last executing test programs:

1m59.515490422s ago: executing program 4 (id=185):
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000e00)='./file0\x00', 0x1)
renameat2(r0, &(0x7f0000000140)='./file0\x00', r0, &(0x7f0000000040)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4)

1m59.378237784s ago: executing program 4 (id=187):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/arp\x00')
preadv(r0, &(0x7f0000000040)=[{&(0x7f0000000200)=""/233, 0xe9}], 0x1, 0x10, 0x0)

1m59.354499635s ago: executing program 4 (id=188):
io_uring_setup(0x7d1, 0x0)
r0 = socket$kcm(0x21, 0x2, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
io_setup(0x9, &(0x7f0000000b80)=<r2=>0x0)
io_submit(r2, 0x0, &(0x7f00000002c0))
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x2}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x101, 0x0, 0x0, {0x2}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_HOOKNUM={0x8}, @NFTA_HOOK_PRIORITY={0x8}]}]}], {0x14}}, 0x88}}, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x4)
writev(r4, &(0x7f0000002900)=[{&(0x7f0000000100)="4c00000014009d000000000000008c590288ffffcf3d3474ff00e7e5d3c2c983f9d503753f689dc39062ed7d00002758d60034650c032635c1fb47f6aaaa9560863cdd00005200af44868734", 0x4c}], 0x1)
syz_usb_connect(0x2, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x62, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffef2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
sendmsg$kcm(r0, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @loopback}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000100)="a6", 0xfffffcf4}, {0x0}], 0x2, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x0)

1m58.608035987s ago: executing program 4 (id=200):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000200)=0x9, 0x8, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x1)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='freezer.state\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
unshare(0x24060400)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000380)=[{0x200000000006, 0x1, 0x7, 0x7ffc1ffb}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
symlink(0x0, 0x0)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r3, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x891018, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
mount$bind(&(0x7f00000002c0)='./file0/file0\x00', &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f00000000c0)='.\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x80700a, 0x0)
r4 = getpid()
r5 = syz_pidfd_open(r4, 0x0)
setns(r5, 0x24020000)
umount2(&(0x7f0000000040)='.\x00', 0x2)
socket(0x400000000010, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYRES64], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x68, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

1m58.325349841s ago: executing program 4 (id=204):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000400)={'ip6_vti0\x00', &(0x7f00000004c0)={'ip6_vti0\x00', <r2=>0x0, 0x29, 0x8, 0x0, 0xb55, 0x10, @dev={0xfe, 0x80, '\x00', 0x12}, @private0, 0x40, 0x10, 0x7, 0x7}})
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000005c0)={&(0x7f0000000540)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x48, 0x48, 0x3, [@volatile={0xb, 0x0, 0x0, 0x9, 0x5}, @typedef={0x9, 0x0, 0x0, 0x8, 0x5}, @fwd={0x10}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x5, 0x3, 0x1}}, @volatile={0x2, 0x0, 0x0, 0x9, 0x3}]}, {0x0, [0x30]}}, &(0x7f0000000740)=""/221, 0x63, 0xdd, 0x1, 0x34, 0x10000, @value}, 0x28)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r5, 0x0, 0x2}, 0x18)
r6 = io_uring_setup(0x7d98, &(0x7f00000003c0)={0x0, 0xdf07, 0x2, 0x2})
r7 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r7, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
listen(r7, 0x8957)
r8 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r8, &(0x7f0000000080)={0x2, 0x4e20, @loopback}, 0x10)
accept4(r7, 0x0, 0x0, 0x0)
close_range(r6, 0xffffffffffffffff, 0x200000000000000)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000600)={0x2, 0x4, 0x8, 0x1, 0x80, r0, 0x8, '\x00', r2, r3, 0x0, 0x3, 0x4, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'bridge0\x00', <r10=>0x0})
r11 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r11, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000180)=ANY=[@ANYBLOB="3c0000001000030502000000fbdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="1500000000000000140012800b0001006d61637365630000040002800800db610340f60500", @ANYRES32=r10, @ANYBLOB], 0x3c}}, 0x0)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat(0xffffffffffffffff, &(0x7f00000003c0)='./file0\x00', 0x1, 0x10)
r13 = syz_open_dev$vcsu(&(0x7f0000000040), 0x4, 0x20000)
sendto$inet6(r13, &(0x7f0000000340)="1354e46517edb5bcb77f201da91829b15e450737cbeb90d0e14f9e70af78cd41047d45e77062802be87815d0954c573253ab95bf3d3147dd6480124619f48b3b698885a055c618c8681f53c87e3eb33b74d1739f54fb92a939df54780cd239d736e49ec0f7dbc34ec1c5c5e667965976ae9c48f3afde", 0x76, 0x4000040, &(0x7f0000000200)={0xa, 0x4e21, 0x9, @remote, 0xf48}, 0x1c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r12}, 0x10)

1m58.134812434s ago: executing program 4 (id=207):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000000)={[{@minixdf}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
getsockname$packet(r5, &(0x7f00000002c0)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r6, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x4000800)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000a9000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000500)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r7}, 0x10)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB="210000000000000000000000000010000004"], 0x48)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x2000002, 0x13, r8, 0x0)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000980)=@delchain={0x34, 0x64, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xfff3, 0xffff}, {0x0, 0x1b}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@delchain={0x24, 0x11, 0x1, 0x1f, 0x0, {0x0, 0x0, 0x0, r6}}, 0x24}, 0x1, 0x0, 0x0, 0x4008000}, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$RDMA_USER_CM_CMD_BIND_IP(r1, &(0x7f0000000300)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e23, 0x8, @dev={0xfe, 0x80, '\x00', 0x16}, 0xc924}}}, 0x30)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x3, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7ffff000)

1m58.128024464s ago: executing program 32 (id=207):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000000)={[{@minixdf}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
getsockname$packet(r5, &(0x7f00000002c0)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r6, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x4000800)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000a9000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000500)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r7}, 0x10)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB="210000000000000000000000000010000004"], 0x48)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x2000002, 0x13, r8, 0x0)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000980)=@delchain={0x34, 0x64, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xfff3, 0xffff}, {0x0, 0x1b}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@delchain={0x24, 0x11, 0x1, 0x1f, 0x0, {0x0, 0x0, 0x0, r6}}, 0x24}, 0x1, 0x0, 0x0, 0x4008000}, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$RDMA_USER_CM_CMD_BIND_IP(r1, &(0x7f0000000300)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e23, 0x8, @dev={0xfe, 0x80, '\x00', 0x16}, 0xc924}}}, 0x30)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x3, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7ffff000)

1m56.44694905s ago: executing program 2 (id=236):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r2}, &(0x7f0000000280), &(0x7f0000000300)=r3}, 0x20)
renameat(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

1m56.446737941s ago: executing program 2 (id=237):
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>r0, {0xffff}}, './file0\x00'})
getsockname$packet(r1, &(0x7f0000000580)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @random}, &(0x7f00000005c0)=0x14)
r3 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet_sctp(r3, &(0x7f00000032c0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="3000000000000000846fea1ea0a20048af01000020000000000c0000000000000000dc0557888153cb9500"/52, @ANYRES32=0x0], 0x30}], 0x1, 0x0)
r4 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
setsockopt$X25_QBITINCL(r4, 0x106, 0x1, &(0x7f00000007c0), 0x4)
sendmsg$IPVS_CMD_SET_INFO(0xffffffffffffffff, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x59)
r5 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r5, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x4, 0x0, @private1, 0x20000}}, {{0xa, 0x0, 0x40000, @dev={0xfe, 0x80, '\x00', 0x26}, 0xfffffffe}}}, 0x108)
setsockopt$inet6_group_source_req(r5, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$EXT4_IOC_GET_ES_CACHE(r5, 0xc020662a, &(0x7f0000000340)={0xb8, 0x9, 0x4, 0x3, 0x9, 0x0, [{0xc44, 0x100000000, 0x200, '\x00', 0x2}, {0x4, 0x4, 0x7, '\x00', 0x1000}, {0xc, 0x0, 0x9, '\x00', 0x1804}, {0x8, 0x3, 0x100, '\x00', 0x8}, {0x5, 0x3, 0x7, '\x00', 0x2}, {0x4000000, 0x4, 0x6ed, '\x00', 0x209}, {0x26f, 0x8, 0x8, '\x00', 0x302}, {0x10000, 0xb14, 0x0, '\x00', 0x3005}, {0x8, 0x1, 0x5, '\x00', 0x3789}]})
r6 = socket$inet(0x2, 0x4000000000000001, 0x0)
r7 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r7, 0x29, 0x2e, &(0x7f0000000080)={0x0, {{0xa, 0x4, 0x0, @mcast1={0xff, 0x7}, 0x8a4}}, {{0xa, 0x4e20, 0x100, @remote}}}, 0x108)
r8 = socket$netlink(0x10, 0x3, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000600)=ANY=[@ANYRES8=r6, @ANYRESDEC=r2, @ANYRESHEX=r5, @ANYRESHEX], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xc, '\x00', 0x0, @fallback=0x3c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r10, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a6400000000000009000100737995cc702b56edf2f6020073797a320000000038000480340001800c0001007061796c6f616400240002800800044000000000080002400000000008000540000000080800033e00000000140000001100010000000000000000000000000a"], 0x8c}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r9}, 0x10)
r11 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r11, &(0x7f00000004c0)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000e80)={<r12=>0xffffffffffffffff}, 0x2, 0x5}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY(r1, &(0x7f00000000c0)={0x13, 0x10, 0x8, {0x0, r12}}, 0x18)
sendmsg$netlink(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001d40)=[{&(0x7f0000000100)=ANY=[@ANYBLOB="2c00000010008100000000000080000000000000", @ANYRES32=0x0, @ANYBLOB="0a043cbf", @ANYRES32, @ANYBLOB='\n\x00'], 0x2c}], 0x1}, 0x0)

1m56.208687454s ago: executing program 2 (id=243):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000007c0), r0)
r2 = syz_open_dev$usbfs(&(0x7f0000000100), 0x45e, 0x101701)
ioctl$USBDEVFS_FREE_STREAMS(r2, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="0200a103100005000500000002000020d3"])
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f00000000c0)={'wpan4\x00', <r3=>0x0})
ioctl$AUTOFS_IOC_ASKUMOUNT(r2, 0x80049370, &(0x7f0000000280))
sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r0, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000180)={0x24, r1, 0x1, 0x70bd2c, 0x25dfdbff, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r3}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x24000000}, 0x20000000)

1m56.131458856s ago: executing program 2 (id=244):
syz_open_dev$usbfs(0x0, 0x10, 0xa401)
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x0, &(0x7f00000021c0), 0x1, 0x789, &(0x7f0000001240)="$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")
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="05000000000000007111ae00000000008510000002000000850000000500000095000000000000009500a505000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000340)={r2, 0xe0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe5, 0x8, 0x0, 0x0}}, 0x10)
pwrite64(r1, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
openat(0xffffffffffffff9c, 0x0, 0xc4042, 0x1d5)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x1db)
writev(r3, 0x0, 0x0)

1m54.950890214s ago: executing program 2 (id=260):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r1 = perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x65, 0xfc, 0x5, 0x0, 0x0, 0x7, 0x9b064, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc46, 0x0, @perf_bp={0x0}, 0x12000, 0x8, 0x7ffffefc, 0x3, 0x1, 0x0, 0x0, 0x0, 0x100}, 0x0, 0x6, 0xffffffffffffffff, 0x9)
r2 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x802, 0x0)
write$UHID_CREATE(r2, &(0x7f0000002a00)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f00000000c0)=""/43, 0x2b}}, 0x120)
write$UHID_DESTROY(r2, &(0x7f0000000080), 0x4)
ioctl$FS_IOC_GETFLAGS(r1, 0x80086601, &(0x7f0000000040))
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r4=>0x0})
r5 = open(&(0x7f0000000300)='.\x00', 0x100, 0xc0)
ioctl$FS_IOC_SETFLAGS(r5, 0x40086602, &(0x7f00000001c0)=0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x3, 0xfff, 0xffffff99, 0xee, 0x40462, r0, 0x7, '\x00', r4, r5, 0x3, 0x0, 0x2, 0x0, @void, @value, @void, @value}, 0x50)
ioctl$sock_proto_private(r3, 0x891f, &(0x7f0000008080)="94b58e3a66")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', 0xffffffffffffffff, 0x0, 0x2}, 0x18)

1m54.766181727s ago: executing program 2 (id=265):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendto$inet(r0, &(0x7f00000000c0)="f461c5bbd75c3583", 0x8, 0x0, &(0x7f0000000100)={0x2, 0x0, @empty}, 0x10)
setsockopt$inet_int(r0, 0x0, 0xc, &(0x7f0000000040)=0x40, 0x4)
recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0xa00}, 0x8001}], 0x1, 0x2, 0x0)

1m39.467423929s ago: executing program 33 (id=265):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendto$inet(r0, &(0x7f00000000c0)="f461c5bbd75c3583", 0x8, 0x0, &(0x7f0000000100)={0x2, 0x0, @empty}, 0x10)
setsockopt$inet_int(r0, 0x0, 0xc, &(0x7f0000000040)=0x40, 0x4)
recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0xa00}, 0x8001}], 0x1, 0x2, 0x0)

3.82851365s ago: executing program 0 (id=2518):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x18, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='mm_page_alloc\x00', r1}, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r3, &(0x7f0000004200)='t', 0x1)
sendfile(r3, r2, 0x0, 0x7ffff000)
mq_getsetattr(r3, &(0x7f00000000c0)={0x3, 0x5, 0x8, 0x40}, &(0x7f0000000100))
socket$nl_route(0x10, 0x3, 0x0)
socket$kcm(0xa, 0x5, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x3c, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x33f555fdfdd407b9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r4}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x18)
r6 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000500)=@gettclass={0x24, 0x2a, 0x315, 0x70bd26, 0x25dfdbfb, {0x0, 0x0, 0x0, r7, {0x3, 0xf}, {0xb}, {0xffe0, 0x1}}}, 0x24}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@bloom_filter={0x1e, 0x6, 0x5, 0x99b, 0x1a, 0x1, 0x1000, '\x00', r7, r3, 0x2, 0x5, 0x1, 0x2, @void, @value, @void, @value}, 0x50)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=@newsa={0x138, 0x10, 0x713, 0x70bd26, 0x0, {{@in=@empty, @in6=@mcast1, 0x4e22, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x2f}, {@in=@remote, 0x40000000, 0x32}, @in6=@private0={0xfc, 0x0, '\x00', 0x1}, {}, {}, {0xffffffff}, 0xfffffffc, 0x0, 0x2, 0x4, 0x0, 0xb}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x24000804}, 0x0)

2.916636504s ago: executing program 0 (id=2541):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000000)={[{@minixdf}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r5, &(0x7f00000002c0)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r6, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x4000800)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000a9000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000"], &(0x7f0000000500)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r7}, 0x10)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB="210000000000000000000000000010000004"], 0x48)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x2000002, 0x13, r8, 0x0)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000980)=@delchain={0x34, 0x64, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xfff3, 0xffff}, {0x0, 0x1b}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@delchain={0x24, 0x11, 0x1, 0x1f, 0x0, {0x0, 0x0, 0x0, r6}}, 0x24}, 0x1, 0x0, 0x0, 0x4008000}, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$RDMA_USER_CM_CMD_BIND_IP(r1, &(0x7f0000000300)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e23, 0x8, @dev={0xfe, 0x80, '\x00', 0x16}, 0xc924}}}, 0x30)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x3, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7ffff000)

2.851175475s ago: executing program 1 (id=2531):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kmem_cache_free\x00', r0}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x44}}, 0x40000)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0a000000050000000200000003"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000640), &(0x7f0000000740), 0x20075, r1}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x12, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$SNAPSHOT_GET_IMAGE_SIZE(0xffffffffffffffff, 0x8008330e, &(0x7f0000000000))
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r3, &(0x7f0000000340)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r3, 0x8)
r4 = accept4(r3, 0x0, 0x0, 0x0)
sendmmsg$unix(r4, &(0x7f0000001840)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000140)="c7", 0x1}], 0x1, 0x0, 0x0, 0x8054}}], 0x1, 0x4000045)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r4, 0x84, 0x7b, &(0x7f00000003c0)={0x0, 0x4}, 0x8)
close(r4)

1.949845969s ago: executing program 0 (id=2549):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000000)={[{@minixdf}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r5, &(0x7f00000002c0)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r6, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x4000800)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000a9000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000"], &(0x7f0000000500)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r7}, 0x10)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB="210000000000000000000000000010000004"], 0x48)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x2000002, 0x13, r8, 0x0)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000980)=@delchain={0x34, 0x64, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xfff3, 0xffff}, {0x0, 0x1b}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@delchain={0x24, 0x11, 0x1, 0x1f, 0x0, {0x0, 0x0, 0x0, r6}}, 0x24}, 0x1, 0x0, 0x0, 0x4008000}, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$RDMA_USER_CM_CMD_BIND_IP(r1, &(0x7f0000000300)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e23, 0x8, @dev={0xfe, 0x80, '\x00', 0x16}, 0xc924}}}, 0x30)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x3, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7ffff000)

1.816143812s ago: executing program 1 (id=2539):
r0 = socket(0x10, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r2, 0x0, 0x6}, 0x18)
write(r0, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f00"/28, 0x1c)
recvmmsg(r0, &(0x7f0000002ec0), 0x400000000000ec0, 0x2, &(0x7f00000001c0)={0x77359400})

1.728165343s ago: executing program 6 (id=2542):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x18, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='mm_page_alloc\x00', r1}, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r3, &(0x7f0000004200)='t', 0x1)
sendfile(r3, r2, 0x0, 0x7ffff000)
mq_getsetattr(r3, &(0x7f00000000c0)={0x3, 0x5, 0x8, 0x40}, &(0x7f0000000100))
socket$nl_route(0x10, 0x3, 0x0)
socket$kcm(0xa, 0x5, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x3c, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x33f555fdfdd407b9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r4}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x18)
r6 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000500)=@gettclass={0x24, 0x2a, 0x315, 0x70bd26, 0x25dfdbfb, {0x0, 0x0, 0x0, r7, {0x3, 0xf}, {0xb}, {0xffe0, 0x1}}}, 0x24}}, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=@newsa={0x138, 0x10, 0x713, 0x70bd26, 0x0, {{@in=@empty, @in6=@mcast1, 0x4e22, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x2f}, {@in=@remote, 0x40000000, 0x32}, @in6=@private0={0xfc, 0x0, '\x00', 0x1}, {}, {}, {0xffffffff}, 0xfffffffc, 0x0, 0x2, 0x4, 0x0, 0xb}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x24000804}, 0x0)

1.718137733s ago: executing program 1 (id=2543):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x759, &(0x7f00000005c0)={[{@user_xattr}, {@noblock_validity}, {@discard}, {@nomblk_io_submit}, {@data_err_ignore, 0x0}, {@journal_dev={'journal_dev', 0x3d, 0xfffffffffffffffe}}, {@barrier}, {@grpjquota}, {@mblk_io_submit}, {@init_itable}, {@usrjquota}, {@errors_remount}, {@jqfmt_vfsv1}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x2000}}, {@grpid}, {@i_version}, {@acl}], [], 0x2c}, 0x2, 0x4f6, &(0x7f0000000700)="$eJzs3MtvVNUfAPDvnbaU/oBfK754KaNobDRSWp4LF0A0YWNiojG4rG0hSAFDawKkkWIMJC40/AU+dib+Ba50Y9S40LiVuDUmxHQDujDX3Jk7ddrb6Ytpx9LPJ5nh3Nec8733HuY85jaAdaucvSURmyPil4jori7O3KFc/efu1MTQn1MTQ0mk6at/JJX97kxNDNV2rR23KV/oLUWU3k9iZzHbzrHLV84Ojo6OXMxX9I2X8tS5wdMjp0fODxw5cmB/1+FDAwebEmdWpjs73r2wa/uJN26+PHTy5pvffZGVN82318dR1VN537DoHNoKa8pRnnku6zy9+KKvCVvq0kl79l5qXWFYtOyuzS5XR6X+d0dbZamqO156r6WFA1ZUmqZpZ2Ht9HfZZFovSaoHpOm1FLgPJNHqEgCtUfuivzOV9VQnhor94Pvb7WNR6QFlcd/NX9Ut7ZUebLmn2jfqWKH8H4qIk5N/fZy9Ys5xCACA5vrqWMSN49V2R+1V3VKKR+r2+38+N9QTEQ9ExNaIeDBvvzwcUdn30YjYVnfMlkXMApRnLRfbPz915Yn65mrTZO2/F/K5rZntv+mS97TlS1sq8Xckp86MjuzLz0lvdHRmy/3Fj54eVvv6xZ8/apR/ua79l72y/Gttwbwcv7fPGqAbHhwfvNe4a25fq5zYq8X4k2hPaqmI7RGxYxmfn52zM89+vqvR9hnxZ3EW4v+w8Ye3L6NAs6SfRjxTvf6TMSv+yOf/ksr85Lm3+8YuX3n+TP38ZP/hQwMH+zbG6Mi+vtpdUfT9j9dfyZOFbsQ8179WNVZ0Ii27/v+b8/6fnrnsyVLT87VjS8/j+q0bDfs0y73/NySvVdK1+dlLg+PjF/sjNiSTxfUD/x57abBrxv5Z/L175q7/WyP+/iQ/bmdEZDfxYxHxeETszsv+REQ8GRF75on/2+NPvdWoC7lw/Csri394Sde/UeLoDxFzb2o7+82XhYw/KBfi74hG1/9AJdWbrxkeHN+4UFzzlbQ+cc8nEAAAANaA3RGxOZLS3nygaXOUSnv3RmyaHkEZG3/u1IV3zg9XnxHoiY5SbaSru248tD8fG86Ws6MG6paz7fsr48ZpmqZd2XLWfx/d1trQYd3b1KD+Z34rPtIC3G+WNI/W6Ik2YE2aXf9vLfrI5v8gA1hdTfgdDbBGqf+wfi26/q/UU3BAy8xV/69G3G1BUYBVNlf9f72w5uiqlAVYXfr/sH4tv/77MQCsdb7/YV1a1EPyy0hsPTHPPkn7ymTaOFGK+f8KQE9EbU2tTTP/B/5aimhOCduaGmnXjGtamnOfjdGMvKK04D7tS/hDDKubKP03ilFNdEbEAnfv9M12tZa4stIFq1SCz1r7vxMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMC9+ycAAP//rnPT9g==")

1.620249265s ago: executing program 6 (id=2545):
syz_open_dev$tty1(0xc, 0x4, 0x1)
socket$inet6_udp(0xa, 0x2, 0x0)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000000), 0x204c81, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r0, &(0x7f0000000200), 0x0, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}, 0x1c)
shutdown(r0, 0x1)
setsockopt(r0, 0x84, 0x7f, &(0x7f00000001c0)="020000000980ffff", 0x8)
sigaltstack(&(0x7f0000000040)={&(0x7f0000002000)=""/4126, 0x0, 0x101e}, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000180), 0xffffffffffffffff)
r2 = eventfd2(0x0, 0x0)
read$eventfd(r2, &(0x7f0000000040), 0x8)

1.498036637s ago: executing program 1 (id=2547):
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x3, 0x0, 0x2, 0x1}}, 0x20)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
chmod(&(0x7f0000000080)='./file0\x00', 0x145)

1.232379171s ago: executing program 1 (id=2548):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000000)={[{@minixdf}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r5, &(0x7f00000002c0)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r6, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x4000800)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000a9000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008"], &(0x7f0000000500)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r7}, 0x10)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB="210000000000000000000000000010000004"], 0x48)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x2000002, 0x13, r8, 0x0)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000980)=@delchain={0x34, 0x64, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xfff3, 0xffff}, {0x0, 0x1b}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@delchain={0x24, 0x11, 0x1, 0x1f, 0x0, {0x0, 0x0, 0x0, r6}}, 0x24}, 0x1, 0x0, 0x0, 0x4008000}, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$RDMA_USER_CM_CMD_BIND_IP(r1, &(0x7f0000000300)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e23, 0x8, @dev={0xfe, 0x80, '\x00', 0x16}, 0xc924}}}, 0x30)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x3, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7ffff000)

1.095582253s ago: executing program 5 (id=2552):
r0 = socket(0x10, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r2, 0x0, 0x6}, 0x18)
write(r0, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f00"/28, 0x1c)
recvmmsg(r0, &(0x7f0000002ec0), 0x400000000000ec0, 0x2, &(0x7f00000001c0)={0x77359400})

1.076925543s ago: executing program 0 (id=2553):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kmem_cache_free\x00', r0}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x44}}, 0x40000)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0a000000050000000200000003"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000640), &(0x7f0000000740), 0x20075, r1}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x12, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$SNAPSHOT_GET_IMAGE_SIZE(0xffffffffffffffff, 0x8008330e, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r2, &(0x7f0000000340)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r2, 0x8)
r3 = accept4(r2, 0x0, 0x0, 0x0)
sendmmsg$unix(r3, &(0x7f0000001840)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000140)="c7", 0x1}], 0x1, 0x0, 0x0, 0x8054}}], 0x1, 0x4000045)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r3, 0x84, 0x7b, &(0x7f00000003c0)={0x0, 0x4}, 0x8)
close(r3)

1.039893814s ago: executing program 5 (id=2555):
r0 = socket$kcm(0x10, 0x2, 0x0)
recvmsg(r0, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="364000002600913e"], 0xfe33)

731.582449ms ago: executing program 6 (id=2557):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000400)={'ip6_vti0\x00', &(0x7f00000004c0)={'ip6_vti0\x00', <r2=>0x0, 0x29, 0x8, 0x0, 0xb55, 0x10, @dev={0xfe, 0x80, '\x00', 0x12}, @private0, 0x40, 0x10, 0x7, 0x7}})
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000005c0)={&(0x7f0000000540)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x48, 0x48, 0x3, [@volatile={0xb, 0x0, 0x0, 0x9, 0x5}, @typedef={0x9, 0x0, 0x0, 0x8, 0x5}, @fwd={0x10}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x5, 0x3, 0x1}}, @volatile={0x2, 0x0, 0x0, 0x9, 0x3}]}, {0x0, [0x30]}}, &(0x7f0000000740)=""/221, 0x63, 0xdd, 0x1, 0x34, 0x10000, @value}, 0x28)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r5, 0x0, 0x2}, 0x18)
r6 = io_uring_setup(0x7d98, &(0x7f00000003c0)={0x0, 0xdf07, 0x2, 0x2})
r7 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r7, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
listen(r7, 0x8957)
r8 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r8, &(0x7f0000000080)={0x2, 0x4e20, @loopback}, 0x10)
accept4(r7, 0x0, 0x0, 0x0)
close_range(r6, 0xffffffffffffffff, 0x200000000000000)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000600)={0x2, 0x4, 0x8, 0x1, 0x80, r0, 0x8, '\x00', r2, r3, 0x0, 0x3, 0x4, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'bridge0\x00', <r10=>0x0})
r11 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r11, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000180)=ANY=[@ANYBLOB="3c0000001000030502000000fbdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="1500000000000000140012800b0001006d61637365630000040002800800db610340f60500", @ANYRES32=r10, @ANYBLOB], 0x3c}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat(0xffffffffffffffff, &(0x7f00000003c0)='./file0\x00', 0x1, 0x10)
r12 = syz_open_dev$vcsu(&(0x7f0000000040), 0x4, 0x20000)
sendto$inet6(r12, &(0x7f0000000340)="1354e46517edb5bcb77f201da91829b15e450737cbeb90d0e14f9e70af78cd41047d45e77062802be87815d0954c573253ab95bf3d3147dd6480124619f48b3b698885a055c618c8681f53c87e3eb33b74d1739f54fb92a939df54780cd239d736e49ec0f7dbc34ec1c5c5e667965976ae9c48f3afde", 0x76, 0x4000040, &(0x7f0000000200)={0xa, 0x4e21, 0x9, @remote, 0xf48}, 0x1c)

723.000329ms ago: executing program 3 (id=2558):
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
unshare(0x400)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xeda4, @void, @value}, 0x94)
bpf$TOKEN_CREATE(0x24, &(0x7f0000001200)={0x0, r2}, 0x8)
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000900)=ANY=[@ANYBLOB="9feb010018000000000000002400000024000000020000000000000000000003000000000100000003000000faffffff0d0000000000000b0500584b9e4fd0143ee7d85ae4bc17f03d6300000000"], &(0x7f0000000f40)=""/4089, 0x3e, 0xff9, 0x4, 0x0, 0x0, @void, @value}, 0x28)
r4 = creat(&(0x7f0000000280)='./bus\x00', 0x2)
pwritev2(r4, &(0x7f0000000040)=[{&(0x7f0000000980)="ca", 0x1}], 0x1, 0x10fffff, 0xffffffff, 0x0)
r5 = open(&(0x7f0000000200)='./bus\x00', 0x44000, 0x0)
r6 = dup3(r5, r4, 0x0)
finit_module(r6, 0x0, 0x200000000000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000280)={'batadv_slave_0\x00'})
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000004c0)={r3, 0x20, &(0x7f0000000480)={&(0x7f0000000340)=""/5, 0x5, 0x0, &(0x7f0000000380)=""/249, 0xf9}}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000500)={{0x1, 0x1, 0x18, r3, {0xee00}}, './file0\x00'})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="340000003d0007010000000000000000047c0000040008800c0001"], 0x34}}, 0xc000)

720.348349ms ago: executing program 5 (id=2559):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xd, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000001b80)='GPL\x00', 0x2, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, @fallback=0x36e084fcb6392193, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000006d00"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r2}, &(0x7f0000000380), &(0x7f00000003c0)=r3}, 0x20)
syz_read_part_table(0x5c3, &(0x7f00000005c0)="$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")

666.01275ms ago: executing program 6 (id=2560):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
gettid()
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000004c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ff8}]})
r1 = syz_mount_image$iso9660(&(0x7f0000000180), &(0x7f0000000280)='./file0\x00', 0x14806, &(0x7f0000000b00)=ANY=[], 0x0, 0x6fe, &(0x7f0000001340)="$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")
futimesat(r1, &(0x7f0000000000)='./file1\x00', 0x0)
preadv2(r1, &(0x7f0000000180)=[{&(0x7f0000000500)=""/232, 0xe8}], 0x1, 0x7, 0xa, 0x4)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
r3 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_msfilter(r3, 0x0, 0x29, 0x0, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
accept4$vsock_stream(r0, &(0x7f0000000200)={0x28, 0x0, 0x2711, @my=0x0}, 0x10, 0x800)
rt_sigaction(0x19, &(0x7f0000000000)={0xfffffffffffffffc, 0x8c000003, 0x0, {[0x3]}}, 0x0, 0x8, &(0x7f0000000440))
memfd_create(&(0x7f00000006c0)='\x00\xac=\x9d\xd2\xdb\xe6\xbf\xb4\xf2\xed\x04\x00\x00\x00\xd4N\x12\x9b\x1f\t\xd1Z+\x86T\x16\xf8\x01\x00\x00\x00\x9f+\x8d!\x0fG\xab\xc2\xdc\xa3\xb3\xae8\x9f9?\xefo\xa4k\x01\xb2>\xa1\x9c\x86xm\xe6\x9bZ4\x91\x1a\xdb\xdd\x89\xb9\xc0LF;\xd6\x84\x195\x06\x00\x00\x00~\xf3S\x12\"p^\xc1jP\x8a\xc6[\xbd\xe7q]\xdd\r\x1aZS\x01*\x1b\xfd\xbcMA\xdcq\xa1\x00\xb3\xf9\x91r\x7f\xdc\xf1\xc3G,\xdb\xccS\x15\x95b\x17\xab\xe4?\x96\x95\xa4kP\x99YO\xb8V\xd5p\x90X\xaaf', 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r4}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xd, &(0x7f0000000240)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x74, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0100000004000000e27f00000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="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"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0xffffffff}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_DAEMON(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16, @ANYBLOB="010000000000000000000a000000380003801400020076657468305f766972745f7769666900060007004e2400000800030000000000080001"], 0x4c}}, 0x0)
rt_sigpending(&(0x7f0000000080), 0x8)

459.672233ms ago: executing program 6 (id=2561):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000280)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x48, 0x48, 0xb, [@type_tag={0x10, 0x0, 0x0, 0x12, 0x1}, @struct={0x9, 0x4, 0x0, 0x4, 0x1, 0x3, [{0x10, 0x5, 0x3}, {0x3, 0x3}, {0x3, 0x5, 0x2}, {0x7}]}]}, {0x0, [0x5f, 0x6f, 0x61, 0x5f, 0x30, 0x5f, 0x5f, 0x61, 0x0]}}, &(0x7f0000000200)=""/17, 0x6b, 0x11, 0x0, 0x10, 0x0, @void, @value}, 0x28)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0xb1c, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0xffffffffffffffd0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r2, 0x0, 0x2}, 0x18)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000002c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_DELFLOWTABLE={0x2c, 0x18, 0xa, 0x5, 0x0, 0x0, {0x2}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0x54}, 0x1, 0x0, 0x0, 0x40000}, 0x20008000)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x9, 0x0, 0x7ffc0002}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000001000000000000000000851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000100006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_mount_image$iso9660(&(0x7f0000000680), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='\x00', @ANYRESOCT=0x0], 0x1, 0x65a, &(0x7f0000000dc0)="$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")
statfs(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)=""/92)

454.216213ms ago: executing program 3 (id=2562):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xd, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7"], &(0x7f0000001b80)='GPL\x00', 0x2, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, @fallback=0x36e084fcb6392193, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r2}, &(0x7f0000000380), &(0x7f00000003c0)=r3}, 0x20)
syz_read_part_table(0x5c3, &(0x7f00000005c0)="$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")

334.643475ms ago: executing program 5 (id=2563):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
gettid()
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000004c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ff8}]})
r1 = syz_mount_image$iso9660(&(0x7f0000000180), &(0x7f0000000280)='./file0\x00', 0x14806, &(0x7f0000000b00)=ANY=[], 0x0, 0x6fe, &(0x7f0000001340)="$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")
futimesat(r1, 0x0, 0x0)
preadv2(r1, &(0x7f0000000180)=[{&(0x7f0000000500)=""/232, 0xe8}], 0x1, 0x7, 0xa, 0x4)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
r3 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_msfilter(r3, 0x0, 0x29, 0x0, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = accept4$vsock_stream(r0, &(0x7f0000000200)={0x28, 0x0, 0x2711, @my=0x0}, 0x10, 0x800)
ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f0000000300)={'batadv_slave_0\x00', &(0x7f00000002c0)=@ethtool_ts_info})
rt_sigaction(0x19, &(0x7f0000000000)={0xfffffffffffffffc, 0x8c000003, 0x0, {[0x3]}}, 0x0, 0x8, &(0x7f0000000440))
r5 = memfd_create(&(0x7f00000006c0)='\x00\xac=\x9d\xd2\xdb\xe6\xbf\xb4\xf2\xed\x04\x00\x00\x00\xd4N\x12\x9b\x1f\t\xd1Z+\x86T\x16\xf8\x01\x00\x00\x00\x9f+\x8d!\x0fG\xab\xc2\xdc\xa3\xb3\xae8\x9f9?\xefo\xa4k\x01\xb2>\xa1\x9c\x86xm\xe6\x9bZ4\x91\x1a\xdb\xdd\x89\xb9\xc0LF;\xd6\x84\x195\x06\x00\x00\x00~\xf3S\x12\"p^\xc1jP\x8a\xc6[\xbd\xe7q]\xdd\r\x1aZS\x01*\x1b\xfd\xbcMA\xdcq\xa1\x00\xb3\xf9\x91r\x7f\xdc\xf1\xc3G,\xdb\xccS\x15\x95b\x17\xab\xe4?\x96\x95\xa4kP\x99YO\xb8V\xd5p\x90X\xaaf', 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r6}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xd, &(0x7f0000000240)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x74, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0100000004000000e27f00000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="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"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0xffffffff}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r7}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_DAEMON(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16, @ANYBLOB="010000000000000000000a000000380003801400020076657468305f766972745f7769666900060007004e2400000800030000000000080001"], 0x4c}}, 0x0)
rt_sigpending(&(0x7f0000000080), 0x8)
fallocate(r5, 0x0, 0x400000000000000, 0x7)

277.160626ms ago: executing program 0 (id=2564):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00'})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYRES8=r0], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x55, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r2}, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00'}, 0x10)
r3 = syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301)
ioctl$USBDEVFS_IOCTL(r3, 0x80045505, &(0x7f0000000040)=@usbdevfs_connect)

269.051256ms ago: executing program 6 (id=2565):
r0 = perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8c}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_inet6_SIOCDIFADDR(r2, 0x8936, &(0x7f00000003c0)={@private1, 0x4d})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000080)={0x24, r3, 0x8, 0x70bd2c, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0x6}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x7}]}, 0x24}, 0x1, 0x0, 0x0, 0x24000086}, 0x8000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
syz_usbip_server_init(0x3)

257.373676ms ago: executing program 3 (id=2566):
r0 = socket(0x10, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r2, 0x0, 0x6}, 0x18)
write(r0, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f00"/28, 0x1c)
recvmmsg(r0, &(0x7f0000002ec0), 0x400000000000ec0, 0x2, &(0x7f00000001c0)={0x77359400})

256.925236ms ago: executing program 0 (id=2567):
syz_open_dev$tty1(0xc, 0x4, 0x1)
socket$inet6_udp(0xa, 0x2, 0x0)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000000), 0x204c81, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r0, &(0x7f0000000200), 0x0, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}, 0x1c)
shutdown(r0, 0x1)
setsockopt(r0, 0x84, 0x7f, &(0x7f00000001c0)="020000000980ffff", 0x8)
sigaltstack(&(0x7f0000000040)={&(0x7f0000002000)=""/4126, 0x0, 0x101e}, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000180), 0xffffffffffffffff)
r2 = eventfd2(0x0, 0x0)
read$eventfd(r2, &(0x7f0000000040), 0x8)

197.694247ms ago: executing program 5 (id=2568):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x3000000, &(0x7f0000000200)={[{@nobarrier}, {@dioread_nolock}]}, 0x1, 0x527, &(0x7f0000019580)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0xc, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000060060000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000fdffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002000000850000000300000095"], &(0x7f0000000040)='GPL\x00', 0xc, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000180)='kfree\x00', r2}, 0x18)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, 0x0)

141.367888ms ago: executing program 3 (id=2569):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000000)={[{@minixdf}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$eJzs3c9vFFUcAPDvbH/QUrSFGBUP0sQYSJSWFjDEeICrIQ3+iBcvVloQKdDQGi2aUBK8mBgvxph48iD+F0rkyklPHrx4MiREDUcT18x2pnTb2ZYubacyn0+y9M17O7w33X773r6+NxtAZQ2m/9Qi9kbEdBLRn8wvlnVGVji48Lx7f39yOn0kUa+/8WcSSZaXPz/JvvZlJ/dExM8/JbGnY2W9M3NXzo9PTU1ezo6HZy9MD8/MXTl47sL42cmzkxdHXxo9dvTI0WMjh9q6rqsFeSevv/9h/2djb3/3zT/JyPe/jSVxPF7Nnrj0OjbKYAw2vifJyqK+YxtdWUk6sp+TpS9x0llig1iX/PXrioinoj864v6L1x+fvlZq44BNVU8i6kBFJeIfKiofB+Tv7Ze/D66VMioBtsLdEwsTACvjv3NhbjB6GnMDO+8lsXRaJ4mI9mbmmu2KiNu3xq6fuTV2PTZpHg4oNn8tIp4uiv+kEf8D0RMDjfivNcV/Oi44lX1N819vs/7lU8XiH7bOQvz3rBr/0SL+31kS/++2Wf/g/eR7vU3x39vuJQEAAAAAAEBl3TwRES8W/f2/trj+JwrW//RFxPENqH9w2fHKv//X7mxANUCBuyciXilc/1vLV/8OdGSpxxrrAbqSM+emJg9FxOMRcSC6dqTHI6vUcfDzPV+3KhvM1v/lj7T+29lawKwddzp3NJ8zMT47/rDXDUTcvRbxTOH632Sx/08K+v/098H0A9ax5/kbp1qVrR3/wGapfxuxv7D/v3/XimT1+3MMN8YDw/moYKVnP/7ih1b1txv/bjEBDy/t/3euHv8DydL79cysv47Dc531VmXtjv+7kzcbt5zpzvI+Gp+dvTwS0Z2c7Ehzm/JH199meBTl8ZDHSxr/B55bff6vaPzfGxHzy/7v5K/mPcW5J//t+71Ve4z/oTxp/E+sq/9ff2L0xsCPrep/sP7/SKOvP5DlmP+DBV/lYdrdnF8Qjp1FRVvdXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FNQiYlcktaHFdK02NBTRFxFPxM7a1KWZ2RfOXPrg4kRa1vj8/1r+Sb/9C8dJ/vn/A0uOR5cdH46I3RHxZUdv43jo9KWpibIvHgAAAAAAAAAAAAAAAAAAALaJvhb7/1N/dJTdOmDTdZbdAKA0BfH/SxntALae/h+qS/xDdYl/qC7xD9Ul/qG6xD9Ul/iH6hL/AAAAAADwSNm97+avSUTMv9zbeKS6s7KuUlsGbLZa2Q0ASuMWP1Bdlv5AdXmPDyRrlPe0PGmtM1czffohTgYAAAAAAAAAAACAytm/1/5/qCr7/6G67P+H6sr3/+8ruR3A1vMeH4g1dvIX7v9f8ywAAAAAAAAAAAAAYCPNzF05Pz41NXlZ4q3t0YytTNTr9avpT8F2ac//PJEvhd8u7VmWyPf6PdhZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0XAAD//xYSJMU=")
openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f00000002c0)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r2, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x4000800)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000a9000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000500)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB="210000000000000000000000000010000004"], 0x48)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x2000002, 0x13, r3, 0x0)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)

80.220429ms ago: executing program 1 (id=2570):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000280)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x3c, 0x3c, 0xb, [@type_tag={0x10, 0x0, 0x0, 0x12, 0x1}, @struct={0x9, 0x3, 0x0, 0x4, 0x1, 0x3, [{0x10, 0x5, 0x3}, {0x3, 0x3}, {0x7}]}]}, {0x0, [0x5f, 0x6f, 0x61, 0x5f, 0x30, 0x5f, 0x5f, 0x61, 0x0]}}, &(0x7f0000000200)=""/17, 0x5f, 0x11, 0x0, 0x10, 0x0, @void, @value}, 0x28)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x4, 0xc, &(0x7f00000001c0)=ANY=[@ANYRES16, @ANYRESHEX=r0, @ANYRES16=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, @void, @value}, 0xc6)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0xb1c, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0xffffffffffffffd0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r3, 0x0, 0x2}, 0x18)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000002c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_DELFLOWTABLE={0x2c, 0x18, 0xa, 0x5, 0x0, 0x0, {0x2}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0x54}, 0x1, 0x0, 0x0, 0x40000}, 0x20008000)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x9, 0x0, 0x7ffc0002}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000001000000000000000000851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000100006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_mount_image$iso9660(&(0x7f0000000680), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='\x00', @ANYRESOCT=0x0], 0x1, 0x65a, &(0x7f0000000dc0)="$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")
statfs(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)=""/92)

34.84077ms ago: executing program 3 (id=2571):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b70400000000000085"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x2}, 0x18)
syz_mount_image$iso9660(&(0x7f0000000680), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='\x00', @ANYRESOCT=0x0], 0x1, 0x65a, &(0x7f0000000dc0)="$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")
statfs(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)=""/92)

816.2µs ago: executing program 5 (id=2572):
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
unshare(0x400)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xeda4, @void, @value}, 0x94)
bpf$TOKEN_CREATE(0x24, &(0x7f0000001200)={0x0, r2}, 0x8)
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000900)=ANY=[@ANYBLOB="9feb010018000000000000002400000024000000020000000000000000000003000000000100000003000000faffffff0d0000000000000b0500584b9e4fd0143ee7d85ae4bc17f03d6300000000"], &(0x7f0000000f40)=""/4089, 0x3e, 0xff9, 0x4, 0x0, 0x0, @void, @value}, 0x28)
r4 = creat(&(0x7f0000000280)='./bus\x00', 0x2)
pwritev2(r4, &(0x7f0000000040)=[{&(0x7f0000000980)="ca", 0x1}], 0x1, 0x10fffff, 0xffffffff, 0x0)
r5 = open(&(0x7f0000000200)='./bus\x00', 0x44000, 0x0)
r6 = dup3(r5, r4, 0x0)
finit_module(r6, 0x0, 0x200000000000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000280)={'batadv_slave_0\x00'})
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000004c0)={r3, 0x20, &(0x7f0000000480)={&(0x7f0000000340)=""/5, 0x5, 0x0, &(0x7f0000000380)=""/249, 0xf9}}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000500)={{0x1, 0x1, 0x18, r3, {0xee00}}, './file0\x00'})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="340000003d0007010000000000000000047c0000040008800c0001"], 0x34}}, 0xc000)

0s ago: executing program 3 (id=2573):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
gettid()
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000004c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ff8}]})
r1 = syz_mount_image$iso9660(&(0x7f0000000180), &(0x7f0000000280)='./file0\x00', 0x14806, &(0x7f0000000b00)=ANY=[], 0x0, 0x6fe, &(0x7f0000001340)="$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")
futimesat(r1, &(0x7f0000000000)='./file1\x00', 0x0)
preadv2(r1, &(0x7f0000000180)=[{&(0x7f0000000500)=""/232, 0xe8}], 0x1, 0x7, 0xa, 0x4)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
r3 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_msfilter(r3, 0x0, 0x29, 0x0, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
accept4$vsock_stream(r0, &(0x7f0000000200)={0x28, 0x0, 0x2711, @my=0x0}, 0x10, 0x800)
rt_sigaction(0x19, &(0x7f0000000000)={0xfffffffffffffffc, 0x8c000003, 0x0, {[0x3]}}, 0x0, 0x8, &(0x7f0000000440))
r4 = memfd_create(&(0x7f00000006c0)='\x00\xac=\x9d\xd2\xdb\xe6\xbf\xb4\xf2\xed\x04\x00\x00\x00\xd4N\x12\x9b\x1f\t\xd1Z+\x86T\x16\xf8\x01\x00\x00\x00\x9f+\x8d!\x0fG\xab\xc2\xdc\xa3\xb3\xae8\x9f9?\xefo\xa4k\x01\xb2>\xa1\x9c\x86xm\xe6\x9bZ4\x91\x1a\xdb\xdd\x89\xb9\xc0LF;\xd6\x84\x195\x06\x00\x00\x00~\xf3S\x12\"p^\xc1jP\x8a\xc6[\xbd\xe7q]\xdd\r\x1aZS\x01*\x1b\xfd\xbcMA\xdcq\xa1\x00\xb3\xf9\x91r\x7f\xdc\xf1\xc3G,\xdb\xccS\x15\x95b\x17\xab\xe4?\x96\x95\xa4kP\x99YO\xb8V\xd5p\x90X\xaaf', 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r5}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xd, &(0x7f0000000240)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x74, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0100000004000000e27f00000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="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"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0xffffffff}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r6}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
rt_sigpending(&(0x7f0000000080), 0x8)
fallocate(r4, 0x0, 0x400000000000000, 0x7)

kernel console output (not intermixed with test programs):

rror (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2109: bg 0: block 361: padding at end of block bitmap is not set
[  129.920888][ T9446] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  129.959100][ T9446] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.2109: invalid indirect mapped block 1811939328 (level 0)
[  129.959268][ T9446] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.2109: invalid indirect mapped block 2185560079 (level 1)
[  129.959436][ T9446] EXT4-fs (loop1): 1 truncate cleaned up
[  129.959765][ T9446] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  130.013421][ T3305] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  130.023607][   T10] vhci_hcd: vhci_device speed not set
[  130.069096][ T9462] loop0: detected capacity change from 0 to 1024
[  130.088108][ T9466] loop6: detected capacity change from 0 to 164
[  130.096411][ T9462] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: none.
[  130.110549][ T9466] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  130.121134][ T9466] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  130.171023][ T9473] loop6: detected capacity change from 0 to 512
[  130.187926][ T9473] EXT4-fs (loop6): 1 orphan inode deleted
[  130.194879][ T9473] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.207501][   T41] EXT4-fs error (device loop6): ext4_release_dquot:6971: comm kworker/u8:2: Failed to release dquot type 1
[  130.220480][ T9473] ext4 filesystem being mounted at /344/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  130.248089][ T5137] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.269572][ T9479] FAULT_INJECTION: forcing a failure.
[  130.269572][ T9479] name failslab, interval 1, probability 0, space 0, times 0
[  130.282348][ T9479] CPU: 0 UID: 0 PID: 9479 Comm: syz.6.2119 Not tainted 6.14.0-syzkaller-07422-gacb4f33713b9 #0 PREEMPT(voluntary) 
[  130.282372][ T9479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  130.282385][ T9479] Call Trace:
[  130.282391][ T9479]  <TASK>
[  130.282399][ T9479]  dump_stack_lvl+0xf6/0x150
[  130.282422][ T9479]  dump_stack+0x15/0x1a
[  130.282438][ T9479]  should_fail_ex+0x261/0x270
[  130.282544][ T9479]  should_failslab+0x8f/0xb0
[  130.282560][ T9479]  kmem_cache_alloc_noprof+0x59/0x340
[  130.282581][ T9479]  ? security_inode_alloc+0x37/0x100
[  130.282616][ T9479]  security_inode_alloc+0x37/0x100
[  130.282700][ T9479]  inode_init_always_gfp+0x4a2/0x4f0
[  130.282719][ T9479]  ? __pfx_hugetlbfs_alloc_inode+0x10/0x10
[  130.282743][ T9479]  alloc_inode+0x86/0x170
[  130.282763][ T9479]  new_inode+0x1e/0xe0
[  130.282786][ T9479]  hugetlbfs_get_inode+0x7d/0x380
[  130.282880][ T9479]  hugetlb_file_setup+0x188/0x3c0
[  130.282914][ T9479]  ksys_mmap_pgoff+0x174/0x340
[  130.282936][ T9479]  x64_sys_call+0x1945/0x2e10
[  130.282956][ T9479]  do_syscall_64+0xc9/0x1c0
[  130.283100][ T9479]  ? clear_bhb_loop+0x25/0x80
[  130.283170][ T9479]  ? clear_bhb_loop+0x25/0x80
[  130.283186][ T9479]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.283202][ T9479] RIP: 0033:0x7f239504d169
[  130.283213][ T9479] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  130.283261][ T9479] RSP: 002b:00007f23936af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  130.283275][ T9479] RAX: ffffffffffffffda RBX: 00007f2395265fa0 RCX: 00007f239504d169
[  130.283285][ T9479] RDX: 0000000004000002 RSI: 0000000000c00000 RDI: 0000200000400000
[  130.283297][ T9479] RBP: 00007f23936af090 R08: ffffffffffffffff R09: 0000000000000000
[  130.283310][ T9479] R10: 0000000000050032 R11: 0000000000000246 R12: 0000000000000001
[  130.283322][ T9479] R13: 0000000000000000 R14: 00007f2395265fa0 R15: 00007fff61b6d8d8
[  130.283355][ T9479]  </TASK>
[  130.519690][ T9483] loop5: detected capacity change from 0 to 1024
[  130.531210][ T9481] loop6: detected capacity change from 0 to 764
[  130.547825][ T9483] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.582434][ T9486] loop6: detected capacity change from 0 to 512
[  130.596557][ T9486] EXT4-fs: Ignoring removed nomblk_io_submit option
[  130.603777][ T9486] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  130.637937][ T9486] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  130.659469][ T9486] EXT4-fs (loop6): orphan cleanup on readonly fs
[  130.669767][ T9486] EXT4-fs error (device loop6): ext4_clear_blocks:876: inode #11: comm syz.6.2122: attempt to clear invalid blocks 1024 len 1
[  130.686417][ T9486] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.2122: bg 0: block 361: padding at end of block bitmap is not set
[  130.715564][ T9486] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  130.724933][ T9490] usb usb8: usbfs: process 9490 (syz.3.2123) did not claim interface 0 before use
[  130.728940][ T9486] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.2122: invalid indirect mapped block 1811939328 (level 0)
[  130.748655][ T9486] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.2122: invalid indirect mapped block 2185560079 (level 1)
[  130.773446][ T9486] EXT4-fs (loop6): 1 truncate cleaned up
[  130.786420][ T9486] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  130.853540][ T5137] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  130.865962][ T9495] loop3: detected capacity change from 0 to 164
[  130.885081][ T9495] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  130.907860][ T3300] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-001000000000.
[  130.919407][ T9495] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  130.975590][ T9495] __nla_validate_parse: 4 callbacks suppressed
[  130.975601][ T9495] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2125'.
[  131.013203][ T9502] loop0: detected capacity change from 0 to 164
[  131.020966][ T9502] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  131.030709][ T9502] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  131.241370][ T9512] loop3: detected capacity change from 0 to 764
[  131.366691][ T4147] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.405973][ T9519] loop5: detected capacity change from 0 to 512
[  131.429364][ T9519] EXT4-fs: Ignoring removed nomblk_io_submit option
[  131.450384][ T9519] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  131.499247][ T9519] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  131.533855][ T9519] EXT4-fs (loop5): orphan cleanup on readonly fs
[  131.554080][ T9519] EXT4-fs error (device loop5): ext4_clear_blocks:876: inode #11: comm syz.5.2134: attempt to clear invalid blocks 1024 len 1
[  131.573477][ T9519] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.2134: bg 0: block 361: padding at end of block bitmap is not set
[  131.594071][ T9519] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  131.610194][ T9519] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.2134: invalid indirect mapped block 1811939328 (level 0)
[  131.625808][ T9519] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.2134: invalid indirect mapped block 2185560079 (level 1)
[  131.640266][ T9519] EXT4-fs (loop5): 1 truncate cleaned up
[  131.646345][ T9519] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  131.676256][ T4147] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  131.699220][ T9530] loop5: detected capacity change from 0 to 512
[  131.705774][ T9530] EXT4-fs: Ignoring removed nomblk_io_submit option
[  131.712757][ T9530] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  131.733434][ T9530] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  131.748010][ T9530] EXT4-fs (loop5): orphan cleanup on readonly fs
[  131.756357][ T9530] EXT4-fs error (device loop5): ext4_clear_blocks:876: inode #11: comm syz.5.2137: attempt to clear invalid blocks 1024 len 1
[  131.771301][ T9530] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.2137: bg 0: block 361: padding at end of block bitmap is not set
[  131.771452][ T9530] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  131.771652][ T9530] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.2137: invalid indirect mapped block 1811939328 (level 0)
[  131.771854][ T9530] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.2137: invalid indirect mapped block 2185560079 (level 1)
[  131.772118][ T9530] EXT4-fs (loop5): 1 truncate cleaned up
[  131.772592][ T9530] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  131.828412][ T4147] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  131.867575][ T9535] loop5: detected capacity change from 0 to 512
[  131.877523][ T9535] EXT4-fs (loop5): 1 orphan inode deleted
[  131.883543][ T9535] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.896149][ T9535] ext4 filesystem being mounted at /366/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  131.896174][ T3385] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:7: Failed to release dquot type 1
[  131.931309][ T4147] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.962862][ T9542] loop5: detected capacity change from 0 to 164
[  131.970233][ T9542] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  131.979209][ T9542] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  132.028661][ T9548] loop5: detected capacity change from 0 to 764
[  132.057633][ T9550] loop5: detected capacity change from 0 to 1024
[  132.066580][ T9550] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.091627][ T9550] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2145'.
[  132.108832][ T9550] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2145'.
[  132.564114][ T3512] hid-generic 0000:0004:0000.004B: unknown main item tag 0x0
[  132.571541][ T3512] hid-generic 0000:0004:0000.004B: unknown main item tag 0x0
[  132.578998][ T3512] hid-generic 0000:0004:0000.004B: unknown main item tag 0x0
[  132.643606][ T3512] hid-generic 0000:0004:0000.004B: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz1
[  132.738317][ T9554] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2146'.
[  132.959598][ T4147] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.179906][   T29] kauditd_printk_skb: 793 callbacks suppressed
[  133.179921][   T29] audit: type=1326 audit(1743193168.915:11529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9580 comm="syz.3.2154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b04c3d169 code=0x7ffc0000
[  133.193866][ T9581] loop3: detected capacity change from 0 to 164
[  133.209658][   T29] audit: type=1326 audit(1743193168.915:11530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9580 comm="syz.3.2154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b04c3d169 code=0x7ffc0000
[  133.252213][ T9581] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  133.271407][ T9581] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  133.317300][ T9584] FAULT_INJECTION: forcing a failure.
[  133.317300][ T9584] name failslab, interval 1, probability 0, space 0, times 0
[  133.329998][ T9584] CPU: 0 UID: 0 PID: 9584 Comm: syz.5.2155 Not tainted 6.14.0-syzkaller-07422-gacb4f33713b9 #0 PREEMPT(voluntary) 
[  133.330102][ T9584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  133.330112][ T9584] Call Trace:
[  133.330117][ T9584]  <TASK>
[  133.330123][ T9584]  dump_stack_lvl+0xf6/0x150
[  133.330142][ T9584]  dump_stack+0x15/0x1a
[  133.330156][ T9584]  should_fail_ex+0x261/0x270
[  133.330184][ T9584]  should_failslab+0x8f/0xb0
[  133.330221][ T9584]  __kmalloc_cache_noprof+0x55/0x320
[  133.330245][ T9584]  ? __se_sys_memfd_create+0x1ea/0x5a0
[  133.330273][ T9584]  __se_sys_memfd_create+0x1ea/0x5a0
[  133.330446][ T9584]  __x64_sys_memfd_create+0x31/0x40
[  133.330475][ T9584]  x64_sys_call+0x1163/0x2e10
[  133.330548][ T9584]  do_syscall_64+0xc9/0x1c0
[  133.330650][ T9584]  ? clear_bhb_loop+0x25/0x80
[  133.330674][ T9584]  ? clear_bhb_loop+0x25/0x80
[  133.330725][ T9584]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.330742][ T9584] RIP: 0033:0x7f65d85dd169
[  133.330757][ T9584] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  133.330778][ T9584] RSP: 002b:00007f65d6c1de18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  133.330836][ T9584] RAX: ffffffffffffffda RBX: 000000000000025d RCX: 00007f65d85dd169
[  133.330849][ T9584] RDX: 00007f65d6c1def0 RSI: 0000000000000000 RDI: 00007f65d865ec3c
[  133.330863][ T9584] RBP: 0000200000000680 R08: 00007f65d6c1dbb7 R09: 00007f65d6c1de40
[  133.330934][ T9584] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000140
[  133.330961][ T9584] R13: 00007f65d6c1def0 R14: 00007f65d6c1deb0 R15: 0000200000000000
[  133.330996][ T9584]  </TASK>
[  133.498351][   T29] audit: type=1326 audit(1743193168.915:11531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9580 comm="syz.3.2154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f5b04c3d169 code=0x7ffc0000
[  133.522171][   T29] audit: type=1326 audit(1743193168.915:11532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9580 comm="syz.3.2154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f5b04c3d1a3 code=0x7ffc0000
[  133.545506][   T29] audit: type=1326 audit(1743193168.915:11533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9580 comm="syz.3.2154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f5b04c3bc1f code=0x7ffc0000
[  133.568905][   T29] audit: type=1326 audit(1743193168.915:11534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9580 comm="syz.3.2154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f5b04c3d1f7 code=0x7ffc0000
[  133.592292][   T29] audit: type=1326 audit(1743193168.925:11535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9580 comm="syz.3.2154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5b04c3bad0 code=0x7ffc0000
[  133.615863][   T29] audit: type=1326 audit(1743193168.925:11536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9580 comm="syz.3.2154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f5b04c3cd6b code=0x7ffc0000
[  133.639308][   T29] audit: type=1326 audit(1743193168.985:11537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9580 comm="syz.3.2154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f5b04c3bdca code=0x7ffc0000
[  133.662732][   T29] audit: type=1326 audit(1743193168.985:11538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9580 comm="syz.3.2154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f5b04c3bdca code=0x7ffc0000
[  134.103109][ T9604] loop6: detected capacity change from 0 to 512
[  134.109717][ T9604] EXT4-fs: Ignoring removed nomblk_io_submit option
[  134.118270][ T9604] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  134.136367][ T9604] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  134.146602][ T9604] EXT4-fs (loop6): orphan cleanup on readonly fs
[  134.153339][ T9604] EXT4-fs error (device loop6): ext4_clear_blocks:876: inode #11: comm syz.6.2162: attempt to clear invalid blocks 1024 len 1
[  134.168079][ T9604] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.2162: bg 0: block 361: padding at end of block bitmap is not set
[  134.182829][ T9604] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  134.194398][ T9604] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.2162: invalid indirect mapped block 1811939328 (level 0)
[  134.209373][ T9604] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.2162: invalid indirect mapped block 2185560079 (level 1)
[  134.224052][ T9604] EXT4-fs (loop6): 1 truncate cleaned up
[  134.233771][ T9604] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  134.247027][ T9609] loop5: detected capacity change from 0 to 128
[  134.254928][ T9609] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  134.268647][ T9609] ext4 filesystem being mounted at /375/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  134.280366][ T9609] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  134.300614][ T5137] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  134.322910][ T9612] loop6: detected capacity change from 0 to 764
[  134.350181][ T9616] loop6: detected capacity change from 0 to 764
[  134.382134][ T9620] loop0: detected capacity change from 0 to 1024
[  134.394988][ T9620] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: none.
[  134.415333][ T9622] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(14)
[  134.421947][ T9622] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  134.429625][ T9622] vhci_hcd vhci_hcd.0: Device attached
[  134.436358][ T9625] vhci_hcd: connection closed
[  134.436523][ T3385] vhci_hcd: stop threads
[  134.445545][ T3385] vhci_hcd: release socket
[  134.445553][ T3385] vhci_hcd: disconnect device
[  134.696858][ T9633] loop3: detected capacity change from 0 to 764
[  134.777661][ T9638] SELinux: syz.1.2174 (9638) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  134.813800][ T9641] loop1: detected capacity change from 0 to 512
[  134.820360][ T9641] EXT4-fs: Ignoring removed nomblk_io_submit option
[  134.827411][ T9641] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  134.837911][ T9641] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  134.848267][ T9641] EXT4-fs (loop1): orphan cleanup on readonly fs
[  134.855315][ T9641] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #11: comm syz.1.2175: attempt to clear invalid blocks 1024 len 1
[  134.870006][ T9641] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2175: bg 0: block 361: padding at end of block bitmap is not set
[  134.885302][ T9641] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  134.894216][ T9641] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.2175: invalid indirect mapped block 1811939328 (level 0)
[  134.908493][ T9641] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.2175: invalid indirect mapped block 2185560079 (level 1)
[  134.922914][ T9641] EXT4-fs (loop1): 1 truncate cleaned up
[  134.930103][ T9641] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  134.956110][ T3305] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  134.972475][ T9644] loop5: detected capacity change from 0 to 764
[  135.011257][ T9647] loop1: detected capacity change from 0 to 164
[  135.018803][ T9647] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  135.020253][ T9648] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2178'.
[  135.037527][ T9647] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  135.046745][ T9648] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  135.082730][ T9647] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2177'.
[  135.149654][ T9659] loop1: detected capacity change from 0 to 164
[  135.160794][ T9659] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  135.173276][ T9657] loop6: detected capacity change from 0 to 764
[  135.173673][   T36] hid-generic 0000:0004:0000.004C: unknown main item tag 0x0
[  135.186974][   T36] hid-generic 0000:0004:0000.004C: unknown main item tag 0x0
[  135.194371][   T36] hid-generic 0000:0004:0000.004C: unknown main item tag 0x0
[  135.204243][ T9659] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  135.235321][   T36] hid-generic 0000:0004:0000.004C: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz1
[  135.238790][ T3300] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-001000000000.
[  135.276491][ T9663] loop1: detected capacity change from 0 to 512
[  135.287730][ T9663] EXT4-fs: Ignoring removed nomblk_io_submit option
[  135.295534][ T9663] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  135.307397][ T9667] loop5: detected capacity change from 0 to 512
[  135.313991][ T9663] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  135.322009][ T9663] EXT4-fs (loop1): orphan cleanup on readonly fs
[  135.334746][ T9663] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #11: comm syz.1.2186: attempt to clear invalid blocks 1024 len 1
[  135.348163][ T9667] EXT4-fs: Ignoring removed nomblk_io_submit option
[  135.358464][ T9670] FAULT_INJECTION: forcing a failure.
[  135.358464][ T9670] name failslab, interval 1, probability 0, space 0, times 0
[  135.371093][ T9670] CPU: 0 UID: 0 PID: 9670 Comm: syz.0.2185 Not tainted 6.14.0-syzkaller-07422-gacb4f33713b9 #0 PREEMPT(voluntary) 
[  135.371176][ T9670] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  135.371189][ T9670] Call Trace:
[  135.371196][ T9670]  <TASK>
[  135.371203][ T9670]  dump_stack_lvl+0xf6/0x150
[  135.371225][ T9670]  dump_stack+0x15/0x1a
[  135.371241][ T9670]  should_fail_ex+0x261/0x270
[  135.371267][ T9670]  should_failslab+0x8f/0xb0
[  135.371359][ T9670]  kmem_cache_alloc_node_noprof+0x5c/0x340
[  135.371388][ T9670]  ? __alloc_skb+0x10d/0x320
[  135.371411][ T9670]  __alloc_skb+0x10d/0x320
[  135.371432][ T9670]  netlink_alloc_large_skb+0xad/0xe0
[  135.371528][ T9670]  netlink_sendmsg+0x3da/0x720
[  135.371548][ T9670]  ? __pfx_netlink_sendmsg+0x10/0x10
[  135.371565][ T9670]  __sock_sendmsg+0x140/0x180
[  135.371592][ T9670]  ____sys_sendmsg+0x350/0x4e0
[  135.371667][ T9670]  __sys_sendmsg+0x1a0/0x240
[  135.371696][ T9670]  __x64_sys_sendmsg+0x46/0x50
[  135.371715][ T9670]  x64_sys_call+0x26f3/0x2e10
[  135.371780][ T9670]  do_syscall_64+0xc9/0x1c0
[  135.371805][ T9670]  ? clear_bhb_loop+0x25/0x80
[  135.371888][ T9670]  ? clear_bhb_loop+0x25/0x80
[  135.371910][ T9670]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.371927][ T9670] RIP: 0033:0x7fea712ed169
[  135.371939][ T9670] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  135.371957][ T9670] RSP: 002b:00007fea6f94f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  135.371977][ T9670] RAX: ffffffffffffffda RBX: 00007fea71505fa0 RCX: 00007fea712ed169
[  135.372026][ T9670] RDX: 0000000000000000 RSI: 0000200000000480 RDI: 0000000000000006
[  135.372039][ T9670] RBP: 00007fea6f94f090 R08: 0000000000000000 R09: 0000000000000000
[  135.372052][ T9670] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  135.372065][ T9670] R13: 0000000000000000 R14: 00007fea71505fa0 R15: 00007ffe95c74548
[  135.372084][ T9670]  </TASK>
[  135.568374][ T9663] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2186: bg 0: block 361: padding at end of block bitmap is not set
[  135.572074][ T9667] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  135.600527][ T9667] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  135.608597][ T9667] EXT4-fs (loop5): orphan cleanup on readonly fs
[  135.608668][ T9663] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  135.625709][ T9667] EXT4-fs error (device loop5): ext4_clear_blocks:876: inode #11: comm syz.5.2188: attempt to clear invalid blocks 1024 len 1
[  135.648323][ T9674] loop0: detected capacity change from 0 to 764
[  135.657540][ T9665] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2187'.
[  135.666837][ T9667] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.2188: bg 0: block 361: padding at end of block bitmap is not set
[  135.683815][ T9665] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  135.703010][ T9667] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  135.714528][ T9663] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.2186: invalid indirect mapped block 1811939328 (level 0)
[  135.728723][ T9663] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.2186: invalid indirect mapped block 2185560079 (level 1)
[  135.731878][ T9667] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.2188: invalid indirect mapped block 1811939328 (level 0)
[  135.744426][ T9663] EXT4-fs (loop1): 1 truncate cleaned up
[  135.758016][ T9667] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.2188: invalid indirect mapped block 2185560079 (level 1)
[  135.762571][ T9663] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  135.818593][ T9667] EXT4-fs (loop5): 1 truncate cleaned up
[  135.819547][ T9680] loop6: detected capacity change from 0 to 512
[  135.833989][ T9667] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  135.847926][ T3305] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  135.872527][ T9689] loop0: detected capacity change from 0 to 512
[  135.885712][ T9689] EXT4-fs error (device loop0): ext4_iget_extra_inode:4704: inode #15: comm syz.0.2195: corrupted in-inode xattr: invalid ea_ino
[  135.899429][ T4147] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  135.905051][ T9680] EXT4-fs (loop6): 1 orphan inode deleted
[  135.914262][ T9689] EXT4-fs error (device loop0): ext4_orphan_get:1395: comm syz.0.2195: couldn't read orphan inode 15 (err -117)
[  135.915079][ T4333] EXT4-fs error (device loop6): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1
[  135.927848][ T9680] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.950573][ T9689] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.951641][ T9693] loop1: detected capacity change from 0 to 164
[  135.963988][ T9680] ext4 filesystem being mounted at /361/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  135.981492][ T9693] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  135.990819][ T9693] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  136.017357][ T9693] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2193'.
[  136.037288][ T5137] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.066263][ T3512] hid-generic 0000:0004:0000.004D: unknown main item tag 0x0
[  136.073790][ T3512] hid-generic 0000:0004:0000.004D: unknown main item tag 0x0
[  136.081193][ T3512] hid-generic 0000:0004:0000.004D: unknown main item tag 0x0
[  136.095529][ T3512] hid-generic 0000:0004:0000.004D: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz1
[  136.111008][ T9700] loop6: detected capacity change from 0 to 1024
[  136.145063][ T9700] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: none.
[  136.174510][ T9707] loop1: detected capacity change from 0 to 1024
[  136.183100][ T9707] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.200290][ T9707] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2200'.
[  136.219024][ T9707] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2200'.
[  136.757355][ T3300] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.860909][ T9719] loop5: detected capacity change from 0 to 764
[  136.878610][ T9721] loop0: detected capacity change from 0 to 512
[  136.893928][ T9721] EXT4-fs: Ignoring removed nomblk_io_submit option
[  136.901233][ T9721] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  136.925989][ T9721] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  136.943924][ T9721] EXT4-fs (loop0): orphan cleanup on readonly fs
[  136.951522][ T9721] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #11: comm syz.0.2205: attempt to clear invalid blocks 1024 len 1
[  136.965099][ T5137] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-001000000000.
[  136.975417][ T9721] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2205: bg 0: block 361: padding at end of block bitmap is not set
[  136.990057][ T9721] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  136.999122][ T9721] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2205: invalid indirect mapped block 1811939328 (level 0)
[  137.026598][ T9726] loop5: detected capacity change from 0 to 512
[  137.079777][ T9721] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2205: invalid indirect mapped block 2185560079 (level 1)
[  137.097161][ T9721] EXT4-fs (loop0): 1 truncate cleaned up
[  137.098805][ T3305] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.103201][ T9721] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  137.128343][ T9726] EXT4-fs (loop5): 1 orphan inode deleted
[  137.134639][ T9726] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.148335][ T3385] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:7: Failed to release dquot type 1
[  137.161621][ T3300] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  137.170766][ T9726] ext4 filesystem being mounted at /384/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  137.185967][ T9732] loop6: detected capacity change from 0 to 512
[  137.187239][   T36] hid-generic 0000:0004:0000.004E: unknown main item tag 0x0
[  137.199649][   T36] hid-generic 0000:0004:0000.004E: unknown main item tag 0x0
[  137.207182][   T36] hid-generic 0000:0004:0000.004E: unknown main item tag 0x0
[  137.212107][ T9732] EXT4-fs error (device loop6): ext4_iget_extra_inode:4704: inode #15: comm syz.6.2208: corrupted in-inode xattr: invalid ea_ino
[  137.228174][   T36] hid-generic 0000:0004:0000.004E: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz1
[  137.238373][ T9734] loop0: detected capacity change from 0 to 164
[  137.239338][ T9732] EXT4-fs error (device loop6): ext4_orphan_get:1395: comm syz.6.2208: couldn't read orphan inode 15 (err -117)
[  137.257293][ T9734] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  137.257906][ T4147] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.269780][ T9734] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  137.283182][ T9732] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.304336][ T9732] netlink: 100 bytes leftover after parsing attributes in process `+}[@'.
[  137.319030][ T9734] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2210'.
[  137.350540][ T9742] loop0: detected capacity change from 0 to 1024
[  137.360972][ T9742] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.378834][ T9742] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2213'.
[  137.390241][ T9742] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2213'.
[  137.575666][ T9756] loop3: detected capacity change from 0 to 764
[  137.601298][ T5137] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.610938][ T9760] loop1: detected capacity change from 0 to 1024
[  137.640776][ T9760] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: none.
[  137.658347][ T9766] loop6: detected capacity change from 0 to 512
[  137.687126][ T9766] EXT4-fs (loop6): 1 orphan inode deleted
[  137.693185][ T9766] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.705796][ T3385] EXT4-fs error (device loop6): ext4_release_dquot:6971: comm kworker/u8:7: Failed to release dquot type 1
[  137.706416][ T9766] ext4 filesystem being mounted at /365/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  137.749632][ T5137] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.145080][ T9791] loop6: detected capacity change from 0 to 2048
[  138.161662][ T9791] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  138.194795][ T9795] loop5: detected capacity change from 0 to 764
[  138.212612][   T29] kauditd_printk_skb: 470 callbacks suppressed
[  138.212632][   T29] audit: type=1400 audit(1743193173.945:12006): avc:  denied  { mount } for  pid=9794 comm="syz.5.2230" name="/" dev="loop5" ino=1792 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[  138.225204][ T9791] ext4 filesystem being mounted at /373/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  138.243245][   T29] audit: type=1400 audit(1743193173.965:12007): avc:  denied  { unmount } for  pid=4147 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[  138.271995][   T29] audit: type=1400 audit(1743193173.965:12008): avc:  denied  { mount } for  pid=9790 comm="syz.6.2229" name="/" dev="loop6" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  138.293748][   T29] audit: type=1400 audit(1743193174.015:12009): avc:  denied  { unmount } for  pid=3300 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  138.297008][ T3300] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.316113][   T29] audit: type=1326 audit(1743193174.055:12010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9796 comm="syz.5.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65d85dd169 code=0x7ffc0000
[  138.327138][ T9797] FAULT_INJECTION: forcing a failure.
[  138.327138][ T9797] name failslab, interval 1, probability 0, space 0, times 0
[  138.346138][   T29] audit: type=1400 audit(1743193174.065:12011): avc:  denied  { open } for  pid=9790 comm="syz.6.2229" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  138.358727][ T9797] CPU: 0 UID: 0 PID: 9797 Comm: syz.5.2231 Not tainted 6.14.0-syzkaller-07422-gacb4f33713b9 #0 PREEMPT(voluntary) 
[  138.358835][ T9797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  138.358851][ T9797] Call Trace:
[  138.358859][ T9797]  <TASK>
[  138.358868][ T9797]  dump_stack_lvl+0xf6/0x150
[  138.358897][ T9797]  dump_stack+0x15/0x1a
[  138.358916][ T9797]  should_fail_ex+0x261/0x270
[  138.358947][ T9797]  should_failslab+0x8f/0xb0
[  138.359016][ T9797]  kmem_cache_alloc_noprof+0x59/0x340
[  138.359049][ T9797]  ? audit_log_start+0x37f/0x6e0
[  138.359091][ T9797]  audit_log_start+0x37f/0x6e0
[  138.359116][ T9797]  ? kstrtouint+0x7b/0xc0
[  138.359144][ T9797]  audit_seccomp+0x4b/0x130
[  138.359184][ T9797]  __seccomp_filter+0x694/0x10e0
[  138.359218][ T9797]  ? vfs_write+0x669/0x950
[  138.359343][ T9797]  __secure_computing+0x7e/0x160
[  138.359374][ T9797]  syscall_trace_enter+0xcf/0x1f0
[  138.359407][ T9797]  ? fpregs_assert_state_consistent+0x83/0xa0
[  138.359465][ T9797]  do_syscall_64+0xaa/0x1c0
[  138.359493][ T9797]  ? clear_bhb_loop+0x25/0x80
[  138.359516][ T9797]  ? clear_bhb_loop+0x25/0x80
[  138.359540][ T9797]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.359631][ T9797] RIP: 0033:0x7f65d85dd169
[  138.359648][ T9797] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.359668][ T9797] RSP: 002b:00007f65d6c3f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f7
[  138.359689][ T9797] RAX: ffffffffffffffda RBX: 00007f65d87f5fa0 RCX: 00007f65d85dd169
[  138.359737][ T9797] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  138.359751][ T9797] RBP: 00007f65d6c3f090 R08: 0000000000000000 R09: 0000000000000000
[  138.359764][ T9797] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001
[  138.359778][ T9797] R13: 0000000000000000 R14: 00007f65d87f5fa0 R15: 00007ffff16af918
[  138.359798][ T9797]  </TASK>
[  138.359806][ T9797] audit: audit_lost=7 audit_rate_limit=0 audit_backlog_limit=64
[  138.378014][   T29] audit: type=1400 audit(1743193174.065:12012): avc:  denied  { kernel } for  pid=9790 comm="syz.6.2229" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  138.378095][   T29] audit: type=1326 audit(1743193174.065:12013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9796 comm="syz.5.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f65d85dd169 code=0x7ffc0000
[  138.390155][ T9797] audit: out of memory in audit_log_start
[  138.547925][ T9801] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2229'.
[  138.627536][ T9804] loop0: detected capacity change from 0 to 512
[  138.637334][ T9806] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2235'.
[  138.650189][ T9804] EXT4-fs: Ignoring removed nomblk_io_submit option
[  138.656811][ T9798] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2229'.
[  138.667728][ T9805] netlink: 'syz.5.2235': attribute type 4 has an invalid length.
[  138.676758][ T9804] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  138.696826][ T9804] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  138.710504][ T9804] EXT4-fs (loop0): orphan cleanup on readonly fs
[  138.718657][ T9804] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #11: comm syz.0.2232: attempt to clear invalid blocks 1024 len 1
[  138.733955][ T9804] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2232: bg 0: block 361: padding at end of block bitmap is not set
[  138.752659][ T9814] loop1: detected capacity change from 0 to 512
[  138.753908][ T9804] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  138.769004][ T9804] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2232: invalid indirect mapped block 1811939328 (level 0)
[  138.783351][ T9804] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2232: invalid indirect mapped block 2185560079 (level 1)
[  138.794859][ T9814] EXT4-fs (loop1): 1 orphan inode deleted
[  138.799062][ T9804] EXT4-fs (loop0): 1 truncate cleaned up
[  138.803960][ T9814] ext4 filesystem being mounted at /456/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  138.820999][ T1745] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:6: Failed to release dquot type 1
[  138.859183][ T9820] loop1: detected capacity change from 0 to 164
[  138.866475][ T9820] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  138.876146][ T9820] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  138.986367][ T9791] Process accounting resumed
[  139.037027][ T9830] loop6: detected capacity change from 0 to 764
[  139.079814][ T9832] loop6: detected capacity change from 0 to 764
[  139.136938][ T9839] loop6: detected capacity change from 0 to 1024
[  139.254312][ T9847] FAULT_INJECTION: forcing a failure.
[  139.254312][ T9847] name failslab, interval 1, probability 0, space 0, times 0
[  139.267067][ T9847] CPU: 0 UID: 0 PID: 9847 Comm: syz.1.2247 Not tainted 6.14.0-syzkaller-07422-gacb4f33713b9 #0 PREEMPT(voluntary) 
[  139.267098][ T9847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  139.267115][ T9847] Call Trace:
[  139.267120][ T9847]  <TASK>
[  139.267125][ T9847]  dump_stack_lvl+0xf6/0x150
[  139.267157][ T9847]  dump_stack+0x15/0x1a
[  139.267212][ T9847]  should_fail_ex+0x261/0x270
[  139.267244][ T9847]  should_failslab+0x8f/0xb0
[  139.267258][ T9847]  kmem_cache_alloc_noprof+0x59/0x340
[  139.267278][ T9847]  ? audit_log_start+0x37f/0x6e0
[  139.267293][ T9847]  audit_log_start+0x37f/0x6e0
[  139.267316][ T9847]  ? kstrtouint+0x7b/0xc0
[  139.267333][ T9847]  audit_seccomp+0x4b/0x130
[  139.267356][ T9847]  __seccomp_filter+0x694/0x10e0
[  139.267399][ T9847]  ? vfs_write+0x669/0x950
[  139.267426][ T9847]  __secure_computing+0x7e/0x160
[  139.267444][ T9847]  syscall_trace_enter+0xcf/0x1f0
[  139.267516][ T9847]  ? fpregs_assert_state_consistent+0x83/0xa0
[  139.267539][ T9847]  do_syscall_64+0xaa/0x1c0
[  139.267557][ T9847]  ? clear_bhb_loop+0x25/0x80
[  139.267607][ T9847]  ? clear_bhb_loop+0x25/0x80
[  139.267622][ T9847]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.267637][ T9847] RIP: 0033:0x7fea55a0d169
[  139.267647][ T9847] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  139.267711][ T9847] RSP: 002b:00007fea5406f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f4
[  139.267787][ T9847] RAX: ffffffffffffffda RBX: 00007fea55c25fa0 RCX: 00007fea55a0d169
[  139.267802][ T9847] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffffffffff
[  139.267812][ T9847] RBP: 00007fea5406f090 R08: 0000000000000000 R09: 0000000000000000
[  139.267821][ T9847] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  139.267830][ T9847] R13: 0000000000000000 R14: 00007fea55c25fa0 R15: 00007ffce0cdf928
[  139.267851][ T9847]  </TASK>
[  139.527571][ T9850] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  139.574622][ T9852] loop5: detected capacity change from 0 to 512
[  139.580177][ T9854] loop3: detected capacity change from 0 to 512
[  139.588678][ T9854] EXT4-fs: Ignoring removed nomblk_io_submit option
[  139.596204][ T9854] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  139.607221][ T9854] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  139.607247][ T9852] EXT4-fs (loop5): 1 orphan inode deleted
[  139.621827][ T9852] ext4 filesystem being mounted at /390/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  139.622787][ T9854] EXT4-fs (loop3): write access unavailable, skipping orphan cleanup
[  139.640611][ T4333] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1
[  139.673278][ T9861] loop3: detected capacity change from 0 to 164
[  139.680678][ T9861] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  139.711288][ T9867] loop0: detected capacity change from 0 to 512
[  139.717991][ T9867] EXT4-fs: Ignoring removed nomblk_io_submit option
[  139.725260][ T9867] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  139.743867][ T9867] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  139.744085][ T9867] EXT4-fs (loop0): orphan cleanup on readonly fs
[  139.776910][ T9867] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #11: comm syz.0.2254: attempt to clear invalid blocks 1024 len 1
[  139.777254][ T9867] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2254: bg 0: block 361: padding at end of block bitmap is not set
[  139.777396][ T9867] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  139.777541][ T9867] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2254: invalid indirect mapped block 1811939328 (level 0)
[  139.777996][ T9867] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2254: invalid indirect mapped block 2185560079 (level 1)
[  139.778373][ T9867] EXT4-fs (loop0): 1 truncate cleaned up
[  139.849095][ T9874] loop1: detected capacity change from 0 to 512
[  139.872061][ T9874] ext4 filesystem being mounted at /464/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  139.895348][ T9881] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(12)
[  139.902000][ T9881] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  139.909579][ T9881] vhci_hcd vhci_hcd.0: Device attached
[  139.919408][ T9883] vhci_hcd: connection closed
[  139.919829][   T31] vhci_hcd: stop threads
[  139.929019][   T31] vhci_hcd: release socket
[  139.933468][   T31] vhci_hcd: disconnect device
[  139.972184][ T9889] loop3: detected capacity change from 0 to 512
[  140.522300][ T9899] loop5: detected capacity change from 0 to 512
[  140.528857][ T9899] EXT4-fs: Ignoring removed nomblk_io_submit option
[  140.535936][ T9899] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  140.546348][ T9899] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  140.554345][ T9899] EXT4-fs (loop5): orphan cleanup on readonly fs
[  140.561390][ T9899] EXT4-fs error (device loop5): ext4_clear_blocks:876: inode #11: comm syz.5.2263: attempt to clear invalid blocks 1024 len 1
[  140.575098][ T9899] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.2263: bg 0: block 361: padding at end of block bitmap is not set
[  140.589638][ T9899] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  140.598550][ T9899] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.2263: invalid indirect mapped block 1811939328 (level 0)
[  140.612672][ T9899] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.2263: invalid indirect mapped block 2185560079 (level 1)
[  140.627017][ T9899] EXT4-fs (loop5): 1 truncate cleaned up
[  140.651513][ T9902] loop5: detected capacity change from 0 to 512
[  140.665515][ T9902] EXT4-fs (loop5): 1 orphan inode deleted
[  140.671852][ T9902] ext4 filesystem being mounted at /393/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  140.683854][ T1745] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:6: Failed to release dquot type 1
[  140.750862][ T9908] loop3: detected capacity change from 0 to 512
[  140.908388][ T9919] loop6: detected capacity change from 0 to 512
[  140.915214][ T9919] EXT4-fs: Ignoring removed nomblk_io_submit option
[  140.922116][ T9919] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  140.946788][ T9919] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  140.956989][ T9919] EXT4-fs (loop6): orphan cleanup on readonly fs
[  140.963908][ T9919] EXT4-fs error (device loop6): ext4_clear_blocks:876: inode #11: comm syz.6.2270: attempt to clear invalid blocks 1024 len 1
[  140.979027][ T9919] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.2270: bg 0: block 361: padding at end of block bitmap is not set
[  140.996753][ T9919] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  141.013072][ T9919] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.2270: invalid indirect mapped block 1811939328 (level 0)
[  141.043930][ T9919] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.2270: invalid indirect mapped block 2185560079 (level 1)
[  141.078311][ T9919] EXT4-fs (loop6): 1 truncate cleaned up
[  141.236387][ T9923] FAULT_INJECTION: forcing a failure.
[  141.236387][ T9923] name failslab, interval 1, probability 0, space 0, times 0
[  141.249051][ T9923] CPU: 0 UID: 0 PID: 9923 Comm: syz.1.2271 Not tainted 6.14.0-syzkaller-07422-gacb4f33713b9 #0 PREEMPT(voluntary) 
[  141.249078][ T9923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  141.249090][ T9923] Call Trace:
[  141.249096][ T9923]  <TASK>
[  141.249104][ T9923]  dump_stack_lvl+0xf6/0x150
[  141.249125][ T9923]  dump_stack+0x15/0x1a
[  141.249137][ T9923]  should_fail_ex+0x261/0x270
[  141.249217][ T9923]  should_failslab+0x8f/0xb0
[  141.249238][ T9923]  kmem_cache_alloc_noprof+0x59/0x340
[  141.249265][ T9923]  ? getname_flags+0x81/0x3b0
[  141.249291][ T9923]  getname_flags+0x81/0x3b0
[  141.249310][ T9923]  do_sys_openat2+0x65/0x110
[  141.249394][ T9923]  __x64_sys_openat+0xf8/0x120
[  141.249419][ T9923]  x64_sys_call+0x1ac/0x2e10
[  141.249440][ T9923]  do_syscall_64+0xc9/0x1c0
[  141.249468][ T9923]  ? clear_bhb_loop+0x25/0x80
[  141.249521][ T9923]  ? clear_bhb_loop+0x25/0x80
[  141.249538][ T9923]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.249571][ T9923] RIP: 0033:0x7fea55a0bad0
[  141.249582][ T9923] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  141.249618][ T9923] RSP: 002b:00007fea5406ef60 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  141.249635][ T9923] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fea55a0bad0
[  141.249649][ T9923] RDX: 0000000000000000 RSI: 00007fea55a8e3b8 RDI: 00000000ffffff9c
[  141.249675][ T9923] RBP: 00007fea55a8e3b8 R08: 0000000000000000 R09: 0000000000000000
[  141.249687][ T9923] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  141.249700][ T9923] R13: 0000000000000000 R14: 00007fea55c25fa0 R15: 00007ffce0cdf928
[  141.249720][ T9923]  </TASK>
[  141.494196][ T9936] smc: net device bond0 applied user defined pnetid SYZ0
[  141.501565][ T9936] FAULT_INJECTION: forcing a failure.
[  141.501565][ T9936] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  141.514698][ T9936] CPU: 1 UID: 0 PID: 9936 Comm: syz.0.2275 Not tainted 6.14.0-syzkaller-07422-gacb4f33713b9 #0 PREEMPT(voluntary) 
[  141.514721][ T9936] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  141.514805][ T9936] Call Trace:
[  141.514810][ T9936]  <TASK>
[  141.514831][ T9936]  dump_stack_lvl+0xf6/0x150
[  141.514854][ T9936]  dump_stack+0x15/0x1a
[  141.514949][ T9936]  should_fail_ex+0x261/0x270
[  141.514971][ T9936]  should_fail+0xb/0x10
[  141.514988][ T9936]  should_fail_usercopy+0x1a/0x20
[  141.515030][ T9936]  _copy_from_user+0x1c/0xa0
[  141.515058][ T9936]  copy_msghdr_from_user+0x54/0x2b0
[  141.515086][ T9936]  ? __fget_files+0x186/0x1c0
[  141.515118][ T9936]  __sys_sendmsg+0x141/0x240
[  141.515164][ T9936]  __x64_sys_sendmsg+0x46/0x50
[  141.515266][ T9936]  x64_sys_call+0x26f3/0x2e10
[  141.515284][ T9936]  do_syscall_64+0xc9/0x1c0
[  141.515302][ T9936]  ? clear_bhb_loop+0x25/0x80
[  141.515387][ T9936]  ? clear_bhb_loop+0x25/0x80
[  141.515404][ T9936]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.515423][ T9936] RIP: 0033:0x7fea712ed169
[  141.515434][ T9936] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  141.515448][ T9936] RSP: 002b:00007fea6f94f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  141.515521][ T9936] RAX: ffffffffffffffda RBX: 00007fea71505fa0 RCX: 00007fea712ed169
[  141.515533][ T9936] RDX: 0000000000004000 RSI: 0000200000000080 RDI: 0000000000000005
[  141.515553][ T9936] RBP: 00007fea6f94f090 R08: 0000000000000000 R09: 0000000000000000
[  141.515564][ T9936] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  141.515621][ T9936] R13: 0000000000000000 R14: 00007fea71505fa0 R15: 00007ffe95c74548
[  141.515635][ T9936]  </TASK>
[  141.821721][ T9943] loop3: detected capacity change from 0 to 764
[  141.926087][ T9942] loop0: detected capacity change from 0 to 512
[  141.985717][ T9942] EXT4-fs (loop0): 1 orphan inode deleted
[  142.005046][   T31] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:1: Failed to release dquot type 1
[  142.021241][ T9954] __nla_validate_parse: 1 callbacks suppressed
[  142.021255][ T9954] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2282'.
[  142.041405][ T9942] ext4 filesystem being mounted at /484/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  142.156642][ T9961] loop0: detected capacity change from 0 to 1024
[  142.175241][ T9961] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2285'.
[  142.195545][ T9961] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2285'.
[  142.229168][ T9972] loop6: detected capacity change from 0 to 164
[  142.277203][ T9972] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  142.289547][ T9972] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  142.336529][ T9972] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2289'.
[  142.459503][ T9977] loop6: detected capacity change from 0 to 764
[  142.654824][ T9984] loop6: detected capacity change from 0 to 764
[  142.831188][ T9988] loop6: detected capacity change from 0 to 512
[  142.846584][ T9988] EXT4-fs: Ignoring removed nomblk_io_submit option
[  142.875238][ T9988] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  142.893836][ T9988] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  142.903574][ T9988] EXT4-fs (loop6): orphan cleanup on readonly fs
[  142.935731][ T9988] EXT4-fs error (device loop6): ext4_clear_blocks:876: inode #11: comm syz.6.2295: attempt to clear invalid blocks 1024 len 1
[  142.980229][ T9988] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.2295: bg 0: block 361: padding at end of block bitmap is not set
[  143.080094][ T9994] FAULT_INJECTION: forcing a failure.
[  143.080094][ T9994] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  143.093153][ T9994] CPU: 1 UID: 0 PID: 9994 Comm: syz.1.2299 Not tainted 6.14.0-syzkaller-07422-gacb4f33713b9 #0 PREEMPT(voluntary) 
[  143.093183][ T9994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  143.093195][ T9994] Call Trace:
[  143.093227][ T9994]  <TASK>
[  143.093232][ T9994]  dump_stack_lvl+0xf6/0x150
[  143.093256][ T9994]  dump_stack+0x15/0x1a
[  143.093269][ T9994]  should_fail_ex+0x261/0x270
[  143.093291][ T9994]  should_fail+0xb/0x10
[  143.093309][ T9994]  should_fail_usercopy+0x1a/0x20
[  143.093370][ T9994]  _copy_from_user+0x1c/0xa0
[  143.093403][ T9994]  copy_msghdr_from_user+0x54/0x2b0
[  143.093439][ T9994]  ? __fget_files+0x186/0x1c0
[  143.093502][ T9994]  __sys_sendmsg+0x141/0x240
[  143.093537][ T9994]  __x64_sys_sendmsg+0x46/0x50
[  143.093606][ T9994]  x64_sys_call+0x26f3/0x2e10
[  143.093628][ T9994]  do_syscall_64+0xc9/0x1c0
[  143.093656][ T9994]  ? clear_bhb_loop+0x25/0x80
[  143.093728][ T9994]  ? clear_bhb_loop+0x25/0x80
[  143.093751][ T9994]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.093783][ T9994] RIP: 0033:0x7fea55a0d169
[  143.093798][ T9994] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  143.093819][ T9994] RSP: 002b:00007fea5406f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  143.093835][ T9994] RAX: ffffffffffffffda RBX: 00007fea55c25fa0 RCX: 00007fea55a0d169
[  143.093845][ T9994] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 0000000000000003
[  143.093855][ T9994] RBP: 00007fea5406f090 R08: 0000000000000000 R09: 0000000000000000
[  143.093865][ T9994] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  143.093875][ T9994] R13: 0000000000000000 R14: 00007fea55c25fa0 R15: 00007ffce0cdf928
[  143.093894][ T9994]  </TASK>
[  143.308667][   T29] kauditd_printk_skb: 580 callbacks suppressed
[  143.308682][   T29] audit: type=1326 audit(1743193179.035:12588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9995 comm="syz.5.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65d85dd169 code=0x7ffc0000
[  143.338517][   T29] audit: type=1326 audit(1743193179.035:12589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9995 comm="syz.5.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65d85dd169 code=0x7ffc0000
[  143.362223][   T29] audit: type=1326 audit(1743193179.035:12590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9995 comm="syz.5.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f65d85dd169 code=0x7ffc0000
[  143.385966][   T29] audit: type=1326 audit(1743193179.035:12591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9995 comm="syz.5.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65d85dd169 code=0x7ffc0000
[  143.409492][   T29] audit: type=1326 audit(1743193179.035:12592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9995 comm="syz.5.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65d85dd169 code=0x7ffc0000
[  143.433053][   T29] audit: type=1326 audit(1743193179.035:12593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9995 comm="syz.5.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f65d85dd169 code=0x7ffc0000
[  143.456680][   T29] audit: type=1326 audit(1743193179.035:12594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9995 comm="syz.5.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65d85dd169 code=0x7ffc0000
[  143.480275][   T29] audit: type=1326 audit(1743193179.035:12595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9995 comm="syz.5.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f65d85dd169 code=0x7ffc0000
[  143.503774][   T29] audit: type=1326 audit(1743193179.035:12596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9995 comm="syz.5.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65d85dd169 code=0x7ffc0000
[  143.527940][   T29] audit: type=1326 audit(1743193179.035:12597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9995 comm="syz.5.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=105 compat=0 ip=0x7f65d85dd169 code=0x7ffc0000
[  143.560396][ T9988] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  143.569746][ T9988] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.2295: invalid indirect mapped block 1811939328 (level 0)
[  143.585260][ T9988] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.2295: invalid indirect mapped block 2185560079 (level 1)
[  143.599648][ T9988] EXT4-fs (loop6): 1 truncate cleaned up
[  143.640342][ T2966] hid-generic 0000:0004:0000.004F: unknown main item tag 0x0
[  143.647768][ T2966] hid-generic 0000:0004:0000.004F: unknown main item tag 0x0
[  143.655164][ T2966] hid-generic 0000:0004:0000.004F: unknown main item tag 0x0
[  143.666487][ T2966] hid-generic 0000:0004:0000.004F: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz1
[  143.712901][T10004] smc: net device bond0 erased user defined pnetid SYZ0
[  143.736598][T10007] loop0: detected capacity change from 0 to 512
[  143.740438][T10008] loop6: detected capacity change from 0 to 164
[  143.743168][T10007] EXT4-fs: Ignoring removed nomblk_io_submit option
[  143.755370][T10010] loop3: detected capacity change from 0 to 1024
[  143.757943][T10007] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  143.771816][T10008] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  143.785641][T10008] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  143.802173][T10007] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  143.810318][T10007] EXT4-fs (loop0): orphan cleanup on readonly fs
[  143.817290][T10007] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #11: comm syz.0.2298: attempt to clear invalid blocks 1024 len 1
[  143.841900][T10007] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2298: bg 0: block 361: padding at end of block bitmap is not set
[  143.861795][T10008] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2301'.
[  143.877893][T10007] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  143.893098][T10007] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2298: invalid indirect mapped block 1811939328 (level 0)
[  143.908008][T10024] loop5: detected capacity change from 0 to 764
[  143.908775][T10007] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2298: invalid indirect mapped block 2185560079 (level 1)
[  143.914835][T10023] loop6: detected capacity change from 0 to 1024
[  143.930215][T10007] EXT4-fs (loop0): 1 truncate cleaned up
[  143.985004][T10023] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2309'.
[  144.001777][T10023] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2309'.
[  144.015198][T10032] loop0: detected capacity change from 0 to 764
[  144.343714][T10050] loop0: detected capacity change from 0 to 164
[  144.351914][T10050] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  144.403917][T10050] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  144.419239][T10050] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2319'.
[  144.562912][T10054] FAULT_INJECTION: forcing a failure.
[  144.562912][T10054] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  144.576041][T10054] CPU: 0 UID: 0 PID: 10054 Comm: syz.0.2321 Not tainted 6.14.0-syzkaller-07422-gacb4f33713b9 #0 PREEMPT(voluntary) 
[  144.576071][T10054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  144.576084][T10054] Call Trace:
[  144.576090][T10054]  <TASK>
[  144.576161][T10054]  dump_stack_lvl+0xf6/0x150
[  144.576184][T10054]  dump_stack+0x15/0x1a
[  144.576203][T10054]  should_fail_ex+0x261/0x270
[  144.576241][T10054]  should_fail+0xb/0x10
[  144.576260][T10054]  should_fail_usercopy+0x1a/0x20
[  144.576290][T10054]  _copy_from_user+0x1c/0xa0
[  144.576327][T10054]  usbdev_ioctl+0x1037/0x3e70
[  144.576360][T10054]  ? do_vfs_ioctl+0x977/0x1570
[  144.576434][T10054]  ? selinux_file_ioctl+0x2f9/0x380
[  144.576460][T10054]  ? __fget_files+0x186/0x1c0
[  144.576490][T10054]  ? __pfx_usbdev_ioctl+0x10/0x10
[  144.576523][T10054]  __se_sys_ioctl+0xc9/0x140
[  144.576576][T10054]  __x64_sys_ioctl+0x43/0x50
[  144.576677][T10054]  x64_sys_call+0x168d/0x2e10
[  144.576703][T10054]  do_syscall_64+0xc9/0x1c0
[  144.576733][T10054]  ? clear_bhb_loop+0x25/0x80
[  144.576793][T10054]  ? clear_bhb_loop+0x25/0x80
[  144.576821][T10054]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.576847][T10054] RIP: 0033:0x7fea712ed169
[  144.576864][T10054] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  144.576882][T10054] RSP: 002b:00007fea6f94f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  144.576982][T10054] RAX: ffffffffffffffda RBX: 00007fea71505fa0 RCX: 00007fea712ed169
[  144.577027][T10054] RDX: 0000200000000000 RSI: 000000008038550a RDI: 0000000000000007
[  144.577101][T10054] RBP: 00007fea6f94f090 R08: 0000000000000000 R09: 0000000000000000
[  144.577116][T10054] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  144.577131][T10054] R13: 0000000000000000 R14: 00007fea71505fa0 R15: 00007ffe95c74548
[  144.577153][T10054]  </TASK>
[  144.796397][T10056] loop3: detected capacity change from 0 to 512
[  144.841572][T10060] loop5: detected capacity change from 0 to 512
[  144.861500][   T10] hid-generic 0000:0004:0000.0050: unknown main item tag 0x0
[  144.868966][   T10] hid-generic 0000:0004:0000.0050: unknown main item tag 0x0
[  144.876478][   T10] hid-generic 0000:0004:0000.0050: unknown main item tag 0x0
[  144.894671][   T10] hid-generic 0000:0004:0000.0050: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz1
[  144.898319][T10060] EXT4-fs (loop5): 1 orphan inode deleted
[  144.914211][ T3385] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:7: Failed to release dquot type 1
[  144.928999][T10060] ext4 filesystem being mounted at /405/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  144.942293][T10071] loop3: detected capacity change from 0 to 764
[  145.003419][T10078] loop3: detected capacity change from 0 to 164
[  145.011345][T10078] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  145.021736][T10078] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  145.082573][T10083] loop3: detected capacity change from 0 to 1024
[  145.202898][T10087] loop1: detected capacity change from 0 to 512
[  145.209509][T10087] EXT4-fs: Ignoring removed nomblk_io_submit option
[  145.216591][T10087] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  145.227058][T10087] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  145.235179][T10087] EXT4-fs (loop1): orphan cleanup on readonly fs
[  145.242108][T10087] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #11: comm syz.1.2334: attempt to clear invalid blocks 1024 len 1
[  145.255800][T10087] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2334: bg 0: block 361: padding at end of block bitmap is not set
[  145.270250][T10087] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  145.279217][T10087] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.2334: invalid indirect mapped block 1811939328 (level 0)
[  145.293251][T10087] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.2334: invalid indirect mapped block 2185560079 (level 1)
[  145.307475][T10087] EXT4-fs (loop1): 1 truncate cleaned up
[  145.523601][T10096] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(11)
[  145.530218][T10096] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  145.537994][T10096] vhci_hcd vhci_hcd.0: Device attached
[  145.544146][T10097] vhci_hcd: connection closed
[  145.544288][ T4333] vhci_hcd: stop threads
[  145.553275][ T4333] vhci_hcd: release socket
[  145.557899][ T4333] vhci_hcd: disconnect device
[  145.833863][   T36] hid-generic 0000:0004:0000.0051: unknown main item tag 0x0
[  145.841298][   T36] hid-generic 0000:0004:0000.0051: unknown main item tag 0x0
[  145.842880][T10105] loop5: detected capacity change from 0 to 512
[  145.848687][   T36] hid-generic 0000:0004:0000.0051: unknown main item tag 0x0
[  145.864559][   T36] hid-generic 0000:0004:0000.0051: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz1
[  145.892408][T10105] EXT4-fs (loop5): 1 orphan inode deleted
[  145.898776][T10105] ext4 filesystem being mounted at /407/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  145.900303][T10112] loop6: detected capacity change from 0 to 764
[  145.909433][ T4333] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1
[  145.968465][T10110] loop0: detected capacity change from 0 to 764
[  145.977792][T10118] loop5: detected capacity change from 0 to 512
[  145.988088][T10118] EXT4-fs: Ignoring removed nomblk_io_submit option
[  145.995873][T10122] tipc: Started in network mode
[  146.000800][T10122] tipc: Node identity ac14140f, cluster identity 4711
[  146.007731][T10122] tipc: New replicast peer: 255.255.255.255
[  146.009175][T10118] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  146.013879][T10122] tipc: Enabled bearer <udp:syz2>, priority 10
[  146.026118][T10118] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  146.044101][T10118] EXT4-fs (loop5): orphan cleanup on readonly fs
[  146.055812][T10118] EXT4-fs error (device loop5): ext4_clear_blocks:876: inode #11: comm syz.5.2345: attempt to clear invalid blocks 1024 len 1
[  146.083733][T10118] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.2345: bg 0: block 361: padding at end of block bitmap is not set
[  146.099599][T10118] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  146.118563][T10129] loop3: detected capacity change from 0 to 2048
[  146.126537][T10118] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.2345: invalid indirect mapped block 1811939328 (level 0)
[  146.145445][T10118] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.2345: invalid indirect mapped block 2185560079 (level 1)
[  146.151536][T10134] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2349'.
[  146.174393][T10131] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2348'.
[  146.208466][T10118] EXT4-fs (loop5): 1 truncate cleaned up
[  146.218363][T10127] loop6: detected capacity change from 0 to 512
[  146.234016][T10127] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  146.241974][T10127] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01c, mo2=0002]
[  146.254836][T10127] EXT4-fs (loop6): orphan cleanup on readonly fs
[  146.266804][T10127] EXT4-fs warning (device loop6): ext4_block_to_path:107: block 3279949761 > max in inode 13
[  146.268603][T10151] loop0: detected capacity change from 0 to 1024
[  146.284263][T10127] EXT4-fs warning (device loop6): ext4_block_to_path:107: block 3279949762 > max in inode 13
[  146.294893][T10127] EXT4-fs (loop6): 1 truncate cleaned up
[  146.317698][T10153] loop5: detected capacity change from 0 to 512
[  146.343863][T10153] ext4 filesystem being mounted at /409/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  146.358340][T10157] loop6: detected capacity change from 0 to 764
[  146.408537][T10153] Invalid ELF header magic: != ELF
[  146.506726][T10164] loop6: detected capacity change from 0 to 512
[  146.534583][T10166] loop5: detected capacity change from 0 to 764
[  146.542959][T10164] EXT4-fs (loop6): 1 orphan inode deleted
[  146.554205][ T3385] EXT4-fs error (device loop6): ext4_release_dquot:6971: comm kworker/u8:7: Failed to release dquot type 1
[  146.566330][T10164] ext4 filesystem being mounted at /401/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  146.592725][T10174] loop5: detected capacity change from 0 to 1024
[  146.668106][T10184] loop6: detected capacity change from 0 to 512
[  146.674735][T10184] EXT4-fs: Ignoring removed nomblk_io_submit option
[  146.682549][T10184] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  146.698394][T10185] loop1: detected capacity change from 0 to 512
[  146.712930][T10184] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  146.721051][T10184] EXT4-fs (loop6): orphan cleanup on readonly fs
[  146.729157][T10184] EXT4-fs error (device loop6): ext4_clear_blocks:876: inode #11: comm syz.6.2365: attempt to clear invalid blocks 1024 len 1
[  146.733178][T10185] EXT4-fs: Ignoring removed nomblk_io_submit option
[  146.749717][T10185] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  146.762298][T10185] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  146.779259][T10185] EXT4-fs (loop1): orphan cleanup on readonly fs
[  146.788126][T10184] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.2365: bg 0: block 361: padding at end of block bitmap is not set
[  146.804131][T10184] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  146.812985][T10184] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.2365: invalid indirect mapped block 1811939328 (level 0)
[  146.829249][T10185] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #11: comm syz.1.2364: attempt to clear invalid blocks 1024 len 1
[  146.843176][T10184] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.2365: invalid indirect mapped block 2185560079 (level 1)
[  146.844734][T10185] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2364: bg 0: block 361: padding at end of block bitmap is not set
[  146.871904][T10185] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  146.880669][T10184] EXT4-fs (loop6): 1 truncate cleaned up
[  146.883959][T10185] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.2364: invalid indirect mapped block 1811939328 (level 0)
[  146.911272][T10185] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.2364: invalid indirect mapped block 2185560079 (level 1)
[  146.932178][T10185] EXT4-fs (loop1): 1 truncate cleaned up
[  146.940588][T10192] loop3: detected capacity change from 0 to 764
[  147.006134][T10197] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  147.019560][T10199] loop3: detected capacity change from 0 to 512
[  147.034660][T10199] EXT4-fs (loop3): write access unavailable, skipping orphan cleanup
[  147.055023][T10201] loop6: detected capacity change from 0 to 512
[  147.061690][T10201] EXT4-fs: Ignoring removed nomblk_io_submit option
[  147.070247][T10201] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  147.081759][T10201] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  147.081918][T10203] FAULT_INJECTION: forcing a failure.
[  147.081918][T10203] name failslab, interval 1, probability 0, space 0, times 0
[  147.090038][T10201] EXT4-fs (loop6): orphan cleanup on readonly fs
[  147.102322][T10203] CPU: 0 UID: 0 PID: 10203 Comm: syz.1.2372 Not tainted 6.14.0-syzkaller-07422-gacb4f33713b9 #0 PREEMPT(voluntary) 
[  147.102346][T10203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  147.102358][T10203] Call Trace:
[  147.102365][T10203]  <TASK>
[  147.102372][T10203]  dump_stack_lvl+0xf6/0x150
[  147.102443][T10203]  dump_stack+0x15/0x1a
[  147.102464][T10203]  should_fail_ex+0x261/0x270
[  147.102495][T10203]  should_failslab+0x8f/0xb0
[  147.102517][T10203]  kmem_cache_alloc_noprof+0x59/0x340
[  147.102546][T10203]  ? getname_flags+0x81/0x3b0
[  147.102573][T10203]  getname_flags+0x81/0x3b0
[  147.102608][T10203]  do_sys_openat2+0x65/0x110
[  147.102637][T10203]  __x64_sys_openat+0xf8/0x120
[  147.102714][T10203]  x64_sys_call+0x1ac/0x2e10
[  147.102737][T10203]  do_syscall_64+0xc9/0x1c0
[  147.102763][T10203]  ? clear_bhb_loop+0x25/0x80
[  147.102785][T10203]  ? clear_bhb_loop+0x25/0x80
[  147.102845][T10203]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.102867][T10203] RIP: 0033:0x7fea55a0d169
[  147.102882][T10203] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.102902][T10203] RSP: 002b:00007fea5406f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  147.102921][T10203] RAX: ffffffffffffffda RBX: 00007fea55c25fa0 RCX: 00007fea55a0d169
[  147.102935][T10203] RDX: 0000000000105000 RSI: 0000200000000200 RDI: ffffffffffffff9c
[  147.102958][T10203] RBP: 00007fea5406f090 R08: 0000000000000000 R09: 0000000000000000
[  147.102971][T10203] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  147.102983][T10203] R13: 0000000000000000 R14: 00007fea55c25fa0 R15: 00007ffce0cdf928
[  147.103002][T10203]  </TASK>
[  147.125540][T10205] atomic_op ffff888121fe6928 conn xmit_atomic 0000000000000000
[  147.150673][ T1082] tipc: Node number set to 2886997007
[  147.296420][T10201] EXT4-fs error (device loop6): ext4_clear_blocks:876: inode #11: comm syz.6.2369: attempt to clear invalid blocks 1024 len 1
[  147.311390][T10201] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.2369: bg 0: block 361: padding at end of block bitmap is not set
[  147.326144][T10201] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  147.368873][T10213] loop0: detected capacity change from 0 to 164
[  147.375801][T10201] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.2369: invalid indirect mapped block 1811939328 (level 0)
[  147.390350][T10213] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  147.400178][T10201] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.2369: invalid indirect mapped block 2185560079 (level 1)
[  147.415099][T10213] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  147.415195][T10201] EXT4-fs (loop6): 1 truncate cleaned up
[  147.425670][T10215] xt_CT: You must specify a L4 protocol and not use inversions on it
[  147.439716][T10213] __nla_validate_parse: 4 callbacks suppressed
[  147.439729][T10213] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2376'.
[  147.446761][T10216] xt_CT: You must specify a L4 protocol and not use inversions on it
[  147.480750][T10212] bridge_slave_0: left allmulticast mode
[  147.486614][T10212] bridge_slave_0: left promiscuous mode
[  147.492372][T10212] bridge0: port 1(bridge_slave_0) entered disabled state
[  147.515218][T10218] loop1: detected capacity change from 0 to 764
[  147.518811][T10220] loop0: detected capacity change from 0 to 512
[  147.530546][T10220] EXT4-fs: Ignoring removed nomblk_io_submit option
[  147.537685][T10212] bridge_slave_1: left allmulticast mode
[  147.543329][T10212] bridge_slave_1: left promiscuous mode
[  147.549207][T10212] bridge0: port 2(bridge_slave_1) entered disabled state
[  147.560724][T10220] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  147.576480][T10220] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  147.587572][T10220] EXT4-fs (loop0): orphan cleanup on readonly fs
[  147.594615][T10212] bond0: (slave bond_slave_0): Releasing backup interface
[  147.603170][T10220] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #11: comm syz.0.2379: attempt to clear invalid blocks 1024 len 1
[  147.616730][T10212] bond0: (slave bond_slave_1): Releasing backup interface
[  147.626557][T10212] team0: Port device team_slave_0 removed
[  147.632954][T10212] team0: Port device team_slave_1 removed
[  147.637663][T10225] loop5: detected capacity change from 0 to 764
[  147.638881][T10212] batman_adv: batadv0: Removing interface: batadv_slave_0
[  147.652665][T10212] batman_adv: batadv0: Removing interface: batadv_slave_1
[  147.664483][T10220] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2379: bg 0: block 361: padding at end of block bitmap is not set
[  147.680097][T10220] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  147.692787][T10231] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2383'.
[  147.706255][T10220] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2379: invalid indirect mapped block 1811939328 (level 0)
[  147.733325][T10220] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2379: invalid indirect mapped block 2185560079 (level 1)
[  147.750719][T10220] EXT4-fs (loop0): 1 truncate cleaned up
[  147.766119][T10233] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(11)
[  147.772801][T10233] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  147.780535][T10233] vhci_hcd vhci_hcd.0: Device attached
[  147.806158][T10236] vhci_hcd: connection closed
[  147.806368][ T1745] vhci_hcd: stop threads
[  147.815347][ T1745] vhci_hcd: release socket
[  147.819790][ T1745] vhci_hcd: disconnect device
[  147.839101][T10241] loop0: detected capacity change from 0 to 512
[  147.849598][T10243] FAULT_INJECTION: forcing a failure.
[  147.849598][T10243] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  147.862739][T10243] CPU: 0 UID: 0 PID: 10243 Comm: syz.6.2388 Not tainted 6.14.0-syzkaller-07422-gacb4f33713b9 #0 PREEMPT(voluntary) 
[  147.862769][T10243] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  147.862782][T10243] Call Trace:
[  147.862789][T10243]  <TASK>
[  147.862796][T10243]  dump_stack_lvl+0xf6/0x150
[  147.862821][T10243]  dump_stack+0x15/0x1a
[  147.862838][T10243]  should_fail_ex+0x261/0x270
[  147.862911][T10243]  should_fail+0xb/0x10
[  147.862935][T10243]  should_fail_usercopy+0x1a/0x20
[  147.862964][T10243]  strncpy_from_user+0x25/0x230
[  147.862985][T10243]  ? getname_flags+0x81/0x3b0
[  147.863022][T10243]  getname_flags+0xb0/0x3b0
[  147.863049][T10243]  __x64_sys_renameat2+0x6e/0xa0
[  147.863115][T10243]  x64_sys_call+0x2cf7/0x2e10
[  147.863138][T10243]  do_syscall_64+0xc9/0x1c0
[  147.863165][T10243]  ? clear_bhb_loop+0x25/0x80
[  147.863260][T10243]  ? clear_bhb_loop+0x25/0x80
[  147.863292][T10243]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.863315][T10243] RIP: 0033:0x7f239504d169
[  147.863331][T10243] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.863400][T10243] RSP: 002b:00007f23936af038 EFLAGS: 00000246 ORIG_RAX: 000000000000013c
[  147.863417][T10243] RAX: ffffffffffffffda RBX: 00007f2395265fa0 RCX: 00007f239504d169
[  147.863509][T10243] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: ffffffffffffffff
[  147.863521][T10243] RBP: 00007f23936af090 R08: 0000000000000004 R09: 0000000000000000
[  147.863530][T10243] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  147.863540][T10243] R13: 0000000000000000 R14: 00007f2395265fa0 R15: 00007fff61b6d8d8
[  147.863556][T10243]  </TASK>
[  148.036106][T10241] ext4 filesystem being mounted at /506/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  148.054702][T10227] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2381'.
[  148.060058][T10251] loop6: detected capacity change from 0 to 164
[  148.071915][T10251] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  148.082292][T10251] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  148.091739][T10241] Invalid ELF header magic: != ELF
[  148.095231][T10251] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2390'.
[  148.100930][T10241] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2387'.
[  148.200902][T10256] loop6: detected capacity change from 0 to 764
[  148.218606][T10262] loop0: detected capacity change from 0 to 512
[  148.238947][T10262] EXT4-fs: Ignoring removed nomblk_io_submit option
[  148.248224][T10262] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  148.253416][T10264] loop6: detected capacity change from 0 to 764
[  148.265341][T10266] loop1: detected capacity change from 0 to 512
[  148.271801][T10262] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  148.275048][T10266] EXT4-fs: Ignoring removed nomblk_io_submit option
[  148.280103][T10262] EXT4-fs (loop0): orphan cleanup on readonly fs
[  148.293173][T10262] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #11: comm syz.0.2394: attempt to clear invalid blocks 1024 len 1
[  148.300629][T10269] loop6: detected capacity change from 0 to 512
[  148.308255][T10262] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2394: bg 0: block 361: padding at end of block bitmap is not set
[  148.312904][T10266] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  148.327331][T10269] EXT4-fs: Ignoring removed nomblk_io_submit option
[  148.339187][T10266] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  148.343183][T10262] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  148.351372][T10266] EXT4-fs (loop1): orphan cleanup on readonly fs
[  148.361773][T10269] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  148.376916][T10266] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #11: comm syz.1.2396: attempt to clear invalid blocks 1024 len 1
[  148.377953][T10262] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2394: invalid indirect mapped block 1811939328 (level 0)
[  148.390656][T10266] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2396: bg 0: block 361: padding at end of block bitmap is not set
[  148.405779][T10269] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  148.418767][T10266] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  148.428299][T10269] EXT4-fs (loop6): orphan cleanup on readonly fs
[  148.434924][T10262] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2394: invalid indirect mapped block 2185560079 (level 1)
[  148.455710][T10262] EXT4-fs (loop0): 1 truncate cleaned up
[  148.461899][T10269] EXT4-fs error (device loop6): ext4_clear_blocks:876: inode #11: comm syz.6.2397: attempt to clear invalid blocks 1024 len 1
[  148.477313][T10266] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.2396: invalid indirect mapped block 1811939328 (level 0)
[  148.492684][T10269] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.2397: bg 0: block 361: padding at end of block bitmap is not set
[  148.507315][T10269] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  148.508990][   T29] kauditd_printk_skb: 549 callbacks suppressed
[  148.509004][   T29] audit: type=1326 audit(1743193184.245:13144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10272 comm="syz.3.2398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b04c3d169 code=0x7ffc0000
[  148.516523][T10266] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.2396: invalid indirect mapped block 2185560079 (level 1)
[  148.547859][T10269] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.2397: invalid indirect mapped block 1811939328 (level 0)
[  148.575500][   T29] audit: type=1326 audit(1743193184.305:13145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10272 comm="syz.3.2398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5b04c3d169 code=0x7ffc0000
[  148.599128][   T29] audit: type=1326 audit(1743193184.305:13146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10272 comm="syz.3.2398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b04c3d169 code=0x7ffc0000
[  148.622857][   T29] audit: type=1326 audit(1743193184.305:13147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10272 comm="syz.3.2398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5b04c3d169 code=0x7ffc0000
[  148.626500][T10269] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.2397: invalid indirect mapped block 2185560079 (level 1)
[  148.646449][   T29] audit: type=1326 audit(1743193184.305:13148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10272 comm="syz.3.2398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b04c3d169 code=0x7ffc0000
[  148.646479][   T29] audit: type=1326 audit(1743193184.305:13149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10272 comm="syz.3.2398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5b04c3d169 code=0x7ffc0000
[  148.646505][   T29] audit: type=1326 audit(1743193184.305:13150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10272 comm="syz.3.2398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b04c3d169 code=0x7ffc0000
[  148.697660][T10269] EXT4-fs (loop6): 1 truncate cleaned up
[  148.707707][   T29] audit: type=1326 audit(1743193184.305:13151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10272 comm="syz.3.2398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=105 compat=0 ip=0x7f5b04c3d169 code=0x7ffc0000
[  148.707732][   T29] audit: type=1326 audit(1743193184.305:13152): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10272 comm="syz.3.2398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b04c3d169 code=0x7ffc0000
[  148.784917][T10266] EXT4-fs (loop1): 1 truncate cleaned up
[  148.832849][T10286] syz.6.2403: attempt to access beyond end of device
[  148.832849][T10286] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  148.865196][T10290] FAULT_INJECTION: forcing a failure.
[  148.865196][T10290] name failslab, interval 1, probability 0, space 0, times 0
[  148.875055][T10286] syz.6.2403: attempt to access beyond end of device
[  148.875055][T10286] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  148.877959][T10290] CPU: 0 UID: 0 PID: 10290 Comm: syz.3.2405 Not tainted 6.14.0-syzkaller-07422-gacb4f33713b9 #0 PREEMPT(voluntary) 
[  148.877991][T10290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  148.878004][T10290] Call Trace:
[  148.878011][T10290]  <TASK>
[  148.878019][T10290]  dump_stack_lvl+0xf6/0x150
[  148.878043][T10290]  dump_stack+0x15/0x1a
[  148.878108][T10290]  should_fail_ex+0x261/0x270
[  148.878157][T10290]  should_failslab+0x8f/0xb0
[  148.878179][T10290]  kmem_cache_alloc_node_noprof+0x5c/0x340
[  148.878209][T10290]  ? __alloc_skb+0x10d/0x320
[  148.878233][T10290]  __alloc_skb+0x10d/0x320
[  148.878259][T10290]  netlink_alloc_large_skb+0xad/0xe0
[  148.878296][T10290]  netlink_sendmsg+0x3da/0x720
[  148.878323][T10290]  ? __pfx_netlink_sendmsg+0x10/0x10
[  148.878379][T10290]  __sock_sendmsg+0x140/0x180
[  148.878413][T10290]  ____sys_sendmsg+0x350/0x4e0
[  148.878524][T10290]  __sys_sendmsg+0x1a0/0x240
[  148.878567][T10290]  __x64_sys_sendmsg+0x46/0x50
[  148.878592][T10290]  x64_sys_call+0x26f3/0x2e10
[  148.878614][T10290]  do_syscall_64+0xc9/0x1c0
[  148.878658][T10290]  ? clear_bhb_loop+0x25/0x80
[  148.878744][T10290]  ? clear_bhb_loop+0x25/0x80
[  148.878768][T10290]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.878868][T10290] RIP: 0033:0x7f5b04c3d169
[  148.878884][T10290] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  148.878905][T10290] RSP: 002b:00007f5b0329f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  148.878933][T10290] RAX: ffffffffffffffda RBX: 00007f5b04e55fa0 RCX: 00007f5b04c3d169
[  148.878989][T10290] RDX: 0000000020050800 RSI: 00002000000000c0 RDI: 0000000000000006
[  148.879003][T10290] RBP: 00007f5b0329f090 R08: 0000000000000000 R09: 0000000000000000
[  148.879016][T10290] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  148.879030][T10290] R13: 0000000000000000 R14: 00007f5b04e55fa0 R15: 00007fff8738aaf8
[  148.879052][T10290]  </TASK>
[  149.086173][   T29] audit: type=1400 audit(1743193184.805:13153): avc:  denied  { write } for  pid=10284 comm="syz.6.2403" name="raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  149.126083][T10298] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.180429][T10305] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(10)
[  149.187023][T10305] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  149.194676][T10305] vhci_hcd vhci_hcd.0: Device attached
[  149.205685][T10306] vhci_hcd: connection closed
[  149.207052][T10298] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.222139][ T4333] vhci_hcd: stop threads
[  149.226436][ T4333] vhci_hcd: release socket
[  149.230968][ T4333] vhci_hcd: disconnect device
[  149.238213][T10310] loop1: detected capacity change from 0 to 512
[  149.244831][T10310] EXT4-fs: Ignoring removed nomblk_io_submit option
[  149.251846][T10310] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  149.262330][T10310] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  149.271849][T10310] EXT4-fs (loop1): orphan cleanup on readonly fs
[  149.279003][T10310] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #11: comm syz.1.2411: attempt to clear invalid blocks 1024 len 1
[  149.293889][T10310] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2411: bg 0: block 361: padding at end of block bitmap is not set
[  149.310621][T10310] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  149.311400][T10298] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.334534][T10310] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.2411: invalid indirect mapped block 1811939328 (level 0)
[  149.359158][T10310] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.2411: invalid indirect mapped block 2185560079 (level 1)
[  149.374694][T10310] EXT4-fs (loop1): 1 truncate cleaned up
[  149.405623][T10318] loop1: detected capacity change from 0 to 1024
[  149.416421][T10298] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.479697][T10298] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  149.490721][T10298] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  149.502058][T10298] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  149.515165][T10298] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  149.531069][T10323] loop6: detected capacity change from 0 to 164
[  149.540197][T10323] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  149.553942][T10323] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  149.565742][T10323] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2415'.
[  149.735013][T10336] loop3: detected capacity change from 0 to 1024
[  149.892991][T10339] loop5: detected capacity change from 0 to 512
[  149.905319][T10339] EXT4-fs (loop5): 1 orphan inode deleted
[  149.911537][T10339] ext4 filesystem being mounted at /417/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  150.042638][T10346] loop5: detected capacity change from 0 to 1024
[  150.055345][T10346] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2421'.
[  150.071088][T10346] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2421'.
[  150.260647][T10350] loop1: detected capacity change from 0 to 764
[  150.398442][T10355] loop0: detected capacity change from 0 to 512
[  150.407230][T10355] EXT4-fs: Ignoring removed nomblk_io_submit option
[  150.414318][T10355] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  150.436557][T10355] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  150.455460][T10359] loop1: detected capacity change from 0 to 512
[  150.461980][T10359] EXT4-fs: Ignoring removed nomblk_io_submit option
[  150.469036][T10359] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  150.479157][T10355] EXT4-fs (loop0): orphan cleanup on readonly fs
[  150.494374][T10355] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #11: comm syz.0.2424: attempt to clear invalid blocks 1024 len 1
[  150.509337][T10359] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  150.518004][T10355] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2424: bg 0: block 361: padding at end of block bitmap is not set
[  150.518076][T10359] EXT4-fs (loop1): orphan cleanup on readonly fs
[  150.533158][T10355] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  150.548376][T10359] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #11: comm syz.1.2427: attempt to clear invalid blocks 1024 len 1
[  150.549081][T10355] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2424: invalid indirect mapped block 1811939328 (level 0)
[  150.562101][T10359] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2427: bg 0: block 361: padding at end of block bitmap is not set
[  150.590213][T10359] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  150.600130][T10359] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.2427: invalid indirect mapped block 1811939328 (level 0)
[  150.616493][T10359] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.2427: invalid indirect mapped block 2185560079 (level 1)
[  150.647357][T10355] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2424: invalid indirect mapped block 2185560079 (level 1)
[  150.650618][T10359] EXT4-fs (loop1): 1 truncate cleaned up
[  150.667574][T10355] EXT4-fs (loop0): 1 truncate cleaned up
[  150.795643][T10372] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  150.817150][T10366] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2430'.
[  150.856432][T10372] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  150.904378][T10374] loop5: detected capacity change from 0 to 1024
[  150.929101][T10374] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2433'.
[  150.961703][T10372] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.057131][T10372] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.101499][T10372] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  151.113314][T10372] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  151.125024][T10372] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  151.136832][T10372] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  151.592669][T10389] loop6: detected capacity change from 0 to 164
[  151.599898][T10389] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  151.612387][T10389] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  151.713481][T10398] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(9)
[  151.720014][T10398] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  151.728168][T10398] vhci_hcd vhci_hcd.0: Device attached
[  151.739983][T10399] vhci_hcd: connection closed
[  151.740112][ T3385] vhci_hcd: stop threads
[  151.749074][ T3385] vhci_hcd: release socket
[  151.753482][ T3385] vhci_hcd: disconnect device
[  151.852820][T10405] loop3: detected capacity change from 0 to 1024
[  151.861837][T10403] loop0: detected capacity change from 0 to 512
[  151.868899][T10403] EXT4-fs: Ignoring removed nomblk_io_submit option
[  151.879640][T10403] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  151.890061][T10403] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  151.898182][T10403] EXT4-fs (loop0): orphan cleanup on readonly fs
[  151.906355][T10403] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #11: comm syz.0.2442: attempt to clear invalid blocks 1024 len 1
[  151.922857][T10403] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2442: bg 0: block 361: padding at end of block bitmap is not set
[  151.937429][T10403] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  151.946762][T10403] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2442: invalid indirect mapped block 1811939328 (level 0)
[  151.965203][T10403] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2442: invalid indirect mapped block 2185560079 (level 1)
[  151.980067][T10403] EXT4-fs (loop0): 1 truncate cleaned up
[  152.000794][T10408] loop5: detected capacity change from 0 to 764
[  152.003817][T10410] loop3: detected capacity change from 0 to 512
[  152.049664][T10417] loop5: detected capacity change from 0 to 164
[  152.050357][T10417] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  152.066335][T10417] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  152.235010][T10437] loop0: detected capacity change from 0 to 512
[  152.241651][T10437] EXT4-fs: Ignoring removed nomblk_io_submit option
[  152.248785][T10437] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  152.262185][T10439] loop3: detected capacity change from 0 to 164
[  152.269542][T10439] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  152.271068][T10437] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  152.281890][T10439] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  152.294325][T10437] EXT4-fs (loop0): orphan cleanup on readonly fs
[  152.300339][T10443] loop6: detected capacity change from 0 to 512
[  152.316205][T10437] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #11: comm syz.0.2455: attempt to clear invalid blocks 1024 len 1
[  152.316687][T10437] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2455: bg 0: block 361: padding at end of block bitmap is not set
[  152.316866][T10437] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  152.317161][T10437] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2455: invalid indirect mapped block 1811939328 (level 0)
[  152.317354][T10437] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2455: invalid indirect mapped block 2185560079 (level 1)
[  152.317605][T10437] EXT4-fs (loop0): 1 truncate cleaned up
[  152.392022][T10443] EXT4-fs (loop6): 1 orphan inode deleted
[  152.400679][T10443] ext4 filesystem being mounted at /429/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  152.411261][ T4333] EXT4-fs error (device loop6): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1
[  152.414365][T10448] loop3: detected capacity change from 0 to 764
[  152.441046][T10450] loop0: detected capacity change from 0 to 164
[  152.464062][T10450] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  152.486485][T10455] loop6: detected capacity change from 0 to 512
[  152.494460][T10450] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  152.495136][T10455] EXT4-fs: Ignoring removed nomblk_io_submit option
[  152.519919][T10455] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  152.539390][T10455] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  152.548298][T10455] EXT4-fs (loop6): orphan cleanup on readonly fs
[  152.556186][T10455] EXT4-fs error (device loop6): ext4_clear_blocks:876: inode #11: comm syz.6.2460: attempt to clear invalid blocks 1024 len 1
[  152.570576][T10455] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.2460: bg 0: block 361: padding at end of block bitmap is not set
[  152.570775][T10455] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  152.623448][T10455] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.2460: invalid indirect mapped block 1811939328 (level 0)
[  152.651277][T10455] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.2460: invalid indirect mapped block 2185560079 (level 1)
[  152.666972][T10455] EXT4-fs (loop6): 1 truncate cleaned up
[  152.682756][T10465] loop3: detected capacity change from 0 to 512
[  152.690377][T10465] EXT4-fs: Ignoring removed nomblk_io_submit option
[  152.697390][T10465] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  152.717049][T10465] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  152.740449][T10465] EXT4-fs (loop3): write access unavailable, skipping orphan cleanup
[  152.782659][T10468] loop0: detected capacity change from 0 to 164
[  152.791423][T10468] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  152.801964][T10468] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  152.856752][T10472] loop0: detected capacity change from 0 to 512
[  152.877775][T10472] EXT4-fs (loop0): 1 orphan inode deleted
[  152.895368][   T41] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:2: Failed to release dquot type 1
[  152.909362][T10476] __nla_validate_parse: 14 callbacks suppressed
[  152.909377][T10476] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2467'.
[  152.924535][T10476] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2467'.
[  152.936104][T10476] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2467'.
[  152.946964][T10478] loop6: detected capacity change from 0 to 164
[  152.955134][T10472] ext4 filesystem being mounted at /525/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  152.967003][T10478] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  152.981703][T10478] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  152.993154][T10476] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2467'.
[  153.002079][T10476] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2467'.
[  153.037705][T10476] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2467'.
[  153.043427][T10482] loop0: detected capacity change from 0 to 764
[  153.058031][T10478] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2468'.
[  153.099297][T10476] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2467'.
[  153.108273][T10476] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2467'.
[  153.127762][T10485] loop6: detected capacity change from 0 to 764
[  153.136308][T10476] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2467'.
[  153.163866][T10490] loop0: detected capacity change from 0 to 164
[  153.170763][T10490] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  153.179418][T10490] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  153.227546][T10498] loop6: detected capacity change from 0 to 1024
[  153.235779][T10497] loop5: detected capacity change from 0 to 512
[  153.242454][T10497] EXT4-fs: Ignoring removed nomblk_io_submit option
[  153.250198][T10497] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  153.263790][T10497] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  153.272011][T10497] EXT4-fs (loop5): orphan cleanup on readonly fs
[  153.278744][T10497] EXT4-fs error (device loop5): ext4_clear_blocks:876: inode #11: comm syz.5.2479: attempt to clear invalid blocks 1024 len 1
[  153.306568][T10497] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.2479: bg 0: block 361: padding at end of block bitmap is not set
[  153.332550][T10497] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  153.363479][T10497] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.2479: invalid indirect mapped block 1811939328 (level 0)
[  153.396576][T10497] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.2479: invalid indirect mapped block 2185560079 (level 1)
[  153.474937][T10497] EXT4-fs (loop5): 1 truncate cleaned up
[  153.507287][T10510] loop5: detected capacity change from 0 to 164
[  153.515173][   T29] kauditd_printk_skb: 441 callbacks suppressed
[  153.515212][   T29] audit: type=1326 audit(1743193189.255:13593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10508 comm="syz.5.2480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f65d85dbdca code=0x7ffc0000
[  153.546787][T10510] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  153.557171][T10510] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  153.577851][   T29] audit: type=1326 audit(1743193189.285:13594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10508 comm="syz.5.2480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f65d85dbdca code=0x7ffc0000
[  153.601375][   T29] audit: type=1326 audit(1743193189.285:13595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10508 comm="syz.5.2480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f65d85db9d7 code=0x7ffc0000
[  153.625028][   T29] audit: type=1326 audit(1743193189.285:13596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10508 comm="syz.5.2480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f65d85de90a code=0x7ffc0000
[  153.648610][   T29] audit: type=1326 audit(1743193189.295:13597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10508 comm="syz.5.2480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f65d85dbad0 code=0x7ffc0000
[  153.672176][   T29] audit: type=1326 audit(1743193189.295:13598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10508 comm="syz.5.2480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f65d85dbad0 code=0x7ffc0000
[  153.695820][   T29] audit: type=1326 audit(1743193189.295:13599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10508 comm="syz.5.2480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65d85dd169 code=0x7ffc0000
[  153.719526][   T29] audit: type=1326 audit(1743193189.295:13600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10508 comm="syz.5.2480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65d85dd169 code=0x7ffc0000
[  153.743128][   T29] audit: type=1326 audit(1743193189.295:13601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10508 comm="syz.5.2480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=261 compat=0 ip=0x7f65d85dd169 code=0x7ffc0000
[  153.766803][   T29] audit: type=1326 audit(1743193189.305:13602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10508 comm="syz.5.2480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65d85dd169 code=0x7ffc0000
[  153.802416][T10513] loop1: detected capacity change from 0 to 512
[  153.818744][T10515] loop5: detected capacity change from 0 to 512
[  153.827506][T10513] EXT4-fs (loop1): 1 orphan inode deleted
[  153.836488][T10513] ext4 filesystem being mounted at /503/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  153.847425][ T1745] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:6: Failed to release dquot type 1
[  153.860952][T10515] EXT4-fs (loop5): 1 orphan inode deleted
[  153.867523][T10515] ext4 filesystem being mounted at /430/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  153.881053][ T1745] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:6: Failed to release dquot type 1
[  153.944142][T10522] loop1: detected capacity change from 0 to 164
[  153.959423][T10522] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  153.970350][T10522] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  154.015300][T10525] loop1: detected capacity change from 0 to 764
[  154.081170][T10531] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  154.087804][T10531] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  154.095428][T10531] vhci_hcd vhci_hcd.0: Device attached
[  154.101978][T10527] loop1: detected capacity change from 0 to 1024
[  154.109462][T10532] vhci_hcd: connection closed
[  154.109658][ T1745] vhci_hcd: stop threads
[  154.118709][ T1745] vhci_hcd: release socket
[  154.123243][ T1745] vhci_hcd: disconnect device
[  154.157823][T10537] loop5: detected capacity change from 0 to 164
[  154.167067][T10530] loop0: detected capacity change from 0 to 764
[  154.174233][T10537] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  154.185759][T10537] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  154.641127][T10553] loop3: detected capacity change from 0 to 164
[  154.647621][T10552] loop5: detected capacity change from 0 to 512
[  154.654119][T10553] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  154.667431][T10553] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  154.715336][T10555] loop0: detected capacity change from 0 to 164
[  154.716345][T10552] EXT4-fs (loop5): 1 orphan inode deleted
[  154.740042][T10555] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  154.748576][   T48] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:3: Failed to release dquot type 1
[  154.759300][T10555] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  154.767657][T10552] ext4 filesystem being mounted at /434/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  154.835477][T10562] loop0: detected capacity change from 0 to 164
[  154.842803][T10562] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  154.851917][T10562] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  154.878894][T10565] loop3: detected capacity change from 0 to 1024
[  154.910182][T10570] loop0: detected capacity change from 0 to 512
[  154.936145][T10570] EXT4-fs (loop0): 1 orphan inode deleted
[  154.936692][T10570] ext4 filesystem being mounted at /534/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  154.970165][T10575] loop0: detected capacity change from 0 to 1024
[  155.048036][T10580] loop6: detected capacity change from 0 to 164
[  155.055148][T10580] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  155.063945][T10580] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  155.392593][T10588] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  155.399135][T10588] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  155.406884][T10588] vhci_hcd vhci_hcd.0: Device attached
[  155.413112][T10589] vhci_hcd: connection closed
[  155.413413][   T41] vhci_hcd: stop threads
[  155.422485][   T41] vhci_hcd: release socket
[  155.426924][   T41] vhci_hcd: disconnect device
[  155.692662][T10592] loop3: detected capacity change from 0 to 164
[  155.700549][T10592] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  155.717153][T10592] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  155.842594][T10600] loop3: detected capacity change from 0 to 512
[  155.933432][T10604] loop1: detected capacity change from 0 to 512
[  155.949252][T10605] loop3: detected capacity change from 0 to 1024
[  156.020556][T10604] EXT4-fs (loop1): 1 orphan inode deleted
[  156.026906][T10604] ext4 filesystem being mounted at /510/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  156.037447][ T3385] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:7: Failed to release dquot type 1
[  156.360675][T10615] loop0: detected capacity change from 0 to 764
[  156.638243][T10620] loop1: detected capacity change from 0 to 164
[  156.654478][T10620] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  156.673260][T10620] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  157.002765][T10633] loop3: detected capacity change from 0 to 164
[  157.032089][T10633] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  157.052392][T10633] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  157.062818][T10637] loop1: detected capacity change from 0 to 512
[  157.106034][T10637] EXT4-fs (loop1): 1 orphan inode deleted
[  157.114947][T10637] EXT4-fs mount: 112 callbacks suppressed
[  157.114959][T10637] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  157.133234][T10641] loop3: detected capacity change from 0 to 512
[  157.138107][   T48] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:3: Failed to release dquot type 1
[  157.188831][T10637] ext4 filesystem being mounted at /514/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  157.204679][T10643] loop3: detected capacity change from 0 to 164
[  157.217482][T10643] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  157.235812][T10643] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  157.267480][ T3305] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.363132][T10647] loop1: detected capacity change from 0 to 764
[  157.398121][T10649] loop3: detected capacity change from 0 to 1024
[  157.412988][T10651] loop1: detected capacity change from 0 to 764
[  157.425433][T10653] loop0: detected capacity change from 0 to 1024
[  157.443840][T10653] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  158.321481][T10676] loop3: detected capacity change from 0 to 512
[  158.330601][ T3300] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.365259][T10678] loop3: detected capacity change from 0 to 764
[  158.380300][T10680] loop0: detected capacity change from 0 to 1024
[  158.399793][T10680] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  158.416321][T10680] __nla_validate_parse: 12 callbacks suppressed
[  158.416337][T10680] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2549'.
[  158.442846][T10680] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2549'.
[  158.503154][T10686] loop3: detected capacity change from 0 to 164
[  158.519269][T10686] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  158.538210][T10686] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  158.554957][T10686] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2540'.
[  158.598427][T10690] loop1: detected capacity change from 0 to 512
[  158.605157][T10690] EXT4-fs: Ignoring removed nomblk_io_submit option
[  158.612338][T10690] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  158.624526][T10690] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  158.633814][T10690] EXT4-fs (loop1): orphan cleanup on readonly fs
[  158.643463][T10694] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  158.650058][T10694] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  158.657693][T10694] vhci_hcd vhci_hcd.0: Device attached
[  158.664138][T10690] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #11: comm syz.1.2543: attempt to clear invalid blocks 1024 len 1
[  158.687337][T10695] vhci_hcd: connection closed
[  158.687769][ T3385] vhci_hcd: stop threads
[  158.696859][ T3385] vhci_hcd: release socket
[  158.701289][ T3385] vhci_hcd: disconnect device
[  158.706722][T10690] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2543: bg 0: block 361: padding at end of block bitmap is not set
[  158.721765][T10690] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  158.731226][T10690] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.2543: invalid indirect mapped block 1811939328 (level 0)
[  158.745495][T10690] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.2543: invalid indirect mapped block 2185560079 (level 1)
[  158.764463][T10690] EXT4-fs (loop1): 1 truncate cleaned up
[  158.771719][T10690] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  158.804612][   T29] kauditd_printk_skb: 519 callbacks suppressed
[  158.804656][   T29] audit: type=1326 audit(1743193194.535:14117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10699 comm="syz.5.2546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65d85dd169 code=0x7ffc0000
[  158.834645][   T29] audit: type=1326 audit(1743193194.535:14118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10699 comm="syz.5.2546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65d85dd169 code=0x7ffc0000
[  158.858373][   T29] audit: type=1326 audit(1743193194.535:14119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10699 comm="syz.5.2546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f65d85dd169 code=0x7ffc0000
[  158.882019][   T29] audit: type=1326 audit(1743193194.535:14120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10699 comm="syz.5.2546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65d85dd169 code=0x7ffc0000
[  158.905678][   T29] audit: type=1326 audit(1743193194.535:14121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10699 comm="syz.5.2546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f65d85dd169 code=0x7ffc0000
[  158.929199][   T29] audit: type=1326 audit(1743193194.535:14122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10699 comm="syz.5.2546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65d85dd169 code=0x7ffc0000
[  158.952878][   T29] audit: type=1326 audit(1743193194.535:14123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10699 comm="syz.5.2546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f65d85dd169 code=0x7ffc0000
[  158.976450][   T29] audit: type=1326 audit(1743193194.535:14124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10699 comm="syz.5.2546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65d85dd169 code=0x7ffc0000
[  159.000048][   T29] audit: type=1326 audit(1743193194.535:14125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10699 comm="syz.5.2546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f65d85dd169 code=0x7ffc0000
[  159.023615][   T29] audit: type=1326 audit(1743193194.535:14126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10699 comm="syz.5.2546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65d85dd169 code=0x7ffc0000
[  159.048144][ T3305] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  159.101548][T10706] loop5: detected capacity change from 0 to 764
[  159.126208][T10708] loop1: detected capacity change from 0 to 1024
[  159.139303][T10708] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  159.153399][T10711] loop5: detected capacity change from 0 to 164
[  159.156744][T10708] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2548'.
[  159.168757][T10711] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  159.183665][T10708] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2548'.
[  159.232300][ T3300] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.308624][T10722] loop3: detected capacity change from 0 to 1024
[  159.318134][T10722] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2556'.
[  159.340166][T10723] netlink: 16402 bytes leftover after parsing attributes in process `syz.5.2555'.
[  159.414046][T10718] netlink: 16402 bytes leftover after parsing attributes in process `syz.5.2555'.
[  159.685479][T10734] loop6: detected capacity change from 0 to 164
[  159.694212][T10732] Invalid ELF header magic: != ELF
[  159.707166][T10734] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  159.731184][T10731] netlink: 'syz.3.2558': attribute type 1 has an invalid length.
[  159.738942][T10731] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2558'.
[  159.750548][T10734] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  159.776163][T10736] loop5: detected capacity change from 0 to 2048
[  159.824645][T10736] Alternate GPT is invalid, using primary GPT.
[  159.830892][T10736]  loop5: p1 p2 p3
[  159.910464][T10738] loop3: detected capacity change from 0 to 2048
[  159.945194][T10740] loop6: detected capacity change from 0 to 764
[  159.974645][T10738] Alternate GPT is invalid, using primary GPT.
[  159.980905][T10738]  loop3: p1 p2 p3
[  160.032146][T10742] loop5: detected capacity change from 0 to 164
[  160.063992][T10742] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  160.065523][T10748] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(5)
[  160.078656][T10748] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  160.086390][T10748] vhci_hcd vhci_hcd.0: Device attached
[  160.120842][T10754] loop5: detected capacity change from 0 to 512
[  160.170844][T10750] vhci_hcd: connection closed
[  160.170925][   T48] vhci_hcd: stop threads
[  160.179997][   T48] vhci_hcd: release socket
[  160.184462][   T48] vhci_hcd: disconnect device
[  160.184602][T10757] loop3: detected capacity change from 0 to 1024
[  160.198764][T10754] EXT4-fs (loop5): 1 orphan inode deleted
[  160.206397][ T4333] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1
[  160.207674][T10757] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2569'.
[  160.218862][T10754] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.235554][ T3305] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.248620][T10754] ext4 filesystem being mounted at /447/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  160.282372][T10762] loop3: detected capacity change from 0 to 764
[  160.289010][T10760] loop1: detected capacity change from 0 to 764
[  160.307567][ T4147] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.316651][ T4147] ==================================================================
[  160.324732][ T4147] BUG: KCSAN: data-race in console_flush_all / console_flush_all
[  160.324774][ T4147] 
[  160.324781][ T4147] write to 0xffffffff86a1d2b8 of 8 bytes by task 10760 on cpu 1:
[  160.332482][T10760] 
[  160.334778][ T4147]  console_flush_all+0x3b7/0x7a0
[  160.334807][ T4147]  console_unlock+0xf4/0x350
[  160.334829][ T4147]  vprintk_emit+0x470/0x6c0
[  160.334852][ T4147]  vprintk_default+0x26/0x30
[  160.363396][ T4147]  vprintk+0x1d/0x30
[  160.367286][ T4147]  _printk+0x7f/0xb0
[  160.371168][ T4147]  __isofs_iget+0xf4a/0x1030
[  160.375745][ T4147]  isofs_fill_super+0xd36/0x12c0
[  160.380671][ T4147]  get_tree_bdev_flags+0x2b4/0x330
[  160.385767][ T4147]  get_tree_bdev+0x1f/0x30
[  160.390171][ T4147]  isofs_get_tree+0x1c/0x30
[  160.394686][ T4147]  vfs_get_tree+0x56/0x1e0
[  160.399107][ T4147]  do_new_mount+0x246/0x6b0
[  160.403595][ T4147]  path_mount+0x49b/0xb30
[  160.407918][ T4147]  __se_sys_mount+0x28f/0x2e0
[  160.412589][ T4147]  __x64_sys_mount+0x67/0x80
[  160.417190][ T4147]  x64_sys_call+0xd11/0x2e10
[  160.421797][ T4147]  do_syscall_64+0xc9/0x1c0
[  160.426295][ T4147]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.432178][ T4147] 
[  160.434504][ T4147] read to 0xffffffff86a1d2b8 of 8 bytes by task 4147 on cpu 0:
[  160.442033][ T4147]  console_flush_all+0x5a3/0x7a0
[  160.446965][ T4147]  console_unlock+0xf4/0x350
[  160.451551][ T4147]  vprintk_emit+0x470/0x6c0
[  160.456048][ T4147]  vprintk_default+0x26/0x30
[  160.460631][ T4147]  vprintk+0x1d/0x30
[  160.464522][ T4147]  _printk+0x7f/0xb0
[  160.468413][ T4147]  __ext4_msg+0x198/0x1b0
[  160.472734][ T4147]  ext4_put_super+0x97/0x910
[  160.477327][ T4147]  generic_shutdown_super+0xe5/0x220
[  160.482604][ T4147]  kill_block_super+0x2a/0x70
[  160.487282][ T4147]  ext4_kill_sb+0x44/0x80
[  160.491602][ T4147]  deactivate_locked_super+0x7d/0x1c0
[  160.496974][ T4147]  deactivate_super+0x9f/0xb0
[  160.501648][ T4147]  cleanup_mnt+0x26e/0x2e0
[  160.506083][ T4147]  __cleanup_mnt+0x19/0x20
[  160.510501][ T4147]  task_work_run+0x13c/0x1b0
[  160.515106][ T4147]  syscall_exit_to_user_mode+0xa8/0x120
[  160.520643][ T4147]  do_syscall_64+0xd6/0x1c0
[  160.525137][ T4147]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.531018][ T4147] 
[  160.533328][ T4147] value changed: 0x0000000000002011 -> 0x0000000000002012
[  160.540417][ T4147] 
[  160.542897][ T4147] Reported by Kernel Concurrency Sanitizer on:
[  160.549037][ T4147] CPU: 0 UID: 0 PID: 4147 Comm: syz-executor Not tainted 6.14.0-syzkaller-07422-gacb4f33713b9 #0 PREEMPT(voluntary) 
[  160.561258][ T4147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  160.571317][ T4147] ==================================================================
[  160.594397][T10766] loop3: detected capacity change from 0 to 164
[  160.601629][T10766] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  160.610791][T10766] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  160.619589][T10764] Invalid ELF header magic: != ELF
[  160.628599][T10764] netlink: 'syz.5.2572': attribute type 1 has an invalid length.
[  169.784857][   T29] kauditd_printk_skb: 313 callbacks suppressed
[  169.784952][   T29] audit: type=1400 audit(1743193205.525:14439): avc:  denied  { read } for  pid=2985 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[  169.813325][   T29] audit: type=1400 audit(1743193205.525:14440): avc:  denied  { search } for  pid=2985 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  169.835024][   T29] audit: type=1400 audit(1743193205.525:14441): avc:  denied  { append } for  pid=2985 comm="syslogd" name="messages" dev="tmpfs" ino=7 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  169.857351][   T29] audit: type=1400 audit(1743193205.525:14442): avc:  denied  { open } for  pid=2985 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=7 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  169.880122][   T29] audit: type=1400 audit(1743193205.525:14443): avc:  denied  { getattr } for  pid=2985 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=7 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1