7f00000002c0)=[{&(0x7f0000000400)='\b', 0x1}, {0x0}], 0x2, &(0x7f00000004c0)}, 0x20004000)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, &(0x7f0000000200)={{0x2, 0x4e24, @multicast1}, {0x306, @random="a737146951fe"}, 0x0, {0x2, 0x4e23, @broadcast}, 'hsr0\x00'})
socket$netlink(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000080"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
brk(0x4)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)

2.308616792s ago: executing program 5 (id=1652):
socket$inet6_mptcp(0xa, 0x1, 0x106)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0b0000020000000000000000090000000100000005924508d24c8bb331e4c1ce42cb27cf6f550ab6a2b4199ba1e0de58fafec49f2bd2d074b8d00e692cce830a10ccceb9ea77081357fa9a54f387ff28805f30448b2aa9708758ce0f00", @ANYRES32, @ANYBLOB="ffffffff00"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000002c0)='mm_page_alloc\x00', r1, 0x0, 0x20002}, 0x18)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), r2)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x406880, 0x0)
ioctl$SIOCSIFHWADDR(r3, 0x8924, &(0x7f0000000200)={'caif0\x00'})

2.053611496s ago: executing program 3 (id=1654):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0, 0x0, 0x10}, 0x18)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
syz_io_uring_setup(0xbc3, &(0x7f0000001480)={0x0, 0x1064, 0x80, 0x4, 0x1ab}, &(0x7f0000000040)=<r2=>0x0, &(0x7f00000000c0)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000300)=@IORING_OP_SYMLINKAT={0x26, 0x4, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000380)='./file0/file0\x00', 0x0, 0x0, 0x1})
bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
socket$inet6_sctp(0xa, 0x5, 0x84)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/locks\x00', 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x14850, &(0x7f0000000280)=ANY=[@ANYBLOB="696f636861727365743d757466382c757466383d302c757466383d302c756e695f786c6174653d312c73686f77657865632c666c7573682c756e695f786c6174653d302c6e6f6e756d7461696c3d302c726f6469722c757466383d302c73686f72746e616d653d6d697865642c756d61736b3d30303030303030303030303030303030303030343030362c00beeb785669c17027b9991eb23dbb3b8822e59d2d63472a4a7f7dc20d95534fe469609f25246ff64d8c2e809935a3c051187c865fdfa9b71c304476c47eabb32fcc0cc60b0dc8dab7e4a32f81eb790c30171365d6c19c0ebdf5a8e5bd722d253a5ccd6ae89b75ae368bf1ae5728c70e0fc475b9c87407aa0b85dcad58af1e0188fabe638dbe838ea574a4a944af72c1dc551b1d47fb6a2605376c01e196bd067da598473c7d2f22cf1ab77aadbb94b48b77f323313de1ef7e476e8753dbe1a0624d6b6662a76cf50aed7cb030ad1feb04eb8b7434bdc97e1951b76df1c3c3d8c9c20219407d00d6cc218b65518e831a6319ea123d6bef2f3b6959cce963"], 0x1, 0x26f, &(0x7f0000000900)="$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")
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
write$UHID_CREATE2(r5, &(0x7f00000004c0)=ANY=[@ANYRES64=r4], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r5, 0x0)
ioctl$TIOCL_GETKMSGREDIRECT(0xffffffffffffffff, 0x541c, &(0x7f0000000000))

2.041765496s ago: executing program 6 (id=1655):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r2)
sendmsg$NFC_CMD_DEP_LINK_UP(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000700)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002abd7000fbdbdf250400000005000a0000000000080001"], 0x3c}, 0x1, 0x0, 0x0, 0x4000}, 0x40)

2.027735297s ago: executing program 5 (id=1656):
syz_emit_ethernet(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x2000000}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0e0000000400000008000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x34, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x4}, @NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x3}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x28, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0xa4}}, 0x0)
r4 = syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301)
ioctl$USBDEVFS_IOCTL(r4, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r4, 0x80045505, &(0x7f0000000400)=@usbdevfs_driver={0xffffffff, 0x8, 0x0})

1.720521212s ago: executing program 6 (id=1658):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x3014850, &(0x7f00000006c0)={[{@noquota}, {@barrier_val={'barrier', 0x3d, 0x1000}}, {@grpjquota}, {@noauto_da_alloc}, {@dioread_lock}]}, 0x3, 0x4e4, &(0x7f0000002d40)="$eJzs3c9PXFsdAPDvHZgCLc/hqYvnS3w2+gxttDNQbEtcVEyMrppY68YVIgyEMDCEGdpCGkPjH2Bi/BVduXJj4tqYmP4JxqSJ7o0xmkbbunChjrnDHYu8AYaUYSjz+SSn95z763tO4R7m3HMzN4C+dTkiZiJiICKuRkQhW5/LUuzspnS/F88fzacpicbQvb8lkWTrWudKsuWl7LDhiPjaVyK+lXwwbm1re2WuUilvZOVSfXW9VNvavra8OrdUXiqvzUxN3py+NX1jeuLE2nr7S3/+4Xd//uXbv/nsgz/O/vXKt9NqjWbb9rajEzsd7rfb9Hzz/6JlMCI2jhPsDBvI2pPvdUUAAOhI+hn/wxHxyYh4+ZNe1wYAAADohsYXRuNfSUQDAAAAOLdyzWdgk1wxexZgNHK5YnH3Gd6PxsVcpVqrf2axurm2sPus7Fjkc4vLlfJE9qzwWOSTtDzZzL8qX99XnoqItyPi+4WRZrk4X60s9PrmBwAAAPSJS/vG//8o7I7/AQAAgHNmrNcVAAAAALrO+B8AAADOvwPH/8ng6VYEAAAA6Iav3rmTpkbr/dcL97c2V6r3ry2UayvF1c354nx1Y724VK0uNb+zb/Wo81Wq1fXPxdrmw1K9XKuXalvbs6vVzbX6bPO93rPlRuFUmgUAAADs8fYnnvwhiYidz480U+pCti1/9OEz3a0d0E254+2edKsewOkb6HUFgJ7xgC/0rw7G+MA5d8TA/gf7yse8bQAAAJwF4x97rfl/84HwBjOQh/5l/h/6l/l/6F/m/6HPDR29y/BBG357wnUBAAC6ZrSZklwxmwscjVyuWIx4q/lagHyyuFwpT0TEhyLi94X8UFqe7HWlAQAAAAAAAAAAAAAAAAAAAAAAAOAN02gk0QAAAADOtYjcX5LsRf7jhfdH998fuJD8s9BcRsSDn9770cO5en1jMl3/9/+tr/84W3+9tSb1jVO+kwEAAAC0tMbprXE8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJykF88fzbfSacZ99sWIGGsXfzCGm8vhXxUi4uLLJAb3HJdExMAJxN95HBHvtIufpNWKsawW++PnImKkx/EvnUB86GdP0v5nJr3+8vuuv1xcbi7bX3+DWXpdzy4f1P/lWv1fs59r1/+9dfiph1uZd5/+snRg/McR7w62739a8ZN28S903sZvfn17+6BtjZ9FjB/x9yeNX6qvrpdqW9vXllfnlspL5bWpqcmb07emb0xPlBaXK+Xs37YxvvfxX//nsPZfbBt/t/89sP0R8X6H7f/304fPP3JI/Cufav/zf+eQ+OnvxKezvwPp9vFWfmc3v9d7v/jde4e1f+GA9h/684+IKx22/+rd7/ypw10BgFNQ29pematUyhtdyYx07cwyaaa6diaqIXN2M3ezC/3Yh/e4YwIAAE7cqw/9+7ccY4IHAAAAAAAAAAAAAAAAAAAAeC1d/xKyof//ZoHh3jUVAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOBQ/w0AAP//5w/Stg==")
newfstatat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x800)

1.635463083s ago: executing program 4 (id=1660):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a000000020000000110000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x12, 0xb, 0x8, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000080)={r2, &(0x7f0000000300), 0x0}, 0x20)

1.547185924s ago: executing program 4 (id=1662):
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000240)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x40, 0x56a, 0x28, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x1, 0x40, 0x3, [{{0x9, 0x4, 0x0, 0x9, 0x2, 0x3, 0x1, 0x3, 0xfb, {0x9, 0x21, 0x2, 0x9, 0x1, {0x22, 0x4}}, {{{0x9, 0x5, 0x81, 0x3, 0x8, 0x1, 0x9, 0x7e}}}}}]}}]}}, &(0x7f00000005c0)={0xa, &(0x7f0000000280)={0xa, 0x6, 0x200, 0x6c, 0x4, 0x0, 0x40, 0x4}, 0x37, &(0x7f00000002c0)={0x5, 0xf, 0x37, 0x3, [@ssp_cap={0x14, 0x10, 0xa, 0x8, 0x2, 0x4, 0xff00, 0x4, [0xff0f, 0xf]}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x3, 0x1, 0x1}, @ss_container_id={0x14, 0x10, 0x4, 0x4, "94893f5a6c40d6c48f94a6c4e15f59cd"}]}, 0x5, [{0x4, &(0x7f0000000300)=@lang_id={0x4, 0x3, 0xc1a}}, {0x63, &(0x7f0000000340)=@string={0x63, 0x3, "f6bca9b23476c1b7c1276b970228177c900a947a0d23d69381695dd7a1355f4d35d99e7df044c95097171a4386fbb75aa5f1b8c094e96bddaf52dcfad2c518be727d280291e2fb911542b97d67908fdb08e073ec1eb5a47794b059c60780e6aff9"}}, {0x5a, &(0x7f00000003c0)=@string={0x5a, 0x3, "74fbdf81ec7d394d06b4348b47e5655642795fbc2b7625adff3ade555054815f127492d3f2e4e2bb589b269021c94dc4ff110b9752014e7da01888eaf223967955c50082b5b14cd55543efdb6b3d1dac08514983deaa6fe4"}}, {0x32, &(0x7f0000000440)=@string={0x32, 0x3, "906718732b0491ce665b95764ceaef55505b3fde50b7c9f61de7d3ea31ce798a345211b397ac714661d384a819fa26b1"}}, {0xa5, &(0x7f0000000500)=@string={0xa5, 0x3, "194a6549bacaebdc2978621ba1cedf15b3c94181b6ae056ae04cef6e4c043448f8dadc69b944d835ad7e89dcffaaba08d62bbfcb3339ba7537f9541b050199abff51a2eddacdeb81a6df517737040b2eddf6f420efcd66689d6514fd8806077bbdda08d91d167977e284b346328af79e619dff186e67d8895618193fd491f112147487251099c13a7175bef6a25f5446fdbed058cedb53704e02e866d0f1fa695b1bef"}}]})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'sit0\x00', <r2=>0x0})
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x6f, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8f03000000000060007538e486dd630ace220005"], 0xcfa4)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000007c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x5, 0xb68, 0xf5ffffff, &(0x7f0000000000)='%', 0x0, 0xd01, 0xbe02, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r2, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0x10, 0x1}}]}}, @TCA_RATE={0x6}]}, 0x4c}, 0x1, 0x0, 0x0, 0x48801}, 0x0)

1.309329958s ago: executing program 2 (id=1666):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000080), 0x1, 0x553, &(0x7f0000001080)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r0, 0x0)
pwritev2(0xffffffffffffffff, 0x0, 0x0, 0x5412, 0x0, 0x0)
r1 = open(0x0, 0x66842, 0x21)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x1, 0x2000, 0x0, 0x3)

1.22879374s ago: executing program 6 (id=1667):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001440)=@delchain={0x24, 0x66, 0x1, 0x70bd2c, 0x25dfdbff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff3}, {}, {0xe}}}, 0x24}, 0x1, 0x0, 0x0, 0x8848}, 0x20004804)

1.22850838s ago: executing program 2 (id=1668):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x20)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x2, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_DAEMON(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000000000000000009000000440003800800010002000000140002007663616e300000000000000000000000080003000000000014000600ff"], 0x58}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18)
sendmsg$NFT_BATCH(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000004340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01040000000000000000010000000900010073797a300000000034000000030a010100000000000000000100000209000b0073797a31000000000900010073797a300000000008000a4000000004d4010000020a05"], 0x250}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
timer_delete(0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0b0000000500000008040000cd00000001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000000000000000000000b05a0f9d1146c9a387b066ecf936462601a9ddd7ec5e1901a7dfc09a93fab2f99644b8f6846785517ed9f30cb766babc10c8df761214e424b0903e08c28649a525c90d6c2e9ee535fa1244b6de3a8401a09cb9dd8eac22742604d614632fc91e0970b1ec60e6010e62a6afd323d680c7efffc2c18b3a237cf5ce0a93d8dfc2c4d244caeb97884eef2481a1888d538329cb8fa0a03bf942e3e734cfe2799fde50503d0eb9afe0e7ec6822f54c496918a169e6ca61de47cc6aa51f4f82525d94ad7aa6"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r6], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r7}, 0x10)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000080)=<r8=>0x0)
fsetxattr$security_capability(r7, &(0x7f0000000000), &(0x7f00000001c0)=@v3={0x3000000, [{0xb, 0x2}, {0x18, 0x8}], r8}, 0x18, 0x3)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
getsockopt$sock_buf(r9, 0x1, 0x1f, &(0x7f0000000840)=""/82, &(0x7f00000008c0)=0x52)

1.159591651s ago: executing program 3 (id=1669):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r2)
sendmsg$NFC_CMD_DEP_LINK_UP(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000700)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002abd7000fbdbdf250400000005000a0000000000080001"], 0x3c}, 0x1, 0x0, 0x0, 0x4000}, 0x40)

1.148957081s ago: executing program 3 (id=1670):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x40, 0x0, 0x7ffc0002}]})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
sendmsg$WG_CMD_SET_DEVICE(r0, 0x0, 0x40000)
r2 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r2, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)

1.131376241s ago: executing program 5 (id=1671):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000073"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

1.123296352s ago: executing program 2 (id=1672):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x20)
timer_create(0x0, 0x0, &(0x7f0000000100))
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x2, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_DAEMON(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000000000000000009000000440003800800010002000000140002007663616e300000000000000000000000080003000000000014000600ff"], 0x58}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18)
sendmsg$NFT_BATCH(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000004340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01040000000000000000010000000900010073797a300000000034000000030a010100000000000000000100000209000b0073797a31000000000900010073797a300000000008000a4000000004d4010000020a05"], 0x250}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
timer_delete(0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0b0000000500000008040000cd00000001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000000000000000000000b05a0f9d1146c9a387b066ecf936462601a9ddd7ec5e1901a7dfc09a93fab2f99644b8f6846785517ed9f30cb766babc10c8df761214e424b0903e08c28649a525c90d6c2e9ee535fa1244b6de3a8401a09cb9dd8eac22742604d614632fc91e0970b1ec60e6010e62a6afd323d680c7efffc2c18b3a237cf5ce0a93d8dfc2c4d244caeb97884eef2481a1888d538329cb8fa0a03bf942e3e734cfe2799fde50503d0eb9afe0e7ec6822f54c496918a169e6ca61de47cc6aa51f4f82525d94ad7aa6"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r6], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r7}, 0x10)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000080)=<r8=>0x0)
fsetxattr$security_capability(r7, &(0x7f0000000000), &(0x7f00000001c0)=@v3={0x3000000, [{0xb, 0x2}, {0x18, 0x8}], r8}, 0x18, 0x3)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
getsockopt$sock_buf(r9, 0x1, 0x1f, &(0x7f0000000840)=""/82, &(0x7f00000008c0)=0x52)

1.115077821s ago: executing program 3 (id=1673):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000100000000000000064000001811", @ANYRES32, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1, 0x0, 0x80000}, 0x18)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)

1.069072432s ago: executing program 6 (id=1674):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
setrlimit(0x40000000000008, &(0x7f0000000000))
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280))
sendmsg$nl_route_sched(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=@delqdisc={0x24, 0x25, 0x800, 0x70bd2d, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0x5, 0x2}, {0x8, 0x10}, {0xa, 0xd}}}, 0x24}, 0x1, 0x0, 0x0, 0x20048800}, 0x24008080)

1.011593613s ago: executing program 6 (id=1675):
socket$netlink(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000140)=0xffffffffffffffff, 0x4)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00"/18, @ANYRES32=r0, @ANYBLOB="0400"/20, @ANYRES32=0x0, @ANYRES32=r1, @ANYBLOB="02000000040000000500"/28], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x8004, &(0x7f0000000080)={[{@discard}, {@bh}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x1, 0x7b9, &(0x7f00000007c0)="$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")
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r3, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)

997.406464ms ago: executing program 2 (id=1676):
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, 0x0)
ioctl$KDSKBMETA(r0, 0x4b63, &(0x7f0000000200)=0x4)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000580)='./file0\x00', 0x40, &(0x7f0000000340), 0x1, 0x573, &(0x7f0000000ec0)="$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")
ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000400)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9, @void, @value}, 0x94)
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r3, &(0x7f00000001c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x56)
listen(r3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x9, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000380)='objagg_obj_get\x00', r4, 0x0, 0x5}, 0x18)
connect$unix(r2, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r5 = socket$unix(0x1, 0x1, 0x0)
connect$unix(r5, &(0x7f0000000000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
close(r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
nanosleep(&(0x7f0000000040), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x2, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f00000006c0)=ANY=[@ANYBLOB="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", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r7}, 0x18)
unshare(0x2040400)
r8 = fsopen(&(0x7f0000000440)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r8, 0x6, 0x0, 0x0, 0x0)
unshare(0x2000400)

948.377424ms ago: executing program 3 (id=1677):
socket$netlink(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000140)=0xffffffffffffffff, 0x4)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00"/18, @ANYRES32=r0, @ANYBLOB="0400"/20, @ANYRES32=0x0, @ANYRES32=r1, @ANYBLOB="02000000040000000500"/28], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='sched_switch\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x8004, &(0x7f0000000080)={[{@discard}, {@bh}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x1, 0x7b9, &(0x7f00000007c0)="$eJzs3d9rHNUeAPDvbJLmR3tvcuFy7+1b4EJvoHRzU2Or4EPFBxEsFPTZNmy2oWaTLdlNaULAFhF8EVR8EPSlz/6ob776A3zS/8IHaamaFis+SGR2Z5M02c2vJtloPh+YzDkzsznnO+fMzNmdYTeAQ2sw/ZOLOB4RbycR/dnyJCK6aqnOiHP17R4uLvRERCGJpaWXfkpq2zxYXCjEqtekjmaZ/0TEV29EnMytL7cyNz85VioVZ7L8cHXq6nBlbv7UlamxieJEcfrMyOjo6bNPnj2ze7H+8t38sbvvPP+/T8/99vq/b7/1dRLn4li2bnUcu2UwBrN90pXuwkc8t9uFtVnS7gqwI+mh2VE/yuN49EdHLdVC737WDADYK69FxBIAcMgkrv8AcMg0Pgd4sLhQaEzt/URif917NiJ66vE/zKb6ms7snl1P7T5o34PkkTsjSUQM7EL5gxHx4eevnOjI8mk93EsD9sONmxFxaWBw/fk/WffMwnb9f6OVS9212eCaxYft+gPt9EU6/nmq2fgvtzz+iSbjn+76sfuvxy1/8+M/d+dxy9hIOv57pv5s25rx3/JDawMdWe5vtTFfV3L5SqmYntv+HhFD0dWd5kdqmzYfuQ3d//1+q/Kz8d/H6fTzu69+lJafzle2yN3p7H70NeNj1c5vHjfwzL2b0Zcl18SfLLd/0mL8e2GLZbzw9JsftFqXxp/G25jWx7+3lm5FnGja/ittmWz4fOJwrTsMNzpFE599/35fq/JXt386peWn892PtLl7N6PWAZJkZR/U1yzHP5Csfl6zsv0yvr3V/2WrdZvH37T/jx1JXq6lj2TLro9VqzMjEUeSF9cvP73y2ka+sX0a/9B/mx//9WKb9//0PeGlLcbfeffHT3Ye/95K4x/fuP+vaf+ebPHKks0Stx9OdrQqf2vtP1pLDWVL0vbfLK6t1GtnvRkAAAAAAAAAAAAAAAAAAAAAAAAAti8XEcciyeWX07lcPl//De9/Rl+uVK5UT14uz06PR+23sgeiK9f4qsv+Vd+HOpJ9H34jf3pN/omI+EdEvNfdW8vnC+XSeLuDBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDM0Ra//5/6obvdtQMA9kxPuysAAOw7138AOHy2d/3v3bN6AAD7x/t/ADh8tnz9v7S39QAA9o/3/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOyxC+fPp9PSr4sLhTQ/fm1udrJ87dR4sTKZn5ot5Avlmav5iXJ5olTMF8pTLf/RjfqsVC5fHY3p2evD1WKlOlyZm784VZ6drl68MjU2UbxY7Nq3yAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABg6ypz85NjpVJx5i+RuLES2C7/5962xtV3MHbvqkRnHIhqHOhEdxyIauwwsfos0duGMxMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAn8MfAQAA//94WBdi")
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r3, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)

852.846886ms ago: executing program 5 (id=1678):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000080), 0x1, 0x553, &(0x7f0000001080)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0WUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo++BK56U2XrUmbddnSmc8Hbjkn9ybnfnPv9/TcnBsSwNCayP4UIl6OiG+SiIMRkeTrRiNfObG23er9q7PZkkSj8elfSXO7rN56rdbz9ueVlyLit68ijhc2tltbXlkolcvpYl6frFcuTdaWV05cqJTm0/n04vTMzKm3Z6bfe/edvsX6xtl/vv/k9oenvj66+t0vdw/dTOJ0HMjXtcfxBK61VyZiIn9PxuL0IxtO9aGxnSQZ9A6wLSN5no9F1gccjJE864H/vy8jogEMqUT+w5BqjQNa1/Z9ug5+btz7YO0CaGP8o2ufjcSe5rXRvtXkoSuj7Hp3vA/tZ238+uetm9kS/fscAmBL165HxMnR0Y39X5L3f9t3sodtHm1D/wfPzu1s/PNmp/FPYX38Ex3GP/s75O52bJ3/hbt9aKarbPz3fsfx7/qk1fhIXnuhOeYbS85fKKdZ3/ZiRByLsd1ZfbP5nFOrdxrd1rWP/7Ila781Fsz34+7o7oefM1eql54k5nb3rke80nH8m6wf/6TD8c/ej7M9tnEkvfVat3Vbx/90NX6KeL3j8X8wo5VsPj852TwfJltnxUZ/3zjye7f2Bx1/dvz3bR7/eNI+X1t7/DZ+3PNv2m3dQ/FH7+f/ruSzZnlX/tiVUr2+OBWxK/l44+PTD57bqre2z+I/dnTz/q/T+b83Ij7vMf4bh39+taf4B3T85x7r+D9+4c5HX/zQrf3e+r+3mqVj+SO99H+97uCTvHcAAAAAAACw0xQi4kAkheJ6uVAoFtfu7zgc+wrlaq1+/Hx16eJcNL8rOx5jhdZM98G2+yGm8vthW/XpR+ozEXEoIr4d2dusF2er5blBBw8AAAAAAAAAAAAAAAAAAAA7xP4u3//P/DEy6L0Dnjo/+Q3Da8v878cvPQE7kv//MLzkPwwv+Q/DS/7D8JL/MLzkPwwv+Q/DS/4DAAAAAAAAAAAAAAAAAAAAAAAAAABAX509cyZbGqv3r85m9bnLy0sL1csn5tLaQrGyNFucrS5eKs5Xq/PltDhbrWz1euVq9dLUdCxdmayntfpkbXnlXKW6dLF+7kKlNJ+eS8eeSVQAAAAAAAAAAAAAAAAAAADwfKktryyUyuV0UUFhW4XRnbEbCn0uDLpnAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAH/gsAAP//6AY3sQ==")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r0, 0x0)
pwritev2(0xffffffffffffffff, 0x0, 0x0, 0x5412, 0x0, 0x0)
r1 = open(0x0, 0x66842, 0x21)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x1, 0x2000, 0x0, 0x3)

851.902336ms ago: executing program 2 (id=1679):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae000000"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x3014850, &(0x7f00000006c0)={[{@noquota}, {@barrier_val={'barrier', 0x3d, 0x1000}}, {@grpjquota}, {@noauto_da_alloc}, {@dioread_lock}]}, 0x3, 0x4e4, &(0x7f0000002d40)="$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")
newfstatat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x800)

796.756447ms ago: executing program 4 (id=1680):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0, 0x0, 0x10}, 0x18)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
syz_io_uring_setup(0xbc3, &(0x7f0000001480)={0x0, 0x1064, 0x80, 0x4, 0x1ab}, &(0x7f0000000040)=<r2=>0x0, &(0x7f00000000c0)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000300)=@IORING_OP_SYMLINKAT={0x26, 0x4, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000380)='./file0/file0\x00', 0x0, 0x0, 0x1})
bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
socket$inet6_sctp(0xa, 0x5, 0x84)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/locks\x00', 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x14850, &(0x7f0000000280)=ANY=[@ANYBLOB="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"], 0x1, 0x26f, &(0x7f0000000900)="$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")
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
write$UHID_CREATE2(r5, &(0x7f00000004c0)=ANY=[@ANYRES64=r4], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r5, 0x0)
ioctl$TIOCL_GETKMSGREDIRECT(0xffffffffffffffff, 0x541c, &(0x7f0000000000))

735.593028ms ago: executing program 5 (id=1681):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r2)
sendmsg$NFC_CMD_DEP_LINK_UP(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000700)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002abd7000fbdbdf250400000005000a0000000000080001"], 0x3c}, 0x1, 0x0, 0x0, 0x4000}, 0x40)

658.339329ms ago: executing program 5 (id=1682):
syz_emit_ethernet(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x2000000}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0e0000000400000008000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x34, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x4}, @NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x3}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x28, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0xa4}}, 0x0)
r4 = syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301)
ioctl$USBDEVFS_IOCTL(r4, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r4, 0x80045505, &(0x7f0000000400)=@usbdevfs_driver={0xffffffff, 0x8, 0x0})

554.430431ms ago: executing program 4 (id=1683):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x40, 0x0, 0x7ffc0002}]})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
sendmsg$WG_CMD_SET_DEVICE(r0, 0x0, 0x40000)
r2 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r2, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)

344.779204ms ago: executing program 4 (id=1684):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a0000000200000001100000"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
r4 = syz_io_uring_setup(0xbbf, &(0x7f0000001480)={0x0, 0xeaef, 0x80, 0x4, 0x142}, &(0x7f0000000040)=<r5=>0x0, &(0x7f00000000c0)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000300)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r0, 0x0, &(0x7f00000017c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000240)='d', 0x1}], 0x1, 0x0, 0x28}, 0x0, 0x4800, 0x1})
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
io_uring_enter(r4, 0x47f8, 0x0, 0x1000000000000, 0x0, 0x0)

174.208347ms ago: executing program 6 (id=1685):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
fstatfs(0xffffffffffffffff, 0x0)
r3 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r4 = dup(r3)
ioctl$PTP_EXTTS_REQUEST2(r4, 0x43403d05, 0x0)
r5 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r5, &(0x7f0000000100)=ANY=[@ANYBLOB="0007000042009103"], 0xfe33)
recvmsg(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001600)=""/4098, 0x1002}, {&(0x7f0000003700)=""/4081, 0xff1}, {&(0x7f0000002640)=""/4115, 0x1013}, {&(0x7f0000001300)=""/200, 0xc8}, {&(0x7f0000000200)=""/168, 0xa8}], 0x5}, 0x60012002)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000040)=<r6=>0x0)
getsockopt$inet_IP_IPSEC_POLICY(r4, 0x0, 0x10, &(0x7f0000000340)={{{@in6=@remote, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0}}, {{@in6=@remote}, 0x0, @in=@private}}, &(0x7f0000000040)=0xe8)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000004c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@nouid32}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@noblock_validity}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@resgid}]}, 0x1, 0x567, &(0x7f0000000b00)="$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")
write$P9_RSTATu(0xffffffffffffffff, &(0x7f0000000140)={0x56, 0x7d, 0x2, {{0x0, 0x41, 0xf, 0x2, {0x0, 0x1, 0x4}, 0x0, 0x1, 0x0, 0x0, 0x6, 'team0\x00', 0x1, '\xd1', 0x6, 'team0\x00', 0x1, ':'}, 0x0, '', r6, 0xee00, r7}}, 0x56)
clock_gettime(0x0, &(0x7f00000001c0)={<r8=>0x0, <r9=>0x0})
utimes(&(0x7f0000000080)='./file1/file0\x00', &(0x7f0000000240)={{r8, r9/1000+10000}})
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000700)={'team0\x00', <r10=>0x0})
sendmsg$TEAM_CMD_PORT_LIST_GET(r0, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000100)=ANY=[@ANYBLOB="40010000", @ANYRES16=r1, @ANYBLOB="150500000000ffdbdf250300000008000100", @ANYRES32=r10], 0x140}}, 0x0)

78.111259ms ago: executing program 3 (id=1686):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x20)
timer_create(0x0, 0x0, &(0x7f0000000100))
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x2, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_DAEMON(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000000000000000009000000440003800800010002000000140002007663616e300000000000000000000000080003000000000014000600ff"], 0x58}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18)
sendmsg$NFT_BATCH(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000004340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01040000000000000000010000000900010073797a300000000034000000030a010100000000000000000100000209000b0073797a31000000000900010073797a300000000008000a4000000004d4010000020a05"], 0x250}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
timer_delete(0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0b0000000500000008040000cd00000001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000000000000000000000b05a0f9d1146c9a387b066ecf936462601a9ddd7ec5e1901a7dfc09a93fab2f99644b8f6846785517ed9f30cb766babc10c8df761214e424b0903e08c28649a525c90d6c2e9ee535fa1244b6de3a8401a09cb9dd8eac22742604d614632fc91e0970b1ec60e6010e62a6afd323d680c7efffc2c18b3a237cf5ce0a93d8dfc2c4d244caeb97884eef2481a1888d538329cb8fa0a03bf942e3e734cfe2799fde50503d0eb9afe0e7ec6822f54c496918a169e6ca61de47cc6aa51f4f82525d94ad7aa6"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r6], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r7}, 0x10)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000080)=<r8=>0x0)
fsetxattr$security_capability(r7, &(0x7f0000000000), &(0x7f00000001c0)=@v3={0x3000000, [{0xb, 0x2}, {0x18, 0x8}], r8}, 0x18, 0x3)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
getsockopt$sock_buf(r9, 0x1, 0x1f, &(0x7f0000000840)=""/82, &(0x7f00000008c0)=0x52)

279.03µs ago: executing program 2 (id=1687):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000100000000000000064000001811", @ANYRES32, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1, 0x0, 0x80000}, 0x18)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)

0s ago: executing program 4 (id=1688):
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$tipc(r0, &(0x7f0000004440)={&(0x7f0000000ec0)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x2}}, 0x10, &(0x7f0000004340)}, 0x0)

kernel console output (not intermixed with test programs):

m 0 to 512
[  115.806227][ T6576] EXT4-fs error (device loop4): ext4_orphan_get:1390: inode #15: comm syz.4.962: casefold flag without casefold feature
[  115.820589][ T6576] EXT4-fs error (device loop4): ext4_orphan_get:1395: comm syz.4.962: couldn't read orphan inode 15 (err -117)
[  115.841880][ T6578] ext4 filesystem being mounted at /184/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  115.857760][ T6581] loop5: detected capacity change from 0 to 164
[  115.883261][ T6585] netlink: 300 bytes leftover after parsing attributes in process `syz.4.966'.
[  115.929554][ T6593] loop2: detected capacity change from 0 to 512
[  115.937422][ T6593] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  115.958626][ T6593] EXT4-fs error (device loop2): ext4_orphan_get:1390: inode #15: comm syz.2.969: casefold flag without casefold feature
[  115.980770][ T6593] EXT4-fs error (device loop2): ext4_orphan_get:1395: comm syz.2.969: couldn't read orphan inode 15 (err -117)
[  116.006237][ T6602] loop4: detected capacity change from 0 to 1024
[  116.013760][ T6602] EXT4-fs: Ignoring removed nobh option
[  116.019459][ T6602] EXT4-fs: Ignoring removed bh option
[  116.039989][ T6602] EXT4-fs (loop4): can't mount with data_err=abort, fs mounted w/o journal
[  116.136511][ T6602] netlink: 292 bytes leftover after parsing attributes in process `syz.4.973'.
[  116.203318][ T6614] loop2: detected capacity change from 0 to 512
[  116.218050][ T6614] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  116.229650][ T6614] EXT4-fs error (device loop2): ext4_orphan_get:1390: inode #15: comm syz.2.977: casefold flag without casefold feature
[  116.242569][ T6614] EXT4-fs error (device loop2): ext4_orphan_get:1395: comm syz.2.977: couldn't read orphan inode 15 (err -117)
[  116.259747][ T6617] pim6reg1: entered promiscuous mode
[  116.265233][ T6617] pim6reg1: entered allmulticast mode
[  116.305767][ T6620] loop2: detected capacity change from 0 to 1024
[  116.312402][ T6620] ext4: Unknown parameter 'ÀðÁðÂðÃðÄðÅðÆðÇðÈðÉðÊðËðÌðÍðÎðÏðÐðÑðÒðÓðÔðÕðÖð×ðØðÙðÚðÛðÜðÝðÞðßðàðáðâðãðäðåðæðçðèðéðêðëðìðíðîðïðððñðòðóðôðõðöð÷ðøðùðúðûðüðýðþðÿðh'
[  116.405249][ T6628] loop4: detected capacity change from 0 to 128
[  116.412698][ T6628] vfat: Unknown parameter '@'
[  116.436343][ T6635] loop2: detected capacity change from 0 to 128
[  116.463928][ T6641] loop5: detected capacity change from 0 to 512
[  116.479648][ T6641] ext4 filesystem being mounted at /194/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  116.494597][ T6645] loop2: detected capacity change from 0 to 512
[  116.505805][ T6647] loop6: detected capacity change from 0 to 512
[  116.513838][ T6645] EXT4-fs (loop2): orphan cleanup on readonly fs
[  116.520393][ T6647] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  116.523826][ T6645] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.989: bg 0: block 248: padding at end of block bitmap is not set
[  116.529707][ T6650] FAULT_INJECTION: forcing a failure.
[  116.529707][ T6650] name failslab, interval 1, probability 0, space 0, times 0
[  116.544878][ T6645] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.989: Failed to acquire dquot type 1
[  116.556087][ T6650] CPU: 0 UID: 0 PID: 6650 Comm: syz.4.991 Not tainted 6.15.0-rc2-syzkaller-00257-gb5c6891b2c5b #0 PREEMPT(voluntary) 
[  116.556119][ T6650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  116.556133][ T6650] Call Trace:
[  116.556142][ T6650]  <TASK>
[  116.556159][ T6650]  dump_stack_lvl+0xf6/0x150
[  116.556252][ T6650]  dump_stack+0x15/0x1a
[  116.556274][ T6650]  should_fail_ex+0x261/0x270
[  116.556381][ T6650]  ? __pfx_nsim_nexthop_event_nb+0x10/0x10
[  116.556412][ T6650]  should_failslab+0x8f/0xb0
[  116.556441][ T6650]  __kmalloc_cache_noprof+0x55/0x320
[  116.556479][ T6650]  ? nsim_nexthop_event_nb+0x7d/0xd40
[  116.556507][ T6650]  ? __pfx_nsim_nexthop_event_nb+0x10/0x10
[  116.556573][ T6650]  nsim_nexthop_event_nb+0x7d/0xd40
[  116.556602][ T6650]  ? should_failslab+0x8f/0xb0
[  116.556628][ T6650]  ? __kmalloc_cache_noprof+0x18d/0x320
[  116.556733][ T6650]  ? vxlan_nexthop_event+0x2e/0x300
[  116.556763][ T6650]  ? __pfx_nsim_nexthop_event_nb+0x10/0x10
[  116.556791][ T6650]  blocking_notifier_call_chain+0x94/0x200
[  116.556834][ T6650]  ? nh_notifier_info_init+0x49c/0x4e0
[  116.556916][ T6650]  call_nexthop_notifiers+0x10a/0x230
[  116.556949][ T6650]  rtm_new_nexthop+0x2d07/0x4340
[  116.556980][ T6650]  ? __rcu_read_unlock+0x4e/0x70
[  116.557089][ T6650]  ? xa_load+0xbd/0xe0
[  116.557143][ T6650]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  116.557184][ T6650]  rtnetlink_rcv_msg+0x65a/0x740
[  116.557219][ T6650]  ? should_fail_ex+0xd7/0x270
[  116.557294][ T6650]  ? ref_tracker_free+0x3b8/0x420
[  116.557326][ T6650]  netlink_rcv_skb+0x12f/0x230
[  116.557350][ T6650]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  116.557395][ T6650]  rtnetlink_rcv+0x1c/0x30
[  116.557477][ T6650]  netlink_unicast+0x605/0x6c0
[  116.557531][ T6650]  netlink_sendmsg+0x609/0x720
[  116.557619][ T6650]  ? __pfx_netlink_sendmsg+0x10/0x10
[  116.557669][ T6650]  __sock_sendmsg+0x140/0x180
[  116.557762][ T6650]  ____sys_sendmsg+0x350/0x4e0
[  116.557798][ T6650]  __sys_sendmsg+0x1a0/0x240
[  116.557845][ T6650]  __x64_sys_sendmsg+0x46/0x50
[  116.557908][ T6650]  x64_sys_call+0x26f3/0x2e10
[  116.557936][ T6650]  do_syscall_64+0xc9/0x1a0
[  116.557967][ T6650]  ? clear_bhb_loop+0x25/0x80
[  116.557995][ T6650]  ? clear_bhb_loop+0x25/0x80
[  116.558022][ T6650]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.558095][ T6650] RIP: 0033:0x7f5708ece169
[  116.558115][ T6650] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  116.558137][ T6650] RSP: 002b:00007f5707537038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  116.558168][ T6650] RAX: ffffffffffffffda RBX: 00007f57090f5fa0 RCX: 00007f5708ece169
[  116.558183][ T6650] RDX: 0000000000008810 RSI: 0000200000000040 RDI: 0000000000000003
[  116.558275][ T6650] RBP: 00007f5707537090 R08: 0000000000000000 R09: 0000000000000000
[  116.558334][ T6650] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  116.558358][ T6650] R13: 0000000000000000 R14: 00007f57090f5fa0 R15: 00007fffdf9378f8
[  116.558381][ T6650]  </TASK>
[  116.603197][ T6647] EXT4-fs error (device loop6): ext4_orphan_get:1390: inode #15: comm syz.6.990: casefold flag without casefold feature
[  116.610707][ T6645] EXT4-fs (loop2): 1 truncate cleaned up
[  116.616022][ T6647] EXT4-fs error (device loop6): ext4_orphan_get:1395: comm syz.6.990: couldn't read orphan inode 15 (err -117)
[  116.676171][ T6653] sd 0:0:1:0: device reset
[  116.691433][ T3382] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  116.907812][ T6645] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  116.919179][ T6658] FAULT_INJECTION: forcing a failure.
[  116.919179][ T6658] name failslab, interval 1, probability 0, space 0, times 0
[  116.931881][ T6658] CPU: 0 UID: 0 PID: 6658 Comm: syz.4.997 Not tainted 6.15.0-rc2-syzkaller-00257-gb5c6891b2c5b #0 PREEMPT(voluntary) 
[  116.931944][ T6658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  116.931958][ T6658] Call Trace:
[  116.931966][ T6658]  <TASK>
[  116.931975][ T6658]  dump_stack_lvl+0xf6/0x150
[  116.932005][ T6658]  dump_stack+0x15/0x1a
[  116.932025][ T6658]  should_fail_ex+0x261/0x270
[  116.932059][ T6658]  should_failslab+0x8f/0xb0
[  116.932082][ T6658]  __kmalloc_noprof+0xad/0x410
[  116.932110][ T6658]  ? fib6_info_alloc+0x2c/0x90
[  116.932253][ T6658]  fib6_info_alloc+0x2c/0x90
[  116.932291][ T6658]  ip6_route_info_create+0x34c/0xa90
[  116.932322][ T6658]  inet6_rtm_newroute+0x3ba/0x1270
[  116.932362][ T6658]  ? __kfree_skb+0x102/0x150
[  116.932466][ T6658]  ? __pfx_inet6_rtm_newroute+0x10/0x10
[  116.932506][ T6658]  rtnetlink_rcv_msg+0x6b7/0x740
[  116.932537][ T6658]  ? ref_tracker_free+0x3b8/0x420
[  116.932634][ T6658]  netlink_rcv_skb+0x12f/0x230
[  116.932657][ T6658]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  116.932773][ T6658]  rtnetlink_rcv+0x1c/0x30
[  116.932803][ T6658]  netlink_unicast+0x605/0x6c0
[  116.932837][ T6658]  netlink_sendmsg+0x609/0x720
[  116.932875][ T6658]  ? __pfx_netlink_sendmsg+0x10/0x10
[  116.932901][ T6658]  __sock_sendmsg+0x140/0x180
[  116.932975][ T6658]  ____sys_sendmsg+0x350/0x4e0
[  116.933007][ T6658]  __sys_sendmsg+0x1a0/0x240
[  116.933093][ T6658]  __x64_sys_sendmsg+0x46/0x50
[  116.933122][ T6658]  x64_sys_call+0x26f3/0x2e10
[  116.933150][ T6658]  do_syscall_64+0xc9/0x1a0
[  116.933181][ T6658]  ? clear_bhb_loop+0x25/0x80
[  116.933207][ T6658]  ? clear_bhb_loop+0x25/0x80
[  116.933311][ T6658]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.933333][ T6658] RIP: 0033:0x7f5708ece169
[  116.933349][ T6658] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  116.933370][ T6658] RSP: 002b:00007f5707537038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  116.933413][ T6658] RAX: ffffffffffffffda RBX: 00007f57090f5fa0 RCX: 00007f5708ece169
[  116.933428][ T6658] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  116.933440][ T6658] RBP: 00007f5707537090 R08: 0000000000000000 R09: 0000000000000000
[  116.933453][ T6658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  116.933467][ T6658] R13: 0000000000000000 R14: 00007f57090f5fa0 R15: 00007fffdf9378f8
[  116.933561][ T6658]  </TASK>
[  117.199225][ T6645] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.989: Failed to acquire dquot type 1
[  117.218340][ T6645] EXT4-fs warning (device loop2): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-28, ino=4). Please run e2fsck to fix.
[  117.243895][ T6671] loop5: detected capacity change from 0 to 512
[  117.258143][ T6671] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  117.284627][ T6668] loop6: detected capacity change from 0 to 128
[  117.288457][ T6678] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1002'.
[  117.300189][ T6678] IPVS: Error joining to the multicast group
[  117.310839][ T6675] loop3: detected capacity change from 0 to 128
[  117.320907][ T6678] netlink: 'syz.4.1002': attribute type 11 has an invalid length.
[  117.329085][ T6678] netlink: 448 bytes leftover after parsing attributes in process `syz.4.1002'.
[  117.332145][ T6671] EXT4-fs error (device loop5): ext4_orphan_get:1390: inode #15: comm syz.5.1000: casefold flag without casefold feature
[  117.353100][ T6671] EXT4-fs error (device loop5): ext4_orphan_get:1395: comm syz.5.1000: couldn't read orphan inode 15 (err -117)
[  117.404803][ T6682] xt_CT: No such helper "pptp"
[  117.419419][ T6682] loop2: detected capacity change from 0 to 512
[  117.430681][ T6687] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1005'.
[  117.443732][ T6687] IPVS: Error joining to the multicast group
[  117.450987][ T6687] netlink: 'syz.6.1005': attribute type 11 has an invalid length.
[  117.459392][ T6682] EXT4-fs (loop2): orphan cleanup on readonly fs
[  117.471202][ T6687] netlink: 448 bytes leftover after parsing attributes in process `syz.6.1005'.
[  117.480496][ T6682] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1004: bg 0: block 248: padding at end of block bitmap is not set
[  117.499923][ T6682] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.1004: Failed to acquire dquot type 1
[  117.541923][ T6682] EXT4-fs (loop2): 1 truncate cleaned up
[  117.569316][ T6682] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  117.600089][ T6682] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.1004: Failed to acquire dquot type 1
[  117.648725][ T6682] EXT4-fs warning (device loop2): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-28, ino=4). Please run e2fsck to fix.
[  117.691287][ T6717] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  117.767742][ T6717] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  117.790934][ T3526] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  117.838082][ T3385] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  117.898163][ T6723] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  117.906662][ T6723] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  117.931610][ T6716] loop5: detected capacity change from 0 to 736
[  117.954104][ T6716] rock: directory entry would overflow storage
[  117.960094][ T6731] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1023'.
[  117.960333][ T6716] rock: sig=0x3b10, size=4, remaining=3
[  117.976236][ T6731] IPVS: Error joining to the multicast group
[  117.984424][ T6731] netlink: 'syz.3.1023': attribute type 11 has an invalid length.
[  117.992667][ T6731] netlink: 448 bytes leftover after parsing attributes in process `syz.3.1023'.
[  118.021983][ T6734] loop3: detected capacity change from 0 to 128
[  118.145977][ T6747] loop6: detected capacity change from 0 to 1024
[  118.153810][ T6747] EXT4-fs: Ignoring removed nobh option
[  118.159568][ T6747] EXT4-fs: Ignoring removed bh option
[  118.177183][ T6750] IPVS: Error joining to the multicast group
[  118.184364][ T6750] netlink: 'syz.3.1031': attribute type 11 has an invalid length.
[  118.198962][ T6747] EXT4-fs (loop6): can't mount with data_err=abort, fs mounted w/o journal
[  118.241913][ T6758] loop5: detected capacity change from 0 to 512
[  118.249882][ T6758] EXT4-fs (loop5): orphan cleanup on readonly fs
[  118.256810][ T6758] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1034: bg 0: block 248: padding at end of block bitmap is not set
[  118.273423][ T6758] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.1034: Failed to acquire dquot type 1
[  118.285602][ T6758] EXT4-fs (loop5): 1 truncate cleaned up
[  118.295639][ T6758] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  118.308800][ T6758] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.1034: Failed to acquire dquot type 1
[  118.321818][ T6758] EXT4-fs warning (device loop5): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-28, ino=4). Please run e2fsck to fix.
[  118.393856][   T29] kauditd_printk_skb: 746 callbacks suppressed
[  118.393952][   T29] audit: type=1326 audit(2000000013.750:7721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6775 comm="syz.3.1041" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3b99a9e169 code=0x0
[  118.395268][ T6776] bridge0: port 3(macsec1) entered blocking state
[  118.429679][ T6776] bridge0: port 3(macsec1) entered disabled state
[  118.438702][ T6776] macsec1: entered allmulticast mode
[  118.444124][ T6776] bridge0: entered allmulticast mode
[  118.462816][ T6776] macsec1: left allmulticast mode
[  118.467938][ T6776] bridge0: left allmulticast mode
[  118.481490][ T6778] SELinux: ebitmap: truncated map
[  118.502249][ T6778] SELinux: failed to load policy
[  118.509144][ T6782] IPVS: Error joining to the multicast group
[  118.516690][ T6782] netlink: 'syz.4.1042': attribute type 11 has an invalid length.
[  118.531406][   T29] audit: type=1326 audit(2000000013.880:7722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6781 comm="syz.4.1042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5708ece169 code=0x7ffc0000
[  118.555051][   T29] audit: type=1326 audit(2000000013.880:7723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6781 comm="syz.4.1042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5708ece169 code=0x7ffc0000
[  118.578796][   T29] audit: type=1326 audit(2000000013.880:7724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6781 comm="syz.4.1042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=226 compat=0 ip=0x7f5708ece169 code=0x7ffc0000
[  118.594436][ T6788] loop4: detected capacity change from 0 to 1024
[  118.602322][   T29] audit: type=1326 audit(2000000013.880:7725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6781 comm="syz.4.1042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5708ece169 code=0x7ffc0000
[  118.610364][ T6788] EXT4-fs: Ignoring removed nobh option
[  118.632079][   T29] audit: type=1326 audit(2000000013.880:7726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6781 comm="syz.4.1042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5708ece169 code=0x7ffc0000
[  118.637705][ T6788] EXT4-fs: Ignoring removed bh option
[  118.666760][   T29] audit: type=1326 audit(2000000013.880:7727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6781 comm="syz.4.1042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5708ece169 code=0x7ffc0000
[  118.690225][   T29] audit: type=1326 audit(2000000013.880:7728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6781 comm="syz.4.1042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5708ece169 code=0x7ffc0000
[  118.713811][   T29] audit: type=1326 audit(2000000013.880:7729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6781 comm="syz.4.1042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5708ece169 code=0x7ffc0000
[  118.737441][   T29] audit: type=1326 audit(2000000013.880:7730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6781 comm="syz.4.1042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5708ece169 code=0x7ffc0000
[  118.763600][ T6788] EXT4-fs (loop4): can't mount with data_err=abort, fs mounted w/o journal
[  118.798271][ T3382] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  118.820702][ T6796] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  118.983124][ T6815] IPVS: Error joining to the multicast group
[  119.029783][ T6817] loop4: detected capacity change from 0 to 128
[  119.041299][ T6815] netlink: 'syz.6.1054': attribute type 11 has an invalid length.
[  119.056857][ T6817] FAULT_INJECTION: forcing a failure.
[  119.056857][ T6817] name failslab, interval 1, probability 0, space 0, times 0
[  119.069693][ T6817] CPU: 1 UID: 0 PID: 6817 Comm: syz.4.1055 Not tainted 6.15.0-rc2-syzkaller-00257-gb5c6891b2c5b #0 PREEMPT(voluntary) 
[  119.069724][ T6817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  119.069808][ T6817] Call Trace:
[  119.069816][ T6817]  <TASK>
[  119.069824][ T6817]  dump_stack_lvl+0xf6/0x150
[  119.069889][ T6817]  dump_stack+0x15/0x1a
[  119.069944][ T6817]  should_fail_ex+0x261/0x270
[  119.069974][ T6817]  should_failslab+0x8f/0xb0
[  119.070001][ T6817]  kmem_cache_alloc_node_noprof+0x5c/0x340
[  119.070090][ T6817]  ? __alloc_skb+0x10d/0x320
[  119.070130][ T6817]  __alloc_skb+0x10d/0x320
[  119.070153][ T6817]  netlink_alloc_large_skb+0xad/0xe0
[  119.070188][ T6817]  netlink_sendmsg+0x3da/0x720
[  119.070213][ T6817]  ? __pfx_netlink_sendmsg+0x10/0x10
[  119.070236][ T6817]  __sock_sendmsg+0x140/0x180
[  119.070311][ T6817]  ____sys_sendmsg+0x350/0x4e0
[  119.070340][ T6817]  __sys_sendmsg+0x1a0/0x240
[  119.070380][ T6817]  __x64_sys_sendmsg+0x46/0x50
[  119.070409][ T6817]  x64_sys_call+0x26f3/0x2e10
[  119.070436][ T6817]  do_syscall_64+0xc9/0x1a0
[  119.070522][ T6817]  ? clear_bhb_loop+0x25/0x80
[  119.070567][ T6817]  ? clear_bhb_loop+0x25/0x80
[  119.070587][ T6817]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.070608][ T6817] RIP: 0033:0x7f5708ece169
[  119.070623][ T6817] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  119.070679][ T6817] RSP: 002b:00007f5707537038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  119.070797][ T6817] RAX: ffffffffffffffda RBX: 00007f57090f5fa0 RCX: 00007f5708ece169
[  119.070812][ T6817] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000005
[  119.070841][ T6817] RBP: 00007f5707537090 R08: 0000000000000000 R09: 0000000000000000
[  119.070853][ T6817] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  119.070895][ T6817] R13: 0000000000000000 R14: 00007f57090f5fa0 R15: 00007fffdf9378f8
[  119.070919][ T6817]  </TASK>
[  119.384105][ T6822] loop5: detected capacity change from 0 to 512
[  119.408811][ T6828] loop6: detected capacity change from 0 to 1024
[  119.415789][ T6822] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  119.416006][ T6828] journal_path: Lookup failure for './file0'
[  119.430391][ T6828] EXT4-fs: error: could not find journal device path
[  119.448357][ T6822] ext4 filesystem being mounted at /203/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  119.461528][ T6822] EXT4-fs error (device loop5): ext4_xattr_block_get:593: inode #15: comm syz.5.1058: corrupted xattr block 19: overlapping e_value 
[  119.491813][ T6822] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=15
[  119.507624][ T6822] EXT4-fs error (device loop5): ext4_xattr_block_get:593: inode #15: comm syz.5.1058: corrupted xattr block 19: overlapping e_value 
[  119.528013][ T6822] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=15
[  119.628505][ T6828] loop6: detected capacity change from 0 to 1024
[  119.641347][ T6839] loop4: detected capacity change from 0 to 512
[  119.731196][ T6839] EXT4-fs (loop4): orphan cleanup on readonly fs
[  119.748420][ T6839] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1063: bg 0: block 248: padding at end of block bitmap is not set
[  119.788908][ T6845] loop5: detected capacity change from 0 to 2048
[  119.795675][ T6845] EXT4-fs: Ignoring removed bh option
[  119.812551][ T6839] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.1063: Failed to acquire dquot type 1
[  119.837727][ T3382] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  119.880689][ T6839] EXT4-fs (loop4): 1 truncate cleaned up
[  119.908251][ T6839] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  119.927450][ T6849] EXT4-fs error (device loop6): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  119.947710][ T6839] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.1063: Failed to acquire dquot type 1
[  119.997799][ T6839] EXT4-fs warning (device loop4): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-28, ino=4). Please run e2fsck to fix.
[  120.278384][  T110] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  120.317563][  T110] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  120.329840][  T110] EXT4-fs (loop5): This should not happen!! Data will be lost
[  120.329840][  T110] 
[  120.339554][  T110] EXT4-fs (loop5): Total free blocks count 0
[  120.345560][  T110] EXT4-fs (loop5): Free/Dirty block details
[  120.351515][  T110] EXT4-fs (loop5): free_blocks=2415919104
[  120.357254][  T110] EXT4-fs (loop5): dirty_blocks=8224
[  120.362593][  T110] EXT4-fs (loop5): Block reservation details
[  120.368622][  T110] EXT4-fs (loop5): i_reserved_data_blocks=514
[  120.389167][   T51] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 2048 with error 28
[  120.401808][   T51] EXT4-fs (loop5): This should not happen!! Data will be lost
[  120.401808][   T51] 
[  120.475864][ T6862] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  120.637792][ T3382] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  120.647170][   T51] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  120.655606][ T6866] loop5: detected capacity change from 0 to 1024
[  120.671321][ T6866] EXT4-fs: Ignoring removed nobh option
[  120.676968][ T6866] EXT4-fs: Ignoring removed bh option
[  120.718144][ T6866] EXT4-fs (loop5): can't mount with data_err=abort, fs mounted w/o journal
[  120.740924][ T6866] __nla_validate_parse: 8 callbacks suppressed
[  120.740943][ T6866] netlink: 292 bytes leftover after parsing attributes in process `syz.5.1067'.
[  120.877748][   T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  120.885170][ T6879] loop4: detected capacity change from 0 to 2048
[  120.960805][ T6879] Alternate GPT is invalid, using primary GPT.
[  120.967145][ T6879]  loop4: p1 p2 p3
[  121.007990][ T6887] loop5: detected capacity change from 0 to 128
[  121.101683][ T6897] bridge0: entered promiscuous mode
[  121.114524][ T6897] macvlan2: entered promiscuous mode
[  121.137628][ T6897] bridge0: port 3(macvlan2) entered blocking state
[  121.144266][ T6897] bridge0: port 3(macvlan2) entered disabled state
[  121.172453][ T6897] macvlan2: entered allmulticast mode
[  121.177916][ T6897] bridge0: entered allmulticast mode
[  121.201113][ T6898] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1077'.
[  121.220764][ T6897] macvlan2: left allmulticast mode
[  121.225957][ T6897] bridge0: left allmulticast mode
[  121.232903][ T6897] bridge0: left promiscuous mode
[  121.270815][ T6898] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1077'.
[  121.303447][ T6905] FAULT_INJECTION: forcing a failure.
[  121.303447][ T6905] name failslab, interval 1, probability 0, space 0, times 0
[  121.316278][ T6905] CPU: 1 UID: 0 PID: 6905 Comm: syz.6.1083 Not tainted 6.15.0-rc2-syzkaller-00257-gb5c6891b2c5b #0 PREEMPT(voluntary) 
[  121.316306][ T6905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  121.316357][ T6905] Call Trace:
[  121.316362][ T6905]  <TASK>
[  121.316369][ T6905]  dump_stack_lvl+0xf6/0x150
[  121.316404][ T6905]  dump_stack+0x15/0x1a
[  121.316450][ T6905]  should_fail_ex+0x261/0x270
[  121.316480][ T6905]  should_failslab+0x8f/0xb0
[  121.316507][ T6905]  kmem_cache_alloc_node_noprof+0x5c/0x340
[  121.316558][ T6905]  ? __alloc_skb+0x10d/0x320
[  121.316578][ T6905]  __alloc_skb+0x10d/0x320
[  121.316598][ T6905]  netlink_alloc_large_skb+0xad/0xe0
[  121.316636][ T6905]  netlink_sendmsg+0x3da/0x720
[  121.316683][ T6905]  ? __pfx_netlink_sendmsg+0x10/0x10
[  121.316708][ T6905]  __sock_sendmsg+0x140/0x180
[  121.316748][ T6905]  ____sys_sendmsg+0x350/0x4e0
[  121.316776][ T6905]  __sys_sendmsg+0x1a0/0x240
[  121.316820][ T6905]  __x64_sys_sendmsg+0x46/0x50
[  121.316848][ T6905]  x64_sys_call+0x26f3/0x2e10
[  121.316921][ T6905]  do_syscall_64+0xc9/0x1a0
[  121.317017][ T6905]  ? clear_bhb_loop+0x25/0x80
[  121.317043][ T6905]  ? clear_bhb_loop+0x25/0x80
[  121.317070][ T6905]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.317149][ T6905] RIP: 0033:0x7fb0e564e169
[  121.317195][ T6905] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.317212][ T6905] RSP: 002b:00007fb0e3cb7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  121.317287][ T6905] RAX: ffffffffffffffda RBX: 00007fb0e5875fa0 RCX: 00007fb0e564e169
[  121.317303][ T6905] RDX: 0000000000000000 RSI: 00002000000012c0 RDI: 0000000000000004
[  121.317316][ T6905] RBP: 00007fb0e3cb7090 R08: 0000000000000000 R09: 0000000000000000
[  121.317328][ T6905] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  121.317339][ T6905] R13: 0000000000000000 R14: 00007fb0e5875fa0 R15: 00007fffa3722ae8
[  121.317357][ T6905]  </TASK>
[  121.538196][ T6887] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[  121.546311][ T6887] FAT-fs (loop5): Filesystem has been set read-only
[  121.556430][ T6887] +}[@: attempt to access beyond end of device
[  121.556430][ T6887] loop5: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  121.570824][ T6887] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[  121.578992][ T6887] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[  121.591754][ T6887] +}[@: attempt to access beyond end of device
[  121.591754][ T6887] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[  121.611092][ T6887] +}[@: attempt to access beyond end of device
[  121.611092][ T6887] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[  121.626796][ T6912] loop2: detected capacity change from 0 to 512
[  121.645082][ T6912] EXT4-fs (loop2): orphan cleanup on readonly fs
[  121.662297][ T6912] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1086: bg 0: block 248: padding at end of block bitmap is not set
[  121.698269][ T6912] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.1086: Failed to acquire dquot type 1
[  121.775592][ T6912] EXT4-fs (loop2): 1 truncate cleaned up
[  121.792650][ T6912] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  121.824142][ T6912] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.1086: Failed to acquire dquot type 1
[  121.862990][ T6912] EXT4-fs warning (device loop2): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-28, ino=4). Please run e2fsck to fix.
[  121.917833][ T3382] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  121.943877][ T6934] loop2: detected capacity change from 0 to 512
[  121.984421][ T6934] EXT4-fs (loop2): orphan cleanup on readonly fs
[  122.002067][ T6934] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1095: bg 0: block 248: padding at end of block bitmap is not set
[  122.002619][ T6944] loop5: detected capacity change from 0 to 512
[  122.023044][ T6936] loop4: detected capacity change from 0 to 1024
[  122.029999][ T6934] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.1095: Failed to acquire dquot type 1
[  122.030869][ T6944] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  122.042588][ T6934] EXT4-fs (loop2): 1 truncate cleaned up
[  122.051944][ T6936] EXT4-fs: Ignoring removed nobh option
[  122.061560][ T6936] EXT4-fs: Ignoring removed bh option
[  122.071696][ T6934] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  122.081593][ T6936] EXT4-fs (loop4): can't mount with data_err=abort, fs mounted w/o journal
[  122.093308][ T6944] ext4 filesystem being mounted at /218/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.108766][ T6934] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.1095: Failed to acquire dquot type 1
[  122.124104][ T6944] EXT4-fs error (device loop5): ext4_xattr_block_get:593: inode #15: comm syz.5.1099: corrupted xattr block 19: overlapping e_value 
[  122.140837][ T6936] netlink: 292 bytes leftover after parsing attributes in process `syz.4.1096'.
[  122.150179][ T6934] EXT4-fs warning (device loop2): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-28, ino=4). Please run e2fsck to fix.
[  122.150255][ T6944] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=15
[  122.173932][ T6944] EXT4-fs error (device loop5): ext4_xattr_block_get:593: inode #15: comm syz.5.1099: corrupted xattr block 19: overlapping e_value 
[  122.191506][ T6944] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=15
[  122.355777][ T6970] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1108'.
[  122.365062][ T6970] IPVS: Error joining to the multicast group
[  122.374261][ T6970] netlink: 'syz.5.1108': attribute type 11 has an invalid length.
[  122.382673][ T6970] netlink: 448 bytes leftover after parsing attributes in process `syz.5.1108'.
[  122.484172][ T6980] loop2: detected capacity change from 0 to 512
[  122.492607][ T6980] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  122.501787][ T6979] loop3: detected capacity change from 0 to 2048
[  122.514981][ T6979] EXT4-fs: Ignoring removed bh option
[  122.532935][ T6980] ext4 filesystem being mounted at /210/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.624609][ T6980] EXT4-fs error (device loop2): ext4_xattr_block_get:593: inode #15: comm syz.2.1113: corrupted xattr block 19: overlapping e_value 
[  122.701532][ T6980] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[  122.767655][ T6980] EXT4-fs error (device loop2): ext4_xattr_block_get:593: inode #15: comm syz.2.1113: corrupted xattr block 19: overlapping e_value 
[  122.791893][ T6980] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[  122.957681][ T3382] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  122.986012][   T51] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  123.001191][   T51] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  123.013423][   T51] EXT4-fs (loop3): This should not happen!! Data will be lost
[  123.013423][   T51] 
[  123.023273][   T51] EXT4-fs (loop3): Total free blocks count 0
[  123.029307][   T51] EXT4-fs (loop3): Free/Dirty block details
[  123.035216][   T51] EXT4-fs (loop3): free_blocks=2415919104
[  123.041099][   T51] EXT4-fs (loop3): dirty_blocks=8224
[  123.046391][   T51] EXT4-fs (loop3): Block reservation details
[  123.052503][   T51] EXT4-fs (loop3): i_reserved_data_blocks=514
[  123.084743][ T7001] loop2: detected capacity change from 0 to 1024
[  123.092889][ T7001] EXT4-fs: Ignoring removed nobh option
[  123.098553][ T7001] EXT4-fs: Ignoring removed bh option
[  123.107904][   T51] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 2048 with error 28
[  123.120617][   T51] EXT4-fs (loop3): This should not happen!! Data will be lost
[  123.120617][   T51] 
[  123.130470][ T7001] EXT4-fs (loop2): can't mount with data_err=abort, fs mounted w/o journal
[  123.143156][ T7001] netlink: 292 bytes leftover after parsing attributes in process `syz.2.1121'.
[  123.355894][ T7014] loop4: detected capacity change from 0 to 1024
[  123.381220][ T7014] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (29950!=20869)
[  123.395935][ T7014] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  123.410341][ T7014] EXT4-fs (loop4): invalid journal inode
[  123.416101][ T7014] EXT4-fs (loop4): can't get journal size
[  123.437655][ T7014] EXT4-fs error (device loop4): ext4_protect_reserved_inode:182: inode #2: comm syz.4.1126: blocks 48-48 from inode overlap system zone
[  123.457688][   T29] kauditd_printk_skb: 641 callbacks suppressed
[  123.457703][   T29] audit: type=1326 audit(2000000018.820:8360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7015 comm="syz.3.1120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b99a9e169 code=0x7ffc0000
[  123.477659][ T7014] EXT4-fs (loop4): failed to initialize system zone (-117)
[  123.487422][   T29] audit: type=1326 audit(2000000018.820:8361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7015 comm="syz.3.1120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b99a9e169 code=0x7ffc0000
[  123.528900][ T7014] EXT4-fs (loop4): mount failed
[  123.600965][ T7028] loop3: detected capacity change from 0 to 2048
[  123.607920][ T7028] EXT4-fs: Ignoring removed bh option
[  123.651943][   T29] audit: type=1326 audit(2000000019.010:8362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7004 comm="syz.2.1123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f601348e169 code=0x7ffc0000
[  123.682517][   T29] audit: type=1326 audit(2000000019.030:8363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7004 comm="syz.2.1123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f601348e169 code=0x7ffc0000
[  123.707699][ T3385] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  123.842145][   T29] audit: type=1326 audit(2000000019.200:8364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7035 comm="syz.4.1132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5708ece169 code=0x7ffc0000
[  123.990469][   T29] audit: type=1326 audit(2000000019.200:8365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7035 comm="syz.4.1132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5708ece169 code=0x7ffc0000
[  124.014049][   T29] audit: type=1326 audit(2000000019.200:8366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7035 comm="syz.4.1132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5708ece169 code=0x7ffc0000
[  124.037490][   T29] audit: type=1326 audit(2000000019.230:8367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7035 comm="syz.4.1132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5708ece169 code=0x7ffc0000
[  124.060922][   T29] audit: type=1326 audit(2000000019.260:8368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7035 comm="syz.4.1132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7f5708ece169 code=0x7ffc0000
[  124.084368][   T29] audit: type=1326 audit(2000000019.260:8369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7035 comm="syz.4.1132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5708ece169 code=0x7ffc0000
[  124.108440][ T3382] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  124.486192][ T7060] FAULT_INJECTION: forcing a failure.
[  124.486192][ T7060] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  124.499355][ T7060] CPU: 1 UID: 0 PID: 7060 Comm: syz.2.1141 Not tainted 6.15.0-rc2-syzkaller-00257-gb5c6891b2c5b #0 PREEMPT(voluntary) 
[  124.499461][ T7060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  124.499477][ T7060] Call Trace:
[  124.499485][ T7060]  <TASK>
[  124.499494][ T7060]  dump_stack_lvl+0xf6/0x150
[  124.499525][ T7060]  dump_stack+0x15/0x1a
[  124.499565][ T7060]  should_fail_ex+0x261/0x270
[  124.499593][ T7060]  should_fail+0xb/0x10
[  124.499613][ T7060]  should_fail_usercopy+0x1a/0x20
[  124.499641][ T7060]  _copy_from_user+0x1c/0xa0
[  124.499745][ T7060]  copy_msghdr_from_user+0x54/0x2b0
[  124.499780][ T7060]  __sys_sendmmsg+0x1eb/0x4b0
[  124.499833][ T7060]  __x64_sys_sendmmsg+0x57/0x70
[  124.499879][ T7060]  x64_sys_call+0x2b53/0x2e10
[  124.499907][ T7060]  do_syscall_64+0xc9/0x1a0
[  124.499934][ T7060]  ? clear_bhb_loop+0x25/0x80
[  124.499960][ T7060]  ? clear_bhb_loop+0x25/0x80
[  124.499987][ T7060]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.500014][ T7060] RIP: 0033:0x7f601348e169
[  124.500030][ T7060] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  124.500047][ T7060] RSP: 002b:00007f6011af7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  124.500065][ T7060] RAX: ffffffffffffffda RBX: 00007f60136b5fa0 RCX: 00007f601348e169
[  124.500077][ T7060] RDX: 0000000000000001 RSI: 0000200000000000 RDI: 0000000000000003
[  124.500090][ T7060] RBP: 00007f6011af7090 R08: 0000000000000000 R09: 0000000000000000
[  124.500166][ T7060] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001
[  124.500177][ T7060] R13: 0000000000000000 R14: 00007f60136b5fa0 R15: 00007ffc0e6ad808
[  124.500196][ T7060]  </TASK>
[  124.769961][   T51] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  124.785018][   T51] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  124.797324][   T51] EXT4-fs (loop3): This should not happen!! Data will be lost
[  124.797324][   T51] 
[  124.807171][   T51] EXT4-fs (loop3): Total free blocks count 0
[  124.813278][   T51] EXT4-fs (loop3): Free/Dirty block details
[  124.819279][   T51] EXT4-fs (loop3): free_blocks=2415919104
[  124.825015][   T51] EXT4-fs (loop3): dirty_blocks=8000
[  124.830356][   T51] EXT4-fs (loop3): Block reservation details
[  124.836371][   T51] EXT4-fs (loop3): i_reserved_data_blocks=500
[  124.887864][ T7072] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1148'.
[  124.902652][   T37] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 2048 with error 28
[  124.903052][ T7072] IPVS: Error joining to the multicast group
[  124.915234][   T37] EXT4-fs (loop3): This should not happen!! Data will be lost
[  124.915234][   T37] 
[  124.962408][ T7072] netlink: 'syz.6.1148': attribute type 11 has an invalid length.
[  124.971427][ T7072] netlink: 448 bytes leftover after parsing attributes in process `syz.6.1148'.
[  124.974476][ T7084] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1153'.
[  125.058496][ T7092] FAULT_INJECTION: forcing a failure.
[  125.058496][ T7092] name failslab, interval 1, probability 0, space 0, times 0
[  125.071392][ T7092] CPU: 0 UID: 0 PID: 7092 Comm: syz.3.1146 Not tainted 6.15.0-rc2-syzkaller-00257-gb5c6891b2c5b #0 PREEMPT(voluntary) 
[  125.071431][ T7092] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  125.071477][ T7092] Call Trace:
[  125.071485][ T7092]  <TASK>
[  125.071494][ T7092]  dump_stack_lvl+0xf6/0x150
[  125.071518][ T7092]  dump_stack+0x15/0x1a
[  125.071534][ T7092]  should_fail_ex+0x261/0x270
[  125.071558][ T7092]  should_failslab+0x8f/0xb0
[  125.071585][ T7092]  __kmalloc_node_noprof+0xaf/0x420
[  125.071688][ T7092]  ? crypto_create_tfm_node+0x59/0x240
[  125.071715][ T7092]  crypto_create_tfm_node+0x59/0x240
[  125.071788][ T7092]  ? crypto_alg_mod_lookup+0x1ff/0x4d0
[  125.071808][ T7092]  crypto_alloc_tfm_node+0xd1/0x290
[  125.071831][ T7092]  crypto_alloc_ahash+0x2f/0x40
[  125.071862][ T7092]  tcp_sigpool_alloc_ahash+0x43e/0x6d0
[  125.071933][ T7092]  tcp_md5_alloc_sigpool+0x1b/0x60
[  125.071957][ T7092]  tcp_md5_do_add+0x86/0x1c0
[  125.072013][ T7092]  tcp_v6_parse_md5_keys+0x3ec/0x440
[  125.072088][ T7092]  do_tcp_setsockopt+0xf6c/0x1710
[  125.072130][ T7092]  ? selinux_socket_setsockopt+0x1d9/0x210
[  125.072235][ T7092]  tcp_setsockopt+0x50/0xb0
[  125.072276][ T7092]  sock_common_setsockopt+0x64/0x80
[  125.072316][ T7092]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  125.072372][ T7092]  __sys_setsockopt+0x187/0x200
[  125.072407][ T7092]  __x64_sys_setsockopt+0x66/0x80
[  125.072430][ T7092]  x64_sys_call+0x2a09/0x2e10
[  125.072452][ T7092]  do_syscall_64+0xc9/0x1a0
[  125.072480][ T7092]  ? clear_bhb_loop+0x25/0x80
[  125.072568][ T7092]  ? clear_bhb_loop+0x25/0x80
[  125.072589][ T7092]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.072609][ T7092] RIP: 0033:0x7f3b99a9e169
[  125.072624][ T7092] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  125.072643][ T7092] RSP: 002b:00007f3b98107038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  125.072663][ T7092] RAX: ffffffffffffffda RBX: 00007f3b99cc5fa0 RCX: 00007f3b99a9e169
[  125.072675][ T7092] RDX: 000000000000000e RSI: 0000000000000006 RDI: 0000000000000003
[  125.072699][ T7092] RBP: 00007f3b98107090 R08: 00000000000000d8 R09: 0000000000000000
[  125.072712][ T7092] R10: 0000200000000300 R11: 0000000000000246 R12: 0000000000000001
[  125.072727][ T7092] R13: 0000000000000000 R14: 00007f3b99cc5fa0 R15: 00007ffd607b6498
[  125.072750][ T7092]  </TASK>
[  125.312441][ T3382] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  125.399173][ T7095] xt_CT: No such helper "pptp"
[  125.407671][ T7095] loop5: detected capacity change from 0 to 512
[  125.419828][ T7095] EXT4-fs (loop5): orphan cleanup on readonly fs
[  125.427824][ T7095] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1158: bg 0: block 248: padding at end of block bitmap is not set
[  125.442664][ T7095] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.1158: Failed to acquire dquot type 1
[  125.467046][ T7095] EXT4-fs (loop5): 1 truncate cleaned up
[  125.486909][ T7105] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  125.495523][ T7095] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  125.526006][ T7095] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.1158: Failed to acquire dquot type 1
[  125.578869][ T7095] EXT4-fs warning (device loop5): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-28, ino=4). Please run e2fsck to fix.
[  125.730483][ T7116] sd 0:0:1:0: device reset
[  125.750918][ T7122] __nla_validate_parse: 1 callbacks suppressed
[  125.750936][ T7122] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1166'.
[  125.782690][ T7122] IPVS: Error joining to the multicast group
[  125.792847][ T7122] netlink: 'syz.5.1166': attribute type 11 has an invalid length.
[  125.800899][ T7122] netlink: 448 bytes leftover after parsing attributes in process `syz.5.1166'.
[  126.116326][ T7145] xt_CT: No such helper "pptp"
[  126.289936][ T7145] loop2: detected capacity change from 0 to 512
[  126.344634][ T7145] EXT4-fs (loop2): orphan cleanup on readonly fs
[  126.395837][ T7145] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1175: bg 0: block 248: padding at end of block bitmap is not set
[  126.417942][   T51] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  126.454093][ T3526] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  126.462634][ T7145] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.1175: Failed to acquire dquot type 1
[  126.475647][ T7145] EXT4-fs (loop2): 1 truncate cleaned up
[  126.505201][ T7168] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1184'.
[  126.514628][ T7145] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  126.525797][ T7145] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.1175: Failed to acquire dquot type 1
[  126.528782][ T7168] bridge_slave_0: left allmulticast mode
[  126.542882][ T7168] bridge_slave_0: left promiscuous mode
[  126.548696][ T7168] bridge0: port 1(bridge_slave_0) entered disabled state
[  126.558729][ T7168] bridge_slave_1: left allmulticast mode
[  126.561220][ T7145] EXT4-fs warning (device loop2): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-28, ino=4). Please run e2fsck to fix.
[  126.564439][ T7168] bridge_slave_1: left promiscuous mode
[  126.564542][ T7168] bridge0: port 2(bridge_slave_1) entered disabled state
[  126.594894][ T7168] : (slave bond_slave_0): Releasing backup interface
[  126.612569][ T7168] : (slave bond_slave_1): Releasing backup interface
[  126.622021][ T7168] team0: Port device team_slave_0 removed
[  126.629726][ T7168] team0: Port device team_slave_1 removed
[  126.635985][ T7168] batman_adv: batadv0: Removing interface: batadv_slave_0
[  126.643807][ T7168] batman_adv: batadv0: Removing interface: batadv_slave_1
[  126.673987][ T7189] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1191'.
[  126.683540][ T7189] IPVS: Error joining to the multicast group
[  126.695637][ T7189] netlink: 'syz.2.1191': attribute type 11 has an invalid length.
[  126.703724][ T7189] netlink: 448 bytes leftover after parsing attributes in process `syz.2.1191'.
[  126.780065][ T7198] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1195'.
[  126.829848][ T7204] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  126.846056][ T7204] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  126.855475][ T7202] bond_slave_1: mtu less than device minimum
[  126.897105][ T7215] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1200'.
[  126.936130][ T7220] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1204'.
[  126.945346][ T7220] IPVS: Error joining to the multicast group
[  126.952568][ T7220] netlink: 'syz.5.1204': attribute type 11 has an invalid length.
[  126.960841][ T7220] netlink: 448 bytes leftover after parsing attributes in process `syz.5.1204'.
[  127.029254][ T7235] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1210'.
[  127.046944][ T7237] loop5: detected capacity change from 0 to 256
[  127.054759][ T7237] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  127.111133][ T7246] FAULT_INJECTION: forcing a failure.
[  127.111133][ T7246] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  127.124436][ T7246] CPU: 0 UID: 0 PID: 7246 Comm: syz.5.1215 Not tainted 6.15.0-rc2-syzkaller-00257-gb5c6891b2c5b #0 PREEMPT(voluntary) 
[  127.124464][ T7246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  127.124532][ T7246] Call Trace:
[  127.124539][ T7246]  <TASK>
[  127.124546][ T7246]  dump_stack_lvl+0xf6/0x150
[  127.124567][ T7246]  dump_stack+0x15/0x1a
[  127.124581][ T7246]  should_fail_ex+0x261/0x270
[  127.124665][ T7246]  should_fail+0xb/0x10
[  127.124751][ T7246]  should_fail_usercopy+0x1a/0x20
[  127.124772][ T7246]  _copy_from_user+0x1c/0xa0
[  127.124797][ T7246]  do_semtimedop+0x15a/0x220
[  127.124833][ T7246]  __x64_sys_semtimedop+0xd0/0x100
[  127.124956][ T7246]  x64_sys_call+0x2c11/0x2e10
[  127.124975][ T7246]  do_syscall_64+0xc9/0x1a0
[  127.125027][ T7246]  ? clear_bhb_loop+0x25/0x80
[  127.125045][ T7246]  ? clear_bhb_loop+0x25/0x80
[  127.125076][ T7246]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.125094][ T7246] RIP: 0033:0x7f48d61ae169
[  127.125107][ T7246] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  127.125122][ T7246] RSP: 002b:00007f48d4817038 EFLAGS: 00000246 ORIG_RAX: 00000000000000dc
[  127.125137][ T7246] RAX: ffffffffffffffda RBX: 00007f48d63d5fa0 RCX: 00007f48d61ae169
[  127.125148][ T7246] RDX: 0000000000000004 RSI: 0000200000000240 RDI: 0000000000000000
[  127.125158][ T7246] RBP: 00007f48d4817090 R08: 0000000000000000 R09: 0000000000000000
[  127.125168][ T7246] R10: 0000200000000280 R11: 0000000000000246 R12: 0000000000000001
[  127.125197][ T7246] R13: 0000000000000000 R14: 00007f48d63d5fa0 R15: 00007ffc61c88008
[  127.125213][ T7246]  </TASK>
[  127.313457][ T7250] loop5: detected capacity change from 0 to 2048
[  127.345356][ T7255] IPVS: Error joining to the multicast group
[  127.352694][ T7255] netlink: 'syz.6.1218': attribute type 11 has an invalid length.
[  127.527651][ T3382] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  127.623709][ T7268] loop2: detected capacity change from 0 to 1024
[  127.630633][ T7268] journal_path: Lookup failure for './file0'
[  127.636721][ T7268] EXT4-fs: error: could not find journal device path
[  127.660995][ T7270] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  127.677607][ T3526] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  127.768351][ T7268] loop2: detected capacity change from 0 to 1024
[  127.824574][ T7270] 9pnet_fd: Insufficient options for proto=fd
[  127.827959][ T7282] IPVS: Error joining to the multicast group
[  127.841412][ T7282] netlink: 'syz.3.1230': attribute type 11 has an invalid length.
[  127.902225][ T7285] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  127.994422][ T7287] EXT4-fs error (device loop2): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  128.076526][ T7296] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  128.085405][ T7296] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  128.238728][ T7305] IPVS: Error joining to the multicast group
[  128.246388][ T7305] netlink: 'syz.3.1239': attribute type 11 has an invalid length.
[  128.361447][ T7317] bond_slave_1: mtu less than device minimum
[  128.373824][ T7319] loop3: detected capacity change from 0 to 1024
[  128.381288][ T7319] journal_path: Lookup failure for './file0'
[  128.387329][ T7319] EXT4-fs: error: could not find journal device path
[  128.402767][ T7319] loop3: detected capacity change from 0 to 1024
[  128.440551][ T7319] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  128.489329][ T7329] IPVS: Error joining to the multicast group
[  128.491077][ T7331] loop5: detected capacity change from 0 to 1024
[  128.502985][ T7331] journal_path: Lookup failure for './file0'
[  128.509127][ T7331] EXT4-fs: error: could not find journal device path
[  128.516255][   T29] kauditd_printk_skb: 426 callbacks suppressed
[  128.516273][   T29] audit: type=1326 audit(2000000023.860:8788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7328 comm="syz.2.1249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f601348e169 code=0x7ffc0000
[  128.545978][   T29] audit: type=1326 audit(2000000023.860:8789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7328 comm="syz.2.1249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f601348e169 code=0x7ffc0000
[  128.569686][   T29] audit: type=1326 audit(2000000023.860:8790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7328 comm="syz.2.1249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=226 compat=0 ip=0x7f601348e169 code=0x7ffc0000
[  128.569702][ T7331] loop5: detected capacity change from 0 to 1024
[  128.593386][ T3526] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  128.599681][   T29] audit: type=1326 audit(2000000023.860:8791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7328 comm="syz.2.1249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f601348e169 code=0x7ffc0000
[  128.631474][   T29] audit: type=1326 audit(2000000023.860:8792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7328 comm="syz.2.1249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f601348e169 code=0x7ffc0000
[  128.655023][   T29] audit: type=1326 audit(2000000023.860:8793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7328 comm="syz.2.1249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f601348e169 code=0x7ffc0000
[  128.657699][ T7331] EXT4-fs mount: 72 callbacks suppressed
[  128.657718][ T7331] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  128.678476][   T29] audit: type=1326 audit(2000000023.860:8794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7328 comm="syz.2.1249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f601348e169 code=0x7ffc0000
[  128.719804][   T29] audit: type=1326 audit(2000000023.860:8795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7328 comm="syz.2.1249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f601348e169 code=0x7ffc0000
[  128.722714][ T7331] EXT4-fs error (device loop5): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  128.743472][   T29] audit: type=1326 audit(2000000023.860:8796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7328 comm="syz.2.1249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f601348e169 code=0x7ffc0000
[  128.781129][   T29] audit: type=1326 audit(2000000023.860:8797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7328 comm="syz.2.1249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f601348e169 code=0x7ffc0000
[  128.819600][ T3609] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.000117][ T7362] syzkaller1: entered promiscuous mode
[  129.005686][ T7362] syzkaller1: entered allmulticast mode
[  129.135376][ T7362] loop2: detected capacity change from 0 to 512
[  129.145117][ T7362] EXT4-fs error (device loop2): ext4_map_blocks:675: inode #2: block 3: comm syz.2.1262: lblock 0 mapped to illegal pblock 3 (length 1)
[  129.160468][ T7362] EXT4-fs (loop2): Remounting filesystem read-only
[  129.167037][ T7362] EXT4-fs warning (device loop2): dx_probe:793: inode #2: lblock 0: comm syz.2.1262: error -117 reading directory block
[  129.181124][ T7362] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -117
[  129.190506][ T7362] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.206044][ T7362] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.424187][ T7371] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  129.465179][ T7371] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  129.597736][   T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  129.658846][ T3384] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  129.913568][ T7390] loop2: detected capacity change from 0 to 128
[  129.951563][ T7386] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  129.959470][ T7386] FAT-fs (loop2): Filesystem has been set read-only
[  129.970391][ T7386] +}[@: attempt to access beyond end of device
[  129.970391][ T7386] loop2: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  129.997640][ T7386] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  130.005573][ T7386] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  130.017850][ T7386] +}[@: attempt to access beyond end of device
[  130.017850][ T7386] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  130.035887][ T7397] loop5: detected capacity change from 0 to 1024
[  130.045113][ T7397] journal_path: Lookup failure for './file0'
[  130.051206][ T7397] EXT4-fs: error: could not find journal device path
[  130.061292][ T7386] +}[@: attempt to access beyond end of device
[  130.061292][ T7386] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  130.165897][ T7397] loop5: detected capacity change from 0 to 1024
[  130.223202][ T7409] loop3: detected capacity change from 0 to 2048
[  130.233316][ T7397] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  130.294844][ T7413] loop4: detected capacity change from 0 to 512
[  130.312872][ T7413] EXT4-fs (loop4): orphan cleanup on readonly fs
[  130.322642][ T7409] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  130.341385][ T7413] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1281: bg 0: block 248: padding at end of block bitmap is not set
[  130.403845][ T7413] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.1281: Failed to acquire dquot type 1
[  130.430970][ T7413] EXT4-fs (loop4): 1 truncate cleaned up
[  130.466032][ T7413] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  130.580944][ T7435] loop2: detected capacity change from 0 to 128
[  130.590600][ T7435] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  130.598514][ T7435] FAT-fs (loop2): Filesystem has been set read-only
[  130.611459][ T7435] syz.2.1286: attempt to access beyond end of device
[  130.611459][ T7435] loop2: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  130.625421][ T7435] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  130.633441][ T7435] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  130.642655][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.642980][ T7435] syz.2.1286: attempt to access beyond end of device
[  130.642980][ T7435] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  130.665312][ T3526] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  130.676422][ T3609] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.725546][ T7435] syz.2.1286: attempt to access beyond end of device
[  130.725546][ T7435] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  130.820257][ T7454] FAULT_INJECTION: forcing a failure.
[  130.820257][ T7454] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  130.833421][ T7454] CPU: 0 UID: 0 PID: 7454 Comm: syz.5.1296 Not tainted 6.15.0-rc2-syzkaller-00257-gb5c6891b2c5b #0 PREEMPT(voluntary) 
[  130.833515][ T7454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  130.833531][ T7454] Call Trace:
[  130.833538][ T7454]  <TASK>
[  130.833544][ T7454]  dump_stack_lvl+0xf6/0x150
[  130.833620][ T7454]  dump_stack+0x15/0x1a
[  130.833641][ T7454]  should_fail_ex+0x261/0x270
[  130.833671][ T7454]  should_fail+0xb/0x10
[  130.833705][ T7454]  should_fail_usercopy+0x1a/0x20
[  130.833749][ T7454]  _copy_from_user+0x1c/0xa0
[  130.833810][ T7454]  copy_msghdr_from_user+0x54/0x2b0
[  130.833850][ T7454]  ? __fget_files+0x186/0x1c0
[  130.833876][ T7454]  do_recvmmsg+0x24d/0x6e0
[  130.833918][ T7454]  __x64_sys_recvmmsg+0xe4/0x170
[  130.834008][ T7454]  x64_sys_call+0x1b90/0x2e10
[  130.834034][ T7454]  do_syscall_64+0xc9/0x1a0
[  130.834099][ T7454]  ? clear_bhb_loop+0x25/0x80
[  130.834126][ T7454]  ? clear_bhb_loop+0x25/0x80
[  130.834150][ T7454]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.834257][ T7454] RIP: 0033:0x7f48d61ae169
[  130.834274][ T7454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  130.834294][ T7454] RSP: 002b:00007f48d4817038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  130.834316][ T7454] RAX: ffffffffffffffda RBX: 00007f48d63d5fa0 RCX: 00007f48d61ae169
[  130.834329][ T7454] RDX: 0000000000000001 RSI: 0000200000000100 RDI: 0000000000000004
[  130.834393][ T7454] RBP: 00007f48d4817090 R08: 0000000000000000 R09: 0000000000000000
[  130.834406][ T7454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  130.834419][ T7454] R13: 0000000000000000 R14: 00007f48d63d5fa0 R15: 00007ffc61c88008
[  130.834441][ T7454]  </TASK>
[  131.061241][ T7463] loop4: detected capacity change from 0 to 1024
[  131.075829][ T7463] journal_path: Lookup failure for './file0'
[  131.082027][ T7463] EXT4-fs: error: could not find journal device path
[  131.171168][ T7469] loop6: detected capacity change from 0 to 512
[  131.178380][ T7463] loop4: detected capacity change from 0 to 1024
[  131.201919][ T7469] EXT4-fs warning (device loop6): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  131.221509][ T7478] syz.5.1306: attempt to access beyond end of device
[  131.221509][ T7478] loop11: rw=4096, sector=2, nr_sectors = 2 limit=0
[  131.241631][ T7478] EXT4-fs (loop11): unable to read superblock
[  131.253354][ T7481] loop2: detected capacity change from 0 to 512
[  131.255664][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.269750][ T7469] EXT4-fs (loop6): mount failed
[  131.272657][ T7481] EXT4-fs (loop2): orphan cleanup on readonly fs
[  131.301498][ T7463] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  131.316668][ T7481] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1305: bg 0: block 248: padding at end of block bitmap is not set
[  131.356171][ T7492] loop6: detected capacity change from 0 to 1024
[  131.363463][ T7492] journal_path: Lookup failure for './file0'
[  131.369542][ T7492] EXT4-fs: error: could not find journal device path
[  131.376782][ T7481] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.1305: Failed to acquire dquot type 1
[  131.391251][ T7481] EXT4-fs (loop2): 1 truncate cleaned up
[  131.398945][ T7481] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  131.416533][ T7492] loop6: detected capacity change from 0 to 1024
[  131.440480][ T7496] loop3: detected capacity change from 0 to 512
[  131.455344][ T7499] tun0: tun_chr_ioctl cmd 1074025677
[  131.463433][ T7481] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  131.463920][ T7492] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  131.487979][ T7499] tun0: linktype set to 1
[  131.494208][ T7496] EXT4-fs (loop3): orphan cleanup on readonly fs
[  131.500916][ T7481] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.1305: Failed to acquire dquot type 1
[  131.513497][ T7496] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1311: bg 0: block 248: padding at end of block bitmap is not set
[  131.578865][ T7481] EXT4-fs warning (device loop2): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-28, ino=4). Please run e2fsck to fix.
[  131.601783][ T7496] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.1311: Failed to acquire dquot type 1
[  131.616200][ T7496] EXT4-fs (loop3): 1 truncate cleaned up
[  131.623728][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.633561][ T7496] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  131.656696][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.670630][ T7508] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  131.681594][ T5661] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.690805][   T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  131.699312][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.787113][ T7527] bond_slave_1: mtu less than device minimum
[  131.812329][ T7532] loop5: detected capacity change from 0 to 1024
[  131.826160][ T7532] journal_path: Lookup failure for './file0'
[  131.832250][ T7532] EXT4-fs: error: could not find journal device path
[  131.857946][ T7541] loop3: detected capacity change from 0 to 128
[  131.867620][ T7541] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[  131.875601][ T7541] FAT-fs (loop3): Filesystem has been set read-only
[  131.875829][ T7536] loop2: detected capacity change from 0 to 512
[  131.884732][ T7541] syz.3.1324: attempt to access beyond end of device
[  131.884732][ T7541] loop3: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  131.903124][ T7541] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[  131.911073][ T7541] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[  131.919467][ T7541] syz.3.1324: attempt to access beyond end of device
[  131.919467][ T7541] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[  131.933118][ T7536] EXT4-fs error (device loop2): ext4_orphan_get:1390: inode #15: comm syz.2.1321: iget: bad extended attribute block 1
[  131.942289][ T7541] syz.3.1324: attempt to access beyond end of device
[  131.942289][ T7541] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[  131.990500][ T7532] loop5: detected capacity change from 0 to 1024
[  131.993430][ T7536] EXT4-fs error (device loop2): ext4_orphan_get:1395: comm syz.2.1321: couldn't read orphan inode 15 (err -117)
[  132.014731][ T7550] __nla_validate_parse: 12 callbacks suppressed
[  132.014750][ T7550] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1328'.
[  132.015491][ T7548] loop4: detected capacity change from 0 to 1024
[  132.025309][ T7550] IPVS: Error joining to the multicast group
[  132.031577][ T7548] journal_path: Lookup failure for './file0'
[  132.039710][ T7536] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  132.042335][ T7548] EXT4-fs: error: could not find journal device path
[  132.074114][ T7550] netlink: 'syz.3.1328': attribute type 11 has an invalid length.
[  132.076340][ T7548] loop4: detected capacity change from 0 to 1024
[  132.084687][ T7550] netlink: 448 bytes leftover after parsing attributes in process `syz.3.1328'.
[  132.109610][ T7532] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  132.143306][ T7548] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  132.156967][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.166681][   T37] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  132.203318][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.261379][ T7565] loop4: detected capacity change from 0 to 1024
[  132.269168][ T7565] EXT4-fs: Ignoring removed nobh option
[  132.274961][ T7565] EXT4-fs: Ignoring removed bh option
[  132.314064][ T7565] EXT4-fs (loop4): can't mount with data_err=abort, fs mounted w/o journal
[  132.334049][ T3609] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.340148][ T7565] netlink: 292 bytes leftover after parsing attributes in process `syz.4.1333'.
[  132.396237][ T7579] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1339'.
[  132.405997][ T7579] IPVS: Error joining to the multicast group
[  132.413612][ T7579] netlink: 'syz.5.1339': attribute type 11 has an invalid length.
[  132.421715][ T7579] netlink: 448 bytes leftover after parsing attributes in process `syz.5.1339'.
[  132.478603][ T7584] loop3: detected capacity change from 0 to 2048
[  132.485239][ T7584] EXT4-fs: Ignoring removed bh option
[  132.513556][ T7584] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  132.729253][ T3526] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  132.773324][ T7600] loop5: detected capacity change from 0 to 2048
[  132.830850][ T7600] Alternate GPT is invalid, using primary GPT.
[  132.837231][ T7600]  loop5: p1 p2 p3
[  133.001920][   T12] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  133.038995][   T12] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  133.051279][   T12] EXT4-fs (loop3): This should not happen!! Data will be lost
[  133.051279][   T12] 
[  133.061053][   T12] EXT4-fs (loop3): Total free blocks count 0
[  133.067140][   T12] EXT4-fs (loop3): Free/Dirty block details
[  133.073114][   T12] EXT4-fs (loop3): free_blocks=2415919104
[  133.078954][   T12] EXT4-fs (loop3): dirty_blocks=8224
[  133.084283][   T12] EXT4-fs (loop3): Block reservation details
[  133.090343][   T12] EXT4-fs (loop3): i_reserved_data_blocks=514
[  133.171550][   T37] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 2048 with error 28
[  133.463522][ T7619] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1352'.
[  133.473942][ T7619] IPVS: Error joining to the multicast group
[  133.481312][ T7619] netlink: 'syz.3.1352': attribute type 11 has an invalid length.
[  133.491594][ T7619] netlink: 448 bytes leftover after parsing attributes in process `syz.3.1352'.
[  133.553868][   T29] kauditd_printk_skb: 602 callbacks suppressed
[  133.553884][   T29] audit: type=1326 audit(2000000028.910:9391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7613 comm="syz.2.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f601348e169 code=0x7ffc0000
[  133.583645][   T29] audit: type=1326 audit(2000000028.910:9392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7613 comm="syz.2.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=79 compat=0 ip=0x7f601348e169 code=0x7ffc0000
[  133.607170][   T29] audit: type=1326 audit(2000000028.910:9393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7613 comm="syz.2.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f601348e169 code=0x7ffc0000
[  133.630697][   T29] audit: type=1326 audit(2000000028.910:9394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7613 comm="syz.2.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f601348e169 code=0x7ffc0000
[  133.654278][   T29] audit: type=1326 audit(2000000028.910:9395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7613 comm="syz.2.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f601348e1a3 code=0x7ffc0000
[  133.677586][   T29] audit: type=1326 audit(2000000028.910:9396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7613 comm="syz.2.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f601348e1a3 code=0x7ffc0000
[  133.700978][   T29] audit: type=1326 audit(2000000028.910:9397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7613 comm="syz.2.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f601348e169 code=0x7ffc0000
[  133.724550][   T29] audit: type=1326 audit(2000000028.910:9398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7613 comm="syz.2.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f601348e169 code=0x7ffc0000
[  133.747983][   T29] audit: type=1326 audit(2000000028.910:9399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7613 comm="syz.2.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f601348e169 code=0x7ffc0000
[  133.771492][   T29] audit: type=1326 audit(2000000028.910:9400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7613 comm="syz.2.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f601348e169 code=0x7ffc0000
[  133.795218][   T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  133.805432][ T7632] bond_slave_1: mtu less than device minimum
[  133.813375][ T7631] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1357'.
[  133.822372][ T7631] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1357'.
[  133.886518][ T7640] loop6: detected capacity change from 0 to 128
[  133.897064][ T7640] FAT-fs (loop6): error, invalid access to FAT (entry 0x00000100)
[  133.905177][ T7640] FAT-fs (loop6): Filesystem has been set read-only
[  133.914212][ T7640] FAT-fs (loop6): error, invalid access to FAT (entry 0x00000100)
[  133.922222][ T7640] FAT-fs (loop6): error, invalid access to FAT (entry 0x00000100)
[  133.988800][ T7653] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1363'.
[  134.022613][ T7657] vlan2: entered allmulticast mode
[  134.027863][ T7657] veth0: entered allmulticast mode
[  134.052305][ T7653] IPVS: Error joining to the multicast group
[  134.059561][ T7653] netlink: 'syz.2.1363': attribute type 11 has an invalid length.
[  134.361847][ T7678] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  134.380162][ T7678] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  134.440163][ T7682] loop4: detected capacity change from 0 to 128
[  134.450745][ T7688] IPVS: Error joining to the multicast group
[  134.458480][ T7688] netlink: 'syz.5.1376': attribute type 11 has an invalid length.
[  134.470377][ T7682] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[  134.478338][ T7682] FAT-fs (loop4): Filesystem has been set read-only
[  134.498995][ T7682] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[  134.506903][ T7682] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[  134.556980][ T7692] loop5: detected capacity change from 0 to 2048
[  134.564677][ T7692] EXT4-fs: Ignoring removed bh option
[  134.606018][ T7692] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  134.651154][ T7700] loop4: detected capacity change from 0 to 512
[  134.661846][ T7700] EXT4-fs (loop4): orphan cleanup on readonly fs
[  134.679356][ T7700] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1381: bg 0: block 248: padding at end of block bitmap is not set
[  134.699426][ T7700] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.1381: Failed to acquire dquot type 1
[  134.712129][ T7700] EXT4-fs (loop4): 1 truncate cleaned up
[  134.727765][   T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  134.746855][ T7700] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  134.786050][ T7700] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  134.809156][ T3526] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  134.829246][ T7700] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  134.867786][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.912076][ T7716] IPVS: Error joining to the multicast group
[  134.922612][ T7716] netlink: 'syz.4.1387': attribute type 11 has an invalid length.
[  134.957690][ T7720] FAULT_INJECTION: forcing a failure.
[  134.957690][ T7720] name failslab, interval 1, probability 0, space 0, times 0
[  134.970394][ T7720] CPU: 0 UID: 0 PID: 7720 Comm: syz.6.1389 Not tainted 6.15.0-rc2-syzkaller-00257-gb5c6891b2c5b #0 PREEMPT(voluntary) 
[  134.970479][ T7720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  134.970491][ T7720] Call Trace:
[  134.970497][ T7720]  <TASK>
[  134.970529][ T7720]  dump_stack_lvl+0xf6/0x150
[  134.970559][ T7720]  dump_stack+0x15/0x1a
[  134.970575][ T7720]  should_fail_ex+0x261/0x270
[  134.970604][ T7720]  should_failslab+0x8f/0xb0
[  134.970630][ T7720]  kmem_cache_alloc_noprof+0x59/0x340
[  134.970734][ T7720]  ? skb_clone+0x154/0x1f0
[  134.970820][ T7720]  skb_clone+0x154/0x1f0
[  134.970849][ T7720]  pfkey_sendmsg+0x2e9/0x950
[  134.970905][ T7720]  ? selinux_socket_sendmsg+0x18a/0x1c0
[  134.970988][ T7720]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  134.971032][ T7720]  __sock_sendmsg+0x140/0x180
[  134.971067][ T7720]  ____sys_sendmsg+0x350/0x4e0
[  134.971160][ T7720]  __sys_sendmsg+0x1a0/0x240
[  134.971280][ T7720]  __x64_sys_sendmsg+0x46/0x50
[  134.971308][ T7720]  x64_sys_call+0x26f3/0x2e10
[  134.971370][ T7720]  do_syscall_64+0xc9/0x1a0
[  134.971395][ T7720]  ? clear_bhb_loop+0x25/0x80
[  134.971527][ T7720]  ? clear_bhb_loop+0x25/0x80
[  134.971559][ T7720]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.971583][ T7720] RIP: 0033:0x7fb0e564e169
[  134.971601][ T7720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.971672][ T7720] RSP: 002b:00007fb0e3cb7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  134.971694][ T7720] RAX: ffffffffffffffda RBX: 00007fb0e5875fa0 RCX: 00007fb0e564e169
[  134.971709][ T7720] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[  134.971724][ T7720] RBP: 00007fb0e3cb7090 R08: 0000000000000000 R09: 0000000000000000
[  134.971738][ T7720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  134.971751][ T7720] R13: 0000000000000000 R14: 00007fb0e5875fa0 R15: 00007fffa3722ae8
[  134.971820][ T7720]  </TASK>
[  134.998513][ T7722] bond_slave_1: mtu less than device minimum
[  135.098145][ T7726] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  135.199573][ T3385] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  135.241525][   T51] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  135.279097][   T51] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  135.288628][ T7742] IPVS: Error joining to the multicast group
[  135.291371][   T51] EXT4-fs (loop5): This should not happen!! Data will be lost
[  135.291371][   T51] 
[  135.307174][   T51] EXT4-fs (loop5): Total free blocks count 0
[  135.313375][   T51] EXT4-fs (loop5): Free/Dirty block details
[  135.313695][ T7742] netlink: 'syz.2.1400': attribute type 11 has an invalid length.
[  135.319318][   T51] EXT4-fs (loop5): free_blocks=2415919104
[  135.319337][   T51] EXT4-fs (loop5): dirty_blocks=8224
[  135.332969][   T51] EXT4-fs (loop5): Block reservation details
[  135.332982][   T51] EXT4-fs (loop5): i_reserved_data_blocks=514
[  135.337122][   T51] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 2048 with error 28
[  135.369613][ T7747] loop3: detected capacity change from 0 to 512
[  135.408714][ T7747] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.421478][ T7747] ext4 filesystem being mounted at /266/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  135.459548][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.579909][ T7776] IPVS: Error joining to the multicast group
[  135.607308][ T7776] netlink: 'syz.2.1412': attribute type 11 has an invalid length.
[  135.669868][ T7785] loop6: detected capacity change from 0 to 512
[  135.677147][ T7787] loop2: detected capacity change from 0 to 512
[  135.686669][ T7787] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  135.695521][ T7789] loop3: detected capacity change from 0 to 128
[  135.696581][ T7785] EXT4-fs (loop6): orphan cleanup on readonly fs
[  135.705906][ T7789] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[  135.710970][ T7785] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.1415: bg 0: block 248: padding at end of block bitmap is not set
[  135.716200][ T7789] FAT-fs (loop3): Filesystem has been set read-only
[  135.740770][ T7785] EXT4-fs error (device loop6): ext4_acquire_dquot:6935: comm syz.6.1415: Failed to acquire dquot type 1
[  135.740820][ T7789] bio_check_eod: 6 callbacks suppressed
[  135.740832][ T7789] +}[@: attempt to access beyond end of device
[  135.740832][ T7789] loop3: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  135.771903][ T7789] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[  135.774024][ T7785] EXT4-fs (loop6): 1 truncate cleaned up
[  135.779811][ T7789] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[  135.786521][ T7785] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  135.794250][ T7789] +}[@: attempt to access beyond end of device
[  135.794250][ T7789] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[  135.808361][ T7787] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.818576][ T7789] +}[@: attempt to access beyond end of device
[  135.818576][ T7789] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[  135.844019][ T3526] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  135.844089][ T7787] ext4 filesystem being mounted at /281/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  135.877236][ T7785] EXT4-fs (loop6): warning: mounting fs with errors, running e2fsck is recommended
[  135.887416][ T7789] +}[@: attempt to access beyond end of device
[  135.887416][ T7789] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[  135.909513][ T7785] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  135.918561][ T7787] EXT4-fs error (device loop2): ext4_xattr_block_get:593: inode #15: comm syz.2.1417: corrupted xattr block 19: overlapping e_value 
[  135.937494][ T7787] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[  135.957675][ T7787] EXT4-fs error (device loop2): ext4_xattr_block_get:593: inode #15: comm syz.2.1417: corrupted xattr block 19: overlapping e_value 
[  135.972592][ T7787] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[  135.984719][ T5661] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.997753][ T7801] loop4: detected capacity change from 0 to 2048
[  136.004507][ T7801] EXT4-fs: Ignoring removed bh option
[  136.018241][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.029712][ T7801] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  136.075374][ T7818] loop2: detected capacity change from 0 to 512
[  136.111255][ T7818] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  136.174187][ T7818] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.316669][ T7832] bond_slave_1: mtu less than device minimum
[  136.347815][ T7818] ext4 filesystem being mounted at /282/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  136.446057][ T7818] EXT4-fs error (device loop2): ext4_xattr_block_get:593: inode #15: comm syz.2.1426: corrupted xattr block 19: overlapping e_value 
[  136.554166][ T7818] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[  136.580947][ T7818] EXT4-fs error (device loop2): ext4_xattr_block_get:593: inode #15: comm syz.2.1426: corrupted xattr block 19: overlapping e_value 
[  136.600622][ T7818] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[  136.625706][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.689145][ T7847] loop2: detected capacity change from 0 to 512
[  136.696435][ T7847] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  136.709177][ T7847] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.723297][ T7847] ext4 filesystem being mounted at /285/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  136.735012][ T7847] EXT4-fs error (device loop2): ext4_xattr_block_get:593: inode #15: comm syz.2.1437: corrupted xattr block 19: overlapping e_value 
[  136.762549][ T7847] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[  136.764752][   T31] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  136.786452][ T7847] EXT4-fs error (device loop2): ext4_xattr_block_get:593: inode #15: comm syz.2.1437: corrupted xattr block 19: overlapping e_value 
[  136.800384][   T31] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  136.812662][   T31] EXT4-fs (loop4): This should not happen!! Data will be lost
[  136.812662][   T31] 
[  136.816295][ T7847] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[  136.822527][   T31] EXT4-fs (loop4): Total free blocks count 0
[  136.822543][   T31] EXT4-fs (loop4): Free/Dirty block details
[  136.822553][   T31] EXT4-fs (loop4): free_blocks=2415919104
[  136.822565][   T31] EXT4-fs (loop4): dirty_blocks=8224
[  136.822575][   T31] EXT4-fs (loop4): Block reservation details
[  136.822585][   T31] EXT4-fs (loop4): i_reserved_data_blocks=514
[  136.874674][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.884004][ T3526] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  136.893103][   T51] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 2048 with error 28
[  137.021672][ T7862] loop5: detected capacity change from 0 to 1024
[  137.032166][ T7862] journal_path: Lookup failure for './file0'
[  137.038234][ T7862] EXT4-fs: error: could not find journal device path
[  137.057837][ T7867] loop4: detected capacity change from 0 to 1024
[  137.064397][ T7862] loop5: detected capacity change from 0 to 1024
[  137.064768][ T7867] EXT4-fs: Ignoring removed nobh option
[  137.076559][ T7867] EXT4-fs: Ignoring removed bh option
[  137.088409][ T7871] Invalid ELF header magic: != ELF
[  137.110768][ T7867] EXT4-fs (loop4): can't mount with data_err=abort, fs mounted w/o journal
[  137.111957][ T7862] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  137.141929][ T7867] __nla_validate_parse: 13 callbacks suppressed
[  137.141945][ T7867] netlink: 292 bytes leftover after parsing attributes in process `syz.4.1447'.
[  137.148139][ T7862] EXT4-fs error (device loop5): mb_free_blocks:1948: group 0, inode 15: block 241:freeing already freed block (bit 15); block bitmap corrupt.
[  137.166230][ T7879] loop3: detected capacity change from 0 to 512
[  137.216113][ T3609] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.219340][ T7879] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  137.319307][ T7879] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.333919][ T7879] ext4 filesystem being mounted at /283/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  137.350666][ T7879] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.1451: corrupted xattr block 19: overlapping e_value 
[  137.366203][ T7879] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[  137.375504][ T7879] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.1451: corrupted xattr block 19: overlapping e_value 
[  137.375511][ T7900] FAULT_INJECTION: forcing a failure.
[  137.375511][ T7900] name failslab, interval 1, probability 0, space 0, times 0
[  137.391271][ T7879] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[  137.401977][ T7900] CPU: 0 UID: 0 PID: 7900 Comm: syz.5.1455 Not tainted 6.15.0-rc2-syzkaller-00257-gb5c6891b2c5b #0 PREEMPT(voluntary) 
[  137.402062][ T7900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  137.402077][ T7900] Call Trace:
[  137.402086][ T7900]  <TASK>
[  137.402097][ T7900]  dump_stack_lvl+0xf6/0x150
[  137.402139][ T7900]  dump_stack+0x15/0x1a
[  137.402159][ T7900]  should_fail_ex+0x261/0x270
[  137.402234][ T7900]  should_failslab+0x8f/0xb0
[  137.402263][ T7900]  __kmalloc_cache_node_noprof+0x58/0x340
[  137.402343][ T7900]  ? __get_vm_area_node+0xfb/0x1c0
[  137.402416][ T7900]  __get_vm_area_node+0xfb/0x1c0
[  137.402494][ T7900]  __vmalloc_node_range_noprof+0x285/0xe80
[  137.402604][ T7900]  ? kernel_read_file+0x2be/0x4f0
[  137.402630][ T7900]  ? avc_has_perm_noaudit+0x1cc/0x210
[  137.402665][ T7900]  ? avc_has_perm+0xd6/0x150
[  137.402781][ T7900]  ? kernel_read_file+0x2be/0x4f0
[  137.402809][ T7900]  vmalloc_noprof+0x5e/0x70
[  137.402860][ T7900]  ? kernel_read_file+0x2be/0x4f0
[  137.402888][ T7900]  kernel_read_file+0x2be/0x4f0
[  137.402925][ T7900]  __se_sys_finit_module+0x2c0/0x450
[  137.402978][ T7900]  __x64_sys_finit_module+0x3e/0x50
[  137.403078][ T7900]  x64_sys_call+0x1d8a/0x2e10
[  137.403105][ T7900]  do_syscall_64+0xc9/0x1a0
[  137.403220][ T7900]  ? clear_bhb_loop+0x25/0x80
[  137.403286][ T7900]  ? clear_bhb_loop+0x25/0x80
[  137.403313][ T7900]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.403340][ T7900] RIP: 0033:0x7f48d61ae169
[  137.403368][ T7900] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  137.403392][ T7900] RSP: 002b:00007f48d4817038 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[  137.403420][ T7900] RAX: ffffffffffffffda RBX: 00007f48d63d5fa0 RCX: 00007f48d61ae169
[  137.403437][ T7900] RDX: 0000000000000003 RSI: 0000000000000000 RDI: 0000000000000003
[  137.403452][ T7900] RBP: 00007f48d4817090 R08: 0000000000000000 R09: 0000000000000000
[  137.403467][ T7900] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  137.403482][ T7900] R13: 0000000000000000 R14: 00007f48d63d5fa0 R15: 00007ffc61c88008
[  137.403505][ T7900]  </TASK>
[  137.403581][ T7900] syz.5.1455: vmalloc error: size 136, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null)
[  137.451779][ T7904] bond_slave_1: mtu less than device minimum
[  137.453568][ T7900] ,cpuset=/,mems_allowed=0
[  137.458903][ T7904] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  137.464046][ T7900] CPU: 0 UID: 0 PID: 7900 Comm: syz.5.1455 Not tainted 6.15.0-rc2-syzkaller-00257-gb5c6891b2c5b #0 PREEMPT(voluntary) 
[  137.464076][ T7900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  137.464091][ T7900] Call Trace:
[  137.464156][ T7900]  <TASK>
[  137.464165][ T7900]  dump_stack_lvl+0xf6/0x150
[  137.464197][ T7900]  dump_stack+0x15/0x1a
[  137.464219][ T7900]  warn_alloc+0x145/0x1b0
[  137.464264][ T7900]  __vmalloc_node_range_noprof+0x2aa/0xe80
[  137.464308][ T7900]  ? avc_has_perm_noaudit+0x1cc/0x210
[  137.464413][ T7900]  ? avc_has_perm+0xd6/0x150
[  137.464448][ T7900]  ? kernel_read_file+0x2be/0x4f0
[  137.464475][ T7900]  vmalloc_noprof+0x5e/0x70
[  137.464496][ T7900]  ? kernel_read_file+0x2be/0x4f0
[  137.464522][ T7900]  kernel_read_file+0x2be/0x4f0
[  137.464604][ T7900]  __se_sys_finit_module+0x2c0/0x450
[  137.464655][ T7900]  __x64_sys_finit_module+0x3e/0x50
[  137.464692][ T7900]  x64_sys_call+0x1d8a/0x2e10
[  137.464720][ T7900]  do_syscall_64+0xc9/0x1a0
[  137.464786][ T7900]  ? clear_bhb_loop+0x25/0x80
[  137.464811][ T7900]  ? clear_bhb_loop+0x25/0x80
[  137.464918][ T7900]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.464943][ T7900] RIP: 0033:0x7f48d61ae169
[  137.464963][ T7900] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  137.464985][ T7900] RSP: 002b:00007f48d4817038 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[  137.465007][ T7900] RAX: ffffffffffffffda RBX: 00007f48d63d5fa0 RCX: 00007f48d61ae169
[  137.465037][ T7900] RDX: 0000000000000003 RSI: 0000000000000000 RDI: 0000000000000003
[  137.465051][ T7900] RBP: 00007f48d4817090 R08: 0000000000000000 R09: 0000000000000000
[  137.465084][ T7900] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  137.465097][ T7900] R13: 0000000000000000 R14: 00007f48d63d5fa0 R15: 00007ffc61c88008
[  137.465120][ T7900]  </TASK>
[  137.465129][ T7900] Mem-Info:
[  137.849700][ T7900] active_anon:6494 inactive_anon:0 isolated_anon:0
[  137.849700][ T7900]  active_file:17312 inactive_file:2170 isolated_file:0
[  137.849700][ T7900]  unevictable:24 dirty:379 writeback:21
[  137.849700][ T7900]  slab_reclaimable:2981 slab_unreclaimable:31317
[  137.849700][ T7900]  mapped:32848 shmem:3327 pagetables:936
[  137.849700][ T7900]  sec_pagetables:0 bounce:0
[  137.849700][ T7900]  kernel_misc_reclaimable:0
[  137.849700][ T7900]  free:1869581 free_pcp:11240 free_cma:0
[  137.894832][ T7900] Node 0 active_anon:25976kB inactive_anon:0kB active_file:69248kB inactive_file:8680kB unevictable:96kB isolated(anon):0kB isolated(file):0kB mapped:131392kB dirty:1516kB writeback:84kB shmem:13308kB writeback_tmp:0kB kernel_stack:2960kB pagetables:3744kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  137.924104][ T7900] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  137.951007][ T7900] lowmem_reserve[]: 0 2882 7860 7860
[  137.956388][ T7900] Node 0 DMA32 free:2947784kB boost:0kB min:4132kB low:7060kB high:9988kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2951312kB mlocked:0kB bounce:0kB free_pcp:3528kB local_pcp:3528kB free_cma:0kB
[  137.984979][ T7900] lowmem_reserve[]: 0 0 4978 4978
[  137.990120][ T7900] Node 0 Normal free:4515180kB boost:0kB min:7188kB low:12284kB high:17380kB reserved_highatomic:0KB active_anon:25976kB inactive_anon:0kB active_file:69248kB inactive_file:8680kB unevictable:96kB writepending:1484kB present:5242880kB managed:5098244kB mlocked:96kB bounce:0kB free_pcp:41432kB local_pcp:26336kB free_cma:0kB
[  138.020622][ T7900] lowmem_reserve[]: 0 0 0 0
[  138.025213][ T7900] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  138.038075][ T7900] Node 0 DMA32: 4*4kB (M) 3*8kB (M) 4*16kB (M) 5*32kB (M) 3*64kB (M) 4*128kB (M) 3*256kB (M) 4*512kB (M) 3*1024kB (M) 2*2048kB (M) 717*4096kB (M) = 2947784kB
[  138.054110][ T7900] Node 0 Normal: 1539*4kB (UME) 1154*8kB (UM) 929*16kB (UME) 785*32kB (UME) 398*64kB (UM) 203*128kB (UME) 98*256kB (UME) 89*512kB (UME) 70*1024kB (UME) 43*2048kB (UM) 1020*4096kB (UM) = 4515148kB
[  138.073590][ T7900] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  138.082974][ T7900] 22807 total pagecache pages
[  138.087661][ T7900] 0 pages in swap cache
[  138.091828][ T7900] Free swap  = 124996kB
[  138.096150][ T7900] Total swap = 124996kB
[  138.100359][ T7900] 2097051 pages RAM
[  138.104199][ T7900] 0 pages HighMem/MovableOnly
[  138.108882][ T7900] 80822 pages reserved
[  138.116297][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.293781][ T7909] netlink: 'syz.5.1462': attribute type 11 has an invalid length.
[  138.360597][ T7909] netlink: 448 bytes leftover after parsing attributes in process `syz.5.1462'.
[  138.468872][ T7917] loop4: detected capacity change from 0 to 1024
[  138.475495][ T7917] journal_path: Lookup failure for './file0'
[  138.481663][ T7917] EXT4-fs: error: could not find journal device path
[  138.561745][ T7917] loop4: detected capacity change from 0 to 1024
[  138.563148][ T7919] bridge: RTM_NEWNEIGH with invalid state 0x4
[  138.653210][ T7917] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  138.669484][ T7939] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  138.678135][ T7939] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  138.690640][ T7937] loop6: detected capacity change from 0 to 512
[  138.736979][ T7937] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  138.779473][ T7937] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.799251][ T7937] ext4 filesystem being mounted at /155/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  138.824507][ T7937] EXT4-fs error (device loop6): ext4_xattr_block_get:593: inode #15: comm syz.6.1471: corrupted xattr block 19: overlapping e_value 
[  138.879218][ T7917] EXT4-fs error (device loop4): mb_free_blocks:1948: group 0, inode 15: block 241:freeing already freed block (bit 15); block bitmap corrupt.
[  138.887290][ T7937] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop6 ino=15
[  138.907798][ T7937] EXT4-fs error (device loop6): ext4_xattr_block_get:593: inode #15: comm syz.6.1471: corrupted xattr block 19: overlapping e_value 
[  138.935300][ T7937] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop6 ino=15
[  139.273451][ T5661] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.454333][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.479573][   T29] kauditd_printk_skb: 407 callbacks suppressed
[  139.479588][   T29] audit: type=1326 audit(2000000034.840:9802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7951 comm="syz.6.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0e564e169 code=0x7ffc0000
[  139.512882][   T29] audit: type=1326 audit(2000000034.840:9803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7953 comm="syz.5.1477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48d61ae169 code=0x7ffc0000
[  139.536567][   T29] audit: type=1326 audit(2000000034.840:9804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7953 comm="syz.5.1477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48d61ae169 code=0x7ffc0000
[  139.560160][   T29] audit: type=1326 audit(2000000034.840:9805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7953 comm="syz.5.1477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=65 compat=0 ip=0x7f48d61ae169 code=0x7ffc0000
[  139.583630][   T29] audit: type=1326 audit(2000000034.840:9806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7953 comm="syz.5.1477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48d61ae169 code=0x7ffc0000
[  139.607182][   T29] audit: type=1326 audit(2000000034.870:9807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7951 comm="syz.6.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7fb0e564e169 code=0x7ffc0000
[  139.630745][   T29] audit: type=1326 audit(2000000034.870:9808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7951 comm="syz.6.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0e564e169 code=0x7ffc0000
[  139.654222][   T29] audit: type=1326 audit(2000000034.870:9809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7951 comm="syz.6.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=333 compat=0 ip=0x7fb0e564e169 code=0x7ffc0000
[  139.678031][ T3526] net_ratelimit: 2 callbacks suppressed
[  139.678047][ T3526] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  139.699294][   T29] audit: type=1326 audit(2000000035.040:9810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7951 comm="syz.6.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0e564e169 code=0x7ffc0000
[  139.743061][   T29] audit: type=1326 audit(2000000035.090:9811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7951 comm="syz.6.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0e564e169 code=0x7ffc0000
[  139.918457][ T7979] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  139.939273][ T7977] loop2: detected capacity change from 0 to 1024
[  139.946210][ T7977] EXT4-fs: Ignoring removed nobh option
[  139.947101][ T7979] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  139.951849][ T7977] EXT4-fs: Ignoring removed bh option
[  140.026512][ T7985] loop6: detected capacity change from 0 to 1024
[  140.033252][ T7977] EXT4-fs (loop2): can't mount with data_err=abort, fs mounted w/o journal
[  140.063967][ T7985] journal_path: Lookup failure for './file0'
[  140.070068][ T7985] EXT4-fs: error: could not find journal device path
[  140.074931][ T7977] netlink: 292 bytes leftover after parsing attributes in process `syz.2.1486'.
[  140.141212][ T7995] loop6: detected capacity change from 0 to 1024
[  140.177074][ T7995] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  140.279687][ T7985] EXT4-fs error (device loop6): mb_free_blocks:1948: group 0, inode 15: block 241:freeing already freed block (bit 15); block bitmap corrupt.
[  140.320029][ T8017] loop3: detected capacity change from 0 to 512
[  140.328662][ T8017] EXT4-fs (loop3): orphan cleanup on readonly fs
[  140.340253][ T8015] loop5: detected capacity change from 0 to 1024
[  140.347245][ T8015] EXT4-fs: Ignoring removed nobh option
[  140.352873][ T8015] EXT4-fs: Ignoring removed bh option
[  140.368772][ T8017] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1502: bg 0: block 248: padding at end of block bitmap is not set
[  140.384891][ T8017] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.1502: Failed to acquire dquot type 1
[  140.399753][ T8017] EXT4-fs (loop3): 1 truncate cleaned up
[  140.407488][ T8015] EXT4-fs (loop5): can't mount with data_err=abort, fs mounted w/o journal
[  140.429163][ T5661] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.429870][ T8017] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  140.454968][ T8015] netlink: 292 bytes leftover after parsing attributes in process `syz.5.1501'.
[  140.465078][ T8017] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  140.484678][ T8017] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.1502: Failed to acquire dquot type 1
[  140.485900][ T8025] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1505'.
[  140.517162][ T8017] EXT4-fs warning (device loop3): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-28, ino=4). Please run e2fsck to fix.
[  140.540733][ T8029] loop5: detected capacity change from 0 to 512
[  140.547280][ T8029] msdos: Unknown parameter 'errerrors'
[  140.556641][ T8029] batadv_slave_0: entered promiscuous mode
[  140.562998][ T8029] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1507'.
[  140.573238][ T8029] batadv_slave_0 (unregistering): left promiscuous mode
[  140.599064][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.700977][ T8050] loop4: detected capacity change from 0 to 2048
[  140.709265][ T8050] EXT4-fs: Ignoring removed bh option
[  140.721944][ T8051] loop2: detected capacity change from 0 to 256
[  140.727252][ T3526] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  140.737200][ T8051] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  140.750692][ T8050] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  141.203115][ T8070] loop6: detected capacity change from 0 to 512
[  141.260138][ T8070] EXT4-fs (loop6): orphan cleanup on readonly fs
[  141.300140][ T8070] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.1520: bg 0: block 248: padding at end of block bitmap is not set
[  141.382095][ T8070] EXT4-fs error (device loop6): ext4_acquire_dquot:6935: comm syz.6.1520: Failed to acquire dquot type 1
[  141.409166][ T3384] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  141.418897][ T8070] EXT4-fs (loop6): 1 truncate cleaned up
[  141.425433][ T8070] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  141.445249][ T8070] EXT4-fs (loop6): warning: mounting fs with errors, running e2fsck is recommended
[  141.465158][ T8070] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  141.508519][ T5661] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.571652][ T8084] xt_hashlimit: max too large, truncated to 1048576
[  141.584190][ T8084] loop2: detected capacity change from 0 to 1024
[  141.629350][   T51] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  141.646941][   T51] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  141.659310][   T51] EXT4-fs (loop4): This should not happen!! Data will be lost
[  141.659310][   T51] 
[  141.669248][   T51] EXT4-fs (loop4): Total free blocks count 0
[  141.669974][ T8093] loop5: detected capacity change from 0 to 512
[  141.675393][   T51] EXT4-fs (loop4): Free/Dirty block details
[  141.687538][   T51] EXT4-fs (loop4): free_blocks=2415919104
[  141.687638][ T8093] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  141.693264][   T51] EXT4-fs (loop4): dirty_blocks=4032
[  141.693281][   T51] EXT4-fs (loop4): Block reservation details
[  141.693294][   T51] EXT4-fs (loop4): i_reserved_data_blocks=252
[  141.722865][  T110] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 2048 with error 28
[  141.738548][ T8093] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  141.751535][ T8093] ext4 filesystem being mounted at /318/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  141.762494][   T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  141.771031][ T3526] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  141.783697][ T8093] EXT4-fs error (device loop5): ext4_xattr_block_get:593: inode #15: comm syz.5.1531: corrupted xattr block 19: overlapping e_value 
[  141.808736][ T8093] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=15
[  141.818238][ T8093] EXT4-fs error (device loop5): ext4_xattr_block_get:593: inode #15: comm syz.5.1531: corrupted xattr block 19: overlapping e_value 
[  141.832318][ T8093] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=15
[  141.867415][ T8104] bond_slave_1: mtu less than device minimum
[  141.881228][ T3609] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.897165][ T8108] bond_slave_1: mtu less than device minimum
[  141.905018][ T8108] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  142.245863][ T8132] loop5: detected capacity change from 0 to 2048
[  142.254562][ T8132] EXT4-fs: Ignoring removed bh option
[  142.284253][ T8132] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  142.350481][ T3609] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.662677][ T8140] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  142.671236][ T8140] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  142.799899][   T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  142.834855][ T8159] loop6: detected capacity change from 0 to 1024
[  142.842464][ T8159] EXT4-fs: Ignoring removed nobh option
[  142.848111][ T8159] EXT4-fs: Ignoring removed bh option
[  142.858902][ T8159] EXT4-fs (loop6): can't mount with data_err=abort, fs mounted w/o journal
[  142.871560][ T8159] netlink: 292 bytes leftover after parsing attributes in process `syz.6.1555'.
[  142.916513][ T8168] bond_slave_1: mtu less than device minimum
[  143.056840][ T8173] loop4: detected capacity change from 0 to 1024
[  143.063689][ T8173] journal_path: Lookup failure for './file0'
[  143.069734][ T8173] EXT4-fs: error: could not find journal device path
[  143.333569][ T8181] loop4: detected capacity change from 0 to 128
[  143.355967][ T8181] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[  143.363972][ T8181] FAT-fs (loop4): Filesystem has been set read-only
[  143.373219][ T8181] +}[@: attempt to access beyond end of device
[  143.373219][ T8181] loop4: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  143.387096][ T8181] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[  143.395078][ T8181] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[  143.473077][ T8181] +}[@: attempt to access beyond end of device
[  143.473077][ T8181] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[  143.486703][ T8181] +}[@: attempt to access beyond end of device
[  143.486703][ T8181] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[  143.584566][ T8198] loop4: detected capacity change from 0 to 1024
[  143.586705][ T8194] loop5: detected capacity change from 0 to 1024
[  143.592002][ T8198] EXT4-fs: Ignoring removed nobh option
[  143.603642][ T8198] EXT4-fs: Ignoring removed bh option
[  143.609680][ T8194] EXT4-fs (loop5): blocks per group (16777216) and clusters per group (8192) inconsistent
[  143.628949][ T8198] EXT4-fs (loop4): can't mount with data_err=abort, fs mounted w/o journal
[  143.644158][ T8198] netlink: 292 bytes leftover after parsing attributes in process `syz.4.1569'.
[  143.678830][   T31] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  143.776499][ T8208] loop2: detected capacity change from 0 to 1024
[  143.784626][ T8208] journal_path: Lookup failure for './file0'
[  143.790693][ T8208] EXT4-fs: error: could not find journal device path
[  143.846611][ T8217] loop5: detected capacity change from 0 to 512
[  143.859848][ T8217] EXT4-fs (loop5): orphan cleanup on readonly fs
[  143.867144][ T8217] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1578: bg 0: block 248: padding at end of block bitmap is not set
[  143.882884][ T8217] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.1578: Failed to acquire dquot type 1
[  143.907780][ T8217] EXT4-fs (loop5): 1 truncate cleaned up
[  143.921403][ T8217] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  143.936615][ T8223] loop6: detected capacity change from 0 to 1024
[  143.944534][ T8223] EXT4-fs: Ignoring removed nobh option
[  143.950188][ T8223] EXT4-fs: Ignoring removed bh option
[  143.958150][ T8217] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  143.970285][ T8223] EXT4-fs (loop6): can't mount with data_err=abort, fs mounted w/o journal
[  143.980083][ T8217] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.1578: Failed to acquire dquot type 1
[  143.983592][ T8223] netlink: 292 bytes leftover after parsing attributes in process `syz.6.1580'.
[  144.024062][ T8217] EXT4-fs warning (device loop5): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-28, ino=4). Please run e2fsck to fix.
[  144.061757][ T3609] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.141273][ T8252] loop5: detected capacity change from 0 to 1024
[  144.433743][ T8252] EXT4-fs error (device loop5): mb_free_blocks:1948: group 0, inode 15: block 241:freeing already freed block (bit 15); block bitmap corrupt.
[  144.553009][   T29] kauditd_printk_skb: 422 callbacks suppressed
[  144.553024][   T29] audit: type=1326 audit(2000000039.910:10224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8263 comm="syz.6.1593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0e564e169 code=0x7ffc0000
[  144.585918][   T29] audit: type=1326 audit(2000000039.910:10225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8263 comm="syz.6.1593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0e564e169 code=0x7ffc0000
[  144.609585][   T29] audit: type=1326 audit(2000000039.910:10226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8263 comm="syz.6.1593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=65 compat=0 ip=0x7fb0e564e169 code=0x7ffc0000
[  144.633383][   T29] audit: type=1326 audit(2000000039.910:10227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8263 comm="syz.6.1593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0e564e169 code=0x7ffc0000
[  144.771705][   T29] audit: type=1326 audit(2000000040.130:10228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8279 comm="syz.6.1602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0e564e169 code=0x7ffc0000
[  144.795389][   T29] audit: type=1326 audit(2000000040.130:10229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8279 comm="syz.6.1602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0e564e169 code=0x7ffc0000
[  144.800462][ T8282] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  144.819099][   T29] audit: type=1326 audit(2000000040.130:10230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8279 comm="syz.6.1602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7fb0e564e169 code=0x7ffc0000
[  144.851088][   T29] audit: type=1326 audit(2000000040.130:10231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8279 comm="syz.6.1602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0e564e169 code=0x7ffc0000
[  144.855788][ T8282] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  144.874704][   T29] audit: type=1326 audit(2000000040.130:10232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8279 comm="syz.6.1602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0e564e169 code=0x7ffc0000
[  144.882490][   T36] net_ratelimit: 2 callbacks suppressed
[  144.882504][   T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  144.956324][   T29] audit: type=1326 audit(2000000040.210:10233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8279 comm="syz.6.1602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=333 compat=0 ip=0x7fb0e564e169 code=0x7ffc0000
[  145.138838][ T8312] netlink: 'syz.6.1617': attribute type 10 has an invalid length.
[  145.147287][ T8312] batman_adv: batadv0: Adding interface: team0
[  145.153583][ T8312] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  145.178830][ T8312] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  145.190410][ T8312] netlink: 'syz.6.1617': attribute type 10 has an invalid length.
[  145.198351][ T8312] netlink: 2 bytes leftover after parsing attributes in process `syz.6.1617'.
[  145.207432][ T8312] team0: entered promiscuous mode
[  145.212640][ T8312] team_slave_0: entered promiscuous mode
[  145.218399][ T8312] team_slave_1: entered promiscuous mode
[  145.224728][ T8312] 8021q: adding VLAN 0 to HW filter on device team0
[  145.263092][ T8312] batman_adv: batadv0: Interface activated: team0
[  145.269708][ T8312] batman_adv: batadv0: Interface deactivated: team0
[  145.276358][ T8312] batman_adv: batadv0: Removing interface: team0
[  145.330902][ T8312] bridge0: port 3(team0) entered blocking state
[  145.337253][ T8312] bridge0: port 3(team0) entered disabled state
[  145.367207][ T8312] team0: entered allmulticast mode
[  145.372444][ T8312] team_slave_0: entered allmulticast mode
[  145.378197][ T8312] team_slave_1: entered allmulticast mode
[  145.870669][ T8342] loop2: detected capacity change from 0 to 1024
[  145.878309][ T8342] EXT4-fs: Ignoring removed nobh option
[  145.884021][ T8342] EXT4-fs: Ignoring removed bh option
[  145.893215][ T8348] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1631'.
[  146.081547][ T8353] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  146.108319][ T8353] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  146.310478][ T3526] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  146.418660][ T8342] EXT4-fs (loop2): can't mount with data_err=abort, fs mounted w/o journal
[  146.441656][ T8342] netlink: 292 bytes leftover after parsing attributes in process `syz.2.1628'.
[  146.477373][ T8363] loop4: detected capacity change from 0 to 1024
[  146.519835][ T8363] EXT4-fs error (device loop4): mb_free_blocks:1948: group 0, inode 15: block 241:freeing already freed block (bit 15); block bitmap corrupt.
[  146.564776][ T8378] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1643'.
[  146.669554][ T8385] IPv6: sit1: Disabled Multicast RS
[  146.683312][ T8385] sit1: entered allmulticast mode
[  146.721663][ T8397] loop3: detected capacity change from 0 to 512
[  146.728808][ T3385] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  146.748941][ T8397] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  146.894913][ T8397] ext4 filesystem being mounted at /306/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  146.974422][ T8407] loop2: detected capacity change from 0 to 128
[  147.063734][ T8403] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  147.071763][ T8403] FAT-fs (loop2): Filesystem has been set read-only
[  147.086747][ T8412] loop6: detected capacity change from 0 to 1024
[  147.100763][ T8403] +}[@: attempt to access beyond end of device
[  147.100763][ T8403] loop2: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  147.121380][ T8397] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1649: bg 0: block 304: padding at end of block bitmap is not set
[  147.159946][ T8412] EXT4-fs error (device loop6): mb_free_blocks:1948: group 0, inode 15: block 241:freeing already freed block (bit 15); block bitmap corrupt.
[  147.177504][ T8397] EXT4-fs (loop3): Remounting filesystem read-only
[  147.185740][ T8403] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  147.193738][ T8403] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  147.224745][ T8403] +}[@: attempt to access beyond end of device
[  147.224745][ T8403] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  147.240769][ T8403] +}[@: attempt to access beyond end of device
[  147.240769][ T8403] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  147.381375][   T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  147.392216][ T8423] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1655'.
[  147.436595][ T8419] loop3: detected capacity change from 0 to 256
[  147.505195][ T8419] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  147.618265][ T8429] loop6: detected capacity change from 0 to 512
[  147.772344][ T8435] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  147.805635][ T8435] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  147.896007][ T8441] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1665'.
[  147.925878][ T8441] IPVS: Error joining to the multicast group
[  147.954849][ T8441] netlink: 'syz.2.1665': attribute type 11 has an invalid length.
[  147.963087][ T8441] netlink: 448 bytes leftover after parsing attributes in process `syz.2.1665'.
[  147.972759][ T8429] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  148.000842][ T8429] ext4 filesystem being mounted at /199/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  148.012504][ T8429] EXT4-fs error (device loop6): ext4_xattr_block_get:593: inode #15: comm syz.6.1658: corrupted xattr block 19: overlapping e_value 
[  148.018103][ T8447] loop2: detected capacity change from 0 to 1024
[  148.028191][ T8429] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop6 ino=15
[  148.042539][ T8429] EXT4-fs error (device loop6): ext4_xattr_block_get:593: inode #15: comm syz.6.1658: corrupted xattr block 19: overlapping e_value 
[  148.057039][ T8429] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop6 ino=15
[  148.092769][ T8453] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1668'.
[  148.103787][ T8453] IPVS: Error joining to the multicast group
[  148.112113][ T8453] netlink: 'syz.2.1668': attribute type 11 has an invalid length.
[  148.120341][ T8453] netlink: 448 bytes leftover after parsing attributes in process `syz.2.1668'.
[  148.135704][ T8455] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1669'.
[  148.193234][ T8461] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1672'.
[  148.202574][ T8461] IPVS: Error joining to the multicast group
[  148.218797][ T8461] netlink: 'syz.2.1672': attribute type 11 has an invalid length.
[  148.226676][ T8461] netlink: 448 bytes leftover after parsing attributes in process `syz.2.1672'.
[  148.273768][ T8467] loop6: detected capacity change from 0 to 2048
[  148.290713][ T8467] EXT4-fs: Ignoring removed bh option
[  148.334309][ T8471] loop2: detected capacity change from 0 to 1024
[  148.370447][ T8471] ext4 filesystem being mounted at /348/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  148.407719][   T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  148.418834][ T8475] loop3: detected capacity change from 0 to 2048
[  148.425528][ T8475] EXT4-fs: Ignoring removed bh option
[  148.469009][ T8481] loop5: detected capacity change from 0 to 1024
[  148.495888][ T8483] loop2: detected capacity change from 0 to 512
[  148.539487][ T8487] loop4: detected capacity change from 0 to 256
[  148.546452][ T8487] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  148.576527][ T8483] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  148.619457][ T8489] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1681'.
[  148.762760][ T8483] ext4 filesystem being mounted at /349/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  148.797789][   T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  148.806307][   T51] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  148.816644][ T8483] EXT4-fs error (device loop2): ext4_xattr_block_get:593: inode #15: comm syz.2.1679: corrupted xattr block 19: overlapping e_value 
[  148.947884][ T8483] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[  149.042383][ T8483] EXT4-fs error (device loop2): ext4_xattr_block_get:593: inode #15: comm syz.2.1679: corrupted xattr block 19: overlapping e_value 
[  149.149520][  T110] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  149.194452][ T8483] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[  149.247007][  T110] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  149.259268][  T110] EXT4-fs (loop6): This should not happen!! Data will be lost
[  149.259268][  T110] 
[  149.269032][  T110] EXT4-fs (loop6): Total free blocks count 0
[  149.275092][  T110] EXT4-fs (loop6): Free/Dirty block details
[  149.281117][  T110] EXT4-fs (loop6): free_blocks=2415919104
[  149.286882][  T110] EXT4-fs (loop6): dirty_blocks=8224
[  149.292326][  T110] EXT4-fs (loop6): Block reservation details
[  149.293613][   T51] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, 
[  149.298359][  T110] EXT4-fs (loop6): i_reserved_data_blocks=514
[  149.298360][   T51] block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  149.298500][  T110] ==================================================================
[  149.306665][  T110] BUG: KCSAN: data-race in data_alloc / data_push_tail
[  149.306712][  T110] 
[  149.306720][  T110] write to 0xffffffff88e6fc38 of 8 bytes by task 51 on cpu 0:
[  149.306739][  T110]  data_alloc+0x215/0x2c0
[  149.306772][  T110]  prb_reserve+0x86a/0xb80
[  149.306805][  T110]  vprintk_store+0x552/0x860
[  149.306844][  T110]  vprintk_emit+0x1a0/0x6c0
[  149.306883][  T110]  vprintk_default+0x26/0x30
[  149.306903][  T110]  vprintk+0x1d/0x30
[  149.306931][  T110]  _printk+0x7f/0xb0
[  149.306936][   T51] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  149.306959][  T110]  __ext4_grp_locked_error+0x5fa/0x810
[  149.306968][   T51] EXT4-fs (loop3): This should not happen!! Data will be lost
[  149.306968][   T51] 
[  149.306986][   T51] EXT4-fs (loop3): Total free blocks count 0
[  149.306990][  T110]  ext4_mb_generate_buddy+0x247/0x2d0
[  149.307005][   T51] EXT4-fs (loop3): Free/Dirty block details
[  149.307017][  T110]  ext4_mb_init_cache+0x851/0xbd0
[  149.307022][   T51] EXT4-fs (loop3): free_blocks=2415919104
[  149.307041][   T51] EXT4-fs (loop3): dirty_blocks=8224
[  149.307039][  T110]  ext4_mb_init_group+0x245/0x3e0
[  149.307083][  T110]  ext4_mb_regular_allocator+0xc3e/0x23f0
[  149.307118][  T110]  ext4_mb_new_blocks+0x81d/0x2020
[  149.307058][   T51] EXT4-fs (loop3): Block reservation details
[  149.307160][   T51] EXT4-fs (loop3): i_reserved_data_blocks=514
[  149.307168][  T110]  ext4_ext_map_blocks+0x106c/0x36a0
[  149.307203][  T110]  ext4_map_blocks+0x5c6/0xd00
[  149.307240][  T110]  ext4_do_writepages+0x14ef/0x21d0
[  149.307260][  T110]  ext4_writepages+0x183/0x320
[  149.307287][  T110]  do_writepages+0x1d8/0x480
[  149.307316][  T110]  __writeback_single_inode+0x89/0x850
[  149.307350][  T110]  writeback_sb_inodes+0x458/0xa10
[  149.307380][  T110]  wb_writeback+0x264/0x650
[  149.307406][  T110]  wb_workfn+0x1aa/0x960
[  149.307428][  T110]  process_scheduled_works+0x4de/0xa20
[  149.307466][  T110]  worker_thread+0x52c/0x710
[  149.307518][  T110]  kthread+0x4b7/0x540
[  149.307539][  T110]  ret_from_fork+0x4b/0x60
[  149.307558][  T110]  ret_from_fork_asm+0x1a/0x30
[  149.307582][  T110] 
[  149.307589][  T110] read to 0xffffffff88e6fc38 of 8 bytes by task 110 on cpu 1:
[  149.307606][  T110]  data_push_tail+0x107/0x440
[  149.307641][  T110]  data_alloc+0xbd/0x2c0
[  149.307676][  T110]  prb_reserve+0x86a/0xb80
[  149.307708][  T110]  vprintk_store+0x552/0x860
[  149.307741][  T110]  vprintk_emit+0x1a0/0x6c0
[  149.307773][  T110]  vprintk_default+0x26/0x30
[  149.307790][  T110]  vprintk+0x1d/0x30
[  149.307818][  T110]  _printk+0x7f/0xb0
[  149.307844][  T110]  __ext4_msg+0x198/0x1b0
[  149.307867][  T110]  ext4_print_free_blocks+0x17b/0x190
[  149.307898][  T110]  ext4_do_writepages+0x1a7f/0x21d0
[  149.307922][  T110]  ext4_writepages+0x183/0x320
[  149.307955][  T110]  do_writepages+0x1d8/0x480
[  149.307991][  T110]  __writeback_single_inode+0x89/0x850
[  149.308023][  T110]  writeback_sb_inodes+0x458/0xa10
[  149.308050][  T110]  wb_writeback+0x264/0x650
[  149.308087][  T110]  wb_workfn+0x1aa/0x960
[  149.308111][  T110]  process_scheduled_works+0x4de/0xa20
[  149.308140][  T110]  worker_thread+0x52c/0x710
[  149.308171][  T110]  kthread+0x4b7/0x540
[  149.308189][  T110]  ret_from_fork+0x4b/0x60
[  149.308207][  T110]  ret_from_fork_asm+0x1a/0x30
[  149.308232][  T110] 
[  149.308239][  T110] value changed: 0x00000000ffffec85 -> 0x00000000fffff8ce
[  149.308253][  T110] 
[  149.308258][  T110] Reported by Kernel Concurrency Sanitizer on:
[  149.308272][  T110] CPU: 1 UID: 0 PID: 110 Comm: kworker/u8:4 Not tainted 6.15.0-rc2-syzkaller-00257-gb5c6891b2c5b #0 PREEMPT(voluntary) 
[  149.308299][  T110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  149.308316][  T110] Workqueue: writeback wb_workfn (flush-7:6)
[  149.308356][  T110] ==================================================================
[  149.326751][   T51] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 2048 with error 28
[  149.349871][  T110] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 2048 with error 28
[  149.352603][   T51] EXT4-fs (loop3): This should not happen!! Data will be lost
[  149.352603][   T51] 
[  149.356983][  T110] EXT4-fs (loop6): This should not happen!! Data will be lost
[  149.356983][  T110] 
[  149.515155][ T8504] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1686'.
[  149.518340][   T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  149.581584][ T8504] IPVS: Error joining to the multicast group
[  149.663923][ T8508] netlink: 'syz.3.1686': attribute type 11 has an invalid length.
[  149.769680][   T29] kauditd_printk_skb: 364 callbacks suppressed
[  149.769697][   T29] audit: type=1326 audit(2000000045.110:10596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8503 comm="syz.3.1686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b99a9e169 code=0x7ffc0000
[  149.772289][ T8508] netlink: 448 bytes leftover after parsing attributes in process `syz.3.1686'.
[  149.780017][   T29] audit: type=1326 audit(2000000045.110:10597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8503 comm="syz.3.1686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b99a9e169 code=0x7ffc0000
[  149.824280][ T8510] loop6: detected capacity change from 0 to 1024
[  149.842254][   T29] audit: type=1326 audit(2000000045.110:10598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8503 comm="syz.3.1686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=226 compat=0 ip=0x7f3b99a9e169 code=0x7ffc0000
[  149.842291][   T29] audit: type=1326 audit(2000000045.110:10599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8503 comm="syz.3.1686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b99a9e169 code=0x7ffc0000
[  149.850768][ T8510] EXT4-fs: Ignoring removed nobh option
[  149.872135][   T29] audit: type=1326 audit(2000000045.110:10600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8503 comm="syz.3.1686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3b99a9e169 code=0x7ffc0000
[  149.872170][   T29] audit: type=1326 audit(2000000045.110:10601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8503 comm="syz.3.1686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b99a9e169 code=0x7ffc0000
[  149.895680][ T8510] EXT4-fs: Ignoring removed bh option
[  149.907739][ T8510] EXT4-fs (loop6): can't mount with data_err=abort, fs mounted w/o journal
[  149.924869][   T29] audit: type=1326 audit(2000000045.110:10602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8503 comm="syz.3.1686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3b99a9e169 code=0x7ffc0000
[  149.986136][   T29] audit: type=1326 audit(2000000045.110:10603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8503 comm="syz.3.1686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b99a9e169 code=0x7ffc0000
[  150.009915][   T29] audit: type=1326 audit(2000000045.110:10604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8503 comm="syz.3.1686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3b99a9e169 code=0x7ffc0000
[  150.033455][   T29] audit: type=1326 audit(2000000045.110:10605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8503 comm="syz.3.1686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b99a9e169 code=0x7ffc0000
[  150.557958][   T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  151.607600][   T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  151.838041][ T3385] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  151.997874][ T3384] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  152.007691][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  152.647859][ T3526] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  153.677714][ T3526] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  153.917951][   T51] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  154.717590][   T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  155.757615][ T3526] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  155.837893][ T3526] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  156.799093][ T3526] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  156.957647][ T3385] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  157.837699][   T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  158.877819][ T3526] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog