last executing test programs:

1.635204798s ago: executing program 3 (id=2549):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0xe)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0xffffff08, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r1, 0x40047438, &(0x7f0000000180)=""/246)
ioctl$PPPIOCSFLAGS1(r1, 0x80047458, 0x0)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x2800, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000480)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000440)={&(0x7f0000000340)=@newnexthop={0x30, 0x68, 0x400, 0x70bd2a, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, 0x22}, [@NHA_BLACKHOLE={0x4}, @NHA_ENCAP_TYPE={0x6, 0x7, 0x3}, @NHA_FDB={0x4}, @NHA_ID={0x8, 0x1, 0x2}]}, 0x30}, 0x1, 0x0, 0x0, 0x4040840}, 0x44051)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r3, 0x0, 0x1}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e000000200000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000400000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000044000500000000000000000000000000000000000000000033"], 0xfc}}, 0x0)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r5, &(0x7f0000000080)={0x10, 0x0, 0x0, 0xfffffffffffffffd}, 0xc)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
syz_open_dev$usbfs(0x0, 0x400000001fc, 0x301)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
r6 = socket(0x2b, 0x1, 0x1)
connect$inet6(r6, &(0x7f0000000080)={0xa, 0x4e21, 0x561, @remote, 0xd}, 0x1c)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000840)={r2, 0x20, &(0x7f0000000800)={&(0x7f0000000700)=""/54, 0x36, 0x0, &(0x7f0000000740)=""/171, 0xab}}, 0x10)
syz_emit_ethernet(0x8e, &(0x7f0000000280)={@broadcast, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x80, 0xfffd, 0x0, 0x0, 0x1, 0x0, @broadcast, @local}, @redirect={0x5, 0x0, 0x0, @multicast1, {0x17, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @rand_addr=0x64010101, @broadcast, {[@timestamp_addr={0x44, 0xc, 0x0, 0x1, 0x0, [{@private=0xa010101, 0x4e210000}]}, @timestamp_addr={0x44, 0x3c, 0x0, 0x1, 0x0, [{@multicast1}, {}, {@empty}, {@private, 0x8}, {@empty}, {@initdev={0xac, 0x1e, 0x0, 0x0}}, {@empty, 0xfffffffc}]}]}}, "b700000400fb4d00"}}}}}, 0x0)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000a40)={0xffffffffffffffff, 0x10001, 0xc}, 0xc)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000040)={'lo\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000003c0)=@newqdisc={0x70, 0x24, 0x4ee4e6a52ff56561, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {0x0, 0x8}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x44, 0x2, [@TCA_FQ_RATE_ENABLE={0x8}, @TCA_FQ_FLOW_PLIMIT={0x8, 0x2, 0x3}, @TCA_FQ_ORPHAN_MASK={0x0, 0xa, 0xc}, @TCA_FQ_RATE_ENABLE={0x8, 0x5, 0x1}, @TCA_FQ_FLOW_DEFAULT_RATE={0x8, 0x6, 0xd}, @TCA_FQ_BUCKETS_LOG={0x8, 0x8, 0xa}, @TCA_FQ_LOW_RATE_THRESHOLD={0x8, 0xb, 0x3b}, @TCA_FQ_BUCKETS_LOG={0x8, 0x8, 0x17}]}}]}, 0x72}}, 0x0)

1.23738605s ago: executing program 0 (id=2561):
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x113c80, 0x0)
ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000200)={0x0, &(0x7f0000000100)})
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000202300800000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x49, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
geteuid()
mq_open(&(0x7f00000000c0)='!selin\x95}\x06a\x03\x00\x00\x00\x00\x00\x00\x00\xa8x\x00\xb97\xb7', 0x6e93ebbbcc0884f2, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x2, 0x4, 0x4, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x5, 0x4, 0x7, 0x0, r2, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x8d40, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0x9264}, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
socket$rds(0x15, 0x5, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket(0xa, 0x3, 0x3a)
socket$inet6_udp(0xa, 0x2, 0x0)
r3 = syz_io_uring_setup(0x117, &(0x7f0000000300)={0x0, 0x0, 0x10100, 0x200000, 0x1000000}, &(0x7f0000000100)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='rdma.current\x00', 0x275a, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0xa, 0x4, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
write$UHID_CREATE2(r6, 0x0, 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r6, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r3, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

1.215114261s ago: executing program 0 (id=2563):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f0000000280), 0x1, 0x792, &(0x7f0000001a40)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x141842, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r0, &(0x7f0000004200)='t', 0x1)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
ftruncate(r1, 0x2007ffb)
r2 = open(&(0x7f0000000000)='./bus\x00', 0x64942, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x40802, 0x0)
sendfile(r3, r2, 0x0, 0x1000200201005)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
splice(r2, &(0x7f0000000140)=0xabbd, 0xffffffffffffffff, &(0x7f0000000200)=0x8, 0x4, 0x8)

1.107997322s ago: executing program 2 (id=2568):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
syz_open_procfs(0x0, 0x0)
syz_open_procfs(0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(0xffffffffffffffff, 0x8982, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x7f, 0x7ffc0002}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bf"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4005, &(0x7f0000000040)=0x81, 0x5, 0x0)
set_mempolicy_home_node(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x0) (fail_nth: 3)
timer_create(0x5, &(0x7f0000000380)={0x0, 0xc, 0x4}, &(0x7f0000000400))
msync(&(0x7f00002d6000/0x2000)=nil, 0x2000, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000002c0)=0x1)

1.004537673s ago: executing program 2 (id=2569):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB="050000000000080000020b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x10000002}, 0x18)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'macvlan1\x00'})
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100000, 0x0, 0x0, 0x6, 0x3, 0x10, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'ipvlan0\x00'})
r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r3 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000300)=@broute={'broute\x00', 0x20, 0x0, 0x90, [0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000040], 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='\x00'/25]}, 0x91)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$selinux_load(r2, &(0x7f0000000000)=ANY=[], 0x2000)

920.611473ms ago: executing program 2 (id=2571):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000780)={'dummy0\x00', <r4=>0x0})
sendmsg$ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010026bd6000000000002d9300000c00018008000100", @ANYRES32=r4], 0x20}, 0x1, 0x0, 0x0, 0xd4}, 0x24008000)

873.437664ms ago: executing program 2 (id=2573):
socketpair$unix(0x1, 0x1, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'lo\x00'})
mlockall(0x3)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/bus/input/devices\x00', 0x0, 0x0)
bpf$LINK_DETACH(0x22, &(0x7f0000000300)=r0, 0x4)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
r3 = syz_open_procfs(0x0, &(0x7f0000000380)='attr/exec\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000880)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
r4 = syz_io_uring_setup(0x2e3b, &(0x7f0000000240)={0x0, 0x482b, 0x10100, 0x1}, &(0x7f00000003c0)=<r5=>0x0, &(0x7f0000000300)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r3, 0x0, &(0x7f0000000340)=[{&(0x7f00000002c0)=""/9, 0x9}], 0x1})
io_uring_enter(r4, 0x167, 0xa1ff, 0x0, 0x0, 0x0)
bind$inet6(r1, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r1, 0xfff)
syz_emit_ethernet(0x4a, &(0x7f0000000440)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c2a455ef49b62b09020300000386dd6000d60000140600fe8000000000000000000000000000bbfe80000000000000000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5002000890780000"], 0x0)
syz_emit_ethernet(0x8a, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000086dd600a843500540600fe8000000000000000000000000000bbfe8000000000000000000000000000aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5002000090780000fe06e2d4c3d912d049b835eae6ad82e275205e55614983f5cf1cc33d8903030003030004020402131227406263e43d5959a166a23bd1116edc0000000000000000000000000035cc4fee7ddc73dfb280030d540a4eccb26a8282c75cfb75bae44baa7a6d83b9d55483bb3e63ab0fc5b8e50d81274ca41df8afeac0b9eebdcacfec684a3b81f92fa877409eb196d9929cdd29b48c495e8500aeed02adbb5c591d1be583657ce0d947abe18ee10ed6c810551f5f7d28e4ba2918f349"], 0x0)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x800, 0x0)
r8 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000007000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000300)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r9, 0x0, 0xffffffffffffffff}, 0x18)
r10 = add_key$keyring(&(0x7f00000001c0), &(0x7f00000002c0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$link(0x8, r10, r10)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f00000003c0)=0x1)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
socket$inet6_udp(0xa, 0x2, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe80000000000000875a65969ff57b00000000000000000000000000ac1414aa2c"], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x46, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5, @void, @value}, 0x94)

814.806334ms ago: executing program 4 (id=2575):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={r0, 0x20, &(0x7f0000000100)={0x0, 0x0, <r1=>0x0, 0x0}}, 0x10)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000000)=r1, 0x4)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x2, 0x10010, r0, 0x38166000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$rds(0x15, 0x5, 0x0)
setsockopt$RDS_RECVERR(r3, 0x114, 0x5, &(0x7f0000000440), 0x4)
io_uring_register$IORING_REGISTER_RESTRICTIONS(0xffffffffffffffff, 0xb, 0x0, 0x0)
syz_read_part_table(0x60d, &(0x7f0000002240)="$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")
r4 = creat(&(0x7f0000000100)='./bus\x00', 0x187)
r5 = syz_io_uring_setup(0x10a, &(0x7f0000000140)={0x0, 0x9381, 0x80, 0x7ffff, 0x2000088}, &(0x7f00000004c0)=<r6=>0x0, &(0x7f0000000200)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
ioctl$IOCTL_GET_NCIDEV_IDX(r4, 0x0, &(0x7f0000000000)=<r8=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f00000002c0)=@IORING_OP_SENDMSG={0x9, 0x18, 0x0, r4, 0x0, &(0x7f0000000540)={&(0x7f0000000240)=@nfc_llcp={0x27, r8, 0x1, 0x1, 0x0, 0xfd, "16841ac9a8a96ef2a228d8fa0a3157f5fcac8a5c4884b354cc3054c45230d5ffbd7b1dcd23782577a95ebe6c13f056054a2184477c87a18592ec56b209efbb", 0x27}, 0x80, &(0x7f0000000500)=[{&(0x7f00000003c0)="d57e34b5bca007a72c7cdeb8d0db6d43213b1d6ced94c1de62cd9215c99e599b6f48c337c59ce5bf75f5a30f171ccd3af6cf43f3284525498a10d0e65984857ff9dae80c69eb49b8e0977578df13a9f03041d7ac77a7572709b20e13a4785ed58292288a3d31f209d737b21e9dfbe52b6f92941359d13d1356522670d48079a952bc76afb9a8db837f86385d3d85e4fd00e16d7884e9203bdddb1ef0124d33df015d0d55d513deda938b326e24afc0ff7d4047dbc1aa3d67a92974e7fb9be6adf5b39ae222a6", 0xc6}, {&(0x7f0000002880)="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", 0xfe0}, {&(0x7f0000000300)="b5f42cac481e488c97e6d21b42f25d51d2058effd9260f53082e1cb3fdcfb32d9b638501f728703fbda656b7057448368b91d5d734465dc7ddaa70454c48110b843014854e508bfcb4d1cedcaf17dbca88d5ded0780acb97cc1957c2158d691f49495340c7c4d3ebf297ab6d7cae435c8805b90ebb5a3b3c29df21", 0x7b}], 0x3, &(0x7f0000003880)=[{0x58, 0x29, 0x3, "4852971afd175a28144a9ceececf615d40040df08788eda5341ef5f6ff90a9b31f60622667ef5054e4424e779c4c9bd6745a6c9ae9cc77d562f7e431b3965a0e8c6752ea0627f7"}, {0xc8, 0x3a, 0x8, "b7c45db18938c1f25213a7edeb341fd582fedb8b9c2dec9a34781f384c8f1733a507ca1a7c4a7d82befed8174c3071c7ee0c72316815c302a1a3d88762172336c08411b87aa6cb13abf7e1a135f922f6f5a893e211a3de67b86f6ae07f2f2f35b74a802d57d73d52255800589fa4756f3e036cf90e7eda0f4c94006c2a882f2d795ad4db168816e653ca80118a7d38f5811bdf515403abfa783603b6b935d8d161501217f198e4430dbc682c0215351eb5"}, {0x1000, 0x1, 0x8000, "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"}], 0x1120}, 0x0, 0x4004000, 0x1})
io_uring_enter(r5, 0x22e0, 0xaddf, 0x2, 0x0, 0x0)
keyctl$set_reqkey_keyring(0xe, 0x5)
r9 = open(&(0x7f0000000080)='./bus\x00', 0x147842, 0x49)
preadv2(r9, &(0x7f0000000040)=[{&(0x7f0000001200)=""/4096, 0xfffffdef}], 0x1, 0x0, 0x0, 0x0)

712.484945ms ago: executing program 1 (id=2577):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x1, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendmsg$inet(r2, &(0x7f0000000780)={&(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10, &(0x7f00000001c0)=[{&(0x7f0000000140)="be38", 0xffe7}], 0x1, &(0x7f00000004c0)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac1414aaac141400000000001400000000000000000000000700000007038b01000000005e15f32aa9988e60da6af674011b2a455370163705ff6db8fe99e02d5c23fecd3922873c70484cf959be1be72e9341a96fb1aa0c825d8aa4d9b88e8108d7b4073aacafd32f94591c94ddb8ac0acc3aac8ac1960818c53bc0bca554f571a2a134f78b7d55c61c500139014cf38980f0ed12e5f086073d98727cfeb96c1caed1a11815ddb48dd3a6c091fb"], 0x38}, 0x0)

711.810205ms ago: executing program 3 (id=2578):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r3 = dup(r2)
ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000001900)={0x2, {0xc, 0x4000, 0x0, 0x101, 0x0, 0x300}})
bind$inet6(0xffffffffffffffff, &(0x7f0000d84000)={0xa, 0x2, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0x9}, 0x1c)
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
r4 = inotify_init1(0x800)
r5 = inotify_init()
r6 = inotify_add_watch(r5, &(0x7f0000000240)='./file0\x00', 0x8c7)
inotify_rm_watch(r4, r6)
inotify_rm_watch(r3, r6)

665.309645ms ago: executing program 1 (id=2579):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback, 0x7}, 0x1c)
sendto$inet6(r0, &(0x7f0000000240)=':\x00', 0x2, 0x20000045, &(0x7f00000001c0)={0xa, 0x2, 0x398, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='cdg\x00', 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
syz_open_dev$loop(0x0, 0x75f, 0xa382)
memfd_create(&(0x7f0000000880)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc90\xb9voI\xa5/\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\x81\x00V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93\x9c5\xcf\t\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\x94\x13^\x13\xaf\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5', 0x0)
pwritev(0xffffffffffffffff, &(0x7f00000000c0), 0x0, 0x7ffffd, 0x4)
r1 = accept4(r0, 0x0, &(0x7f0000000280), 0x800)
shutdown(r1, 0x1)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x5}, 0x8)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
socket$unix(0x1, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xf, &(0x7f0000000300)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x7, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000002c0)='kmem_cache_free\x00', r3, 0x0, 0x8}, 0x18)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000200)='fib_table_lookup\x00', r4}, 0x10)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSARP(r5, 0x8955, &(0x7f0000000180)={{0x2, 0x0, @remote}, {0x20000010304, @dev}, 0x4, {0x2, 0x0, @multicast1=0xe000cc02}})

639.151535ms ago: executing program 3 (id=2580):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44000000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
pipe2$9p(&(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000a40)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@version_u}]}})

548.402446ms ago: executing program 4 (id=2581):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB="050000000000080000020b"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'macvlan1\x00'})
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100000, 0x0, 0x0, 0x6, 0x3, 0x10, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'ipvlan0\x00'})
r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r3 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000300)=@broute={'broute\x00', 0x20, 0x0, 0x90, [0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000040], 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='\x00'/25]}, 0x91)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$selinux_load(r2, &(0x7f0000000000)=ANY=[], 0x2000)

535.356146ms ago: executing program 3 (id=2582):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000181100"/20, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x30, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x19, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f00000002c0)='sched_kthread_work_queue_work\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020100000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a32000000001400000011001f"], 0x7c}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETRULE(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)={0x38, 0x7, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x2}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x38}}, 0x0)

477.773286ms ago: executing program 4 (id=2583):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000780)={'dummy0\x00', <r4=>0x0})
sendmsg$ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010026bd6000000000002d9300000c00018008000100", @ANYRES32=r4], 0x20}, 0x1, 0x0, 0x0, 0xd4}, 0x24008000)

447.011277ms ago: executing program 4 (id=2584):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000003c0)='kmem_cache_free\x00', r0}, 0x18)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000800)=@generic={&(0x7f00000007c0)='./file0\x00', 0x0, 0x10}, 0x18)

444.436457ms ago: executing program 3 (id=2585):
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x113c80, 0x0)
ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000200)={0x0, &(0x7f0000000100)})
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000202300800000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x49, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
geteuid()
mq_open(&(0x7f00000000c0)='!selin\x95}\x06a\x03\x00\x00\x00\x00\x00\x00\x00\xa8x\x00\xb97\xb7', 0x6e93ebbbcc0884f2, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x2, 0x4, 0x4, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x5, 0x4, 0x7, 0x0, r2, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x8d40, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0x9264}, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
socket$rds(0x15, 0x5, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket(0xa, 0x3, 0x3a)
socket$inet6_udp(0xa, 0x2, 0x0)
r3 = syz_io_uring_setup(0x117, &(0x7f0000000300)={0x0, 0x0, 0x10100, 0x200000, 0x1000000}, &(0x7f0000000100)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='rdma.current\x00', 0x275a, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0xa, 0x4, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
write$UHID_CREATE2(r6, 0x0, 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r6, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r3, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

413.124967ms ago: executing program 3 (id=2586):
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/resume', 0x169a82, 0x109)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000900)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x9, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3, 0x0, 0x10000}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000580)='btrfs_inode_mod_outstanding_extents\x00', r4, 0x0, 0xfffffffffffffffb}, 0x18)
sendfile(r1, r1, 0x0, 0xb)
r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$sock_inet_SIOCSIFDSTADDR(r5, 0x8918, &(0x7f0000000280)={'veth0_to_bond\x00', {0x2, 0x4e21, @rand_addr=0x401}})
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="38000000031401002abd7000fedbdf250900020073797a3000000000080041007278650014003300626f6e6430"], 0x38}, 0x1, 0x0, 0x0, 0x4000840}, 0x24004000)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x18)
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x24, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {0xf}, {0xe, 0xd}}}, 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000180)=ANY=[], 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r8}, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r10, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010700000000000000a6670000000800c300000000000800c4"], 0x2c}}, 0x0)
r11 = socket$nl_rdma(0x10, 0x3, 0x14)
unshare(0x62040200)
sendmsg$RDMA_NLDEV_CMD_DELLINK(r11, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)={0x18, 0x1404, 0x1, 0x70bd2d, 0x25dfdbfe, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8}]}, 0x18}, 0x1, 0x0, 0x0, 0x671ec167a4b72164}, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, 0x0, 0x0)

336.946767ms ago: executing program 0 (id=2587):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, 0x0, &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDGKBMODE(r2, 0x4bfa, &(0x7f0000000080))

334.897257ms ago: executing program 4 (id=2588):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB="050000000000080000020b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x10000002}, 0x18)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'macvlan1\x00'})
r3 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r4 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r4, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000300)=@broute={'broute\x00', 0x20, 0x0, 0x90, [0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000040], 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='\x00'/25]}, 0x91)
write$selinux_load(r3, &(0x7f0000000000)=ANY=[], 0x2000)

247.645908ms ago: executing program 4 (id=2589):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x3}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
recvmmsg(r2, &(0x7f0000001640)=[{{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000004c0)=""/4082, 0xff2}, {&(0x7f0000000200)=""/253, 0xfd}], 0x2}}], 0x56e, 0x0, 0x0)
sendmsg$nl_generic(r2, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002b40)=ANY=[@ANYBLOB="200000001000010700000000000000000a0000000c0002006e6c3830323131"], 0x20}}, 0x4000084)

210.892278ms ago: executing program 1 (id=2590):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_SETSEL(0xffffffffffffffff, 0x541c, &(0x7f0000001900)={0x2, {0xc, 0x4000, 0x0, 0x101, 0x0, 0x300}})
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000040), 0x4)
bind$inet6(0xffffffffffffffff, &(0x7f0000d84000)={0xa, 0x2, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0x9}, 0x1c)
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
r2 = inotify_init1(0x800)
r3 = inotify_init()
r4 = inotify_add_watch(r3, &(0x7f0000000240)='./file0\x00', 0x8c7)
inotify_rm_watch(r2, r4)
inotify_rm_watch(0xffffffffffffffff, r4)

140.418669ms ago: executing program 1 (id=2591):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={r0, 0x20, &(0x7f0000000100)={0x0, 0x0, <r1=>0x0, 0x0}}, 0x10)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000000)=r1, 0x4)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x2, 0x10010, r0, 0x38166000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$rds(0x15, 0x5, 0x0)
setsockopt$RDS_RECVERR(r3, 0x114, 0x5, &(0x7f0000000440), 0x4)
io_uring_register$IORING_REGISTER_RESTRICTIONS(0xffffffffffffffff, 0xb, 0x0, 0x0)
syz_read_part_table(0x60d, &(0x7f0000002240)="$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")
r4 = creat(&(0x7f0000000100)='./bus\x00', 0x187)
r5 = syz_io_uring_setup(0x10a, &(0x7f0000000140)={0x0, 0x9381, 0x80, 0x7ffff, 0x2000088}, &(0x7f00000004c0)=<r6=>0x0, &(0x7f0000000200)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
ioctl$IOCTL_GET_NCIDEV_IDX(r4, 0x0, &(0x7f0000000000)=<r8=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f00000002c0)=@IORING_OP_SENDMSG={0x9, 0x18, 0x0, r4, 0x0, &(0x7f0000000540)={&(0x7f0000000240)=@nfc_llcp={0x27, r8, 0x1, 0x1, 0x0, 0xfd, "16841ac9a8a96ef2a228d8fa0a3157f5fcac8a5c4884b354cc3054c45230d5ffbd7b1dcd23782577a95ebe6c13f056054a2184477c87a18592ec56b209efbb", 0x27}, 0x80, &(0x7f0000000500)=[{&(0x7f00000003c0)="d57e34b5bca007a72c7cdeb8d0db6d43213b1d6ced94c1de62cd9215c99e599b6f48c337c59ce5bf75f5a30f171ccd3af6cf43f3284525498a10d0e65984857ff9dae80c69eb49b8e0977578df13a9f03041d7ac77a7572709b20e13a4785ed58292288a3d31f209d737b21e9dfbe52b6f92941359d13d1356522670d48079a952bc76afb9a8db837f86385d3d85e4fd00e16d7884e9203bdddb1ef0124d33df015d0d55d513deda938b326e24afc0ff7d4047dbc1aa3d67a92974e7fb9be6adf5b39ae222a6", 0xc6}, {&(0x7f0000002880)="e4127f81b0e857d78c5f097d619c5e4ffcdb50a837c692ecb00c5b2dcbf1855d8c06af73317a5ffd756e3cee0a51e746d0b577971e78d3421aa2a155ea82ba7bb1093f475226e92c4808720bf15ae3fe1a84a96f2413c41decb25c96eec318836c6d30e231177e277df256881474fc9d92a8ccae0ef16fb0eaa39958a0a5dca8dc6d614862ae078e2a359f4ecb0d7d0e67dcd4ba6b44b3f64c9ce01f07ff2249e69143645a90013509ee456acfd9eb669f536efe6ce7ded17b7db1495397b8c6f1867b4210efadd89a86f6272b85e746accbfdb0730ef0d3c11ee879548b1037ee4cfee524cce07cceba908eecd14f7223cab4142b8e802dd17c62df31db42e3e75bd124f845abb45ea95423178f4fafa9ac40206458c720baeeb882c9bcf08c6d5a784730b3ee08b8183cef74800ed42ae83843d941f2812c94f506487c4e6fa88daa870e9b3db5589fbc6afd94f1ac1ed9e13a51837ede28f593cf53750d37cb4ad86ec255e9c4db68d02ab966e9902cca2b9cf5226d83729e779d059b16812f7efe7fb7fead7237563cd074a48779930108aacd288485c3e0f240567339f9ed20acb027ae66ee13b88a75e1e561efdcfb5ae2bdf6ff49f840b3e1508e4fe109ae6a8acca7ddae156fa5f66e9c21c997d7df00c88fe987c1a7efe271e4657fbc25aa115a643f32aa6d958fd17b95c34502f07743f94f73a458f8c281f5a886254267b0fa56fe13c1e4d6331d4531950a582f529ea297672a0d63fdff9a0ed6e807e9c6056259a88d3272a2a20499cbab5e6dc67a10b54c160dee50ce4f139a07990ce704d9bf33c90755a043b02678e49088456dbb91f1503bc16204ba98d6bf9d5a9122a95b0b3d3272f46bb2c40a131cf3103454419ad036969b1c3ec37697db3e5d16551fe3f1ae8c81efece2e637a7161cf88b41c715d8ac26532f203882d3485bd1b655cc8e35ebe39b3971537e9790d0c4eccc53a1704f7839fa69cd5c0cde8cf93b1e7c3c4fc9c8564c2be289d65d787c3b58c851afc7459c4b45fe36f92042afcf1d14bd61f6bbefeef3cd5b91df16550d5a8bce8b8d9c8ff3c57b5589664a07442e5861eac3c79b6c5c47da9340d397d8287a90732e29cad60c221b859a3f414b7b32ee21358e82e7e1bba1e5b75dd5f5351ac775acc62eb33c8817a94391925b8d8306a79cda211dc13764bcae3876850690b02be7867b86930dd3b5b5818b196fef9aa45fd9f2546a418200bebfeaeac915f9f6b43bb15b3f32648c6324c3235cfab30c260a1b2a13ee5ecf1f179e09d64b77e7b5d5fd3d5c8a73e12e25b835409a66d142a9bb44db3e11640d9adf50957ec121053f58a8713c9e56055225aeb0a7bb719a09de228a969888a8d3ae67be901bb3eccf646cce5a618755157729ae8f1e8d803cea23c4d9003fa3ee6a3354e1f4afa24c2e28e8e0ed074207c5bbfb6e4458006e82f1e3a277af6b2341068e279915cb1355eb4d65f6441d0d7b75873ee9356a9dc5ec9fa3fafb8662cf2bd33ddadd03a673e8669ee14cf611c11428df885c057d42c377818b0720868be1ce31dcfe691dcfc9a4e679cb6ca88f7499c875865f04ccac1c9e660308532422809afdfda15e73002a53496cc6c421439357486c9857404a26ea90d152de35786f7308a15df45a2fc51a876bb724f05e3c9f53cc87f88524b5401bfb279ce0492791d528344764531a9adc6cf630443a5bd2b0341570f21db2845892663aa6674881de510db648a2982171d6e6bf28cd4ab03fa835dbbc4652050277a44da0b8f0c367cbb4d36b0a5c47ac499b74a4c0ffe217e0933d85a07c66777dd806f3910e9cde93d13968ebbe40ae553c655f5f83ca7663de226081cdd63c53bd9a48d33dd9eeb07b06e80aebd59c1b3d3532ec3f909ed099f29566b5c12fc1624c1f1c9ff66b16f99471083ecc0bf25228cab939301b9fc605892c117e7aba9f0381b8ef293ca3af2adad8cf372400434a9e9f556ebc328c244655bbcb3801ca9cb9565e5accf432c60b7dd23e94d363e439c2fc761ba47b7e111b6729d635a32daaf7eeeccb3a53027f193189f6d07db2b55038c1353401269bcf959d9b9a2be01a0d4f55c9656fc7cb31501710bcb72a5d0362fb8e045c29e15b90f6f191ed85c8ff19c197f47d321918d1c5e7319c5c83e1525795aa746f1846486eabbae37ac43a3ec0041c20ece5f6dd1bbd7dd0fdb5a339ca0e799daf5bf38156c85728eacd1eef9e7e6332428e2edc2e5e926934c3f7635b676eed652aade3eb154009a86886cd3340401cc81b7d46a3c972c827081a8be34f6b857c8554aab67c7616932e58e1d345e7b31bf0d79107c398c71b7908f6d95fa64074167a7bca33aa63127572dc2f4cbfd8ff0cadf39c182f138bb0e236e7b7d272758a83fe5e46b559eec608f4d87584c24b48b602e1f543dd33a243bf63732b3f1faf9bb7978dfe23a1d536eb35bfd7937527c622de0a625e4c23ad6498c161bdb011f21be0e9639aeda3cd766a9debf8b659a6761762a8b6dee3059f6c8e1fed0356cf59ecc10ecd7da5aa72287fc9f2d9c233e124daa1ea27b4200ceef41a8c1209987b36ad24b77665fd24181c1b30e552f414f32caf1651b818ce2e47b33fee88e134dea603e009edb4bacb261b42586f87f59034b0b5ae686869e414d37da26997e4be20a178bbb917b7697721a5ed674494580cb8dc75f2b12358362309139dbeaece5b803210efb6e1e58adaac297f015018e571e095ffb4027b00e6b26e66c16e235e7a7c32a850d9a1fdb066e37dc9500a5098dd24a8003810773b8a4b7759357c9b95475eeb926cfb0722551af87ed3db98d049c2402aa4a7684cfbd9cae2925be0d4fe18a38208318cf428c92ee430b0b34c48d4af9f44920f18690ad2c0cf4d4c06d660d5d2f26aa6e1216c1c88594fbc3fc183cede6ca85c81f08da858d07dbf058204350475d65364e1584359b08cf2654e1479c7f9b31c79441141e2eb05851a35df50d1d96622c5e659075aa71b0f436063ea400b4f759b8b5a9fb8f5a14a182a79e8a6296d0034bf639946b3a13cf19e2e5ff2e2c6e314d001e1e99b5db035a2a993e250a2bb6966984179ed0d60c5b5f50752124954773fd7d763ed6559ef19481ccde843bb1caeceebad64379526a2854d3334280d822cec38277fcc80662c0c7c89d37ef72a577b230961f81463b0c067e26bcca247976c9473490786fce3be341d5af167414c0886be7faa8bf360affad969bf03ff6ab24c2d4277650d3b0edda477b917d163b2c1d4a1c5902a3979a395366595e600d008d420e64ee0e097b9b9142c7feff61754ca36dbdf1e52a6b29a9c37381115f24b5f3a99ef8d52f2e2f032969e152f9db7b7fa4dae3bf819e4ef3e68850fc83d286046692addc1060e5d688b1968754e8e81ddcf43343fdf9af5951e878d46c9fc147d61c5f367042b840bfee113fa23f5f5ddc80dc7865bc162109855fb58ef797658941040cea2a9c21d396496cfaf5eccf421160e9e81b185b1fc1739bf1765cf6c85d80ee15b9d059dac4ab2709431cc808b855ddb1ebea0e10aa2013df53ad1d7bd7847739f7649c7f5a64f71176ee48c2f786692e27237985ad719afb2caf5e1dd25072509ffd47b66706ae3e77b9c37920f4331e30e15b4eff5a11cda0bf6513d5ad789240b10913d87eb00f84fdbb0b9b797a321c25e607c787bc9c0fae62516b0dd37f628bacb292c60da43d77c10eee637620291268241af0820025e87054753849bceebd75ae549a77ce5c582b003a8ec618fe47b05c40c0af51da65efe9cd5c53975e30fcbe98368e68a23aca070c61408e1cc2537277726243b06e1fb63e242a7d62c9bc9335d3c546049219167d870a4b9e2b51293d4f0f16f68536d3e3a40878628dbf3b230d79d585e1970a876773c404e7fcb80c01ab4517ecc2a31c028076f000e429d74089a7f6e27de37822d3d7bf288921b6ce626487a5b4ae51e91afaeaf5a7a547786e79b5f2e2d7704c88d733c33fd89e99c571b0ffb69b7f93b4fae6ce294ac194c1c40e36dee66a00a98f00676dc33851f57956c98e236b59a55d73f1c50c7bec484507e7991b00a108c32d0917acf289613267019f376fb21453fa609df991212bae1d6004d95718dfd3f63213cf0cb4a7884bae668fee489831b49f9a784b402214ae8dd3addbb286bec0f804703fa985b31ea5e4690fd1806ead2febcd53da7c4dcf3002eaa9edb5b8cc66a034f4326797dc0908abc459977b3164a402cfb4a3e7ff04523b1737920227cbdf97a4077a1996ddb7a369bde7c68c45a7eac93bb3eaa475b9537f94783c9d111a69898ccf714f5c6bcef7850d0e63e0fc1f7b13c9685156f7d60f4bc1360346156928d369d4d6acbb40586e5242a78d9df473b593188e89087ee15d45a0d4e4eed36ae57415611ba2a67ad14aa0e39ce6c8282f636c579f9c75a9d487dc80ed77727e16d774e456057b7b82f198c064bf8ea390c7e8fc3a7ac02b92d0454555af8d53b2fedc6d8283da76dfab2094ff55fc4dbcb43c7606a9f209687aa4579a9761f007dc21b300df3eabbf21e93a7dbaa7364d4dc32adfa4c2cc75f1b9811553f6bdd5ea92264f847822e3aaa4663204f4df6bf0b3fff719333a8a6295b2e1c0f4c36f167e4deeee1f876adef033247a67ce32601c4460e4b404aa4bf488efc81f5d3b8f6448b42be7879a01daf659b4404d4ed2c4035872e94601d0ab29c50a396e7a3abfed983adb7a17b433b3b271487692b8ffc67db742b7dc32673a9435aa062f0aaaf5512c148161c445b1c90ec613f48d7b07ef0f2ac94ea909c96cbe9d969a93fb121c4dfe6ec4cf72c23892ceeadc909d67d72d85c7f45a256c003d4e18790278d8b2d5fa63e09dc7137e9061222576fd033c68edeb205ebb87f2b29e4e33261b06042a155baec5eea61ca7134e484cd4195c2befefa4724ee2521aad30a78fb4d4ca070484d0d9fc1a1f1ee517d973f8023b18eb9102c790e68a0101b986f43c626686f77bc2bc17255d5a1c34f573b4fc118cc9c20e29aff84794ba0153e58eb228c9f4959518f92464ad1bf9d9795e944b9ec5d53d42ce31a68ea882a4e6aedd0c043732ed7d121fddd7c9ee025229c43fc342131c19ebff935a254fe0ac4fdd8e1120f0af92cebcd28f0ed5ba09af10bea4aba8f99e5166dc329852d365ccc773ae06bfc64d1ceac58c29b15ff2e55209e25d3a3ffad2b8d7a1cb9254b1773a231785f42a3701b2f9f4a103ab819101d121b757b99172abf2420b56a64ae818b5d2d3bf25d142486ecaeabdb1af8dbaa289d3e9d37b46dc1d9f153a25bd313a2ed79772e14d42a3a1d0ce4df8807bef5f9a32a765162f41c9ac62a806b5d18a86059fbb4c235c903c764ebe7db37a430c58806fe67703b1ccbf5a14112736c5db502878f3e7641da2eedb075f27105e56fb866a974e9a0e785b6ae1d46baf9e28c3c1b97fd1b8f046ab6e147368e695e64f3ec195733ff3d0c29b290470a018b25f5aacf20c5d0079fb1857bffcf0b0c23225db4ca41bbe74f1dc3a652e42534ca62c35bac494ab1b2c7fd725a779254a6ce408907176d1f4feeaa3ec1fd08d8ce55c64fe63be953a20185e4b5477e4f165df52368161a5e8940ac01e4686f22df5a3291bff533bbac865ffd41142d727e09c22683faaaf070c517551acb199f890e898b9564d7f7eec89f1dab3250857b49f8", 0xfe0}, {&(0x7f0000000300)="b5f42cac481e488c97e6d21b42f25d51d2058effd9260f53082e1cb3fdcfb32d9b638501f728703fbda656b7057448368b91d5d734465dc7ddaa70454c48110b843014854e508bfcb4d1cedcaf17dbca88d5ded0780acb97cc1957c2158d691f49495340c7c4d3ebf297ab6d7cae435c8805b90ebb5a3b3c29df21", 0x7b}], 0x3, &(0x7f0000003880)=[{0x58, 0x29, 0x3, "4852971afd175a28144a9ceececf615d40040df08788eda5341ef5f6ff90a9b31f60622667ef5054e4424e779c4c9bd6745a6c9ae9cc77d562f7e431b3965a0e8c6752ea0627f7"}, {0xe0, 0x3a, 0x8, "b7c45db18938c1f25213a7edeb341fd582fedb8b9c2dec9a34781f384c8f1733a507ca1a7c4a7d82befed8174c3071c7ee0c72316815c302a1a3d88762172336c08411b87aa6cb13abf7e1a135f922f6f5a893e211a3de67b86f6ae07f2f2f35b74a802d57d73d52255800589fa4756f3e036cf90e7eda0f4c94006c2a882f2d795ad4db168816e653ca80118a7d38f5811bdf515403abfa783603b6b935d8d161501217f198e4430dbc682c0215351eb51c3cc0b4b41794ce6a7d8127da46a6ad458333544b5a6621744f7e16da"}, {0x1000, 0x1, 0x8000, "8614bee2a30e0dec62323692730d3f6571f6f15d4a9c148c48ba0d8bad98c421149453998ca333b36eecdff4fef4b3474a247424201db5fe3a12ff3a5cda717e382e445dd559615ee346f7cf98b563c0b47267bb2da12d30c2c0ce0e9c4ede7ec3017397fe4c6849a8723fa051b37c370c76b703e0e794c21c8a572db47f1a711b75d2418248db3554a57d0f6d988a33cf3bf8dd1fb4b62016ff949cc639675a1b7452a4a621de8567113518ae05819e0f807a2d2b27f9f37f271856876027237619e5f0ae89c9f2df8efb6985d1c03847a954b9ce0d238e187489f49b0e1ed32f44f1ed594aaea67b40280f4529c797070014973f45ea514d6bb1fe6e1e8eb910f6411b6c592b5aa02c6873c97c277a76224fb02f8055563efa4c33aace3653b00ee5c02dabfa559155aa94139a3ef9400a8b522936565213d01347e34e499789989b1171bcf42a58a7ade906d4afd4751d5ff8f32f67edc53631fef78f0709c3677e42d2b11119e8871e8097d50fd1d0d6a96182336b3ecca74dca3d7e9f166b8595f0506fffc867235571a9fefc9c2f194dea8db3baa3246118af78835c8cd572147f3f36d8ede09a114d176d047a061256f4daa044d57b0fa5172a52e3e8577eeb5aad5b572fabc9a846ae5e9d7949ce193d8f53ff3931e3fbf57803acd085dca9c0e4563c51087249650b23250526f9c40378d682a328971f796448d4c2103e03cb51751ebbb39d7dc8ef0603d1c6cc5e6d1d818e4a0fbc6928287d93bb49e1a0d1d709c7fc03837e8088f5289c75245d64d7070de3bb8a0e693c6158ebcd1085fc5189eb16969590ee7a145986cae9aab900a27dff6915d7a27f1d9735e934000306011bca20fcc9a40b36f47900b5c4c8dfe73e5ad3f612cb185cf7236523703604b5e6da2aac9b4cbff0c6e93ae0aab60e056d39db675eb24b1b7d35cb74772243ef119ee91b30b064db4410fe3d2e41216d679badafa9ad9bf6ebc87b7aa9544042eaec48bbb0f6caa689f05e0e82cb42411e73ba02f65cc6c8cfb8ee1c0f9b856a8953dfaef3688d02377c0c7db9c8759a7653509d0f0f9e727e407a799e6b25575ceab55eafcd7ee5e6e3428a6b2ff24b689de3cbf40528172a79ebabbd0df7e7746ed90b25eefae9b6db659d9a6edefb98e0708d78198fa7c957e16712b7ae85ae8923e39a539203f85fece2a8c5423cdb38814794fe0c08ce6a7c0c0416132cfc1d2bd289a01fa6970e5838e42f835c585ac46d3073724289a587e575f274d93ccfb07d8b26655655372ef0769a6c5b08faab3df47f9b08874f82d6f11b72022fc6e088506586fbeff3532b6d6a52aaddd6d41a19273f6be508787c7f00f332864f22cb2f4183abc7bc9e24db2c88ac81b6939685ed756abdf576f4fed23a410a85970f74a05bc365fed13c069d4e3f0dadb4f75d6becea8e0def20fcf8ff4d8857ee61eb277ca3ed8553d06d780c692dd8f95a75da1f62ce3e622de5198b497a13678b12a263c690734704e94c60f620a552d4009df1a7b93bb70e5e7ec51b4ca152b9f2833db4adf051a66b8a8e3128d620435cfe9b67c6099df0adfa3a60f88ed6ff1084050fda9437db792298a1760cda95fab21eb362e0eff809bc384a585cde43edb9699bdfffcae4494cf981bdf85abee7c787be422348b4edc82358719e8f3b2b6e94f58e52392d8ff2beef0299dbb82bcf821e31d927532e736c6d74fed39dbf255d34e4e5bd3c455ee8328d5a463597489d7acf2ddf0f5ae0e16f86ab632fe244de3b54f8d520aa0cd8a87ae5ecf5c1c0bbd8f83073495e498d5fddf7c8e5a7c24730fb8c4a1d621d6666e83606970f871d686b68fffc25aebbf7557593aa514080a9532d4ce4f8275ba9bc34165ee7d86a327e7f9057a06eb7ea49ff54453d8e9f2823c5b870d7d3193c6e9d3f62c991f6bcf52769f01290e2ea1bdd34d010dbe4824a0893091f9f45a3fddb5aca04399b2f89c540f4e871090d104f180083f59bd48ec77e8a67e8b8d12ac9e9575d7d6032f2c166dc9bf8d2a80be0dbf4127acb801e2e05f07a2f04fe91f3e6243a387662600b5e3d44a31ebb0d2e6b65584a761a2c89120c82b2d0c4c8396b03113268e7da6bcb332fb93825013dd7d15cfd9ef3b1fd1d56a9c73be96931e957ae7e4d658ad6cec73c1d0f076e5b6d3d5a48bbabcc4b5be0b4b1f46a36b212e20ce72d2c397309c91e5550ecb60b0236d89232e5240a8ddb29ad5a3cade90b1997c6aa3e9ec9224bb73369652e53448afe439bcf3150bb96f5efaec497fef6b2b129782d3512e5b569d621a2935cff2a8a4634e34148f7d6681ef90fc31538aaaa303db3c1ad367822aae8c0b764676c6c68ff2ca3d0ca2a41496729b36223189e759c540f45d6dc092c0304727d83dcda9a320d234467d167292afa7e2c2338f3aee19189bc1eb2eab48ffc8d68f2f6a93f4851f798e6d860dd4495c8e8c3661776fdd8fb1b821bc8bbfd2820a67d59bc7acd48e6a4501580293bf51d5bfcbf98e3bbe116f9b20b1ecc20ad88f96d15c54374dbb8c3045eb9fb0d11a14913980cdd66ec85f39f8a54201f69680a4fd1086a1b1212f7b04e280687de47fc41997e760c01120419e8bb0a1ce1e81119ee5e7501fe3674eacd588fdbe44a1b49054aba1c9400a4991adf824e8cbc60e39d74f85a74ba802f48d3cf3d0ad899f40fb2a7aea04c40451c8524154f8457bf89ea2bda91e00e922fa07d53a5f4cdc34f45d79a7dac33286a99f833b12807a760a63e9ebf1ac8b6adaf226871a2b2e04d6ed05627348c347961491446d8b3fd3414d7302c9a1dc53e5130588dd8e732f730456fd116388cce4969ea54e4e0e8465bb24b8ca079a6e903808d28f20afddad61dadc0094d81ec0e52d146d6f9500e396464d90f1cea2c3a23cbb1a06e1da74e3ca5d4e716014801d8b61a3f0caf6ce383f7927697ff213c24e5e7a2d30e61047152f57ede2adf07612c891b1ecd9d961d6abeff2f5ac3b0f7f48513d268c86dabdb8cd5043c27ea6897493fb858a34e0566e8e05c854dcbd3ec853ece43f084a22593e7c34a4e9e24bcf416dad0cda1e58cd3aad91b6ecadf61c3398f7057509569795b025949620ae382f83957c292e1a7cbce68c91d5947bdcaaf1fba598a1f6cd4d1007e1f84d1c5fbcea1dd6a93a3b4986f2c639d985b59d75b105da865528af1d9d195e8e83af00ff23f549f5f2f7112a2e162ce17b1939db708f887bcf7075bd27655af150785ffa675e7d875082bd105701ee815384d4f73fa3243bc1bf5ee952dced5e0ca1f58199365c7e6968d9c6ccdef6125466d7e030272c6e3e05cf2aef8b2c8dd394d068e1f2dcadcd1b9399acef3ab08425749e518de668052fe81b7b13b7990d0a57c7e80e72d0be1879350da63f622f77a389353506581b4f2ebdc7fe7d96eeb3c55908e9f4b5ba0b5378a97127255260203f057744e43aee79ed7c4c2d778e6c04ad4527ececd5194a0ed45cfb2d93eee2d9e413ea17cae75a8706783a99fa8d4792a93bc2f52e5932654014852efc2db9d95c3b08f12424300d8b448e8c1aeaadd2e1b9a48d33fe36bff6b0036663cdfe5dcb58f9977faad1e46cb4cfbc64b62bca55f699fc55ab62224882405d27e7827b286c355a9cc2f5f5d39ea80322a7e2602702f461bed47900b5b6b20053958f8404c8b950c5568a3d4f99b39cb109a525eeb49cd782e6dfc6c55e1b6486a623f118bfa03e88a92c2861bba01fed9892d43352718cae52b0d9da2dd759c5b8145ea9c283569b0b56eaa512264ced812b94442bf33e879476882dca123fd53d2df299eefa3bdad963315b57719d481af1e22bef40b6cae6ce6ce328772cf6d6cd31c3c1aeb7aa9de6aa5296dba1b70882ee5f6e58da7e3975504f5b54f7c8c2e13476d8341d277787bea9e50e676abb6f278659052749f15eed9f42212c82371e46d9f73eade3db93e6e59b5634049bfd81e3477227a1ec57b8610e8a643831511db60b8f4bf312e8822a2a8a9d6977a47c98ff156f85d649f8cc1d683dc8b02da3760189498a5df2161a144545bf5484a3895eceac47d680a8537c7b3ea5fad525b567205c57f893f73c104f7bdce6a08b5f8646f0c135b9733a504d03a4c29fc287578e333c0d3c13b6c77be40bcb49bd950630eccf64d223b99b348ab3c5715bcb708a214456cf66035a47e5d4b5a60ff5669cb7576e6300209617f5c2bca94370025755d6a2f249809ab174274e9eb54046a25cc013c2e44081f8fb295a81b82365c664199ce73d5ebcf233ab9e1bea1e7b9dee187ae0313fc11a50d79aea649ecb4d4005b3dedb29ccb9bf9896d4637eb6d403c72dea6843e0c8ea22f775d1a5dd6f4d0f0c636e309b9884e17fd40a5978f0ad95358838a6bf5976bb2350f0a7a1e04983c5d3c53d4a99831876931f5d1a8ecd47c11df8c62d7aa913bdb2500c72e63e4729caed6d1328efe4c1b53b1c5f638607ca2aec897c7d77536f51c8f784e0d3b3b73b8d11e2636fbb8722c6c57bc94d17b51de1da78d7df798b4f5e764e56f64349a211cd7d27f58458fb501068581d18242d84b42ecede9bf8a6cecf95a515507396d4bbc0b5f59e5580ec95e19f05a8978cdc6757f4773c4bad4887c39d4d68270e780676dee68c44eed5e416a45e08901514f760fcd770c990a5c918a768c77bac4b98a16e526bc98d0653df820826d420c1f3a0e9b08665c8a8351d7e8ea1add83d0f1f827fe2a5e5c53ffea7dd76846cb2c995936157d2a44ae28d8618152ce4221da526c4221a4ad759acd93a3ae2a373076e772bca36bd7d069bc862a8dba7f3941c618f45013f95a77e9a982aaed22bebe777512145ef6b369bab5698f05c45170409d6fef7ebfab80cf476b9fdbff79a8a102c2fd92a98c84ec5539b09db27f61fce87340e3ec8ad34faaedcd3f1f58e48bbcde0697eb0c740c4a015ac2b59a503aaabb53c8406451686665b19f6c134f8d45ab82e1818442414db02d4bb4393e34c003285f9424ec8b06ca23a5ac8033af182bc0d90ba567e47f8a4c7f6287f3f56d18d26d9861c55d00ed72a8bccd1a097210f150cfd18bb2558bb291da15ca515010f251b18eee77a3e92648218bf081aabda745e093b0662c17a6db1cb7fbbd93f0f63ccc2b6807bae93056e13f33805fe5f0c8ee9a2a6fceefe19bdcd3fc12e0fb29eaa2c33eaaf8f908343fbd46d068486bae2e56306cba9a48e1d12c7847c68d0f55038e42749308c1128f304608ac50a4ff883aca846783c8dc2ed42340d3892c2f887b3471c1d14a8f2915570c8e234e66e3b4b937331c897c15f18b728a09f95949b003ac6cc7a3098a4d6127afe1b17057b8b35ea4a2d869708b398689fd1dae4ed840d712c8010c685bc6bb2c58b81d47f80a5bf03a6545c18453b2085eba75da122ae8b501cc24caa573e1de2da23e5a92bb17b30826e0f479d97a635869ff1a2dea7b0dde037f58509512c515cbc6da2ec8c24d26590ec889f8dfea6e0c95a422fdf547b518f82a93c7c935a08901995eb6df9332a4f50f6b5518a61c7dc12e2b924af13b32edba16e2981b4758b46df49a269413d78b0531b56ece93a6c8022e40ae4422e0140d6a85ae5c43b854032c67a4f6e5d604346a82b24acdf5527523075e2816ad000ca5bb96fd76f404fff137bb9b4f8ccac96bdc7001de3747c05a9e63b9de0aac3ad46801859f68f00cb26ab815fccc685afb8eff969f5f701bd888fac9437dd8e318"}], 0x1138}, 0x0, 0x4004000, 0x1})
io_uring_enter(r5, 0x22e0, 0xaddf, 0x2, 0x0, 0x0)
keyctl$set_reqkey_keyring(0xe, 0x5)
r9 = open(&(0x7f0000000080)='./bus\x00', 0x147842, 0x49)
preadv2(r9, &(0x7f0000000040)=[{&(0x7f0000001200)=""/4096, 0xfffffdef}], 0x1, 0x0, 0x0, 0x0)

140.255769ms ago: executing program 0 (id=2592):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETRULE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)={0x14, 0x7, 0xa, 0x401, 0x0, 0x0, {0x2}}, 0x14}}, 0x0)

126.092269ms ago: executing program 0 (id=2593):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b00000"], 0x0, 0x100, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f0000005980)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000006c0)=[@rights={{0x14, 0x1, 0x1, [r1]}}], 0x18, 0x800}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80)=[@rights={{0x14, 0x1, 0x1, [r1]}}], 0x18, 0x40810}}], 0x2, 0x0)

97.62617ms ago: executing program 0 (id=2594):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00'})
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x2000400c)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f0000000280), 0x1, 0x792, &(0x7f0000001a40)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x141842, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r0, 0x0, 0x0)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
ftruncate(r1, 0x2007ffb)
r2 = open(&(0x7f0000000000)='./bus\x00', 0x64942, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./bus\x00', 0x40802, 0x0)
sendfile(r3, r2, 0x0, 0x1000200201005)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
splice(r2, &(0x7f0000000140)=0xabbd, r4, &(0x7f0000000200)=0x8, 0x4, 0x8)
r5 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r5, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r5, 0x107, 0x16, &(0x7f0000000100)={0x1, &(0x7f0000000180)=[{0x6, 0x8, 0x0, 0xf77}]}, 0x10)
close(r5)

27.06752ms ago: executing program 2 (id=2595):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000780)={'dummy0\x00', <r4=>0x0})
sendmsg$ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010026bd6000000000002d9300000c00018008000100", @ANYRES32=r4], 0x20}, 0x1, 0x0, 0x0, 0xd4}, 0x24008000)

26.83409ms ago: executing program 1 (id=2596):
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x113c80, 0x0)
ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000200)={0x0, &(0x7f0000000100)})
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000202300800000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x49, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
geteuid()
mq_open(&(0x7f00000000c0)='!selin\x95}\x06a\x03\x00\x00\x00\x00\x00\x00\x00\xa8x\x00\xb97\xb7', 0x6e93ebbbcc0884f2, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x2, 0x4, 0x4, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x5, 0x4, 0x7, 0x0, r2, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x8d40, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0x9264}, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
socket$rds(0x15, 0x5, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket(0xa, 0x3, 0x3a)
socket$inet6_udp(0xa, 0x2, 0x0)
r3 = syz_io_uring_setup(0x117, &(0x7f0000000300)={0x0, 0x0, 0x10100, 0x200000, 0x1000000}, &(0x7f0000000100)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='rdma.current\x00', 0x275a, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0xa, 0x4, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
write$UHID_CREATE2(r6, &(0x7f00000000c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r6, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r3, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

26.13785ms ago: executing program 2 (id=2597):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00'})
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x2000400c)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f0000000280), 0x1, 0x792, &(0x7f0000001a40)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x141842, 0x0)
r0 = openat(0xffffffffffffff9c, 0x0, 0x1c1002, 0x0)
write(r0, &(0x7f0000004200)='t', 0x1)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
ftruncate(r1, 0x2007ffb)
r2 = open(&(0x7f0000000000)='./bus\x00', 0x64942, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./bus\x00', 0x40802, 0x0)
sendfile(r3, r2, 0x0, 0x1000200201005)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
splice(r2, &(0x7f0000000140)=0xabbd, r4, &(0x7f0000000200)=0x8, 0x4, 0x8)
r5 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r5, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r5, 0x107, 0x16, &(0x7f0000000100)={0x1, &(0x7f0000000180)=[{0x6, 0x8, 0x0, 0xf77}]}, 0x10)
close(r5)

0s ago: executing program 1 (id=2598):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f0000000280), 0x1, 0x792, &(0x7f0000001a40)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x141842, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r0, &(0x7f0000004200)='t', 0x1)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
ftruncate(r1, 0x2007ffb)
r2 = open(&(0x7f0000000000)='./bus\x00', 0x64942, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x40802, 0x0)
sendfile(r3, r2, 0x0, 0x1000200201005)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
splice(r2, &(0x7f0000000140)=0xabbd, 0xffffffffffffffff, &(0x7f0000000200)=0x8, 0x4, 0x8)

kernel console output (not intermixed with test programs):

nstall interpreter file ./file0
[  146.423920][ T8560] random: crng reseeded on system resumption
[  146.596521][ T8566] loop4: detected capacity change from 0 to 2048
[  146.663728][ T8564] loop3: detected capacity change from 0 to 1024
[  146.691201][ T8564] EXT4-fs: Ignoring removed nobh option
[  146.770277][ T8575] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1850'.
[  146.948193][ T8579] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  146.973273][ T8579] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  147.177932][ T8588] loop0: detected capacity change from 0 to 4096
[  147.194292][ T8591] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1855'.
[  147.287205][ T8596] syz.0.1857: attempt to access beyond end of device
[  147.287205][ T8596] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  147.318302][ T8598] random: crng reseeded on system resumption
[  147.476568][ T8601] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1860'.
[  147.485621][ T8601] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  147.493073][ T8601] batman_adv: batadv0: Removing interface: batadv_slave_0
[  147.500788][ T8601] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  147.508511][ T8601] batman_adv: batadv0: Removing interface: batadv_slave_1
[  147.642524][ T8620] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  147.689905][ T8616] loop3: detected capacity change from 0 to 4096
[  147.724556][ T8626] loop2: detected capacity change from 0 to 2048
[  147.737252][ T8630] FAULT_INJECTION: forcing a failure.
[  147.737252][ T8630] name failslab, interval 1, probability 0, space 0, times 0
[  147.750617][ T8630] CPU: 0 UID: 0 PID: 8630 Comm: syz.0.1871 Tainted: G        W          6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  147.750711][ T8630] Tainted: [W]=WARN
[  147.750717][ T8630] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  147.750732][ T8630] Call Trace:
[  147.750741][ T8630]  <TASK>
[  147.750749][ T8630]  dump_stack_lvl+0xf2/0x150
[  147.750834][ T8630]  dump_stack+0x15/0x1a
[  147.750855][ T8630]  should_fail_ex+0x24a/0x260
[  147.750885][ T8630]  should_failslab+0x8f/0xb0
[  147.750958][ T8630]  kmem_cache_alloc_noprof+0x52/0x320
[  147.750985][ T8630]  ? audit_log_start+0x34c/0x6b0
[  147.751025][ T8630]  audit_log_start+0x34c/0x6b0
[  147.751083][ T8630]  audit_seccomp+0x4b/0x130
[  147.751151][ T8630]  __seccomp_filter+0x6fa/0x1180
[  147.751244][ T8630]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  147.751276][ T8630]  ? vfs_write+0x644/0x920
[  147.751306][ T8630]  __secure_computing+0x9f/0x1c0
[  147.751329][ T8630]  syscall_trace_enter+0xd1/0x1f0
[  147.751449][ T8630]  ? fpregs_assert_state_consistent+0x83/0xa0
[  147.751472][ T8630]  do_syscall_64+0xaa/0x1c0
[  147.751504][ T8630]  ? clear_bhb_loop+0x55/0xb0
[  147.751561][ T8630]  ? clear_bhb_loop+0x55/0xb0
[  147.751595][ T8630]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.751622][ T8630] RIP: 0033:0x7f2a63ebd169
[  147.751637][ T8630] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.751663][ T8630] RSP: 002b:00007f2a62527038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  147.751683][ T8630] RAX: ffffffffffffffda RBX: 00007f2a640d5fa0 RCX: 00007f2a63ebd169
[  147.751698][ T8630] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000004
[  147.751713][ T8630] RBP: 00007f2a62527090 R08: 000000000000001d R09: 0000000000000000
[  147.751728][ T8630] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000001
[  147.751742][ T8630] R13: 0000000000000000 R14: 00007f2a640d5fa0 R15: 00007ffc6c05a408
[  147.751763][ T8630]  </TASK>
[  147.988497][ T8639] random: crng reseeded on system resumption
[  148.076701][ T8640] loop1: detected capacity change from 0 to 2048
[  148.094737][ T8625] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  148.111239][ T8625] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 288 with error 28
[  148.123808][ T8625] EXT4-fs (loop2): This should not happen!! Data will be lost
[  148.123808][ T8625] 
[  148.133554][ T8625] EXT4-fs (loop2): Total free blocks count 0
[  148.139615][ T8625] EXT4-fs (loop2): Free/Dirty block details
[  148.145519][ T8625] EXT4-fs (loop2): free_blocks=2415919104
[  148.151392][ T8625] EXT4-fs (loop2): dirty_blocks=1344
[  148.156734][ T8625] EXT4-fs (loop2): Block reservation details
[  148.162926][ T8625] EXT4-fs (loop2): i_reserved_data_blocks=102
[  148.172153][ T8647] Cannot find del_set index 0 as target
[  148.296407][ T8638] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  148.388203][ T8655] loop4: detected capacity change from 0 to 512
[  148.466191][ T8638] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 192 with error 28
[  148.481997][ T8638] EXT4-fs (loop1): This should not happen!! Data will be lost
[  148.481997][ T8638] 
[  148.491691][ T8638] EXT4-fs (loop1): Total free blocks count 0
[  148.497746][ T8638] EXT4-fs (loop1): Free/Dirty block details
[  148.503761][ T8638] EXT4-fs (loop1): free_blocks=2415919104
[  148.512905][ T8638] EXT4-fs (loop1): dirty_blocks=192
[  148.518156][ T8638] EXT4-fs (loop1): Block reservation details
[  148.524189][ T8638] EXT4-fs (loop1): i_reserved_data_blocks=12
[  148.554225][ T8655] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.1879: corrupted in-inode xattr: invalid ea_ino
[  148.580527][   T51] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 28
[  148.592851][   T51] EXT4-fs (loop2): This should not happen!! Data will be lost
[  148.592851][   T51] 
[  148.613850][ T8655] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.1879: couldn't read orphan inode 15 (err -117)
[  148.688802][ T8661] loop0: detected capacity change from 0 to 512
[  148.711323][ T8661] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.1882: corrupted in-inode xattr: invalid ea_ino
[  148.756310][ T8661] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.1882: couldn't read orphan inode 15 (err -117)
[  148.846020][ T8661] FAULT_INJECTION: forcing a failure.
[  148.846020][ T8661] name failslab, interval 1, probability 0, space 0, times 0
[  148.858797][ T8661] CPU: 0 UID: 0 PID: 8661 Comm: syz.0.1882 Tainted: G        W          6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  148.858835][ T8661] Tainted: [W]=WARN
[  148.858844][ T8661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  148.858932][ T8661] Call Trace:
[  148.858941][ T8661]  <TASK>
[  148.858950][ T8661]  dump_stack_lvl+0xf2/0x150
[  148.858985][ T8661]  dump_stack+0x15/0x1a
[  148.859012][ T8661]  should_fail_ex+0x24a/0x260
[  148.859079][ T8661]  ? ext4_expand_extra_isize_ea+0x7da/0x1000
[  148.859192][ T8661]  should_failslab+0x8f/0xb0
[  148.859233][ T8661]  __kmalloc_cache_noprof+0x4e/0x320
[  148.859303][ T8661]  ext4_expand_extra_isize_ea+0x7da/0x1000
[  148.859347][ T8661]  __ext4_expand_extra_isize+0x254/0x290
[  148.859376][ T8661]  __ext4_mark_inode_dirty+0x2c5/0x440
[  148.859408][ T8661]  ext4_dirty_inode+0x91/0xb0
[  148.859426][ T8661]  ? __pfx_ext4_dirty_inode+0x10/0x10
[  148.859449][ T8661]  __mark_inode_dirty+0x166/0x7e0
[  148.859493][ T8661]  ext4_setattr+0x3e1/0xf60
[  148.859536][ T8661]  ? security_inode_setattr+0x5f/0xd0
[  148.859635][ T8661]  ? __pfx_ext4_setattr+0x10/0x10
[  148.859678][ T8661]  notify_change+0x85c/0x8e0
[  148.859775][ T8661]  vfs_utimes+0x2c6/0x3e0
[  148.859891][ T8661]  __se_sys_utime+0x127/0x1c0
[  148.859933][ T8661]  __x64_sys_utime+0x31/0x40
[  148.859972][ T8661]  x64_sys_call+0x2996/0x2dc0
[  148.860030][ T8661]  do_syscall_64+0xc9/0x1c0
[  148.860162][ T8661]  ? clear_bhb_loop+0x55/0xb0
[  148.860190][ T8661]  ? clear_bhb_loop+0x55/0xb0
[  148.860279][ T8661]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.860308][ T8661] RIP: 0033:0x7f2a63ebd169
[  148.860323][ T8661] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  148.860345][ T8661] RSP: 002b:00007f2a62527038 EFLAGS: 00000246 ORIG_RAX: 0000000000000084
[  148.860367][ T8661] RAX: ffffffffffffffda RBX: 00007f2a640d5fa0 RCX: 00007f2a63ebd169
[  148.860382][ T8661] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000240
[  148.860440][ T8661] RBP: 00007f2a62527090 R08: 0000000000000000 R09: 0000000000000000
[  148.860451][ T8661] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  148.860463][ T8661] R13: 0000000000000000 R14: 00007f2a640d5fa0 R15: 00007ffc6c05a408
[  148.860480][ T8661]  </TASK>
[  149.137443][ T8664] loop3: detected capacity change from 0 to 4096
[  149.269324][ T8677] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=24592 sclass=netlink_route_socket pid=8677 comm=syz.4.1888
[  149.269525][   T51] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 28
[  149.297629][   T51] EXT4-fs (loop1): This should not happen!! Data will be lost
[  149.297629][   T51] 
[  149.423418][ T8694] loop3: detected capacity change from 0 to 512
[  149.463735][ T8694] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  149.474886][ T8688] SELinux: failed to load policy
[  149.492533][ T8690] loop4: detected capacity change from 0 to 4096
[  149.510261][ T8694] EXT4-fs (loop3): orphan cleanup on readonly fs
[  149.517944][ T8694] EXT4-fs warning (device loop3): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  149.552778][ T8694] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  149.572410][ T8694] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1897: bg 0: block 40: padding at end of block bitmap is not set
[  149.589905][ T8694] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  149.602753][ T8694] EXT4-fs (loop3): 1 truncate cleaned up
[  149.665918][ T8708] 9pnet_fd: Insufficient options for proto=fd
[  149.778378][ T8727] loop2: detected capacity change from 0 to 2048
[  149.800526][ T8732] FAULT_INJECTION: forcing a failure.
[  149.800526][ T8732] name failslab, interval 1, probability 0, space 0, times 0
[  149.813341][ T8732] CPU: 0 UID: 0 PID: 8732 Comm: syz.0.1911 Tainted: G        W          6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  149.813372][ T8732] Tainted: [W]=WARN
[  149.813378][ T8732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  149.813393][ T8732] Call Trace:
[  149.813401][ T8732]  <TASK>
[  149.813419][ T8732]  dump_stack_lvl+0xf2/0x150
[  149.813451][ T8732]  dump_stack+0x15/0x1a
[  149.813477][ T8732]  should_fail_ex+0x24a/0x260
[  149.813513][ T8732]  ? rtnl_newlink+0x5d/0x1250
[  149.813541][ T8732]  should_failslab+0x8f/0xb0
[  149.813590][ T8732]  __kmalloc_cache_noprof+0x4e/0x320
[  149.813619][ T8732]  ? __pfx_rtnl_newlink+0x10/0x10
[  149.813652][ T8732]  rtnl_newlink+0x5d/0x1250
[  149.813691][ T8732]  ? x86_call_depth_emit_accounting+0xe1/0x2e0
[  149.813730][ T8732]  ? xas_load+0x3ae/0x3d0
[  149.813815][ T8732]  ? __rcu_read_unlock+0x34/0x70
[  149.813841][ T8732]  ? __rcu_read_unlock+0x34/0x70
[  149.813875][ T8732]  ? sock_def_readable+0xae/0x1b0
[  149.813913][ T8732]  ? __sock_queue_rcv_skb+0x466/0x5e0
[  149.813944][ T8732]  ? __memcg_slab_free_hook+0xc9/0x1e0
[  149.813969][ T8732]  ? sock_queue_rcv_skb_reason+0x8e/0xc0
[  149.813993][ T8732]  ? __rcu_read_unlock+0x4e/0x70
[  149.814020][ T8732]  ? avc_has_perm_noaudit+0x1cc/0x210
[  149.814126][ T8732]  ? selinux_capable+0x1f2/0x260
[  149.814153][ T8732]  ? security_capable+0x81/0x90
[  149.814186][ T8732]  ? ns_capable+0x7d/0xb0
[  149.814211][ T8732]  ? __pfx_rtnl_newlink+0x10/0x10
[  149.814300][ T8732]  rtnetlink_rcv_msg+0x651/0x710
[  149.814333][ T8732]  ? ref_tracker_free+0x3a5/0x410
[  149.814428][ T8732]  netlink_rcv_skb+0x12c/0x230
[  149.814462][ T8732]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  149.814539][ T8732]  rtnetlink_rcv+0x1c/0x30
[  149.814569][ T8732]  netlink_unicast+0x599/0x670
[  149.814610][ T8732]  netlink_sendmsg+0x5cc/0x6e0
[  149.814639][ T8732]  ? __pfx_netlink_sendmsg+0x10/0x10
[  149.814722][ T8732]  __sock_sendmsg+0x140/0x180
[  149.814797][ T8732]  ____sys_sendmsg+0x326/0x4b0
[  149.814903][ T8732]  __sys_sendmsg+0x19d/0x230
[  149.814945][ T8732]  __x64_sys_sendmsg+0x46/0x50
[  149.814978][ T8732]  x64_sys_call+0x2734/0x2dc0
[  149.815005][ T8732]  do_syscall_64+0xc9/0x1c0
[  149.815051][ T8732]  ? clear_bhb_loop+0x55/0xb0
[  149.815102][ T8732]  ? clear_bhb_loop+0x55/0xb0
[  149.815136][ T8732]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.815170][ T8732] RIP: 0033:0x7f2a63ebd169
[  149.815189][ T8732] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.815211][ T8732] RSP: 002b:00007f2a62527038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  149.815233][ T8732] RAX: ffffffffffffffda RBX: 00007f2a640d5fa0 RCX: 00007f2a63ebd169
[  149.815248][ T8732] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 000000000000000d
[  149.815288][ T8732] RBP: 00007f2a62527090 R08: 0000000000000000 R09: 0000000000000000
[  149.815303][ T8732] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  149.815318][ T8732] R13: 0000000000000000 R14: 00007f2a640d5fa0 R15: 00007ffc6c05a408
[  149.815340][ T8732]  </TASK>
[  149.923640][ T8741] loop3: detected capacity change from 0 to 512
[  150.176016][ T8741] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  150.193865][ T8741] EXT4-fs (loop3): 1 truncate cleaned up
[  150.212431][ T8741] netlink: 'syz.3.1914': attribute type 2 has an invalid length.
[  150.237626][ T8762] FAULT_INJECTION: forcing a failure.
[  150.237626][ T8762] name failslab, interval 1, probability 0, space 0, times 0
[  150.250345][ T8762] CPU: 0 UID: 0 PID: 8762 Comm: syz.0.1922 Tainted: G        W          6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  150.250420][ T8762] Tainted: [W]=WARN
[  150.250427][ T8762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  150.250439][ T8762] Call Trace:
[  150.250448][ T8762]  <TASK>
[  150.250457][ T8762]  dump_stack_lvl+0xf2/0x150
[  150.250492][ T8762]  dump_stack+0x15/0x1a
[  150.250527][ T8762]  should_fail_ex+0x24a/0x260
[  150.250600][ T8762]  should_failslab+0x8f/0xb0
[  150.250633][ T8762]  kmem_cache_alloc_noprof+0x52/0x320
[  150.250661][ T8762]  ? __anon_vma_prepare+0x73/0x310
[  150.250699][ T8762]  ? __alloc_frozen_pages_noprof+0x1bc/0x340
[  150.250791][ T8762]  __anon_vma_prepare+0x73/0x310
[  150.250851][ T8762]  ? do_wp_page+0x100e/0x2340
[  150.250889][ T8762]  do_wp_page+0x1016/0x2340
[  150.250929][ T8762]  ? __rcu_read_lock+0x36/0x50
[  150.250954][ T8762]  handle_mm_fault+0xc63/0x2b00
[  150.250982][ T8762]  exc_page_fault+0x3b9/0x650
[  150.251019][ T8762]  asm_exc_page_fault+0x26/0x30
[  150.251099][ T8762] RIP: 0033:0x7f2a63d7fbe3
[  150.251117][ T8762] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  150.251187][ T8762] RSP: 002b:00007f2a625264a0 EFLAGS: 00010202
[  150.251205][ T8762] RAX: 0000000000000400 RBX: 00007f2a62526540 RCX: 00007f2a5a107000
[  150.251279][ T8762] RDX: 00007f2a625266e0 RSI: 0000000000000011 RDI: 00007f2a625265e0
[  150.251291][ T8762] RBP: 00000000000000f9 R08: 000000000000000a R09: 00000000000003bd
[  150.251303][ T8762] R10: 00000000000003cc R11: 00007f2a62526540 R12: 0000000000000001
[  150.251315][ T8762] R13: 00007f2a63f593e0 R14: 0000000000000020 R15: 00007f2a625265e0
[  150.251362][ T8762]  </TASK>
[  150.251387][ T8762] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  150.459266][ T8762] loop0: detected capacity change from 0 to 512
[  150.473763][   T30] kauditd_printk_skb: 304 callbacks suppressed
[  150.473794][   T30] audit: type=1326 audit(1742525820.390:11002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8766 comm="syz.4.1924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f26d0d169 code=0x7ffc0000
[  150.510531][   T30] audit: type=1326 audit(1742525820.430:11003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8766 comm="syz.4.1924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=120 compat=0 ip=0x7f8f26d0d169 code=0x7ffc0000
[  150.534138][   T30] audit: type=1326 audit(1742525820.430:11004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8766 comm="syz.4.1924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f26d0d169 code=0x7ffc0000
[  150.560964][   T30] audit: type=1326 audit(1742525820.430:11005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8766 comm="syz.4.1924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f26d0d169 code=0x7ffc0000
[  150.605676][   T30] audit: type=1400 audit(1742525820.510:11006): avc:  denied  { write } for  pid=8770 comm="syz.4.1926" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  150.608707][ T8762] EXT4-fs (loop0): 1 orphan inode deleted
[  150.648869][ T8762] ext4 filesystem being mounted at /385/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  150.659703][ T1581] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  150.659809][ T1581] EXT4-fs error (device loop0): ext4_release_dquot:6950: comm kworker/u8:6: Failed to release dquot type 1
[  150.670419][   T58] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  150.701488][   T30] audit: type=1326 audit(1742525820.620:11007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8776 comm="syz.4.1930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f26d0d169 code=0x7ffc0000
[  150.727425][   T58] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  150.727456][   T58] EXT4-fs (loop2): This should not happen!! Data will be lost
[  150.727456][   T58] 
[  150.727521][   T58] EXT4-fs (loop2): Total free blocks count 0
[  150.727536][   T58] EXT4-fs (loop2): Free/Dirty block details
[  150.727549][   T58] EXT4-fs (loop2): free_blocks=2415919104
[  150.727563][   T58] EXT4-fs (loop2): dirty_blocks=16400
[  150.727576][   T58] EXT4-fs (loop2): Block reservation details
[  150.727589][   T58] EXT4-fs (loop2): i_reserved_data_blocks=1025
[  150.744987][   T58] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  150.771077][ T8777] loop4: detected capacity change from 0 to 512
[  150.773692][   T58] EXT4-fs (loop2): This should not happen!! Data will be lost
[  150.773692][   T58] 
[  150.782083][ T8779] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  150.801982][ T8777] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.1930: corrupted in-inode xattr: invalid ea_ino
[  150.808632][ T8779] SELinux: failed to load policy
[  150.848440][   T30] audit: type=1326 audit(1742525820.670:11008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8776 comm="syz.4.1930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8f26d0d169 code=0x7ffc0000
[  150.860364][ T8777] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.1930: couldn't read orphan inode 15 (err -117)
[  150.875736][   T30] audit: type=1326 audit(1742525820.670:11009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8776 comm="syz.4.1930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f26d0d169 code=0x7ffc0000
[  150.906339][ T8784] FAULT_INJECTION: forcing a failure.
[  150.906339][ T8784] name failslab, interval 1, probability 0, space 0, times 0
[  150.910983][   T30] audit: type=1326 audit(1742525820.670:11010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8776 comm="syz.4.1930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8f26d0d169 code=0x7ffc0000
[  150.920039][ T8784] CPU: 1 UID: 0 PID: 8784 Comm: syz.1.1932 Tainted: G        W          6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  150.920116][ T8784] Tainted: [W]=WARN
[  150.920125][ T8784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  150.920141][ T8784] Call Trace:
[  150.920226][ T8784]  <TASK>
[  150.920235][ T8784]  dump_stack_lvl+0xf2/0x150
[  150.920297][ T8784]  dump_stack+0x15/0x1a
[  150.920324][ T8784]  should_fail_ex+0x24a/0x260
[  150.920364][ T8784]  should_failslab+0x8f/0xb0
[  150.920442][ T8784]  __kmalloc_noprof+0xab/0x3f0
[  150.920469][ T8784]  ? nla_strdup+0x7b/0xc0
[  150.920511][ T8784]  nla_strdup+0x7b/0xc0
[  150.920552][ T8784]  nf_tables_newtable+0x3e7/0xee0
[  150.920606][ T8784]  nfnetlink_rcv+0xb3e/0x15d0
[  150.920664][ T8784]  netlink_unicast+0x599/0x670
[  150.920705][ T8784]  netlink_sendmsg+0x5cc/0x6e0
[  150.920773][ T8784]  ? __pfx_netlink_sendmsg+0x10/0x10
[  150.920797][ T8784]  __sock_sendmsg+0x140/0x180
[  150.920903][ T8784]  ____sys_sendmsg+0x326/0x4b0
[  150.920940][ T8784]  __sys_sendmsg+0x19d/0x230
[  150.921034][ T8784]  __x64_sys_sendmsg+0x46/0x50
[  150.921067][ T8784]  x64_sys_call+0x2734/0x2dc0
[  150.921106][ T8784]  do_syscall_64+0xc9/0x1c0
[  150.921148][ T8784]  ? clear_bhb_loop+0x55/0xb0
[  150.921181][ T8784]  ? clear_bhb_loop+0x55/0xb0
[  150.921244][ T8784]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.921278][ T8784] RIP: 0033:0x7efff3a5d169
[  150.921297][ T8784] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  150.921320][ T8784] RSP: 002b:00007efff20c1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  150.921344][ T8784] RAX: ffffffffffffffda RBX: 00007efff3c75fa0 RCX: 00007efff3a5d169
[  150.921474][ T8784] RDX: 0000000000000000 RSI: 000020000000c2c0 RDI: 0000000000000003
[  150.921490][ T8784] RBP: 00007efff20c1090 R08: 0000000000000000 R09: 0000000000000000
[  150.921506][ T8784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  150.921521][ T8784] R13: 0000000000000000 R14: 00007efff3c75fa0 R15: 00007ffe85842cc8
[  150.921545][ T8784]  </TASK>
[  150.963100][ T8786] __nla_validate_parse: 9 callbacks suppressed
[  150.963120][ T8786] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  151.161303][ T8787] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1933'.
[  151.217770][ T8790] loop0: detected capacity change from 0 to 4096
[  151.274027][ T8801] FAULT_INJECTION: forcing a failure.
[  151.274027][ T8801] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  151.287225][ T8801] CPU: 0 UID: 0 PID: 8801 Comm: syz.0.1938 Tainted: G        W          6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  151.287264][ T8801] Tainted: [W]=WARN
[  151.287272][ T8801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  151.287295][ T8801] Call Trace:
[  151.287304][ T8801]  <TASK>
[  151.287313][ T8801]  dump_stack_lvl+0xf2/0x150
[  151.287413][ T8801]  dump_stack+0x15/0x1a
[  151.287439][ T8801]  should_fail_ex+0x24a/0x260
[  151.287477][ T8801]  should_fail+0xb/0x10
[  151.287583][ T8801]  should_fail_usercopy+0x1a/0x20
[  151.287621][ T8801]  _copy_to_user+0x20/0xa0
[  151.287642][ T8801]  simple_read_from_buffer+0xa0/0x110
[  151.287671][ T8801]  proc_fail_nth_read+0xf9/0x140
[  151.287777][ T8801]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  151.287819][ T8801]  vfs_read+0x19b/0x6f0
[  151.287849][ T8801]  ? __rcu_read_unlock+0x4e/0x70
[  151.287986][ T8801]  ? __fget_files+0x17c/0x1c0
[  151.288032][ T8801]  ksys_read+0xe8/0x1b0
[  151.288065][ T8801]  __x64_sys_read+0x42/0x50
[  151.288167][ T8801]  x64_sys_call+0x2874/0x2dc0
[  151.288194][ T8801]  do_syscall_64+0xc9/0x1c0
[  151.288278][ T8801]  ? clear_bhb_loop+0x55/0xb0
[  151.288313][ T8801]  ? clear_bhb_loop+0x55/0xb0
[  151.288363][ T8801]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.288397][ T8801] RIP: 0033:0x7f2a63ebbb7c
[  151.288416][ T8801] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  151.288436][ T8801] RSP: 002b:00007f2a62527030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  151.288459][ T8801] RAX: ffffffffffffffda RBX: 00007f2a640d5fa0 RCX: 00007f2a63ebbb7c
[  151.288472][ T8801] RDX: 000000000000000f RSI: 00007f2a625270a0 RDI: 0000000000000006
[  151.288486][ T8801] RBP: 00007f2a62527090 R08: 0000000000000000 R09: 0000000000000000
[  151.288542][ T8801] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  151.288555][ T8801] R13: 0000000000000000 R14: 00007f2a640d5fa0 R15: 00007ffc6c05a408
[  151.288573][ T8801]  </TASK>
[  151.604473][ T8812] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  151.615051][ T8812] SELinux: failed to load policy
[  151.678369][ T8820] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  151.688056][ T8820] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  151.703140][ T8823] binfmt_misc: register: failed to install interpreter file ./file0
[  151.736792][ T8824] loop0: detected capacity change from 0 to 2048
[  151.751547][ T8824] ext4 filesystem being mounted at /390/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  151.766829][ T8824] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1944'.
[  151.790242][ T8832] loop4: detected capacity change from 0 to 2048
[  151.830940][ T8836] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1950'.
[  151.879546][ T8840] loop3: detected capacity change from 0 to 2048
[  151.933043][ T8830] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  151.948155][ T8830] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 352 with error 28
[  151.964164][ T8830] EXT4-fs (loop4): This should not happen!! Data will be lost
[  151.964164][ T8830] 
[  151.973852][ T8830] EXT4-fs (loop4): Total free blocks count 0
[  151.979853][ T8830] EXT4-fs (loop4): Free/Dirty block details
[  151.987138][ T8830] EXT4-fs (loop4): free_blocks=2415919104
[  151.992967][ T8830] EXT4-fs (loop4): dirty_blocks=352
[  152.000238][ T8830] EXT4-fs (loop4): Block reservation details
[  152.006259][ T8830] EXT4-fs (loop4): i_reserved_data_blocks=22
[  152.014420][ T8839] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  152.042206][ T8839] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 256 with error 28
[  152.054736][ T8839] EXT4-fs (loop3): This should not happen!! Data will be lost
[  152.054736][ T8839] 
[  152.064415][ T8839] EXT4-fs (loop3): Total free blocks count 0
[  152.073697][ T8839] EXT4-fs (loop3): Free/Dirty block details
[  152.079625][ T8839] EXT4-fs (loop3): free_blocks=2415919104
[  152.085437][ T8839] EXT4-fs (loop3): dirty_blocks=256
[  152.090667][ T8839] EXT4-fs (loop3): Block reservation details
[  152.096758][ T8839] EXT4-fs (loop3): i_reserved_data_blocks=16
[  152.323953][ T8856] loop1: detected capacity change from 0 to 1024
[  152.394282][ T8856] EXT4-fs: Ignoring removed nobh option
[  152.442268][ T8860] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=24592 sclass=netlink_route_socket pid=8860 comm=syz.2.1958
[  152.456050][ T8860] Cannot find del_set index 0 as target
[  152.678743][   T58] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 28
[  152.694303][   T58] EXT4-fs (loop3): This should not happen!! Data will be lost
[  152.694303][   T58] 
[  152.718051][ T1581] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 28
[  152.730388][ T1581] EXT4-fs (loop4): This should not happen!! Data will be lost
[  152.730388][ T1581] 
[  152.867986][ T8877] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1963'.
[  152.942195][ T8883] capability: warning: `syz.4.1964' uses 32-bit capabilities (legacy support in use)
[  152.972756][ T8886] loop3: detected capacity change from 0 to 4096
[  153.016905][ T8893] loop0: detected capacity change from 0 to 2048
[  153.062220][ T8901] loop4: detected capacity change from 0 to 4096
[  153.073771][ T8903] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1975'.
[  153.084176][ T8903] @: renamed from vlan0 (while UP)
[  153.143832][ T3374] kernel write not supported for file /1055/oom_score_adj (pid: 3374 comm: kworker/0:3)
[  153.157545][ T8892] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  153.173744][ T8892] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 178 with error 28
[  153.186236][ T8892] EXT4-fs (loop0): This should not happen!! Data will be lost
[  153.186236][ T8892] 
[  153.186725][ T8909] loop4: detected capacity change from 0 to 512
[  153.196071][ T8892] EXT4-fs (loop0): Total free blocks count 0
[  153.196088][ T8892] EXT4-fs (loop0): Free/Dirty block details
[  153.196099][ T8892] EXT4-fs (loop0): free_blocks=2415919104
[  153.196120][ T8892] EXT4-fs (loop0): dirty_blocks=192
[  153.196134][ T8892] EXT4-fs (loop0): Block reservation details
[  153.196147][ T8892] EXT4-fs (loop0): i_reserved_data_blocks=12
[  153.254138][ T8909] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  153.306401][ T8909] ext4 filesystem being mounted at /413/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  153.330005][ T8909] EXT4-fs error (device loop4): ext4_xattr_block_get:596: inode #15: comm syz.4.1976: corrupted xattr block 32: bad e_name length
[  153.359265][ T8921] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  153.363958][ T8909] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[  153.375085][ T8909] EXT4-fs error (device loop4): ext4_xattr_block_get:596: inode #15: comm syz.4.1976: corrupted xattr block 32: bad e_name length
[  153.396727][ T8909] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[  153.428253][ T8909] EXT4-fs error (device loop4): __ext4_new_inode:1277: comm syz.4.1976: failed to insert inode 16: doubly allocated?
[  153.434431][ T8923] loop3: detected capacity change from 0 to 4096
[  153.601611][ T8939] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1989'.
[  153.605453][ T8941] loop2: detected capacity change from 0 to 1024
[  153.630197][ T8941] EXT4-fs: Ignoring removed nobh option
[  153.676417][ T8939] SELinux: failed to load policy
[  153.807981][ T8952] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  153.966305][   T37] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 28
[  153.978641][   T37] EXT4-fs (loop0): This should not happen!! Data will be lost
[  153.978641][   T37] 
[  154.118266][ T8964] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1997'.
[  154.412957][ T8964] SELinux:  policydb magic number 0x6c767069 does not match expected magic number 0xf97cff8c
[  154.436885][ T8964] SELinux: failed to load policy
[  154.576653][ T8986] loop4: detected capacity change from 0 to 128
[  154.580447][ T8984] bridge_slave_0: left allmulticast mode
[  154.592236][ T8984] bridge_slave_0: left promiscuous mode
[  154.597955][ T8984] bridge0: port 1(bridge_slave_0) entered disabled state
[  154.607927][ T8987] loop0: detected capacity change from 0 to 128
[  154.620577][ T8987] ext4 filesystem being mounted at /397/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  154.661803][ T8991] loop4: detected capacity change from 0 to 128
[  154.674145][ T8990] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  154.685451][ T8984] bridge_slave_1: left allmulticast mode
[  154.691145][ T8984] bridge_slave_1: left promiscuous mode
[  154.696925][ T8984] bridge0: port 2(bridge_slave_1) entered disabled state
[  154.716266][ T8984] bond0: (slave bond_slave_0): Releasing backup interface
[  154.738491][ T8984] bond0: (slave bond_slave_1): Releasing backup interface
[  154.824894][ T8984] team0: Port device team_slave_0 removed
[  154.844578][ T8984] team0: Port device team_slave_1 removed
[  154.854315][ T8984] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  154.861909][ T8984] batman_adv: batadv0: Removing interface: batadv_slave_0
[  154.870556][ T8984] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  154.878115][ T8984] batman_adv: batadv0: Removing interface: batadv_slave_1
[  154.880325][ T8998] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2003'.
[  154.910800][ T8999] loop1: detected capacity change from 0 to 2048
[  154.920974][ T8992] team0: Mode changed to "loadbalance"
[  154.932075][ T8995] vlan0: entered promiscuous mode
[  154.971052][ T8995] team0: Port device vlan0 added
[  155.025926][ T8998] team0 (unregistering): Port device vlan0 removed
[  155.069185][ T8996] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  155.100707][ T8996] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 128 with error 28
[  155.113198][ T8996] EXT4-fs (loop1): This should not happen!! Data will be lost
[  155.113198][ T8996] 
[  155.122879][ T8996] EXT4-fs (loop1): Total free blocks count 0
[  155.128918][ T8996] EXT4-fs (loop1): Free/Dirty block details
[  155.134836][ T8996] EXT4-fs (loop1): free_blocks=2415919104
[  155.140662][ T8996] EXT4-fs (loop1): dirty_blocks=128
[  155.145882][ T8996] EXT4-fs (loop1): Block reservation details
[  155.151928][ T8996] EXT4-fs (loop1): i_reserved_data_blocks=8
[  155.233412][ T9006] loop4: detected capacity change from 0 to 2048
[  155.378697][ T9012] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=24592 sclass=netlink_route_socket pid=9012 comm=syz.3.2009
[  155.407777][ T9012] Cannot find del_set index 0 as target
[  155.454956][ T9015] loop0: detected capacity change from 0 to 1024
[  155.470769][ T9005] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  155.486471][ T9015] EXT4-fs: Ignoring removed nobh option
[  155.503484][ T9005] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 192 with error 28
[  155.516056][ T9005] EXT4-fs (loop4): This should not happen!! Data will be lost
[  155.516056][ T9005] 
[  155.529002][ T9005] EXT4-fs (loop4): Total free blocks count 0
[  155.535047][ T9005] EXT4-fs (loop4): Free/Dirty block details
[  155.540992][ T9005] EXT4-fs (loop4): free_blocks=2415919104
[  155.546755][ T9005] EXT4-fs (loop4): dirty_blocks=192
[  155.552018][ T9005] EXT4-fs (loop4): Block reservation details
[  155.561564][ T9005] EXT4-fs (loop4): i_reserved_data_blocks=12
[  155.617116][ T9023] netlink: 52 bytes leftover after parsing attributes in process `syz.3.2013'.
[  155.685906][   T51] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 28
[  155.698210][   T51] EXT4-fs (loop1): This should not happen!! Data will be lost
[  155.698210][   T51] 
[  155.764156][   T30] kauditd_printk_skb: 367 callbacks suppressed
[  155.764175][   T30] audit: type=1400 audit(1742525825.419:11378): avc:  denied  { load_policy } for  pid=9024 comm="syz.3.2014" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  155.791771][ T9025] SELinux: failed to load policy
[  155.805289][   T30] audit: type=1400 audit(1742525825.428:11379): avc:  denied  { create } for  pid=9028 comm="syz.2.2016" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  155.824974][   T30] audit: type=1400 audit(1742525825.428:11380): avc:  denied  { read write } for  pid=9028 comm="syz.2.2016" name="nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  155.848595][   T30] audit: type=1400 audit(1742525825.428:11381): avc:  denied  { open } for  pid=9028 comm="syz.2.2016" path="/dev/nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  155.907608][ T9031] syz!: rxe_newlink: already configured on team_slave_0
[  155.930915][   T30] audit: type=1400 audit(1742525825.550:11382): avc:  denied  { create } for  pid=9030 comm="syz.2.2017" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  155.951373][   T30] audit: type=1400 audit(1742525825.550:11383): avc:  denied  { write } for  pid=9030 comm="syz.2.2017" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  155.992482][   T30] audit: type=1400 audit(1742525825.625:11384): avc:  denied  { create } for  pid=9032 comm="syz.2.2018" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  156.034183][   T30] audit: type=1400 audit(1742525825.625:11385): avc:  denied  { connect } for  pid=9032 comm="syz.2.2018" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  156.054349][   T30] audit: type=1400 audit(1742525825.625:11386): avc:  denied  { ioctl } for  pid=9032 comm="syz.2.2018" path="socket:[24727]" dev="sockfs" ino=24727 ioctlcmd=0x48d2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  156.095202][ T9037] loop3: detected capacity change from 0 to 512
[  156.124920][ T9037] EXT4-fs (loop3): failed to initialize system zone (-117)
[  156.132358][ T9037] EXT4-fs (loop3): mount failed
[  156.137247][   T30] audit: type=1400 audit(1742525825.084:11387): avc:  denied  { read } for  pid=9034 comm="syz.3.2019" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  156.234734][   T37] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 28
[  156.247047][   T37] EXT4-fs (loop4): This should not happen!! Data will be lost
[  156.247047][   T37] 
[  156.350389][ T9047] loop1: detected capacity change from 0 to 128
[  156.365440][ T9047] ext4 filesystem being mounted at /389/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  156.425809][ T9052] __nla_validate_parse: 1 callbacks suppressed
[  156.425831][ T9052] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2024'.
[  156.468442][ T9054] binfmt_misc: register: failed to install interpreter file ./file0
[  156.476591][ T9056] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  156.496882][ T9056] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  156.564445][ T9060] Cannot find del_set index 0 as target
[  156.615077][ T9064] loop4: detected capacity change from 0 to 2048
[  156.663744][ T9068] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2029'.
[  156.697828][ T9064] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  156.717715][ T9064] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 9 with error 28
[  156.730051][ T9064] EXT4-fs (loop4): This should not happen!! Data will be lost
[  156.730051][ T9064] 
[  156.739739][ T9064] EXT4-fs (loop4): Total free blocks count 0
[  156.745889][ T9068] SELinux: failed to load policy
[  156.754328][ T9064] EXT4-fs (loop4): Free/Dirty block details
[  156.760249][ T9064] EXT4-fs (loop4): free_blocks=2415919104
[  156.766085][ T9064] EXT4-fs (loop4): dirty_blocks=16
[  156.771253][ T9064] EXT4-fs (loop4): Block reservation details
[  156.780608][ T9064] EXT4-fs (loop4): i_reserved_data_blocks=1
[  156.822946][ T9064] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2028'.
[  156.863784][ T9078] loop0: detected capacity change from 0 to 1024
[  156.871498][ T9078] EXT4-fs: Ignoring removed nobh option
[  156.923865][ T9084] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2035'.
[  156.982644][ T9088] Cannot find del_set index 0 as target
[  157.202928][ T9103] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2042'.
[  157.268129][ T9103] SELinux: failed to load policy
[  157.341166][ T9114] netlink: 48 bytes leftover after parsing attributes in process `syz.4.2047'.
[  157.378228][ T9116] Cannot find del_set index 0 as target
[  157.447513][ T9123] loop1: detected capacity change from 0 to 2048
[  157.497303][ T9136] loop4: detected capacity change from 0 to 128
[  157.528087][ T9138] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2057'.
[  157.546399][ T9136] ext4 filesystem being mounted at /427/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  157.587963][ T9142] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  157.603674][ T9122] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  157.620626][ T9138] SELinux: failed to load policy
[  157.627468][ T9122] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 298 with error 28
[  157.640322][ T9122] EXT4-fs (loop1): This should not happen!! Data will be lost
[  157.640322][ T9122] 
[  157.653401][ T9122] EXT4-fs (loop1): Total free blocks count 0
[  157.659405][ T9122] EXT4-fs (loop1): Free/Dirty block details
[  157.665348][ T9122] EXT4-fs (loop1): free_blocks=2415919104
[  157.671091][ T9122] EXT4-fs (loop1): dirty_blocks=1952
[  157.676465][ T9122] EXT4-fs (loop1): Block reservation details
[  157.685817][ T9122] EXT4-fs (loop1): i_reserved_data_blocks=161
[  157.736547][ T9146] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  157.754107][ T9146] loop2: detected capacity change from 0 to 512
[  157.806445][ T9146] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2059: bg 0: block 248: padding at end of block bitmap is not set
[  157.833719][ T9146] EXT4-fs error (device loop2): ext4_acquire_dquot:6927: comm syz.2.2059: Failed to acquire dquot type 1
[  157.847421][ T9146] EXT4-fs (loop2): 1 truncate cleaned up
[  157.856477][ T9146] ext4 filesystem being mounted at /389/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  157.867386][ T9156] random: crng reseeded on system resumption
[  157.952306][ T9146] $H�: renamed from bond0 (while UP)
[  157.972129][ T9146] $H�: entered promiscuous mode
[  158.012884][ T9160] 9p: Unknown uid 00000000004294967295
[  158.154689][ T9172] loop3: detected capacity change from 0 to 128
[  158.182179][ T9174] loop2: detected capacity change from 0 to 1024
[  158.199134][ T9174] EXT4-fs: Ignoring removed nobh option
[  158.221195][   T58] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 28
[  158.233538][   T58] EXT4-fs (loop1): This should not happen!! Data will be lost
[  158.233538][   T58] 
[  158.312185][ T9184] unsupported nla_type 52263
[  158.364628][ T9184] loop0: detected capacity change from 0 to 512
[  158.388190][ T9184] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  158.428941][ T9184] EXT4-fs (loop0): 1 truncate cleaned up
[  158.544266][ T9204] loop4: detected capacity change from 0 to 2048
[  158.664146][ T9172] loop3: detected capacity change from 0 to 128
[  158.681922][ T9203] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  158.712081][ T9203] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 320 with error 28
[  158.724572][ T9203] EXT4-fs (loop4): This should not happen!! Data will be lost
[  158.724572][ T9203] 
[  158.737697][ T9203] EXT4-fs (loop4): Total free blocks count 0
[  158.743789][ T9203] EXT4-fs (loop4): Free/Dirty block details
[  158.749699][ T9203] EXT4-fs (loop4): free_blocks=2415919104
[  158.755466][ T9203] EXT4-fs (loop4): dirty_blocks=1168
[  158.760785][ T9203] EXT4-fs (loop4): Block reservation details
[  158.770278][ T9203] EXT4-fs (loop4): i_reserved_data_blocks=128
[  158.953781][ T9222] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  159.070125][ T9228] syz!: rxe_newlink: already configured on team_slave_0
[  159.211985][   T58] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 28
[  159.227800][   T58] EXT4-fs (loop4): This should not happen!! Data will be lost
[  159.227800][   T58] 
[  159.321803][ T9247] loop1: detected capacity change from 0 to 1024
[  159.335426][ T9247] EXT4-fs: Ignoring removed nobh option
[  159.443538][ T9257] loop0: detected capacity change from 0 to 1024
[  159.483671][ T9257] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  159.494657][ T9257] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  159.543231][ T9261] SELinux: ebitmap: truncated map
[  159.550169][ T9261] SELinux: failed to load policy
[  159.556612][ T9257] JBD2: no valid journal superblock found
[  159.556626][ T9257] EXT4-fs (loop0): Could not load journal inode
[  159.594438][ T9257] loop0: detected capacity change from 0 to 2048
[  159.601531][ T9257] EXT4-fs (loop0): #clusters per group too big: 32768
[  159.625846][ T9270] loop4: detected capacity change from 0 to 512
[  159.633754][ T9270] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  159.646456][ T9270] EXT4-fs (loop4): 1 truncate cleaned up
[  159.692022][ T9279] loop3: detected capacity change from 0 to 2048
[  159.754858][ T9283] loop4: detected capacity change from 0 to 2048
[  159.789728][ T9288] loop0: detected capacity change from 0 to 512
[  159.804233][ T9283]  loop4: p1 < > p4
[  159.809101][ T9283] loop4: p4 size 8388608 extends beyond EOD, truncated
[  159.816296][ T9288] EXT4-fs (loop0): failed to initialize system zone (-117)
[  159.825005][ T9288] EXT4-fs (loop0): mount failed
[  159.874693][ T9274] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  159.889907][ T9288] loop0: detected capacity change from 0 to 1024
[  159.890438][ T9274] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 480 with error 28
[  159.908814][ T9274] EXT4-fs (loop3): This should not happen!! Data will be lost
[  159.908814][ T9274] 
[  159.909260][ T9288] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[  159.918589][ T9274] EXT4-fs (loop3): Total free blocks count 0
[  159.918699][ T9274] EXT4-fs (loop3): Free/Dirty block details
[  159.918712][ T9274] EXT4-fs (loop3): free_blocks=2415919104
[  159.918728][ T9274] EXT4-fs (loop3): dirty_blocks=480
[  159.918742][ T9274] EXT4-fs (loop3): Block reservation details
[  159.918752][ T9274] EXT4-fs (loop3): i_reserved_data_blocks=30
[  159.990517][ T9294] loop4: detected capacity change from 0 to 4096
[  160.226043][ T9308] FAULT_INJECTION: forcing a failure.
[  160.226043][ T9308] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  160.242466][ T9308] CPU: 0 UID: 0 PID: 9308 Comm: syz.1.2123 Tainted: G        W          6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  160.242501][ T9308] Tainted: [W]=WARN
[  160.242509][ T9308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  160.242524][ T9308] Call Trace:
[  160.242531][ T9308]  <TASK>
[  160.242539][ T9308]  dump_stack_lvl+0xf2/0x150
[  160.242572][ T9308]  dump_stack+0x15/0x1a
[  160.242615][ T9308]  should_fail_ex+0x24a/0x260
[  160.242653][ T9308]  should_fail+0xb/0x10
[  160.242706][ T9308]  should_fail_usercopy+0x1a/0x20
[  160.242739][ T9308]  _copy_from_user+0x1c/0xa0
[  160.242758][ T9308]  copy_msghdr_from_user+0x54/0x2a0
[  160.242803][ T9308]  ? __fget_files+0x17c/0x1c0
[  160.242923][ T9308]  __sys_sendmmsg+0x1e8/0x4b0
[  160.243043][ T9308]  __x64_sys_sendmmsg+0x57/0x70
[  160.243089][ T9308]  x64_sys_call+0x29aa/0x2dc0
[  160.243118][ T9308]  do_syscall_64+0xc9/0x1c0
[  160.243185][ T9308]  ? clear_bhb_loop+0x55/0xb0
[  160.243213][ T9308]  ? clear_bhb_loop+0x55/0xb0
[  160.243293][ T9308]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.243324][ T9308] RIP: 0033:0x7efff3a5d169
[  160.243342][ T9308] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  160.243365][ T9308] RSP: 002b:00007efff20c1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  160.243387][ T9308] RAX: ffffffffffffffda RBX: 00007efff3c75fa0 RCX: 00007efff3a5d169
[  160.243401][ T9308] RDX: 000000000800001d RSI: 0000200000007fc0 RDI: 0000000000000005
[  160.243426][ T9308] RBP: 00007efff20c1090 R08: 0000000000000000 R09: 0000000000000000
[  160.243437][ T9308] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  160.243448][ T9308] R13: 0000000000000000 R14: 00007efff3c75fa0 R15: 00007ffe85842cc8
[  160.243464][ T9308]  </TASK>
[  160.472351][ T9315] @: renamed from vlan0 (while UP)
[  160.480408][ T9313] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  160.493254][ T9315] netlink: 'syz.0.2124': attribute type 3 has an invalid length.
[  160.628892][ T9324] loop4: detected capacity change from 0 to 4096
[  160.645457][ T1467] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 28
[  160.661258][ T1467] EXT4-fs (loop3): This should not happen!! Data will be lost
[  160.661258][ T1467] 
[  160.740116][ T9333] random: crng reseeded on system resumption
[  160.824190][ T9334] loop2: detected capacity change from 0 to 512
[  160.836319][ T9334] EXT4-fs (loop2): failed to initialize system zone (-117)
[  160.843713][ T9334] EXT4-fs (loop2): mount failed
[  160.907490][ T9332] SELinux: ebitmap: truncated map
[  160.913091][ T9332] SELinux: failed to load policy
[  161.082311][ T9350] loop4: detected capacity change from 0 to 512
[  161.113981][   T30] kauditd_printk_skb: 352 callbacks suppressed
[  161.113998][   T30] audit: type=1326 audit(1742525828.460:11738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9346 comm="syz.4.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f8f26d0bdca code=0x7ffc0000
[  161.151025][   T30] audit: type=1326 audit(1742525828.506:11739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9346 comm="syz.4.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f8f26d0b9d7 code=0x7ffc0000
[  161.174647][   T30] audit: type=1326 audit(1742525828.506:11740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9346 comm="syz.4.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f8f26d0e90a code=0x7ffc0000
[  161.202208][ T9349] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  161.227604][ T9350] EXT4-fs (loop4): failed to initialize system zone (-117)
[  161.235392][ T9350] EXT4-fs (loop4): mount failed
[  161.264656][   T30] audit: type=1326 audit(1742525828.619:11741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9346 comm="syz.4.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8f26d0bad0 code=0x7ffc0000
[  161.308816][   T30] audit: type=1326 audit(1742525828.647:11742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9346 comm="syz.4.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f8f26d0cd6b code=0x7ffc0000
[  161.332389][   T30] audit: type=1326 audit(1742525828.647:11743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9346 comm="syz.4.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f8f26d0bdca code=0x7ffc0000
[  161.355830][   T30] audit: type=1326 audit(1742525828.647:11744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9346 comm="syz.4.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f26d0d169 code=0x7ffc0000
[  161.379342][   T30] audit: type=1326 audit(1742525828.647:11745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9346 comm="syz.4.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f26d0d169 code=0x7ffc0000
[  161.421216][   T30] audit: type=1326 audit(1742525828.656:11746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9346 comm="syz.4.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=71 compat=0 ip=0x7f8f26d0d169 code=0x7ffc0000
[  161.444758][   T30] audit: type=1326 audit(1742525828.656:11747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9346 comm="syz.4.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f26d0d169 code=0x7ffc0000
[  161.535792][ T9358] SELinux: ebitmap: truncated map
[  161.541406][ T9358] SELinux: failed to load policy
[  161.627733][ T9361] loop3: detected capacity change from 0 to 164
[  161.694602][ T9368] loop2: detected capacity change from 0 to 2048
[  161.735786][ T9368] EXT4-fs mount: 89 callbacks suppressed
[  161.735806][ T9368] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  161.871343][ T9367] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  161.917503][ T9367] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 160 with error 28
[  161.930220][ T9367] EXT4-fs (loop2): This should not happen!! Data will be lost
[  161.930220][ T9367] 
[  161.940019][ T9367] EXT4-fs (loop2): Total free blocks count 0
[  161.946020][ T9367] EXT4-fs (loop2): Free/Dirty block details
[  161.951994][ T9367] EXT4-fs (loop2): free_blocks=2415919104
[  161.957804][ T9367] EXT4-fs (loop2): dirty_blocks=704
[  161.963075][ T9367] EXT4-fs (loop2): Block reservation details
[  161.967554][ T9385] loop1: detected capacity change from 0 to 2048
[  161.969119][ T9367] EXT4-fs (loop2): i_reserved_data_blocks=44
[  162.011989][ T9391] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  162.023648][ T9390] rdma_rxe: rxe_newlink: failed to add bond0
[  162.037876][ T9390] __nla_validate_parse: 18 callbacks suppressed
[  162.037892][ T9390] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2149'.
[  162.093611][ T9390] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  162.160462][ T9397] program syz.4.2152 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  162.378912][ T9390] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  162.390010][ T9390] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2149'.
[  162.467806][ T9385] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  162.527645][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.588241][ T9405] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2156'.
[  162.616160][   T58] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 28
[  162.681545][ T9414] loop1: detected capacity change from 0 to 1024
[  162.688295][ T9414] EXT4-fs: Ignoring removed nobh option
[  162.701226][ T9414] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  162.749517][ T9419] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  162.791046][ T9421] binfmt_misc: register: failed to install interpreter file ./file0
[  163.133358][ T9430] loop2: detected capacity change from 0 to 2048
[  163.199540][ T9430]  loop2: p1 < > p4
[  163.203835][ T9430] loop2: p4 size 8388608 extends beyond EOD, truncated
[  163.265072][ T9437] binfmt_misc: register: failed to install interpreter file ./file0
[  163.445281][ T9448] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2172'.
[  163.497665][ T9451] loop3: detected capacity change from 0 to 2048
[  163.533222][ T9451] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  163.554897][ T9451] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  163.580933][ T9451] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 9 with error 28
[  163.593197][ T9451] EXT4-fs (loop3): This should not happen!! Data will be lost
[  163.593197][ T9451] 
[  163.603128][ T9451] EXT4-fs (loop3): Total free blocks count 0
[  163.609248][ T9451] EXT4-fs (loop3): Free/Dirty block details
[  163.615219][ T9451] EXT4-fs (loop3): free_blocks=2415919104
[  163.621098][ T9451] EXT4-fs (loop3): dirty_blocks=16
[  163.626272][ T9451] EXT4-fs (loop3): Block reservation details
[  163.632270][ T9451] EXT4-fs (loop3): i_reserved_data_blocks=1
[  163.655088][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.696762][ T9457] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  163.711609][ T9457] SELinux: failed to load policy
[  163.751767][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.932559][ T9470] netlink: 'syz.3.2181': attribute type 5 has an invalid length.
[  163.960995][ T9470] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5130 sclass=netlink_route_socket pid=9470 comm=syz.3.2181
[  164.366160][ T9479] loop3: detected capacity change from 0 to 512
[  164.399384][ T9479] EXT4-fs (loop3): failed to initialize system zone (-117)
[  164.411006][ T9479] EXT4-fs (loop3): mount failed
[  164.436051][ T9483] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2186'.
[  164.496384][ T9483] SELinux: failed to load policy
[  164.729902][ T9498] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2191'.
[  164.854259][ T9510] loop2: detected capacity change from 0 to 128
[  164.854564][ T9509] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  165.066269][ T9525] Cannot find del_set index 0 as target
[  165.116901][ T9531] loop0: detected capacity change from 0 to 2048
[  165.140791][ T9531] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  165.173776][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.219927][ T9510] loop2: detected capacity change from 0 to 128
[  165.224239][ T9538] netlink: 'syz.4.2204': attribute type 3 has an invalid length.
[  165.351882][ T9555] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2215'.
[  165.416097][ T9555] SELinux:  policydb magic number 0x6c767069 does not match expected magic number 0xf97cff8c
[  165.428622][ T9555] SELinux: failed to load policy
[  165.529435][ T9567] IPVS: length: 4096 != 24
[  165.728923][ T9568] loop1: detected capacity change from 0 to 512
[  165.748106][ T9568] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.760966][ T9568] ext4 filesystem being mounted at /432/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  165.869325][ T9574] EXT4-fs error (device loop1): ext4_do_update_inode:5154: inode #2: comm syz.1.2218: corrupted inode contents
[  165.881922][ T9574] EXT4-fs error (device loop1): ext4_dirty_inode:6042: inode #2: comm syz.1.2218: mark_inode_dirty error
[  165.897169][ T9574] EXT4-fs error (device loop1): ext4_do_update_inode:5154: inode #2: comm syz.1.2218: corrupted inode contents
[  165.909540][ T9574] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #2: comm syz.1.2218: mark_inode_dirty error
[  166.135907][ T9569] loop3: detected capacity change from 0 to 512
[  166.485506][   T30] kauditd_printk_skb: 156 callbacks suppressed
[  166.485536][   T30] audit: type=1326 audit(1742525833.103:11904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9564 comm="syz.3.2219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fe1f12dbdca code=0x7ffc0000
[  166.636554][ T9569] EXT4-fs (loop3): failed to initialize system zone (-117)
[  166.671107][   T30] audit: type=1326 audit(1742525833.150:11905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9564 comm="syz.3.2219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fe1f12dbdca code=0x7ffc0000
[  166.694589][   T30] audit: type=1326 audit(1742525833.150:11906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9564 comm="syz.3.2219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fe1f12db9d7 code=0x7ffc0000
[  166.718279][   T30] audit: type=1326 audit(1742525833.150:11907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9564 comm="syz.3.2219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7fe1f12de90a code=0x7ffc0000
[  166.741889][   T30] audit: type=1326 audit(1742525833.159:11908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9578 comm="syz.0.2221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a63ebd169 code=0x7ffc0000
[  166.765428][   T30] audit: type=1326 audit(1742525833.159:11909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9578 comm="syz.0.2221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a63ebd169 code=0x7ffc0000
[  166.789041][   T30] audit: type=1326 audit(1742525833.178:11910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9578 comm="syz.0.2221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2a63ebd169 code=0x7ffc0000
[  166.812562][   T30] audit: type=1326 audit(1742525833.178:11911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9578 comm="syz.0.2221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a63ebd169 code=0x7ffc0000
[  166.836279][   T30] audit: type=1326 audit(1742525833.178:11912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9578 comm="syz.0.2221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2a63ebd169 code=0x7ffc0000
[  166.859823][   T30] audit: type=1326 audit(1742525833.178:11913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9578 comm="syz.0.2221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a63ebd169 code=0x7ffc0000
[  166.901095][ T9569] EXT4-fs (loop3): mount failed
[  166.998123][ T9591] Cannot find del_set index 0 as target
[  167.136913][ T9601] Cannot find del_set index 0 as target
[  167.171495][ T9605] loop0: detected capacity change from 0 to 128
[  167.191940][ T9603] loop4: detected capacity change from 0 to 2048
[  167.230600][ T9603] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  167.349709][ T9603] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  167.407709][ T9615] loop3: detected capacity change from 0 to 1024
[  167.424768][ T9615] EXT4-fs: Ignoring removed nobh option
[  167.435263][ T9603] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 9 with error 28
[  167.447553][ T9603] EXT4-fs (loop4): This should not happen!! Data will be lost
[  167.447553][ T9603] 
[  167.457337][ T9603] EXT4-fs (loop4): Total free blocks count 0
[  167.463335][ T9603] EXT4-fs (loop4): Free/Dirty block details
[  167.469340][ T9603] EXT4-fs (loop4): free_blocks=2415919104
[  167.475123][ T9603] EXT4-fs (loop4): dirty_blocks=16
[  167.480288][ T9603] EXT4-fs (loop4): Block reservation details
[  167.486401][ T9603] EXT4-fs (loop4): i_reserved_data_blocks=1
[  167.517681][ T9615] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  167.521519][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.608262][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.627485][ T9625] netlink: 'syz.2.2239': attribute type 5 has an invalid length.
[  167.681692][ T9625] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5130 sclass=netlink_route_socket pid=9625 comm=syz.2.2239
[  167.694520][ T9605] loop0: detected capacity change from 0 to 128
[  167.705556][ T9632] loop1: detected capacity change from 0 to 512
[  167.725405][ T9632] EXT4-fs (loop1): failed to initialize system zone (-117)
[  167.732994][ T9632] EXT4-fs (loop1): mount failed
[  167.804514][ T9641] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2244'.
[  167.848339][ T9641] SELinux: ebitmap: truncated map
[  167.856995][ T9641] SELinux: failed to load policy
[  167.857265][ T9644] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2245'.
[  167.876790][ T9644] loop4: detected capacity change from 0 to 512
[  167.883716][ T9644] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  167.896451][ T9644] EXT4-fs (loop4): 1 truncate cleaned up
[  167.903706][ T9644] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  167.937203][ T9647] Cannot find del_set index 0 as target
[  167.948403][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.091725][ T9656] loop2: detected capacity change from 0 to 128
[  168.111799][ T9656] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  168.125272][ T9656] ext4 filesystem being mounted at /426/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  168.213465][ T9662] loop0: detected capacity change from 0 to 2048
[  168.238564][ T9664] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2253'.
[  168.272152][ T9662]  loop0: p1 < > p4
[  168.277639][ T9662] loop0: p4 size 8388608 extends beyond EOD, truncated
[  168.290889][ T9664] SELinux: ebitmap: truncated map
[  168.296730][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.306576][ T9664] SELinux: failed to load policy
[  168.334296][ T9670] netlink: 'syz.0.2255': attribute type 5 has an invalid length.
[  168.364768][ T9670] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5130 sclass=netlink_route_socket pid=9670 comm=syz.0.2255
[  168.392018][ T9674] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2257'.
[  168.419841][ T9677] loop4: detected capacity change from 0 to 2048
[  168.434319][ T9674] SELinux: ebitmap: truncated map
[  168.441539][ T9674] SELinux: failed to load policy
[  168.462514][ T9677]  loop4: p1 < > p4
[  168.467045][ T9677] loop4: p4 size 8388608 extends beyond EOD, truncated
[  168.513456][ T9684] loop4: detected capacity change from 0 to 1024
[  168.520845][ T9685] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2259'.
[  168.543250][ T9684] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  168.559806][ T9690] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2260'.
[  168.572333][ T9684] siw: device registration error -23
[  168.590459][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.615519][ T9694] loop4: detected capacity change from 0 to 1024
[  168.623567][ T9694] EXT4-fs: Ignoring removed nobh option
[  168.653563][ T9694] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  168.787938][ T9701] loop1: detected capacity change from 0 to 4096
[  168.797595][ T9701] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  168.823451][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.919499][ T3301] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  168.929080][ T9713] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  168.995979][ T9721] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2275'.
[  169.010465][ T9721] loop1: detected capacity change from 0 to 512
[  169.020399][ T9721] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  169.042834][ T9721] EXT4-fs (loop1): 1 truncate cleaned up
[  169.051789][ T9721] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.077010][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.130002][ T9727] loop1: detected capacity change from 0 to 4096
[  169.138925][ T9727] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.164258][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.409059][ T9737] Cannot find del_set index 0 as target
[  169.439398][ T9741] loop0: detected capacity change from 0 to 2048
[  169.470840][ T9742] loop3: detected capacity change from 0 to 128
[  169.484826][ T9741]  loop0: p1 < > p4
[  169.489328][ T9741] loop0: p4 size 8388608 extends beyond EOD, truncated
[  169.489800][ T9742] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  169.524697][ T9742] ext4 filesystem being mounted at /484/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  169.526625][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.616104][ T9753] netlink: 'syz.4.2287': attribute type 5 has an invalid length.
[  169.629977][ T9754] loop0: detected capacity change from 0 to 4096
[  169.642711][ T9753] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5130 sclass=netlink_route_socket pid=9753 comm=syz.4.2287
[  169.656533][ T9754] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.674777][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.786023][ T9757] FAULT_INJECTION: forcing a failure.
[  169.786023][ T9757] name failslab, interval 1, probability 0, space 0, times 0
[  169.801595][ T9757] CPU: 0 UID: 0 PID: 9757 Comm: syz.0.2289 Tainted: G        W          6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  169.801631][ T9757] Tainted: [W]=WARN
[  169.801636][ T9757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  169.801660][ T9757] Call Trace:
[  169.801669][ T9757]  <TASK>
[  169.801678][ T9757]  dump_stack_lvl+0xf2/0x150
[  169.801711][ T9757]  dump_stack+0x15/0x1a
[  169.801762][ T9757]  should_fail_ex+0x24a/0x260
[  169.801789][ T9757]  ? genl_start+0x11e/0x3a0
[  169.801808][ T9757]  should_failslab+0x8f/0xb0
[  169.801833][ T9757]  __kmalloc_cache_noprof+0x4e/0x320
[  169.801932][ T9757]  genl_start+0x11e/0x3a0
[  169.801968][ T9757]  __netlink_dump_start+0x32a/0x520
[  169.801998][ T9757]  genl_rcv_msg+0x4ea/0x6d0
[  169.802018][ T9757]  ? __pfx_ctrl_dumpfamily+0x10/0x10
[  169.802039][ T9757]  ? __pfx_genl_start+0x10/0x10
[  169.802058][ T9757]  ? __pfx_genl_dumpit+0x10/0x10
[  169.802098][ T9757]  ? __pfx_genl_done+0x10/0x10
[  169.802119][ T9757]  ? __skb_clone+0x2a3/0x2f0
[  169.802154][ T9757]  netlink_rcv_skb+0x12c/0x230
[  169.802182][ T9757]  ? __pfx_genl_rcv_msg+0x10/0x10
[  169.802256][ T9757]  genl_rcv+0x28/0x40
[  169.802273][ T9757]  netlink_unicast+0x599/0x670
[  169.802307][ T9757]  netlink_sendmsg+0x5cc/0x6e0
[  169.802325][ T9757]  ? __pfx_netlink_sendmsg+0x10/0x10
[  169.802347][ T9757]  __sock_sendmsg+0x140/0x180
[  169.802462][ T9757]  ____sys_sendmsg+0x326/0x4b0
[  169.802489][ T9757]  __sys_sendmsg+0x19d/0x230
[  169.802581][ T9757]  __x64_sys_sendmsg+0x46/0x50
[  169.802685][ T9757]  x64_sys_call+0x2734/0x2dc0
[  169.802717][ T9757]  do_syscall_64+0xc9/0x1c0
[  169.802754][ T9757]  ? clear_bhb_loop+0x55/0xb0
[  169.802808][ T9757]  ? clear_bhb_loop+0x55/0xb0
[  169.802912][ T9757]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.803012][ T9757] RIP: 0033:0x7f2a63ebd169
[  169.803025][ T9757] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  169.803040][ T9757] RSP: 002b:00007f2a62527038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  169.803055][ T9757] RAX: ffffffffffffffda RBX: 00007f2a640d5fa0 RCX: 00007f2a63ebd169
[  169.803065][ T9757] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000006
[  169.803075][ T9757] RBP: 00007f2a62527090 R08: 0000000000000000 R09: 0000000000000000
[  169.803085][ T9757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  169.803096][ T9757] R13: 0000000000000000 R14: 00007f2a640d5fa0 R15: 00007ffc6c05a408
[  169.803134][ T9757]  </TASK>
[  170.117706][ T9766] Cannot find del_set index 0 as target
[  170.142684][ T9767] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2290'.
[  170.147076][ T9770] loop0: detected capacity change from 0 to 1024
[  170.159348][ T9770] EXT4-fs: Ignoring removed nobh option
[  170.168169][ T9772] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  170.189337][ T9770] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  170.213871][ T9779] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2298'.
[  170.226283][ T9779] loop1: detected capacity change from 0 to 512
[  170.236743][ T9779] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  170.248269][ T9779] EXT4-fs (loop1): 1 truncate cleaned up
[  170.255999][ T9779] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  170.283423][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.313629][ T3305] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  170.505663][ T9815] loop3: detected capacity change from 0 to 2048
[  170.530260][ T9819] loop1: detected capacity change from 0 to 128
[  170.534002][ T9815] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  170.543656][ T9819] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  170.560829][ T9819] ext4 filesystem being mounted at /461/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  170.599009][ T9815] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  170.614093][ T9815] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 13 with max blocks 1 with error 28
[  170.629787][ T9815] EXT4-fs (loop3): This should not happen!! Data will be lost
[  170.629787][ T9815] 
[  170.639475][ T9815] EXT4-fs (loop3): Total free blocks count 0
[  170.645515][ T9815] EXT4-fs (loop3): Free/Dirty block details
[  170.652671][ T9815] EXT4-fs (loop3): free_blocks=2415919104
[  170.658421][ T9815] EXT4-fs (loop3): dirty_blocks=16
[  170.665274][ T9815] EXT4-fs (loop3): Block reservation details
[  170.671308][ T9815] EXT4-fs (loop3): i_reserved_data_blocks=1
[  170.687872][   T58] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  170.880234][ T9836] loop3: detected capacity change from 0 to 1764
[  170.887548][ T9836] iso9660: Unknown parameter 'sess���f��00000000000009'
[  171.043908][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.044109][ T9849] loop3: detected capacity change from 0 to 4096
[  171.064371][ T9849] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.101677][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.119581][ T9860] FAULT_INJECTION: forcing a failure.
[  171.119581][ T9860] name failslab, interval 1, probability 0, space 0, times 0
[  171.132331][ T9860] CPU: 1 UID: 0 PID: 9860 Comm: syz.2.2332 Tainted: G        W          6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  171.132367][ T9860] Tainted: [W]=WARN
[  171.132375][ T9860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  171.132467][ T9860] Call Trace:
[  171.132476][ T9860]  <TASK>
[  171.132484][ T9860]  dump_stack_lvl+0xf2/0x150
[  171.132516][ T9860]  dump_stack+0x15/0x1a
[  171.132540][ T9860]  should_fail_ex+0x24a/0x260
[  171.132599][ T9860]  should_failslab+0x8f/0xb0
[  171.132631][ T9860]  kmem_cache_alloc_lru_noprof+0x57/0x320
[  171.132717][ T9860]  ? shmem_alloc_inode+0x34/0x50
[  171.132753][ T9860]  ? jhash+0x2a6/0x310
[  171.132776][ T9860]  shmem_alloc_inode+0x34/0x50
[  171.132797][ T9860]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  171.132932][ T9860]  alloc_inode+0x3c/0x160
[  171.132973][ T9860]  new_inode+0x1e/0x100
[  171.133007][ T9860]  shmem_get_inode+0x24e/0x730
[  171.133050][ T9860]  __shmem_file_setup+0x127/0x1f0
[  171.133094][ T9860]  shmem_file_setup+0x3b/0x50
[  171.133135][ T9860]  __se_sys_memfd_create+0x2e1/0x5a0
[  171.133163][ T9860]  __x64_sys_memfd_create+0x31/0x40
[  171.133225][ T9860]  x64_sys_call+0x2d4c/0x2dc0
[  171.133258][ T9860]  do_syscall_64+0xc9/0x1c0
[  171.133292][ T9860]  ? clear_bhb_loop+0x55/0xb0
[  171.133379][ T9860]  ? clear_bhb_loop+0x55/0xb0
[  171.133413][ T9860]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  171.133445][ T9860] RIP: 0033:0x7fa621cad169
[  171.133522][ T9860] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  171.133545][ T9860] RSP: 002b:00007fa620310e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  171.133567][ T9860] RAX: ffffffffffffffda RBX: 0000000000000a00 RCX: 00007fa621cad169
[  171.133582][ T9860] RDX: 00007fa620310ef0 RSI: 0000000000000000 RDI: 00007fa621d2ec3c
[  171.133594][ T9860] RBP: 00002000000003c0 R08: 00007fa620310bb7 R09: 00007fa620310e40
[  171.133605][ T9860] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000000
[  171.133616][ T9860] R13: 00007fa620310ef0 R14: 00007fa620310eb0 R15: 0000200000000200
[  171.133636][ T9860]  </TASK>
[  171.352765][ T9862] loop0: detected capacity change from 0 to 128
[  171.374369][ T9862] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  171.402011][ T3300] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  171.413804][ T9866] netlink: 'syz.3.2331': attribute type 5 has an invalid length.
[  171.428910][ T9869] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2334'.
[  171.513157][ T9866] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5130 sclass=netlink_route_socket pid=9866 comm=syz.3.2331
[  171.977032][ T9890] FAULT_INJECTION: forcing a failure.
[  171.977032][ T9890] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  171.993560][ T9890] CPU: 0 UID: 0 PID: 9890 Comm: syz.3.2342 Tainted: G        W          6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  171.993590][ T9890] Tainted: [W]=WARN
[  171.993597][ T9890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  171.993609][ T9890] Call Trace:
[  171.993620][ T9890]  <TASK>
[  171.993628][ T9890]  dump_stack_lvl+0xf2/0x150
[  171.993655][ T9890]  dump_stack+0x15/0x1a
[  171.993718][ T9890]  should_fail_ex+0x24a/0x260
[  171.993757][ T9890]  should_fail+0xb/0x10
[  171.993790][ T9890]  should_fail_usercopy+0x1a/0x20
[  171.993830][ T9890]  strncpy_from_user+0x25/0x210
[  171.993902][ T9890]  strncpy_from_bpfptr+0x38/0x60
[  171.993927][ T9890]  bpf_prog_load+0x83d/0x1050
[  171.994052][ T9890]  __sys_bpf+0x463/0x7a0
[  171.994093][ T9890]  __x64_sys_bpf+0x43/0x50
[  171.994126][ T9890]  x64_sys_call+0x2914/0x2dc0
[  171.994159][ T9890]  do_syscall_64+0xc9/0x1c0
[  171.994235][ T9890]  ? clear_bhb_loop+0x55/0xb0
[  171.994270][ T9890]  ? clear_bhb_loop+0x55/0xb0
[  171.994312][ T9890]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  171.994345][ T9890] RIP: 0033:0x7fe1f12dd169
[  171.994363][ T9890] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  171.994381][ T9890] RSP: 002b:00007fe1ef947038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  171.994401][ T9890] RAX: ffffffffffffffda RBX: 00007fe1f14f5fa0 RCX: 00007fe1f12dd169
[  171.994455][ T9890] RDX: 0000000000000094 RSI: 0000200000000300 RDI: 0000000000000005
[  171.994471][ T9890] RBP: 00007fe1ef947090 R08: 0000000000000000 R09: 0000000000000000
[  171.994486][ T9890] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  171.994500][ T9890] R13: 0000000000000000 R14: 00007fe1f14f5fa0 R15: 00007ffc10ce0bd8
[  171.994522][ T9890]  </TASK>
[  172.354425][   T30] kauditd_printk_skb: 137 callbacks suppressed
[  172.354446][   T30] audit: type=1400 audit(1742525838.246:12051): avc:  denied  { setopt } for  pid=9895 comm="syz.3.2346" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  172.400527][ T9901] SELinux:  Context system_u:object_r:kmsg_device_t:s0 is not valid (left unmapped).
[  172.456195][   T30] audit: type=1400 audit(1742525838.312:12052): avc:  denied  { mac_admin } for  pid=9897 comm="syz.2.2345" capability=33  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  172.477453][   T30] audit: type=1400 audit(1742525838.321:12053): avc:  denied  { relabelto } for  pid=9897 comm="syz.2.2345" name="syz2" dev="cgroup2" ino=53 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:kmsg_device_t:s0"
[  172.507271][   T30] audit: type=1400 audit(1742525838.321:12054): avc:  denied  { associate } for  pid=9897 comm="syz.2.2345" name="syz2" dev="cgroup2" ino=53 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 srawcon="system_u:object_r:kmsg_device_t:s0"
[  172.537546][ T9888] loop4: detected capacity change from 0 to 4096
[  172.544643][   T30] audit: type=1400 audit(1742525838.330:12055): avc:  denied  { bind } for  pid=9899 comm="syz.3.2347" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  172.575353][ T9907] loop0: detected capacity change from 0 to 2048
[  172.576175][ T9909] x_tables: duplicate underflow at hook 1
[  172.589608][   T30] audit: type=1400 audit(1742525838.489:12056): avc:  denied  { ioctl } for  pid=9904 comm="syz.1.2349" path="/dev/input/event0" dev="devtmpfs" ino=242 ioctlcmd=0x45e0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  172.617902][ T9888] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  172.635962][   T30] audit: type=1400 audit(1742525838.527:12057): avc:  denied  { setopt } for  pid=9899 comm="syz.3.2347" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  172.656370][ T9909] vcan0: tx drop: invalid sa for name 0x0000000000000002
[  172.664305][ T9907] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  172.678461][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.696617][ T9907] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  172.730445][ T9907] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 13 with max blocks 1 with error 28
[  172.742841][ T9907] EXT4-fs (loop0): This should not happen!! Data will be lost
[  172.742841][ T9907] 
[  172.752538][ T9907] EXT4-fs (loop0): Total free blocks count 0
[  172.758641][ T9907] EXT4-fs (loop0): Free/Dirty block details
[  172.764581][ T9907] EXT4-fs (loop0): free_blocks=2415919104
[  172.770496][ T9907] EXT4-fs (loop0): dirty_blocks=16
[  172.775673][ T9907] EXT4-fs (loop0): Block reservation details
[  172.781707][ T9907] EXT4-fs (loop0): i_reserved_data_blocks=1
[  172.802326][   T30] audit: type=1326 audit(1742525838.686:12058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9912 comm="syz.1.2351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efff3a5d169 code=0x7ffc0000
[  172.828628][ T9914] loop1: detected capacity change from 0 to 512
[  172.835703][   T30] audit: type=1326 audit(1742525838.686:12059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9912 comm="syz.1.2351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7efff3a5d169 code=0x7ffc0000
[  172.862637][   T30] audit: type=1326 audit(1742525838.686:12060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9912 comm="syz.1.2351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7efff3a5d1a3 code=0x7ffc0000
[  172.864276][   T37] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  172.912628][ T9914] EXT4-fs (loop1): failed to initialize system zone (-117)
[  172.923294][ T9914] EXT4-fs (loop1): mount failed
[  173.246333][ T9934] syz.0.2356 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  173.297410][ T9942] program syz.2.2359 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  173.321801][ T9945] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  173.366471][ T9950] loop2: detected capacity change from 0 to 4096
[  173.375235][ T9950] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  173.405322][ T3301] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.600497][ T9975] loop1: detected capacity change from 0 to 512
[  173.624461][ T9975] EXT4-fs warning (device loop1): ext4_enable_quotas:7145: Failed to enable quota tracking (type=0, err=-5, ino=3). Please run e2fsck to fix.
[  173.639786][ T9975] EXT4-fs (loop1): mount failed
[  173.650556][ T9980] FAULT_INJECTION: forcing a failure.
[  173.650556][ T9980] name failslab, interval 1, probability 0, space 0, times 0
[  173.663296][ T9980] CPU: 0 UID: 0 PID: 9980 Comm: syz.2.2368 Tainted: G        W          6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  173.663330][ T9980] Tainted: [W]=WARN
[  173.663344][ T9980] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  173.663357][ T9980] Call Trace:
[  173.663364][ T9980]  <TASK>
[  173.663372][ T9980]  dump_stack_lvl+0xf2/0x150
[  173.663406][ T9980]  dump_stack+0x15/0x1a
[  173.663431][ T9980]  should_fail_ex+0x24a/0x260
[  173.663521][ T9980]  should_failslab+0x8f/0xb0
[  173.663558][ T9980]  __kmalloc_node_noprof+0xad/0x410
[  173.663632][ T9980]  ? __vmalloc_node_range_noprof+0x3dc/0xe70
[  173.663663][ T9980]  __vmalloc_node_range_noprof+0x3dc/0xe70
[  173.663696][ T9980]  ? __rcu_read_unlock+0x4e/0x70
[  173.663726][ T9980]  ? selinux_capable+0x1f2/0x260
[  173.663800][ T9980]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  173.663830][ T9980]  __vmalloc_noprof+0x5e/0x70
[  173.663857][ T9980]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  173.663886][ T9980]  bpf_prog_alloc_no_stats+0x49/0x380
[  173.663915][ T9980]  ? bpf_prog_alloc+0x28/0x150
[  173.664005][ T9980]  bpf_prog_alloc+0x3a/0x150
[  173.664034][ T9980]  bpf_prog_load+0x4d0/0x1050
[  173.664138][ T9980]  __sys_bpf+0x463/0x7a0
[  173.664173][ T9980]  __x64_sys_bpf+0x43/0x50
[  173.664199][ T9980]  x64_sys_call+0x2914/0x2dc0
[  173.664268][ T9980]  do_syscall_64+0xc9/0x1c0
[  173.664300][ T9980]  ? clear_bhb_loop+0x55/0xb0
[  173.664327][ T9980]  ? clear_bhb_loop+0x55/0xb0
[  173.664394][ T9980]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.664459][ T9980] RIP: 0033:0x7fa621cad169
[  173.664476][ T9980] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.664502][ T9980] RSP: 002b:00007fa620311038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  173.664524][ T9980] RAX: ffffffffffffffda RBX: 00007fa621ec5fa0 RCX: 00007fa621cad169
[  173.664538][ T9980] RDX: 0000000000000080 RSI: 0000200000000500 RDI: 0000000000000005
[  173.664586][ T9980] RBP: 00007fa620311090 R08: 0000000000000000 R09: 0000000000000000
[  173.664598][ T9980] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  173.664610][ T9980] R13: 0000000000000000 R14: 00007fa621ec5fa0 R15: 00007ffd0b36f198
[  173.664695][ T9980]  </TASK>
[  173.885090][ T9980] syz.2.2368: vmalloc error: size 4096, failed to allocated page array size 8, mode:0x500dc2(GFP_HIGHUSER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0
[  173.905845][ T9980] CPU: 0 UID: 0 PID: 9980 Comm: syz.2.2368 Tainted: G        W          6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  173.905882][ T9980] Tainted: [W]=WARN
[  173.905889][ T9980] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  173.905944][ T9980] Call Trace:
[  173.905952][ T9980]  <TASK>
[  173.905963][ T9980]  dump_stack_lvl+0xf2/0x150
[  173.906032][ T9980]  dump_stack+0x15/0x1a
[  173.906059][ T9980]  warn_alloc+0x145/0x1b0
[  173.906238][ T9980]  __vmalloc_node_range_noprof+0x473/0xe70
[  173.906277][ T9980]  ? __rcu_read_unlock+0x4e/0x70
[  173.906397][ T9980]  ? selinux_capable+0x1f2/0x260
[  173.906426][ T9980]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  173.906521][ T9980]  __vmalloc_noprof+0x5e/0x70
[  173.906553][ T9980]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  173.906588][ T9980]  bpf_prog_alloc_no_stats+0x49/0x380
[  173.906685][ T9980]  ? bpf_prog_alloc+0x28/0x150
[  173.906713][ T9980]  bpf_prog_alloc+0x3a/0x150
[  173.906747][ T9980]  bpf_prog_load+0x4d0/0x1050
[  173.906909][ T9980]  __sys_bpf+0x463/0x7a0
[  173.906958][ T9980]  __x64_sys_bpf+0x43/0x50
[  173.906991][ T9980]  x64_sys_call+0x2914/0x2dc0
[  173.907089][ T9980]  do_syscall_64+0xc9/0x1c0
[  173.907121][ T9980]  ? clear_bhb_loop+0x55/0xb0
[  173.907153][ T9980]  ? clear_bhb_loop+0x55/0xb0
[  173.907185][ T9980]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.907269][ T9980] RIP: 0033:0x7fa621cad169
[  173.907343][ T9980] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.907364][ T9980] RSP: 002b:00007fa620311038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  173.907385][ T9980] RAX: ffffffffffffffda RBX: 00007fa621ec5fa0 RCX: 00007fa621cad169
[  173.907397][ T9980] RDX: 0000000000000080 RSI: 0000200000000500 RDI: 0000000000000005
[  173.907408][ T9980] RBP: 00007fa620311090 R08: 0000000000000000 R09: 0000000000000000
[  173.907423][ T9980] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  173.907435][ T9980] R13: 0000000000000000 R14: 00007fa621ec5fa0 R15: 00007ffd0b36f198
[  173.907460][ T9980]  </TASK>
[  174.115915][ T9980] Mem-Info:
[  174.119170][ T9980] active_anon:6464 inactive_anon:3 isolated_anon:0
[  174.119170][ T9980]  active_file:4219 inactive_file:22576 isolated_file:0
[  174.119170][ T9980]  unevictable:0 dirty:32 writeback:0
[  174.119170][ T9980]  slab_reclaimable:3033 slab_unreclaimable:17914
[  174.119170][ T9980]  mapped:31643 shmem:3105 pagetables:948
[  174.119170][ T9980]  sec_pagetables:0 bounce:0
[  174.119170][ T9980]  kernel_misc_reclaimable:0
[  174.119170][ T9980]  free:1884003 free_pcp:5226 free_cma:0
[  174.167287][ T9980] Node 0 active_anon:25856kB inactive_anon:12kB active_file:16876kB inactive_file:90304kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:126572kB dirty:128kB writeback:0kB shmem:12420kB writeback_tmp:0kB kernel_stack:2944kB pagetables:3792kB sec_pagetables:0kB all_unreclaimable? no
[  174.198093][ T9980] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  174.228549][ T9980] lowmem_reserve[]: 0 2885 7863 7863
[  174.233963][ T9980] Node 0 DMA32 free:2950820kB boost:0kB min:4136kB low:7068kB high:10000kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2954352kB mlocked:0kB bounce:0kB free_pcp:3532kB local_pcp:3532kB free_cma:0kB
[  174.265960][ T9980] lowmem_reserve[]: 0 0 4978 4978
[  174.271061][ T9980] Node 0 Normal free:4569832kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:25740kB inactive_anon:12kB active_file:16876kB inactive_file:90304kB unevictable:0kB writepending:0kB present:5242880kB managed:5098208kB mlocked:0kB bounce:0kB free_pcp:17452kB local_pcp:13140kB free_cma:0kB
[  174.301303][ T9980] lowmem_reserve[]: 0 0 0 0
[  174.309416][ T9980] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  174.322483][ T9980] Node 0 DMA32: 3*4kB (M) 3*8kB (M) 2*16kB (M) 5*32kB (M) 3*64kB (M) 2*128kB (M) 2*256kB (M) 3*512kB (M) 3*1024kB (M) 2*2048kB (M) 718*4096kB (M) = 2950820kB
[  174.342038][ T9980] Node 0 Normal: 48*4kB (UE) 263*8kB (UME) 136*16kB (UE) 298*32kB (UME) 312*64kB (UME) 250*128kB (UME) 162*256kB (UME) 103*512kB (UME) 54*1024kB (UME) 16*2048kB (UME) 1055*4096kB (UM) = 4569528kB
[  174.361585][ T9980] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  174.361607][ T9980] 29903 total pagecache pages
[  174.361614][ T9980] 4 pages in swap cache
[  174.361622][ T9980] Free swap  = 124724kB
[  174.361629][ T9980] Total swap = 124996kB
[  174.361637][ T9980] 2097051 pages RAM
[  174.361710][ T9980] 0 pages HighMem/MovableOnly
[  174.361718][ T9980] 80071 pages reserved
[  174.486713][T10002] loop2: detected capacity change from 0 to 2048
[  174.525620][ T9998] __nla_validate_parse: 4 callbacks suppressed
[  174.525636][ T9998] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2375'.
[  174.546412][T10002]  loop2: p1 < > p4
[  174.551140][T10002] loop2: p4 size 8388608 extends beyond EOD, truncated
[  174.560999][ T9998] loop4: detected capacity change from 0 to 512
[  174.578337][T10004] loop1: detected capacity change from 0 to 2048
[  174.588173][ T9998] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  174.612267][ T9998] EXT4-fs (loop4): 1 truncate cleaned up
[  174.618500][ T9998] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  174.635323][T10014] netlink: 'syz.3.2379': attribute type 5 has an invalid length.
[  174.644412][T10004]  loop1: p1 < > p4
[  174.655577][T10004] loop1: p4 size 8388608 extends beyond EOD, truncated
[  174.692998][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.807587][T10031] loop1: detected capacity change from 0 to 128
[  174.833588][T10033] FAULT_INJECTION: forcing a failure.
[  174.833588][T10033] name failslab, interval 1, probability 0, space 0, times 0
[  174.846399][T10033] CPU: 1 UID: 0 PID: 10033 Comm: syz.3.2387 Tainted: G        W          6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  174.846430][T10033] Tainted: [W]=WARN
[  174.846438][T10033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  174.846533][T10033] Call Trace:
[  174.846542][T10033]  <TASK>
[  174.846551][T10033]  dump_stack_lvl+0xf2/0x150
[  174.846599][T10033]  dump_stack+0x15/0x1a
[  174.846620][T10033]  should_fail_ex+0x24a/0x260
[  174.846659][T10033]  should_failslab+0x8f/0xb0
[  174.846689][T10033]  kmem_cache_alloc_lru_noprof+0x57/0x320
[  174.846786][T10033]  ? shmem_alloc_inode+0x34/0x50
[  174.846816][T10033]  shmem_alloc_inode+0x34/0x50
[  174.846916][T10033]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  174.846945][T10033]  alloc_inode+0x3c/0x160
[  174.846980][T10033]  new_inode+0x1e/0x100
[  174.847020][T10033]  shmem_get_inode+0x24e/0x730
[  174.847101][T10033]  __shmem_file_setup+0x127/0x1f0
[  174.847136][T10033]  shmem_file_setup+0x3b/0x50
[  174.847173][T10033]  __se_sys_memfd_create+0x2e1/0x5a0
[  174.847206][T10033]  __x64_sys_memfd_create+0x31/0x40
[  174.847288][T10033]  x64_sys_call+0x2d4c/0x2dc0
[  174.847315][T10033]  do_syscall_64+0xc9/0x1c0
[  174.847405][T10033]  ? clear_bhb_loop+0x55/0xb0
[  174.847440][T10033]  ? clear_bhb_loop+0x55/0xb0
[  174.847467][T10033]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.847527][T10033] RIP: 0033:0x7fe1f12dd169
[  174.847574][T10033] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  174.847595][T10033] RSP: 002b:00007fe1ef946e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  174.847614][T10033] RAX: ffffffffffffffda RBX: 0000000000000bb8 RCX: 00007fe1f12dd169
[  174.847632][T10033] RDX: 00007fe1ef946ef0 RSI: 0000000000000000 RDI: 00007fe1f135ec3c
[  174.847647][T10033] RBP: 00002000000017c0 R08: 00007fe1ef946bb7 R09: 00007fe1ef946e40
[  174.847662][T10033] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000240
[  174.847734][T10033] R13: 00007fe1ef946ef0 R14: 00007fe1ef946eb0 R15: 00002000000000c0
[  174.847755][T10033]  </TASK>
[  175.078460][T10036] loop3: detected capacity change from 0 to 128
[  175.097682][T10037] loop1: detected capacity change from 0 to 128
[  175.158786][T10043] FAULT_INJECTION: forcing a failure.
[  175.158786][T10043] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  175.173189][T10041] loop3: detected capacity change from 0 to 2048
[  175.181694][T10043] CPU: 0 UID: 0 PID: 10043 Comm: syz.0.2391 Tainted: G        W          6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  175.181718][T10043] Tainted: [W]=WARN
[  175.181724][T10043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  175.181778][T10043] Call Trace:
[  175.181784][T10043]  <TASK>
[  175.181792][T10043]  dump_stack_lvl+0xf2/0x150
[  175.181836][T10043]  dump_stack+0x15/0x1a
[  175.181854][T10043]  should_fail_ex+0x24a/0x260
[  175.181882][T10043]  should_fail+0xb/0x10
[  175.181964][T10043]  should_fail_usercopy+0x1a/0x20
[  175.181992][T10043]  _copy_to_user+0x20/0xa0
[  175.182010][T10043]  simple_read_from_buffer+0xa0/0x110
[  175.182059][T10043]  proc_fail_nth_read+0xf9/0x140
[  175.182086][T10043]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  175.182111][T10043]  vfs_read+0x19b/0x6f0
[  175.182166][T10043]  ? __rcu_read_unlock+0x4e/0x70
[  175.182191][T10043]  ? __fget_files+0x17c/0x1c0
[  175.182238][T10043]  ksys_read+0xe8/0x1b0
[  175.182262][T10043]  __x64_sys_read+0x42/0x50
[  175.182285][T10043]  x64_sys_call+0x2874/0x2dc0
[  175.182357][T10043]  do_syscall_64+0xc9/0x1c0
[  175.182450][T10043]  ? clear_bhb_loop+0x55/0xb0
[  175.182483][T10043]  ? clear_bhb_loop+0x55/0xb0
[  175.182543][T10043]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.182620][T10043] RIP: 0033:0x7f2a63ebbb7c
[  175.182640][T10043] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  175.182659][T10043] RSP: 002b:00007f2a62527030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  175.182674][T10043] RAX: ffffffffffffffda RBX: 00007f2a640d5fa0 RCX: 00007f2a63ebbb7c
[  175.182727][T10043] RDX: 000000000000000f RSI: 00007f2a625270a0 RDI: 0000000000000006
[  175.182736][T10043] RBP: 00007f2a62527090 R08: 0000000000000000 R09: 0000000000000000
[  175.182746][T10043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  175.182756][T10043] R13: 0000000000000000 R14: 00007f2a640d5fa0 R15: 00007ffc6c05a408
[  175.182772][T10043]  </TASK>
[  175.386467][T10041]  loop3: p1 < > p4
[  175.390872][T10041] loop3: p4 size 8388608 extends beyond EOD, truncated
[  175.413795][T10046] loop0: detected capacity change from 0 to 512
[  175.424673][T10046] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  175.437615][T10046] EXT4-fs (loop0): 1 truncate cleaned up
[  175.443830][T10046] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  175.469199][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.493353][T10051] netlink: 'syz.3.2395': attribute type 5 has an invalid length.
[  175.576934][T10059] Cannot find del_set index 0 as target
[  175.658186][T10063] SELinux: failed to load policy
[  175.737826][T10070] netlink: 'syz.2.2403': attribute type 5 has an invalid length.
[  175.763856][T10070] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5130 sclass=netlink_route_socket pid=10070 comm=syz.2.2403
[  175.828634][T10081] netlink: 'syz.4.2408': attribute type 5 has an invalid length.
[  175.836560][T10076] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2404'.
[  175.899278][T10088] Cannot find del_set index 0 as target
[  176.020109][T10097] SELinux: failed to load policy
[  176.029364][T10104] loop3: detected capacity change from 0 to 2048
[  176.054836][T10104] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  176.079730][T10114] netlink: 'syz.1.2423': attribute type 5 has an invalid length.
[  176.136968][T10120] Cannot find del_set index 0 as target
[  176.151467][T10117] loop1: detected capacity change from 0 to 1764
[  176.174565][T10117] iso9660: Bad value for 'session'
[  176.213790][T10102] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  176.274528][T10128] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[  176.285201][T10102] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 224 with error 28
[  176.297648][T10102] EXT4-fs (loop3): This should not happen!! Data will be lost
[  176.297648][T10102] 
[  176.307452][T10102] EXT4-fs (loop3): Total free blocks count 0
[  176.313450][T10102] EXT4-fs (loop3): Free/Dirty block details
[  176.319429][T10102] EXT4-fs (loop3): free_blocks=2415919104
[  176.325225][T10102] EXT4-fs (loop3): dirty_blocks=2224
[  176.330571][T10102] EXT4-fs (loop3): Block reservation details
[  176.336570][T10102] EXT4-fs (loop3): i_reserved_data_blocks=181
[  176.482122][T10138] loop2: detected capacity change from 0 to 2048
[  176.512604][T10142] netlink: 'syz.1.2434': attribute type 5 has an invalid length.
[  176.513168][T10138] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  176.550027][ T3301] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.609679][T10148] SELinux: failed to load policy
[  176.639592][T10152] netlink: 20 bytes leftover after parsing attributes in process `+}[@'.
[  176.655261][T10152] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  176.727476][T10158] loop1: detected capacity change from 0 to 4096
[  176.744771][T10158] EXT4-fs: Ignoring removed orlov option
[  176.750684][T10158] EXT4-fs: Ignoring removed nomblk_io_submit option
[  176.761497][T10158] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  176.778997][T10158] FAULT_INJECTION: forcing a failure.
[  176.778997][T10158] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  176.792285][T10158] CPU: 1 UID: 0 PID: 10158 Comm: syz.1.2440 Tainted: G        W          6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  176.792349][T10158] Tainted: [W]=WARN
[  176.792357][T10158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  176.792371][T10158] Call Trace:
[  176.792380][T10158]  <TASK>
[  176.792390][T10158]  dump_stack_lvl+0xf2/0x150
[  176.792526][T10158]  dump_stack+0x15/0x1a
[  176.792593][T10158]  should_fail_ex+0x24a/0x260
[  176.792626][T10158]  should_fail+0xb/0x10
[  176.792654][T10158]  should_fail_usercopy+0x1a/0x20
[  176.792687][T10158]  strncpy_from_user+0x25/0x210
[  176.792766][T10158]  ? kmem_cache_alloc_noprof+0x18e/0x320
[  176.792790][T10158]  ? getname_flags+0x81/0x3b0
[  176.792878][T10158]  getname_flags+0xb0/0x3b0
[  176.792914][T10158]  getname+0x17/0x20
[  176.792930][T10158]  path_removexattrat+0xf0/0x4b0
[  176.792987][T10158]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  176.793029][T10158]  __x64_sys_removexattr+0x38/0x50
[  176.793065][T10158]  x64_sys_call+0x3ea/0x2dc0
[  176.793124][T10158]  do_syscall_64+0xc9/0x1c0
[  176.793158][T10158]  ? clear_bhb_loop+0x55/0xb0
[  176.793236][T10158]  ? clear_bhb_loop+0x55/0xb0
[  176.793270][T10158]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  176.793330][T10158] RIP: 0033:0x7efff3a5d169
[  176.793350][T10158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  176.793372][T10158] RSP: 002b:00007efff20c1038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c5
[  176.793452][T10158] RAX: ffffffffffffffda RBX: 00007efff3c75fa0 RCX: 00007efff3a5d169
[  176.793465][T10158] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000200000000200
[  176.793478][T10158] RBP: 00007efff20c1090 R08: 0000000000000000 R09: 0000000000000000
[  176.793491][T10158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  176.793503][T10158] R13: 0000000000000000 R14: 00007efff3c75fa0 R15: 00007ffe85842cc8
[  176.793522][T10158]  </TASK>
[  177.016192][ T1467] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 28
[  177.021274][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.037592][T10165] loop4: detected capacity change from 0 to 2048
[  177.063203][T10165] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  177.079250][T10167] netlink: 'syz.2.2447': attribute type 5 has an invalid length.
[  177.093362][T10171] netlink: 'syz.1.2446': attribute type 5 has an invalid length.
[  177.132533][T10173] Cannot find del_set index 0 as target
[  177.141003][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.190454][T10176] netlink: 20 bytes leftover after parsing attributes in process `+}[@'.
[  177.216178][T10176] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  177.265361][T10180] loop4: detected capacity change from 0 to 2048
[  177.284598][T10186] loop3: detected capacity change from 0 to 512
[  177.291636][T10189] 9p: Unknown access argument 18446744073709551615: -34
[  177.305311][T10180] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  177.311243][T10186] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  177.359043][T10186] EXT4-fs (loop3): 1 truncate cleaned up
[  177.368583][T10186] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  177.382292][T10194] loop2: detected capacity change from 0 to 2048
[  177.390731][T10180] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  177.427693][T10180] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 13 with max blocks 1 with error 28
[  177.443376][T10180] EXT4-fs (loop4): This should not happen!! Data will be lost
[  177.443376][T10180] 
[  177.453118][T10180] EXT4-fs (loop4): Total free blocks count 0
[  177.459122][T10180] EXT4-fs (loop4): Free/Dirty block details
[  177.465051][T10180] EXT4-fs (loop4): free_blocks=2415919104
[  177.474088][T10180] EXT4-fs (loop4): dirty_blocks=16
[  177.479233][T10180] EXT4-fs (loop4): Block reservation details
[  177.485255][T10180] EXT4-fs (loop4): i_reserved_data_blocks=1
[  177.688032][   T37] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  177.741319][T10210] binfmt_misc: register: failed to install interpreter file ./file0
[  177.763768][T10214] syz0: rxe_newlink: already configured on bond0
[  177.771279][T10214] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2462'.
[  177.780805][T10214] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  177.789240][T10214] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  177.798743][T10214] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2462'.
[  177.863321][T10221] netlink: 20 bytes leftover after parsing attributes in process `+}[@'.
[  177.873201][T10221] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  177.884641][T10224] Cannot find del_set index 0 as target
[  177.910677][T10226] loop2: detected capacity change from 0 to 2048
[  177.924137][T10228] netlink: 'syz.0.2468': attribute type 5 has an invalid length.
[  177.939938][T10228] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5130 sclass=netlink_route_socket pid=10228 comm=syz.0.2468
[  177.974040][T10232] syz!: rxe_newlink: already configured on team_slave_0
[  177.999284][   T30] kauditd_printk_skb: 95 callbacks suppressed
[  177.999302][   T30] audit: type=1326 audit(1742525843.550:12155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10233 comm="syz.2.2470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa621cad169 code=0x7ffc0000
[  178.030378][   T30] audit: type=1326 audit(1742525843.550:12156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10233 comm="syz.2.2470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa621cad169 code=0x7ffc0000
[  178.054088][   T30] audit: type=1326 audit(1742525843.550:12157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10233 comm="syz.2.2470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa621cad169 code=0x7ffc0000
[  178.078002][   T30] audit: type=1326 audit(1742525843.550:12158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10233 comm="syz.2.2470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa621cad169 code=0x7ffc0000
[  178.101725][   T30] audit: type=1326 audit(1742525843.550:12159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10233 comm="syz.2.2470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa621cad169 code=0x7ffc0000
[  178.125475][   T30] audit: type=1326 audit(1742525843.550:12160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10233 comm="syz.2.2470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa621cad169 code=0x7ffc0000
[  178.149239][   T30] audit: type=1326 audit(1742525843.550:12161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10233 comm="syz.2.2470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa621cad169 code=0x7ffc0000
[  178.173017][   T30] audit: type=1326 audit(1742525843.550:12162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10233 comm="syz.2.2470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa621cad169 code=0x7ffc0000
[  178.196614][   T30] audit: type=1326 audit(1742525843.550:12163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10233 comm="syz.2.2470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa621cad169 code=0x7ffc0000
[  178.220242][   T30] audit: type=1326 audit(1742525843.550:12164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10233 comm="syz.2.2470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa621cad169 code=0x7ffc0000
[  178.272419][T10239] loop0: detected capacity change from 0 to 512
[  178.278980][T10239] EXT4-fs: Ignoring removed nomblk_io_submit option
[  178.286221][T10239] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  178.312155][T10239] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e01c, mo2=0002]
[  178.321663][T10239] EXT4-fs (loop0): orphan cleanup on readonly fs
[  178.332417][T10239] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #11: comm syz.0.2472: attempt to clear invalid blocks 1024 len 1
[  178.346394][T10239] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2472: bg 0: block 361: padding at end of block bitmap is not set
[  178.364952][T10239] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  178.374146][T10239] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2472: invalid indirect mapped block 1811939328 (level 0)
[  178.389437][T10239] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2472: invalid indirect mapped block 2185560079 (level 1)
[  178.404378][T10239] EXT4-fs (loop0): 1 truncate cleaned up
[  178.416745][T10250] binfmt_misc: register: failed to install interpreter file ./file0
[  178.435479][T10252] Cannot find del_set index 0 as target
[  178.474769][T10256] loop2: detected capacity change from 0 to 2048
[  178.504679][T10263] netlink: 'syz.3.2482': attribute type 5 has an invalid length.
[  178.557339][T10255] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  178.589549][T10263] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5130 sclass=netlink_route_socket pid=10263 comm=syz.3.2482
[  178.629707][T10265] loop0: detected capacity change from 0 to 2048
[  178.653171][T10267] SELinux: failed to load policy
[  178.685685][T10269] loop4: detected capacity change from 0 to 2048
[  178.689723][T10265]  loop0: p1 < > p4
[  178.697902][T10265] loop0: p4 size 8388608 extends beyond EOD, truncated
[  178.757398][T10269] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  178.783050][T10269] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 9 with error 28
[  178.795401][T10269] EXT4-fs (loop4): This should not happen!! Data will be lost
[  178.795401][T10269] 
[  178.805202][T10269] EXT4-fs (loop4): Total free blocks count 0
[  178.814575][T10269] EXT4-fs (loop4): Free/Dirty block details
[  178.820649][T10269] EXT4-fs (loop4): free_blocks=2415919104
[  178.826389][T10269] EXT4-fs (loop4): dirty_blocks=16
[  178.831598][T10269] EXT4-fs (loop4): Block reservation details
[  178.837599][T10269] EXT4-fs (loop4): i_reserved_data_blocks=1
[  178.878680][T10288] loop0: detected capacity change from 0 to 128
[  179.000826][T10294] SELinux: failed to load policy
[  179.059434][T10302] binfmt_misc: register: failed to install interpreter file ./file0
[  179.068705][T10300] loop4: detected capacity change from 0 to 2048
[  179.179402][T10311] loop2: detected capacity change from 0 to 2048
[  179.213531][T10298] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  179.247025][T10288] loop0: detected capacity change from 0 to 128
[  179.299648][T10311]  loop2: p1 < > p4
[  179.304401][T10311] loop2: p4 size 8388608 extends beyond EOD, truncated
[  179.337343][T10328] loop3: detected capacity change from 0 to 128
[  179.354658][T10328] ext4 filesystem being mounted at /528/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  179.427127][T10328] EXT4-fs error (device loop3): dx_make_map:1328: inode #2: block 63: comm syz.3.2509: bad entry in directory: inode out of bounds - offset=988, inode=128, rec_len=36, size=1024 fake=1
[  179.537090][T10328] EXT4-fs error (device loop3) in do_split:2055: Corrupt filesystem
[  179.680290][T10349] loop1: detected capacity change from 0 to 512
[  179.700093][T10349] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  179.727938][T10349] EXT4-fs (loop1): 1 truncate cleaned up
[  179.847600][T10358] loop3: detected capacity change from 0 to 512
[  179.858262][T10358] EXT4-fs (loop3): failed to initialize system zone (-117)
[  179.867757][T10358] EXT4-fs (loop3): mount failed
[  179.943163][T10370] loop2: detected capacity change from 0 to 128
[  179.954606][T10370] ext4 filesystem being mounted at /484/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  179.988645][T10369] netlink: 'syz.1.2526': attribute type 5 has an invalid length.
[  180.003923][T10369] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5130 sclass=netlink_route_socket pid=10369 comm=syz.1.2526
[  180.031607][T10370] EXT4-fs error (device loop2): dx_make_map:1328: inode #2: block 63: comm syz.2.2527: bad entry in directory: inode out of bounds - offset=988, inode=128, rec_len=36, size=1024 fake=1
[  180.050319][T10370] EXT4-fs error (device loop2) in do_split:2055: Corrupt filesystem
[  180.089649][T10379] loop2: detected capacity change from 0 to 128
[  180.142673][T10384] loop1: detected capacity change from 0 to 2048
[  180.227464][T10391] loop4: detected capacity change from 0 to 2048
[  180.288166][T10391] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  180.360764][T10391] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 9 with error 28
[  180.373082][T10391] EXT4-fs (loop4): This should not happen!! Data will be lost
[  180.373082][T10391] 
[  180.382787][T10391] EXT4-fs (loop4): Total free blocks count 0
[  180.388862][T10391] EXT4-fs (loop4): Free/Dirty block details
[  180.394810][T10391] EXT4-fs (loop4): free_blocks=2415919104
[  180.398609][T10401] loop0: detected capacity change from 0 to 2048
[  180.400561][T10391] EXT4-fs (loop4): dirty_blocks=16
[  180.400579][T10391] EXT4-fs (loop4): Block reservation details
[  180.400592][T10391] EXT4-fs (loop4): i_reserved_data_blocks=1
[  180.428483][T10379] loop2: detected capacity change from 0 to 128
[  180.510820][T10400] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  180.665422][T10411] loop3: detected capacity change from 0 to 128
[  180.706917][T10411] ext4 filesystem being mounted at /532/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  180.786373][T10411] EXT4-fs error (device loop3): dx_make_map:1328: inode #2: block 63: comm syz.3.2541: bad entry in directory: inode out of bounds - offset=988, inode=128, rec_len=36, size=1024 fake=1
[  180.828924][T10411] EXT4-fs error (device loop3) in do_split:2055: Corrupt filesystem
[  180.900710][T10417] netlink: 'syz.3.2543': attribute type 5 has an invalid length.
[  180.916804][T10417] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5130 sclass=netlink_route_socket pid=10417 comm=syz.3.2543
[  180.979797][T10419] loop2: detected capacity change from 0 to 2048
[  181.098670][T10428] loop3: detected capacity change from 0 to 2048
[  181.138126][T10419] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  181.157921][T10428]  loop3: p1 < > p4
[  181.162599][T10428] loop3: p4 size 8388608 extends beyond EOD, truncated
[  181.180191][T10419] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 13 with max blocks 1 with error 28
[  181.195799][T10419] EXT4-fs (loop2): This should not happen!! Data will be lost
[  181.195799][T10419] 
[  181.205588][T10419] EXT4-fs (loop2): Total free blocks count 0
[  181.211655][T10419] EXT4-fs (loop2): Free/Dirty block details
[  181.217743][T10419] EXT4-fs (loop2): free_blocks=2415919104
[  181.226884][T10419] EXT4-fs (loop2): dirty_blocks=16
[  181.232134][T10419] EXT4-fs (loop2): Block reservation details
[  181.238242][T10419] EXT4-fs (loop2): i_reserved_data_blocks=1
[  181.279761][   T37] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  181.295469][   T37] EXT4-fs (loop2): This should not happen!! Data will be lost
[  181.295469][   T37] 
[  181.397157][T10449] syz0: rxe_newlink: already configured on bond0
[  181.405277][T10449] __nla_validate_parse: 4 callbacks suppressed
[  181.405293][T10449] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2553'.
[  181.424527][T10449] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  181.433231][T10449] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  181.442014][T10454] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2549'.
[  181.456167][T10449] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2553'.
[  181.543418][T10458] SELinux: failed to load policy
[  181.567263][T10461] loop4: detected capacity change from 0 to 2048
[  181.606680][ T3378] kernel write not supported for file /1219/attr/exec (pid: 3378 comm: kworker/0:5)
[  181.632644][T10461] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  181.654625][T10461] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 13 with max blocks 1 with error 28
[  181.670460][T10461] EXT4-fs (loop4): This should not happen!! Data will be lost
[  181.670460][T10461] 
[  181.680148][T10461] EXT4-fs (loop4): Total free blocks count 0
[  181.686233][T10461] EXT4-fs (loop4): Free/Dirty block details
[  181.692341][T10461] EXT4-fs (loop4): free_blocks=2415919104
[  181.701534][T10461] EXT4-fs (loop4): dirty_blocks=16
[  181.706731][T10461] EXT4-fs (loop4): Block reservation details
[  181.712728][T10461] EXT4-fs (loop4): i_reserved_data_blocks=1
[  181.774650][T10479] loop0: detected capacity change from 0 to 2048
[  181.792291][   T29] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  181.804641][   T29] EXT4-fs (loop4): This should not happen!! Data will be lost
[  181.804641][   T29] 
[  181.814969][T10483] SELinux: failed to load policy
[  181.888628][T10478] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  181.928254][T10489] SELinux: failed to load policy
[  182.010900][T10494] SELinux: failed to load policy
[  182.187038][T10506] loop4: detected capacity change from 0 to 2048
[  182.274386][T10506]  loop4: p1 < > p4
[  182.281343][T10506] loop4: p4 size 8388608 extends beyond EOD, truncated
[  182.429523][T10519] SELinux: failed to load policy
[  182.525742][ T3378] kernel write not supported for file /1234/attr/exec (pid: 3378 comm: kworker/0:5)
[  182.582667][T10530] rdma_rxe: rxe_newlink: failed to add bond0
[  182.589820][T10530] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2586'.
[  182.599899][T10530] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  182.608596][T10530] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  182.641340][T10530] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2586'.
[  182.699839][T10532] SELinux: failed to load policy
[  182.797262][T10542] loop1: detected capacity change from 0 to 2048
[  182.872889][T10542]  loop1: p1 < > p4
[  182.877362][T10542] loop1: p4 size 8388608 extends beyond EOD, truncated
[  182.887752][T10549] loop0: detected capacity change from 0 to 2048
[  182.987606][T10558] loop2: detected capacity change from 0 to 2048
[  183.007664][T10561] loop1: detected capacity change from 0 to 2048
[  183.017249][T10549] ==================================================================
[  183.025376][T10549] BUG: KCSAN: data-race in __filemap_add_folio / filemap_write_and_wait_range
[  183.034279][T10549] 
[  183.036615][T10549] read-write to 0xffff888106291070 of 8 bytes by task 10559 on cpu 0:
[  183.044776][T10549]  __filemap_add_folio+0x430/0x6f0
[  183.050057][T10549]  filemap_add_folio+0x9c/0x1b0
[  183.054935][T10549]  page_cache_ra_unbounded+0x1c1/0x350
[  183.060426][T10549]  page_cache_async_ra+0x41d/0x450
[  183.065563][T10549]  filemap_fault+0x2d1/0xb30
[  183.070164][T10549]  __do_fault+0xb6/0x200
[  183.074420][T10549]  handle_mm_fault+0xe98/0x2b00
[  183.079287][T10549]  __get_user_pages+0xf6a/0x2350
[  183.084236][T10549]  __mm_populate+0x25b/0x3b0
[  183.088836][T10549]  vm_mmap_pgoff+0x224/0x2d0
[  183.093448][T10549]  ksys_mmap_pgoff+0x286/0x330
[  183.098233][T10549]  x64_sys_call+0x1940/0x2dc0
[  183.102948][T10549]  do_syscall_64+0xc9/0x1c0
[  183.107473][T10549]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.113393][T10549] 
[  183.115723][T10549] read to 0xffff888106291070 of 8 bytes by task 10549 on cpu 1:
[  183.123369][T10549]  filemap_write_and_wait_range+0x59/0x360
[  183.129203][T10549]  kiocb_write_and_wait+0x73/0x100
[  183.134337][T10549]  __iomap_dio_rw+0x50c/0x1110
[  183.139118][T10549]  iomap_dio_rw+0x40/0x90
[  183.143461][T10549]  ext4_file_read_iter+0x214/0x290
[  183.148596][T10549]  copy_splice_read+0x383/0x5b0
[  183.153460][T10549]  splice_direct_to_actor+0x28b/0x670
[  183.158848][T10549]  do_splice_direct+0xd7/0x150
[  183.163628][T10549]  do_sendfile+0x398/0x660
[  183.168054][T10549]  __x64_sys_sendfile64+0x110/0x150
[  183.173278][T10549]  x64_sys_call+0xfbd/0x2dc0
[  183.177882][T10549]  do_syscall_64+0xc9/0x1c0
[  183.182409][T10549]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.188327][T10549] 
[  183.190653][T10549] value changed: 0x0000000000000b11 -> 0x0000000000000b14
[  183.197763][T10549] 
[  183.200091][T10549] Reported by Kernel Concurrency Sanitizer on:
[  183.206258][T10549] CPU: 1 UID: 0 PID: 10549 Comm: syz.0.2594 Tainted: G        W          6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  183.218509][T10549] Tainted: [W]=WARN
[  183.222317][T10549] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  183.232377][T10549] ==================================================================
[  183.304417][T10560] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  183.862866][   T37] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  183.895532][   T37] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  183.908076][   T37] EXT4-fs (loop0): This should not happen!! Data will be lost
[  183.908076][   T37] 
[  183.917818][   T37] EXT4-fs (loop0): Total free blocks count 0
[  183.923822][   T37] EXT4-fs (loop0): Free/Dirty block details
[  183.929761][   T37] EXT4-fs (loop0): free_blocks=2415919104
[  183.935560][   T37] EXT4-fs (loop0): dirty_blocks=15632
[  183.941006][   T37] EXT4-fs (loop0): Block reservation details
[  183.947126][   T37] EXT4-fs (loop0): i_reserved_data_blocks=977
[  183.974615][   T29] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  183.987450][   T29] EXT4-fs (loop0): This should not happen!! Data will be lost
[  183.987450][   T29] 
[  184.028047][   T37] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  184.044333][   T37] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  184.056870][   T37] EXT4-fs (loop2): This should not happen!! Data will be lost
[  184.056870][   T37] 
[  184.066648][   T37] EXT4-fs (loop2): Total free blocks count 0
[  184.072648][   T37] EXT4-fs (loop2): Free/Dirty block details
[  184.078618][   T37] EXT4-fs (loop2): free_blocks=2415919104
[  184.084390][   T37] EXT4-fs (loop2): dirty_blocks=7952
[  184.089846][   T37] EXT4-fs (loop2): Block reservation details
[  184.095867][   T37] EXT4-fs (loop2): i_reserved_data_blocks=497
[  184.114336][   T58] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  184.127143][   T58] EXT4-fs (loop2): This should not happen!! Data will be lost
[  184.127143][   T58]