last executing test programs:

5.831537934s ago: executing program 2 (id=408):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a5000000080000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x18)
epoll_create(0x2f8)

5.807111926s ago: executing program 2 (id=409):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x441e, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000410, &(0x7f0000000000)={[{@bsdgroups}, {@jqfmt_vfsv1}]}, 0xc1, 0x7da, &(0x7f0000000fc0)="$eJzs3c1rG80dAODfyh+ynbR2odAmJ0OhNYTIdeomLfSQ0kMpNBBoz02MrJjUshUsOcTGEOdQ6KXQlh4K7SXnfqSHQq/9uLb/ROmhJITWMW/e04tediX5U5LtxJId/Dyw2pnd2Z0Z7ezsSLtIAVxYk+lLLuJKRPw8iRhvLk8iYigLDUbcbqR7u7VRTKck6vUf/C/J0vz50u6+kub8UjPyxYj4+08iruUO5jranJdLK83QdG3p0XR1bf36w6W5hdJCafnmzOzsjVtfv3Xz8Fbv6qN/rV9+9YvvfuWPtwfjCy9+9o8kbsfl5rrtrY3ie+7+kMmYbL4nQ+lbuM93TjuzM5acdQF4J+mpOdA4y+NKjMdAFurgfU9AAOBceBoRdQDggklc/wHggml9D7C9tVFsTWf7jUR/vf52RIw06t+6v9lYM9i8ZzeS3Qcd20723RlJImLiFPKfjIjf/uVHv0+n6NF9SIB2Np9FxP2Jye2t/IH+P0n7v+Gj95DvuOar3TarN7abPLBY/wf989d0/PONw+O/qzsP9IxkrwfGPyP5Nufuuzj6/M+97LDpMfqmo6Xjv2/tebZtd/y389DaxEAz9plszDeUPHhYLqV922cjYiqG8ml8Jkva/imoqTefvOmU/97x3/9/+ePfpfmn890UuZeD+aiP79lmfq42dwpVz7x+FnF1sF39k53xb9Jh/Hu34173H5rvffOnv+mUMq1/Wt/WdLj+vVV/HvHltsd/91gmXZ9PnM6aw3SrUbTxp//8eqxT/rvHP5/N0/xbnwX6IT3+Y93rP5GGqmvri3PlcmmlevI8/vl8/G+d1u1t/+3rn7X/fdL2P5z8MAu3WtqTuVptZSZiOPn+4eU3drdtxVvp0/pPfan9+d+p/eeaz8be34l1N/hq+A/NXbWtf2azU/17K63//ImOf5dAvbnNgVUv3i4OdMr/eMd/NgtNNZccp/87oqTv0ZoBAAAAAAAAAAAAAAAAAAAAAAAA4ORyEXE5klxhJ5zLFQqN//D+fIzlypVq7dqDyuryfGT/lT0RQ7nWT12O7/k91Jnm7+G34jcOxL8WEZ+LiF/lR7N4oVgpz5915QEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACg6dL+//9/ms4Khca6/+bPunQAQM+MnHUBAIC+c/0HgIvnZNf/0Z6VAwDonxN//q8nvSkIANA3x77+3+9tOQCA/nH/HwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgB67e+dOOtU/3toopvH5x2uri5XH1+dL1cXC0mqxUKysPCosVCoL5VKhWFnquKPNxqxcqTyajeXVJ9O1UrU2XV1bv7dUWV2u3Xu4NLdQulca6lvNAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOD4qmvri3PlcmlFoEtgtDR6HopxjgKDcS6KcSiw+e+hrF13TRwTH0zjH+6SJjnNvEYPLtnbS4yeSd8EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8CH4NAAA//9RvRhH")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.time_recursive\x00', 0x275a, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000410"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x18)
symlink(&(0x7f00000006c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', &(0x7f00000005c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
readlink(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000001200)=""/4096, 0x1000)
write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b)
ioctl$FIBMAP(r0, 0x1, &(0x7f0000000080)=0x10001)

4.943461432s ago: executing program 1 (id=418):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8c}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4000000}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff85000000710000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000007c0)=ANY=[@ANYBLOB="18000000000000000000000007000000181200", @ANYRES32=r4, @ANYBLOB="0000000000000000b703000000000000850000001b000000b700"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000300)='kmem_cache_free\x00', r5}, 0x18)
syz_clone(0x400a1400, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x17, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @cgroup_sysctl=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
move_mount(0xffffffffffffffff, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, 0x0, 0x0)
ioctl$TCSBRKP(0xffffffffffffffff, 0x5425, 0x1)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x88e, &(0x7f0000000080)={[{@errors_remount}, {@mblk_io_submit}, {@inlinecrypt}, {@test_dummy_encryption_v1}, {@barrier}, {@mblk_io_submit}, {@nogrpid}]}, 0x3, 0x445, &(0x7f0000000800)="$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")
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), r6)
r7 = socket$inet_sctp(0x2, 0x5, 0x84)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r9}, 0x10)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'lo\x00'})
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000780)={{{@in=@empty, @in6=@loopback}}, {{@in=@empty}, 0x0, @in6=@private0}}, &(0x7f0000000040)=0xe8)

4.829053843s ago: executing program 2 (id=419):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
recvmsg(r1, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000940)=[{&(0x7f00000005c0)=""/151, 0x97}], 0x1, &(0x7f0000002f40)=""/229, 0xe5}, 0x0)
close(r2)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000400)={0xffffffffffffffff, 0x0, 0x25, 0x2, @void}, 0x10)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000))
pipe2$9p(&(0x7f00000000c0), 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="09000000010000000800000008"], 0x48)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000700)={0x20, r5, 0x70d, 0x70bd25, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}, 0x1, 0x0, 0x0, 0x2}, 0x24000800)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000400000000000000000318110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x18)
openat(0xffffffffffffff9c, &(0x7f0000000940)='./file2\x00', 0x10d143, 0xdf)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000000680)={r7, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000005c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
socket$packet(0x11, 0x2, 0x300)
r8 = socket$netlink(0x10, 0x3, 0x10)
r9 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r9, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, 0x0)
setsockopt$sock_int(r9, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r9, 0x10e, 0x4, &(0x7f0000000100)=0x800, 0x4)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000001040)={0x11, 0xc, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000160000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000300)='kmem_cache_free\x00', r10}, 0x18)
r11 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r11, 0x1, 0x3, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

4.014152194s ago: executing program 4 (id=425):
r0 = inotify_init1(0x0)
inotify_add_watch(r0, &(0x7f00000006c0)='.\x00', 0xaa)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0) (fail_nth: 6)

3.329181421s ago: executing program 4 (id=430):
perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0xec, 0x7, 0x40, 0x3, 0x0, 0x4000000000, 0xd4, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x4, 0x2, @perf_bp={0x0, 0x8}, 0x100882, 0x7ff, 0x82000003, 0x3, 0xb, 0x2, 0x3ff, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x0, &(0x7f0000000100)={[{@init_itable_val={'init_itable', 0x3d, 0x1}}, {@errors_remount}, {@dioread_lock}, {@barrier}, {@bsdgroups}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x2000}}]}, 0x1, 0x783, &(0x7f0000001340)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x0)
write$P9_RREADLINK(r0, &(0x7f0000000000)={0xffffffffffffff23, 0x17, 0x2, {0x7, './file0'}}, 0xfffffdab)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000f40)=ANY=[@ANYBLOB="12010000000000106a05310300000000000109022400010000c600"], 0x0)
fadvise64(r0, 0x807f, 0x1000000, 0x4)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r3}, 0x4)
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r4}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0a00000000000000000000000000000000feff40", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000400"/28], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x2d)
sendmsg$netlink(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000340)={0x114, 0x29, 0x1, 0x0, 0x25dfdbfc, "", [@nested={0x104, 0xf2, 0x0, 0x1, [@typed={0xc, 0x18, 0x0, 0x0, @u64=0xfac0b}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @loopback}}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a46cf26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f00ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a6", @typed={0x8, 0x145, 0x0, 0x0, @ipv4=@remote}]}]}, 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb70300000a000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r7}, 0x10)
r8 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r8, 0x0, 0x27, &(0x7f0000000280)={@multicast2, @local, @remote}, 0xc)
setsockopt$inet_msfilter(r8, 0x0, 0x29, &(0x7f0000000b80)=ANY=[@ANYBLOB="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"/384, @ANYRES32=r6], 0x1c)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x100000a, 0x4082172, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000005000/0x4000)=nil)
waitid(0x1, 0xffffffffffffffff, &(0x7f0000000640), 0x20000000, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x441e, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x2020005, 0xb, 0x0, 0x4, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)

3.252403129s ago: executing program 1 (id=432):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x441e, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000410, &(0x7f0000000000)={[{@bsdgroups}, {@jqfmt_vfsv1}]}, 0xc1, 0x7da, &(0x7f0000000fc0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.time_recursive\x00', 0x275a, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000410"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x18)
symlink(&(0x7f00000006c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', &(0x7f00000005c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
readlink(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000001200)=""/4096, 0x1000)
write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b)
ioctl$FIBMAP(r0, 0x1, &(0x7f0000000080)=0x10001)

2.569795566s ago: executing program 2 (id=437):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, 0x0, 0x0)
setsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, 0x0, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
close(r2)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000300)={0x0, 0x10, &(0x7f0000000280)=[@in={0x2, 0x4e24, @private=0xa010100}]}, &(0x7f0000000080)=0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000080), 0x1, 0x561, &(0x7f0000000f80)="$eJzs3U1rG0cfAPD/ylbenycOhNCWUgw9NCWNHNt9SaGH9NyGBtp7KuyNCZajYMkhdgNNDs25hF5KA6X30nOPoV+gh36GQBsIJZj20IvLyivFL5ItJ7KtVL8frJnZXWl2NPsfz2gkFMDAGs3+FCJejoivk4jjEZHkx4YjPzi6et7yk1tT2ZbEysqnfyaN87J887majzuaZ16KiF++ijhT2FxubXFptlyppPN5fqw+d32strh09upceSadSa9NTE6ef2dy4v333u1ZXd+89Pe3nzwYynMn7iVxIY7lubX1eA6312ZGYzR/TYpxYcOJ4z0orJ8kbff+tOfXwc4M5XFejKwPOB5DedQD/31fRsQKMKCSHcf/b8XduRJgbzXHAc25fY/mwS+Mxx+uToA213949b2RONSYGx1ZTtbNjLL57kgPys/K+PmP+/eyLXr3PgTAtm7fiYhzw8Ob+78k7/+e3bkuztlYhv4P9s6DbPzzVrvxT6E1/ok245+jbWL3WWwf/4VHPSimo2z890Hb8W9r0WpkKM/9rzHmKyZXrlbSrG/7f0ScjuLBLL/Ves755YcrnY6tHf9lW1Z+cyyYX8ej4YPrHzNdrpefp85rPb4T8Urb8W/Sav+kTftnr8elLss4ld5/rdOx7eu/u1Z+iHijbfs/XdFKtl6fHGvcD2PNu2Kzv+6e+rVT+ftd/6z9j2xd/5Fk7XptbedlfH/onzRa68nrrat/dH//H0g+a6QP5Ptuluv1+fGIA8nHrf2F5v6Jp49t5pvnZ/U//frW/V+7+/9wRHzeZf3vnvzx1U7H+qH9p9u2f2t2u6H9d554+NEX33Uqv7v+7+1G6nS+p5v+r9sLfJ7XDgAAAAAAAPpNISKORVIotdKFQqm0+vmOk3GkUKnW6meuVBeuTUfju7IjUSw0V7qPr/k8xHi+YtjMT2zIT0bEiYj4ZuhwI1+aqlam97vyAAAAAAAAAAAAAAAAAAAA0CeOdvj+f+b3of2+OmDX+clvGFzbxn8vfukJ6Ev+/8PgEv8wuMQ/DC7xD4NL/MPgEv8wuMQ/DC7xDwAAAAAAAAAAAAAAAAAAAAAAAAAAAD116eLFbFtZfnJrKstP31hcmK3eODud1mZLcwtTpanq/PXSTLU6U0lLU9W57Z6vUq1eH5+IhZtj9bRWH6stLl2eqy5cq1++OleeSS+nxT2pFQAAAAAAAAAAAAAAAAAAALxYaotLs+VKJZ2XkHimxHB/XIZEjxP73TMBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwFP/BgAA//9q6zMB")
setxattr$trusted_overlay_upper(0x0, 0x0, &(0x7f0000000200)=ANY=[], 0x841, 0x0)
lgetxattr(&(0x7f0000000240)='./file1\x00', &(0x7f0000000280)=@known='trusted.overlay.upper\x00', 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f0000000140)={0x1, [<r4=>0x0]}, &(0x7f0000000240)=0x8)
sendmsg$inet_sctp(r2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r1, 0x84, 0x6c, &(0x7f0000000000)={r4, 0x95, "21d0f4a2e95a3d1fcf6d091ca821d37fd530f10fc0c77abfa540c863f09e0ba6664a2f22d588a8a388989ee52ecc1d63f7d1680e084c200664c95408aa10a9b1ff7a0c9e63c5620c1331b79e601611103c560a57b09b93aab8befd36d1bec3f9b66f79fe2dc9954d7ac85a14a58ccc1bfb2ea84674ba3f6321caa215336867879e096025dc90cb961f8f8858ac2f0130ecc1eacaee"}, &(0x7f00000000c0)=0x9d)

2.456961778s ago: executing program 1 (id=438):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f00000000c0)='./file0\x00', 0x400, &(0x7f0000000100)=ANY=[@ANYBLOB="73686f72746e616d653d77696e6e742c757466383d302c636865636b3d7374726963742c646973636172642c757466383d312c757466383d312c73686f72746e616d653d77696e39352c73686f72746e616d653d6c6f7765722c757466383d312c00ef5c3556"], 0xfd, 0x2a8, &(0x7f0000000280)="$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")
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8604, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x6}, 0x0, 0x10000, 0x0, 0x6, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
shutdown(r1, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000200)={<r2=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r1, 0x84, 0x7a, &(0x7f0000000340)={<r3=>r2, @in6={{0xa, 0x3, 0x4, @mcast1}}}, &(0x7f0000000040)=0x84)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f00000005c0)={r3, 0x3ff}, &(0x7f0000000600)=0x8)

2.164420676s ago: executing program 0 (id=441):
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x63, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0xffffffff, 0xfd}, 0x0, 0x0, 0x4, 0x6, 0x2, 0xff, 0xffff, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xfff7ffffffffffff, 0xffffffffffffffff, 0x9)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x9}]})
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port0\x00', 0x72, 0x11cfa, 0x100, 0x5, 0x1, 0x4, 0x1, 0x0, 0x7cce8c743ee810df})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
read(r0, &(0x7f0000000840)=""/40, 0x28)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x40505330, &(0x7f0000000bc0)={0x800100, 0x0, 0x0, 0x724f, 0x400, 0x55a})

2.035063829s ago: executing program 1 (id=442):
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x10, 0x0, 0x0, 0x101, 0x10020, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
bpf$MAP_CREATE(0x0, 0x0, 0x48) (async)
syz_emit_ethernet(0x2e, &(0x7f0000000240)=ANY=[@ANYBLOB="bbbbbbbbbbbbaaaaaaaaaabb080045100020206700000702907864010100ac1414aa11819078000000005af00000"], 0x0)
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x9, 0x20010, 0xffffffffffffffff, 0x0) (async)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000001c0), 0x4) (async)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x3000000, 0x0)
r0 = add_key$keyring(&(0x7f0000000280), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe) (async)
r1 = openat$selinux_relabel(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r1, &(0x7f0000000140)=[{&(0x7f0000000b00)='Y', 0x1}], 0x1) (async)
r2 = socket$inet6(0xa, 0x1, 0x20004) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x5, 0xb, &(0x7f0000000640)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffff9}, 0x94) (async)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000300)='rxrpc_rx_ack\x00', r3}, 0x18)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000000)={0x500, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="020200090f000000000000000000000005000600000000000a0000000000000000000000000000000000000000000000000000000000000002000100000004d20000020300000020050005002f8000000a00000000000000ff0100000000000000000000000000010000000000000000010018"], 0x78}}, 0x0) (async)
getsockopt$inet6_buf(r2, 0x29, 0x30, 0x0, 0x0) (async)
keyctl$KEYCTL_MOVE(0x1e, r0, 0x0, r0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async, rerun: 64)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) (rerun: 64)
accept4(0xffffffffffffffff, &(0x7f00000003c0), &(0x7f00000002c0)=0x80, 0x80000) (async)
sendmsg$sock(0xffffffffffffffff, 0x0, 0x0) (async)
syz_io_uring_setup(0x5c6, &(0x7f0000000140)={0x0, 0x1001, 0x0, 0x4}, &(0x7f00000001c0)=<r5=>0x0, &(0x7f0000000580)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x18, 0x0, 0x0, 0x4, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40, 0x1})
pause() (async)
mbind(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4006, &(0x7f0000000000)=0x4, 0x5, 0x2)
mbind(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x4006, &(0x7f0000000000)=0x4, 0x5, 0x1) (async, rerun: 64)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0) (rerun: 64)

2.013000651s ago: executing program 4 (id=443):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8c}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4000000}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff85000000710000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000007c0)=ANY=[@ANYBLOB="18000000000000000000000007000000181200", @ANYRES32=r4, @ANYBLOB="0000000000000000b703000000000000850000001b000000b700"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000300)='kmem_cache_free\x00', r5}, 0x18)
syz_clone(0x400a1400, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x17, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @cgroup_sysctl=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
move_mount(0xffffffffffffffff, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, 0x0, 0x0)
ioctl$TCSBRKP(0xffffffffffffffff, 0x5425, 0x1)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x88e, &(0x7f0000000080)={[{@errors_remount}, {@mblk_io_submit}, {@inlinecrypt}, {@test_dummy_encryption_v1}, {@barrier}, {@mblk_io_submit}, {@nogrpid}]}, 0x3, 0x445, &(0x7f0000000800)="$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")
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), r6)
r7 = socket$inet_sctp(0x2, 0x5, 0x84)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r9}, 0x10)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'lo\x00'})
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000780)={{{@in=@empty, @in6=@loopback}}, {{@in=@empty}, 0x0, @in6=@private0}}, &(0x7f0000000040)=0xe8)

1.935766549s ago: executing program 1 (id=444):
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x63, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0xffffffff, 0xfd}, 0x0, 0x0, 0x4, 0x6, 0x2, 0xff, 0xffff, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xfff7ffffffffffff, 0xffffffffffffffff, 0x9)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x9}]})
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port0\x00', 0x72, 0x11cfa, 0x100, 0x5, 0x1, 0x4, 0x1, 0x0, 0x7cce8c743ee810df})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
read(r0, &(0x7f0000000840)=""/40, 0x28)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x40505330, &(0x7f0000000bc0)={0x801100, 0x0, 0x0, 0x724f, 0x400, 0x55a})

1.482151544s ago: executing program 2 (id=446):
r0 = syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x402)
r1 = dup(r0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x20, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa4000000", @ANYRES32=r2, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x73cea2d47785b264, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
getsockopt$inet_sctp6_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$USBDEVFS_CONTROL(r1, 0xc0185500, &(0x7f0000000040)={0x23, 0x3, 0x18, 0x41, 0x0, 0x5, 0x0})

1.303877381s ago: executing program 0 (id=447):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'team_slave_1\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="800000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000005000128009000100766c616e000000004000028006000100000ffe00340003800c0001000ffe0000000000000c00010000217fffff0080030c00010000010000000000000c000100040000000000000008000500", @ANYRES32=r1, @ANYBLOB="080003"], 0x80}, 0x1, 0x0, 0x0, 0x20044081}, 0x8000) (fail_nth: 14)

1.227486319s ago: executing program 0 (id=448):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a0ef010095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={0x0, r0, 0x0, 0x8}, 0x18)
r1 = socket(0x10, 0x3, 0x9)
connect$netlink(r1, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x25dfdbfc}, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000380)={0xe4, 0x0, 0x1, 0x401, 0x0, 0x0, {0x5, 0x0, 0x3}, [@CTA_PROTOINFO={0x24, 0x4, 0x0, 0x1, @CTA_PROTOINFO_DCCP={0x20, 0x2, 0x0, 0x1, [@CTA_PROTOINFO_DCCP_ROLE={0x5, 0x2, 0x9}, @CTA_PROTOINFO_DCCP_HANDSHAKE_SEQ={0xc, 0x3, 0x1, 0x0, 0x4}, @CTA_PROTOINFO_DCCP_STATE={0x5, 0x1, 0xb}]}}, @CTA_ID={0x8, 0xc, 0x1, 0x0, 0x2}, @CTA_SYNPROXY={0x24, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x8}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x6}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0xe}, @CTA_SYNPROXY_ISN={0x8, 0x1, 0x1, 0x0, 0x400}]}, @CTA_SEQ_ADJ_REPLY={0x2c, 0x10, 0x0, 0x1, [@CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0xc00000}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x3}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x5}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x4}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x9}]}, @CTA_SEQ_ADJ_ORIG={0x54, 0xf, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x1738}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x80000001}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x7}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x6}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x8}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x5}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0xf2a4}, @CTA_SEQADJ_OFFSET_BEFORE={0x8}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x7}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x3f}]}]}, 0xe4}, 0x1, 0x0, 0x0, 0x200000c0}, 0x4010)

1.21706987s ago: executing program 0 (id=449):
syz_open_dev$evdev(0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0xe, 0x7fff0000}]})
close_range(r0, 0xffffffffffffffff, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000680)={0x0, 0xfffffe2f, &(0x7f0000000080)={&(0x7f0000000500)=ANY=[@ANYBLOB="380000001800010000000000000000000a000000000000000000000008000400", @ANYRES32=r2, @ANYBLOB="06001500070000000c00168008000100", @ANYRES64=r1], 0x38}}, 0x10) (fail_nth: 10)

768.799734ms ago: executing program 0 (id=450):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@block_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@norecovery}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f00000005c0)='./bus\x00', 0x101042, 0x0)
pwrite64(r0, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
fallocate(r0, 0x0, 0x11, 0x9)
openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)

762.341215ms ago: executing program 3 (id=451):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sched_switch\x00', r1}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETOBJ(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYBLOB="34000000150a03"], 0x34}, 0x1, 0x0, 0x0, 0x66df5cfbe53006d1}, 0x0)

716.063189ms ago: executing program 3 (id=452):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000340)={0x0, 0xcc}, 0x8)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000054000000030a01020000000000000000010000000900030073797a320000000028000480080002400000000008000140000000051400030076657468315f6d6163767461700000000900010073797a31000000004c000000050a01020000000000000000010020000c00024000000000000000010900010073797a31"], 0xe8}, 0x1, 0x0, 0x0, 0x40040000}, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f00000012c0)={{{@in=@broadcast, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x4e21, 0x1, 0x4e22, 0x9, 0x2, 0x20, 0x10, 0x2b}, {0x8000, 0x9, 0x0, 0x3ff, 0xff, 0x4, 0xe, 0x400}, {0x1, 0x7f, 0x726, 0xffff}, 0x2, 0x0, 0x0, 0x0, 0x1}, {{@in=@dev={0xac, 0x14, 0x14, 0x32}, 0x4d6, 0x33}, 0x2, @in6=@mcast2, 0x3503, 0x0, 0x0, 0x5, 0x5, 0x4, 0x6}}, 0xe8)
syz_emit_ethernet(0x86, &(0x7f0000000100)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x0, 0x0, 0x5, 0x11, 0x0, @loopback, @multicast1}, {0x0, 0x4e20, 0x64, 0x0, @wg=@response={0x2, 0x0, 0x0, "82d18160f7d8dda36479a6b179161b4bbff2d0508977b3928ebd2dee05607d17", "0194bd7b1b0303c5ba7f602606a285b3", {"30da2d58da817f8a5f77a23de36a2164", "3b33cfa231a427159c7b9f0eceb155f0"}}}}}}}, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(r0, &(0x7f0000000540)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x3, @loopback, 0x3}, 0x1c, &(0x7f00000004c0)=[{&(0x7f0000000240)="dc", 0x1}], 0x1}}], 0x1, 0x3404c891)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYRESOCT=r0, @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ff524b07e409000000000000000000000000bba7e9bfa50085000000"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0xf)
r5 = memfd_secret(0x80000)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x217, &(0x7f0000000600), 0x1, 0x586, &(0x7f0000009ec0)="$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")
r6 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x82)
ioctl$FITRIM(r6, 0xc0185879, &(0x7f0000000040)={0x6, 0x40000cca8, 0x4010})
r7 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r7, 0xc0185879, &(0x7f0000000080)={@desc={0x4100, 0x0, @desc1}})
fcntl$setlease(r5, 0x400, 0x0)
close(r5)
r8 = syz_io_uring_setup(0x64b7, &(0x7f0000002600)={0x0, 0xffffff7c, 0x13580, 0x3, 0x35c}, &(0x7f0000000100)=<r9=>0x0, &(0x7f0000000580)=<r10=>0x0)
syz_io_uring_submit(r9, r10, &(0x7f00000000c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x6000, @fd_index=0x4, 0xffffffffffffffff, 0xd0, 0x8007, 0xa, 0x1})
io_uring_register$IORING_REGISTER_BUFFERS(r8, 0x0, &(0x7f0000000800)=[{0x0}], 0x1)
io_uring_enter(r8, 0x54, 0x0, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000000)={0x0, 0x9, 0x2, [0x4, 0x0]}, 0xc)
ioctl$F2FS_IOC_MOVE_RANGE(r5, 0xc020f509, &(0x7f0000000380)={r4, 0x5, 0xffffffffffff6aed, 0x4})
socket$key(0xf, 0x3, 0x2)

652.926005ms ago: executing program 2 (id=453):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2060, 0x0)
fcntl$setlease(r0, 0x400, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x4, &(0x7f0000000980)=ANY=[], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8db}, 0x94)
close(r1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kfree\x00', r2, 0x0, 0x401}, 0x11)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x80, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3f00}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bond={{0x9}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BOND_AD_LACP_RATE={0x5}, @IFLA_BOND_MODE={0x5, 0x1, 0x1}]}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x2000c0c1}, 0x40000)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kfree\x00', r4}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x18)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000580)="d8000000140081054e81f782db44b904021d080225000000040000a118000200fcffffff00000e1208000f0100810401a80016ea1f0006400303000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef075c0100000000000000cb090000001fb791643a5ee4001b146218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e0060000000000000080bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd68adbef3d93452a00"/216, 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x4)
r6 = syz_open_dev$usbfs(&(0x7f0000003f00), 0x1ff, 0xa401)
ioctl$USBDEVFS_CONTROL(r6, 0x8008551c, &(0x7f0000000180)={0x40, 0xb, 0x80, 0x1, 0x0, 0x0, 0x0})
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r7, 0xffffffffffffffff, 0xf0ff)

607.28365ms ago: executing program 1 (id=454):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
close(r1)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
writev(r0, &(0x7f00000005c0)=[{&(0x7f0000000100)="89e7ee2c78dad9b4b473fec988ca", 0xe}], 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x441e, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000410, &(0x7f0000000000)={[{@bsdgroups}, {@jqfmt_vfsv1}]}, 0xc1, 0x7da, &(0x7f0000000fc0)="$eJzs3c1rG80dAODfyh+ynbR2odAmJ0OhNYTIdeomLfSQ0kMpNBBoz02MrJjUshUsOcTGEOdQ6KXQlh4K7SXnfqSHQq/9uLb/ROmhJITWMW/e04tediX5U5LtxJId/Dyw2pnd2Z0Z7ezsSLtIAVxYk+lLLuJKRPw8iRhvLk8iYigLDUbcbqR7u7VRTKck6vUf/C/J0vz50u6+kub8UjPyxYj4+08iruUO5jranJdLK83QdG3p0XR1bf36w6W5hdJCafnmzOzsjVtfv3Xz8Fbv6qN/rV9+9YvvfuWPtwfjCy9+9o8kbsfl5rrtrY3ie+7+kMmYbL4nQ+lbuM93TjuzM5acdQF4J+mpOdA4y+NKjMdAFurgfU9AAOBceBoRdQDggklc/wHggml9D7C9tVFsTWf7jUR/vf52RIw06t+6v9lYM9i8ZzeS3Qcd20723RlJImLiFPKfjIjf/uVHv0+n6NF9SIB2Np9FxP2Jye2t/IH+P0n7v+Gj95DvuOar3TarN7abPLBY/wf989d0/PONw+O/qzsP9IxkrwfGPyP5Nufuuzj6/M+97LDpMfqmo6Xjv2/tebZtd/y389DaxEAz9plszDeUPHhYLqV922cjYiqG8ml8Jkva/imoqTefvOmU/97x3/9/+ePfpfmn890UuZeD+aiP79lmfq42dwpVz7x+FnF1sF39k53xb9Jh/Hu34173H5rvffOnv+mUMq1/Wt/WdLj+vVV/HvHltsd/91gmXZ9PnM6aw3SrUbTxp//8eqxT/rvHP5/N0/xbnwX6IT3+Y93rP5GGqmvri3PlcmmlevI8/vl8/G+d1u1t/+3rn7X/fdL2P5z8MAu3WtqTuVptZSZiOPn+4eU3drdtxVvp0/pPfan9+d+p/eeaz8be34l1N/hq+A/NXbWtf2azU/17K63//ImOf5dAvbnNgVUv3i4OdMr/eMd/NgtNNZccp/87oqTv0ZoBAAAAAAAAAAAAAAAAAAAAAAAA4ORyEXE5klxhJ5zLFQqN//D+fIzlypVq7dqDyuryfGT/lT0RQ7nWT12O7/k91Jnm7+G34jcOxL8WEZ+LiF/lR7N4oVgpz5915QEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACg6dL+//9/ms4Khca6/+bPunQAQM+MnHUBAIC+c/0HgIvnZNf/0Z6VAwDonxN//q8nvSkIANA3x77+3+9tOQCA/nH/HwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgB67e+dOOtU/3toopvH5x2uri5XH1+dL1cXC0mqxUKysPCosVCoL5VKhWFnquKPNxqxcqTyajeXVJ9O1UrU2XV1bv7dUWV2u3Xu4NLdQulca6lvNAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOD4qmvri3PlcmlFoEtgtDR6HopxjgKDcS6KcSiw+e+hrF13TRwTH0zjH+6SJjnNvEYPLtnbS4yeSd8EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8CH4NAAA//9RvRhH")
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r5, 0x0)
ioctl$FIBMAP(r5, 0x1, &(0x7f0000000080)=0x10001)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f00000002c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000300)={<r6=>0xffffffffffffffff}, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r4, &(0x7f0000000680)={0x15, 0x110, 0xfa08, {r6, 0x0, 0x10, 0x10, 0x0, @in={0x2, 0x4e24, @empty}, @in={0x2, 0x4e20, @remote}}}, 0x118)
r7 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x64, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r7, 0x40042408, r8)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000080)='kmem_cache_free\x00'}, 0x10)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x8101000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r9 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000100), 0x80000, 0x0)
sendto$unix(r9, &(0x7f00000002c0)="5282186245e33ef28fbb72d02b9cf6dce21620d95573942249014aff58a1d8944181b76a6ecc9922b0f70b953bdf7441dbd9c5379fc3ec2a2e88229c4e26fd140f4898da21673cf8f31a40d11f64f177f6a670a2195385c80b7145fc223f4fc00b362003fa6a9b3d635ef21d7e0b05985fa6171b42ee646c9596026a386a0daaef7c8e908280e1cfd15d3c347407b32eab02500d5fbe1c6d63ed0d747b6217d8a164e792b4a2a7dd1066b6d0829838dac9461d84e8efd38f6fa32e5cfaa03d215af1820e5361a49bbb34b0620330baf8547eb664b80a3bed812c14bd988913af478978b06fbb84d1bde403c259bf2344bb7c3aea8245", 0xf6, 0x8811, &(0x7f00000001c0)=@file={0x1, './file0\x00'}, 0x6e)

490.671201ms ago: executing program 0 (id=455):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
close(r1)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
writev(r0, &(0x7f00000005c0)=[{&(0x7f0000000100)="89e7ee2c78dad9b4b473fec988ca", 0xe}], 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x441e, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000410, &(0x7f0000000000)={[{@bsdgroups}, {@jqfmt_vfsv1}]}, 0xc1, 0x7da, &(0x7f0000000fc0)="$eJzs3c1rG80dAODfyh+ynbR2odAmJ0OhNYTIdeomLfSQ0kMpNBBoz02MrJjUshUsOcTGEOdQ6KXQlh4K7SXnfqSHQq/9uLb/ROmhJITWMW/e04tediX5U5LtxJId/Dyw2pnd2Z0Z7ezsSLtIAVxYk+lLLuJKRPw8iRhvLk8iYigLDUbcbqR7u7VRTKck6vUf/C/J0vz50u6+kub8UjPyxYj4+08iruUO5jranJdLK83QdG3p0XR1bf36w6W5hdJCafnmzOzsjVtfv3Xz8Fbv6qN/rV9+9YvvfuWPtwfjCy9+9o8kbsfl5rrtrY3ie+7+kMmYbL4nQ+lbuM93TjuzM5acdQF4J+mpOdA4y+NKjMdAFurgfU9AAOBceBoRdQDggklc/wHggml9D7C9tVFsTWf7jUR/vf52RIw06t+6v9lYM9i8ZzeS3Qcd20723RlJImLiFPKfjIjf/uVHv0+n6NF9SIB2Np9FxP2Jye2t/IH+P0n7v+Gj95DvuOar3TarN7abPLBY/wf989d0/PONw+O/qzsP9IxkrwfGPyP5Nufuuzj6/M+97LDpMfqmo6Xjv2/tebZtd/y389DaxEAz9plszDeUPHhYLqV922cjYiqG8ml8Jkva/imoqTefvOmU/97x3/9/+ePfpfmn890UuZeD+aiP79lmfq42dwpVz7x+FnF1sF39k53xb9Jh/Hu34173H5rvffOnv+mUMq1/Wt/WdLj+vVV/HvHltsd/91gmXZ9PnM6aw3SrUbTxp//8eqxT/rvHP5/N0/xbnwX6IT3+Y93rP5GGqmvri3PlcmmlevI8/vl8/G+d1u1t/+3rn7X/fdL2P5z8MAu3WtqTuVptZSZiOPn+4eU3drdtxVvp0/pPfan9+d+p/eeaz8be34l1N/hq+A/NXbWtf2azU/17K63//ImOf5dAvbnNgVUv3i4OdMr/eMd/NgtNNZccp/87oqTv0ZoBAAAAAAAAAAAAAAAAAAAAAAAA4ORyEXE5klxhJ5zLFQqN//D+fIzlypVq7dqDyuryfGT/lT0RQ7nWT12O7/k91Jnm7+G34jcOxL8WEZ+LiF/lR7N4oVgpz5915QEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACg6dL+//9/ms4Khca6/+bPunQAQM+MnHUBAIC+c/0HgIvnZNf/0Z6VAwDonxN//q8nvSkIANA3x77+3+9tOQCA/nH/HwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgB67e+dOOtU/3toopvH5x2uri5XH1+dL1cXC0mqxUKysPCosVCoL5VKhWFnquKPNxqxcqTyajeXVJ9O1UrU2XV1bv7dUWV2u3Xu4NLdQulca6lvNAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOD4qmvri3PlcmlFoEtgtDR6HopxjgKDcS6KcSiw+e+hrF13TRwTH0zjH+6SJjnNvEYPLtnbS4yeSd8EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8CH4NAAA//9RvRhH")
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r5, 0x0)
ioctl$FIBMAP(r5, 0x1, &(0x7f0000000080)=0x10001)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f00000002c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000300)={<r6=>0xffffffffffffffff}, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r4, &(0x7f0000000680)={0x15, 0x110, 0xfa08, {r6, 0x0, 0x10, 0x10, 0x0, @in={0x2, 0x4e24, @empty}, @in={0x2, 0x4e20, @remote}}}, 0x118)
r7 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x64, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r7, 0x40042408, r8)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000e40)={0x1a, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x81, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000080)='kmem_cache_free\x00'}, 0x10)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x8101000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r9 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000100), 0x80000, 0x0)
sendto$unix(r9, &(0x7f00000002c0)="5282186245e33ef28fbb72d02b9cf6dce21620d95573942249014aff58a1d8944181b76a6ecc9922b0f70b953bdf7441dbd9c5379fc3ec2a2e88229c4e26fd140f4898da21673cf8f31a40d11f64f177f6a670a2195385c80b7145fc223f4fc00b362003fa6a9b3d635ef21d7e0b05985fa6171b42ee646c9596026a386a0daaef7c8e908280e1cfd15d3c347407b32eab02500d5fbe1c6d63ed0d747b6217d8a164e792b4a2a7dd1066b6d0829838dac9461d84e8efd38f6fa32e5cfaa03d215af1820e5361a49bbb34b0620330baf8547eb664b80a3bed812c14bd988913af478978b06fbb84d1bde403c259bf2344bb7c3aea8245", 0xf6, 0x8811, &(0x7f00000001c0)=@file={0x1, './file0\x00'}, 0x6e)

287.524582ms ago: executing program 3 (id=456):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000000)={[{@discard}, {@data_err_ignore}]}, 0xfe, 0x55b, &(0x7f0000000980)="$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")
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc093, 0x2, @perf_config_ext={0x100000001, 0xdd5}, 0x0, 0x0, 0x10000, 0x2, 0x2, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x1)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x18)
r2 = socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0xd)
syz_open_dev$tty1(0xc, 0x4, 0x4)
close_range(r2, 0xffffffffffffffff, 0x0)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x3)
ioctl$KDFONTOP_SET(r4, 0x4b72, &(0x7f0000000080)={0x0, 0x3000000, 0x8, 0x1b, 0x100, &(0x7f00000000c0)="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"})
r5 = msgget(0x2, 0x485)
msgctl$IPC_RMID(r5, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f00000000c0)={0x0, r0}, 0x8)
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000300)={0x0, 0x2904c, 0xff01, 0x10003, '\x00', [{0x0, 0x0, 0x700, 0x7, 0x0, 0x40000000000000}, {0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x40000000000000}]})

236.701737ms ago: executing program 4 (id=457):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x1, 0x0, 0x7ffc0005}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0xfff, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6d}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000001540)={0x18, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x9, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0xfffffffffffffffc}, 0x18)
pipe2$9p(&(0x7f0000000100), 0x0)

165.139044ms ago: executing program 4 (id=458):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000004000000850000002300"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'veth1_to_hsr\x00', <r2=>0x0})
bind$packet(r1, &(0x7f0000000140)={0x11, 0x0, r2, 0x1, 0x6, 0x6, @remote}, 0x14)
socket$packet(0x11, 0x3, 0x300)
r3 = accept$packet(r1, &(0x7f00000006c0)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000700)=0x14)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000800)={'sit0\x00', &(0x7f0000000740)={'syztnl0\x00', <r5=>r4, 0x20, 0x10, 0xffffffff, 0x8, {{0x12, 0x4, 0x2, 0x0, 0x48, 0x66, 0x0, 0x5, 0x2f, 0x0, @empty, @dev={0xac, 0x14, 0x14, 0x1b}, {[@timestamp_prespec={0x44, 0x34, 0xac, 0x3, 0x7, [{@rand_addr=0x64010102, 0x7ff}, {@remote, 0x2}, {@loopback, 0x3ad}, {@dev={0xac, 0x14, 0x14, 0x3c}, 0xf}, {@multicast1, 0x99c7}, {@rand_addr=0x64010102, 0x26}]}]}}}}})
bind$packet(r3, &(0x7f0000000300)={0x11, 0x3, r5, 0x1, 0x0, 0x6, @multicast}, 0x14)
r6 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ptype\x00')
preadv(r6, &(0x7f00000001c0)=[{&(0x7f0000000380)=""/47, 0x2f}], 0x1, 0x38, 0xfffffffe)
syz_emit_ethernet(0x26, &(0x7f0000000640)=ANY=[@ANYBLOB="bbbbbbbbbbbbbbbb8bf4000088a8400081001300000c0000008007020000a1b6f0b837fca99d"], &(0x7f0000000680)={0x0, 0x4, [0xd3d, 0xa99, 0x3fe, 0x5fa]})
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r7}, 0x18)
io_submit(0x0, 0x1, &(0x7f00000002c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x5, 0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2}])
unshare(0x2040400)
waitid(0x3, 0x0, 0x0, 0x8, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r8, 0x29, 0x40, &(0x7f0000000000)=@mangle={'mangle\x00', 0x64, 0x6, 0x510, 0x2e0, 0x2e0, 0x1b8, 0xd0, 0xd0, 0x580, 0x580, 0x580, 0x580, 0x580, 0x6, 0x0, {[{{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00', 0x2, {0x0, 0x5}}}, {{@ipv6={@mcast1, @local, [], [], 'macvtap0\x00', 'ip6tnl0\x00', {}, {}, 0x6, 0x0, 0x0, 0x51}, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@private=0xa010101}}}, {{@ipv6={@mcast2, @loopback, [], [], 'veth0_to_team\x00', 'syzkaller0\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@CONNSECMARK={0x28}}, {{@uncond, 0x0, 0xa8, 0xd0}, @inet=@DSCP={0x28}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@dev}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x570)

95.234171ms ago: executing program 4 (id=459):
r0 = epoll_create1(0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYRESOCT=r0, @ANYRES64, @ANYRES16, @ANYRES16], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
r2 = io_uring_setup(0x6e1e, &(0x7f0000000100)={0x0, 0x23d4, 0x800, 0xfffffffc, 0x87})
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300)=<r3=>0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r3, 0x1, &(0x7f0000000040), 0x0)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0)
r4 = eventfd2(0x0, 0x0)
io_uring_register$IORING_REGISTER_EVENTFD(r2, 0x4, &(0x7f0000000000)=r4, 0x1)
io_uring_register$IORING_REGISTER_BUFFERS2(r2, 0xf, &(0x7f0000001580)={0x3, 0x0, 0x0, &(0x7f00000014c0)=[{0x0}, {0x0}, {&(0x7f0000000280)=""/4094, 0xffe}], &(0x7f0000001540)=[0x0, 0x0, 0x4]}, 0x20)
read$eventfd(r4, &(0x7f0000000040), 0x8)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r2, 0x10, &(0x7f0000001b00)={0x0, 0x0, &(0x7f0000001a80)=[{0x0}, {0x0}, {0x0}], 0x0, 0x3}, 0x20)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000060000000500"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000800007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x26, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
r7 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r7, r8, 0x0, 0x20000023896)
r9 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r9}, &(0x7f0000bbdffc)=<r10=>0x0)
timer_settime(r10, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r11 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007000000181100", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
open(&(0x7f0000000280)='.\x00', 0x40080, 0x1d2)
r12 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="07000000040000000001000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r12, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

88.117671ms ago: executing program 3 (id=460):
clock_nanosleep(0x9, 0x1, &(0x7f00000004c0)={0x0, 0x3938700}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[], 0x50)
r0 = fsmount(0xffffffffffffffff, 0x1, 0x81)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000080)={r0, 0x58, &(0x7f0000000180)}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={0x0}, 0x18)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000035c0)="5c00000013006bcd9e3fe3dc4e48aa31086b8703340000001f00000000000000040014000d000a00140000009ee5", 0x2e}], 0x1, 0x0, 0x0, 0x1f000801}, 0x240000c0)
pipe(&(0x7f0000000040))
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
sendto$inet6(r1, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c)
shutdown(r1, 0x1)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x5, 0xe, 0x0, &(0x7f0000000000)="259a53f271a76d2608064c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x300, 0x8}, 0x50)

14.860089ms ago: executing program 3 (id=461):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000240)='kmem_cache_free\x00'}, 0x10)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r1}, 0x9)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
r3 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r3, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
setsockopt$MRT_ADD_VIF(r3, 0x0, 0xca, &(0x7f0000003d80)={0x1, 0x0, 0x0, 0x0, @vifc_lcl_addr=@local, @dev}, 0x10)
close_range(r2, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x52, &(0x7f0000000280)=ANY=[@ANYBLOB="1cd595b8c98dffffffffffff86"], 0x0)

0s ago: executing program 3 (id=462):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000080)={[{@i_version}, {@nogrpid}, {@bh}]}, 0x1, 0x51d, &(0x7f0000000200)="$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")
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x5, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d00000085"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0xd, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
r1 = creat(&(0x7f00000000c0)='./bus\x00', 0x182)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x181242, 0x148)
pwrite64(r2, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
fallocate(r1, 0x0, 0xbf5, 0x2000402)
fallocate(0xffffffffffffffff, 0x0, 0xbf5, 0x2000402)
ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000040)={0xc, r1, 0x0, 0x0, 0x0, 0xfffffffffdffffff})

kernel console output (not intermixed with test programs):

   29.002770][  T263] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   29.012218][  T263] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   29.021446][  T263] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   29.031720][ T3498] ext4 filesystem being mounted at /0/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   29.074453][ T3509] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   29.109073][ T3509] ext4 filesystem being mounted at /1/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   29.114543][ T3515] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   29.206351][ T3515] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   29.238595][ T3517] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   29.312672][ T3517] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   29.357176][ T3515] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5: bg 0: block 345: padding at end of block bitmap is not set
[   29.375508][ T3515] EXT4-fs (loop4): Remounting filesystem read-only
[   29.401342][ T3517] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.8: bg 0: block 345: padding at end of block bitmap is not set
[   29.446585][ T3519] netlink: 'syz.2.8': attribute type 1 has an invalid length.
[   29.454290][ T3519] netlink: 224 bytes leftover after parsing attributes in process `syz.2.8'.
[   29.466776][ T3517] EXT4-fs (loop2): Remounting filesystem read-only
[   29.512349][ T3510] program syz.3.9 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   29.571543][ T3498] netlink: 'syz.4.5': attribute type 1 has an invalid length.
[   29.582344][ T3498] netlink: 224 bytes leftover after parsing attributes in process `syz.4.5'.
[   29.647533][ T3521] loop0: detected capacity change from 0 to 2048
[   29.748090][ T3521] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   29.796489][ T3521] ext4 filesystem being mounted at /1/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   29.995578][ T3529] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   30.006371][ T3531] vhci_hcd: invalid port number 65
[   30.012363][ T3531] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   30.020856][ T3529] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   30.048143][ T3529] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.10: bg 0: block 345: padding at end of block bitmap is not set
[   30.055322][ T3533] loop1: detected capacity change from 0 to 2048
[   30.087018][ T3535] loop3: detected capacity change from 0 to 128
[   30.098268][ T3529] EXT4-fs (loop0): Remounting filesystem read-only
[   30.104470][ T3535] FAT-fs (loop3): Directory bread(block 162) failed
[   30.114056][ T3535] FAT-fs (loop3): Directory bread(block 163) failed
[   30.114825][ T3533] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   30.131405][ T3535] FAT-fs (loop3): Directory bread(block 164) failed
[   30.142228][ T3535] FAT-fs (loop3): Directory bread(block 165) failed
[   30.146822][ T3533] ext4 filesystem being mounted at /2/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   30.149099][ T3535] FAT-fs (loop3): Directory bread(block 166) failed
[   30.149117][ T3535] FAT-fs (loop3): Directory bread(block 167) failed
[   30.173542][ T3535] FAT-fs (loop3): Directory bread(block 168) failed
[   30.180336][ T3535] FAT-fs (loop3): Directory bread(block 169) failed
[   30.240112][ T3515] syz.4.5 (3515) used greatest stack depth: 10360 bytes left
[   30.254279][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   30.266679][ T3535] FAT-fs (loop3): Directory bread(block 162) failed
[   30.277645][ T3535] FAT-fs (loop3): Directory bread(block 163) failed
[   30.280379][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   30.312221][ T3521] netlink: 'syz.0.10': attribute type 1 has an invalid length.
[   30.319978][ T3521] netlink: 224 bytes leftover after parsing attributes in process `syz.0.10'.
[   30.351565][ T3535] syz.3.15: attempt to access beyond end of device
[   30.351565][ T3535] loop3: rw=3, sector=226, nr_sectors = 6 limit=128
[   30.353031][ T3542] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   30.397205][ T3535] syz.3.15: attempt to access beyond end of device
[   30.397205][ T3535] loop3: rw=2051, sector=232, nr_sectors = 2 limit=128
[   30.415033][ T3543] loop2: detected capacity change from 0 to 512
[   30.424682][ T3542] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   30.431473][ T3540] netlink: 16 bytes leftover after parsing attributes in process `syz.4.17'.
[   30.443293][ T3540] netlink: 24 bytes leftover after parsing attributes in process `syz.4.17'.
[   30.475323][ T3543] EXT4-fs warning (device loop2): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   30.510954][ T3549] vhci_hcd: invalid port number 65
[   30.516325][ T3549] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   30.521530][ T3543] EXT4-fs (loop2): mount failed
[   30.541975][ T3551] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   30.556718][ T3552] netlink: 'syz.1.14': attribute type 1 has an invalid length.
[   30.565387][ T3552] netlink: 224 bytes leftover after parsing attributes in process `syz.1.14'.
[   30.580237][ T3542] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.14: bg 0: block 345: padding at end of block bitmap is not set
[   30.618907][ T3542] EXT4-fs (loop1): Remounting filesystem read-only
[   30.683135][ T3543] pim6reg1: entered promiscuous mode
[   30.688591][ T3543] pim6reg1: entered allmulticast mode
[   30.764586][ T3543] netlink: 1192 bytes leftover after parsing attributes in process `syz.2.16'.
[   30.804468][ T3566] netlink: 32 bytes leftover after parsing attributes in process `syz.2.24'.
[   30.866368][ T3569] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   30.900791][    C1] IPv4: Oversized IP packet from 172.20.20.24
[   30.924263][ T3569] loop2: detected capacity change from 0 to 512
[   30.949685][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   30.964096][ T3569] EXT4-fs error (device loop2): ext4_orphan_get:1418: comm syz.2.25: bad orphan inode 11862016
[   30.999307][ T3569] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   31.038660][ T3569] ext4 filesystem being mounted at /4/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   31.059505][ T3573] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   31.101757][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   31.432003][ T3581] loop2: detected capacity change from 0 to 512
[   31.438886][ T3581] EXT4-fs: Ignoring removed mblk_io_submit option
[   31.445364][ T3581] EXT4-fs: inline encryption not supported
[   31.451426][ T3581] EXT4-fs: test_dummy_encryption option not supported
[   31.676498][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   31.747385][ T3584] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=256 sclass=netlink_audit_socket pid=3584 comm=syz.4.30
[   32.251731][ T3588] loop4: detected capacity change from 0 to 128
[   32.681252][ T3598] loop4: detected capacity change from 0 to 2048
[   32.774217][ T3600] vhci_hcd: invalid port number 65
[   32.779663][ T3600] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   32.851432][ T3598] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   32.885635][ T3606] loop2: detected capacity change from 0 to 512
[   32.928099][ T3594] syz.3.31 (3594) used greatest stack depth: 10056 bytes left
[   32.936211][ T3606] EXT4-fs: Ignoring removed i_version option
[   32.942511][ T3606] EXT4-fs: Ignoring removed bh option
[   33.031852][ T3606] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   33.080113][ T3598] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   33.107154][ T3606] ext4 filesystem being mounted at /7/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   33.139298][ T3598] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 714 with error 28
[   33.152266][ T3598] EXT4-fs (loop4): This should not happen!! Data will be lost
[   33.152266][ T3598] 
[   33.162158][ T3598] EXT4-fs (loop4): Total free blocks count 0
[   33.168948][ T3598] EXT4-fs (loop4): Free/Dirty block details
[   33.175678][ T3598] EXT4-fs (loop4): free_blocks=2415919104
[   33.181527][ T3598] EXT4-fs (loop4): dirty_blocks=720
[   33.187008][ T3598] EXT4-fs (loop4): Block reservation details
[   33.193057][ T3598] EXT4-fs (loop4): i_reserved_data_blocks=45
[   33.245350][   T29] kauditd_printk_skb: 120 callbacks suppressed
[   33.245364][   T29] audit: type=1400 audit(1761337939.872:210): avc:  denied  { setopt } for  pid=3610 comm="syz.1.36" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   33.271417][ T3596] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 4 with error 28
[   33.342011][ T3616] netlink: 32 bytes leftover after parsing attributes in process `syz.1.37'.
[   33.404841][   T29] audit: type=1400 audit(1761337940.032:211): avc:  denied  { ioctl } for  pid=3605 comm="syz.2.35" path="/7/bus/file1" dev="loop2" ino=15 ioctlcmd=0x660f scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   33.455994][   T29] audit: type=1400 audit(1761337940.072:212): avc:  denied  { create } for  pid=3613 comm="syz.3.38" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   33.476589][   T29] audit: type=1400 audit(1761337940.072:213): avc:  denied  { listen } for  pid=3613 comm="syz.3.38" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   33.496429][   T29] audit: type=1400 audit(1761337940.072:214): avc:  denied  { setopt } for  pid=3613 comm="syz.3.38" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   33.519199][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   33.572709][ T3627] netlink: 32 bytes leftover after parsing attributes in process `syz.2.40'.
[   33.626536][ T3629] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   33.683195][ T3635] vhci_hcd: invalid port number 65
[   33.690859][ T3635] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   33.756134][   T29] audit: type=1400 audit(1761337940.382:215): avc:  denied  { ioctl } for  pid=3613 comm="syz.3.38" path="socket:[3993]" dev="sockfs" ino=3993 ioctlcmd=0x9408 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   33.842239][   T29] audit: type=1326 audit(1761337940.412:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3639 comm="syz.4.45" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f278fedefc9 code=0x7ffc0000
[   33.867954][   T29] audit: type=1326 audit(1761337940.422:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3639 comm="syz.4.45" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f278fedefc9 code=0x7ffc0000
[   33.895599][   T29] audit: type=1326 audit(1761337940.422:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3639 comm="syz.4.45" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f278fedefc9 code=0x7ffc0000
[   33.920224][   T29] audit: type=1326 audit(1761337940.422:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3639 comm="syz.4.45" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f278fedd810 code=0x7ffc0000
[   33.956137][ T3646] loop3: detected capacity change from 0 to 512
[   33.972523][ T3646] EXT4-fs: Ignoring removed i_version option
[   33.979400][ T3646] EXT4-fs: Ignoring removed bh option
[   34.069840][ T3646] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   34.244714][ T3646] ext4 filesystem being mounted at /12/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   34.474462][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   34.511019][ T3655] netlink: 12 bytes leftover after parsing attributes in process `syz.3.49'.
[   34.521922][ T3654] loop2: detected capacity change from 0 to 2048
[   34.536177][ T3654] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   34.552696][ T3654] ext4 filesystem being mounted at /10/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   34.592022][ T3661] loop3: detected capacity change from 0 to 2048
[   34.635510][ T3625] syz.1.42 (3625) used greatest stack depth: 7240 bytes left
[   34.637591][ T3661] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   34.688674][ T3666] netlink: 'syz.1.52': attribute type 10 has an invalid length.
[   34.699875][ T3666] team0: Port device dummy0 added
[   34.705468][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   34.747525][ T3665] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   34.756409][ T3665] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   34.831359][ T3665] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.48: bg 0: block 345: padding at end of block bitmap is not set
[   34.900514][ T3675] loop1: detected capacity change from 0 to 128
[   34.911764][ T3676] netlink: 'syz.2.48': attribute type 1 has an invalid length.
[   34.920528][ T3676] netlink: 224 bytes leftover after parsing attributes in process `syz.2.48'.
[   34.937895][ T3665] EXT4-fs (loop2): Remounting filesystem read-only
[   34.950208][ T3675] FAT-fs (loop1): Directory bread(block 32) failed
[   34.974638][ T3675] FAT-fs (loop1): Directory bread(block 33) failed
[   35.001599][ T3675] FAT-fs (loop1): Directory bread(block 34) failed
[   35.008886][ T3675] FAT-fs (loop1): Directory bread(block 35) failed
[   35.016220][ T3675] FAT-fs (loop1): Directory bread(block 36) failed
[   35.031481][ T3675] FAT-fs (loop1): Directory bread(block 37) failed
[   35.038496][ T3675] FAT-fs (loop1): Directory bread(block 38) failed
[   35.045189][ T3675] FAT-fs (loop1): Directory bread(block 39) failed
[   35.052025][ T3675] FAT-fs (loop1): Directory bread(block 40) failed
[   35.059925][ T3675] FAT-fs (loop1): Directory bread(block 41) failed
[   35.152296][ T3675] syz.1.55: attempt to access beyond end of device
[   35.152296][ T3675] loop1: rw=0, sector=4108, nr_sectors = 4 limit=128
[   35.194962][   T12] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   35.211212][ T3681] lo speed is unknown, defaulting to 1000
[   35.217441][   T12] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   35.228866][ T3681] lo speed is unknown, defaulting to 1000
[   35.236565][ T3681] lo speed is unknown, defaulting to 1000
[   35.244686][   T12] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   35.257308][ T3681] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   35.267696][   T12] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   35.281287][ T3681] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[   35.295003][ T3675] SELinux: failed to load policy
[   35.322113][ T3681] lo speed is unknown, defaulting to 1000
[   35.328593][ T3681] lo speed is unknown, defaulting to 1000
[   35.374231][ T3681] lo speed is unknown, defaulting to 1000
[   35.408259][ T3681] lo speed is unknown, defaulting to 1000
[   35.433364][ T3681] lo speed is unknown, defaulting to 1000
[   35.509080][ T3690] loop1: detected capacity change from 0 to 2048
[   35.536069][ T3690] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   35.570317][ T3690] ext4 filesystem being mounted at /12/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   35.688894][ T3698] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   35.760193][ T3698] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   35.769543][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   35.861492][ T3698] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.59: bg 0: block 345: padding at end of block bitmap is not set
[   35.896060][ T3701] netlink: 'syz.1.59': attribute type 1 has an invalid length.
[   35.904167][ T3701] netlink: 224 bytes leftover after parsing attributes in process `syz.1.59'.
[   35.942342][ T3698] EXT4-fs (loop1): Remounting filesystem read-only
[   36.294972][ T3705] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   36.337266][ T3709] loop2: detected capacity change from 0 to 1024
[   36.344501][ T3709] =======================================================
[   36.344501][ T3709] WARNING: The mand mount option has been deprecated and
[   36.344501][ T3709]          and is ignored by this kernel. Remove the mand
[   36.344501][ T3709]          option from the mount to silence this warning.
[   36.344501][ T3709] =======================================================
[   36.393873][ T3709] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   36.421215][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   36.455501][ T3719] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   36.488476][ T3725] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   36.522781][ T3728] vhci_hcd: invalid port number 65
[   36.529175][ T3728] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   36.563862][ T3731] loop2: detected capacity change from 0 to 2048
[   36.583013][ T3731] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   36.604849][ T3731] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   36.685824][ T3731] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   36.700037][ T3731] EXT4-fs (loop2): This should not happen!! Data will be lost
[   36.700037][ T3731] 
[   36.711557][ T3731] EXT4-fs (loop2): Total free blocks count 0
[   36.717771][ T3731] EXT4-fs (loop2): Free/Dirty block details
[   36.724087][ T3731] EXT4-fs (loop2): free_blocks=2415919104
[   36.730228][ T3731] EXT4-fs (loop2): dirty_blocks=2432
[   36.735889][ T3731] EXT4-fs (loop2): Block reservation details
[   36.742448][ T3731] EXT4-fs (loop2): i_reserved_data_blocks=152
[   36.750032][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   36.760545][ T3737] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 28
[   36.792097][ T3739] Zero length message leads to an empty skb
[   36.913338][ T3742] capability: warning: `syz.2.75' uses deprecated v2 capabilities in a way that may be insecure
[   37.117093][ T3747] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   37.174556][ T3751] loop2: detected capacity change from 0 to 4096
[   37.192302][ T3751] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   37.230485][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   37.254780][ T3756] vhci_hcd: invalid port number 65
[   37.260130][ T3756] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   37.277398][ T3757] program syz.4.80 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   37.338581][ T3761] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   37.379662][ T3764] loop0: detected capacity change from 0 to 512
[   37.402053][ T3764] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   37.419232][ T3764] ext4 filesystem being mounted at /10/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   37.439087][ T3770] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   37.450031][ T3764] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[   37.467366][ T3764] vhci_hcd: invalid port number 255
[   37.472911][ T3764] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub
[   37.503207][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   37.540771][ T3778] loop0: detected capacity change from 0 to 2048
[   37.554301][ T3778] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   37.588353][ T3775] lo speed is unknown, defaulting to 1000
[   37.645016][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   37.782754][ T3784] lo speed is unknown, defaulting to 1000
[   37.882303][ T3789] lo speed is unknown, defaulting to 1000
[   37.927864][ T3791] loop0: detected capacity change from 0 to 512
[   37.934615][ T3791] EXT4-fs: Ignoring removed mblk_io_submit option
[   37.941110][ T3791] EXT4-fs: inline encryption not supported
[   37.947266][ T3791] EXT4-fs: test_dummy_encryption option not supported
[   38.429389][ T3798] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   38.442229][ T3800] netlink: 32 bytes leftover after parsing attributes in process `syz.2.95'.
[   38.454874][ T3796] vhci_hcd: invalid port number 65
[   38.460462][ T3796] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   38.485997][ T3795] loop3: detected capacity change from 0 to 2048
[   38.566033][ T3795] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   38.593087][   T29] kauditd_printk_skb: 198 callbacks suppressed
[   38.593100][   T29] audit: type=1326 audit(1761337945.222:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3804 comm="syz.2.96" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce5658efc9 code=0x7ffc0000
[   38.628340][   T29] audit: type=1326 audit(1761337945.222:419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3804 comm="syz.2.96" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fce5658efc9 code=0x7ffc0000
[   38.689147][ T3795] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   38.781203][   T41] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   38.810159][   T41] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   38.820548][ T3807] siw: device registration error -23
[   38.837538][ T3819] loop4: detected capacity change from 0 to 512
[   38.844851][ T3819] EXT4-fs: Ignoring removed i_version option
[   38.851276][ T3819] EXT4-fs: Ignoring removed bh option
[   38.859730][   T41] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   38.870136][ T3795] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 512 with error 28
[   38.884701][ T3795] EXT4-fs (loop3): This should not happen!! Data will be lost
[   38.884701][ T3795] 
[   38.895037][ T3795] EXT4-fs (loop3): Total free blocks count 0
[   38.901392][ T3795] EXT4-fs (loop3): Free/Dirty block details
[   38.907725][ T3795] EXT4-fs (loop3): free_blocks=2415919104
[   38.914317][ T3795] EXT4-fs (loop3): dirty_blocks=528
[   38.919635][ T3795] EXT4-fs (loop3): Block reservation details
[   38.926425][ T3795] EXT4-fs (loop3): i_reserved_data_blocks=33
[   38.953300][   T41] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   38.986855][   T29] audit: type=1326 audit(1761337945.282:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3804 comm="syz.2.96" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce5658efc9 code=0x7ffc0000
[   39.011099][   T29] audit: type=1326 audit(1761337945.282:421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3804 comm="syz.2.96" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce5658efc9 code=0x7ffc0000
[   39.038194][   T29] audit: type=1326 audit(1761337945.282:422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3804 comm="syz.2.96" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fce5658efc9 code=0x7ffc0000
[   39.062516][   T29] audit: type=1326 audit(1761337945.282:423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3804 comm="syz.2.96" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce5658efc9 code=0x7ffc0000
[   39.088822][   T29] audit: type=1326 audit(1761337945.282:424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3804 comm="syz.2.96" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce5658efc9 code=0x7ffc0000
[   39.113647][   T29] audit: type=1326 audit(1761337945.282:425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3804 comm="syz.2.96" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fce5658efc9 code=0x7ffc0000
[   39.138022][   T29] audit: type=1326 audit(1761337945.282:426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3804 comm="syz.2.96" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce5658efc9 code=0x7ffc0000
[   39.162779][   T29] audit: type=1326 audit(1761337945.282:427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3804 comm="syz.2.96" exe="/root/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7fce5658efc9 code=0x7ffc0000
[   39.267773][ T3827] netlink: 32 bytes leftover after parsing attributes in process `syz.1.102'.
[   39.382238][ T3819] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   39.405645][ T3815] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 4 with error 28
[   39.461318][ T3819] ext4 filesystem being mounted at /18/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   39.549588][ T3836] vhci_hcd: invalid port number 65
[   39.555775][ T3836] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   39.623921][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.716518][ T3842] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=256 sclass=netlink_audit_socket pid=3842 comm=syz.0.108
[   39.772867][ T3848] netlink: 32 bytes leftover after parsing attributes in process `syz.4.110'.
[   39.785474][ T3847] loop0: detected capacity change from 0 to 512
[   39.792531][ T3847] EXT4-fs: Ignoring removed i_version option
[   39.800586][ T3847] EXT4-fs: Ignoring removed bh option
[   39.814631][ T3850] loop4: detected capacity change from 0 to 1024
[   39.843804][ T3850] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   39.860256][ T3847] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   39.878148][ T3847] ext4 filesystem being mounted at /15/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   39.919805][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.083489][ T3858] loop4: detected capacity change from 0 to 1024
[   40.111145][ T3858] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   40.191545][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.218184][ T3866] loop0: detected capacity change from 0 to 512
[   40.238270][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.254512][ T3866] EXT4-fs: Ignoring removed i_version option
[   40.260614][ T3866] EXT4-fs: Ignoring removed bh option
[   40.282938][ T3866] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.297338][ T3866] ext4 filesystem being mounted at /16/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   40.336056][ T3871] loop4: detected capacity change from 0 to 1024
[   40.359965][ T3873] loop1: detected capacity change from 0 to 512
[   40.392839][ T3873] EXT4-fs: Ignoring removed i_version option
[   40.400091][ T3873] EXT4-fs: Ignoring removed bh option
[   40.424412][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.447146][ T3871] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   40.465507][ T3873] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.496947][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.511882][ T3879] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=256 sclass=netlink_audit_socket pid=3879 comm=syz.0.118
[   40.524561][ T3873] ext4 filesystem being mounted at /21/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   40.555530][ T3883] loop4: detected capacity change from 0 to 2048
[   40.571141][ T3887] vhci_hcd: invalid port number 65
[   40.576449][ T3887] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   40.602132][ T3883] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   40.602545][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.616987][ T3883] ext4 filesystem being mounted at /24/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   40.628318][ T3891] netlink: 32 bytes leftover after parsing attributes in process `syz.3.123'.
[   40.681079][ T3896] loop1: detected capacity change from 0 to 256
[   40.714050][ T3899] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   40.722875][ T3899] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   40.743963][ T3899] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.119: bg 0: block 345: padding at end of block bitmap is not set
[   40.761510][ T3899] EXT4-fs (loop4): Remounting filesystem read-only
[   40.849176][ T3883] netlink: 'syz.4.119': attribute type 1 has an invalid length.
[   40.857644][ T3883] netlink: 224 bytes leftover after parsing attributes in process `syz.4.119'.
[   40.939950][ T3907] mmap: syz.1.129 (3907) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   41.453384][ T3902] syz.3.127 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[   41.467582][ T3902] CPU: 0 UID: 0 PID: 3902 Comm: syz.3.127 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   41.467611][ T3902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   41.467628][ T3902] Call Trace:
[   41.467639][ T3902]  <TASK>
[   41.467647][ T3902]  __dump_stack+0x1d/0x30
[   41.467746][ T3902]  dump_stack_lvl+0xe8/0x140
[   41.467834][ T3902]  dump_stack+0x15/0x1b
[   41.467850][ T3902]  dump_header+0x81/0x220
[   41.467880][ T3902]  oom_kill_process+0x342/0x400
[   41.467909][ T3902]  out_of_memory+0x979/0xb80
[   41.467937][ T3902]  try_charge_memcg+0x610/0xa10
[   41.468003][ T3902]  obj_cgroup_charge_pages+0xa6/0x150
[   41.468022][ T3902]  __memcg_kmem_charge_page+0x9f/0x170
[   41.468040][ T3902]  __alloc_frozen_pages_noprof+0x188/0x360
[   41.468154][ T3902]  alloc_pages_mpol+0xb3/0x260
[   41.468216][ T3902]  ? alloc_pages_noprof+0x61/0x130
[   41.468240][ T3902]  alloc_pages_noprof+0x90/0x130
[   41.468304][ T3902]  __vmalloc_node_range_noprof+0x7a5/0xed0
[   41.468341][ T3902]  ? mas_max_gap+0x2b4/0x390
[   41.468361][ T3902]  __kvmalloc_node_noprof+0x483/0x670
[   41.468404][ T3902]  ? ip_set_alloc+0x24/0x30
[   41.468432][ T3902]  ? ip_set_alloc+0x24/0x30
[   41.468463][ T3902]  ? __kmalloc_cache_noprof+0x249/0x4a0
[   41.468534][ T3902]  ip_set_alloc+0x24/0x30
[   41.468565][ T3902]  hash_netiface_create+0x282/0x740
[   41.468596][ T3902]  ? __pfx_hash_netiface_create+0x10/0x10
[   41.468712][ T3902]  ip_set_create+0x3cc/0x970
[   41.468740][ T3902]  ? __nla_parse+0x40/0x60
[   41.468759][ T3902]  nfnetlink_rcv_msg+0x4c6/0x590
[   41.468800][ T3902]  netlink_rcv_skb+0x123/0x220
[   41.468831][ T3902]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   41.468869][ T3902]  nfnetlink_rcv+0x167/0x16c0
[   41.468890][ T3902]  ? kmem_cache_free+0xe4/0x3d0
[   41.468915][ T3902]  ? __kfree_skb+0x109/0x150
[   41.468958][ T3902]  ? nlmon_xmit+0x4f/0x60
[   41.468984][ T3902]  ? consume_skb+0x49/0x150
[   41.469009][ T3902]  ? nlmon_xmit+0x4f/0x60
[   41.469028][ T3902]  ? dev_hard_start_xmit+0x3b0/0x3e0
[   41.469138][ T3902]  ? __dev_queue_xmit+0x1200/0x2000
[   41.469225][ T3902]  ? __dev_queue_xmit+0x182/0x2000
[   41.469249][ T3902]  ? merge_sched_in+0x605/0xa30
[   41.469286][ T3902]  ? ref_tracker_free+0x37d/0x3e0
[   41.469317][ T3902]  ? __netlink_deliver_tap+0x4dc/0x500
[   41.469407][ T3902]  netlink_unicast+0x5c0/0x690
[   41.469436][ T3902]  netlink_sendmsg+0x58b/0x6b0
[   41.469454][ T3902]  ? __pfx_netlink_sendmsg+0x10/0x10
[   41.469473][ T3902]  __sock_sendmsg+0x145/0x180
[   41.469497][ T3902]  ____sys_sendmsg+0x31e/0x4e0
[   41.469536][ T3902]  ___sys_sendmsg+0x17b/0x1d0
[   41.469575][ T3902]  __x64_sys_sendmsg+0xd4/0x160
[   41.469692][ T3902]  x64_sys_call+0x191e/0x3000
[   41.469711][ T3902]  do_syscall_64+0xd2/0x200
[   41.469726][ T3902]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   41.469754][ T3902]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   41.469839][ T3902]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   41.469863][ T3902] RIP: 0033:0x7f333239efc9
[   41.469877][ T3902] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   41.469893][ T3902] RSP: 002b:00007f3330e07038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   41.469912][ T3902] RAX: ffffffffffffffda RBX: 00007f33325f5fa0 RCX: 00007f333239efc9
[   41.469923][ T3902] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000006
[   41.469999][ T3902] RBP: 00007f3332421f91 R08: 0000000000000000 R09: 0000000000000000
[   41.470011][ T3902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   41.470022][ T3902] R13: 00007f33325f6038 R14: 00007f33325f5fa0 R15: 00007ffcb9b94108
[   41.470039][ T3902]  </TASK>
[   41.470046][ T3902] memory: usage 307200kB, limit 307200kB, failcnt 254
[   41.869077][ T3902] memory+swap: usage 307396kB, limit 9007199254740988kB, failcnt 0
[   41.879228][ T3902] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[   41.888729][ T3902] Memory cgroup stats for /syz3:
[   41.889380][ T3902] cache 0
[   41.895719][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.898029][ T3902] rss 0
[   41.898051][ T3902] shmem 0
[   41.915032][ T3902] mapped_file 0
[   41.918632][ T3902] dirty 0
[   41.921709][ T3902] writeback 0
[   41.925380][ T3902] workingset_refault_anon 12
[   41.930397][ T3902] workingset_refault_file 256
[   41.937352][ T3902] swap 200704
[   41.942565][ T3902] swapcached 0
[   41.946573][ T3902] pgpgin 16256
[   41.950641][ T3902] pgpgout 16255
[   41.954223][ T3902] pgfault 22392
[   41.956286][ T3924] vhci_hcd: invalid port number 65
[   41.957767][ T3902] pgmajfault 8
[   41.963803][ T3924] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   41.967240][ T3902] inactive_anon 0
[   41.982134][ T3902] active_anon 0
[   41.986110][ T3902] inactive_file 0
[   41.990226][ T3902] active_file 4096
[   41.994427][ T3902] unevictable 0
[   41.998997][ T3902] hierarchical_memory_limit 314572800
[   42.006373][ T3902] hierarchical_memsw_limit 9223372036854771712
[   42.011412][ T3922] $H�: renamed from bond0 (while UP)
[   42.013522][ T3902] total_cache 0
[   42.022888][ T3902] total_rss 0
[   42.026577][ T3902] total_shmem 0
[   42.030031][ T3902] total_mapped_file 0
[   42.034323][ T3902] total_dirty 0
[   42.037777][ T3902] total_writeback 0
[   42.041781][ T3902] total_workingset_refault_anon 12
[   42.046856][ T3926] netlink: 32 bytes leftover after parsing attributes in process `syz.4.136'.
[   42.047119][ T3902] total_workingset_refault_file 256
[   42.047138][ T3902] total_swap 200704
[   42.047145][ T3902] total_swapcached 0
[   42.071023][ T3902] total_pgpgin 16256
[   42.076300][ T3902] total_pgpgout 16255
[   42.080283][ T3902] total_pgfault 22392
[   42.084565][ T3902] total_pgmajfault 8
[   42.088786][ T3902] total_inactive_anon 0
[   42.093551][ T3902] total_active_anon 0
[   42.098329][ T3902] total_inactive_file 0
[   42.103058][ T3902] total_active_file 4096
[   42.108518][ T3902] total_unevictable 0
[   42.112628][ T3902] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.127,pid=3901,uid=0
[   42.128980][ T3931] netlink: 'syz.4.138': attribute type 10 has an invalid length.
[   42.138160][ T3902] Memory cgroup out of memory: Killed process 3901 (syz.3.127) total-vm:229124kB, anon-rss:1136kB, file-rss:22440kB, shmem-rss:128kB, UID:0 pgtables:148kB oom_score_adj:1000
[   42.173095][ T3922] $H�: entered promiscuous mode
[   42.178611][ T3922] bond_slave_0: entered promiscuous mode
[   42.184969][ T3922] bond_slave_1: entered promiscuous mode
[   42.219124][ T3936] loop2: detected capacity change from 0 to 1024
[   42.226805][ T3936] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (52289!=20869)
[   42.262993][ T3936] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   42.298133][ T3936] EXT4-fs (loop2): invalid journal inode
[   42.327463][ T3941] syz.2.140 uses obsolete (PF_INET,SOCK_PACKET)
[   42.468006][ T3946] loop3: detected capacity change from 0 to 512
[   42.490786][ T3946] EXT4-fs: Ignoring removed i_version option
[   42.496924][ T3946] EXT4-fs: Ignoring removed bh option
[   42.522727][ T3946] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.551441][ T3950] loop4: detected capacity change from 0 to 2048
[   42.553237][ T3956] loop2: detected capacity change from 0 to 512
[   42.566246][ T3946] ext4 filesystem being mounted at /29/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   42.579919][ T3950] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.595099][ T3956] EXT4-fs: Ignoring removed i_version option
[   42.601842][ T3956] EXT4-fs: Ignoring removed bh option
[   42.617281][ T3950] ext4 filesystem being mounted at /29/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   42.687774][ T3961] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   42.698408][ T3956] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.717841][ T3961] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   42.727520][ T3956] ext4 filesystem being mounted at /36/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   42.736622][ T3961] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.144: bg 0: block 345: padding at end of block bitmap is not set
[   42.757050][ T3961] EXT4-fs (loop4): Remounting filesystem read-only
[   42.762930][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.837967][ T3965] lo speed is unknown, defaulting to 1000
[   42.885781][ T3967] loop0: detected capacity change from 0 to 512
[   42.893387][ T3967] EXT4-fs: Ignoring removed mblk_io_submit option
[   42.900876][ T3967] EXT4-fs: inline encryption not supported
[   42.907182][ T3967] EXT4-fs: test_dummy_encryption option not supported
[   43.009065][ T3950] netlink: 'syz.4.144': attribute type 1 has an invalid length.
[   43.017286][ T3950] netlink: 224 bytes leftover after parsing attributes in process `syz.4.144'.
[   43.724332][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.759230][ T3974] loop2: detected capacity change from 0 to 128
[   43.770768][   T29] kauditd_printk_skb: 171 callbacks suppressed
[   43.770782][   T29] audit: type=1400 audit(1761337950.392:599): avc:  denied  { mount } for  pid=3973 comm="syz.2.149" name="/" dev="loop2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[   43.883601][ T3977] 9pnet: Could not find request transport: 0xffffffffffffffff
[   44.054437][   T29] audit: type=1326 audit(1761337950.682:600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3985 comm="syz.1.153" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f91c72aefc9 code=0x0
[   44.098393][   T29] audit: type=1400 audit(1761337950.722:601): avc:  denied  { read } for  pid=3987 comm="syz.3.154" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   44.152163][ T3988] netlink: 8 bytes leftover after parsing attributes in process `syz.3.154'.
[   44.273443][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.407831][   T29] audit: type=1326 audit(1761337951.032:602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3998 comm="syz.2.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce5658efc9 code=0x7ffc0000
[   44.469933][ T4001] loop4: detected capacity change from 0 to 512
[   44.496600][   T29] audit: type=1326 audit(1761337951.062:603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3998 comm="syz.2.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fce5658efc9 code=0x7ffc0000
[   44.526103][   T29] audit: type=1326 audit(1761337951.062:604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3998 comm="syz.2.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce5658efc9 code=0x7ffc0000
[   44.552894][   T29] audit: type=1326 audit(1761337951.062:605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3998 comm="syz.2.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fce5658efc9 code=0x7ffc0000
[   44.581187][   T29] audit: type=1326 audit(1761337951.062:606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3998 comm="syz.2.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce5658efc9 code=0x7ffc0000
[   44.607412][   T29] audit: type=1326 audit(1761337951.062:607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3998 comm="syz.2.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fce5658efc9 code=0x7ffc0000
[   44.607885][ T4001] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #15: comm syz.4.158: inode has both inline data and extents flags
[   44.634784][   T29] audit: type=1326 audit(1761337951.062:608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3998 comm="syz.2.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce5658efc9 code=0x7ffc0000
[   44.685137][ T4001] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.158: couldn't read orphan inode 15 (err -117)
[   44.702418][ T4007] loop0: detected capacity change from 0 to 512
[   44.711942][ T4001] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   44.726180][ T4007] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   44.741950][ T4007] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   44.762595][ T4007] EXT4-fs (loop0): 1 truncate cleaned up
[   44.768968][ T4007] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.793121][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.881828][ T4014] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   44.896897][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.918944][ T4019] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   44.923475][ T4012] netlink: 28 bytes leftover after parsing attributes in process `syz.4.162'.
[   44.945820][ T4020] netlink: 28 bytes leftover after parsing attributes in process `syz.1.164'.
[   44.955242][ T4020] netlink: 108 bytes leftover after parsing attributes in process `syz.1.164'.
[   44.970547][ T4023] vhci_hcd: invalid port number 65
[   44.979010][ T4023] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   44.989548][ T4020] netlink: 28 bytes leftover after parsing attributes in process `syz.1.164'.
[   45.001601][ T4024] vhci_hcd: invalid port number 65
[   45.002133][ T4020] netlink: 108 bytes leftover after parsing attributes in process `syz.1.164'.
[   45.007985][ T4024] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   45.013777][ T4028] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[   45.018220][ T4020] netlink: 84 bytes leftover after parsing attributes in process `syz.1.164'.
[   45.106471][ T4039] loop0: detected capacity change from 0 to 512
[   45.126941][ T4039] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.159875][ T4039] ext4 filesystem being mounted at /28/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   45.318181][ T4039] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[   45.339514][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.391964][ T4047] loop2: detected capacity change from 0 to 1764
[   45.423382][ T4047] iso9660: Corrupted directory entry in block 2 of inode 1920
[   45.435857][ T4047] iso9660: Corrupted directory entry in block 2 of inode 1920
[   45.465298][ T4052] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   45.496444][ T4054] vhci_hcd: invalid port number 65
[   45.503068][ T4054] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   45.534013][ T4056] loop2: detected capacity change from 0 to 512
[   45.558393][ T4058] vhci_hcd: invalid port number 65
[   45.565122][ T4058] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   45.583073][ T4056] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.179: bg 0: block 248: padding at end of block bitmap is not set
[   45.601796][ T4056] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.179: Failed to acquire dquot type 1
[   45.615954][ T4056] EXT4-fs (loop2): 1 truncate cleaned up
[   45.622958][ T4056] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.638178][ T4056] ext4 filesystem being mounted at /48/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   45.694767][ T4066] netlink: 8 bytes leftover after parsing attributes in process `syz.4.183'.
[   45.706407][ T4066] netlink: 4 bytes leftover after parsing attributes in process `syz.4.183'.
[   45.722381][ T4066] netlink: 4 bytes leftover after parsing attributes in process `syz.4.183'.
[   45.826347][ T4070] loop3: detected capacity change from 0 to 2048
[   45.862594][ T4070] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   45.891785][ T4070] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   45.983798][ T4074] loop4: detected capacity change from 0 to 512
[   46.011118][ T4074] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.034327][ T4074] ext4 filesystem being mounted at /34/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   46.044949][ T4083] loop1: detected capacity change from 0 to 512
[   46.054372][ T4083] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   46.094941][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.129953][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.157281][ T4089] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   46.181217][ T4070] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   46.195825][ T4070] EXT4-fs (loop3): This should not happen!! Data will be lost
[   46.195825][ T4070] 
[   46.206144][ T4070] EXT4-fs (loop3): Total free blocks count 0
[   46.213545][ T4070] EXT4-fs (loop3): Free/Dirty block details
[   46.221571][ T4070] EXT4-fs (loop3): free_blocks=2415919104
[   46.227951][ T4070] EXT4-fs (loop3): dirty_blocks=8208
[   46.234038][ T4070] EXT4-fs (loop3): Block reservation details
[   46.237007][ T4091] netlink: 'syz.4.191': attribute type 1 has an invalid length.
[   46.240551][ T4070] EXT4-fs (loop3): i_reserved_data_blocks=513
[   46.258053][ T4091] netlink: 8 bytes leftover after parsing attributes in process `syz.4.191'.
[   46.271717][ T4075] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[   46.302732][ T4093] vhci_hcd: invalid port number 65
[   46.308239][ T4093] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   46.326524][ T4095] vhci_hcd: invalid port number 65
[   46.332334][ T4095] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   46.389318][ T4101] ip6t_srh: unknown srh match flags  4000
[   46.402423][ T4101] loop4: detected capacity change from 0 to 1024
[   46.511995][ T4106] lo speed is unknown, defaulting to 1000
[   46.665446][ T4111] netlink: 'syz.3.198': attribute type 1 has an invalid length.
[   46.784134][ T4113] loop3: detected capacity change from 0 to 512
[   46.794797][ T4113] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.809416][ T4113] ext4 filesystem being mounted at /40/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   46.847742][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.899587][ T4119] lo speed is unknown, defaulting to 1000
[   46.911254][ T4119] lo speed is unknown, defaulting to 1000
[   46.917171][ T4119] lo speed is unknown, defaulting to 1000
[   46.932538][ T4119] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[   46.950574][ T4119] lo speed is unknown, defaulting to 1000
[   46.957079][ T4119] lo speed is unknown, defaulting to 1000
[   46.975355][ T4119] lo speed is unknown, defaulting to 1000
[   47.003695][ T4119] lo speed is unknown, defaulting to 1000
[   47.010703][ T4119] lo speed is unknown, defaulting to 1000
[   47.021130][ T4120] loop9: detected capacity change from 0 to 7
[   47.029795][ T4120] Buffer I/O error on dev loop9, logical block 0, async page read
[   47.037885][ T4120] Buffer I/O error on dev loop9, logical block 0, async page read
[   47.046258][ T4120]  loop9: unable to read partition table
[   47.061276][ T4120] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ���
[   47.061276][ T4120] 
) failed (rc=-5)
[   47.107783][ T4122] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   47.158106][ T4124] netlink: 'syz.3.203': attribute type 13 has an invalid length.
[   47.209891][ T4129] vhci_hcd: invalid port number 65
[   47.215275][ T4129] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   47.239787][ T4131] vhci_hcd: invalid port number 65
[   47.247162][ T4131] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   47.277633][ T4133] loop3: detected capacity change from 0 to 2048
[   47.309868][ T4133] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   47.326720][ T4133] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   47.367763][ T4139] loop4: detected capacity change from 0 to 2048
[   47.402276][ T4143] loop1: detected capacity change from 0 to 512
[   47.419220][ T4143] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.435448][ T4139] EXT4-fs: Ignoring removed mblk_io_submit option
[   47.450696][ T4139] EXT4-fs: dax option not supported
[   47.457318][ T4143] ext4 filesystem being mounted at /38/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   47.520520][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.531408][ T4154] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=256 sclass=netlink_audit_socket pid=4154 comm=syz.4.212
[   47.598992][ T4158] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=256 sclass=netlink_audit_socket pid=4158 comm=syz.1.213
[   47.636453][ T4160] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   47.650693][ T4133] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   47.664358][ T4133] EXT4-fs (loop3): This should not happen!! Data will be lost
[   47.664358][ T4133] 
[   47.674786][ T4133] EXT4-fs (loop3): Total free blocks count 0
[   47.680964][ T4133] EXT4-fs (loop3): Free/Dirty block details
[   47.686939][ T4133] EXT4-fs (loop3): free_blocks=2415919104
[   47.692893][ T4133] EXT4-fs (loop3): dirty_blocks=8208
[   47.698272][ T4133] EXT4-fs (loop3): Block reservation details
[   47.704912][ T4133] EXT4-fs (loop3): i_reserved_data_blocks=513
[   47.727866][ T4162] loop1: detected capacity change from 0 to 512
[   47.761297][ T4144] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[   47.803017][ T4166] vhci_hcd: invalid port number 65
[   47.809140][ T4166] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   47.848084][ T4168] vhci_hcd: invalid port number 65
[   47.854925][ T4168] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   48.961224][   T29] kauditd_printk_skb: 15327 callbacks suppressed
[   48.961241][   T29] audit: type=1326 audit(1761337954.632:15934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4055 comm="syz.2.179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fce56585e67 code=0x7ffc0000
[   49.027311][ T4182] loop3: detected capacity change from 0 to 1024
[   49.964039][   T29] audit: type=1326 audit(1761337955.592:15935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4055 comm="syz.2.179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fce56585e67 code=0x7ffc0000
[   49.994104][   T29] audit: type=1326 audit(1761337955.592:15936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4055 comm="syz.2.179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fce5652b099 code=0x7ffc0000
[   50.002282][ T4182] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   50.020468][   T29] audit: type=1326 audit(1761337955.592:15937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4055 comm="syz.2.179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fce56585e67 code=0x7ffc0000
[   50.020497][   T29] audit: type=1326 audit(1761337955.592:15938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4055 comm="syz.2.179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fce5652b099 code=0x7ffc0000
[   50.020530][   T29] audit: type=1326 audit(1761337955.592:15939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4055 comm="syz.2.179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fce56585e67 code=0x7ffc0000
[   50.122094][   T29] audit: type=1326 audit(1761337955.592:15940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4055 comm="syz.2.179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fce5652b099 code=0x7ffc0000
[   50.154322][   T29] audit: type=1326 audit(1761337955.592:15941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4055 comm="syz.2.179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fce56585e67 code=0x7ffc0000
[   50.184290][   T29] audit: type=1326 audit(1761337955.592:15942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4055 comm="syz.2.179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fce5652b099 code=0x7ffc0000
[   50.214749][   T29] audit: type=1326 audit(1761337955.592:15943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4055 comm="syz.2.179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fce56585e67 code=0x7ffc0000
[   51.122594][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.145699][ T4186] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=256 sclass=netlink_audit_socket pid=4186 comm=syz.3.224
[   51.217852][ T4192] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   51.235198][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.252208][ T4195] vhci_hcd: invalid port number 65
[   51.257765][ T4195] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   51.268604][ T2782] EXT4-fs error (device loop2): ext4_release_dquot:6981: comm kworker/u8:6: Failed to release dquot type 1
[   51.348037][ T4199] lo speed is unknown, defaulting to 1000
[   51.366579][ T4199] lo speed is unknown, defaulting to 1000
[   51.369732][ T4207] vhci_hcd: invalid port number 65
[   51.379831][ T4207] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   51.400631][ T4208] __nla_validate_parse: 1 callbacks suppressed
[   51.400649][ T4208] netlink: 8 bytes leftover after parsing attributes in process `syz.0.231'.
[   51.418738][ T4208] netlink: 'syz.0.231': attribute type 5 has an invalid length.
[   51.427033][ T4208] netlink: 20 bytes leftover after parsing attributes in process `syz.0.231'.
[   51.563516][ T4208] geneve2: entered promiscuous mode
[   51.569105][ T4208] geneve2: entered allmulticast mode
[   51.582141][ T4212] macvtap1: entered allmulticast mode
[   51.588192][ T4212] veth0_macvtap: entered allmulticast mode
[   51.621773][ T2782] netdevsim netdevsim0 netdevsim0: set [1, 1] type 2 family 0 port 256 - 0
[   51.644546][ T2782] netdevsim netdevsim0 netdevsim1: set [1, 1] type 2 family 0 port 256 - 0
[   51.677713][ T2782] netdevsim netdevsim0 netdevsim2: set [1, 1] type 2 family 0 port 256 - 0
[   51.692979][ T4232] loop4: detected capacity change from 0 to 1024
[   51.703364][ T4232] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   51.757809][ T2782] netdevsim netdevsim0 netdevsim3: set [1, 1] type 2 family 0 port 256 - 0
[   51.787724][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.834830][ T4227] loop3: detected capacity change from 0 to 2048
[   51.872626][ T4227] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   52.001415][ T4251] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=256 sclass=netlink_audit_socket pid=4251 comm=syz.2.240
[   52.117330][ T4253] lo speed is unknown, defaulting to 1000
[   52.124423][ T4253] lo speed is unknown, defaulting to 1000
[   52.167849][ T4255] loop4: detected capacity change from 0 to 512
[   52.174888][ T4255] EXT4-fs: Ignoring removed mblk_io_submit option
[   52.182320][ T4255] EXT4-fs: inline encryption not supported
[   52.188693][ T4255] EXT4-fs: test_dummy_encryption option not supported
[   52.305159][ T4241] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   52.350739][ T4241] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1184 with error 28
[   52.366436][ T4241] EXT4-fs (loop3): This should not happen!! Data will be lost
[   52.366436][ T4241] 
[   52.377701][ T4241] EXT4-fs (loop3): Total free blocks count 0
[   52.384102][ T4241] EXT4-fs (loop3): Free/Dirty block details
[   52.391048][ T4241] EXT4-fs (loop3): free_blocks=2415919104
[   52.399346][ T4241] EXT4-fs (loop3): dirty_blocks=1200
[   52.406952][ T4241] EXT4-fs (loop3): Block reservation details
[   52.413423][ T4241] EXT4-fs (loop3): i_reserved_data_blocks=75
[   52.604974][ T4263] vhci_hcd: invalid port number 65
[   52.611367][ T4263] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   52.685780][ T4265] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4265 comm=syz.0.243
[   52.792776][  T263] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 28
[   52.903214][ T4268] netlink: 32 bytes leftover after parsing attributes in process `syz.2.245'.
[   53.119320][ T4272] vhci_hcd: invalid port number 65
[   53.126452][ T4272] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   53.341444][ T4276] loop2: detected capacity change from 0 to 2048
[   53.404427][ T4276] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   53.498419][ T4276] ext4 filesystem being mounted at /57/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   53.518620][ T4282] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   53.565231][ T4280] FAULT_INJECTION: forcing a failure.
[   53.565231][ T4280] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   53.579956][ T4280] CPU: 0 UID: 0 PID: 4280 Comm: syz.0.250 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   53.580073][ T4280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   53.580112][ T4280] Call Trace:
[   53.580119][ T4280]  <TASK>
[   53.580127][ T4280]  __dump_stack+0x1d/0x30
[   53.580206][ T4280]  dump_stack_lvl+0xe8/0x140
[   53.580224][ T4280]  dump_stack+0x15/0x1b
[   53.580242][ T4280]  should_fail_ex+0x265/0x280
[   53.580271][ T4280]  should_fail+0xb/0x20
[   53.580342][ T4280]  should_fail_usercopy+0x1a/0x20
[   53.580361][ T4280]  _copy_from_user+0x1c/0xb0
[   53.580385][ T4280]  kstrtouint_from_user+0x69/0xf0
[   53.580401][ T4280]  ? 0xffffffff81000000
[   53.580432][ T4280]  ? selinux_file_permission+0x1e4/0x320
[   53.580458][ T4280]  proc_fail_nth_write+0x50/0x160
[   53.580487][ T4280]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   53.580534][ T4280]  vfs_write+0x269/0x960
[   53.580556][ T4280]  ? vfs_read+0x4e6/0x770
[   53.580576][ T4280]  ? __rcu_read_unlock+0x4f/0x70
[   53.580617][ T4280]  ? __fget_files+0x184/0x1c0
[   53.580670][ T4280]  ksys_write+0xda/0x1a0
[   53.580692][ T4280]  __x64_sys_write+0x40/0x50
[   53.580712][ T4280]  x64_sys_call+0x2802/0x3000
[   53.580741][ T4280]  do_syscall_64+0xd2/0x200
[   53.580757][ T4280]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   53.580782][ T4280]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   53.580834][ T4280]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   53.580854][ T4280] RIP: 0033:0x7f67bc26da7f
[   53.580892][ T4280] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   53.580906][ T4280] RSP: 002b:00007f67bacd7030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   53.580922][ T4280] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f67bc26da7f
[   53.580933][ T4280] RDX: 0000000000000001 RSI: 00007f67bacd70a0 RDI: 0000000000000003
[   53.580946][ T4280] RBP: 00007f67bacd7090 R08: 0000000000000000 R09: 0000000000000000
[   53.580993][ T4280] R10: 0000200000000200 R11: 0000000000000293 R12: 0000000000000001
[   53.581005][ T4280] R13: 00007f67bc4c6038 R14: 00007f67bc4c5fa0 R15: 00007ffc27bafd88
[   53.581074][ T4280]  </TASK>
[   53.871636][ T4287] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   53.898367][ T4286] loop3: detected capacity change from 0 to 512
[   53.911610][ T4287] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   53.983888][   T29] kauditd_printk_skb: 141 callbacks suppressed
[   53.983902][   T29] audit: type=1326 audit(1761337960.612:16084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4292 comm="syz.0.254" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f67bc26efc9 code=0x0
[   54.021465][ T4286] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.027831][ T4295] netlink: 'syz.2.249': attribute type 1 has an invalid length.
[   54.047020][ T4295] netlink: 224 bytes leftover after parsing attributes in process `syz.2.249'.
[   54.061369][ T4286] ext4 filesystem being mounted at /55/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   54.099617][ T4298] loop4: detected capacity change from 0 to 1024
[   54.112536][ T4287] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.249: bg 0: block 345: padding at end of block bitmap is not set
[   54.153220][ T4298] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   54.177368][ T4287] EXT4-fs (loop2): Remounting filesystem read-only
[   54.232855][ T4286] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[   54.299142][ T4303] vhci_hcd: invalid port number 65
[   54.306009][ T4303] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   54.401827][   T29] audit: type=1326 audit(1761337961.032:16085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4306 comm="syz.3.258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f333239efc9 code=0x7ffc0000
[   54.441312][   T29] audit: type=1326 audit(1761337961.032:16086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4306 comm="syz.3.258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f333239efc9 code=0x7ffc0000
[   54.467430][   T29] audit: type=1326 audit(1761337961.052:16087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4306 comm="syz.3.258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f333239efc9 code=0x7ffc0000
[   54.492227][   T29] audit: type=1326 audit(1761337961.052:16088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4306 comm="syz.3.258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f333239efc9 code=0x7ffc0000
[   54.516344][   T29] audit: type=1326 audit(1761337961.052:16089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4306 comm="syz.3.258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f333239efc9 code=0x7ffc0000
[   54.526338][ T4307] loop3: detected capacity change from 0 to 1024
[   54.541177][   T29] audit: type=1326 audit(1761337961.062:16090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4306 comm="syz.3.258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f333239efc9 code=0x7ffc0000
[   54.541239][   T29] audit: type=1326 audit(1761337961.062:16091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4306 comm="syz.3.258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f333239efc9 code=0x7ffc0000
[   54.595511][   T29] audit: type=1326 audit(1761337961.062:16092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4306 comm="syz.3.258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f333239efc9 code=0x7ffc0000
[   54.620638][   T29] audit: type=1326 audit(1761337961.062:16093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4306 comm="syz.3.258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f333239efc9 code=0x7ffc0000
[   54.663244][ T4307] EXT4-fs: Ignoring removed orlov option
[   54.763435][ T4307] FAULT_INJECTION: forcing a failure.
[   54.763435][ T4307] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   54.777779][ T4307] CPU: 1 UID: 0 PID: 4307 Comm: syz.3.258 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   54.777806][ T4307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   54.777885][ T4307] Call Trace:
[   54.777892][ T4307]  <TASK>
[   54.777900][ T4307]  __dump_stack+0x1d/0x30
[   54.777922][ T4307]  dump_stack_lvl+0xe8/0x140
[   54.777939][ T4307]  dump_stack+0x15/0x1b
[   54.777953][ T4307]  should_fail_ex+0x265/0x280
[   54.778044][ T4307]  should_fail+0xb/0x20
[   54.778060][ T4307]  should_fail_usercopy+0x1a/0x20
[   54.778080][ T4307]  _copy_from_user+0x1c/0xb0
[   54.778109][ T4307]  core_sys_select+0x1d3/0x6e0
[   54.778138][ T4307]  ? set_user_sigmask+0x84/0x190
[   54.778159][ T4307]  __se_sys_pselect6+0x216/0x280
[   54.778186][ T4307]  __x64_sys_pselect6+0x78/0x90
[   54.778269][ T4307]  x64_sys_call+0x28bd/0x3000
[   54.778290][ T4307]  do_syscall_64+0xd2/0x200
[   54.778308][ T4307]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   54.778401][ T4307]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   54.778428][ T4307]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.778448][ T4307] RIP: 0033:0x7f333239efc9
[   54.778503][ T4307] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   54.778517][ T4307] RSP: 002b:00007f3330e07038 EFLAGS: 00000246 ORIG_RAX: 000000000000010e
[   54.778534][ T4307] RAX: ffffffffffffffda RBX: 00007f33325f5fa0 RCX: 00007f333239efc9
[   54.778547][ T4307] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000002000
[   54.778558][ T4307] RBP: 00007f3330e07090 R08: 0000000000000000 R09: 0000000000000000
[   54.778584][ T4307] R10: 0000200000000100 R11: 0000000000000246 R12: 0000000000000001
[   54.778594][ T4307] R13: 00007f33325f6038 R14: 00007f33325f5fa0 R15: 00007ffcb9b94108
[   54.778608][ T4307]  </TASK>
[   55.321933][ T4312] program syz.1.260 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   55.378895][ T4321] lo speed is unknown, defaulting to 1000
[   55.385521][ T4321] lo speed is unknown, defaulting to 1000
[   55.428091][ T4323] loop4: detected capacity change from 0 to 512
[   55.434890][ T4323] EXT4-fs: Ignoring removed mblk_io_submit option
[   55.442037][ T4323] EXT4-fs: inline encryption not supported
[   55.449214][ T4323] EXT4-fs: test_dummy_encryption option not supported
[   55.706515][ T4326] loop2: detected capacity change from 0 to 512
[   55.805364][ T4326] EXT4-fs: Ignoring removed i_version option
[   55.813346][ T4326] EXT4-fs: Ignoring removed bh option
[   56.034947][ T4326] ext4 filesystem being mounted at /58/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   56.135224][ T4334] loop1: detected capacity change from 0 to 1024
[   56.276732][ T4340] FAULT_INJECTION: forcing a failure.
[   56.276732][ T4340] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   56.292455][ T4340] CPU: 1 UID: 0 PID: 4340 Comm: syz.3.265 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   56.292484][ T4340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   56.292496][ T4340] Call Trace:
[   56.292503][ T4340]  <TASK>
[   56.292510][ T4340]  __dump_stack+0x1d/0x30
[   56.292530][ T4340]  dump_stack_lvl+0xe8/0x140
[   56.292547][ T4340]  dump_stack+0x15/0x1b
[   56.292604][ T4340]  should_fail_ex+0x265/0x280
[   56.292701][ T4340]  should_fail+0xb/0x20
[   56.292717][ T4340]  should_fail_usercopy+0x1a/0x20
[   56.292738][ T4340]  _copy_from_user+0x1c/0xb0
[   56.292759][ T4340]  ___sys_sendmsg+0xc1/0x1d0
[   56.292804][ T4340]  __sys_sendmmsg+0x178/0x300
[   56.292846][ T4340]  __x64_sys_sendmmsg+0x57/0x70
[   56.292938][ T4340]  x64_sys_call+0x1c4a/0x3000
[   56.292956][ T4340]  do_syscall_64+0xd2/0x200
[   56.292975][ T4340]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   56.292999][ T4340]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   56.293030][ T4340]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.293052][ T4340] RIP: 0033:0x7f333239efc9
[   56.293068][ T4340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.293085][ T4340] RSP: 002b:00007f3330e07038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   56.293179][ T4340] RAX: ffffffffffffffda RBX: 00007f33325f5fa0 RCX: 00007f333239efc9
[   56.293192][ T4340] RDX: 0400000000000172 RSI: 0000200000003cc0 RDI: 0000000000000006
[   56.293206][ T4340] RBP: 00007f3330e07090 R08: 0000000000000000 R09: 0000000000000000
[   56.293218][ T4340] R10: 0000000004000000 R11: 0000000000000246 R12: 0000000000000001
[   56.293231][ T4340] R13: 00007f33325f6038 R14: 00007f33325f5fa0 R15: 00007ffcb9b94108
[   56.293249][ T4340]  </TASK>
[   56.298406][ T4341] vhci_hcd: invalid port number 65
[   56.505729][ T4341] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   56.648937][ T4343] vhci_hcd: invalid port number 65
[   56.655959][ T4343] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   56.714707][ T4347] loop4: detected capacity change from 0 to 512
[   56.722020][ T4347] EXT4-fs: Ignoring removed i_version option
[   56.731052][ T4347] EXT4-fs: Ignoring removed bh option
[   56.740905][ T4349] loop2: detected capacity change from 0 to 512
[   56.749921][ T4349] EXT4-fs: Ignoring removed i_version option
[   56.757278][ T4349] EXT4-fs: Ignoring removed bh option
[   56.769160][ T4347] ext4 filesystem being mounted at /53/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   56.797017][ T4354] loop3: detected capacity change from 0 to 2048
[   56.816666][ T4349] ext4 filesystem being mounted at /60/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   56.870190][ T4354] ext4 filesystem being mounted at /61/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   56.973875][ T4369] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   57.043879][ T4375] program syz.1.278 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   57.092223][ T4369] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   57.132658][ T4384] vhci_hcd: invalid port number 65
[   57.138614][ T4384] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   57.157636][ T4369] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.274: bg 0: block 345: padding at end of block bitmap is not set
[   57.184144][ T4256] Process accounting resumed
[   57.204253][ T4392] vhci_hcd: invalid port number 65
[   57.209516][ T4392] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   57.225160][ T4393] netlink: 'syz.3.274': attribute type 1 has an invalid length.
[   57.233081][ T4393] netlink: 224 bytes leftover after parsing attributes in process `syz.3.274'.
[   57.271534][ T4369] EXT4-fs (loop3): Remounting filesystem read-only
[   57.287124][ T4400] loop2: detected capacity change from 0 to 512
[   57.361501][ T4400] EXT4-fs: Ignoring removed i_version option
[   57.368148][ T4400] EXT4-fs: Ignoring removed bh option
[   57.412937][ T4400] ext4 filesystem being mounted at /64/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   57.495536][ T4408] loop4: detected capacity change from 0 to 1024
[   57.528480][ T4409] lo speed is unknown, defaulting to 1000
[   57.535755][ T4409] lo speed is unknown, defaulting to 1000
[   57.908815][ T4415] loop1: detected capacity change from 0 to 128
[   58.199481][ T4420] bond0: option lacp_rate: mode dependency failed, not supported in mode active-backup(1)
[   58.239938][ T4420] bond0 (unregistering): Released all slaves
[   58.261554][ T4423] netlink: 'syz.1.292': attribute type 2 has an invalid length.
[   58.270446][ T4423] netlink: 132 bytes leftover after parsing attributes in process `syz.1.292'.
[   58.457619][ T4426] loop2: detected capacity change from 0 to 512
[   58.484623][ T4426] ext4 filesystem being mounted at /65/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   58.524894][ T4426] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[   58.690209][ T4430] netlink: 8 bytes leftover after parsing attributes in process `syz.4.293'.
[   58.735004][ T4439] vhci_hcd: invalid port number 65
[   58.740381][ T4439] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   58.751208][ T4430] netlink: 32 bytes leftover after parsing attributes in process `syz.4.293'.
[   58.760775][ T4430] netlink: 8 bytes leftover after parsing attributes in process `syz.4.293'.
[   59.005987][   T29] kauditd_printk_skb: 132 callbacks suppressed
[   59.006001][   T29] audit: type=1326 audit(1761337965.632:16226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4442 comm="syz.4.297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f278fedefc9 code=0x7ffc0000
[   59.037006][   T29] audit: type=1326 audit(1761337965.632:16227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4445 comm="syz.2.298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce5658efc9 code=0x7ffc0000
[   59.062524][   T29] audit: type=1326 audit(1761337965.632:16228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4445 comm="syz.2.298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce5658efc9 code=0x7ffc0000
[   59.087619][   T29] audit: type=1326 audit(1761337965.632:16229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4445 comm="syz.2.298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fce5658efc9 code=0x7ffc0000
[   59.113621][   T29] audit: type=1326 audit(1761337965.632:16230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4445 comm="syz.2.298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce5658efc9 code=0x7ffc0000
[   59.138625][   T29] audit: type=1326 audit(1761337965.632:16231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4445 comm="syz.2.298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce5658efc9 code=0x7ffc0000
[   59.162390][   T29] audit: type=1326 audit(1761337965.662:16232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4442 comm="syz.4.297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f278fedefc9 code=0x7ffc0000
[   59.187438][ T4448] loop1: detected capacity change from 0 to 4096
[   59.281249][   T29] audit: type=1326 audit(1761337965.662:16233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4445 comm="syz.2.298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fce5658efc9 code=0x7ffc0000
[   59.309089][   T29] audit: type=1326 audit(1761337965.662:16234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4445 comm="syz.2.298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce5658efc9 code=0x7ffc0000
[   59.336515][   T29] audit: type=1326 audit(1761337965.662:16235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4445 comm="syz.2.298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fce5658efc9 code=0x7ffc0000
[   59.421704][ T4448] veth0_to_team: entered promiscuous mode
[   59.431765][ T4450] program syz.2.300 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   59.534608][ T4462] loop4: detected capacity change from 0 to 2048
[   59.687916][ T4462] ext4 filesystem being mounted at /63/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   59.901726][ T4469] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   59.985582][ T4475] netlink: 32 bytes leftover after parsing attributes in process `syz.1.308'.
[   59.994667][ T4476] vhci_hcd: invalid port number 65
[   60.000075][ T4469] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   60.005158][ T4476] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   60.087974][ T4478] vhci_hcd: invalid port number 65
[   60.094109][ T4478] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   60.122474][ T4480] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   60.134071][ T4469] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.304: bg 0: block 345: padding at end of block bitmap is not set
[   60.192174][ T4482] netlink: 'syz.4.304': attribute type 1 has an invalid length.
[   60.202503][ T4482] netlink: 224 bytes leftover after parsing attributes in process `syz.4.304'.
[   60.222244][ T4485] FAULT_INJECTION: forcing a failure.
[   60.222244][ T4485] name failslab, interval 1, probability 0, space 0, times 0
[   60.237057][ T4485] CPU: 0 UID: 0 PID: 4485 Comm: syz.2.313 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   60.237082][ T4485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   60.237166][ T4485] Call Trace:
[   60.237174][ T4485]  <TASK>
[   60.237182][ T4485]  __dump_stack+0x1d/0x30
[   60.237203][ T4485]  dump_stack_lvl+0xe8/0x140
[   60.237222][ T4485]  dump_stack+0x15/0x1b
[   60.237236][ T4485]  should_fail_ex+0x265/0x280
[   60.237283][ T4485]  should_failslab+0x8c/0xb0
[   60.237309][ T4485]  kmem_cache_alloc_noprof+0x50/0x480
[   60.237331][ T4485]  ? audit_log_start+0x342/0x720
[   60.237402][ T4485]  audit_log_start+0x342/0x720
[   60.237552][ T4485]  ? kstrtouint+0x76/0xc0
[   60.237580][ T4485]  audit_seccomp+0x48/0x100
[   60.237604][ T4485]  ? __seccomp_filter+0x82d/0x1250
[   60.237688][ T4485]  __seccomp_filter+0x83e/0x1250
[   60.237709][ T4485]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   60.237734][ T4485]  ? vfs_write+0x7e8/0x960
[   60.237784][ T4485]  ? __rcu_read_unlock+0x4f/0x70
[   60.237882][ T4485]  ? __fget_files+0x184/0x1c0
[   60.237927][ T4485]  __secure_computing+0x82/0x150
[   60.237947][ T4485]  syscall_trace_enter+0xcf/0x1e0
[   60.237972][ T4485]  do_syscall_64+0xac/0x200
[   60.237990][ T4485]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   60.238050][ T4485]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   60.238074][ T4485]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.238111][ T4485] RIP: 0033:0x7fce5658efc9
[   60.238126][ T4485] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   60.238140][ T4485] RSP: 002b:00007fce54fef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000147
[   60.238156][ T4485] RAX: ffffffffffffffda RBX: 00007fce567e5fa0 RCX: 00007fce5658efc9
[   60.238168][ T4485] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffffffffff
[   60.238178][ T4485] RBP: 00007fce54fef090 R08: 000000000000fdef R09: 0000000000000000
[   60.238188][ T4485] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   60.238198][ T4485] R13: 00007fce567e6038 R14: 00007fce567e5fa0 R15: 00007fffcd7e4878
[   60.238213][ T4485]  </TASK>
[   60.512950][ T4469] EXT4-fs (loop4): Remounting filesystem read-only
[   60.541422][ T4491] netlink: 4 bytes leftover after parsing attributes in process `syz.0.316'.
[   60.620689][ T4487] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.694542][ T4487] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.722948][ T4504] netlink: 32 bytes leftover after parsing attributes in process `syz.0.321'.
[   60.774875][ T4487] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.793452][ T4506] vhci_hcd: invalid port number 65
[   60.799113][ T4506] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   60.811985][ T4503] loop2: detected capacity change from 0 to 512
[   60.866785][ T4510] vhci_hcd: invalid port number 65
[   60.872938][ T4510] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   60.886633][ T4487] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   61.032539][   T31] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   61.045141][   T31] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   61.052813][ T4515] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   61.070469][   T31] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   61.101027][   T31] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   61.121490][ T4517] vhci_hcd: invalid port number 65
[   61.127803][ T4517] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   61.223843][ T4520] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=256 sclass=netlink_audit_socket pid=4520 comm=syz.2.328
[   61.495040][ T4527] vhci_hcd: invalid port number 65
[   61.500641][ T4527] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   61.601840][ T4529] siw: device registration error -23
[   61.611813][ T4533] netlink: 32 bytes leftover after parsing attributes in process `syz.3.334'.
[   61.654222][ T4535] vhci_hcd: invalid port number 65
[   61.659727][ T4535] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   61.713843][ T4529] loop9: detected capacity change from 0 to 7
[   61.747399][ T4529] Buffer I/O error on dev loop9, logical block 0, async page read
[   61.747595][ T4539] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4539 comm=syz.3.337
[   61.795380][ T4529] Buffer I/O error on dev loop9, logical block 0, async page read
[   61.803500][ T4529]  loop9: unable to read partition table
[   61.851088][ T4529] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ���
[   61.851088][ T4529] 
) failed (rc=-5)
[   61.919605][ T4548] loop4: detected capacity change from 0 to 1024
[   61.966049][ T4550] loop2: detected capacity change from 0 to 2048
[   62.258534][ T4550] ext4 filesystem being mounted at /81/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.274981][ T4556] loop1: detected capacity change from 0 to 512
[   62.290289][ T4556] ext4 filesystem being mounted at /63/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.326337][ T4556] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[   62.405416][ T4562] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   62.454341][ T4562] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   62.463526][ T4561] loop1: detected capacity change from 0 to 2048
[   62.583090][ T4561] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   62.598508][ T4562] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.340: bg 0: block 345: padding at end of block bitmap is not set
[   62.623250][ T4571] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=256 sclass=netlink_audit_socket pid=4571 comm=syz.3.344
[   62.668997][ T4561] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 692 with error 28
[   62.682354][ T4561] EXT4-fs (loop1): This should not happen!! Data will be lost
[   62.682354][ T4561] 
[   62.694340][ T4561] EXT4-fs (loop1): Total free blocks count 0
[   62.701148][ T4561] EXT4-fs (loop1): Free/Dirty block details
[   62.707225][ T4561] EXT4-fs (loop1): free_blocks=2415919104
[   62.713160][ T4561] EXT4-fs (loop1): dirty_blocks=704
[   62.713554][ T4577] FAULT_INJECTION: forcing a failure.
[   62.713554][ T4577] name failslab, interval 1, probability 0, space 0, times 0
[   62.719051][ T4561] EXT4-fs (loop1): Block reservation details
[   62.719068][ T4561] EXT4-fs (loop1): i_reserved_data_blocks=44
[   62.744957][ T4577] CPU: 1 UID: 0 PID: 4577 Comm: syz.3.347 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   62.745064][ T4577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   62.745076][ T4577] Call Trace:
[   62.745084][ T4577]  <TASK>
[   62.745093][ T4577]  __dump_stack+0x1d/0x30
[   62.745177][ T4577]  dump_stack_lvl+0xe8/0x140
[   62.745198][ T4577]  dump_stack+0x15/0x1b
[   62.745215][ T4577]  should_fail_ex+0x265/0x280
[   62.745241][ T4577]  should_failslab+0x8c/0xb0
[   62.745274][ T4577]  __kmalloc_noprof+0xa5/0x570
[   62.745297][ T4577]  ? io_cache_alloc_new+0x2a/0xb0
[   62.745318][ T4577]  ? __rcu_read_unlock+0x4f/0x70
[   62.745411][ T4577]  io_cache_alloc_new+0x2a/0xb0
[   62.745452][ T4577]  io_sendmsg_prep+0x2b0/0x3c0
[   62.745474][ T4577]  io_submit_sqes+0x5ef/0x1060
[   62.745529][ T4577]  __se_sys_io_uring_enter+0x1c1/0x1b70
[   62.745694][ T4568] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 28
[   62.745705][ T4577]  ? 0xffffffff81000000
[   62.745718][ T4577]  ? __rcu_read_unlock+0x4f/0x70
[   62.745738][ T4577]  ? get_pid_task+0x96/0xd0
[   62.745756][ T4577]  ? proc_fail_nth_write+0x13b/0x160
[   62.745784][ T4577]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   62.745860][ T4577]  ? vfs_write+0x7e8/0x960
[   62.745882][ T4577]  ? __rcu_read_unlock+0x4f/0x70
[   62.745985][ T4577]  ? __fget_files+0x184/0x1c0
[   62.746010][ T4577]  ? fput+0x8f/0xc0
[   62.746041][ T4577]  __x64_sys_io_uring_enter+0x78/0x90
[   62.746113][ T4577]  x64_sys_call+0x2df0/0x3000
[   62.746134][ T4577]  do_syscall_64+0xd2/0x200
[   62.746152][ T4577]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   62.746178][ T4577]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   62.746262][ T4577]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.746282][ T4577] RIP: 0033:0x7f333239efc9
[   62.746297][ T4577] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.746314][ T4577] RSP: 002b:00007f3330e07038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[   62.746338][ T4577] RAX: ffffffffffffffda RBX: 00007f33325f5fa0 RCX: 00007f333239efc9
[   62.746350][ T4577] RDX: 000000000000ddd3 RSI: 0000000000003516 RDI: 0000000000000005
[   62.746361][ T4577] RBP: 00007f3330e07090 R08: 0000000000000000 R09: 0000000000000000
[   62.746373][ T4577] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001
[   62.746385][ T4577] R13: 00007f33325f6038 R14: 00007f33325f5fa0 R15: 00007ffcb9b94108
[   62.746403][ T4577]  </TASK>
[   62.839828][ T4562] EXT4-fs (loop2): Remounting filesystem read-only
[   62.841216][ T4568] EXT4-fs (loop1): This should not happen!! Data will be lost
[   62.841216][ T4568] 
[   62.861499][ T4569] netlink: 'syz.2.340': attribute type 1 has an invalid length.
[   63.033213][ T4579] vhci_hcd: invalid port number 65
[   63.037337][ T4569] netlink: 224 bytes leftover after parsing attributes in process `syz.2.340'.
[   63.086962][ T4579] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   63.116174][ T4581] netlink: 32 bytes leftover after parsing attributes in process `syz.4.348'.
[   63.291521][ T4585] loop3: detected capacity change from 0 to 2048
[   63.352884][ T4585] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   63.471981][ T4593] loop1: detected capacity change from 0 to 512
[   63.597467][ T4593] ext4 filesystem being mounted at /65/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.643936][ T4593] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[   63.892912][ T4603] program syz.1.355 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   64.125482][ T4591] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   64.141644][ T4591] EXT4-fs (loop3): This should not happen!! Data will be lost
[   64.141644][ T4591] 
[   64.152515][ T4591] EXT4-fs (loop3): Total free blocks count 0
[   64.159453][ T4591] EXT4-fs (loop3): Free/Dirty block details
[   64.166350][ T4591] EXT4-fs (loop3): free_blocks=2415919104
[   64.174630][ T4591] EXT4-fs (loop3): dirty_blocks=3712
[   64.180528][ T4591] EXT4-fs (loop3): Block reservation details
[   64.187593][ T4591] EXT4-fs (loop3): i_reserved_data_blocks=232
[   64.274413][ T4585] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 1660 with error 28
[   64.288781][ T4585] EXT4-fs (loop3): This should not happen!! Data will be lost
[   64.288781][ T4585] 
[   64.389041][   T29] kauditd_printk_skb: 185 callbacks suppressed
[   64.389054][   T29] audit: type=1326 audit(1761337971.012:16419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4611 comm="syz.0.359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67bc26efc9 code=0x7ffc0000
[   64.451291][   T29] audit: type=1326 audit(1761337971.012:16420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4611 comm="syz.0.359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67bc26efc9 code=0x7ffc0000
[   64.472177][ T4616] netlink: 32 bytes leftover after parsing attributes in process `syz.0.361'.
[   64.477197][   T29] audit: type=1326 audit(1761337971.052:16421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4611 comm="syz.0.359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f67bc26efc9 code=0x7ffc0000
[   64.514487][   T29] audit: type=1326 audit(1761337971.052:16422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4611 comm="syz.0.359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67bc26efc9 code=0x7ffc0000
[   64.541269][   T29] audit: type=1326 audit(1761337971.052:16423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4611 comm="syz.0.359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67bc26efc9 code=0x7ffc0000
[   64.545742][ T4614] loop2: detected capacity change from 0 to 1024
[   64.567023][   T29] audit: type=1326 audit(1761337971.052:16424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4611 comm="syz.0.359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f67bc26efc9 code=0x7ffc0000
[   64.600794][   T29] audit: type=1326 audit(1761337971.052:16425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4611 comm="syz.0.359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67bc26efc9 code=0x7ffc0000
[   64.628830][   T29] audit: type=1326 audit(1761337971.052:16426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4611 comm="syz.0.359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67bc26efc9 code=0x7ffc0000
[   64.656469][   T29] audit: type=1326 audit(1761337971.052:16427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4611 comm="syz.0.359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f67bc26efc9 code=0x7ffc0000
[   64.681058][   T29] audit: type=1326 audit(1761337971.052:16428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4611 comm="syz.0.359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67bc26efc9 code=0x7ffc0000
[   64.714087][ T4620] vhci_hcd: invalid port number 65
[   64.720043][ T4620] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   64.761307][ T4622] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   64.831902][ T4625] vhci_hcd: invalid port number 65
[   64.837372][ T4625] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   64.848861][ T4630] loop4: detected capacity change from 0 to 2048
[   64.933288][ T4630] ext4 filesystem being mounted at /71/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   64.945549][ T4637] vhci_hcd: invalid port number 65
[   64.950854][ T4637] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   65.023234][ T4638] lo speed is unknown, defaulting to 1000
[   65.030511][ T4638] lo speed is unknown, defaulting to 1000
[   65.075331][ T4640] loop3: detected capacity change from 0 to 512
[   65.082585][ T4640] EXT4-fs: Ignoring removed mblk_io_submit option
[   65.089299][ T4640] EXT4-fs: inline encryption not supported
[   65.095603][ T4640] EXT4-fs: test_dummy_encryption option not supported
[   65.137589][ T4642] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   65.147739][ T4642] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   65.396993][ T4645] loop1: detected capacity change from 0 to 2048
[   65.412871][ T4630] netlink: 'syz.4.366': attribute type 1 has an invalid length.
[   65.420656][ T4630] netlink: 224 bytes leftover after parsing attributes in process `syz.4.366'.
[   65.571923][ T4645] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   66.051440][ T4655] netlink: 32 bytes leftover after parsing attributes in process `syz.2.373'.
[   66.178985][ T4645] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   66.193632][ T4645] EXT4-fs (loop1): This should not happen!! Data will be lost
[   66.193632][ T4645] 
[   66.204642][ T4645] EXT4-fs (loop1): Total free blocks count 0
[   66.212006][ T4645] EXT4-fs (loop1): Free/Dirty block details
[   66.218768][ T4645] EXT4-fs (loop1): free_blocks=2415919104
[   66.224989][ T4645] EXT4-fs (loop1): dirty_blocks=7152
[   66.228513][ T4660] vhci_hcd: invalid port number 65
[   66.231567][ T4645] EXT4-fs (loop1): Block reservation details
[   66.236769][ T4660] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   66.254862][ T4645] EXT4-fs (loop1): i_reserved_data_blocks=447
[   66.312486][ T4663] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=256 sclass=netlink_audit_socket pid=4663 comm=syz.2.376
[   66.326708][ T4665] vhci_hcd: invalid port number 65
[   66.332003][ T4665] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   66.348935][ T4657] program syz.0.374 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   66.385288][ T4667] loop3: detected capacity change from 0 to 1024
[   66.392131][ T4651] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[   66.406749][ T4651] EXT4-fs (loop1): This should not happen!! Data will be lost
[   66.406749][ T4651] 
[   66.412875][ T4667] EXT4-fs mount: 42 callbacks suppressed
[   66.412890][ T4667] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   66.485238][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.514919][ T4674] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[   66.573754][ T4679] loop4: detected capacity change from 0 to 1024
[   66.623545][ T4679] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   66.689162][ T4690] loop1: detected capacity change from 0 to 1024
[   66.707533][ T4689] loop2: detected capacity change from 0 to 2048
[   66.735181][ T4690] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   66.750586][ T4689] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   66.781218][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.823698][ T4697] netlink: 32 bytes leftover after parsing attributes in process `syz.1.387'.
[   66.855347][ T4689] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   66.871657][ T4689] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1394 with error 28
[   66.884987][ T4689] EXT4-fs (loop2): This should not happen!! Data will be lost
[   66.884987][ T4689] 
[   66.894814][ T4689] EXT4-fs (loop2): Total free blocks count 0
[   66.900900][ T4689] EXT4-fs (loop2): Free/Dirty block details
[   66.907927][ T4689] EXT4-fs (loop2): free_blocks=2415919104
[   66.915224][ T4689] EXT4-fs (loop2): dirty_blocks=1408
[   66.921046][ T4689] EXT4-fs (loop2): Block reservation details
[   66.927325][ T4689] EXT4-fs (loop2): i_reserved_data_blocks=88
[   66.946230][ T4703] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 28
[   67.013300][ T4709] vhci_hcd: invalid port number 65
[   67.020979][ T4709] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   67.090722][ T4710] lo speed is unknown, defaulting to 1000
[   67.097622][ T4710] lo speed is unknown, defaulting to 1000
[   67.156959][ T4712] loop1: detected capacity change from 0 to 512
[   67.166293][ T4712] EXT4-fs: Ignoring removed mblk_io_submit option
[   67.173445][ T4712] EXT4-fs: inline encryption not supported
[   67.179494][ T4712] EXT4-fs: test_dummy_encryption option not supported
[   67.387530][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.743190][ T4717] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=256 sclass=netlink_audit_socket pid=4717 comm=syz.3.395
[   67.826505][    C1] IPv4: Oversized IP packet from 172.20.20.24
[   67.838490][ T4721] loop3: detected capacity change from 0 to 512
[   67.853043][ T4721] EXT4-fs error (device loop3): ext4_orphan_get:1418: comm syz.3.397: bad orphan inode 11862016
[   67.882237][ T4721] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   67.917913][ T4721] ext4 filesystem being mounted at /83/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   67.969891][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   68.100925][ T4737] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   68.117888][ T4737] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   68.138874][ T4740] netlink: 32 bytes leftover after parsing attributes in process `syz.2.403'.
[   68.141277][ T4737] netlink: 'syz.0.398': attribute type 1 has an invalid length.
[   68.159792][ T4737] netlink: 224 bytes leftover after parsing attributes in process `syz.0.398'.
[   68.298180][ T4749] loop4: detected capacity change from 0 to 1024
[   68.316212][ T4748] loop2: detected capacity change from 0 to 4096
[   68.326677][ T4749] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.353287][ T4748] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.442299][ T4748] veth0_to_team: entered promiscuous mode
[   68.534820][ T4754] loop3: detected capacity change from 0 to 2048
[   68.550659][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.572824][ T4754] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.586066][ T4754] ext4 filesystem being mounted at /88/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   68.616324][ T4765] loop2: detected capacity change from 0 to 2048
[   68.655159][ T4765] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   68.669156][ T4768] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   68.687163][ T4765] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   68.688020][ T4768] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   68.785164][ T4768] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.407: bg 0: block 345: padding at end of block bitmap is not set
[   68.821494][ T4768] EXT4-fs (loop3): Remounting filesystem read-only
[   68.983482][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.165989][ T4778] vhci_hcd: invalid port number 65
[   69.171359][ T4778] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   69.229313][ T4769] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   69.238901][ T4780] netlink: 16 bytes leftover after parsing attributes in process `syz.0.413'.
[   69.243113][ T4769] EXT4-fs (loop2): This should not happen!! Data will be lost
[   69.243113][ T4769] 
[   69.255260][ T4780] netlink: 24 bytes leftover after parsing attributes in process `syz.0.413'.
[   69.278552][ T4769] EXT4-fs (loop2): Total free blocks count 0
[   69.287798][ T4769] EXT4-fs (loop2): Free/Dirty block details
[   69.295033][ T4769] EXT4-fs (loop2): free_blocks=2415919104
[   69.301663][ T4769] EXT4-fs (loop2): dirty_blocks=8208
[   69.307678][ T4769] EXT4-fs (loop2): Block reservation details
[   69.313990][ T4769] EXT4-fs (loop2): i_reserved_data_blocks=513
[   69.338445][ T4785] netlink: 32 bytes leftover after parsing attributes in process `syz.4.416'.
[   69.361633][ T4769] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[   69.427756][ T4789] netlink: 32 bytes leftover after parsing attributes in process `syz.4.417'.
[   69.496159][ T4787] pim6reg1: entered promiscuous mode
[   69.503156][ T4787] pim6reg1: entered allmulticast mode
[   69.552363][   T29] kauditd_printk_skb: 156 callbacks suppressed
[   69.552379][   T29] audit: type=1326 audit(1761337976.082:16585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4763 comm="syz.2.409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce5658efc9 code=0x7ffc0000
[   69.588977][   T29] audit: type=1326 audit(1761337976.082:16586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4763 comm="syz.2.409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce5658efc9 code=0x7ffc0000
[   69.665871][ T4794] lo speed is unknown, defaulting to 1000
[   69.674153][ T4794] lo speed is unknown, defaulting to 1000
[   69.719737][ T4796] loop1: detected capacity change from 0 to 512
[   69.727629][ T4796] EXT4-fs: Ignoring removed mblk_io_submit option
[   69.735203][ T4796] EXT4-fs: inline encryption not supported
[   69.742162][ T4796] EXT4-fs: test_dummy_encryption option not supported
[   69.822041][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.848287][ T4798] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   70.181692][ T4803] loop4: detected capacity change from 0 to 256
[   70.261891][ T4803] ip6gre1: entered allmulticast mode
[   70.392678][   T29] audit: type=1400 audit(1761337977.022:16587): avc:  denied  { watch } for  pid=4807 comm="syz.4.425" path="/87" dev="tmpfs" ino=486 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   70.427041][ T4808] FAULT_INJECTION: forcing a failure.
[   70.427041][ T4808] name failslab, interval 1, probability 0, space 0, times 0
[   70.440056][ T4808] CPU: 1 UID: 0 PID: 4808 Comm: syz.4.425 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   70.440090][ T4808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   70.440103][ T4808] Call Trace:
[   70.440173][ T4808]  <TASK>
[   70.440179][ T4808]  __dump_stack+0x1d/0x30
[   70.440198][ T4808]  dump_stack_lvl+0xe8/0x140
[   70.440291][ T4808]  dump_stack+0x15/0x1b
[   70.440305][ T4808]  should_fail_ex+0x265/0x280
[   70.440330][ T4808]  ? __pfx_shmem_alloc_inode+0x10/0x10
[   70.440422][ T4808]  should_failslab+0x8c/0xb0
[   70.440444][ T4808]  kmem_cache_alloc_lru_noprof+0x55/0x490
[   70.440493][ T4808]  ? shmem_alloc_inode+0x34/0x50
[   70.440515][ T4808]  ? __pfx_shmem_alloc_inode+0x10/0x10
[   70.440590][ T4808]  shmem_alloc_inode+0x34/0x50
[   70.440611][ T4808]  alloc_inode+0x40/0x170
[   70.440634][ T4808]  new_inode+0x1d/0xe0
[   70.440655][ T4808]  shmem_get_inode+0x244/0x750
[   70.440759][ T4808]  shmem_mknod+0x46/0x180
[   70.440781][ T4808]  shmem_create+0x34/0x50
[   70.440803][ T4808]  ? __pfx_shmem_create+0x10/0x10
[   70.440931][ T4808]  path_openat+0x1105/0x2170
[   70.440996][ T4808]  do_filp_open+0x109/0x230
[   70.441022][ T4808]  do_sys_openat2+0xa6/0x110
[   70.441040][ T4808]  __x64_sys_openat+0xf2/0x120
[   70.441097][ T4808]  x64_sys_call+0x2eab/0x3000
[   70.441115][ T4808]  do_syscall_64+0xd2/0x200
[   70.441131][ T4808]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   70.441157][ T4808]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   70.441186][ T4808]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.441211][ T4808] RIP: 0033:0x7f278fedefc9
[   70.441227][ T4808] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.441244][ T4808] RSP: 002b:00007f278e947038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   70.441264][ T4808] RAX: ffffffffffffffda RBX: 00007f2790135fa0 RCX: 00007f278fedefc9
[   70.441276][ T4808] RDX: 00000000000026e1 RSI: 0000200000000080 RDI: ffffffffffffff9c
[   70.441287][ T4808] RBP: 00007f278e947090 R08: 0000000000000000 R09: 0000000000000000
[   70.441351][ T4808] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   70.441363][ T4808] R13: 00007f2790136038 R14: 00007f2790135fa0 R15: 00007ffd7c553c88
[   70.441381][ T4808]  </TASK>
[   70.696708][   T29] audit: type=1326 audit(1761337977.322:16588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4809 comm="syz.3.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f333239efc9 code=0x7ffc0000
[   70.721513][   T29] audit: type=1326 audit(1761337977.322:16589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4809 comm="syz.3.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f333239efc9 code=0x7ffc0000
[   70.748104][   T29] audit: type=1326 audit(1761337977.322:16590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4809 comm="syz.3.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f333239efc9 code=0x7ffc0000
[   70.775382][   T29] audit: type=1326 audit(1761337977.322:16591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4809 comm="syz.3.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f333239efc9 code=0x7ffc0000
[   70.800247][   T29] audit: type=1326 audit(1761337977.322:16592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4809 comm="syz.3.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f333239efc9 code=0x7ffc0000
[   70.825128][   T29] audit: type=1326 audit(1761337977.322:16593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4809 comm="syz.3.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f333239efc9 code=0x7ffc0000
[   70.849530][   T29] audit: type=1326 audit(1761337977.322:16594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4809 comm="syz.3.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f333239efc9 code=0x7ffc0000
[   70.951602][ T4816] netlink: 32 bytes leftover after parsing attributes in process `syz.3.428'.
[   71.018880][ T4812] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   71.072668][ T4822] loop4: detected capacity change from 0 to 2048
[   71.082576][ T4812] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   71.121391][ T4820] Falling back ldisc for ttyS3.
[   71.161002][ T4828] loop1: detected capacity change from 0 to 2048
[   71.172883][ T4830] process 'syz.0.433' launched './file1' with NULL argv: empty string added
[   71.185833][ T4822] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.201549][ T4812] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   71.230059][ T4822] ext4 filesystem being mounted at /88/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   71.243632][ T4834] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[   71.261722][ T4830] lo speed is unknown, defaulting to 1000
[   71.271282][ T4830] lo speed is unknown, defaulting to 1000
[   71.283423][ T4828] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   71.297660][ T4812] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   71.308042][ T4828] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   71.328694][ T4838] FAULT_INJECTION: forcing a failure.
[   71.328694][ T4838] name failslab, interval 1, probability 0, space 0, times 0
[   71.345418][ T4838] CPU: 1 UID: 0 PID: 4838 Comm: syz.3.435 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   71.345442][ T4838] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   71.345452][ T4838] Call Trace:
[   71.345459][ T4838]  <TASK>
[   71.345465][ T4838]  __dump_stack+0x1d/0x30
[   71.345524][ T4838]  dump_stack_lvl+0xe8/0x140
[   71.345620][ T4838]  dump_stack+0x15/0x1b
[   71.345634][ T4838]  should_fail_ex+0x265/0x280
[   71.345660][ T4838]  should_failslab+0x8c/0xb0
[   71.345730][ T4838]  kmem_cache_alloc_noprof+0x50/0x480
[   71.345756][ T4838]  ? audit_log_start+0x342/0x720
[   71.345779][ T4838]  audit_log_start+0x342/0x720
[   71.345799][ T4838]  ? __rcu_read_unlock+0x4f/0x70
[   71.345827][ T4838]  audit_seccomp+0x48/0x100
[   71.345853][ T4838]  ? __seccomp_filter+0x82d/0x1250
[   71.345878][ T4838]  __seccomp_filter+0x83e/0x1250
[   71.345947][ T4838]  ? selinux_syslog+0xed/0x100
[   71.345981][ T4838]  ? do_syslog+0x299/0x7e0
[   71.346004][ T4838]  __secure_computing+0x82/0x150
[   71.346096][ T4838]  syscall_trace_enter+0xcf/0x1e0
[   71.346123][ T4838]  do_syscall_64+0xac/0x200
[   71.346140][ T4838]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   71.346206][ T4838]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   71.346277][ T4838]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.346297][ T4838] RIP: 0033:0x7f333239d9dc
[   71.346313][ T4838] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   71.346329][ T4838] RSP: 002b:00007f3330e07030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   71.346345][ T4838] RAX: ffffffffffffffda RBX: 00007f33325f5fa0 RCX: 00007f333239d9dc
[   71.346394][ T4838] RDX: 000000000000000f RSI: 00007f3330e070a0 RDI: 0000000000000005
[   71.346404][ T4838] RBP: 00007f3330e07090 R08: 0000000000000000 R09: 0000000000000000
[   71.346416][ T4838] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   71.346427][ T4838] R13: 00007f33325f6038 R14: 00007f33325f5fa0 R15: 00007ffcb9b94108
[   71.346442][ T4838]  </TASK>
[   71.482529][ T4841] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   71.578304][ T4841] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   71.593610][ T4841] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.430: bg 0: block 345: padding at end of block bitmap is not set
[   71.623840][ T2782] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   71.652550][ T2782] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   71.672367][ T2782] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   71.699886][ T4845] netlink: 'syz.4.430': attribute type 1 has an invalid length.
[   71.704369][ T2782] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   71.708099][ T4845] netlink: 224 bytes leftover after parsing attributes in process `syz.4.430'.
[   71.721446][ T4840] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   71.741369][ T4840] EXT4-fs (loop1): This should not happen!! Data will be lost
[   71.741369][ T4840] 
[   71.751550][ T4840] EXT4-fs (loop1): Total free blocks count 0
[   71.758564][ T4840] EXT4-fs (loop1): Free/Dirty block details
[   71.764491][ T4840] EXT4-fs (loop1): free_blocks=2415919104
[   71.770444][ T4840] EXT4-fs (loop1): dirty_blocks=8208
[   71.775883][ T4840] EXT4-fs (loop1): Block reservation details
[   71.781889][ T4840] EXT4-fs (loop1): i_reserved_data_blocks=513
[   71.794063][ T4841] EXT4-fs (loop4): Remounting filesystem read-only
[   71.837443][ T4828] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[   71.914085][ T4849] loop2: detected capacity change from 0 to 1024
[   71.944779][ T4849] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.043614][ T4853] loop1: detected capacity change from 0 to 128
[   72.076701][ T4853] FAT-fs (loop1): Directory bread(block 162) failed
[   72.118108][ T4853] FAT-fs (loop1): Directory bread(block 163) failed
[   72.138924][ T4857] netlink: 32 bytes leftover after parsing attributes in process `syz.0.440'.
[   72.151293][ T4853] FAT-fs (loop1): Directory bread(block 164) failed
[   72.160918][ T4853] FAT-fs (loop1): Directory bread(block 165) failed
[   72.180835][ T4853] FAT-fs (loop1): Directory bread(block 166) failed
[   72.189414][ T4853] FAT-fs (loop1): Directory bread(block 167) failed
[   72.199452][ T4853] FAT-fs (loop1): Directory bread(block 168) failed
[   72.209683][ T4853] FAT-fs (loop1): Directory bread(block 169) failed
[   72.230193][ T4853] FAT-fs (loop1): Directory bread(block 162) failed
[   72.239781][ T4853] FAT-fs (loop1): Directory bread(block 163) failed
[   72.253263][ T4853] syz.1.438: attempt to access beyond end of device
[   72.253263][ T4853] loop1: rw=3, sector=226, nr_sectors = 6 limit=128
[   72.277464][ T4853] syz.1.438: attempt to access beyond end of device
[   72.277464][ T4853] loop1: rw=2051, sector=232, nr_sectors = 2 limit=128
[   72.380363][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.713772][ T4877] lo speed is unknown, defaulting to 1000
[   72.720515][ T4877] lo speed is unknown, defaulting to 1000
[   72.766252][ T4879] loop4: detected capacity change from 0 to 512
[   72.773637][ T4879] EXT4-fs: Ignoring removed mblk_io_submit option
[   72.780115][ T4879] EXT4-fs: inline encryption not supported
[   72.786286][ T4879] EXT4-fs: test_dummy_encryption option not supported
[   72.920417][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.140398][ T4883] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=256 sclass=netlink_audit_socket pid=4883 comm=syz.0.448
[   73.188444][ T4885] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   73.196059][ T4885] IPv6: NLM_F_CREATE should be set when creating new route
[   73.203456][ T4885] FAULT_INJECTION: forcing a failure.
[   73.203456][ T4885] name failslab, interval 1, probability 0, space 0, times 0
[   73.217023][ T4885] CPU: 1 UID: 0 PID: 4885 Comm: syz.0.449 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   73.217046][ T4885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   73.217094][ T4885] Call Trace:
[   73.217101][ T4885]  <TASK>
[   73.217110][ T4885]  __dump_stack+0x1d/0x30
[   73.217133][ T4885]  dump_stack_lvl+0xe8/0x140
[   73.217206][ T4885]  dump_stack+0x15/0x1b
[   73.217224][ T4885]  should_fail_ex+0x265/0x280
[   73.217293][ T4885]  should_failslab+0x8c/0xb0
[   73.217319][ T4885]  kmem_cache_alloc_node_noprof+0x57/0x4a0
[   73.217344][ T4885]  ? __alloc_skb+0x101/0x320
[   73.217367][ T4885]  __alloc_skb+0x101/0x320
[   73.217466][ T4885]  inet6_rt_notify+0x8b/0x1d0
[   73.217529][ T4885]  ? call_fib_notifiers+0x7e/0xa0
[   73.217666][ T4885]  fib6_add_rt2node+0xbe4/0x1760
[   73.217688][ T4885]  ? vprintk_default+0x26/0x30
[   73.217710][ T4885]  ? _printk+0x79/0xa0
[   73.217735][ T4885]  ? fib6_add_1+0x97e/0xa80
[   73.217767][ T4885]  fib6_add+0x5b9/0xe00
[   73.217786][ T4885]  ? __ipv6_addr_type+0x1ed/0x210
[   73.217802][ T4885]  ? ip6_route_info_create_nh+0x559/0x610
[   73.217845][ T4885]  ip6_route_add+0xc7/0x170
[   73.217871][ T4885]  inet6_rtm_newroute+0x112/0x1020
[   73.217893][ T4885]  ? bpf_trace_run3+0x12c/0x1d0
[   73.217917][ T4885]  ? perf_cgroup_switch+0x10c/0x480
[   73.217962][ T4885]  ? __kfree_skb+0x109/0x150
[   73.218065][ T4885]  ? selinux_capable+0x31/0x40
[   73.218083][ T4885]  ? security_capable+0x83/0x90
[   73.218109][ T4885]  ? ns_capable+0x7d/0xb0
[   73.218131][ T4885]  ? __pfx_inet6_rtm_newroute+0x10/0x10
[   73.218151][ T4885]  rtnetlink_rcv_msg+0x5fe/0x6d0
[   73.218178][ T4885]  netlink_rcv_skb+0x123/0x220
[   73.218201][ T4885]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   73.218230][ T4885]  rtnetlink_rcv+0x1c/0x30
[   73.218324][ T4885]  netlink_unicast+0x5c0/0x690
[   73.218349][ T4885]  netlink_sendmsg+0x58b/0x6b0
[   73.218365][ T4885]  ? __pfx_netlink_sendmsg+0x10/0x10
[   73.218428][ T4885]  __sock_sendmsg+0x145/0x180
[   73.218450][ T4885]  ____sys_sendmsg+0x31e/0x4e0
[   73.218481][ T4885]  ___sys_sendmsg+0x17b/0x1d0
[   73.218550][ T4885]  __x64_sys_sendmsg+0xd4/0x160
[   73.218635][ T4885]  x64_sys_call+0x191e/0x3000
[   73.218652][ T4885]  do_syscall_64+0xd2/0x200
[   73.218670][ T4885]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   73.218765][ T4885]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   73.218837][ T4885]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.218858][ T4885] RIP: 0033:0x7f67bc26efc9
[   73.218907][ T4885] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.218920][ T4885] RSP: 002b:00007f67bacd7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   73.218960][ T4885] RAX: ffffffffffffffda RBX: 00007f67bc4c5fa0 RCX: 00007f67bc26efc9
[   73.218970][ T4885] RDX: 0000000000000010 RSI: 0000200000000680 RDI: 0000000000000002
[   73.218980][ T4885] RBP: 00007f67bacd7090 R08: 0000000000000000 R09: 0000000000000000
[   73.218993][ T4885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   73.219005][ T4885] R13: 00007f67bc4c6038 R14: 00007f67bc4c5fa0 R15: 00007ffc27bafd88
[   73.219024][ T4885]  </TASK>
[   73.643859][ T4889] netlink: 32 bytes leftover after parsing attributes in process `syz.3.451'.
[   73.677320][ T4891] vhci_hcd: invalid port number 65
[   73.682595][ T4891] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   73.729882][ T4893] netlink: 32 bytes leftover after parsing attributes in process `syz.3.452'.
[   73.767119][ T4893] loop3: detected capacity change from 0 to 1024
[   73.903580][ T4896] bond1: option lacp_rate: mode dependency failed, not supported in mode active-backup(1)
[   73.926087][ T4902] loop1: detected capacity change from 0 to 2048
[   73.942026][ T4893] EXT4-fs (loop3): orphan cleanup on readonly fs
[   73.950235][ T4893] EXT4-fs error (device loop3): ext4_acquire_dquot:6945: comm syz.3.452: Failed to acquire dquot type 0
[   73.971982][ T4901] netlink: 'syz.2.453': attribute type 2 has an invalid length.
[   73.981456][ T4901] netlink: 132 bytes leftover after parsing attributes in process `syz.2.453'.
[   74.002112][ T4902] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   74.015300][ T4893] EXT4-fs (loop3): 1 truncate cleaned up
[   74.022881][ T4893] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   74.057300][ T4896] bond1 (unregistering): Released all slaves
[   74.105226][ T4902] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   74.122052][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.153627][ T4914] loop3: detected capacity change from 0 to 1024
[   74.173709][ T4902] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 874 with error 28
[   74.186913][ T4902] EXT4-fs (loop1): This should not happen!! Data will be lost
[   74.186913][ T4902] 
[   74.197238][ T4902] EXT4-fs (loop1): Total free blocks count 0
[   74.203238][ T4902] EXT4-fs (loop1): Free/Dirty block details
[   74.209216][ T4902] EXT4-fs (loop1): free_blocks=2415919104
[   74.212552][ T4914] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.215110][ T4902] EXT4-fs (loop1): dirty_blocks=880
[   74.232465][ T4902] EXT4-fs (loop1): Block reservation details
[   74.238453][ T4902] EXT4-fs (loop1): i_reserved_data_blocks=55
[   74.307170][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.356910][ T4928] syz_tun: entered allmulticast mode
[   74.365443][ T4928] syz_tun: left allmulticast mode
[   74.405112][ T4924] ==================================================================
[   74.413407][ T4924] BUG: KCSAN: data-race in hrtimer_interrupt / print_cpu
[   74.420677][ T4924] 
[   74.423166][ T4924] read-write to 0xffff888237d1b294 of 4 bytes by interrupt on cpu 1:
[   74.431959][ T4924]  hrtimer_interrupt+0x70/0x460
[   74.437802][ T4924]  __sysvec_apic_timer_interrupt+0x5f/0x1d0
[   74.443057][ T4931] loop3: detected capacity change from 0 to 512
[   74.444000][ T4924]  sysvec_apic_timer_interrupt+0x6f/0x80
[   74.456146][ T4924]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   74.462747][ T4924]  do_syscall_64+0x9c/0x200
[   74.468148][ T4924]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.475330][ T4924] 
[   74.478238][ T4924] read to 0xffff888237d1b294 of 4 bytes by task 4924 on cpu 0:
[   74.487897][ T4924]  print_cpu+0x338/0x660
[   74.493005][ T4924]  timer_list_show+0x107/0x170
[   74.498743][ T4924]  seq_read_iter+0x636/0x950
[   74.503341][ T4924]  proc_reg_read_iter+0x110/0x180
[   74.503886][ T4931] EXT4-fs: Ignoring removed i_version option
[   74.508382][ T4924]  copy_splice_read+0x442/0x660
[   74.508410][ T4924]  splice_direct_to_actor+0x26f/0x680
[   74.515735][ T4931] EXT4-fs: Ignoring removed bh option
[   74.521490][ T4924]  do_splice_direct+0xda/0x150
[   74.521529][ T4924]  do_sendfile+0x380/0x650
[   74.542616][ T4924]  __x64_sys_sendfile64+0x105/0x150
[   74.547840][ T4924]  x64_sys_call+0x2bb4/0x3000
[   74.552664][ T4924]  do_syscall_64+0xd2/0x200
[   74.557896][ T4924]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.565056][ T4924] 
[   74.567638][ T4924] value changed: 0x000083c5 -> 0x000083c6
[   74.574481][ T4924] 
[   74.576986][ T4924] Reported by Kernel Concurrency Sanitizer on:
[   74.583308][ T4924] CPU: 0 UID: 0 PID: 4924 Comm: syz.4.459 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   74.593029][ T4924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   74.603260][ T4924] ==================================================================
[   74.626656][   T31] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 4 with error 28
[   74.654694][ T4931] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.674160][ T4931] ext4 filesystem being mounted at /101/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   74.795837][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.