last executing test programs:

2m24.910038165s ago: executing program 0 (id=1121):
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r2, 0x25, &(0x7f0000000000)={0x1})
fcntl$lock(r2, 0x7, &(0x7f0000001140)={0x1, 0x2, 0x6, 0x5, r0})

2m24.052441681s ago: executing program 0 (id=1126):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001100)=ANY=[@ANYBLOB="bf16000000000000b70700000100f0ff4070000000000000400000000000e1ff95000000000000002ba76bb3019c1341056bd8174b79603123751c4e345c652fbc1626cca2a2ad75806150ae0209e62751ee00aa19ce670d25010000020000040000009fc404000000c788b277beee1cbf9b0a4def23d410f6accd3641110bec4e90a6341965dac05c04683712a0b09ec39e9ef8f6e396ad200e011ea665c45a3449abe802f5ab3e89cf40b8580218ce740068720000074e468eea3fcfcf498278a315f5b87e1c26433a8acd715f5888b2007f00000000000000000100000000000000010015d60605000053350000000034a70c2ab40c7cf5691db43a5c00000000000000f030007ce2c6f800000000000000e75a89faff01218087560cce39bf405f1e846c1242000000000040cad326ad7add65873d9f87463ad6f7c2e8ee1a39244960b318778f2a047f6d5bef5d7d617da7a6520655a805608df4d431623c850af895abba14f6fbd7fb5e2a431ab9142f3a06d55740a43088696daaed74b9c5c29647d2f950a959cf050000008600a62e96b7cb8e52cbdc2ba9d580609e31c30879d6fce424c2208af6c3784a1975fa657de38a3a32e4fd67ce446adb431d07db79241aca1dd9ba02453bbb5ee8babe1745e645f091231b986e952afdac972f342c6f184777d05d988d6edc71df0100000013a38300cabf2b554380ad215c789bef4cc574109b8df8d9a9db669557b3809d8c396d2c0361629d1822f722ec23812770d72cd00100000078a75dea785be550dbb420287e0789b8c7044f563a1f68d4efe895fdbc463f747c08f4010586903500000000000000e800000000000000000000000000000000000000003ddf4aa4b1c8b8a0ae6fb5425f1d581961471cdb51f8940290e99ccff4123f955267fe4a75c11448741f064fc7ce7e62ee4df874e086287547d4099aeec9f1538ee25a2a5ccf4a9b604e88e12ff25184d4e3c6f7f623559435b2c505fb711300000000040000000000000000000000000000e67ccc02148a4fc43021cce9f24f4b2f9492c32e7a92a557ac2b44b84e88bbf7a49789906d923e4916f390ab7edcd3f5b9fe14446dd446a52131c464f2c08efb46d934615c8631b7c42efd029406000000433f5c899119ec0c0acef5385c5a2720caeb68f1e9c05b0591d89467ded84da092dea262e51811e2d7fa515722516bd5ef6c8c4966e5937562a5648a696ad3a042a7097ddefe0671a5767014b09ddbf69b78f977fb145890f5bf41ba92b8c4c8b14f0d4a880ef4518bb32879d326497e21e041254f06bd7f3a067e147e82e841dba3867da8bfbc101d3960e07d282f483e7b49991be06b950ccd48f4e49833f3c4a02bbd06c84680549f9eb16682ecb722e8ffaca907a3eaaebfc8e0a47c0076d7cc9d32b3cc96aa751d890881c3c33bd91f6ecf45ab3f12f816318346f9b883427b9190024edc1eddd68f34ce3bfedb5fe5d7beae4d3ca561e37570587783f9673e7ab17f5a09efc1114777d2707d2996961203aedff1c52108d9c0d51dc30209872ec602af42eb29d54a37be0fdfdcd74c2d859a566ee5c30677173a2592a4617ae08bec07422d52d2ba7271550a5c20e3a8d1c8c8fd3025ff00607b2249ae9a18391e01b21b36169790b8e96f7955754b6b01a75165d3573d1dec5cf1b08b6115b43203a5654cce2277eb4c02ef4817b4cb989ac178895810eff7b697f2dc9b308aa2460e3cb85cdc4833571a62bf310700000000000000cc7f923284230ada8c756096a66119d4b6b2f159585c3cf8e7bfdd619e294b1d21cd491b8cfd4a253856e485fe29c6ad177a9fb078ca905782b9ed3c30675b89a784bb8031cac0de95178a5acff029a0f0fe972df22b20afe95fba722056f94ab15f1cf605c33df627311f1b614684d77549"], &(0x7f0000000140)='GPL\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r0, 0x0, 0x13, 0x0, &(0x7f0000000440)="cc9f4d42ef21760fc9ae7ef1558f46be00d0b5", 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wg2\x00', <r2=>0x0})
kexec_load(0x0, 0x0, 0x0, 0x1)
bpf$TOKEN_CREATE(0x24, &(0x7f00000000c0)={0x0, r1}, 0x8)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x9, 0xc, &(0x7f0000000280)=ANY=[], &(0x7f0000000540)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x48, '\x00', r2, @cgroup_sock=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001}, 0x94)
r4 = socket(0x10, 0x803, 0x0)
recvmmsg(r4, 0x0, 0x0, 0x0, &(0x7f0000003700)={0x77359400})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='kfree\x00', r3}, 0x18)
r5 = socket$kcm(0x10, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x6)
r6 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
read$msr(r6, 0x0, 0x0)
sendmsg$kcm(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000300)="2e0000001000818807b62aa73f72cc9f0ba1f8483a0000005e120602000300000e000a0010000000028000001294", 0x2e}], 0x1}, 0x20008800)

2m23.95594011s ago: executing program 0 (id=1129):
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x11, 0x4, &(0x7f0000000700)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r1}, 0x10) (async)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x408b713f, 0x8}, 0x0, 0x10000, 0x80000, 0x5, 0x9, 0x20005, 0x0, 0x0, 0x10000, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, r0, 0x2) (async)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x21481e, &(0x7f0000000300)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4}}, {@nodiscard}]}, 0x1, 0x4f2, &(0x7f0000000600)="$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") (async)
r4 = gettid()
sendmsg$unix(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000007c0)='>', 0x1}], 0x1, &(0x7f0000000080)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r4, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r3, @ANYRES32=r2, @ANYRES32=r2, @ANYRES32=r3, @ANYRES32=r2, @ANYRES32=r3, @ANYRES32=0x0, @ANYRES32=r3, @ANYBLOB="1c000000000000000100000402000000", @ANYRES32, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r2, @ANYRESHEX=r3], 0xa0}, 0x4004881) (async)
timer_create(0x4, &(0x7f00000002c0)={0x0, 0x13, 0x0, @thr={&(0x7f0000000340)="d7520af3104f3d920b106c1e6177efdffe06a192194fa7d21541513213e6e453593ef55a2926575ffa886baff47ad59bf7ac7c94036f8b25bf2f7341f205eea84158bc627684583cd764526eb47accab4ff0f0143eaad0daa2711c7d294602034c2711539dac1a885fcb757a175fe365c67d8f94602d9b52c7427261fe41afa60b4ba97e65c0ebfa186a5da0712456157f39906509f82cd1baa991803117deb12e398d6df46070623ba8084cde92ea854055bf3badb859f30040d198e042bed3", &(0x7f0000000280)="3a18c59cd8752daadef4bcd2548ac94d1c308b"}}, &(0x7f0000000400))
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0x160)

2m23.482240447s ago: executing program 0 (id=1134):
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
sched_setscheduler(0x0, 0x1, 0x0)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000e40)="$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")
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='coredump_filter\x00')
write$cgroup_int(r0, &(0x7f0000000040)=0x7f, 0x12)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000000c0)={'erspan0\x00', &(0x7f00000002c0)={'erspan0\x00', <r1=>0x0, 0x10, 0x40, 0x800, 0x10000, {{0x2b, 0x4, 0x3, 0x8, 0xac, 0x67, 0x0, 0x1f, 0x2f, 0x0, @loopback, @empty, {[@ssrr={0x89, 0x1b, 0xf, [@loopback, @rand_addr=0x64010100, @multicast1, @multicast1, @multicast1, @remote]}, @cipso={0x86, 0x41, 0x7ffffffffffffffe, [{0x2, 0x3, "a3"}, {0x6, 0x4, "678e"}, {0x0, 0x10, "7dcab48e9b268c96809b9ec26722"}, {0x1, 0xa, "a2b0352102c6485f"}, {0x9a6e76929b09b362, 0xe, "c4eaf9d923e50c5b8bed1cd0"}, {0x2, 0x2}, {0x1, 0xa, "1880784a0a08ecbf"}]}, @timestamp={0x44, 0x2c, 0x84, 0x0, 0xb, [0x0, 0x7, 0xffff8000, 0x0, 0x0, 0x41, 0xffffffe7, 0x6, 0x800, 0x9]}, @noop, @ra={0x94, 0x4, 0x1}, @ra={0x94, 0x4}, @lsrr={0x83, 0x7, 0xa6, [@dev={0xac, 0x14, 0x14, 0x36}]}]}}}}})
sendmsg$nl_route_sched_retired(r0, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000100)={&(0x7f0000000a40)=@newqdisc={0x200, 0x24, 0x98c128d97e035c46, 0x70bd27, 0x25dfdbfc, {0x0, 0x0, 0x0, r1, {0x6, 0x3}, {0x7, 0x7}, {0x10, 0xffff}}, [@q_dsmark={{0xb}, {0x3c, 0x2, [@TCA_DSMARK_INDICES={0x6, 0x1, 0x2}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x6}, @TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x1a}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x8}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x101}, @TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0xfffe}]}}, @q_dsmark={{0xb}, {0x4}}, @q_dsmark={{0xb}, {0x34, 0x2, [@TCA_DSMARK_INDICES={0x6, 0x1, 0x17}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x36}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x30}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x9}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x3}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x5}]}}, @q_dsmark={{0xb}, {0x4c, 0x2, [@TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x4}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x2e0}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0xd29}, @TCA_DSMARK_INDICES={0x6}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x2}, @TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x10}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x4c1}, @TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x6}]}}, @q_dsmark={{0xb}, {0x30, 0x2, [@TCA_DSMARK_INDICES={0x6, 0x1, 0x18}, @TCA_DSMARK_DEFAULT_INDEX={0x6}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x7}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x10}, @TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x28}]}}, @q_dsmark={{0xb}, {0xc, 0x2, [@TCA_DSMARK_INDICES={0x6, 0x1, 0x2d}]}}, @q_dsmark={{0xb}, {0x14, 0x2, [@TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x3}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x1}]}}, @q_dsmark={{0xb}, {0x24, 0x2, [@TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x5}, @TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x4}]}}, @q_dsmark={{0xb}, {0x3c, 0x2, [@TCA_DSMARK_INDICES={0x6, 0x1, 0x24}, @TCA_DSMARK_INDICES={0x6}, @TCA_DSMARK_INDICES={0x6, 0x1, 0xc}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x7}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0xd3be}, @TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x6}, @TCA_DSMARK_SET_TC_INDEX={0x4}]}}]}, 0x200}, 0x1, 0x0, 0x0, 0x50}, 0x48000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x8042, 0x0)
open(&(0x7f0000000180)='./bus\x00', 0x14937e, 0x111)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r2 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r2, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x3, 0x1c, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171cdea3e9b48b00", "f28359738e229a4c6681b4a2988e00d300e6c202000000000000000000000001", [0x204, 0x5]})
truncate(&(0x7f00000001c0)='./file1\x00', 0x200)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
r5 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'veth0\x00', <r6=>0x0})
setsockopt$packet_add_memb(r5, 0x107, 0x1, &(0x7f00000004c0)={r6, 0x3, 0x6}, 0x10)
bind$packet(r5, &(0x7f0000000040)={0x11, 0x1, r6, 0x1, 0x9}, 0x14)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000340)={0x1, &(0x7f0000000000)=[{0x6, 0xf, 0x0, 0x7fff8000}]})
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {0xf}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x3}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x0, 0x0, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x4000c00)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r8, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x34, 0x0, 0x8, 0x3, 0x0, 0x0, {0x7, 0x0, 0x3}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x84}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x8080}, 0x41)
close_range(r7, 0xffffffffffffffff, 0x0)
syz_clone(0x8000c000, 0x0, 0x0, 0x0, 0x0, 0x0)

2m22.989266576s ago: executing program 0 (id=1140):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
write$cgroup_pid(0xffffffffffffffff, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB="0300"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000235502b912b9719f78d2e17d2a540000005be3271e05000000000000007bd2c5a9de1ea77af4b43dd172dc0bb6f8000c9affebe208452bc47dbb2c7f421ac43ec6e1b9dfae6621c623ba5a5ed8d8086fcb3c"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x3, 0x10, &(0x7f0000000340)=ANY=[@ANYBLOB="1805000000000000000000007f000000b7080000000000007b8af8ff00000000b7080000060000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70400000800000085000000950000009500000000000000d1113d1902c3ac1bb61a2d207e450ac96b70823a1441d952ca144b92b6796bd3796023d65b844adfaab185a60a6c34044bddae76ff2852ee533c8e45ebeb3ecf60335e444cc425b0cd1ea04a36f20e963f07cfbeaaa15897c94140afb5c024a91d363b7073c1260d2ab80300000000000000f7525302004edfc2f6bd14b7683454b240e92a2e940bd51602355b5546c4f42051d569f7f70bde97342733fa6039eb1923b1b62e7a0ea6b022a069b90e9eae9746ca0d4d1c346cbbe192b62200"/234], 0x0, 0x9, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sched_switch\x00', r5}, 0x10)
unshare(0x64000680)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x103000, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r6, 0x400455c8, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x9b, 0x7}, 0x100002, 0xfffffffffffffffc, 0xfffffffc}, 0x0, 0x1, 0xffffffffffffffff, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)

2m20.058686865s ago: executing program 0 (id=1176):
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=@base={0x5, 0x6, 0x8, 0xad, 0x0, 0xffffffffffffffff, 0x4000000}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r0 = open(0x0, 0x551083, 0x28)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = syz_open_procfs$pagemap(0x0, 0x0)
ioctl$PAGEMAP_SCAN(r1, 0xc0606610, &(0x7f0000000300)={0x60, 0x1, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00008fb000/0x3000)=nil, 0x8000, 0x0, 0x0, 0x3, 0x38, 0x0, 0xb, 0x40})
bpf$MAP_CREATE(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="0c000000cd00000006000000d34f400011000000", @ANYBLOB='\a\x00'/20, @ANYRES32=0x0, @ANYRES32=r0, @ANYBLOB="0200000002000000020000000000000000000000000000e1ffffff005ac83bf7dffe4b7733346faeaf1f04dbdada8eaeb6fce25db2813e294fb9edb9d502607637e9e453ab5c31d474bf1c00000000000000005693c3f96f4b61868a7fb54d2d7bab66e72621abc7a94cfadbb5a79039853f5c99c7c02ae603ae6d088f0c6ed47ceb02b94a817ff359e096b2a8a2ab99f52a3a312cceffde6f22656db6bd8cff10f625ada47dc9459389e14ee5ab52880beec97411d4ccfa86c09149868954a1ad7db8fea1b236120867c5959cefb58151a2c19ba0dec61fb1f6aa"], 0x50)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@newlink={0x44, 0x10, 0x401, 0xfffffffc, 0x80, {0x0, 0x0, 0x0, 0x0, 0x1503}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r3}, @IFLA_MASTER={0x8, 0xa, r3}]}, 0x44}, 0x1, 0x0, 0x0, 0x2004d808}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001780)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="4000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="81ffffff00000000180012800e0001007769726567756172640000000400028008000a00bc"], 0x40}}, 0x0)
socket$netlink(0x10, 0x3, 0x0)

2m20.036014697s ago: executing program 32 (id=1176):
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=@base={0x5, 0x6, 0x8, 0xad, 0x0, 0xffffffffffffffff, 0x4000000}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r0 = open(0x0, 0x551083, 0x28)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = syz_open_procfs$pagemap(0x0, 0x0)
ioctl$PAGEMAP_SCAN(r1, 0xc0606610, &(0x7f0000000300)={0x60, 0x1, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00008fb000/0x3000)=nil, 0x8000, 0x0, 0x0, 0x3, 0x38, 0x0, 0xb, 0x40})
bpf$MAP_CREATE(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="0c000000cd00000006000000d34f400011000000", @ANYBLOB='\a\x00'/20, @ANYRES32=0x0, @ANYRES32=r0, @ANYBLOB="0200000002000000020000000000000000000000000000e1ffffff005ac83bf7dffe4b7733346faeaf1f04dbdada8eaeb6fce25db2813e294fb9edb9d502607637e9e453ab5c31d474bf1c00000000000000005693c3f96f4b61868a7fb54d2d7bab66e72621abc7a94cfadbb5a79039853f5c99c7c02ae603ae6d088f0c6ed47ceb02b94a817ff359e096b2a8a2ab99f52a3a312cceffde6f22656db6bd8cff10f625ada47dc9459389e14ee5ab52880beec97411d4ccfa86c09149868954a1ad7db8fea1b236120867c5959cefb58151a2c19ba0dec61fb1f6aa"], 0x50)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@newlink={0x44, 0x10, 0x401, 0xfffffffc, 0x80, {0x0, 0x0, 0x0, 0x0, 0x1503}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r3}, @IFLA_MASTER={0x8, 0xa, r3}]}, 0x44}, 0x1, 0x0, 0x0, 0x2004d808}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001780)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="4000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="81ffffff00000000180012800e0001007769726567756172640000000400028008000a00bc"], 0x40}}, 0x0)
socket$netlink(0x10, 0x3, 0x0)

2m2.986077942s ago: executing program 1 (id=1425):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0xb, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0}, 0x104b0d, 0x6, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000640)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
quotactl$Q_QUOTAOFF(0xffffffff80000301, &(0x7f0000000380)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)

2m2.920764409s ago: executing program 1 (id=1426):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000000100000100000028"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x8, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x18, 0x7ffc1fff}]})
newfstatat(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', &(0x7f0000000100), 0x4000)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))

2m2.898329161s ago: executing program 1 (id=1427):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, 0x0, 0x0)

2m2.747506896s ago: executing program 1 (id=1430):
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
sched_setscheduler(0x0, 0x1, 0x0)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000e40)="$eJzs3T9oM2UcB/DvXRJf+75BXnURxD8gIloor5vg8rooFKQUEUGFioiL0gq1xa1xcnHQWaWTSxE3q6N0KS6K4FS1Q10ELQ4WBx0iybVS24ja1Jz0Ph+43l3vee73HLnvkyyXBGisq0muJ2klmU7SSVIcb3B3tVw93F2f2l5I+v0nfiqG7ar9ylG/K0l6SR5KslUWeamdrG4+s/fLzmP3vbnSuff9zaenJnqRh/b3dh8/eG/ujY9mH1z94qsf5opcT/dP13X+ihH/axfJLf9Fsf+Jol33CPgn5l/78OtB7m9Ncs8w/52UqV68t5Zv2OrkgXf/qu/bP355+yTHCpy/fr8zeA/s9YHGKZN0U5QzSartspyZqT7Df9O6XL68tPzq9ItLK4sv1D1TAeelm+w++smlj6+cyP/3rSr/wMU1yP+T8xvfDrYPWnWPBpiIO6rVIP/Tz63dH/mHxpF/aC75h+aSf2gu+Yfmkn9oLvmHC6xztNEbeVj+obnkH5pL/qG5jucfAGiW/qW6n0AG6lL3/AMAAAAAAAAAAAAAAAAAAJy2PrW9cLRMquZn7yT7jyRpj6rfGv4ecXLj8O/ln4tBsz8UVbexPHvXmCcY0wc1P31903f11v/8znrrry0mvdeTXGu3T99/xeH9d3Y3/83xzvNjFviXihP7Dz812fon/bZRb/3ZneTTwfxzbdT8U+a24Xr0/NM9/hXLZ/TKr2OeAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIn5PQAA//8PK23M")
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='coredump_filter\x00')
write$cgroup_int(r0, &(0x7f0000000040)=0x7f, 0x12)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000000c0)={'erspan0\x00', &(0x7f00000002c0)={'erspan0\x00', <r1=>0x0, 0x10, 0x40, 0x800, 0x10000, {{0x2b, 0x4, 0x3, 0x8, 0xac, 0x67, 0x0, 0x1f, 0x2f, 0x0, @loopback, @empty, {[@ssrr={0x89, 0x1b, 0xf, [@loopback, @rand_addr=0x64010100, @multicast1, @multicast1, @multicast1, @remote]}, @cipso={0x86, 0x41, 0x7ffffffffffffffe, [{0x2, 0x3, "a3"}, {0x6, 0x4, "678e"}, {0x0, 0x10, "7dcab48e9b268c96809b9ec26722"}, {0x1, 0xa, "a2b0352102c6485f"}, {0x9a6e76929b09b362, 0xe, "c4eaf9d923e50c5b8bed1cd0"}, {0x2, 0x2}, {0x1, 0xa, "1880784a0a08ecbf"}]}, @timestamp={0x44, 0x2c, 0x84, 0x0, 0xb, [0x0, 0x7, 0xffff8000, 0x0, 0x0, 0x41, 0xffffffe7, 0x6, 0x800, 0x9]}, @noop, @ra={0x94, 0x4, 0x1}, @ra={0x94, 0x4}, @lsrr={0x83, 0x7, 0xa6, [@dev={0xac, 0x14, 0x14, 0x36}]}]}}}}})
sendmsg$nl_route_sched_retired(r0, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000100)={&(0x7f0000000a40)=@newqdisc={0x200, 0x24, 0x98c128d97e035c46, 0x70bd27, 0x25dfdbfc, {0x0, 0x0, 0x0, r1, {0x6, 0x3}, {0x7, 0x7}, {0x10, 0xffff}}, [@q_dsmark={{0xb}, {0x3c, 0x2, [@TCA_DSMARK_INDICES={0x6, 0x1, 0x2}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x6}, @TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x1a}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x8}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x101}, @TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0xfffe}]}}, @q_dsmark={{0xb}, {0x4}}, @q_dsmark={{0xb}, {0x34, 0x2, [@TCA_DSMARK_INDICES={0x6, 0x1, 0x17}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x36}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x30}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x9}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x3}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x5}]}}, @q_dsmark={{0xb}, {0x4c, 0x2, [@TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x4}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x2e0}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0xd29}, @TCA_DSMARK_INDICES={0x6}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x2}, @TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x10}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x4c1}, @TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x6}]}}, @q_dsmark={{0xb}, {0x30, 0x2, [@TCA_DSMARK_INDICES={0x6, 0x1, 0x18}, @TCA_DSMARK_DEFAULT_INDEX={0x6}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x7}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x10}, @TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x28}]}}, @q_dsmark={{0xb}, {0xc, 0x2, [@TCA_DSMARK_INDICES={0x6, 0x1, 0x2d}]}}, @q_dsmark={{0xb}, {0x14, 0x2, [@TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x3}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x1}]}}, @q_dsmark={{0xb}, {0x24, 0x2, [@TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x5}, @TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x4}]}}, @q_dsmark={{0xb}, {0x3c, 0x2, [@TCA_DSMARK_INDICES={0x6, 0x1, 0x24}, @TCA_DSMARK_INDICES={0x6}, @TCA_DSMARK_INDICES={0x6, 0x1, 0xc}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x7}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0xd3be}, @TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x6}, @TCA_DSMARK_SET_TC_INDEX={0x4}]}}]}, 0x200}, 0x1, 0x0, 0x0, 0x50}, 0x48000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x8042, 0x0)
open(&(0x7f0000000180)='./bus\x00', 0x14937e, 0x111)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r2 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r2, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x3, 0x1c, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171cdea3e9b48b00", "f28359738e229a4c6681b4a2988e00d300e6c202000000000000000000000001", [0x204, 0x5]})
truncate(&(0x7f00000001c0)='./file1\x00', 0x200)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
r5 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'veth0\x00', <r6=>0x0})
setsockopt$packet_add_memb(r5, 0x107, 0x1, &(0x7f00000004c0)={r6, 0x3, 0x6}, 0x10)
bind$packet(r5, &(0x7f0000000040)={0x11, 0x1, r6, 0x1, 0x9}, 0x14)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000340)={0x1, &(0x7f0000000000)=[{0x6, 0xf, 0x0, 0x7fff8000}]})
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {0xf}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x3}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x0, 0x0, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x4000c00)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r8, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x34, 0x0, 0x8, 0x3, 0x0, 0x0, {0x7, 0x0, 0x3}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x84}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x8080}, 0x41)
close_range(r7, 0xffffffffffffffff, 0x0)
syz_clone(0x8000c000, 0x0, 0x0, 0x0, 0x0, 0x0)

2m1.932230677s ago: executing program 1 (id=1439):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000ed074479000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000016000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
listxattr(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)

1m59.225854354s ago: executing program 1 (id=1492):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0xb, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0}, 0x104b0d, 0x6, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000640)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]})
quotactl$Q_QUOTAOFF(0xffffffff80000301, &(0x7f0000000380)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)

1m59.204471417s ago: executing program 33 (id=1492):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0xb, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0}, 0x104b0d, 0x6, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000640)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]})
quotactl$Q_QUOTAOFF(0xffffffff80000301, &(0x7f0000000380)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)

2.408734102s ago: executing program 3 (id=3460):
mkdir(0x0, 0x0)
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000440)=[@in={0x2, 0x4e21, @local}], 0x10)
sendmsg$inet_sctp(r0, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @local}, 0x10, &(0x7f00000006c0)=[{&(0x7f0000000380)='N', 0x26fe9}], 0x1, 0x0, 0x0, 0x804c040}, 0x0)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000500)={0x1, [0x0]}, &(0x7f00000005c0)=0x8)
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, 0x0, &(0x7f00000001c0))
r1 = syz_io_uring_setup(0x1902, &(0x7f0000000640)={0x0, 0xec26, 0x400, 0x1, 0x40000333}, &(0x7f00000006c0)=<r2=>0x0, &(0x7f00000001c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000600)=[{&(0x7f0000001800)=""/216, 0xd8}], 0x1})
io_uring_enter(r1, 0x847ba, 0x0, 0xe, 0x0, 0x0)

2.385742144s ago: executing program 4 (id=3461):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="18010000"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x4, 0x0, &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0, 0x0, 0x15}, 0x18)
quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0)
lstat(&(0x7f0000000680)='./file1\x00', &(0x7f0000000c00))
syz_mount_image$ext4(&(0x7f0000000300)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1818e58, &(0x7f00000003c0), 0x2a, 0x63f, &(0x7f0000000d80)="$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")
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x1, &(0x7f00000013c0)={0x1, &(0x7f0000000040)=[{0x8, 0x7, 0xf, 0x6}]})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454da, &(0x7f00000001c0)={'bond_slave_0\x00'})
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000400))
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x8a401, 0x0)
ioctl$TUNSETIFF(r2, 0x400454da, &(0x7f00000002c0)={'bond0\x00', 0x4000})
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000100)={'nicvf0\x00', 0x1432})

2.1205152s ago: executing program 5 (id=3462):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffff"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x3}, 0x18)
openat$nci(0xffffffffffffff9c, &(0x7f00000001c0), 0x5400, 0x0)

2.092083983s ago: executing program 5 (id=3463):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r2 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file2\x00', 0x300c056, &(0x7f0000000300)={[{@noload}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@usrjquota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@mblk_io_submit}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x55a, &(0x7f0000000480)="$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")
creat(&(0x7f0000000240)='./bus\x00', 0x0)
r3 = openat(r2, &(0x7f0000000180)='./bus\x00', 0x181000, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r3, 0x8004587d, &(0x7f00000003c0)={0x0, 0xffffffffffffffff, 0x60000000, 0x0, 0x1, 0x6})
creat(&(0x7f00000000c0)='./bus\x00', 0x182)
write$binfmt_misc(r1, &(0x7f0000000240), 0xfffffecc)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2, 0x3, 0xffffffff, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000016"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r6 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_SET(r6, &(0x7f0000002300)={0x0, 0x0, &(0x7f00000022c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="38000000101401002dbd7000f9dbdf250800030001000000080001000000000008004a0000000000080015000100000008004b0013"], 0x38}, 0x1, 0x0, 0x0, 0x24000000}, 0x24018010)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r5}, &(0x7f0000000180), &(0x7f00000001c0)=r4}, 0x20)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r7}, 0x10)
socket$inet6(0xa, 0x802, 0x0)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="0039936da8abb4625380b974"], 0x1, 0x539, &(0x7f00000005c0)="$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")
ustat(0x2, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r8, &(0x7f0000000500)="a4", 0x34000, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x2000000, @loopback, 0xffffffff}, 0x1c)

2.027683039s ago: executing program 3 (id=3464):
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x3000010, &(0x7f0000000340)={[{@errors_remount}, {@nodioread_nolock}]}, 0x1, 0x512, &(0x7f0000000380)="$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")

1.762882435s ago: executing program 3 (id=3466):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=@newtaction={0x168, 0x30, 0x1, 0x0, 0x0, {}, [{0x154, 0x1, [@m_nat={0x150, 0x1a, 0x0, 0x0, {{0x8}, {0x7c, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0x2e6, 0xfffffff7, 0x5, 0x0, 0x80}, @local, @private=0xa010101, 0xff000000}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x80000000, 0x3d4, 0x9, 0x7, 0x2}, @remote, @remote, 0xff}}, @TCA_NAT_PARMS={0x28, 0x1, {{0xdf, 0x7, 0x5, 0x7, 0x2}, @rand_addr=0x64010102, @remote, 0xffffffff}}]}, {0xaf, 0x6, "bb11057e51132f534ad348fd8cd117ff5c38d42614fb0d6d24c1069fe3564a12efb3dcba647567dede3d1678cb62e3ee7ee4376bb81b5bdbd5149762090a0bb33373987ad750b669b471b7cd5bce6102e835113272cc1124c3a78a1e32b50da170a7ef02f1b6f7c99cc3429a8383317bbfd26e0b4f721ef459e4b59dc5de39435f6aa201a1d7df338a6e1b8b458bbaffd807d48c98ba69e8625233a45415d7ce66df45f7ff3ddd5dfae2ee"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x3}}}}]}]}, 0x168}}, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r1, &(0x7f0000000440), 0x10)
listen(r1, 0x5)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
accept4$unix(r1, 0x0, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYRES32=r3, @ANYBLOB="0000000000000000200012800e0001006970366772657461700000000c00028008000100", @ANYRES8=r3, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x48}, 0x1, 0x0, 0x0, 0x24000800}, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_buf(r4, 0x6, 0x21, &(0x7f0000000280), 0x0)
openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000000), 0x88c02, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x275a, 0x0)
fsetxattr(r5, 0x0, &(0x7f0000000080)='@\x00', 0x2, 0x0)
getsockopt$inet_tcp_buf(r4, 0x6, 0x21, 0x0, &(0x7f0000000580))
r6 = msgget$private(0x0, 0x3ac)
msgrcv(r6, 0x0, 0x0, 0x1, 0x2000)
msgrcv(r6, 0x0, 0x0, 0x2, 0x2000)
msgsnd(r6, &(0x7f0000000440)=ANY=[@ANYRES8], 0x8, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x4b, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, &(0x7f0000000000), 0x0}, 0x50)
syz_io_uring_setup(0x3c0c, &(0x7f0000000400)={0x0, 0x9596, 0x4000}, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
get_mempolicy(0x0, 0x0, 0x9, &(0x7f00007c5000/0x2000)=nil, 0x2)

1.31356907s ago: executing program 4 (id=3473):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffff"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x3}, 0x18)
openat$nci(0xffffffffffffff9c, &(0x7f00000001c0), 0x5400, 0x0)

1.269159484s ago: executing program 6 (id=3475):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$smc(&(0x7f00000000c0), r0)
syz_genetlink_get_family_id$batadv(&(0x7f0000002880), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000080))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r0)
r1 = socket$inet6(0xa, 0x3, 0x5)
r2 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f0000000240)=ANY=[@ANYBLOB="e0000002ac1414aa0100000002"], 0x18)
syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x64, 0x0, 0x4, 0x2, 0x0, @empty=0xe0, @multicast2}, @timestamp_reply={0x11, 0x0, 0x0, 0xe000, 0x2, 0x10001}}}}}, 0x0)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r4 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='xen_mmu_pte_clear\x00', r4, 0x0, 0x8}, 0x18)
r5 = dup(r3)
write$UHID_INPUT(r5, &(0x7f0000002080)={0x8, {"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", 0x1000}}, 0x1006)
sendmmsg(r1, &(0x7f0000000500)=[{{&(0x7f0000000040)=@l2tp6={0xa, 0x0, 0x7080000, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x4}, 0x80, 0x0, 0x0, &(0x7f0000001b80)=[{0x18, 0x29, 0x37, "b2"}], 0x18}}], 0x1, 0x4000000)

1.228184618s ago: executing program 4 (id=3476):
socket(0x2000000000000021, 0x2, 0x10000000000002)
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001b80)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000001f40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000002c0)='kfree\x00', r3}, 0x10)
readv(r1, &(0x7f00000013c0)=[{&(0x7f0000001400)=""/138, 0x8a}], 0x1)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0)={0x0, 0xffffffff, 0x0, 0x9, 0xfe, "0006000000df0066952e0d16c708db720800"})
r4 = syz_open_pts(r1, 0x42)
r5 = dup3(r4, r1, 0x0)
write$UHID_INPUT(r5, &(0x7f00000001c0)={0xd, {"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", 0x1000}}, 0xffffff5c)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000040)="93d90400000300", 0x7}, {&(0x7f0000000c00)="0500000000029e", 0x7}], 0x2)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x29}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000002c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94)
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="4800000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="0552060000c9000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="0d24020000000000"], 0x48}, 0x1, 0x0, 0x0, 0x84}, 0x0)
r8 = memfd_create(&(0x7f0000000bc0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85Q\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~Mx\x02\x00(v\xe6`\x026\xfcgC\xb5\xf0\x13.zb\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x80\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F91 ^x\x85\x80[\xa3B\n#!\xc2R\xdd\xf4)\xba\x1e\xfb6U\xabc\xda\x9a)\xc3\x9a\x06\xc5\xccP)\xdf.\xa7-\x84\xdf8\xbf\xfc1^}B\xee\xccR/z\x1e\xe8\x1e\x99\x99\n\xf4u\xd4\xbd^L\xb2j\xda\xff\x1d\x10\xc8\xad\xbd_OI\xb1\xe8y\x003\a\x06\x92\x8e\n\x8b\xf3\xd4G\x85\xbd\x1a\x81+3\x99jq\xd1\xacK^\xef\xb6!8\xcd?\x1e\\\x16W2\xbd4$zn\xa9\x7f\x9dE\xaf\x0f\xdb\xe0\xfa\x10\xc3\xb2\xf8\x80\x8c\xec$\xda\xc0\x94y1\t\xc5`\xda\xca\xd1\xab:\x18\x10\x9b\xd0w', 0x0)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000800)='./file0\x00', 0x200020, &(0x7f0000001140)=ANY=[@ANYBLOB="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", @ANYRES8, @ANYRESHEX], 0x2, 0x699, &(0x7f0000000140)="$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")
execveat(r8, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

1.219257529s ago: executing program 5 (id=3477):
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f3bbb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68000000000000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80af740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48bc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd3170400000085be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9f0390a6f01e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5eaff07000000000000b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df902aeec50e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f000000000100000000d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7167d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b909006f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f1400010000ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1b0100448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f949170ef8cb9c13c12138116bca7a8c59363799be7005c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2c74664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677eff7c5c568a89d6e36b165c39132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae1676384ff799783f55d7e5a1a0920300000000000000d98440c355927629f2bcf9dc405a18ca0264400abf38e90000000000000000008faf2cddffbfa69bf32eb718e88ec75603ed7c7a8825ce0f27a114bd7a4ab74d0c7b8d90ccc1c3ca6620def782e24d75aed70eb676437f62677a69e0994cd82d72e95493c830fe9515329f40b7025326dec33a527c5d999298eaa3690fd0d38a02fc6e0bc16dbe19f353027edc014411e1138087221492f5d5e5cc9d0a1acd3f581eda9a807aa0e609f935f626d96351e0ff116686cbeb8939feecd5dac8cf45101942cc7cec21b7f337df5431bcf7e504b7c427f70a10e1cb8993a661306a0576b638a0171e6800b5b35589d676eb30ed1a72e8f7b057eb281c4504195635b6b285ebaba019913a2520e43ed790231f047f7d3789c10ae7d724929f77aec1d33d9587580268ee14396f71e7ef588cb2560d6bd0795a9b97281229eb16de086553469fad7214ffc3e416f8b8e442dce1d37f9b1c88a5d8a8d9f2fe45bd8df213ecb4194c8554aea13cadcd502e51f6fec80418e772b5bd8d0228949058038b185909ee542848680f9ad43f4057d676d5e21ae3d7e0e4a28c04f112a94707f032b35915e42993ff148291b8babe026646ee41905992db217561b90811c4702a14f312fe5d2ae7257db6be1034cc1c346b76a853ce274bf0435e18f7e86c660c18c80f30505dd4cf2ae2a1893b83c62d61bfeadc1f913e4cab2b897e096dd3fe3525090410cb23bab36cdf200a36014032cf6e5121803c5a0c4a273a19f340163fc6265425d513a1294b8439276394945d94a589708e32a1cb30f1fa4b2f08e01dc5e8c6732e6dc59b5c8cb400000000000000592c9b68f09c8f5ddb20b4ae08b4d9df548e5ed6cd47b91a4bea8b6aa52edf64576aef1e43f2958437fdc20fbbd0d4e13d8cce1193b2f9b4f107e25af178d056e1b1e40bd75b013f7484fae0bc447b1ffaf34819fe3ad1a634c94345e26e1e68dec08723a37b05d1594a66a4718a51d4d67fc880c9d640f4eacc509873f1a103c87f"], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x3000010, &(0x7f0000000340)={[{@errors_remount}, {@nodioread_nolock}]}, 0x1, 0x512, &(0x7f0000000380)="$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")

1.10776714s ago: executing program 6 (id=3478):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000000100)={{0x1, 0x0, 0x0, 0x3}})
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000340), 0x302, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r5 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000380)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=@newtfilter={0x3c, 0x2c, 0xd27, 0x70bd29, 0x25dfdbfe, {0x0, 0x0, 0x0, r6, {0x10, 0x1}, {}, {0x8, 0x7}}, [@filter_kind_options=@f_flow={{0x9}, {0xc, 0x2, [@TCA_FLOW_KEYS={0x8, 0x1, 0x15625}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20020804}, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r7 = open(&(0x7f0000000400)='./file0\x00', 0x64842, 0x1cc)
pwritev2(r7, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x0, 0x3)
r8 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x143a82, 0x8)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7fe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000ac0)={&(0x7f0000000b00)='kmem_cache_free\x00', r9, 0x0, 0x1034}, 0x18)
syz_open_dev$loop(&(0x7f0000000240), 0x7, 0x180862)
r10 = dup(r8)
sendfile(r10, r7, 0x0, 0x8000fffffffc)

1.091164692s ago: executing program 2 (id=3479):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000500)='status\x00')
lseek(r0, 0x9, 0xf5)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r3}, 0x10)
syslog(0x9, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000002e80)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x200c8004, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001b80)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r5}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)
timer_getoverrun(0x0)
syz_clone(0x1000080, &(0x7f0000000000)="4ec15a8e45987493bf3e5fc3d3d700f572e9de4c65787f804b39248a85b7c6bee04f88f4b9216e8e20ae1708c05a5d9deb29aab03147b6bf", 0x38, &(0x7f0000000040), &(0x7f0000000080), &(0x7f00000001c0)="9531eb99093e46ceae20a7716f670d998ab20f1b1d7d05ea8d6a3b982d10fae3b6df80d5e1083145c90e1eab983f17997ab0364540b81ea923a79410efa979f0944a62dc268599d969d8c1e72ea09a0aed66869852cdced87f38388b204f43d3dd01db66acf0326f544b9c8f470cf89bad5e69354b7e7fe61dfa166a68b4a7c1c2b4e0c005f32ed243cb57c51b0ee70fc6675e1abb7f6a4b943800b31cec2e98e9e0d5a6ba83f5b0273650ce1db6aec33feaea6cd3d42dc9e1f9c6f8b3a5691fa920dc35")
r6 = gettid()
tkill(r6, 0x12)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
write$cgroup_devices(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYBLOB='c *:* rr'], 0xa)

994.307782ms ago: executing program 4 (id=3480):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000000001000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x8, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))

970.437644ms ago: executing program 4 (id=3481):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000500)='status\x00')
lseek(r0, 0x9, 0xf5)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r3}, 0x10)
syslog(0x9, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000002e80)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x200c8004, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001b80)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r5}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)
timer_getoverrun(0x0)
syz_clone(0x1000080, &(0x7f0000000000)="4ec15a8e45987493bf3e5fc3d3d700f572e9de4c65787f804b39248a85b7c6bee04f88f4b9216e8e20ae1708c05a5d9deb29aab03147b6bf", 0x38, &(0x7f0000000040), &(0x7f0000000080), &(0x7f00000001c0)="9531eb99093e46ceae20a7716f670d998ab20f1b1d7d05ea8d6a3b982d10fae3b6df80d5e1083145c90e1eab983f17997ab0364540b81ea923a79410efa979f0944a62dc268599d969d8c1e72ea09a0aed66869852cdced87f38388b204f43d3dd01db66acf0326f544b9c8f470cf89bad5e69354b7e7fe61dfa166a68b4a7c1c2b4e0c005f32ed243cb57c51b0ee70fc6675e1abb7f6a4b943800b31cec2e98e9e0d5a6ba83f5b0273650ce1db6aec33feaea6cd3d42dc9e1f9c6f8b3a5691fa920dc35")
r6 = gettid()
tkill(r6, 0x12)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
write$cgroup_devices(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYBLOB='c *:* rr'], 0xa)

831.220098ms ago: executing program 5 (id=3482):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x8, 0x40008, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x9, 0x6}, 0x0, 0x0, 0x800000, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
socket$can_bcm(0x1d, 0x2, 0x2)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="540000001000010400000000000000ffff", @ANYRES32=0x0, @ANYBLOB="0380000000000000240012800c0001006d6163766c616e001400028008000100"], 0x54}, 0x1, 0x0, 0x0, 0x40814}, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

792.183022ms ago: executing program 3 (id=3483):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000200100000102"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2060, 0x0)
fcntl$setlease(r2, 0x400, 0x0)
fsetxattr$trusted_overlay_redirect(r2, &(0x7f0000000040), 0x0, 0x0, 0x0)
fremovexattr(r2, &(0x7f00000000c0)=@known='trusted.overlay.redirect\x00') (fail_nth: 1)

484.040012ms ago: executing program 3 (id=3484):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000f00), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_SET(r0, &(0x7f000000b100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x64000840}, 0x2000c044)

458.822305ms ago: executing program 5 (id=3485):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000000100)={{0x1, 0x0, 0x0, 0x3}})
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000340), 0x302, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r5 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000380)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000140)={0x0, 0x2f, &(0x7f0000000180)={&(0x7f00000001c0)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd29, 0x25dfdbfe, {0x0, 0x0, 0x0, r6, {0x10, 0x1}, {}, {0x8, 0x7}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_MODE={0x8, 0x2, 0x1}, @TCA_FLOW_KEYS={0x8, 0x1, 0x15625}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x20020804}, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r7 = open(0x0, 0x64842, 0x1cc)
pwritev2(r7, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x0, 0x3)
r8 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x143a82, 0x8)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7fe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000ac0)={&(0x7f0000000b00)='kmem_cache_free\x00', r9, 0x0, 0x1034}, 0x18)
syz_open_dev$loop(&(0x7f0000000240), 0x7, 0x180862)
r10 = dup(r8)
sendfile(r10, r7, 0x0, 0x8000fffffffc)

422.974698ms ago: executing program 3 (id=3486):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000500)='status\x00')
lseek(r0, 0x9, 0xf5)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r3}, 0x10)
syslog(0x9, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000002e80)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x200c8004, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001b80)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r5}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)
timer_getoverrun(0x0)
r6 = syz_clone(0x1000080, &(0x7f0000000000)="4ec15a8e45987493bf3e5fc3d3d700f572e9de4c65787f804b39248a85b7c6bee04f88f4b9216e8e20ae1708c05a5d9deb29aab03147b6bf", 0x38, &(0x7f0000000040), &(0x7f0000000080), &(0x7f00000001c0)="9531eb99093e46ceae20a7716f670d998ab20f1b1d7d05ea8d6a3b982d10fae3b6df80d5e1083145c90e1eab983f17997ab0364540b81ea923a79410efa979f0944a62dc268599d969d8c1e72ea09a0aed66869852cdced87f38388b204f43d3dd01db66acf0326f544b9c8f470cf89bad5e69354b7e7fe61dfa166a68b4a7c1c2b4e0c005f32ed243cb57c51b0ee70fc6675e1abb7f6a4b943800b31cec2e98e9e0d5a6ba83f5b0273650ce1db6aec33feaea6cd3d42dc9e1f9c6f8b3a5691fa920dc35")
r7 = gettid()
tkill(r7, 0x12)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
r9 = openat$cgroup_devices(r8, &(0x7f000000a540)='devices.allow\x00', 0x2, 0x0)
write$cgroup_devices(r9, &(0x7f0000000080)=ANY=[@ANYBLOB='c *:* rr'], 0xa)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000002c0), &(0x7f0000000300)=0xc)
getegid()
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000380), &(0x7f00000003c0)=0xc)
getpgid(r6)

403.86982ms ago: executing program 6 (id=3487):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x3}, 0x18)
openat$nci(0xffffffffffffff9c, &(0x7f00000001c0), 0x5400, 0x0)

302.74979ms ago: executing program 5 (id=3488):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f00000bd000), 0x318, 0x0)
open(&(0x7f0000000780)='./bus\x00', 0x145c7e, 0x0)
io_setup(0x5ff, &(0x7f0000000400))
eventfd(0xfffffffc)

286.645382ms ago: executing program 6 (id=3489):
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=@base={0x5, 0x6, 0x8, 0xad, 0x0, 0xffffffffffffffff, 0x4000000}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000001"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_deliver\x00'}, 0x18)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x551083, 0x28)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYRES32=0x0], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f00000000c0)='netlink_extack\x00', r0}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = syz_open_procfs$pagemap(0x0, 0x0)
ioctl$PAGEMAP_SCAN(r2, 0xc0606610, &(0x7f0000000300)={0x60, 0x1, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00008fb000/0x3000)=nil, 0x8000, 0x0, 0x0, 0x3, 0x38, 0x0, 0xb, 0x40})
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="0c000000cd0000000600", @ANYRES32, @ANYBLOB='\a\x00'/19, @ANYBLOB], 0x50)
ioctl$SNDRV_TIMER_IOCTL_CREATE(0xffffffffffffffff, 0xc02054a5, &(0x7f0000000000)={0x7, r1, 'id0\x00'})
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r4=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@newlink={0x44, 0x10, 0x401, 0xfffffffc, 0x80, {0x0, 0x0, 0x0, 0x0, 0x1503}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r4}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x44}, 0x1, 0x0, 0x0, 0x2004d808}, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000001780)=ANY=[@ANYBLOB="0200000004000000060000000500"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r6}, 0x10)
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="4000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="81ffffff00000000180012800e0001007769726567756172640000000400028008000a00bc"], 0x40}}, 0x0)

223.321808ms ago: executing program 2 (id=3490):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000c00)="d800000018009903e00312ba0d8105040a600300ff0f040b067c55a1bc000900b80006990700000015000500fef32702d3001500030001400200000901223fc6ab007f6f94007100a007a290457f0189b316277ce06bf75c10dde13fb206b33b174e54980ebace8017cbec4c2ee5a7cef4090000001fb791643a5ee4b11602b2a10c11ce1b14d6d930dfe1000000730d7a5025ccca262f3d40fad956d2b6d5a3a6692ac217e11382e767e04adcdf634c1f215ce3bb9ad809d5e1cace81ed0b66bce0b42a9ecbee5de6cc452a92307f00000e9703000000", 0xd7}], 0x1}, 0x0)

222.708658ms ago: executing program 2 (id=3491):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000000001000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x8, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))

179.377252ms ago: executing program 2 (id=3492):
quotactl$Q_SETINFO(0xb9d67b5d126d7202, &(0x7f0000000000)=@filename='./file0\x00', 0xee00, 0x0)
chroot(0x0)
truncate(&(0x7f00000001c0)='./file0\x00', 0x4)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff, 0x32, 0x0, @val=@netfilter={0x0, 0x0, 0x9, 0x1}}, 0x20)
mount$9p_xen(&(0x7f0000000440), &(0x7f0000000480)='./file1\x00', &(0x7f00000004c0), 0x10080, &(0x7f0000000500)={'trans=xen,', {[{@noxattr}], [{@pcr={'pcr', 0x3d, 0x2d}}, {@appraise}, {@fsname={'fsname', 0x3d, '[,#.'}}]}})
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000880)={0x0, @multicast1, @multicast2}, &(0x7f00000008c0)=0xc)
rmdir(&(0x7f0000001680)='./file2\x00')
r0 = syz_open_dev$vcsn(&(0x7f0000001840), 0x171a, 0x40000)
tee(r0, 0xffffffffffffffff, 0x8001, 0x4)
io_uring_register$IORING_REGISTER_RESIZE_RINGS(0xffffffffffffffff, 0x21, &(0x7f0000001880)={0x0, 0x64e0, 0x4000, 0x3, 0x265}, 0x1)

161.042544ms ago: executing program 2 (id=3493):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000b40)=ANY=[@ANYBLOB="1800000000000800000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
r2 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$UHID_CREATE2(r2, 0x0, 0x8)

142.145506ms ago: executing program 2 (id=3494):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0xb, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0}, 0x104b0d, 0x6, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000640)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0, 0x0, 0x15}, 0x18)
mlock2(&(0x7f0000495000/0x2000)=nil, 0x2000, 0x0)
quotactl$Q_SYNC(0xffffffff80000101, 0x0, 0x0, 0x0)
quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0)
lstat(&(0x7f0000000680)='./file1\x00', &(0x7f0000000c00)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
lchown(&(0x7f0000000300)='./file1\x00', r1, 0x0)
quotactl$Q_QUOTAOFF(0xffffffff80000301, &(0x7f0000000380)=@loop={'/dev/loop', 0x0}, r1, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)='\\', 0x1}], 0x1}, 0x4000000)
recvmsg(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000080)=""/35, 0x23}, {&(0x7f00000002c0)=""/8, 0x8}], 0x2, &(0x7f00000001c0)=""/174, 0xae}, 0x2000)
syz_mount_image$ext4(&(0x7f0000000300)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1818e58, &(0x7f00000003c0), 0x2a, 0x63f, &(0x7f0000000d80)="$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")
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x1, &(0x7f00000013c0)={0x1, &(0x7f0000000040)=[{0x8, 0x7, 0xf, 0x6}]})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454da, &(0x7f00000001c0)={'bond_slave_0\x00'})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000400))
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x8a401, 0x0)
ioctl$TUNSETIFF(r2, 0x400454da, &(0x7f00000002c0)={'bond0\x00', 0x4000})
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000100)={'nicvf0\x00', 0x1432})

63.156114ms ago: executing program 6 (id=3495):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x5, [@union={0xc, 0x2, 0x0, 0x5, 0x0, 0x2000, [{0xc, 0xc1ae, 0xfffffff0}, {0xe, 0x3, 0x6}]}]}, {0x0, [0x61, 0x61, 0x61]}}, &(0x7f0000000280)=""/157, 0x41, 0x9d, 0x1, 0x93, 0x10000}, 0x28)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000200)={0x3, <r2=>0x0}, 0x8)
r3 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000003c0), 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="eb00000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffff0000000000000005b7040000000000008500000001000000952fd85fb666eeebef8b41ebb6306cf94847e1d2b150b4ceedc8eb006be4962fa52dc188b96d5aae026deb739827ce323b7967145a27881e224f9ced0226d1be3d5dd066ead7f66fac6b7a7fb334bfab70aef3fc12774926a3d0048405fa6c7df20c16e0ec3d2f3cf860f7cdd3655336798109c2db3dde2801c50590f64d927339d6166f24ea0b1beee9aac89d592c142df1407e0a505000aa32f2d1"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, r3, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000005c0)={{r0}, &(0x7f0000000540), &(0x7f0000000580)='%pS    \x00'}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
r5 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r5, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r5, 0x10f, 0x87, &(0x7f0000000380)={0x43, 0x4, 0x3, 0x3}, 0x10)
sendmsg$tipc(r5, &(0x7f0000000400)={&(0x7f00000008c0)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x3}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x4008030)

1.42128ms ago: executing program 6 (id=3496):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x8, 0x40008, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x9, 0x6}, 0x0, 0x0, 0x800000, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
socket$can_bcm(0x1d, 0x2, 0x2)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="540000001000010400000000000000ffff00", @ANYRES32=0x0, @ANYBLOB="0380000000000000240012800c0001006d6163766c616e001400028008000100"], 0x54}, 0x1, 0x0, 0x0, 0x40814}, 0x0)
sendmmsg(r0, 0x0, 0x0, 0x0)

0s ago: executing program 4 (id=3497):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000f00), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_SET(r0, &(0x7f000000b100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x64000840}, 0x2000c044)

kernel console output (not intermixed with test programs):

-000000000000 r/w without journal. Quota mode: writeback.
[  227.424420][T13419] netlink: 56 bytes leftover after parsing attributes in process `+}[@'.
[  227.501601][T13425] loop2: detected capacity change from 0 to 1024
[  227.518604][T13425] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  227.545837][T13425] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4193: comm syz.2.2984: Allocating blocks 449-513 which overlap fs metadata
[  227.569146][T13424] EXT4-fs (loop2): pa ffff888100720770: logic 48, phys. 177, len 21
[  227.577341][T13424] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4
[  227.598155][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.617603][T13429] IPv6: Can't replace route, no match found
[  227.643669][T13431] bridge0: entered promiscuous mode
[  227.652071][T13431] macsec1: entered promiscuous mode
[  227.658521][T13431] bridge0: port 3(macsec1) entered blocking state
[  227.665611][T13431] bridge0: port 3(macsec1) entered disabled state
[  227.672228][T13431] macsec1: entered allmulticast mode
[  227.677638][T13431] bridge0: entered allmulticast mode
[  227.683463][T13431] macsec1: left allmulticast mode
[  227.688786][T13431] bridge0: left allmulticast mode
[  227.694394][T13431] bridge0: left promiscuous mode
[  227.716594][T13432] wireguard3: entered promiscuous mode
[  227.722310][T13432] wireguard3: entered allmulticast mode
[  228.086580][ T8640] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.145764][T13463] ip6t_srh: unknown srh match flags  4000
[  228.155773][T13463] loop6: detected capacity change from 0 to 512
[  228.162868][T13463] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  228.184906][T13467] IPv6: Can't replace route, no match found
[  228.192579][T13463] FAT-fs (loop6): error, fat_get_cluster: invalid cluster chain (i_pos 548)
[  228.201641][T13463] FAT-fs (loop6): error, fat_free: invalid cluster chain (i_pos 548)
[  228.210381][T13463] FAT-fs (loop6): error, fat_free: invalid cluster chain (i_pos 548)
[  228.233658][T13471] loop2: detected capacity change from 0 to 2048
[  228.247930][T13471] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  228.264547][T13471] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.2997: bg 0: block 2: invalid block bitmap
[  228.284802][T13471] EXT4-fs (loop2): Remounting filesystem read-only
[  228.311211][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.332981][T13469] loop4: detected capacity change from 0 to 164
[  228.359650][T13480] bridge0: entered promiscuous mode
[  228.365121][T13480] macsec1: entered promiscuous mode
[  228.371613][T13480] bridge0: port 3(macsec1) entered blocking state
[  228.378501][T13480] bridge0: port 3(macsec1) entered disabled state
[  228.385167][T13480] macsec1: entered allmulticast mode
[  228.390843][T13480] bridge0: entered allmulticast mode
[  228.397095][T13480] macsec1: left allmulticast mode
[  228.402385][T13480] bridge0: left allmulticast mode
[  228.410281][T13480] bridge0: left promiscuous mode
[  228.440952][T13483] wireguard3: entered promiscuous mode
[  228.446682][T13483] wireguard3: entered allmulticast mode
[  228.513939][T13486] loop4: detected capacity change from 0 to 1024
[  228.521236][T13486] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  228.535670][T13486] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.3000: Invalid block bitmap block 0 in block_group 0
[  228.549504][T13486] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.3000: Failed to acquire dquot type 0
[  228.561131][T13486] EXT4-fs error (device loop4): ext4_free_blocks:6706: comm syz.4.3000: Freeing blocks not in datazone - block = 0, count = 4096
[  228.574970][T13486] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.3000: Invalid inode bitmap blk 0 in block_group 0
[  228.587977][  T124] EXT4-fs error (device loop4): ext4_release_dquot:6981: comm kworker/u8:4: Failed to release dquot type 0
[  228.615217][T13486] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[  228.629253][T13489] loop2: detected capacity change from 0 to 512
[  228.635826][T13486] EXT4-fs (loop4): 1 orphan inode deleted
[  228.642733][T13486] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  228.656608][T13489] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  228.664849][T13489] EXT4-fs (loop2): orphan cleanup on readonly fs
[  228.674534][T13489] EXT4-fs error (device loop2): ext4_do_update_inode:5624: inode #16: comm +}[@: corrupted inode contents
[  228.689510][T13489] EXT4-fs (loop2): Remounting filesystem read-only
[  228.696380][T13489] EXT4-fs (loop2): 1 truncate cleaned up
[  228.702844][  T124] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  228.713839][  T124] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  228.724912][  T124] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started
[  228.736321][T13489] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  228.765660][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.890112][T13502] loop2: detected capacity change from 0 to 1024
[  228.897188][T13502] EXT4-fs: Ignoring removed mblk_io_submit option
[  228.903767][T13502] EXT4-fs: Ignoring removed nobh option
[  228.909433][T13502] EXT4-fs: Ignoring removed bh option
[  228.918447][T13502] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  229.202583][   T37] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  229.215331][   T37] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  229.227933][   T37] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  229.236340][   T37] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  229.272898][T13508] netlink: 24 bytes leftover after parsing attributes in process `syz.6.3007'.
[  229.283847][T13508] bridge_slave_1: left allmulticast mode
[  229.283871][T13508] bridge_slave_1: left promiscuous mode
[  229.284071][T13508] bridge0: port 2(bridge_slave_1) entered disabled state
[  229.290867][T13508] bridge_slave_0: left allmulticast mode
[  229.309941][T13508] bridge_slave_0: left promiscuous mode
[  229.315916][T13508] bridge0: port 1(bridge_slave_0) entered disabled state
[  229.395719][T13513] netlink: 68 bytes leftover after parsing attributes in process `syz.5.3009'.
[  229.395744][T13513] netlink: 32 bytes leftover after parsing attributes in process `syz.5.3009'.
[  229.444218][T13515] loop5: detected capacity change from 0 to 512
[  229.477570][T13515] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  229.477683][T13515] EXT4-fs (loop5): orphan cleanup on readonly fs
[  229.479315][T13515] EXT4-fs error (device loop5): ext4_do_update_inode:5624: inode #16: comm +}[@: corrupted inode contents
[  229.495500][T13519] FAULT_INJECTION: forcing a failure.
[  229.495500][T13519] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  229.518404][T13519] CPU: 0 UID: 0 PID: 13519 Comm: syz.6.3011 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  229.518513][T13519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  229.518529][T13519] Call Trace:
[  229.518536][T13519]  <TASK>
[  229.518544][T13519]  __dump_stack+0x1d/0x30
[  229.518581][T13519]  dump_stack_lvl+0xe8/0x140
[  229.518603][T13519]  dump_stack+0x15/0x1b
[  229.518634][T13519]  should_fail_ex+0x265/0x280
[  229.518719][T13519]  should_fail+0xb/0x20
[  229.518855][T13519]  should_fail_usercopy+0x1a/0x20
[  229.518885][T13519]  _copy_from_user+0x1c/0xb0
[  229.518994][T13519]  blk_trace_setup+0x58/0x140
[  229.519049][T13519]  sg_ioctl+0x789/0x1360
[  229.519093][T13519]  ? __pfx_sg_ioctl+0x10/0x10
[  229.519144][T13519]  __se_sys_ioctl+0xce/0x140
[  229.519173][T13519]  __x64_sys_ioctl+0x43/0x50
[  229.519200][T13519]  x64_sys_call+0x1816/0x3000
[  229.519235][T13519]  do_syscall_64+0xd2/0x200
[  229.519270][T13519]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  229.519309][T13519]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  229.519383][T13519]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  229.519411][T13519] RIP: 0033:0x7ff2dc39eec9
[  229.519432][T13519] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  229.519460][T13519] RSP: 002b:00007ff2dae07038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  229.519488][T13519] RAX: ffffffffffffffda RBX: 00007ff2dc5f5fa0 RCX: 00007ff2dc39eec9
[  229.519506][T13519] RDX: 0000000000000000 RSI: 00000000c0481273 RDI: 0000000000000003
[  229.519603][T13519] RBP: 00007ff2dae07090 R08: 0000000000000000 R09: 0000000000000000
[  229.519628][T13519] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  229.519647][T13519] R13: 00007ff2dc5f6038 R14: 00007ff2dc5f5fa0 R15: 00007ffc33f97f58
[  229.519675][T13519]  </TASK>
[  229.539107][T13515] EXT4-fs (loop5): Remounting filesystem read-only
[  229.573629][T13521] loop6: detected capacity change from 0 to 512
[  229.574564][T13515] EXT4-fs (loop5): 1 truncate cleaned up
[  229.597452][T13521] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  229.597691][   T37] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  229.602358][T13521] EXT4-fs (loop6): orphan cleanup on readonly fs
[  229.607067][   T37] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  229.613580][T13521] EXT4-fs error (device loop6): ext4_do_update_inode:5624: inode #16: comm +}[@: corrupted inode contents
[  229.618948][   T37] EXT4-fs (loop5): Quota write (off=8, len=24) cancelled because transaction is not started
[  229.624624][T13521] EXT4-fs (loop6): Remounting filesystem read-only
[  229.631232][T13515] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  229.635537][T13521] EXT4-fs (loop6): 1 truncate cleaned up
[  229.656502][  T124] EXT4-fs (loop6): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  229.820753][  T124] EXT4-fs (loop6): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  229.832951][  T124] EXT4-fs (loop6): Quota write (off=8, len=24) cancelled because transaction is not started
[  229.844035][ T7575] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.853968][T13521] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  229.869417][T12775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.879218][T13521] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.912175][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.959165][T13529] wireguard0: entered promiscuous mode
[  229.963109][T13534] ip6t_srh: unknown srh match flags  4000
[  229.964761][T13529] wireguard0: entered allmulticast mode
[  229.983752][T13537] bridge0: entered promiscuous mode
[  229.989521][T13537] macsec1: entered promiscuous mode
[  229.996177][T13537] bridge0: port 3(macsec1) entered blocking state
[  230.003098][T13537] bridge0: port 3(macsec1) entered disabled state
[  230.010611][T13537] macsec1: entered allmulticast mode
[  230.016344][T13537] bridge0: entered allmulticast mode
[  230.022908][T13537] macsec1: left allmulticast mode
[  230.028301][T13537] bridge0: left allmulticast mode
[  230.033552][T13542] loop6: detected capacity change from 0 to 512
[  230.040324][T13537] bridge0: left promiscuous mode
[  230.040607][T13542] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  230.066263][T13542] FAT-fs (loop6): error, fat_get_cluster: invalid cluster chain (i_pos 548)
[  230.075588][T13542] FAT-fs (loop6): error, fat_free: invalid cluster chain (i_pos 548)
[  230.075927][T13543] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3019'.
[  230.084089][T13542] FAT-fs (loop6): error, fat_free: invalid cluster chain (i_pos 548)
[  230.093141][T13543] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3019'.
[  230.119221][T13541] wireguard1: entered promiscuous mode
[  230.125098][T13541] wireguard1: entered allmulticast mode
[  230.159770][T13540] bond1: (slave macvlan4): Error -98 calling set_mac_address
[  230.307017][   T29] kauditd_printk_skb: 490 callbacks suppressed
[  230.307035][   T29] audit: type=1400 audit(1760342722.386:66797): avc:  denied  { ioctl } for  pid=13545 comm="syz.2.3020" path=2F7365637265746D656D202864656C6574656429 dev="secretmem" ino=49669 ioctlcmd=0x4801 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  230.346014][T13548] bond1: entered promiscuous mode
[  230.351601][T13548] bond1: entered allmulticast mode
[  230.357691][T13548] 8021q: adding VLAN 0 to HW filter on device bond1
[  230.380028][T13552] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  230.417737][T13547] SELinux:  Context system_u:object_r:fsa is not valid (left unmapped).
[  230.427591][   T29] audit: type=1400 audit(1760342722.496:66798): avc:  denied  { mac_admin } for  pid=13545 comm="syz.2.3020" capability=33  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  230.449479][   T29] audit: type=1400 audit(1760342722.506:66799): avc:  denied  { relabelto } for  pid=13545 comm="syz.2.3020" name="590" dev="tmpfs" ino=3254 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsa"
[  230.461916][T13547] SELinux:  Context system_u:object_r:netutils_exec_t:s0 is not valid (left unmapped).
[  230.475116][   T29] audit: type=1400 audit(1760342722.506:66800): avc:  denied  { associate } for  pid=13545 comm="syz.2.3020" name="590" dev="tmpfs" ino=3254 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon="system_u:object_r:fsa"
[  230.511702][   T29] audit: type=1400 audit(1760342722.556:66801): avc:  denied  { relabelto } for  pid=13545 comm="syz.2.3020" name="cgroup.procs" dev="cgroup" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:netutils_exec_t:s0"
[  230.539801][   T29] audit: type=1400 audit(1760342722.556:66802): avc:  denied  { associate } for  pid=13545 comm="syz.2.3020" name="cgroup.procs" dev="cgroup" ino=102 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 srawcon="system_u:object_r:netutils_exec_t:s0"
[  230.569148][T13556] netlink: 'syz.2.3020': attribute type 28 has an invalid length.
[  230.577559][T13556] netlink: 'syz.2.3020': attribute type 3 has an invalid length.
[  230.585724][T13556] netlink: 132 bytes leftover after parsing attributes in process `syz.2.3020'.
[  230.597479][   T29] audit: type=1326 audit(1760342722.666:66803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13557 comm="syz.4.3023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f714544eec9 code=0x7ffc0000
[  230.609143][T13555] bridge0: entered promiscuous mode
[  230.621606][   T29] audit: type=1326 audit(1760342722.666:66804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13557 comm="syz.4.3023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f714544eec9 code=0x7ffc0000
[  230.651090][   T29] audit: type=1326 audit(1760342722.666:66805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13557 comm="syz.4.3023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f714544eec9 code=0x7ffc0000
[  230.675624][   T29] audit: type=1326 audit(1760342722.666:66806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13557 comm="syz.4.3023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f714544eec9 code=0x7ffc0000
[  230.710463][T13555] macsec1: entered promiscuous mode
[  230.717907][T13547] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3020'.
[  230.727992][T13555] bridge0: port 3(macsec1) entered blocking state
[  230.734847][T13555] bridge0: port 3(macsec1) entered disabled state
[  230.752077][T13555] macsec1: entered allmulticast mode
[  230.757550][T13555] bridge0: entered allmulticast mode
[  230.771024][T13555] macsec1: left allmulticast mode
[  230.776210][T13555] bridge0: left allmulticast mode
[  230.783113][T13555] bridge0: left promiscuous mode
[  230.806488][T13559] wireguard1: entered promiscuous mode
[  230.812159][T13559] wireguard1: entered allmulticast mode
[  230.829141][T13558] loop4: detected capacity change from 0 to 1024
[  230.841834][T13558] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  230.853137][  T124] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  230.873686][T13558] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.3023: Invalid block bitmap block 0 in block_group 0
[  230.891843][T13558] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.3023: Failed to acquire dquot type 0
[  230.903875][T13558] EXT4-fs error (device loop4): ext4_free_blocks:6706: comm syz.4.3023: Freeing blocks not in datazone - block = 0, count = 4096
[  230.911468][  T124] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  230.919163][T13558] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.3023: Invalid inode bitmap blk 0 in block_group 0
[  230.940048][   T31] EXT4-fs error (device loop4): ext4_release_dquot:6981: comm kworker/u8:1: Failed to release dquot type 0
[  230.957671][T13558] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[  230.966981][T13558] EXT4-fs (loop4): 1 orphan inode deleted
[  230.971809][   T31] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  230.973664][T13558] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  231.039079][T13569] netlink: 68 bytes leftover after parsing attributes in process `syz.5.3026'.
[  231.043384][   T31] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  231.072219][T13569] netlink: 32 bytes leftover after parsing attributes in process `syz.5.3026'.
[  231.137016][T13571] loop3: detected capacity change from 0 to 2048
[  231.158565][T13573] loop6: detected capacity change from 0 to 512
[  231.178572][T13571] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  231.192958][T13573] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  231.203290][T13571] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.3027: bg 0: block 2: invalid block bitmap
[  231.216125][T13573] EXT4-fs (loop6): orphan cleanup on readonly fs
[  231.216225][T13571] EXT4-fs (loop3): Remounting filesystem read-only
[  231.238255][T13573] EXT4-fs error (device loop6): ext4_do_update_inode:5624: inode #16: comm +}[@: corrupted inode contents
[  231.266613][T13573] EXT4-fs (loop6): Remounting filesystem read-only
[  231.276832][T13573] EXT4-fs (loop6): 1 truncate cleaned up
[  231.283229][T12245] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  231.296923][  T124] EXT4-fs (loop6): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  231.307728][  T124] EXT4-fs (loop6): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  231.319330][T13584] wireguard1: entered promiscuous mode
[  231.319580][  T124] EXT4-fs (loop6): Quota write (off=8, len=24) cancelled because transaction is not started
[  231.324897][T13584] wireguard1: entered allmulticast mode
[  231.342792][T13573] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  231.362844][T13573] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  231.549545][T12775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  231.628792][T13613] netlink: 'syz.4.3039': attribute type 3 has an invalid length.
[  231.659811][T13613] loop4: detected capacity change from 0 to 512
[  231.667048][T13615] loop5: detected capacity change from 0 to 2048
[  231.671131][T13625] loop3: detected capacity change from 0 to 512
[  231.687571][T13623] wireguard3: entered promiscuous mode
[  231.693251][T13623] wireguard3: entered allmulticast mode
[  231.707519][T13613] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  231.720502][T13625] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  231.724252][T13613] ext4 filesystem being mounted at /29/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  231.739337][T13625] EXT4-fs (loop3): orphan cleanup on readonly fs
[  231.742127][T13615] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  231.747657][T13625] EXT4-fs error (device loop3): ext4_do_update_inode:5624: inode #16: comm +}[@: corrupted inode contents
[  231.771897][T13613] EXT4-fs (loop4): shut down requested (0)
[  231.773015][T13615] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm syz.5.3041: bg 0: block 2: invalid block bitmap
[  231.778071][T13625] EXT4-fs (loop3): Remounting filesystem read-only
[  231.791515][T13615] EXT4-fs (loop5): Remounting filesystem read-only
[  231.796859][T13625] EXT4-fs (loop3): 1 truncate cleaned up
[  231.809527][ T2766] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  231.820299][ T2766] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  231.831237][ T2766] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started
[  231.843058][T13625] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  231.857470][T13625] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  231.890597][ T7575] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  231.918236][T12775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  232.084017][T13659] bridge0: entered promiscuous mode
[  232.089602][T13659] macsec1: entered promiscuous mode
[  232.096157][T13659] bridge0: port 3(macsec1) entered blocking state
[  232.102860][T13659] bridge0: port 3(macsec1) entered disabled state
[  232.120348][T13659] macsec1: entered allmulticast mode
[  232.125875][T13659] bridge0: entered allmulticast mode
[  232.198300][T13659] macsec1: left allmulticast mode
[  232.203435][T13659] bridge0: left allmulticast mode
[  232.226063][T13659] bridge0: left promiscuous mode
[  232.260039][T13665] loop5: detected capacity change from 0 to 2048
[  232.275362][T13660] wireguard3: entered promiscuous mode
[  232.281028][T13660] wireguard3: entered allmulticast mode
[  232.316867][T13665] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  232.359309][T13673] loop4: detected capacity change from 0 to 512
[  232.370248][ T7575] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  232.383469][T13673] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  232.392534][T13673] EXT4-fs (loop4): orphan cleanup on readonly fs
[  232.400490][T13673] EXT4-fs error (device loop4): ext4_do_update_inode:5624: inode #16: comm +}[@: corrupted inode contents
[  232.413532][T13673] EXT4-fs (loop4): Remounting filesystem read-only
[  232.420605][T13673] EXT4-fs (loop4): 1 truncate cleaned up
[  232.445789][   T31] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  232.456614][   T31] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  232.516603][   T31] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[  232.527696][T13673] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  232.540813][T13673] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  232.597816][T13706] __nla_validate_parse: 10 callbacks suppressed
[  232.597835][T13706] netlink: 104 bytes leftover after parsing attributes in process `syz.5.3068'.
[  232.704062][T13718] ip6t_srh: unknown srh match flags  4000
[  232.713499][T13711] wireguard0: entered promiscuous mode
[  232.719110][T13711] wireguard0: entered allmulticast mode
[  232.730539][T13694] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  232.746313][T13718] loop5: detected capacity change from 0 to 512
[  232.755557][T13718] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  232.791818][T13694] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  232.804216][T13718] FAT-fs (loop5): error, fat_get_cluster: invalid cluster chain (i_pos 548)
[  232.813441][T13718] FAT-fs (loop5): error, fat_free: invalid cluster chain (i_pos 548)
[  232.828885][T13718] FAT-fs (loop5): error, fat_free: invalid cluster chain (i_pos 548)
[  232.876349][T13694] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  232.948042][T13694] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  232.949076][T13729] loop4: detected capacity change from 0 to 2048
[  233.007192][T13729] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  233.076022][T12775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  233.145967][  T124] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  233.158499][T13744] netlink: 52 bytes leftover after parsing attributes in process `syz.6.3074'.
[  233.170077][  T124] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  233.196710][  T124] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  233.214662][T13748] IPv6: Can't replace route, no match found
[  233.218406][  T124] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  233.256081][T13750] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3078'.
[  233.283927][T13752] bridge0: entered promiscuous mode
[  233.299479][T13752] macsec1: entered promiscuous mode
[  233.311743][T13752] bridge0: port 3(macsec1) entered blocking state
[  233.318374][T13752] bridge0: port 3(macsec1) entered disabled state
[  233.340665][T13752] macsec1: entered allmulticast mode
[  233.346761][T13752] bridge0: entered allmulticast mode
[  233.372810][T13752] macsec1: left allmulticast mode
[  233.377140][T13759] netlink: 104 bytes leftover after parsing attributes in process `syz.2.3081'.
[  233.378340][T13752] bridge0: left allmulticast mode
[  233.395777][T13752] bridge0: left promiscuous mode
[  233.438211][T13755] wireguard0: entered promiscuous mode
[  233.444043][T13755] wireguard0: entered allmulticast mode
[  233.470544][T13762] loop6: detected capacity change from 0 to 1024
[  233.509658][T13762] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  233.555383][T13762] EXT4-fs error (device loop6): ext4_read_block_bitmap_nowait:483: comm syz.6.3082: Invalid block bitmap block 0 in block_group 0
[  233.592390][T13764] bridge0: entered promiscuous mode
[  233.602893][T13762] EXT4-fs error (device loop6): ext4_acquire_dquot:6945: comm syz.6.3082: Failed to acquire dquot type 0
[  233.603014][T13764] macsec1: entered promiscuous mode
[  233.648668][T13771] ip6t_srh: unknown srh match flags  4000
[  233.655651][T13764] bridge0: port 3(macsec1) entered blocking state
[  233.662628][T13764] bridge0: port 3(macsec1) entered disabled state
[  233.670621][T13762] EXT4-fs error (device loop6): ext4_free_blocks:6706: comm syz.6.3082: Freeing blocks not in datazone - block = 0, count = 4096
[  233.685873][T13764] macsec1: entered allmulticast mode
[  233.691402][T13764] bridge0: entered allmulticast mode
[  233.697977][T13773] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3085'.
[  233.707821][T13773] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3085'.
[  233.718176][T13764] macsec1: left allmulticast mode
[  233.723392][T13764] bridge0: left allmulticast mode
[  233.729302][T13762] EXT4-fs error (device loop6): ext4_read_inode_bitmap:139: comm syz.6.3082: Invalid inode bitmap blk 0 in block_group 0
[  233.743189][T13764] bridge0: left promiscuous mode
[  233.749777][   T31] EXT4-fs error (device loop6): ext4_release_dquot:6981: comm kworker/u8:1: Failed to release dquot type 0
[  233.756819][T13774] loop4: detected capacity change from 0 to 512
[  233.777130][T13774] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  233.783864][T13762] EXT4-fs error (device loop6) in ext4_free_inode:361: Corrupt filesystem
[  233.801411][T13772] wireguard3: entered promiscuous mode
[  233.801523][T13762] EXT4-fs (loop6): 1 orphan inode deleted
[  233.807259][T13772] wireguard3: entered allmulticast mode
[  233.814013][T13762] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  233.841458][T13774] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 548)
[  233.853436][T13774] FAT-fs (loop4): error, fat_free: invalid cluster chain (i_pos 548)
[  233.869288][T13774] FAT-fs (loop4): error, fat_free: invalid cluster chain (i_pos 548)
[  233.975019][T13783] IPv6: Can't replace route, no match found
[  234.088228][T13789] wireguard0: entered promiscuous mode
[  234.093866][T13789] wireguard0: entered allmulticast mode
[  234.296879][T13800] netlink: 68 bytes leftover after parsing attributes in process `syz.5.3093'.
[  234.306995][T13800] netlink: 32 bytes leftover after parsing attributes in process `syz.5.3093'.
[  234.379090][ T8640] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  234.390574][T13805] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3095'.
[  234.415012][T13805] netlink: 56 bytes leftover after parsing attributes in process `syz.3.3095'.
[  234.473722][T13791] chnl_net:caif_netlink_parms(): no params data found
[  234.522151][T13813] wireguard1: entered promiscuous mode
[  234.527922][T13813] wireguard1: entered allmulticast mode
[  234.594347][T13810] wireguard0: entered promiscuous mode
[  234.600020][T13810] wireguard0: entered allmulticast mode
[  234.623195][T13821] bridge0: entered promiscuous mode
[  234.629216][T13821] macsec1: entered promiscuous mode
[  234.636008][T13821] bridge0: port 3(macsec1) entered blocking state
[  234.642644][T13821] bridge0: port 3(macsec1) entered disabled state
[  234.649502][T13821] macsec1: entered allmulticast mode
[  234.654919][T13821] bridge0: entered allmulticast mode
[  234.661318][T13821] macsec1: left allmulticast mode
[  234.666584][T13821] bridge0: left allmulticast mode
[  234.672436][T13821] bridge0: left promiscuous mode
[  234.714711][T13825] wireguard0: entered promiscuous mode
[  234.720480][T13825] wireguard0: entered allmulticast mode
[  234.739812][T13791] bridge0: port 1(bridge_slave_0) entered blocking state
[  234.746977][T13791] bridge0: port 1(bridge_slave_0) entered disabled state
[  234.754921][T13791] bridge_slave_0: entered allmulticast mode
[  234.762205][T13791] bridge_slave_0: entered promiscuous mode
[  234.774208][T13791] bridge0: port 2(bridge_slave_1) entered blocking state
[  234.781843][T13791] bridge0: port 2(bridge_slave_1) entered disabled state
[  234.789691][T13791] bridge_slave_1: entered allmulticast mode
[  234.796519][T13791] bridge_slave_1: entered promiscuous mode
[  234.824729][T13791] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  234.847678][T13791] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  234.860098][T13830] bridge0: entered promiscuous mode
[  234.865923][T13830] macsec1: entered promiscuous mode
[  234.872741][T13830] bridge0: port 3(macsec1) entered blocking state
[  234.880054][T13830] bridge0: port 3(macsec1) entered disabled state
[  234.887323][T13830] macsec1: entered allmulticast mode
[  234.892746][T13830] bridge0: entered allmulticast mode
[  234.900172][T13830] macsec1: left allmulticast mode
[  234.906549][T13830] bridge0: left allmulticast mode
[  234.914334][T13830] bridge0: left promiscuous mode
[  234.978653][T13834] wireguard1: entered promiscuous mode
[  234.984285][T13834] wireguard1: entered allmulticast mode
[  235.016056][T13791] team0: Port device team_slave_0 added
[  235.026208][T13791] team0: Port device team_slave_1 added
[  235.054450][T13791] batman_adv: batadv0: Adding interface: batadv_slave_0
[  235.061665][T13791] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  235.088679][T13791] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  235.115332][T13847] wireguard0: entered promiscuous mode
[  235.121166][T13847] wireguard0: entered allmulticast mode
[  235.134126][T13791] batman_adv: batadv0: Adding interface: batadv_slave_1
[  235.141281][T13791] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  235.167647][T13791] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  235.208672][T13791] hsr_slave_0: entered promiscuous mode
[  235.223835][T13791] hsr_slave_1: entered promiscuous mode
[  235.236787][T13791] debugfs: 'hsr0' already exists in 'hsr'
[  235.242694][T13791] Cannot create hsr debugfs directory
[  235.327895][   T29] kauditd_printk_skb: 925 callbacks suppressed
[  235.327938][   T29] audit: type=1326 audit(1760342727.406:67708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13868 comm="syz.5.3108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92904ceec9 code=0x7ffc0000
[  235.359015][   T29] audit: type=1326 audit(1760342727.406:67709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13868 comm="syz.5.3108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f92904ceec9 code=0x7ffc0000
[  235.383193][   T29] audit: type=1326 audit(1760342727.406:67710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13868 comm="syz.5.3108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92904ceec9 code=0x7ffc0000
[  235.419368][   T29] audit: type=1326 audit(1760342727.406:67711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13868 comm="syz.5.3108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f92904ceec9 code=0x7ffc0000
[  235.443207][   T29] audit: type=1326 audit(1760342727.406:67712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13868 comm="syz.5.3108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92904ceec9 code=0x7ffc0000
[  235.467281][   T29] audit: type=1326 audit(1760342727.496:67713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13831 comm="syz.6.3102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7ff2dc39eec9 code=0x7ffc0000
[  235.494039][T13874] loop5: detected capacity change from 0 to 512
[  235.527215][T13876] netlink: 'syz.6.3111': attribute type 3 has an invalid length.
[  235.541698][T13881] loop3: detected capacity change from 0 to 512
[  235.547423][T13874] EXT4-fs warning (device loop5): ext4_xattr_inode_get:560: inode #11: comm syz.5.3109: EA inode hash validation failed
[  235.561732][T13791] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.575340][T13876] loop6: detected capacity change from 0 to 512
[  235.582017][   T29] audit: type=1326 audit(1760342727.636:67714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13877 comm="syz.4.3112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f714544eec9 code=0x7ffc0000
[  235.606467][   T29] audit: type=1326 audit(1760342727.636:67715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13877 comm="syz.4.3112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=428 compat=0 ip=0x7f714544eec9 code=0x7ffc0000
[  235.608673][T13874] EXT4-fs warning (device loop5): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  235.631030][   T29] audit: type=1326 audit(1760342727.636:67716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13877 comm="syz.4.3112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f714544eec9 code=0x7ffc0000
[  235.644783][T13874] EXT4-fs error (device loop5): ext4_do_update_inode:5624: inode #15: comm syz.5.3109: corrupted inode contents
[  235.668387][   T29] audit: type=1326 audit(1760342727.636:67717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13877 comm="syz.4.3112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f714544eec9 code=0x7ffc0000
[  235.706987][T13874] EXT4-fs error (device loop5): ext4_dirty_inode:6509: inode #15: comm syz.5.3109: mark_inode_dirty error
[  235.719326][T13874] EXT4-fs error (device loop5): ext4_do_update_inode:5624: inode #15: comm syz.5.3109: corrupted inode contents
[  235.732802][T13874] EXT4-fs error (device loop5): ext4_xattr_delete_inode:2996: inode #15: comm syz.5.3109: mark_inode_dirty error
[  235.735584][T13884] capability: warning: `syz.4.3114' uses deprecated v2 capabilities in a way that may be insecure
[  235.745562][T13874] EXT4-fs error (device loop5): ext4_xattr_delete_inode:2999: inode #15: comm syz.5.3109: mark inode dirty (error -117)
[  235.762627][T13884] debugfs: 'ptm0' already exists in 'caif_serial'
[  235.769446][T13874] EXT4-fs warning (device loop5): ext4_evict_inode:274: xattr delete (err -117)
[  235.784730][T13874] EXT4-fs (loop5): 1 orphan inode deleted
[  235.785959][T13881] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  235.791395][T13874] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  235.799139][T13881] EXT4-fs (loop3): orphan cleanup on readonly fs
[  235.812632][T13876] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  235.820292][T13881] EXT4-fs error (device loop3): ext4_do_update_inode:5624: inode #16: comm +}[@: corrupted inode contents
[  235.844954][T13791] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.856327][T13876] ext4 filesystem being mounted at /322/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  235.869093][T13881] EXT4-fs (loop3): Remounting filesystem read-only
[  235.876080][T13881] EXT4-fs (loop3): 1 truncate cleaned up
[  235.882534][ T2766] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  235.893675][ T2766] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  235.905008][ T7575] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  235.918778][T13876] EXT4-fs (loop6): shut down requested (0)
[  235.925033][ T2766] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started
[  235.936244][T13881] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  235.982135][ T8640] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  235.995099][T12245] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  235.995925][T13791] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  236.025496][T13892] wireguard0: entered promiscuous mode
[  236.031066][T13892] wireguard0: entered allmulticast mode
[  236.044933][T13896] bridge0: entered promiscuous mode
[  236.050938][T13896] macsec1: entered promiscuous mode
[  236.057744][T13896] bridge0: port 3(macsec1) entered blocking state
[  236.064399][T13896] bridge0: port 3(macsec1) entered disabled state
[  236.071463][T13896] macsec1: entered allmulticast mode
[  236.077083][T13896] bridge0: entered allmulticast mode
[  236.083119][T13903] loop3: detected capacity change from 0 to 2048
[  236.090363][T13896] macsec1: left allmulticast mode
[  236.095542][T13896] bridge0: left allmulticast mode
[  236.098304][T13903] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  236.113736][T13896] bridge0: left promiscuous mode
[  236.132573][T12245] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  236.145037][T13901] wireguard0: entered promiscuous mode
[  236.150698][T13901] wireguard0: entered allmulticast mode
[  236.166527][T13904] wireguard1: entered promiscuous mode
[  236.172218][T13904] wireguard1: entered allmulticast mode
[  236.178360][T13912] loop3: detected capacity change from 0 to 1024
[  236.185286][T13912] EXT4-fs: Ignoring removed mblk_io_submit option
[  236.192040][T13912] EXT4-fs: Ignoring removed nobh option
[  236.197674][T13912] EXT4-fs: Ignoring removed bh option
[  236.206118][T13791] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  236.208508][T13912] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  236.513446][T13929] loop6: detected capacity change from 0 to 1024
[  236.514314][T13929] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  236.533056][T13929] EXT4-fs error (device loop6): ext4_read_block_bitmap_nowait:483: comm syz.6.3126: Invalid block bitmap block 0 in block_group 0
[  236.533282][T13929] EXT4-fs error (device loop6): ext4_acquire_dquot:6945: comm syz.6.3126: Failed to acquire dquot type 0
[  236.533585][T13929] EXT4-fs error (device loop6): ext4_free_blocks:6706: comm syz.6.3126: Freeing blocks not in datazone - block = 0, count = 4096
[  236.533871][T13929] EXT4-fs error (device loop6): ext4_read_inode_bitmap:139: comm syz.6.3126: Invalid inode bitmap blk 0 in block_group 0
[  236.533970][T13929] EXT4-fs error (device loop6) in ext4_free_inode:361: Corrupt filesystem
[  236.534115][T13929] EXT4-fs (loop6): 1 orphan inode deleted
[  236.534659][T13929] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  236.558990][ T2766] EXT4-fs error (device loop6): ext4_release_dquot:6981: comm kworker/u8:6: Failed to release dquot type 0
[  236.937158][T13945] loop4: detected capacity change from 0 to 512
[  236.949054][T13945] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  236.949163][T13945] EXT4-fs (loop4): orphan cleanup on readonly fs
[  236.950749][T13945] EXT4-fs error (device loop4): ext4_do_update_inode:5624: inode #16: comm +}[@: corrupted inode contents
[  236.979336][T13945] EXT4-fs (loop4): Remounting filesystem read-only
[  236.979503][T13945] EXT4-fs (loop4): 1 truncate cleaned up
[  236.992876][ T2766] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  236.992899][ T2766] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  236.992918][ T2766] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[  236.993616][T13945] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  237.039685][T13945] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  237.049595][T12245] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  237.200157][T13960] loop4: detected capacity change from 0 to 512
[  237.217458][T13960] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  237.226367][T13960] EXT4-fs (loop4): orphan cleanup on readonly fs
[  237.235914][T13960] EXT4-fs error (device loop4): ext4_do_update_inode:5624: inode #16: comm +}[@: corrupted inode contents
[  237.248318][T13960] EXT4-fs (loop4): Remounting filesystem read-only
[  237.255668][T13960] EXT4-fs (loop4): 1 truncate cleaned up
[  237.257520][T13791] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  237.262063][  T124] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  237.279679][  T124] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  237.290373][  T124] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[  237.298293][T13791] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  237.307273][T13960] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  237.325843][T13791] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  237.334776][T12775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  237.336260][T13791] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  237.363047][ T2766] bridge_slave_1: left allmulticast mode
[  237.369275][ T2766] bridge_slave_1: left promiscuous mode
[  237.375312][ T2766] bridge0: port 2(bridge_slave_1) entered disabled state
[  237.385043][ T2766] bridge_slave_0: left allmulticast mode
[  237.389378][T13971] loop4: detected capacity change from 0 to 512
[  237.390957][ T2766] bridge_slave_0: left promiscuous mode
[  237.402964][ T2766] bridge0: port 1(bridge_slave_0) entered disabled state
[  237.408669][T13971] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  237.419566][T13971] EXT4-fs (loop4): orphan cleanup on readonly fs
[  237.428130][T13971] EXT4-fs error (device loop4): ext4_do_update_inode:5624: inode #16: comm +}[@: corrupted inode contents
[  237.440023][T13971] EXT4-fs (loop4): Remounting filesystem read-only
[  237.447435][T13971] EXT4-fs (loop4): 1 truncate cleaned up
[  237.453495][   T31] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  237.454545][T13975] IPv6: Can't replace route, no match found
[  237.464510][   T31] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  237.482157][   T31] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[  237.492645][ T2766] bond_slave_0: left promiscuous mode
[  237.498268][ T2766] bond_slave_1: left promiscuous mode
[  237.504166][ T2766] dummy0: left promiscuous mode
[  237.534672][T13971] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  237.548500][ T8640] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  237.604941][T12775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  237.641061][ T2766] bond1 (unregistering): (slave macvlan2): Removing an active aggregator
[  237.650462][ T2766] bond1 (unregistering): (slave macvlan2): Releasing backup interface
[  237.663213][ T2766] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  237.673453][ T2766] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  237.684534][ T2766] bond0 (unregistering): (slave dummy0): Releasing backup interface
[  237.693873][ T2766] bond0 (unregistering): Released all slaves
[  237.703599][ T2766] bond1 (unregistering): Released all slaves
[  237.714343][T13988] loop6: detected capacity change from 0 to 164
[  237.727140][T13983] bridge0: entered promiscuous mode
[  237.732458][T13983] macsec1: entered promiscuous mode
[  237.739056][T13983] bridge0: port 3(macsec1) entered blocking state
[  237.745572][T13983] bridge0: port 3(macsec1) entered disabled state
[  237.752295][T13983] macsec1: entered allmulticast mode
[  237.757655][T13983] bridge0: entered allmulticast mode
[  237.764343][T13983] macsec1: left allmulticast mode
[  237.769664][T13983] bridge0: left allmulticast mode
[  237.775802][T13983] bridge0: left promiscuous mode
[  237.800140][T13989] wireguard1: entered promiscuous mode
[  237.805703][T13989] wireguard1: entered allmulticast mode
[  237.832141][ T2766] hsr_slave_0: left promiscuous mode
[  237.838282][ T2766] hsr_slave_1: left promiscuous mode
[  237.844452][ T2766] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  237.852397][ T2766] batman_adv: batadv0: Removing interface: batadv_slave_0
[  237.861355][ T2766] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  237.868821][ T2766] batman_adv: batadv0: Removing interface: batadv_slave_1
[  237.878677][ T2766] veth1_macvtap: left promiscuous mode
[  237.884586][ T2766] veth0_macvtap: left promiscuous mode
[  237.890788][ T2766] veth1_vlan: left promiscuous mode
[  237.896140][ T2766] veth0_vlan: left promiscuous mode
[  237.990613][ T2766] team0 (unregistering): Port device team_slave_1 removed
[  238.002143][ T2766] team0 (unregistering): Port device team_slave_0 removed
[  238.082941][T13791] 8021q: adding VLAN 0 to HW filter on device bond0
[  238.102094][T14014] loop3: detected capacity change from 0 to 1024
[  238.110741][T13791] 8021q: adding VLAN 0 to HW filter on device team0
[  238.121150][  T124] bridge0: port 1(bridge_slave_0) entered blocking state
[  238.125708][T14014] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  238.128702][  T124] bridge0: port 1(bridge_slave_0) entered forwarding state
[  238.149480][T14014] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.3151: Invalid block bitmap block 0 in block_group 0
[  238.164354][T14014] EXT4-fs error (device loop3): ext4_acquire_dquot:6945: comm syz.3.3151: Failed to acquire dquot type 0
[  238.176114][T14014] EXT4-fs error (device loop3): ext4_free_blocks:6706: comm syz.3.3151: Freeing blocks not in datazone - block = 0, count = 4096
[  238.198733][  T124] bridge0: port 2(bridge_slave_1) entered blocking state
[  238.199080][T14014] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.3151: Invalid inode bitmap blk 0 in block_group 0
[  238.205900][  T124] bridge0: port 2(bridge_slave_1) entered forwarding state
[  238.226592][   T31] EXT4-fs error (device loop3): ext4_release_dquot:6981: comm kworker/u8:1: Failed to release dquot type 0
[  238.239024][T14014] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[  238.252832][T14014] EXT4-fs (loop3): 1 orphan inode deleted
[  238.262594][T14014] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  238.358815][T13791] 8021q: adding VLAN 0 to HW filter on device batadv0
[  238.461430][T13791] veth0_vlan: entered promiscuous mode
[  238.470771][T13791] veth1_vlan: entered promiscuous mode
[  238.494595][T13791] veth0_macvtap: entered promiscuous mode
[  238.511547][T13791] veth1_macvtap: entered promiscuous mode
[  238.529521][T13791] batman_adv: batadv0: Interface activated: batadv_slave_0
[  238.544397][T13791] batman_adv: batadv0: Interface activated: batadv_slave_1
[  238.555763][   T37] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  238.565373][   T37] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  238.583375][   T52] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  238.593496][   T52] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  238.638035][T14068] ip6t_srh: unknown srh match flags  4000
[  238.647665][T14068] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[  238.660796][T14060] loop4: detected capacity change from 0 to 164
[  238.663916][T14068] loop2: detected capacity change from 0 to 512
[  238.674717][T14068] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  238.698859][T14072] IPv6: Can't replace route, no match found
[  238.719450][T14068] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 548)
[  238.729310][T14068] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 548)
[  238.738149][T14068] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 548)
[  238.793440][T14076] loop4: detected capacity change from 0 to 1024
[  238.818448][T14076] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  238.837743][T14076] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.3159: Invalid block bitmap block 0 in block_group 0
[  238.857361][T14076] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.3159: Failed to acquire dquot type 0
[  238.871826][T14083] loop5: detected capacity change from 0 to 2048
[  238.888133][T14076] EXT4-fs error (device loop4): ext4_free_blocks:6706: comm syz.4.3159: Freeing blocks not in datazone - block = 0, count = 4096
[  238.914468][T14083] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  238.938693][T14076] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.3159: Invalid inode bitmap blk 0 in block_group 0
[  238.968779][   T37] EXT4-fs error (device loop4): ext4_release_dquot:6981: comm kworker/u8:2: Failed to release dquot type 0
[  239.066453][T14076] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[  239.089673][T14076] EXT4-fs (loop4): 1 orphan inode deleted
[  239.096109][T12245] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.106706][T14076] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  239.150443][ T7575] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.262188][T14103] __nla_validate_parse: 12 callbacks suppressed
[  239.262205][T14103] netlink: 68 bytes leftover after parsing attributes in process `syz.5.3168'.
[  239.299326][T14105] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3169'.
[  239.305017][T14103] netlink: 32 bytes leftover after parsing attributes in process `syz.5.3168'.
[  239.308701][T14105] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3169'.
[  239.501405][T14112] netlink: 104 bytes leftover after parsing attributes in process `syz.6.3172'.
[  239.572903][T14116] loop5: detected capacity change from 0 to 2048
[  239.607505][T14116] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  239.683580][T14124] wireguard0: entered promiscuous mode
[  239.689345][T14124] wireguard0: entered allmulticast mode
[  239.716166][T12775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.727880][ T7575] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.815163][T14137] netlink: 68 bytes leftover after parsing attributes in process `syz.4.3180'.
[  239.840377][T14137] netlink: 32 bytes leftover after parsing attributes in process `syz.4.3180'.
[  239.913357][T14139] wireguard0: entered promiscuous mode
[  239.919427][T14139] wireguard0: entered allmulticast mode
[  239.967357][T14142] loop5: detected capacity change from 0 to 1024
[  239.987214][T14142] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  240.001248][T14144] ip6t_srh: unknown srh match flags  4000
[  240.012486][T14144] loop3: detected capacity change from 0 to 512
[  240.020425][T14142] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.3179: Invalid block bitmap block 0 in block_group 0
[  240.027368][T14144] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  240.034789][T14142] EXT4-fs error (device loop5): ext4_acquire_dquot:6945: comm syz.5.3179: Failed to acquire dquot type 0
[  240.060827][T14142] EXT4-fs error (device loop5): ext4_free_blocks:6706: comm syz.5.3179: Freeing blocks not in datazone - block = 0, count = 4096
[  240.080799][T14142] EXT4-fs error (device loop5): ext4_read_inode_bitmap:139: comm syz.5.3179: Invalid inode bitmap blk 0 in block_group 0
[  240.097595][   T37] EXT4-fs error (device loop5): ext4_release_dquot:6981: comm kworker/u8:2: Failed to release dquot type 0
[  240.099164][T14142] EXT4-fs error (device loop5) in ext4_free_inode:361: Corrupt filesystem
[  240.118971][T14142] EXT4-fs (loop5): 1 orphan inode deleted
[  240.125195][T14142] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  240.138409][T14146] loop4: detected capacity change from 0 to 164
[  240.150882][T14150] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3184'.
[  240.159968][T14150] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3184'.
[  240.170545][T14144] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 548)
[  240.186796][T14144] FAT-fs (loop3): error, fat_free: invalid cluster chain (i_pos 548)
[  240.195492][T14144] FAT-fs (loop3): error, fat_free: invalid cluster chain (i_pos 548)
[  240.251257][T14159] loop2: detected capacity change from 0 to 512
[  240.267517][T14159] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  240.275795][T14159] EXT4-fs (loop2): orphan cleanup on readonly fs
[  240.283967][T14159] EXT4-fs error (device loop2): ext4_do_update_inode:5624: inode #16: comm +}[@: corrupted inode contents
[  240.302392][T14159] EXT4-fs (loop2): Remounting filesystem read-only
[  240.309315][T14159] EXT4-fs (loop2): 1 truncate cleaned up
[  240.315228][   T37] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  240.326072][   T37] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  240.336921][   T37] __quota_error: 677 callbacks suppressed
[  240.336939][   T37] Quota error (device loop2): write_blk: dquota write failed
[  240.351147][   T37] Quota error (device loop2): free_dqentry: Can't move quota data block (5) to free list
[  240.398643][   T37] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started
[  240.409273][   T37] Quota error (device loop2): v2_write_file_info: Can't write info structure
[  240.419046][   T37] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  240.429120][T14169] wireguard0: entered promiscuous mode
[  240.434789][T14169] wireguard0: entered allmulticast mode
[  240.461981][T14172] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  240.493392][T14174] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  240.539065][T14172] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  240.640597][T14172] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  240.684912][T14178] wireguard0: entered promiscuous mode
[  240.690730][T14178] wireguard0: entered allmulticast mode
[  240.733081][   T29] audit: type=1326 audit(1760342732.806:68357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14134 comm="syz.5.3179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92904ceec9 code=0x7ffc0000
[  240.757237][   T29] audit: type=1326 audit(1760342732.806:68358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14134 comm="syz.5.3179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92904ceec9 code=0x7ffc0000
[  240.802595][T14172] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  240.838513][T14185] loop5: detected capacity change from 0 to 512
[  240.853309][T14185] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  240.879691][  T124] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  240.898705][T14185] FAT-fs (loop5): error, fat_get_cluster: invalid cluster chain (i_pos 548)
[  240.910386][T14185] FAT-fs (loop5): error, fat_free: invalid cluster chain (i_pos 548)
[  240.923704][  T124] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  240.940708][  T124] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  240.966647][T14185] FAT-fs (loop5): error, fat_free: invalid cluster chain (i_pos 548)
[  240.975168][  T124] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  240.989924][   T29] audit: type=1326 audit(1760342733.066:68359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14189 comm="syz.6.3196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2dc39eec9 code=0x7ffc0000
[  241.014840][   T29] audit: type=1326 audit(1760342733.066:68360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14189 comm="syz.6.3196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2dc39eec9 code=0x7ffc0000
[  241.097348][   T29] audit: type=1326 audit(1760342733.066:68361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14189 comm="syz.6.3196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff2dc39eec9 code=0x7ffc0000
[  241.121299][   T29] audit: type=1326 audit(1760342733.066:68362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14189 comm="syz.6.3196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2dc39eec9 code=0x7ffc0000
[  241.456225][T14209] bridge0: entered promiscuous mode
[  241.461876][T14209] macsec1: entered promiscuous mode
[  241.468394][T14209] bridge0: port 3(macsec1) entered blocking state
[  241.474985][T14209] bridge0: port 3(macsec1) entered disabled state
[  241.481819][T14209] macsec1: entered allmulticast mode
[  241.487441][T14209] bridge0: entered allmulticast mode
[  241.493930][T14209] macsec1: left allmulticast mode
[  241.499210][T14209] bridge0: left allmulticast mode
[  241.505181][T14209] bridge0: left promiscuous mode
[  241.536748][T14210] wireguard0: entered promiscuous mode
[  241.542432][T14210] wireguard0: entered allmulticast mode
[  241.770644][T14174] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  241.785567][T14216] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3205'.
[  241.809965][T14174] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  241.879907][T14174] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  241.916008][T14219] loop6: detected capacity change from 0 to 512
[  241.937727][T14219] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  241.945928][T14219] EXT4-fs (loop6): orphan cleanup on readonly fs
[  241.958159][T14219] EXT4-fs error (device loop6): ext4_do_update_inode:5624: inode #16: comm +}[@: corrupted inode contents
[  241.970476][T14219] EXT4-fs (loop6): Remounting filesystem read-only
[  241.977309][T14219] EXT4-fs (loop6): 1 truncate cleaned up
[  241.983582][  T124] EXT4-fs (loop6): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  241.994378][  T124] EXT4-fs (loop6): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  242.005226][  T124] EXT4-fs (loop6): Quota write (off=8, len=24) cancelled because transaction is not started
[  242.025728][   T37] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  242.050935][   T37] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  242.072307][   T37] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  242.092149][   T37] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  242.125744][T14229] wireguard1: entered promiscuous mode
[  242.131432][T14229] wireguard1: entered allmulticast mode
[  242.191048][T14242] loop6: detected capacity change from 0 to 512
[  242.198617][T14242] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  242.220262][T14242] FAT-fs (loop6): error, fat_get_cluster: invalid cluster chain (i_pos 548)
[  242.229220][T14242] FAT-fs (loop6): error, fat_free: invalid cluster chain (i_pos 548)
[  242.238238][T14242] FAT-fs (loop6): error, fat_free: invalid cluster chain (i_pos 548)
[  242.328278][T14247] loop4: detected capacity change from 0 to 164
[  242.467477][T14263] FAULT_INJECTION: forcing a failure.
[  242.467477][T14263] name failslab, interval 1, probability 0, space 0, times 0
[  242.480250][T14263] CPU: 0 UID: 0 PID: 14263 Comm: syz.2.3224 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  242.480281][T14263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  242.480384][T14263] Call Trace:
[  242.480402][T14263]  <TASK>
[  242.480417][T14263]  __dump_stack+0x1d/0x30
[  242.480452][T14263]  dump_stack_lvl+0xe8/0x140
[  242.480474][T14263]  dump_stack+0x15/0x1b
[  242.480493][T14263]  should_fail_ex+0x265/0x280
[  242.480533][T14263]  should_failslab+0x8c/0xb0
[  242.480567][T14263]  kmem_cache_alloc_noprof+0x50/0x480
[  242.480606][T14263]  ? getname_flags+0x80/0x3b0
[  242.480669][T14263]  getname_flags+0x80/0x3b0
[  242.480749][T14263]  do_sys_openat2+0x60/0x110
[  242.480788][T14263]  __x64_sys_openat+0xf2/0x120
[  242.480826][T14263]  x64_sys_call+0x2eab/0x3000
[  242.480903][T14263]  do_syscall_64+0xd2/0x200
[  242.480930][T14263]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  242.481004][T14263]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  242.481029][T14263]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  242.481052][T14263] RIP: 0033:0x7f32b4edeec9
[  242.481072][T14263] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  242.481094][T14263] RSP: 002b:00007f32b393f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  242.481180][T14263] RAX: ffffffffffffffda RBX: 00007f32b5135fa0 RCX: 00007f32b4edeec9
[  242.481194][T14263] RDX: 0000000000082801 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  242.481213][T14263] RBP: 00007f32b393f090 R08: 0000000000000000 R09: 0000000000000000
[  242.481226][T14263] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  242.481239][T14263] R13: 00007f32b5136038 R14: 00007f32b5135fa0 R15: 00007ffcbee10808
[  242.481361][T14263]  </TASK>
[  242.788328][T14256] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  242.809382][T14275] bridge0: entered promiscuous mode
[  242.814708][T14275] macsec1: entered promiscuous mode
[  242.822071][T14275] bridge0: port 3(macsec1) entered blocking state
[  242.828904][T14275] bridge0: port 3(macsec1) entered disabled state
[  242.836002][T14275] macsec1: entered allmulticast mode
[  242.841845][T14275] bridge0: entered allmulticast mode
[  242.852380][T14273] loop5: detected capacity change from 0 to 1024
[  242.867919][T14273] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  242.896603][T14275] macsec1: left allmulticast mode
[  242.901877][T14275] bridge0: left allmulticast mode
[  242.908329][T14273] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.3228: Invalid block bitmap block 0 in block_group 0
[  242.922441][T14275] bridge0: left promiscuous mode
[  242.923708][T14273] EXT4-fs error (device loop5): ext4_acquire_dquot:6945: comm syz.5.3228: Failed to acquire dquot type 0
[  242.951992][T14256] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  242.969431][T14273] EXT4-fs error (device loop5): ext4_free_blocks:6706: comm syz.5.3228: Freeing blocks not in datazone - block = 0, count = 4096
[  242.986732][T14273] EXT4-fs error (device loop5): ext4_read_inode_bitmap:139: comm syz.5.3228: Invalid inode bitmap blk 0 in block_group 0
[  243.009458][T14281] wireguard0: entered promiscuous mode
[  243.015417][T14281] wireguard0: entered allmulticast mode
[  243.021625][T14273] EXT4-fs error (device loop5) in ext4_free_inode:361: Corrupt filesystem
[  243.021637][   T52] EXT4-fs error (device loop5): ext4_release_dquot:6981: comm kworker/u8:3: Failed to release dquot type 0
[  243.046707][T14273] EXT4-fs (loop5): 1 orphan inode deleted
[  243.069900][T14256] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  243.158820][T14256] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  243.316091][T14296] bridge0: entered promiscuous mode
[  243.333487][T14296] macsec1: entered promiscuous mode
[  243.345311][T14296] bridge0: port 3(macsec1) entered blocking state
[  243.351872][T14296] bridge0: port 3(macsec1) entered disabled state
[  243.360496][T14300] IPv6: Can't replace route, no match found
[  243.364321][T14296] macsec1: entered allmulticast mode
[  243.372533][T14296] bridge0: entered allmulticast mode
[  243.391787][T14296] macsec1: left allmulticast mode
[  243.396975][T14296] bridge0: left allmulticast mode
[  243.402772][T14296] bridge0: left promiscuous mode
[  243.433675][T14303] wireguard0: entered promiscuous mode
[  243.439557][T14303] wireguard0: entered allmulticast mode
[  243.457990][T14306] bridge0: entered promiscuous mode
[  243.463396][T14306] macsec1: entered promiscuous mode
[  243.469906][T14306] bridge0: port 3(macsec1) entered blocking state
[  243.476470][T14306] bridge0: port 3(macsec1) entered disabled state
[  243.483324][T14306] macsec1: entered allmulticast mode
[  243.488814][T14306] bridge0: entered allmulticast mode
[  243.496588][T14306] macsec1: left allmulticast mode
[  243.501792][T14306] bridge0: left allmulticast mode
[  243.509210][T14306] bridge0: left promiscuous mode
[  243.520916][T14304] wireguard0: entered promiscuous mode
[  243.526598][T14304] wireguard0: entered allmulticast mode
[  243.662523][T14315] ip6t_srh: unknown srh match flags  4000
[  243.682819][T14315] loop6: detected capacity change from 0 to 512
[  243.700541][T14315] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  243.701573][T14318] ip6t_srh: unknown srh match flags  4000
[  243.721043][T14319] bridge0: entered promiscuous mode
[  243.727792][T14319] macsec1: entered promiscuous mode
[  243.734542][T14319] bridge0: port 3(macsec1) entered blocking state
[  243.741320][T14319] bridge0: port 3(macsec1) entered disabled state
[  243.748683][T14319] macsec1: entered allmulticast mode
[  243.754152][T14319] bridge0: entered allmulticast mode
[  243.761195][T14319] macsec1: left allmulticast mode
[  243.765868][T14315] FAT-fs (loop6): error, fat_get_cluster: invalid cluster chain (i_pos 548)
[  243.766325][T14319] bridge0: left allmulticast mode
[  243.775894][T14315] FAT-fs (loop6): error, fat_free: invalid cluster chain (i_pos 548)
[  243.788613][T14322] loop2: detected capacity change from 0 to 512
[  243.789018][T14315] FAT-fs (loop6): error, fat_free: invalid cluster chain (i_pos 548)
[  243.795871][T14319] bridge0: left promiscuous mode
[  243.809601][T14322] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  243.817931][T14324] loop3: detected capacity change from 0 to 512
[  243.837222][T14324] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  243.853222][T14323] wireguard1: entered promiscuous mode
[  243.858903][T14323] wireguard1: entered allmulticast mode
[  243.890182][T14322] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 548)
[  243.899758][T14322] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 548)
[  243.909856][T14321] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 548)
[  243.920049][T14322] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 548)
[  243.956618][T14321] FAT-fs (loop3): error, fat_free: invalid cluster chain (i_pos 548)
[  243.983741][T14321] FAT-fs (loop3): error, fat_free: invalid cluster chain (i_pos 548)
[  244.132055][T14328] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  244.178286][T14328] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  244.239545][T14328] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  244.310016][T14328] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  244.384766][   T37] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  244.400606][   T37] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  244.420798][   T37] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  244.429361][   T37] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  244.569095][T14338] IPv6: Can't replace route, no match found
[  244.712593][   T52] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  244.742126][   T52] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  244.766585][   T52] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  244.785140][T14353] __nla_validate_parse: 10 callbacks suppressed
[  244.785157][T14353] netlink: 52 bytes leftover after parsing attributes in process `syz.2.3254'.
[  244.785944][   T52] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  244.815940][T14351] wireguard0: entered promiscuous mode
[  244.821672][T14351] wireguard0: entered allmulticast mode
[  244.852446][T14340] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  244.928799][T14340] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  244.946713][T14362] IPv6: Can't replace route, no match found
[  245.011447][T14340] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  245.031495][T14369] loop4: detected capacity change from 0 to 1024
[  245.050460][T14369] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  245.103308][T14369] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.3257: Invalid block bitmap block 0 in block_group 0
[  245.128630][T14340] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  245.139203][T14379] ip6t_srh: unknown srh match flags  4000
[  245.145596][T14369] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.3257: Failed to acquire dquot type 0
[  245.163159][T14360] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  245.175869][T14369] EXT4-fs error (device loop4): ext4_free_blocks:6706: comm syz.4.3257: Freeing blocks not in datazone - block = 0, count = 4096
[  245.197021][T14369] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.3257: Invalid inode bitmap blk 0 in block_group 0
[  245.214700][T14369] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[  245.214844][T14383] loop2: detected capacity change from 0 to 512
[  245.223927][T14382] loop6: detected capacity change from 0 to 4096
[  245.231130][T14383] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  245.236869][T14369] EXT4-fs (loop4): 1 orphan inode deleted
[  245.249649][ T2766] EXT4-fs error (device loop4): ext4_release_dquot:6981: comm kworker/u8:6: Failed to release dquot type 0
[  245.255398][T14382] EXT4-fs: Ignoring removed nomblk_io_submit option
[  245.290218][T14360] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  245.303439][T14379] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 548)
[  245.322753][T14379] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 548)
[  245.340579][T14379] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 548)
[  245.371615][T14360] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  245.418041][T14387] netlink: 'syz.6.3265': attribute type 6 has an invalid length.
[  245.479828][T14360] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  245.543442][  T124] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  245.554905][  T124] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  245.571779][T14390] loop6: detected capacity change from 0 to 512
[  245.578668][  T124] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  245.587418][  T124] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  245.596368][T14390] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  245.626293][T14390] FAT-fs (loop6): error, fat_get_cluster: invalid cluster chain (i_pos 548)
[  245.657131][T14390] FAT-fs (loop6): error, fat_free: invalid cluster chain (i_pos 548)
[  245.681763][T14390] FAT-fs (loop6): error, fat_free: invalid cluster chain (i_pos 548)
[  245.722100][T14395] netlink: 'syz.3.3268': attribute type 3 has an invalid length.
[  245.733606][T14395] loop3: detected capacity change from 0 to 512
[  245.759030][T14395] ext4 filesystem being mounted at /124/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  245.773990][T14395] EXT4-fs (loop3): shut down requested (0)
[  245.797655][   T29] kauditd_printk_skb: 241 callbacks suppressed
[  245.797672][   T29] audit: type=1326 audit(1760342737.876:68592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14358 comm="syz.4.3257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f714544eec9 code=0x7ffc0000
[  245.829553][   T29] audit: type=1326 audit(1760342737.906:68593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14358 comm="syz.4.3257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f714544eec9 code=0x7ffc0000
[  245.866092][T14400] IPv6: Can't replace route, no match found
[  245.927190][   T29] audit: type=1326 audit(1760342738.006:68594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14406 comm="syz.4.3271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f714544eec9 code=0x7ffc0000
[  245.997883][T14409] netlink: 'syz.3.3272': attribute type 21 has an invalid length.
[  246.011769][   T29] audit: type=1326 audit(1760342738.026:68595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14406 comm="syz.4.3271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f714544eec9 code=0x7ffc0000
[  246.017051][T14409] netlink: 132 bytes leftover after parsing attributes in process `syz.3.3272'.
[  246.036128][   T29] audit: type=1400 audit(1760342738.026:68596): avc:  denied  { read write } for  pid=14406 comm="syz.4.3271" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  246.069622][   T29] audit: type=1400 audit(1760342738.026:68597): avc:  denied  { open } for  pid=14406 comm="syz.4.3271" path="/dev/ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  246.094095][   T29] audit: type=1326 audit(1760342738.026:68598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14406 comm="syz.4.3271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f714544eec9 code=0x7ffc0000
[  246.119009][   T29] audit: type=1326 audit(1760342738.026:68599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14406 comm="syz.4.3271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f714544eec9 code=0x7ffc0000
[  246.143444][   T29] audit: type=1326 audit(1760342738.026:68600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14406 comm="syz.4.3271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f714544eec9 code=0x7ffc0000
[  246.168006][   T29] audit: type=1326 audit(1760342738.036:68601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14406 comm="syz.4.3271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f714544eec9 code=0x7ffc0000
[  246.169938][T14412] bridge0: entered promiscuous mode
[  246.202795][T14412] macsec1: entered promiscuous mode
[  246.210610][T14412] bridge0: port 3(macsec1) entered blocking state
[  246.217660][T14412] bridge0: port 3(macsec1) entered disabled state
[  246.225695][T14412] macsec1: entered allmulticast mode
[  246.231367][T14412] bridge0: entered allmulticast mode
[  246.237974][T14412] macsec1: left allmulticast mode
[  246.243139][T14412] bridge0: left allmulticast mode
[  246.249398][T14412] bridge0: left promiscuous mode
[  246.260478][T14413] loop4: detected capacity change from 0 to 1024
[  246.268600][T14413] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  246.280957][T14413] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.3273: Invalid block bitmap block 0 in block_group 0
[  246.298007][T14414] wireguard0: entered promiscuous mode
[  246.303565][T14414] wireguard0: entered allmulticast mode
[  246.310488][T14413] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.3273: Failed to acquire dquot type 0
[  246.340701][T14413] EXT4-fs error (device loop4): ext4_free_blocks:6706: comm syz.4.3273: Freeing blocks not in datazone - block = 0, count = 4096
[  246.355077][T14413] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.3273: Invalid inode bitmap blk 0 in block_group 0
[  246.370884][T14413] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[  246.380993][   T37] EXT4-fs error (device loop4): ext4_release_dquot:6981: comm kworker/u8:2: Failed to release dquot type 0
[  246.387915][T14413] EXT4-fs (loop4): 1 orphan inode deleted
[  246.484816][T14420] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3276'.
[  246.494261][T14420] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3276'.
[  246.533909][T14424] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3278'.
[  246.543178][T14424] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3278'.
[  246.579675][T14427] netlink: 68 bytes leftover after parsing attributes in process `syz.4.3279'.
[  246.595958][T14427] netlink: 32 bytes leftover after parsing attributes in process `syz.4.3279'.
[  246.688176][T14433] loop4: detected capacity change from 0 to 512
[  246.716562][T14438] IPv6: Can't replace route, no match found
[  246.737621][T14433] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  246.746175][T14433] EXT4-fs (loop4): orphan cleanup on readonly fs
[  246.762953][T14433] EXT4-fs error (device loop4): ext4_do_update_inode:5624: inode #16: comm +}[@: corrupted inode contents
[  246.775444][T14433] EXT4-fs (loop4): Remounting filesystem read-only
[  246.775537][T14433] EXT4-fs (loop4): 1 truncate cleaned up
[  246.775934][   T52] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  246.799014][   T52] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  246.810357][   T52] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[  246.821036][T14444] loop2: detected capacity change from 0 to 164
[  246.866800][T14446] netlink: 68 bytes leftover after parsing attributes in process `syz.4.3287'.
[  246.880617][T14446] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3287'.
[  246.914955][T14452] loop2: detected capacity change from 0 to 1024
[  246.939959][T14452] EXT4-fs: Ignoring removed mblk_io_submit option
[  246.946507][T14452] EXT4-fs: Ignoring removed nobh option
[  246.952575][T14452] EXT4-fs: Ignoring removed bh option
[  246.983791][T14456] wireguard0: entered promiscuous mode
[  246.983816][T14456] wireguard0: entered allmulticast mode
[  247.106303][T14467] bridge0: entered promiscuous mode
[  247.106454][T14467] macsec1: entered promiscuous mode
[  247.107560][T14467] bridge0: port 3(macsec1) entered blocking state
[  247.107593][T14467] bridge0: port 3(macsec1) entered disabled state
[  247.107685][T14467] macsec1: entered allmulticast mode
[  247.107701][T14467] bridge0: entered allmulticast mode
[  247.113495][T14467] macsec1: left allmulticast mode
[  247.113519][T14467] bridge0: left allmulticast mode
[  247.114149][T14467] bridge0: left promiscuous mode
[  247.160859][T14467] wireguard0: entered promiscuous mode
[  247.160918][T14467] wireguard0: entered allmulticast mode
[  247.342803][T14477] bridge0: entered promiscuous mode
[  247.342844][T14477] macsec1: entered promiscuous mode
[  247.343773][T14477] bridge0: port 3(macsec1) entered blocking state
[  247.343845][T14477] bridge0: port 3(macsec1) entered disabled state
[  247.343947][T14477] macsec1: entered allmulticast mode
[  247.343967][T14477] bridge0: entered allmulticast mode
[  247.350068][T14477] macsec1: left allmulticast mode
[  247.350087][T14477] bridge0: left allmulticast mode
[  247.356329][T14477] bridge0: left promiscuous mode
[  247.437300][T14477] wireguard0: entered promiscuous mode
[  247.437355][T14477] wireguard0: entered allmulticast mode
[  247.601262][T14481] loop3: detected capacity change from 0 to 512
[  247.617203][T14481] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  247.632243][T14481] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 548)
[  247.641687][T14481] FAT-fs (loop3): error, fat_free: invalid cluster chain (i_pos 548)
[  247.641747][T14481] FAT-fs (loop3): error, fat_free: invalid cluster chain (i_pos 548)
[  247.815403][T14484] loop2: detected capacity change from 0 to 1024
[  247.822404][T14484] EXT4-fs: Ignoring removed mblk_io_submit option
[  247.829135][T14484] EXT4-fs: Ignoring removed nobh option
[  247.834783][T14484] EXT4-fs: Ignoring removed bh option
[  248.055618][T14493] FAULT_INJECTION: forcing a failure.
[  248.055618][T14493] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  248.069587][T14493] CPU: 0 UID: 0 PID: 14493 Comm: syz.6.3301 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  248.069622][T14493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  248.069640][T14493] Call Trace:
[  248.069648][T14493]  <TASK>
[  248.069659][T14493]  __dump_stack+0x1d/0x30
[  248.069739][T14493]  dump_stack_lvl+0xe8/0x140
[  248.069832][T14493]  dump_stack+0x15/0x1b
[  248.069853][T14493]  should_fail_ex+0x265/0x280
[  248.069893][T14493]  should_fail+0xb/0x20
[  248.069940][T14493]  should_fail_usercopy+0x1a/0x20
[  248.069988][T14493]  _copy_from_user+0x1c/0xb0
[  248.070017][T14493]  ___sys_sendmsg+0xc1/0x1d0
[  248.070150][T14493]  __x64_sys_sendmsg+0xd4/0x160
[  248.070271][T14493]  x64_sys_call+0x191e/0x3000
[  248.070357][T14493]  do_syscall_64+0xd2/0x200
[  248.070389][T14493]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  248.070478][T14493]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  248.070556][T14493]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  248.070585][T14493] RIP: 0033:0x7ff2dc39eec9
[  248.070605][T14493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  248.070628][T14493] RSP: 002b:00007ff2dae07038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  248.070721][T14493] RAX: ffffffffffffffda RBX: 00007ff2dc5f5fa0 RCX: 00007ff2dc39eec9
[  248.070738][T14493] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  248.070751][T14493] RBP: 00007ff2dae07090 R08: 0000000000000000 R09: 0000000000000000
[  248.070763][T14493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  248.070776][T14493] R13: 00007ff2dc5f6038 R14: 00007ff2dc5f5fa0 R15: 00007ffc33f97f58
[  248.070814][T14493]  </TASK>
[  248.409258][T14507] ip6t_srh: unknown srh match flags  4000
[  248.438987][T14510] wireguard0: entered promiscuous mode
[  248.439011][T14510] wireguard0: entered allmulticast mode
[  248.468602][T14507] loop4: detected capacity change from 0 to 512
[  248.469120][T14507] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  248.494347][T14507] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 548)
[  248.494503][T14507] FAT-fs (loop4): error, fat_free: invalid cluster chain (i_pos 548)
[  248.494615][T14507] FAT-fs (loop4): error, fat_free: invalid cluster chain (i_pos 548)
[  248.694063][  T124] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  248.715382][ T2766] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  248.715483][ T2766] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  248.724525][ T2766] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  248.740881][T14519] IPv6: Can't replace route, no match found
[  248.801490][T14515] loop6: detected capacity change from 0 to 128
[  248.825892][T14515] ext4 filesystem being mounted at /367/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  248.896861][T14525] FAULT_INJECTION: forcing a failure.
[  248.896861][T14525] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  248.896890][T14525] CPU: 0 UID: 0 PID: 14525 Comm: syz.5.3312 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  248.896916][T14525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  248.896951][T14525] Call Trace:
[  248.896960][T14525]  <TASK>
[  248.896971][T14525]  __dump_stack+0x1d/0x30
[  248.896998][T14525]  dump_stack_lvl+0xe8/0x140
[  248.897025][T14525]  dump_stack+0x15/0x1b
[  248.897044][T14525]  should_fail_ex+0x265/0x280
[  248.897169][T14525]  should_fail+0xb/0x20
[  248.897239][T14525]  should_fail_usercopy+0x1a/0x20
[  248.897261][T14525]  _copy_from_user+0x1c/0xb0
[  248.897286][T14525]  copy_clone_args_from_user+0x38d/0x490
[  248.897340][T14525]  __se_sys_clone3+0x6f/0x200
[  248.897507][T14525]  __x64_sys_clone3+0x31/0x40
[  248.897599][T14525]  x64_sys_call+0x1fc9/0x3000
[  248.897628][T14525]  do_syscall_64+0xd2/0x200
[  248.897661][T14525]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  248.897766][T14525]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  248.897811][T14525]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  248.897834][T14525] RIP: 0033:0x7f92904ceec9
[  248.897849][T14525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  248.897869][T14525] RSP: 002b:00007f928ef36f08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  248.897895][T14525] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f92904ceec9
[  248.897908][T14525] RDX: 00007f928ef36f20 RSI: 0000000000000058 RDI: 00007f928ef36f20
[  248.897930][T14525] RBP: 00007f928ef37090 R08: 0000000000000000 R09: 0000000000000058
[  248.898027][T14525] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  248.898044][T14525] R13: 00007f9290726038 R14: 00007f9290725fa0 R15: 00007fff068dca48
[  248.898070][T14525]  </TASK>
[  249.083831][ T3407] kernel read not supported for file /878/net/netlink (pid: 3407 comm: kworker/1:5)
[  249.154454][T14534] bridge0: entered promiscuous mode
[  249.154522][T14534] macsec1: entered promiscuous mode
[  249.155200][T14534] bridge0: port 3(macsec1) entered blocking state
[  249.155298][T14534] bridge0: port 3(macsec1) entered disabled state
[  249.155376][T14534] macsec1: entered allmulticast mode
[  249.155473][T14534] bridge0: entered allmulticast mode
[  249.157818][T14534] macsec1: left allmulticast mode
[  249.157836][T14534] bridge0: left allmulticast mode
[  249.158524][T14534] bridge0: left promiscuous mode
[  249.242524][T14534] wireguard0: entered promiscuous mode
[  249.242547][T14534] wireguard0: entered allmulticast mode
[  249.420762][T14542] loop6: detected capacity change from 0 to 1024
[  249.496160][T14547] netlink: 'syz.3.3321': attribute type 3 has an invalid length.
[  249.507770][T14547] loop3: detected capacity change from 0 to 512
[  249.537879][T14547] ext4 filesystem being mounted at /147/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  249.620426][T14547] EXT4-fs (loop3): shut down requested (0)
[  249.675540][T14554] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  249.761083][T14554] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  249.809027][T14568] __nla_validate_parse: 10 callbacks suppressed
[  249.809049][T14568] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3328'.
[  249.825593][T14568] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3328'.
[  249.867494][T14554] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  250.013677][T14554] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  250.057032][T14593] netlink: 'syz.6.3335': attribute type 3 has an invalid length.
[  250.084283][ T2766] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  250.093052][ T2766] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  250.119547][T14593] loop6: detected capacity change from 0 to 512
[  250.135113][ T2766] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  250.144909][ T2766] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  250.171688][T14593] ext4 filesystem being mounted at /372/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  250.188232][T14593] EXT4-fs (loop6): shut down requested (0)
[  250.208302][T14604] netlink: 68 bytes leftover after parsing attributes in process `syz.5.3338'.
[  250.208330][T14604] netlink: 32 bytes leftover after parsing attributes in process `syz.5.3338'.
[  250.319612][T14613] netlink: 52 bytes leftover after parsing attributes in process `syz.3.3341'.
[  250.372726][T14619] bridge0: entered promiscuous mode
[  250.385296][T14619] macsec1: entered promiscuous mode
[  250.391953][T14619] bridge0: port 3(macsec1) entered blocking state
[  250.398953][T14619] bridge0: port 3(macsec1) entered disabled state
[  250.405803][T14619] macsec1: entered allmulticast mode
[  250.411418][T14619] bridge0: entered allmulticast mode
[  250.417144][T14619] macsec1: left allmulticast mode
[  250.422248][T14619] bridge0: left allmulticast mode
[  250.428345][T14619] bridge0: left promiscuous mode
[  250.451205][T14626] wireguard0: entered promiscuous mode
[  250.456909][T14626] wireguard0: entered allmulticast mode
[  250.505399][T14628] loop5: detected capacity change from 0 to 164
[  250.614596][T14639] bridge0: entered promiscuous mode
[  250.620677][T14639] macsec1: entered promiscuous mode
[  250.623481][T14643] netlink: 68 bytes leftover after parsing attributes in process `syz.5.3352'.
[  250.627600][T14639] bridge0: port 3(macsec1) entered blocking state
[  250.636901][T14643] netlink: 32 bytes leftover after parsing attributes in process `syz.5.3352'.
[  250.642993][T14639] bridge0: port 3(macsec1) entered disabled state
[  250.663590][T14639] macsec1: entered allmulticast mode
[  250.670173][T14639] bridge0: entered allmulticast mode
[  250.677235][T14639] macsec1: left allmulticast mode
[  250.682761][T14639] bridge0: left allmulticast mode
[  250.694362][T14639] bridge0: left promiscuous mode
[  250.730099][T14650] netlink: 68 bytes leftover after parsing attributes in process `syz.5.3355'.
[  250.739648][T14650] netlink: 32 bytes leftover after parsing attributes in process `syz.5.3355'.
[  250.752296][T14644] wireguard0: entered promiscuous mode
[  250.758095][T14644] wireguard0: entered allmulticast mode
[  250.809395][T14656] netlink: 52 bytes leftover after parsing attributes in process `syz.5.3357'.
[  250.839739][T14652] loop2: detected capacity change from 0 to 164
[  250.857156][T14658] loop5: detected capacity change from 0 to 512
[  250.873046][T14658] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  250.882402][T14658] EXT4-fs (loop5): orphan cleanup on readonly fs
[  250.890401][T14658] EXT4-fs error (device loop5): ext4_do_update_inode:5624: inode #16: comm +}[@: corrupted inode contents
[  250.902788][T14658] EXT4-fs (loop5): Remounting filesystem read-only
[  250.913771][T14658] EXT4-fs (loop5): 1 truncate cleaned up
[  250.919826][  T124] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  250.931089][  T124] __quota_error: 619 callbacks suppressed
[  250.931119][  T124] Quota error (device loop5): write_blk: dquota write failed
[  250.944728][  T124] Quota error (device loop5): remove_free_dqentry: Can't write block (5) with free entries
[  250.955112][  T124] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  250.966139][  T124] Quota error (device loop5): write_blk: dquota write failed
[  250.974099][  T124] Quota error (device loop5): free_dqentry: Can't move quota data block (5) to free list
[  250.984667][  T124] EXT4-fs (loop5): Quota write (off=8, len=24) cancelled because transaction is not started
[  250.995095][  T124] Quota error (device loop5): v2_write_file_info: Can't write info structure
[  251.005863][  T124] Quota error (device loop5): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  251.072482][T14674] loop5: detected capacity change from 0 to 512
[  251.082379][   T29] audit: type=1326 audit(1760342743.156:69212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14607 comm="syz.4.3339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f714544eec9 code=0x7ffc0000
[  251.106926][   T29] audit: type=1326 audit(1760342743.156:69213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14607 comm="syz.4.3339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f714544eec9 code=0x7ffc0000
[  251.155440][T14680] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  251.157997][T14674] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  251.174910][T14674] EXT4-fs (loop5): orphan cleanup on readonly fs
[  251.183918][T14674] EXT4-fs error (device loop5): ext4_do_update_inode:5624: inode #16: comm +}[@: corrupted inode contents
[  251.196321][T14674] EXT4-fs (loop5): Remounting filesystem read-only
[  251.203526][T14674] EXT4-fs (loop5): 1 truncate cleaned up
[  251.210887][  T124] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  251.222450][  T124] Quota error (device loop5): write_blk: dquota write failed
[  251.230440][  T124] Quota error (device loop5): remove_free_dqentry: Can't write block (5) with free entries
[  251.241187][  T124] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  251.257564][T14680] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  251.348047][  T124] EXT4-fs (loop5): Quota write (off=8, len=24) cancelled because transaction is not started
[  251.430322][T14680] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  251.511132][T14680] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  251.650711][T14711] wireguard0: entered promiscuous mode
[  251.657201][T14711] wireguard0: entered allmulticast mode
[  251.695015][T14719] bridge0: entered promiscuous mode
[  251.700648][T14719] macsec1: entered promiscuous mode
[  251.707259][T14719] bridge0: port 3(macsec1) entered blocking state
[  251.713945][T14719] bridge0: port 3(macsec1) entered disabled state
[  251.740457][T14719] macsec1: entered allmulticast mode
[  251.745946][T14719] bridge0: entered allmulticast mode
[  251.783589][T14719] macsec1: left allmulticast mode
[  251.788843][T14719] bridge0: left allmulticast mode
[  251.817572][T14724] loop4: detected capacity change from 0 to 512
[  251.825920][T14719] bridge0: left promiscuous mode
[  251.831972][T14724] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  251.857585][T14722] wireguard1: entered promiscuous mode
[  251.863223][T14722] wireguard1: entered allmulticast mode
[  251.878957][T14724] EXT4-fs (loop4): orphan cleanup on readonly fs
[  251.905019][T14724] EXT4-fs error (device loop4): ext4_do_update_inode:5624: inode #16: comm +}[@: corrupted inode contents
[  251.956813][T14724] EXT4-fs (loop4): Remounting filesystem read-only
[  251.965696][T14724] EXT4-fs (loop4): 1 truncate cleaned up
[  251.972615][  T124] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  251.983434][  T124] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  252.000717][  T124] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[  252.217815][T14757] wireguard0: entered promiscuous mode
[  252.223430][T14757] wireguard0: entered allmulticast mode
[  252.462172][T14785] loop4: detected capacity change from 0 to 1024
[  252.469562][T14785] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  252.487226][T14785] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.3400: Invalid block bitmap block 0 in block_group 0
[  252.506704][T14785] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.3400: Failed to acquire dquot type 0
[  252.536946][T14785] EXT4-fs error (device loop4): ext4_free_blocks:6706: comm syz.4.3400: Freeing blocks not in datazone - block = 0, count = 4096
[  252.559026][T14785] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.3400: Invalid inode bitmap blk 0 in block_group 0
[  252.576543][ T2766] EXT4-fs error (device loop4): ext4_release_dquot:6981: comm kworker/u8:6: Failed to release dquot type 0
[  252.624019][T14785] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[  252.633249][T14785] EXT4-fs (loop4): 1 orphan inode deleted
[  252.720720][T14796] netdevsim netdevsim6 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  252.779336][T14796] netdevsim netdevsim6 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  252.840825][T14796] netdevsim netdevsim6 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  252.898731][T14796] netdevsim netdevsim6 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  252.999290][  T124] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  253.010589][  T124] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  253.021994][  T124] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  253.048132][  T124] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  253.213850][T14815] bridge0: entered promiscuous mode
[  253.227312][T14813] loop6: detected capacity change from 0 to 1024
[  253.230684][T14815] macsec1: entered promiscuous mode
[  253.240137][T14815] bridge0: port 3(macsec1) entered blocking state
[  253.247007][T14815] bridge0: port 3(macsec1) entered disabled state
[  253.254576][T14815] macsec1: entered allmulticast mode
[  253.260058][T14815] bridge0: entered allmulticast mode
[  253.265923][T14813] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  253.277192][T14815] macsec1: left allmulticast mode
[  253.282962][T14815] bridge0: left allmulticast mode
[  253.289445][T14813] EXT4-fs error (device loop6): ext4_read_block_bitmap_nowait:483: comm syz.6.3409: Invalid block bitmap block 0 in block_group 0
[  253.304053][T14815] bridge0: left promiscuous mode
[  253.304235][T14813] EXT4-fs error (device loop6): ext4_acquire_dquot:6945: comm syz.6.3409: Failed to acquire dquot type 0
[  253.322533][T14813] EXT4-fs error (device loop6): ext4_free_blocks:6706: comm syz.6.3409: Freeing blocks not in datazone - block = 0, count = 4096
[  253.337214][T14813] EXT4-fs error (device loop6): ext4_read_inode_bitmap:139: comm syz.6.3409: Invalid inode bitmap blk 0 in block_group 0
[  253.351705][T14813] EXT4-fs error (device loop6) in ext4_free_inode:361: Corrupt filesystem
[  253.356578][   T52] EXT4-fs error (device loop6): ext4_release_dquot:6981: comm kworker/u8:3: Failed to release dquot type 0
[  253.360711][T14813] EXT4-fs (loop6): 1 orphan inode deleted
[  253.378242][T14819] wireguard0: entered promiscuous mode
[  253.383991][T14819] wireguard0: entered allmulticast mode
[  253.437564][T14824] loop5: detected capacity change from 0 to 128
[  253.445358][T14824] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a842c018, mo2=0002]
[  253.454015][T14824] System zones: 1-3, 19-19, 35-36
[  253.460229][T14824] ext4 filesystem being mounted at /390/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  253.504057][T14824] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  253.513413][T14824] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  253.539646][T14824] EXT4-fs (loop5): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  253.641415][T14841] netdevsim netdevsim6 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  253.678157][T14841] netdevsim netdevsim6 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  253.706676][T14846] loop4: detected capacity change from 0 to 1024
[  253.717211][T14846] EXT4-fs: Ignoring removed mblk_io_submit option
[  253.723843][T14846] EXT4-fs: Ignoring removed nobh option
[  253.729493][T14846] EXT4-fs: Ignoring removed bh option
[  253.798826][T14841] netdevsim netdevsim6 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  253.861482][T14841] netdevsim netdevsim6 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  253.901560][   T37] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  253.901608][   T37] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  253.901781][   T37] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  253.939310][ T2766] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  254.090152][T14860] loop3: detected capacity change from 0 to 512
[  254.090711][T14860] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  254.100764][T14860] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 548)
[  254.129667][T14860] FAT-fs (loop3): error, fat_free: invalid cluster chain (i_pos 548)
[  254.129707][T14860] FAT-fs (loop3): error, fat_free: invalid cluster chain (i_pos 548)
[  254.144445][T14858] loop2: detected capacity change from 0 to 1024
[  254.154107][T14858] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  254.156307][T14858] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.3426: Invalid block bitmap block 0 in block_group 0
[  254.187289][T14858] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.3426: Failed to acquire dquot type 0
[  254.187548][T14858] EXT4-fs error (device loop2): ext4_free_blocks:6706: comm syz.2.3426: Freeing blocks not in datazone - block = 0, count = 4096
[  254.187824][T14858] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.3426: Invalid inode bitmap blk 0 in block_group 0
[  254.240555][   T37] EXT4-fs error (device loop2): ext4_release_dquot:6981: comm kworker/u8:2: Failed to release dquot type 0
[  254.276891][T14858] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[  254.277028][T14858] EXT4-fs (loop2): 1 orphan inode deleted
[  254.293332][T14865] loop5: detected capacity change from 0 to 164
[  254.577617][T14877] bridge0: entered promiscuous mode
[  254.583458][T14877] macsec1: entered promiscuous mode
[  254.591077][T14877] bridge0: port 3(macsec1) entered blocking state
[  254.597988][T14877] bridge0: port 3(macsec1) entered disabled state
[  254.605369][T14877] macsec1: entered allmulticast mode
[  254.611040][T14877] bridge0: entered allmulticast mode
[  254.617192][T14877] macsec1: left allmulticast mode
[  254.622337][T14877] bridge0: left allmulticast mode
[  254.630880][T14877] bridge0: left promiscuous mode
[  254.648031][T14881] bridge0: entered promiscuous mode
[  254.653648][T14881] macsec1: entered promiscuous mode
[  254.660200][T14881] bridge0: port 3(macsec1) entered blocking state
[  254.666744][T14881] bridge0: port 3(macsec1) entered disabled state
[  254.673728][T14881] macsec1: entered allmulticast mode
[  254.679141][T14881] bridge0: entered allmulticast mode
[  254.686838][T14881] macsec1: left allmulticast mode
[  254.691943][T14881] bridge0: left allmulticast mode
[  254.699023][T14881] bridge0: left promiscuous mode
[  254.725723][T14882] wireguard0: entered promiscuous mode
[  254.731550][T14882] wireguard0: entered allmulticast mode
[  254.750724][T14884] loop4: detected capacity change from 0 to 164
[  254.881212][T14897] loop4: detected capacity change from 0 to 512
[  254.908794][T14897] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  254.926597][T14897] EXT4-fs (loop4): orphan cleanup on readonly fs
[  254.936621][T14897] EXT4-fs error (device loop4): ext4_do_update_inode:5624: inode #16: comm +}[@: corrupted inode contents
[  254.958386][T14897] EXT4-fs (loop4): Remounting filesystem read-only
[  254.971337][T14897] EXT4-fs (loop4): 1 truncate cleaned up
[  254.997523][T14902] ip6t_srh: unknown srh match flags  4000
[  255.003665][  T311] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  255.014584][  T311] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  255.030575][T14902] loop5: detected capacity change from 0 to 512
[  255.037455][T14902] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  255.075187][T14902] FAT-fs (loop5): error, fat_get_cluster: invalid cluster chain (i_pos 548)
[  255.084641][T14902] FAT-fs (loop5): error, fat_free: invalid cluster chain (i_pos 548)
[  255.093237][  T311] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[  255.103782][T14902] FAT-fs (loop5): error, fat_free: invalid cluster chain (i_pos 548)
[  256.098860][   T29] kauditd_printk_skb: 503 callbacks suppressed
[  256.098875][   T29] audit: type=1400 audit(1760342748.176:69692): avc:  granted  { setsecparam } for  pid=14928 comm="syz.2.3453" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[  256.144794][T14932] FAULT_INJECTION: forcing a failure.
[  256.144794][T14932] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  256.158215][T14932] CPU: 1 UID: 0 PID: 14932 Comm: syz.5.3454 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  256.158249][T14932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  256.158267][T14932] Call Trace:
[  256.158276][T14932]  <TASK>
[  256.158315][T14932]  __dump_stack+0x1d/0x30
[  256.158343][T14932]  dump_stack_lvl+0xe8/0x140
[  256.158368][T14932]  dump_stack+0x15/0x1b
[  256.158390][T14932]  should_fail_ex+0x265/0x280
[  256.158472][T14932]  should_fail+0xb/0x20
[  256.158569][T14932]  should_fail_usercopy+0x1a/0x20
[  256.158598][T14932]  _copy_from_user+0x1c/0xb0
[  256.158685][T14932]  __copy_msghdr+0x244/0x300
[  256.158727][T14932]  ___sys_sendmsg+0x109/0x1d0
[  256.158832][T14932]  __x64_sys_sendmsg+0xd4/0x160
[  256.158903][T14932]  x64_sys_call+0x191e/0x3000
[  256.158990][T14932]  do_syscall_64+0xd2/0x200
[  256.159024][T14932]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  256.159059][T14932]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  256.159082][T14932]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  256.159168][T14932] RIP: 0033:0x7f92904ceec9
[  256.159189][T14932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  256.159237][T14932] RSP: 002b:00007f928ef37038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  256.159327][T14932] RAX: ffffffffffffffda RBX: 00007f9290725fa0 RCX: 00007f92904ceec9
[  256.159345][T14932] RDX: 0000000004008030 RSI: 0000200000000400 RDI: 0000000000000003
[  256.159362][T14932] RBP: 00007f928ef37090 R08: 0000000000000000 R09: 0000000000000000
[  256.159377][T14932] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  256.159389][T14932] R13: 00007f9290726038 R14: 00007f9290725fa0 R15: 00007fff068dca48
[  256.159410][T14932]  </TASK>
[  256.355990][T14935] __nla_validate_parse: 18 callbacks suppressed
[  256.356010][T14935] netlink: 52 bytes leftover after parsing attributes in process `syz.5.3456'.
[  256.410516][   T29] audit: type=1326 audit(1760342748.486:69693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14938 comm="syz.2.3458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32b4edeec9 code=0x7ffc0000
[  256.435280][   T29] audit: type=1326 audit(1760342748.486:69694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14938 comm="syz.2.3458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f32b4edeec9 code=0x7ffc0000
[  256.459171][   T29] audit: type=1326 audit(1760342748.486:69695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14938 comm="syz.2.3458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32b4edeec9 code=0x7ffc0000
[  256.483083][   T29] audit: type=1326 audit(1760342748.486:69696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14938 comm="syz.2.3458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f32b4edeec9 code=0x7ffc0000
[  256.507523][   T29] audit: type=1326 audit(1760342748.486:69697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14938 comm="syz.2.3458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32b4edeec9 code=0x7ffc0000
[  256.531794][   T29] audit: type=1326 audit(1760342748.486:69698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14938 comm="syz.2.3458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f32b4edeec9 code=0x7ffc0000
[  256.555767][   T29] audit: type=1326 audit(1760342748.486:69699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14938 comm="syz.2.3458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32b4edeec9 code=0x7ffc0000
[  256.580453][   T29] audit: type=1326 audit(1760342748.486:69700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14938 comm="syz.2.3458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=325 compat=0 ip=0x7f32b4edeec9 code=0x7ffc0000
[  256.596546][T14945] bridge0: entered promiscuous mode
[  256.604831][   T29] audit: type=1326 audit(1760342748.486:69701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14938 comm="syz.2.3458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32b4edeec9 code=0x7ffc0000
[  256.634881][T14945] macsec1: entered promiscuous mode
[  256.647875][T14945] bridge0: port 3(macsec1) entered blocking state
[  256.654685][T14945] bridge0: port 3(macsec1) entered disabled state
[  256.672500][T14945] macsec1: entered allmulticast mode
[  256.678231][T14945] bridge0: entered allmulticast mode
[  256.690596][T14940] loop2: detected capacity change from 0 to 1024
[  256.698198][T14940] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  256.709167][T14945] macsec1: left allmulticast mode
[  256.714684][T14945] bridge0: left allmulticast mode
[  256.720338][T14945] bridge0: left promiscuous mode
[  256.721696][T14940] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.3458: Invalid block bitmap block 0 in block_group 0
[  256.740176][T14940] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.3458: Failed to acquire dquot type 0
[  256.752331][T14940] EXT4-fs error (device loop2): ext4_free_blocks:6706: comm syz.2.3458: Freeing blocks not in datazone - block = 0, count = 4096
[  256.772875][T14950] loop4: detected capacity change from 0 to 1024
[  256.780174][T14940] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.3458: Invalid inode bitmap blk 0 in block_group 0
[  256.797464][   T37] EXT4-fs error (device loop2): ext4_release_dquot:6981: comm kworker/u8:2: Failed to release dquot type 0
[  256.811516][T14940] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[  256.830504][T14940] EXT4-fs (loop2): 1 orphan inode deleted
[  256.838775][T14950] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  256.862190][T14940] EXT4-fs mount: 47 callbacks suppressed
[  256.862210][T14940] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  256.865507][T14957] loop5: detected capacity change from 0 to 1024
[  256.891395][T14957] EXT4-fs: Ignoring removed mblk_io_submit option
[  256.898363][T14957] EXT4-fs: Ignoring removed nobh option
[  256.904475][T14957] EXT4-fs: Ignoring removed bh option
[  256.916299][   T52] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  256.928012][T14950] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.3461: Invalid block bitmap block 0 in block_group 0
[  256.942164][T14950] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.3461: Failed to acquire dquot type 0
[  256.943402][T14960] loop3: detected capacity change from 0 to 512
[  256.954229][T14950] EXT4-fs error (device loop4): ext4_free_blocks:6706: comm syz.4.3461: Freeing blocks not in datazone - block = 0, count = 4096
[  256.967563][   T52] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  256.983221][T14950] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.3461: Invalid inode bitmap blk 0 in block_group 0
[  256.997419][T14950] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[  256.997418][   T37] EXT4-fs error (device loop4): ext4_release_dquot:6981: comm kworker/u8:2: Failed to release dquot type 0
[  257.001001][   T52] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  257.027286][T14950] EXT4-fs (loop4): 1 orphan inode deleted
[  257.039874][T14960] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  257.043745][T14950] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  257.057774][T14957] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  257.064096][   T52] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  257.072869][T14960] EXT4-fs (loop3): orphan cleanup on readonly fs
[  257.148959][T14960] EXT4-fs error (device loop3): ext4_do_update_inode:5624: inode #16: comm +}[@: corrupted inode contents
[  257.149131][T14960] EXT4-fs (loop3): Remounting filesystem read-only
[  257.149292][T14960] EXT4-fs (loop3): 1 truncate cleaned up
[  257.149371][   T52] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  257.149435][   T52] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  257.149528][   T52] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started
[  257.150037][T14960] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  257.178527][T12245] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.250072][T14973] FAULT_INJECTION: forcing a failure.
[  257.250072][T14973] name failslab, interval 1, probability 0, space 0, times 0
[  257.250146][T14973] CPU: 1 UID: 0 PID: 14973 Comm: syz.6.3467 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  257.250176][T14973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  257.250191][T14973] Call Trace:
[  257.250197][T14973]  <TASK>
[  257.250266][T14973]  __dump_stack+0x1d/0x30
[  257.250294][T14973]  dump_stack_lvl+0xe8/0x140
[  257.250321][T14973]  dump_stack+0x15/0x1b
[  257.250410][T14973]  should_fail_ex+0x265/0x280
[  257.250464][T14973]  should_failslab+0x8c/0xb0
[  257.250501][T14973]  kmem_cache_alloc_noprof+0x50/0x480
[  257.250547][T14973]  ? audit_log_start+0x342/0x720
[  257.250578][T14973]  audit_log_start+0x342/0x720
[  257.250604][T14973]  ? kstrtouint+0x76/0xc0
[  257.250649][T14973]  audit_seccomp+0x48/0x100
[  257.250752][T14973]  ? __seccomp_filter+0x82d/0x1250
[  257.250787][T14973]  __seccomp_filter+0x83e/0x1250
[  257.250825][T14973]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  257.250913][T14973]  ? vfs_write+0x7e8/0x960
[  257.250941][T14973]  ? __rcu_read_unlock+0x4f/0x70
[  257.250975][T14973]  ? __fget_files+0x184/0x1c0
[  257.251015][T14973]  __secure_computing+0x82/0x150
[  257.251051][T14973]  syscall_trace_enter+0xcf/0x1e0
[  257.251147][T14973]  do_syscall_64+0xac/0x200
[  257.251180][T14973]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  257.251217][T14973]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  257.251262][T14973]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  257.251373][T14973] RIP: 0033:0x7ff2dc39eec9
[  257.251394][T14973] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  257.251444][T14973] RSP: 002b:00007ff2dae07038 EFLAGS: 00000246 ORIG_RAX: 000000000000014e
[  257.251468][T14973] RAX: ffffffffffffffda RBX: 00007ff2dc5f5fa0 RCX: 00007ff2dc39eec9
[  257.251485][T14973] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000200000000600
[  257.251532][T14973] RBP: 00007ff2dae07090 R08: 0000000000000000 R09: 0000000000000000
[  257.251549][T14973] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  257.251601][T14973] R13: 00007ff2dc5f6038 R14: 00007ff2dc5f5fa0 R15: 00007ffc33f97f58
[  257.251702][T14973]  </TASK>
[  257.419290][T14980] netlink: 52 bytes leftover after parsing attributes in process `syz.6.3470'.
[  257.435284][T13791] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.629650][T12775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.725141][ T7575] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.841349][T15000] loop5: detected capacity change from 0 to 512
[  257.917804][T14997] loop4: detected capacity change from 0 to 164
[  257.939688][T15000] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  257.948416][T15000] EXT4-fs (loop5): orphan cleanup on readonly fs
[  257.965443][T15000] EXT4-fs error (device loop5): ext4_do_update_inode:5624: inode #16: comm +}[@: corrupted inode contents
[  257.979420][T15000] EXT4-fs (loop5): Remounting filesystem read-only
[  257.988483][T15000] EXT4-fs (loop5): 1 truncate cleaned up
[  257.994354][   T52] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  258.005397][   T52] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  258.059351][   T52] EXT4-fs (loop5): Quota write (off=8, len=24) cancelled because transaction is not started
[  258.071096][T15000] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  258.110374][ T7575] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  258.173954][T15025] FAULT_INJECTION: forcing a failure.
[  258.173954][T15025] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  258.187441][T15025] CPU: 0 UID: 0 PID: 15025 Comm: syz.3.3483 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  258.187534][T15025] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  258.187549][T15025] Call Trace:
[  258.187556][T15025]  <TASK>
[  258.187563][T15025]  __dump_stack+0x1d/0x30
[  258.187588][T15025]  dump_stack_lvl+0xe8/0x140
[  258.187677][T15025]  dump_stack+0x15/0x1b
[  258.187698][T15025]  should_fail_ex+0x265/0x280
[  258.187734][T15025]  should_fail+0xb/0x20
[  258.187885][T15025]  should_fail_usercopy+0x1a/0x20
[  258.187909][T15025]  strncpy_from_user+0x25/0x230
[  258.187939][T15025]  ? __rcu_read_unlock+0x4f/0x70
[  258.187970][T15025]  path_removexattrat+0x82/0x570
[  258.188078][T15025]  ? array_map_lookup_elem+0x85/0x90
[  258.188157][T15025]  __x64_sys_fremovexattr+0x35/0x40
[  258.188190][T15025]  x64_sys_call+0x4e0/0x3000
[  258.188215][T15025]  do_syscall_64+0xd2/0x200
[  258.188296][T15025]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  258.188405][T15025]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  258.188430][T15025]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  258.188455][T15025] RIP: 0033:0x7f4ee680eec9
[  258.188473][T15025] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  258.188518][T15025] RSP: 002b:00007f4ee5277038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c7
[  258.188541][T15025] RAX: ffffffffffffffda RBX: 00007f4ee6a65fa0 RCX: 00007f4ee680eec9
[  258.188555][T15025] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000006
[  258.188570][T15025] RBP: 00007f4ee5277090 R08: 0000000000000000 R09: 0000000000000000
[  258.188585][T15025] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  258.188600][T15025] R13: 00007f4ee6a66038 R14: 00007f4ee6a65fa0 R15: 00007fff272d6bd8
[  258.188623][T15025]  </TASK>
[  258.383316][T15029] netlink: 52 bytes leftover after parsing attributes in process `syz.5.3482'.
[  258.731954][T15051] wireguard0: entered promiscuous mode
[  258.737865][T15051] wireguard0: entered allmulticast mode
[  258.916225][T15066] loop2: detected capacity change from 0 to 1024
[  258.942376][T12775] ==================================================================
[  258.950735][T12775] BUG: KCSAN: data-race in shmem_add_to_page_cache / shmem_getattr
[  258.958944][T12775] 
[  258.961325][T12775] read-write to 0xffff88810104b698 of 8 bytes by task 15068 on cpu 0:
[  258.969880][T12775]  shmem_add_to_page_cache+0x414/0x530
[  258.975389][T12775]  shmem_get_folio_gfp+0x4e8/0xd60
[  258.980758][T12775]  shmem_write_begin+0xa8/0x190
[  258.985903][T12775]  generic_perform_write+0x184/0x490
[  258.991342][T12775]  shmem_file_write_iter+0xc5/0xf0
[  258.996587][T12775]  __kernel_write_iter+0x2d6/0x540
[  259.001929][T12775]  dump_user_range+0x61e/0x8f0
[  259.006740][T12775]  elf_core_dump+0x1de7/0x1f80
[  259.011771][T12775]  coredump_write+0xb12/0xe30
[  259.016540][T12775]  vfs_coredump+0x143a/0x20d0
[  259.021325][T12775]  get_signal+0xd84/0xf70
[  259.025696][T12775]  arch_do_signal_or_restart+0x96/0x440
[  259.031459][T12775]  irqentry_exit_to_user_mode+0x5b/0xa0
[  259.037308][T12775]  irqentry_exit+0x12/0x50
[  259.042026][T12775]  asm_exc_page_fault+0x26/0x30
[  259.046914][T12775] 
[  259.049526][T12775] read to 0xffff88810104b698 of 8 bytes by task 12775 on cpu 1:
[  259.057471][T12775]  shmem_getattr+0x68/0x200
[  259.062036][T12775]  vfs_getattr_nosec+0x146/0x1e0
[  259.067205][T12775]  vfs_statx+0x113/0x390
[  259.071607][T12775]  vfs_fstatat+0x115/0x170
[  259.076159][T12775]  __se_sys_newfstatat+0x55/0x260
[  259.081419][T12775]  __x64_sys_newfstatat+0x55/0x70
[  259.086586][T12775]  x64_sys_call+0x135a/0x3000
[  259.091386][T12775]  do_syscall_64+0xd2/0x200
[  259.095940][T12775]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  259.101868][T12775] 
[  259.104239][T12775] value changed: 0x0000000000000271 -> 0x0000000000000272
[  259.111542][T12775] 
[  259.113977][T12775] Reported by Kernel Concurrency Sanitizer on:
[  259.120294][T12775] CPU: 1 UID: 0 PID: 12775 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(voluntary) 
[  259.130819][T12775] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  259.140999][T12775] ==================================================================
[  259.187559][T15066] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  259.268086][T15066] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.3494: Invalid block bitmap block 0 in block_group 0
[  259.281943][T15066] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.3494: Failed to acquire dquot type 0
[  259.293692][T15066] EXT4-fs error (device loop2): ext4_free_blocks:6706: comm syz.2.3494: Freeing blocks not in datazone - block = 0, count = 4096
[  259.316538][T15066] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.3494: Invalid inode bitmap blk 0 in block_group 0
[  259.336584][   T52] EXT4-fs error (device loop2): ext4_release_dquot:6981: comm kworker/u8:3: Failed to release dquot type 0
[  259.349331][T15066] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[  259.376556][T15066] EXT4-fs (loop2): 1 orphan inode deleted
[  259.382837][T15066] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  259.620054][T13791] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.