last executing test programs:

2.644910457s ago: executing program 2 (id=2773):
listen(0xffffffffffffffff, 0x7)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
socket$inet6_tcp(0xa, 0x1, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x2, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0xf, &(0x7f0000000080)=[{&(0x7f00000000c0)="0207070002000000e4a17c45c8d260c90ec56959a440278950ff8cdca342f51686908ea4fe07dee035abee82755979fbd7991b71517d20096811c5a663a947eaf378bf56aaccdde0d91d2fa08aba131d91a15f81bfd1e961e534a605e9196747aaf27c0ec3994018ec333b40070beae950827d3efce8a34af6c67c60ee83b76c1132f55a7ccf7843a9a1de5284a60a57f66fa52701bccb915def033b664bc63242c782ecc7", 0x10}], 0x1}, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f00000001c0), 0x1, 0x4bc, &(0x7f0000000a40)="$eJzs3ctvW1UaAPDPdpMmaWb6mNGo7UjTSh2p81DjPDRqMjObWc3MotJoKrEBqYTEDSVOHMVOaaIuUth1wQKBQEIs2PMXsKErKiTEGvaIBSqCEiRAQjK613abOHGwII1p7u8n3ebch/2dU+s7Ovf4Xt8AMuts8k8uYjgiPoyIo43VrQecbfzZuH9zJllyUa9f/iKXHpestw5tve5IRKxHxEBE/P/fEc/ktsetrq7NT5fLpeXmerG2sFSsrq5duLYwPVeaKy2OTV6cmpocnRif2rO23n7puduX3vlv/9vfvHjv7svvvZtUa7i5b3M79lKj6X1xfNO2QxHxz0cRrAcKzfYM9roi/CTJ5/ebiDiX5v/RKKSfJpAF9Xq9/n39cKfd63XgwMqnY+BcfiQiGuV8fmSkMYb/bQzly5Vq7a9XKyuLs42x8rHoy1+9Vi6NNs8VjkVfLlkfS8sP18fb1ici0jHwK4XBdH1kplKe3d+uDmhzpC3/vy408h/ICKf8kF3yH7JL/kN2yX/ILvkP2SX/IbvkP2SX/Ifskv+QXfIfskv+Qyb979KlZKm37n+fvb66Ml+5fmG2VJ0fWViZGZmpLC+NzFUqc+k9Ows/9n7lSmVp7G+xcqNYK1Vrxerq2pWFyspi7Up6X/+VUt++tAroxvEzdz7ORcT63wfTJdHf3CdX4WCr13PR63uQgd4o9LoDAnrG1B9kl3N8oP0netvHBQOdXrj0cL4QeLzke10BoGfOn/L9H2SV+X/ILvP/kF3G+MAOj+jbYrf5f+DxZP4fsmu4w/O/frXp2V2jEfHriPio0He49awv4CDIf5Zrjv/PH/3jcPve/ty36VcE/RHx/BuXX7sxXastjyXbv3ywvfZ6c/v4phd2PGEAeqWVp608BgCya+P+zZnWsp9xP/9X4yKE7fEPNecmB9LvKIc2cluuVcjt0bUL67ci4uRO8XPN5503TmSGNgrb4p9o/s013iKt76H0uen7E//Upvh/2BT/9M/+X4FsuJP0P6M75V8+zel4kH9b+5/hPbp2onP/l3/Q/xU69H9nuozx7JsvfNox/q2I0zvGb8UbSGO1x0/qdr7L+PeeeuJ3nfbV32q8z07xW5JSsbawVKyurl1If0durrQ4NnlxampydGJ8qpjOURdbM9Xb/ePkB3d3a/9Qh/i7tT/Z9ucu2//d799/8uwu8f90bufP/8Qu8Qcj4i9dxv9q/JOnO+1L4s92aH9+l/jJtoku41df/c/hLg8FAPZBdXVtfrpcLi0rKCj0pHDrl1GNtkKveybgUauuJqfmSdL3uiYAAAAAAAAAAABAt/bjcuJetxEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4CD4IQAA//9HcdTQ")
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$VT_DISALLOCATE(r1, 0x5608)

2.516833929s ago: executing program 3 (id=2777):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x200, {0x0, 0x0, 0x0, 0x0, {0xfff2, 0x9}, {0x10}, {0x9, 0xd}}}, 0x24}, 0x1, 0x0, 0x0, 0xc0}, 0x0)

2.47052607s ago: executing program 3 (id=2779):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="18010000bc0000000000000000030000850000007b00000095"], &(0x7f00000002c0)='GPL\x00', 0xfffd7fff, 0x0, 0x0, 0x41100, 0x23, '\x00', 0x0, 0x2}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
rename(0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r2 = getpid()
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffffffffffffff86dd6060626000102b00fe8000000000000000000000000000bbfe8000000000000000000000000000aa"], 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
perf_event_open(&(0x7f0000000400)={0x8, 0x80, 0x0, 0x81, 0x2, 0x0, 0x82, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x1, 0x9, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x10000}, r2, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x82, 0x0, 0x8404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0xb}, 0x100004, 0x2, 0x0, 0x0, 0x0, 0x1fffffff, 0x0, 0x0, 0x40}, 0x0, 0x0, r1, 0x0)

2.422680981s ago: executing program 2 (id=2780):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000005000000000000000000", @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e8500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @ib_path={0x0}}, 0x20)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7fe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000ac0)={&(0x7f0000000b00)='kmem_cache_free\x00', r3, 0x0, 0x1034}, 0x18)
lchown(&(0x7f0000000700)='./file0\x00', 0x0, 0x0)

2.354945863s ago: executing program 2 (id=2781):
r0 = socket(0x10, 0x3, 0x6)
socket$packet(0x11, 0xa, 0x300)
socket$packet(0x11, 0x2, 0x300)
r1 = perf_event_open(&(0x7f00000010c0)={0x2, 0x80, 0x99, 0x0, 0x0, 0x0, 0x0, 0x2, 0x80040, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0xa, 0x7}, 0x8781, 0x2000000, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000b00)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195}, 0x48)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
r3 = inotify_init()
inotify_add_watch(r3, &(0x7f00000001c0)='.\x00', 0x4000423)
r4 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000040)={'team0\x00', <r5=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="01000000050000000200000007"], 0x2a)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = signalfd(0xffffffffffffffff, &(0x7f0000000b40)={[0x7]}, 0x8)
sendmmsg(r0, &(0x7f0000000e00)=[{{&(0x7f0000000180)=@nl=@unspec, 0x80, &(0x7f00000007c0)=[{&(0x7f0000000080)="6f1ee9e829286a2a7c82fb4c7b6859d95b203e1b53d0525744e5c055b085754201a6d7e2777771", 0x27}, {&(0x7f00000004c0)="d0cf5f1520fca355c4aeabb63d3bc2756a7f9067c6013e41429c8647d6be9eca260b99c2cbda1da13ec65d395318345d9e89868a9b8d95a3f09484697a4a3bdf5a1ad035c1c1344efbb579482447c36e7e96a6738683eea605f4b8cebd3d4c0383f4938ec4ae996ab9d780c21b473b14b48185183f95b3532db0e7aece87373075547ca9eacc1f24a29bb947085d977b7c960a98ebfaab8cf6f8473d44ed85fe0cc11a5b703273e63bb497ff5462f630803cdec5deb53bb26706e96584db11e6ce474d6125b889d156", 0xc9}, {&(0x7f0000000280)="e5024da10dc939d3e96261124f2a341837eb746b6e04c212c9e96b3a792b4f99", 0x20}, {&(0x7f00000002c0)="71459975", 0x4}, {&(0x7f00000003c0)="3e03015cbf9e27f0e71c6ab68f06ab4167757b05a690adeb50282bd045e03ae382d3dd96f0757dc4f38be1c06108475515d843b57271dbb5374132e5ece00dcffb550a6b8180b74b055bad02", 0x4c}, {&(0x7f00000005c0)="39c7acb099a44109470df865e7010b1b0fa5aa6fe4643990b541d5b60ed1ae3885afe1d9aa28919be06ba4c5374963acda6f1e810c4144eae26d4301951e1e498b7fd3023f24cd84366a65f208e104bf2e5691e0367b04", 0x57}, {&(0x7f0000000f80)="6be4e62c554e8a16b82be02a97e74778bf7f6bc9d29e32aef14a44e8466616cff496291b43d5131d80fed46e541a82f86d13db0a6017a0cede6da61037847e2df06dc4e3993b9ca93caba9dfb4a8fd10ed11a54633616e6bb80fc84de924c91e47575d543733cca4d379b6a09a629c4c1438524c0de3b91f1fc28de9a7753fdf3c7dfb026d1cb5dd662831e7737865a84433c34e712fb674ffc06cdedc9c5838328eae4d46b968ef39705d3bd3d7fb31c5b05e88c63659e09f8f271116129a10ddc8c5fc2208bf646a591b9ba175522bac54477697b076c7f27e60f2fe5039ab91b05ff9143dc97caee5df45955c1f400ccd871fb9abdf2f6f6786a89f17c016c47fc23da3c5f47d51465a7f9f4c88bbed028b59b2d93c311cace3aee7d5334bfbb313f98d80389c67c8ca07048da22a84751c415ad989674a31e5823ddb52b36dc18f84f42c37c5707a26ed18951bf9aa87775dce94e7299f35f3e624a12dfb1dae2c01b766d455a76da7c8a14b1afa9f84362333ec6f7f0bda631c257674821b5b86b472c66c8b76afbeadcfaac2e1ec05b7cfebcf7dc82c915d4a1f5fecd11649f6d6185a9bf0ed2a0f064276a0c97dcb04f52093f86cf19630fc63c4be179c7c406434079ecf5ba435b8bf0162c33cae0da536058a9241004a90186569de0c6cb64fbeecc64f0aa7f0d2cdb3877bde779d4007e4391e8619665ffde1627bed0f1e7b77f3738bdf090cc7b2e624b97cac81ce59b26b9eed35aa9410558e5d71fcd3399238881d0bc7d57549c840d81033fd77a568f0571e730a0ff1e6fbe62b1a943a8be6585c698a55b2077446b7a576a394442383c8a6a7f52bb2650587de90b3cdab59ab9f5480608bce6b19ed7b8877fe9fe914c59fec56ed2fb71b0e90c89f79f94709f07ddf48b836a76ee296f765e6cb12944bf81cbff6324dd7b34eb1e8500a8879ba74d57111f21d6fd9e2bb90293786c55400b577f82a0c95e820db203b28ec37cbe6a737cb5fff10d350efc94d47ed27bd91e98edc2dfee09e4037b07bc2ece2f1bb73e8be097d0ead11d0bb277f7461c50f7685cd6e26ebba0a8cc4e3f970d3738fe4553937f813282c4b97e5b2d0d3131a071b22da4df6028141a9a3d71817d5f808d14b0963803ab2b9736aea09ff7a9b6cb9d4c58374d289702d12b56fe49e3cfdb99f6c112707b4b33a4de66a15c8c3ef33f4cac78a0a3768b4475938a0d40f002695773a20f28969e966a6e78bc74c372f486002b715a18f81057fd8867c8e6af35a7bd1e1a084ac09fa5382ae542163628694895adca3267c5a1302d804c51f09d88c4e47813ac60eb7e5f2b219f067bc95b320198c880ebd478f0bdc6dc1a77e18444406346d57fe5428986c43a64ac35c41d3822c2ed6a33b13b4789d6c50975d86efe0cda4f8069c4a40b40f8218bd071df54f24f708a7d3811a644ef01f7dc8430ff069860f81e576f1ddc409c0e0b8fef610afa46cafcbec50a02fb84fbfda233c1032b08fe6dfa862ab59d54299e9b172418da768083157b0580a228c3e87884dff524a26b034f6ee8d6bb8a25db681cf8c1417d22fb1405af5f4d1cfb7e6daee8006b6b8370df9c5d78e0ab99436ea059892ef5ca27c9e2f05968e21ac7911a1dac8489e06276d6f2fa4f0987ae54177b80dba18e794e0abde17df761669fada40005347bac07d96cb7eacbb4bbc3d91d52511ed94b9109092069950f28b01cd0d9414ff0d5c31a4d17b5a1895add05f5397fc0cd0f79b3288ea23ef02fa03b0b6192394bd6e4da70071ba2c47c9ab5ea22f7f8d491125c4fa28e5f32ab0258dcf31e08731de5a476f64046818a7d4d8f81145a74baad1aebdc36c408b40b80ec9619e6dbaf7b9140d3118462cecd904da516a610aa9cc8b5366ccbd00a267bf20535e629087a5b8756880a859acad740709df0f09aaa5ca621d4f0ddc94af94f7b860aeb7e182136d10fbecf29133d1f001475f5c0e26119acf96db059e996b404a4b63c68d859eaaa10248f572fd8574633875b1bb96510e6ca2a938e7f6687f6cc0f465cdfff674a207126be03084e47869078e14f91e6bda7fd250c3f65e845e8ffb543ba19b58de3dc998538db8e2ae2496048c34b7205fe64d72117fb1ffd7440607247a4a86a94d857596835e8d5a3f9feed17126acc690c304d417f3dfddf68d442e04d7ddeb90a188ddd03e1957409dcfc1ea36b5310c82815cecdb0d656844fb73423ef1630e309ccc143a3bf83842a8cdac32b27a81afa4b3dcb9d17f4971fe54e9809ad57f8ac51e98b6e4175b053512a20a066587fd719cbc9edd8d1861f4809b828e6bdd30c5da8ac0449b250f7aa4312243255fbbc715cd4404a1902e3f0571d16a70122fc5b711daf9e7b353941d3ddea8cd2d40cf7dbffcd8be89e9aaa7a924bcc60eff60bab6827d963fefa6a627f4eb4571bff846ceb08b9b31a01588d9d0ac769313093bc98ef074ba3277f26ba732e6ffea43a9f468802b4d2abd72fc645c10f86132b48838bebaef2b9be8d05862652063ee6f70c45ee0a1fa606c683ca45881dc7f4266ed19f1cb8a4754be96de763b832d89aaded32e574efa0066bcb20f49a23051bc3f730971393c97a5ca281452102aa07dca535f8cf5b0f675aca36ca7c97950117fe9510c92832418e4a97fc9a93aebab67e8c49f8de49059116f0bcda0a54675b4af2334630cc62e5945fbac68707de95421e309df0734b93f545b6c8ba7a01aa8956f039ad80c90c438372e13d22d77312d574a43db3ad5b346287686ed7df2c706b7cd93934f710c410cd3eb930f4ead3bdd44f7d029ba9504e63263502c18bfb2d3fb8daf3b9974a0435199b2a3a709d93cd781bffd901548352ff55d402f68ccb9a1ffe554c30ad0ffba3148291d07a47fae55f99ade44fa69788b431ff4553cc7e7300f598bd317242bd29f76a1ea4ba8ed1fc6e9f016741c40d4d6ba418d8df7c55cdb2fb8861c995dbcb4b002bb16b710795db6e12c737599c8a7adfe0a2493fe7bc7221d22723430ab9d9043f15cdfde50c187fcf6cf3a2151870b29c5bf29626e4ecec60f427c8e4efd91218319176730d74e041fbd532b493584b8244c5925b1adb3666bbad60b113f845aeb28dfe002efc18c2b9ab7c1f4316ae45b49895d80567d44dc19ce26e723aa1bd0551f18c1132fd100771f3c99c51ed0934860edbf9c024cfdbb64a2f9791e701c6142013b93200d03e4b2731750c37ea0f18c906c9ffcdb39e37576ff731c3d072755a24ba78f7880d0dffe1aebfeac9a9de46e55fb218fc9896c2870d212d07ff06d68fdb9e9293749ab38340d6805925f06da6411319022fd7406837eca23c2b8db2283ced793159714fa90703de8c17606e3ab612d0e439293d8883818725deac58d5ee82f5fc17af410b0ee037e5ce3276a26a5801eda6c0bbd4fdb31e9fdf417775c6eb48a791f8b1fbea0b9d0958c8b50a3c77d192c340f6455e9b24e0c83d84fd6a822600ad7619f85615003433d3471642708a536ab6361fcdfdcd2cd1fe8164110b08eb4e7e76ecc2d995ecbf38a832488428817fc2388ac17af72f176513ff5f35542a05928f0499a93c7068b65ddd94723e5453b13c54545c7f5acf83cd06ba675b0216159fc637c65e443bef4e9369b199bb98ca4ca922a3aabe778e2db3f7eb6b694b0bcd0799cead28253ecfb1739525dca7b9b44ead8b571dece36889962a247d8572d6963c4ad33ef7b59da07d792e16414524642b98d448d40245bdd453f7209ad0a1f1ca82c6dae24d2f69db8730376e6a6c6af268feec904d0473010959692f6addf93091dbe77f5b973528b273ba6127c47d36fa375e74d9d05ae59a8a98da2ced80c03e8bd729f825416f9c545d33f080d3c15a4425f231c8433ec23fe7570cdb5e80809a292f68256640fd7bfd03076366b5d4f1c78e25aba5a738c61456b276dbd30d0d3be4a9c03eda85ac1fc7665392fcdf47fefe56c67cc9bd44f7ffdfd07f7b029223e3555bc26e9eb51c9ef8841200e98353962d7b6fd656d1913d8c83e8fb1facdf44766a17742cbb371f852b649980d0733c554278e384656427ceeb394ad5655636a5fa227963ddb2a4ecd2cdd8001b45b451ea481974f12b243126c31406528e271af7a57fed409fb75d57bf22e78ac5e1c8ccfaf86e1aa4c211edbd4172c214dd0de355862a0b79407fd305d5e2de07652173d422a1f3dd3bb0c0cb8105864ebed304866dc68ec3c217b5610247545a7382de13c455887c0c750b8fb3f940025878d4229b30afd6b802d1c9119f20696a96edec5199a50de5c4f35d6252ee4a90433fe82d88db99555d07d57707edc57979a72ac100965995e15ea9a80d138bc2457d08fd5410afae35ef9e6d483f742274b97cdd6779f39b05e546eb96c6328c4e5fc3f3fed8416376074553e23ec4445875b95cc846b0d99e99c50dd5f139399a22e6eb21d8b91554234f85ca2024e9f3bca499c465f3d834a31a942654473502e54409a33089e570da5976ceb4da1c54deef90db468b9b8454f18dd00faff4a17a40802e4ac26e86608b389890af084587797fba9790ec27061f50a921c5bd02c1f14d40c835125014ec64655e5a510490d8ea64e7199474198fe3d92236a7a2eca99af48cf6d668e00de8b2d5d05f5cebe52be4a9df4185fc126afd869fc501dc169ed5541625ba322a4799b15314609e2572b821a5c632ddc803f2df07bdaecb06b7155dca4a16b52003fc2315bd8a88abdb2d3b67bc7994602ef7616edc47eb0a6a49648d0afe6cab2bed6e546837f4070cca133f03da41ea52512e237e0497404ef8d81e272d3186a445c4ff800016fc942019d888e5c39e5227fe138a45b61b334ee104fc6c46b3f41779fa74b072bb9adb446e167959d569139df950767c430c4c126610b6e8fe725e434c05472a5dc4f592628149cfbb609dfed754f267f0ed5d7d3c7dcee4de1f6bfed617a75adb764e6bfc66492338f2c6f3757548ba10b62af4ae66fc233c677e9f040f74ade507b5a95f18c4163180aad7b2ee32a2720f376dfa4f149bd1f538f4ebb138d5feb892a28fc6e675b33fcde8603628f6fbebf17be3cd7ba3e00f585d528a8bb29f6c4f915a3f55967929440e7b8e81bd23dc7b03f36a9e42b5ff4f60cc05ba344ca41f474a420e4bdf0e0a27fe97a810118fd853788c0bafb8f23016a7ad152f6840d5526dff85c6e993b7c197350d190440a4dfc80e688430d6919c209833b28382bd428c1ad1b3324aca5a0638c47466aa731ca7e42dceadc7a7d7d251c63fc91b530cec04aa8be6c473878cd6283e058f9dbeb7c6b499457590c2e8cb01a6f1c55341557120d9790473a333d8fceb548ea6c8516d409299f7a7910fda54384aec0cb68022cbeda10c772e93b579b53e13427807e5794f5eda2159dff865bc123ca6d85a115523ec8b26feb1fe733a233f80c7b4dfebd2ea288e283974c701d150d31b1057d6fb97b9219f04f577355d83f93677c32f538f2c0f145dd87a76e918764a458966a0ada385df25ddd1c0d311f8357cf474389368bf5d4c6f25dd92c9a18e29ab69c3a3bbd147d446682be67dae9f9c84a4a5dad5b6cd7f21cda8e4217c1c8c41a2d8a32848007878734e2cdce73a4d7a878cdf1fb92ec23e2cdb8120cda210722618110ef5cb45d6f9167ec1f36124193631203c9973178ced14d225997637ad8a52eb7d73a44d2e812cea40a6583db1c7e4dd908e6e17f44bb8862fc314eedab7160bbd95a0e186469", 0x1000}, {&(0x7f0000000640)="e72d7471bca600f5fc323eadfd78a23a5b50951a524afecd8f8aec26066996fb9d35618f633435879fd0659495ea061ab7d3e0df324c5a11c039d822ed7c7fc5571820c8b03631648359e89a36c4d133d584f3bd950e439f3b1f2907afc86108660996a2538a5d69871806eb3d08965c", 0x70}, {&(0x7f00000006c0)="37a376851412f83755621b99445954b955f49d30c1933d26008f788261ef8def21b2dcf1ee4325c00def1855f257f871a8458c7e289140622acbfe23c24317c5bc6568ad947b7b67a5e4e5b5984363e2c21ef0a41259d686b06516754246150b9e02fc4d7fe20b81495e15587055184a021bb398d19943c80d114af978322631f650a2fa7fa8496ec68a262f94c6af90c9964eda3857802b7c61fb2a793fa7771d3028ed386ec995c18d55727d25d7bcdeafa9a40bfb1b3b069622becb10f5486f27f37b6fbb", 0xc6}], 0x9}}, {{&(0x7f0000000880)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000a40)=[{&(0x7f0000000900)="4b2e5a44dea2c1fea34ebeb183ed17f9f9b453db88b283b0583d3ba685c9d392cf8d071ee8e01b3ccd54a600398e7100a2d8967e836645fe6898a945", 0x3c}, {&(0x7f0000000940)="29caf55ed1290f6f2f4ab1e295995668b815c86bc0e459a59ce33420ad687b81a0ba97af8edcb21fc5dc1bee1e7f38fd1ea619125f08469bf3a369416ec47f1080cd7ade197efd5aaeb9909e3d086ecdf05e3b0e6056fbb058ba57d4275cd7a02d19381a32778d4e3718d820cbfdefde18", 0x71}, {&(0x7f00000009c0)="cc2c3b7e9d320ab6ced2f24aa63d37edb5f0bde34e1b608c803bdb2f33f2856ae698660eb0af09e19fb0610d6780de50cd034dd43a2d244eec12c6bd01fb62513a211bbcacd906c18c79194ac4ab22e23a224890f00c2478a3cb0085a3b7fad68c6caffc8f52544a4a6e2dd3", 0x6c}], 0x3, &(0x7f0000000a80)=[{0x98, 0x117, 0xb5, "1d15a3dc9db93a9523948bb875b876b0cfc057bfa170cc3323f23d80e21526826040d4b3a4997dcb5d289c8d9abc2956f29c45d8035d285c30dd8906c32d51e26610894cf421da5b88ce596626df4a037ecbb0069ca096d0e01855d92234330e1b2e1b41f6b69fcd81f02ee0ec2b301332ec9e9ce018e217742d938411aac27804"}], 0x98}}, {{&(0x7f0000000b80)=@pppol2tpin6={0x18, 0x1, {0x0, r6, 0x0, 0x2, 0x0, 0x0, {0xa, 0x4e1e, 0x3, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x4}}}, 0x80, &(0x7f0000000d00), 0x0, &(0x7f0000000d40)=[{0x28, 0x189, 0x9, "8e4b91a849354b7cd423c4b7cc71d7ed1aed30380baab7"}, {0x40, 0x118, 0x2, "1a4cbd113bed15caf3b03bd16b192aa7a40743ec70d8fb804974f7f66e8844a0b6a55ceab793cb9ad2601bf6cd06cbef"}, {0x40, 0x2, 0x1d85, "4cfecab7ff37ec432db978b39fc91d63dc84b60ea628796cfb58b9afdd0519fa35ab6b9b50a3178d29e2d8ac7456d1"}], 0xa8}}], 0x3, 0x800)
r7 = socket$netlink(0x10, 0x3, 0x0)
r8 = socket$netlink(0x10, 0x3, 0x7)
getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f0000000040)={0x0, <r9=>0x0}, &(0x7f0000000080)=0xc)
sendmsg$netlink(r7, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000f80)={0x2c, 0x2c, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @uid=r9}, @nested={0xb, 0x4, 0x0, 0x1, [@generic="976b6408686030"]}, @nested={0x5, 0x1, 0x0, 0x1, [@generic="a5"]}]}, 0x2c}], 0x1}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x79, 0x10, 0x48}, [@ldst={0x3, 0x3, 0x3, 0xa, 0x0, 0xff00}], {0x95, 0x0, 0x74}}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
setsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000001f80)={{{@in6=@local, @in=@rand_addr=0x64010102, 0x4e24, 0x7f, 0x4e22, 0x9, 0x2, 0x0, 0x80, 0x5c, r5, r9}, {0x14, 0xa75, 0x1, 0x37, 0x6, 0x67f, 0x29c0000000000, 0x401}, {0x80, 0xf, 0x8, 0x5}, 0x9, 0x6e6bbf, 0x1, 0x4fd033bc88aadc7c, 0x2}, {{@in=@loopback, 0x4d2, 0x6c}, 0x2, @in=@dev={0xac, 0x14, 0x14, 0x1b}, 0x9, 0x4, 0x1, 0x7, 0xb, 0x2, 0x200}}, 0xe8)
sendmsg$nl_route_sched(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x90, 0x24, 0xf0b, 0x70bd26, 0x0, {0x0, 0x0, 0x0, r5, {0x0, 0xffff}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x2, [], 0x0, [0x4, 0x2, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c4, 0x0, 0x0, 0x0, 0x3dc], [0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000]}}}}, @TCA_RATE={0x6}]}, 0x90}}, 0x20000000)

2.258905875s ago: executing program 3 (id=2782):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r0)
sendmsg$ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000300)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000001c000000180001801400020074756e6c30"], 0x2c}, 0x1, 0x0, 0x0, 0x44000}, 0x4000000)

2.141545467s ago: executing program 2 (id=2784):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e25, @local}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='cubic', 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ffd}, 0x24)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000000c0)='yeah', 0x4)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x100}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xf, 0x10, &(0x7f0000000740)=ANY=[@ANYBLOB="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", @ANYRES32=r2, @ANYBLOB="ab6eec0000009d35c339f3811f0c1bff199294bc750000b70400000800000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/softnet_stat\x00')
pread64(r3, &(0x7f0000000280)=""/35, 0x23, 0x16bd)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000016c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x2c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r4}, 0x10)
r5 = syz_io_uring_setup(0x4b5, &(0x7f0000010400)={0x0, 0x86e1, 0x1, 0x8}, &(0x7f0000010080), &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r5, 0x0, &(0x7f0000000140)=[{0x0}, {0x0}], 0x2)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0x1, 0x0, 0x0)
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4), 0xc)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r5, 0x10, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000540)=[{0x0}, {&(0x7f0000000340), 0xa002a0}], &(0x7f00000005c0), 0x2}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="18010000bc0000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x6, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kfree\x00', r6, 0x0, 0x3}, 0x18)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)

1.48578916s ago: executing program 0 (id=2790):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f0000000000)=@newtaction={0xa0, 0x30, 0x9, 0x0, 0x0, {}, [{0x8c, 0x1, [@m_bpf={0x88, 0x1, 0x0, 0x0, {{0x8}, {0x60, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x7}, @TCA_ACT_BPF_OPS={0x3c, 0x4, [{0x60}, {}, {0x3}, {}, {}, {}, {0x6}]}, @TCA_ACT_BPF_PARMS={0x18}]}, {}, {0xc}, {0xc}}}]}]}, 0xa0}}, 0x0)

1.48522352s ago: executing program 0 (id=2791):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000005000000000000000000", @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e8500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @ib_path={0x0}}, 0x20)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7fe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000ac0)={&(0x7f0000000b00)='kmem_cache_free\x00', r3, 0x0, 0x1034}, 0x18)
lchown(&(0x7f0000000700)='./file0\x00', 0x0, 0x0)

1.439599621s ago: executing program 0 (id=2793):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x100}, 0x18)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002300000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
pipe2$9p(&(0x7f0000001900)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000003c0)='writeback_bdi_register\x00', r5}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='writeback_bdi_register\x00', r2}, 0x18)
r6 = dup(r4)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[], [], 0x6b}})

1.332189043s ago: executing program 0 (id=2794):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000007"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000004080)={{r0}, &(0x7f0000004000), &(0x7f0000004040)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='kfree\x00', r1, 0x0, 0x8000000000000}, 0x18)
unshare(0x2000400)
capset(&(0x7f0000000100)={0x20080522}, &(0x7f0000000140)={0x0, 0x2c4})
socket(0x11, 0x800000003, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_group_source_req(r2, 0x29, 0x2e, &(0x7f0000000140)={0x0, {{0xa, 0x0, 0x8000000, @mcast2}}, {{0xa, 0x0, 0x3, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x9, 0x0}}}}}, 0x108)

1.270279994s ago: executing program 0 (id=2795):
socket$inet(0x2, 0xa, 0x6)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x14a)
fallocate(r0, 0x20, 0x0, 0x8000)
pwritev(r0, 0x0, 0x0, 0x7, 0x4)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4000, &(0x7f0000000c00)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@mblk_io_submit}, {@resuid}, {@norecovery}]}, 0x8, 0x445, &(0x7f0000001dc0)="$eJzs28tvG0UYAPBv105KX8RU5dEHECiIikfSpKX0wAEQSBxAQoJDOYYkrUrdBjVBolUFBaFyRJW4I45I/AWc4IKAExJX4IwqVSiXFk5Ga+82jmunSbDrEP9+0tYzu+POfJ4de3YnG8DAGs3+SSJ2RMRvETHSyC4vMNp4ubF4cfrvxYvTSdRqb/6V1MtdX7w4XRQt3re9yJQj0k+T2Nem3vnzF05PVauz5/L8+MKZ98bnz1945tSZqZOzJ2fPTh47duTwxHNHJ5/tSpxZXNf3fji3f8+rb195ffr4lXd++iYp4m+Jo0tG2+4tN14er9W6XF1/7WxKJ+U+NoQ1KeWn5FB9/I9EKZY6byRe+aSvjQN6qlar1e7rfPhSDdjEkuh3C4D+KH7os+vfYrtDU48N4dqLjQugLO4b+dY4Uo40LzPUcn3bTaMRcfzSP19mW7Teh9jao0oBgIH2XTb/ebrd/C+N5vtCd+drKJWIuCcidkXE0YjYHRH3RtTL3h8RD6yx/tZFklvnn+nVdQW2Stn87/l8bWv5/K+Y/UWllOd21uMfSk6cqs4eyj+TgzG0JctPrFDH9y//+nmnY83zv2zL6i/mgnk7rpa3LH/PzNTC1H+Judm1jyP2ltvFn9xcCUgiYk9EvLDOOk49+fX+Tsc6xD+8qv+4C+tMta8inmj0/6Voib+QrLw+OX5XVGcPjRdnxa1+/uXyG53qv33/91bW/9vanv9F/H9Ukub12vm113H59886XlOu9/wfTt5atu+DqYWFcxMRw8lr9Xylef9kS7nJpfJZ/AcPtB//u2Lpk9gXEdlJ/GBEPBQRD+dtfyQiHo2IAyvE/+NLj727/vh7K4t/ZsX+j5b+X0oMR+ue9onS6R++XVZpZS3xZ/1/pJ46mO9Zzfffatq1vrMZAAAA/n/SiNgRSTp2M52mY2ONv+HfHdvS6tz8wlMn5t4/O9N4RqASQ2lxp2uk6X7oRH5ZX+QnW/KH8/vGX5S21vNj03PVmX4HDwNue4fxn/mz1O/WAT3neS0YXMY/DC7jHwaX8Q+Dq8349+gZDIh2v/8f9aEdwJ3XMv5XXPYzMYDNxfU/DC7jHwaX8Q8DaX5r3P4h+c2RSCNiAzRjsyQi3RDNkOhRot/fTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAN3xbwAAAP//ynflmQ==")
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, 0x0, 0x2400c014)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
write(r3, &(0x7f00000008c0)="3bf58d7d45d32cfe1da7c797b82fee444b42785c24a868a4046cf670ba8f376c429a424fcc374c08887ba2bb530d843b61bf79a3879fa0", 0x37)
sendfile(r3, r2, 0x0, 0x3ffff)
sendfile(r3, r2, 0x0, 0x7fffeffd)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
write$qrtrtun(0xffffffffffffffff, &(0x7f00000000c0)="96d3a8b07826254e3eba011499c872dc6d5b01e7f1b3ffaa7ce34e4154ee667ccb5f8af1453665fb2f19957d57fcbc9c9f6e5bee7f29389987d302509ea1cd7f3f8fc13e3add1b2bbec6d5b84e91b8cccdff6473", 0x54)

1.269608465s ago: executing program 2 (id=2796):
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000012c0)={@fallback, 0xffffffffffffffff, 0x1c}, 0x20)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000100)={[{@grpid}, {@grpquota}]}, 0x4, 0x4eb, &(0x7f0000000540)="$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")
truncate(&(0x7f0000000900)='./file1\x00', 0x3000000)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0b00000007000000010001004900000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r1}, &(0x7f00000000c0), &(0x7f0000000100)}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r1}, &(0x7f0000000580), &(0x7f0000000200)}, 0x20)
socket$netlink(0x10, 0x3, 0x0)
r2 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r2, 0x1, 0x8)
fchdir(r3)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x1b, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x401c2, 0x0)
ftruncate(r4, 0x8800000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
recvmmsg(r6, &(0x7f00000034c0)=[{{0x0, 0x0, &(0x7f0000001e40)=[{&(0x7f0000000b80)=""/4096, 0x20001b80}, {&(0x7f0000001b80)=""/112, 0x70}], 0x2, 0x0, 0xa0028cb4}}], 0x40000000000013c, 0x700, 0x0)
sendfile(r5, r4, 0x0, 0x578410eb)

894.154762ms ago: executing program 4 (id=2799):
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0xc010)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a5000000080000"], &(0x7f0000000180)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x8, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
unshare(0x2a020480)
r1 = socket$kcm(0x2b, 0x1, 0x0)
setsockopt$sock_attach_bpf(r1, 0x6, 0x17, &(0x7f0000000200)=r1, 0x21)

797.795844ms ago: executing program 4 (id=2800):
unshare(0x8000600)
r0 = socket$netlink(0x10, 0x3, 0x14)
listen(r0, 0x7)
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
socket$inet6_tcp(0xa, 0x1, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x2, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f00000001c0), 0x1, 0x4bc, &(0x7f0000000a40)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$VT_DISALLOCATE(r3, 0x5608)

604.604308ms ago: executing program 1 (id=2801):
r0 = socket$kcm(0x29, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$kcm(0x2, 0x1, 0x0)
sendmsg$inet(r2, &(0x7f0000000fc0)={&(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x20000811)
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f0000000040)={r2, r1})
shutdown(r2, 0x1)

592.386048ms ago: executing program 4 (id=2802):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000005000000000000000000", @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e8500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @ib_path={0x0}}, 0x20)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7fe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000ac0)={&(0x7f0000000b00)='kmem_cache_free\x00', r3, 0x0, 0x1034}, 0x18)
lchown(&(0x7f0000000700)='./file0\x00', 0x0, 0x0)

560.702768ms ago: executing program 4 (id=2803):
listen(0xffffffffffffffff, 0x7)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
socket$inet6_tcp(0xa, 0x1, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x2, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0xf, &(0x7f0000000080)=[{&(0x7f00000000c0)="0207070002000000e4a17c45c8d260c90ec56959a440278950ff8cdca342f51686908ea4fe07dee035abee82755979fbd7991b71517d20096811c5a663a947eaf378bf56aaccdde0d91d2fa08aba131d91a15f81bfd1e961e534a605e9196747aaf27c0ec3994018ec333b40070beae950827d3efce8a34af6c67c60ee83b76c1132f55a7ccf7843a9a1de5284a60a57f66fa52701bccb915def033b664bc63242c782ecc7", 0x10}], 0x1}, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f00000001c0), 0x1, 0x4bc, &(0x7f0000000a40)="$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")
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$VT_DISALLOCATE(r1, 0x5608)

535.509509ms ago: executing program 1 (id=2804):
unshare(0x8000600)
r0 = socket$netlink(0x10, 0x3, 0x14)
listen(r0, 0x7)
r1 = socket$netlink(0x10, 0x3, 0x10)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000140)={0x0, r1}, 0x8)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x4, &(0x7f0000000680)=ANY=[@ANYBLOB="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"], &(0x7f0000000580)='syzkaller\x00', 0xfffffffd, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r2}, 0x18)
bind$netlink(r1, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x2, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0xf, &(0x7f0000000080)=[{&(0x7f00000000c0)="0207070002000000e4a17c45c8d260c90ec56959a440278950ff8cdca342f51686908ea4fe07dee035abee82755979fbd7991b71517d20096811c5a663a947eaf378bf56aaccdde0d91d2fa08aba131d91a15f81bfd1e961e534a605e9196747aaf27c0ec3994018ec333b40070beae950827d3efce8a34af6c67c60ee83b76c1132f55a7ccf7843a9a1de5284a60a57f66fa52701bccb915def033b664bc63242c782ecc7", 0x10}], 0x1}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$VT_DISALLOCATE(r5, 0x5608)

413.513822ms ago: executing program 0 (id=2805):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e25, @local}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='cubic', 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ffd}, 0x24)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000000c0)='yeah', 0x4)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x100}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xf, 0x10, &(0x7f0000000740)=ANY=[@ANYBLOB="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", @ANYRES32=r2, @ANYBLOB="ab6eec0000009d35c339f3811f0c1bff199294bc750000b70400000800000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/softnet_stat\x00')
pread64(r3, &(0x7f0000000280)=""/35, 0x23, 0x16bd)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000016c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x2c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r4}, 0x10)
r5 = syz_io_uring_setup(0x4b5, &(0x7f0000010400)={0x0, 0x86e1, 0x1, 0x8}, &(0x7f0000010080), &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r5, 0x0, &(0x7f0000000140)=[{0x0}, {0x0}], 0x2)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0x1, 0x0, 0x0)
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4), 0xc)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r5, 0x10, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000540)=[{0x0}, {&(0x7f0000000340), 0xa002a0}], &(0x7f00000005c0), 0x2}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="18010000bc0000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x6, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kfree\x00', r6, 0x0, 0x3}, 0x18)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)

285.815474ms ago: executing program 2 (id=2806):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e25, @local}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='cubic', 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ffd}, 0x24)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000000c0)='yeah', 0x4)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x100}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xf, 0x10, &(0x7f0000000740)=ANY=[@ANYBLOB="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", @ANYRES32=r2, @ANYBLOB="ab6eec0000009d35c339f3811f0c1bff199294bc750000b70400000800000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/softnet_stat\x00')
pread64(r3, &(0x7f0000000280)=""/35, 0x23, 0x16bd)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000016c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x2c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r4}, 0x10)
r5 = syz_io_uring_setup(0x4b5, &(0x7f0000010400)={0x0, 0x86e1, 0x1, 0x8}, &(0x7f0000010080), &(0x7f0000000000))
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r5, 0x10, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000540)=[{0x0}, {&(0x7f0000000340), 0xa002a0}], &(0x7f00000005c0), 0x2}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)

281.907434ms ago: executing program 4 (id=2807):
unshare(0x8000600)
r0 = socket$netlink(0x10, 0x3, 0x14)
listen(r0, 0x7)
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
socket$inet6_tcp(0xa, 0x1, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x2, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f00000001c0), 0x1, 0x4bc, &(0x7f0000000a40)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$VT_DISALLOCATE(r3, 0x5608)

209.307016ms ago: executing program 1 (id=2808):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
setresgid(0x0, 0xee01, 0x0)

208.381856ms ago: executing program 1 (id=2809):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
listen(r0, 0x0)
r1 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000080)=@name={0x1e, 0x2, 0x0, {{0x41}}}, 0x10, &(0x7f0000000340)=[{&(0x7f00000002c0)='/', 0x1}], 0x1, 0x0, 0x0, 0x40}, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff8000}]})
r3 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCADDRT(r3, 0x890b, &(0x7f0000000300)={0x0, {0x2, 0x0, @dev}, {0x2, 0x4e24, @remote}, {0x2, 0x0, @multicast1}, 0xaf, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0xfffffffffffffffc, 0x200})
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r4, 0x0, 0xffffffffffffffff}, 0x18)
syz_open_dev$usbfs(0x0, 0xf, 0x8041)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x41)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x9}, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)

92.465778ms ago: executing program 1 (id=2810):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r0)
sendmsg$ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000300)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000001c000000180001801400020074756e6c30"], 0x2c}, 0x1, 0x0, 0x0, 0x44000}, 0x4000000)

81.901128ms ago: executing program 3 (id=2783):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="740000001000210400000000fcdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="adffa8886004000024001280090001007866726d000000001400028008000100010000000800020011000000050021000000000008000a00", @ANYRES32, @ANYBLOB='\n\x00:'], 0x74}}, 0x0)
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000080)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x200, 0xfffffffd}}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r2, 0x0, 0x8000000000000000}, 0x18)
ftruncate(0xffffffffffffffff, 0xc17a)
r3 = syz_io_uring_setup(0x499, &(0x7f00000007c0)={0x0, 0xa064, 0x3180, 0x2, 0x25c}, &(0x7f0000000080)=<r4=>0x0, &(0x7f0000000340)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f00000000c0)=0xffb, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_TIMEOUT={0xb, 0x11, 0x0, 0x0, 0x0, &(0x7f0000000100), 0x1, 0x1, 0x1})
io_uring_enter(r3, 0x628, 0xc88d, 0x43, 0x0, 0x0)
r6 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x87, &(0x7f00000001c0)={0x8000042, 0x3}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f00000002c0)={0x100042, 0xf7, 0x1}, 0x10)
r7 = socket$tipc(0x1e, 0x2, 0x0)
ioctl$sock_SIOCGIFCONF(r0, 0x8912, &(0x7f0000000180)=@buf={0x8e, &(0x7f0000000380)="00e69b0bb6b729a6c5aaa2e41f0a07dbedb5151af785945e7464944e4ca9595faaa187b5dfac17794c63af3e77058be526d3ea0fc173d30623b481a6017c576d7cb9d736714513a2c8f5b27d51843068fc2ef451765735f413c3c5821cd1eb47ba3e2aa32ec603332ff1145deab63bf717f91e269304d6cc74cf27dae138156bfc324220691ba9e6b4feeed18af0"})
setsockopt$TIPC_GROUP_JOIN(r7, 0x10f, 0x87, &(0x7f0000000040)={0x4a, 0x800, 0x1}, 0x56)
sendmsg$tipc(r7, &(0x7f0000002340)={&(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x2, 0xfffd}}, 0x10, 0x0}, 0x0)
pivot_root(&(0x7f0000000000)='./cgroup\x00', &(0x7f00000000c0)='./cgroup\x00')
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x9}, 0x0)

49.165829ms ago: executing program 1 (id=2811):
socket$inet(0x2, 0xa, 0x6)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x3000046, &(0x7f00000002c0)={[{@errors_continue}, {@data_err_abort}, {@nomblk_io_submit}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b0}}, {@noblock_validity}, {@grpquota}, {@nobh}, {@user_xattr}, {@inode_readahead_blks}, {@dioread_nolock}]}, 0x21, 0x553, &(0x7f0000000a40)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x14a)
fallocate(r0, 0x20, 0x0, 0x8000)
pwritev(r0, 0x0, 0x0, 0x7, 0x4)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000000)=[{0x0}, {&(0x7f00000017c0)="ea0189bdebb0c16d420ee9b95082abd6431cc7afc22c4a6b8adecef68f76bd81a86e89f9c80e5c868a12b09e80ba8c01eb3f4b7be71f9fc2355c336cedc15eb778e3a3b35c3f72629ea4d9ae42cf4c17255815fb8a47aafd8b8ff0c202b4e09f7c42811261b5e113fcce27b4329ccb792df14b7d6dcfaf2cf8", 0x79}], 0x2}, 0xe900)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4000, &(0x7f0000000c00)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@mblk_io_submit}, {@resuid}, {@norecovery}]}, 0x8, 0x445, &(0x7f0000001dc0)="$eJzs28tvG0UYAPBv105KX8RU5dEHECiIikfSpKX0wAEQSBxAQoJDOYYkrUrdBjVBolUFBaFyRJW4I45I/AWc4IKAExJX4IwqVSiXFk5Ga+82jmunSbDrEP9+0tYzu+POfJ4de3YnG8DAGs3+SSJ2RMRvETHSyC4vMNp4ubF4cfrvxYvTSdRqb/6V1MtdX7w4XRQt3re9yJQj0k+T2Nem3vnzF05PVauz5/L8+MKZ98bnz1945tSZqZOzJ2fPTh47duTwxHNHJ5/tSpxZXNf3fji3f8+rb195ffr4lXd++iYp4m+Jo0tG2+4tN14er9W6XF1/7WxKJ+U+NoQ1KeWn5FB9/I9EKZY6byRe+aSvjQN6qlar1e7rfPhSDdjEkuh3C4D+KH7os+vfYrtDU48N4dqLjQugLO4b+dY4Uo40LzPUcn3bTaMRcfzSP19mW7Teh9jao0oBgIH2XTb/ebrd/C+N5vtCd+drKJWIuCcidkXE0YjYHRH3RtTL3h8RD6yx/tZFklvnn+nVdQW2Stn87/l8bWv5/K+Y/UWllOd21uMfSk6cqs4eyj+TgzG0JctPrFDH9y//+nmnY83zv2zL6i/mgnk7rpa3LH/PzNTC1H+Judm1jyP2ltvFn9xcCUgiYk9EvLDOOk49+fX+Tsc6xD+8qv+4C+tMta8inmj0/6Voib+QrLw+OX5XVGcPjRdnxa1+/uXyG53qv33/91bW/9vanv9F/H9Ukub12vm113H59886XlOu9/wfTt5atu+DqYWFcxMRw8lr9Xylef9kS7nJpfJZ/AcPtB//u2Lpk9gXEdlJ/GBEPBQRD+dtfyQiHo2IAyvE/+NLj727/vh7K4t/ZsX+j5b+X0oMR+ue9onS6R++XVZpZS3xZ/1/pJ46mO9Zzfffatq1vrMZAAAA/n/SiNgRSTp2M52mY2ONv+HfHdvS6tz8wlMn5t4/O9N4RqASQ2lxp2uk6X7oRH5ZX+QnW/KH8/vGX5S21vNj03PVmX4HDwNue4fxn/mz1O/WAT3neS0YXMY/DC7jHwaX8Q+Dq8349+gZDIh2v/8f9aEdwJ3XMv5XXPYzMYDNxfU/DC7jHwaX8Q8DaX5r3P4h+c2RSCNiAzRjsyQi3RDNkOhRot/fTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAN3xbwAAAP//ynflmQ==")
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, 0x0, 0x2400c014)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
write(r3, &(0x7f00000008c0)="3bf58d7d45d32cfe1da7c797b82fee444b42785c24a868a4046cf670ba8f376c429a424fcc374c08887ba2bb530d843b61bf79a3879fa0", 0x37)
sendfile(r3, r2, 0x0, 0x3ffff)
sendfile(r3, r2, 0x0, 0x7fffeffd)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
write$qrtrtun(0xffffffffffffffff, &(0x7f00000000c0)="96d3a8b07826254e3eba011499c872dc6d5b01e7f1b3ffaa7ce34e4154ee667ccb5f8af1453665fb2f19957d57fcbc9c9f6e5bee7f29389987d302509ea1cd7f3f8fc13e3add1b2bbec6d5b84e91b8cccdff6473", 0x54)

34.599379ms ago: executing program 3 (id=2812):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018", @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e8500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @ib_path={0x0}}, 0x20)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7fe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000ac0)={&(0x7f0000000b00)='kmem_cache_free\x00', r3, 0x0, 0x1034}, 0x18)
lchown(&(0x7f0000000700)='./file0\x00', 0x0, 0x0)

2.25148ms ago: executing program 3 (id=2813):
unshare(0x8000600)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x2, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="04000000040000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$VT_DISALLOCATE(r2, 0x5608)

0s ago: executing program 4 (id=2814):
socket$inet(0x2, 0xa, 0x6)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x14a)
fallocate(r0, 0x20, 0x0, 0x8000)
pwritev(r0, 0x0, 0x0, 0x7, 0x4)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4000, &(0x7f0000000c00)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@mblk_io_submit}, {@resuid}, {@norecovery}]}, 0x8, 0x445, &(0x7f0000001dc0)="$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")
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, 0x0, 0x2400c014)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
write(r3, &(0x7f00000008c0)="3bf58d7d45d32cfe1da7c797b82fee444b42785c24a868a4046cf670ba8f376c429a424fcc374c08887ba2bb530d843b61bf79a3879fa0", 0x37)
sendfile(r3, r2, 0x0, 0x3ffff)
sendfile(r3, r2, 0x0, 0x7fffeffd)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
write$qrtrtun(0xffffffffffffffff, &(0x7f00000000c0)="96d3a8b07826254e3eba011499c872dc6d5b01e7f1b3ffaa7ce34e4154ee667ccb5f8af1453665fb2f19957d57fcbc9c9f6e5bee7f29389987d302509ea1cd7f3f8fc13e3add1b2bbec6d5b84e91b8cccdff6473", 0x54)

kernel console output (not intermixed with test programs):

metadata
[  200.476579][T11041] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4183: comm syz.3.2045: Allocating blocks 1-17 which overlap fs metadata
[  200.583012][T11037] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4183: comm syz.3.2045: Allocating blocks 1-17 which overlap fs metadata
[  200.625753][T11043] EXT4-fs (loop2): pa ffff88810719baf0: logic 16, phys. 145, len 23
[  200.633886][T11043] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 1
[  200.790037][ T3299] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  201.144151][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  201.482599][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  201.628565][T11066] loop0: detected capacity change from 0 to 512
[  201.648924][T11066] EXT4-fs: Ignoring removed mblk_io_submit option
[  201.664472][T11066] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  201.698746][T11066] EXT4-fs (loop0): 1 truncate cleaned up
[  201.706949][T11072] loop3: detected capacity change from 0 to 1024
[  201.721699][T11066] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  201.740014][T11072] EXT4-fs: Ignoring removed nomblk_io_submit option
[  201.751848][T11072] EXT4-fs: Ignoring removed nobh option
[  201.866144][T11082] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2058'.
[  201.882212][T11072] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  202.072599][T11100] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4183: comm syz.3.2054: Allocating blocks 449-513 which overlap fs metadata
[  202.113018][T11102] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2059'.
[  202.162483][T11105] loop4: detected capacity change from 0 to 1024
[  202.174449][T11102] syz!: rxe_newlink: already configured on team_slave_0
[  202.181584][T11105] EXT4-fs: Ignoring removed nomblk_io_submit option
[  202.190350][T11105] EXT4-fs: Ignoring removed nobh option
[  202.203912][T11105] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  202.553402][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.572594][T11097] EXT4-fs (loop3): pa ffff888107230230: logic 48, phys. 193, len 20
[  202.580758][T11097] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  202.710722][ T3299] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.757901][T11105] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.2062: Allocating blocks 1-17 which overlap fs metadata
[  202.773426][T11115] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.2062: Allocating blocks 1-17 which overlap fs metadata
[  202.802652][T11105] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.2062: Allocating blocks 1-17 which overlap fs metadata
[  202.849597][T11115] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.2062: Allocating blocks 1-17 which overlap fs metadata
[  202.874797][T11139] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2070'.
[  202.958748][T11141] loop2: detected capacity change from 0 to 512
[  203.012186][T11150] loop3: detected capacity change from 0 to 512
[  203.048982][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.060890][T11144] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2073'.
[  203.128357][T11154] loop0: detected capacity change from 0 to 512
[  203.146972][T11141] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.2072: Failed to acquire dquot type 1
[  203.161573][T11141] EXT4-fs (loop2): 1 truncate cleaned up
[  203.167839][T11141] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  203.182062][T11141] ext4 filesystem being mounted at /404/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  203.208418][T11141] EXT4-fs: Cannot change quota options when quota turned on
[  203.269099][T11154] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  203.286010][T11150] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  203.300524][T11150] ext4 filesystem being mounted at /445/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  203.314135][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.321754][T11154] ext4 filesystem being mounted at /411/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  203.392484][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.403517][T11171] loop2: detected capacity change from 0 to 1024
[  203.410213][T11171] EXT4-fs: Ignoring removed nomblk_io_submit option
[  203.422701][ T3299] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.433654][T11171] EXT4-fs: Ignoring removed nobh option
[  203.448884][T11177] 9pnet_fd: Insufficient options for proto=fd
[  203.495740][T11171] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  203.548964][T11187] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2084'.
[  203.641404][T11203] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.2079: Allocating blocks 449-513 which overlap fs metadata
[  203.823314][T11211] loop4: detected capacity change from 0 to 512
[  203.851404][T11171] EXT4-fs (loop2): pa ffff8881072302a0: logic 48, phys. 193, len 20
[  203.859479][T11171] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  203.908868][T11217] SELinux:  policydb version 0 does not match my version range 15-35
[  203.925107][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.931767][T11211] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  203.942142][T11217] SELinux: failed to load policy
[  203.960732][T11211] ext4 filesystem being mounted at /405/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  203.993162][T11226] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2099'.
[  204.026316][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.039295][T11229] 9pnet_fd: Insufficient options for proto=fd
[  204.042351][   T29] kauditd_printk_skb: 1172 callbacks suppressed
[  204.042386][   T29] audit: type=1326 audit(1758940342.126:15767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11221 comm="syz.3.2100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3bfc0eec9 code=0x7ffc0000
[  204.095520][   T29] audit: type=1326 audit(1758940342.176:15768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11231 comm="syz.3.2105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3bfc0eec9 code=0x7ffc0000
[  204.119722][   T29] audit: type=1326 audit(1758940342.176:15769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11231 comm="syz.3.2105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3bfc0eec9 code=0x7ffc0000
[  204.145463][   T29] audit: type=1326 audit(1758940342.176:15770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11231 comm="syz.3.2105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa3bfc0eec9 code=0x7ffc0000
[  204.169343][   T29] audit: type=1326 audit(1758940342.176:15771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11231 comm="syz.3.2105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3bfc0eec9 code=0x7ffc0000
[  204.193494][   T29] audit: type=1326 audit(1758940342.176:15772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11231 comm="syz.3.2105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3bfc0eec9 code=0x7ffc0000
[  204.217556][   T29] audit: type=1326 audit(1758940342.176:15773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11231 comm="syz.3.2105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa3bfc0eec9 code=0x7ffc0000
[  204.220565][T11236] loop4: detected capacity change from 0 to 512
[  204.241641][   T29] audit: type=1326 audit(1758940342.176:15774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11231 comm="syz.3.2105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3bfc0eec9 code=0x7ffc0000
[  204.272074][   T29] audit: type=1326 audit(1758940342.176:15775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11231 comm="syz.3.2105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3bfc0eec9 code=0x7ffc0000
[  204.295775][   T29] audit: type=1326 audit(1758940342.176:15776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11231 comm="syz.3.2105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fa3bfc0eec9 code=0x7ffc0000
[  204.336579][T11236] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.2101: Failed to acquire dquot type 1
[  204.380887][T11248] loop0: detected capacity change from 0 to 1024
[  204.387849][T11248] EXT4-fs: Ignoring removed nomblk_io_submit option
[  204.395015][T11248] EXT4-fs: Ignoring removed nobh option
[  204.414906][T11236] EXT4-fs (loop4): 1 truncate cleaned up
[  204.421285][T11236] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  204.433961][T11236] ext4 filesystem being mounted at /406/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  204.450656][T11248] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  204.569572][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.632422][T11265] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4183: comm syz.0.2108: Allocating blocks 449-513 which overlap fs metadata
[  204.712598][T11267] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2112'.
[  204.726886][T11271] loop2: detected capacity change from 0 to 512
[  204.752906][T11271] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.2116: Failed to acquire dquot type 1
[  204.765338][T11271] EXT4-fs (loop2): 1 truncate cleaned up
[  204.779079][T11271] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  204.794177][T11271] ext4 filesystem being mounted at /410/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  204.827619][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.845775][T11248] EXT4-fs (loop0): pa ffff88810719b460: logic 48, phys. 193, len 20
[  204.854057][T11248] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  204.889191][T11289] 9pnet_fd: Insufficient options for proto=fd
[  204.897571][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.992290][T11299] loop3: detected capacity change from 0 to 512
[  205.012184][T11299] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  205.034936][T11299] ext4 filesystem being mounted at /457/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  205.057661][T11307] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2122'.
[  205.065192][T11304] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2129'.
[  205.068163][T11307] syz!: rxe_newlink: already configured on team_slave_0
[  205.168079][T11312] loop4: detected capacity change from 0 to 1024
[  205.195596][T11310] loop0: detected capacity change from 0 to 1024
[  205.205229][T11310] EXT4-fs: Ignoring removed nomblk_io_submit option
[  205.239020][T11310] EXT4-fs: Ignoring removed nobh option
[  205.263721][T11312] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  205.318572][T11310] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  205.542735][T11319] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4183: comm syz.0.2130: Allocating blocks 449-513 which overlap fs metadata
[  205.963454][T11326] loop2: detected capacity change from 0 to 1024
[  205.991023][T11326] EXT4-fs: Ignoring removed nomblk_io_submit option
[  206.010498][T11326] EXT4-fs: Ignoring removed nobh option
[  206.116246][T11334] loop3: detected capacity change from 0 to 512
[  206.149890][T11309] EXT4-fs (loop0): pa ffff888107230540: logic 48, phys. 193, len 20
[  206.152438][T11338] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.2134: Allocating blocks 449-513 which overlap fs metadata
[  206.158073][T11309] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  206.339150][T11334] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.2132: Failed to acquire dquot type 1
[  206.395301][T11334] EXT4-fs (loop3): 1 truncate cleaned up
[  206.428493][T11334] ext4 filesystem being mounted at /458/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  206.476208][T11326] EXT4-fs (loop2): pa ffff8881072302a0: logic 48, phys. 193, len 20
[  206.484407][T11326] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  206.665807][T11346] loop4: detected capacity change from 0 to 1024
[  206.690740][T11346] EXT4-fs: Ignoring removed nomblk_io_submit option
[  206.700021][T11351] loop0: detected capacity change from 0 to 512
[  206.710630][T11346] EXT4-fs: Ignoring removed nobh option
[  206.746235][T11351] EXT4-fs: Ignoring removed mblk_io_submit option
[  206.754796][T11351] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  206.765996][T11351] EXT4-fs (loop0): 1 truncate cleaned up
[  206.852194][T11362] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2143'.
[  206.865503][T11362] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  207.327518][T11346] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.2140: Allocating blocks 1-17 which overlap fs metadata
[  207.343056][T11360] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.2140: Allocating blocks 1-17 which overlap fs metadata
[  207.374574][T11360] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.2140: Allocating blocks 1-17 which overlap fs metadata
[  207.389902][T11346] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.2140: Allocating blocks 1-17 which overlap fs metadata
[  207.605845][T11390] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2154'.
[  207.697705][T11401] loop3: detected capacity change from 0 to 1024
[  207.706329][T11401] EXT4-fs: Ignoring removed nomblk_io_submit option
[  207.713548][T11401] EXT4-fs: Ignoring removed nobh option
[  208.222543][T11415] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4183: comm syz.3.2158: Allocating blocks 1-17 which overlap fs metadata
[  208.237981][T11401] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4183: comm syz.3.2158: Allocating blocks 1-17 which overlap fs metadata
[  208.287034][T11428] SELinux:  policydb version 0 does not match my version range 15-35
[  208.296439][T11428] SELinux: failed to load policy
[  208.426482][T11432] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2169'.
[  208.444862][T11432] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  208.600136][T11436] loop0: detected capacity change from 0 to 512
[  208.606938][T11436] EXT4-fs: Ignoring removed mblk_io_submit option
[  208.614981][T11436] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  208.626633][T11436] EXT4-fs (loop0): 1 truncate cleaned up
[  209.115863][   T29] kauditd_printk_skb: 468 callbacks suppressed
[  209.115882][   T29] audit: type=1326 audit(1758940347.196:16239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11453 comm="syz.1.2177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f791da6eec9 code=0x7ffc0000
[  209.153335][   T29] audit: type=1326 audit(1758940347.196:16240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11453 comm="syz.1.2177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f791da6eec9 code=0x7ffc0000
[  209.161754][T11458] SELinux:  policydb version 0 does not match my version range 15-35
[  209.177151][   T29] audit: type=1326 audit(1758940347.196:16241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11453 comm="syz.1.2177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f791da6eec9 code=0x7ffc0000
[  209.186854][T11458] SELinux: failed to load policy
[  209.209098][   T29] audit: type=1326 audit(1758940347.196:16242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11453 comm="syz.1.2177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f791da6eec9 code=0x7ffc0000
[  209.238144][   T29] audit: type=1326 audit(1758940347.196:16243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11453 comm="syz.1.2177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f791da6eec9 code=0x7ffc0000
[  209.262257][   T29] audit: type=1326 audit(1758940347.196:16244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11453 comm="syz.1.2177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f791da6eec9 code=0x7ffc0000
[  209.285909][   T29] audit: type=1326 audit(1758940347.196:16245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11453 comm="syz.1.2177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f791da6eec9 code=0x7ffc0000
[  209.310760][   T29] audit: type=1326 audit(1758940347.196:16246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11453 comm="syz.1.2177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f791da6eec9 code=0x7ffc0000
[  209.334691][   T29] audit: type=1326 audit(1758940347.196:16247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11453 comm="syz.1.2177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f791da6eec9 code=0x7ffc0000
[  209.358492][   T29] audit: type=1326 audit(1758940347.196:16248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11453 comm="syz.1.2177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f791da6eec9 code=0x7ffc0000
[  209.506284][T11468] loop3: detected capacity change from 0 to 1024
[  209.513226][T11468] EXT4-fs: Ignoring removed nomblk_io_submit option
[  209.513304][T11468] EXT4-fs: Ignoring removed nobh option
[  209.756408][T11477] loop9: detected capacity change from 0 to 7
[  209.759009][T11475] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2182'.
[  209.762970][T11477] Buffer I/O error on dev loop9, logical block 0, async page read
[  209.779448][T11477] Buffer I/O error on dev loop9, logical block 0, async page read
[  209.787283][T11477]  loop9: unable to read partition table
[  209.792955][T11477] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  209.792955][T11477] 
) failed (rc=-5)
[  209.809229][T11475] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  209.877747][T11482] 9pnet_fd: Insufficient options for proto=fd
[  209.924522][T11474] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4183: comm syz.3.2184: Allocating blocks 1-17 which overlap fs metadata
[  209.940137][T11468] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4183: comm syz.3.2184: Allocating blocks 1-17 which overlap fs metadata
[  209.957149][T11486] netlink: 168 bytes leftover after parsing attributes in process `syz.2.2189'.
[  209.966369][T11486] netlink: 160 bytes leftover after parsing attributes in process `syz.2.2189'.
[  209.967416][T11474] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4183: comm syz.3.2184: Allocating blocks 1-17 which overlap fs metadata
[  209.994289][T11468] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4183: comm syz.3.2184: Allocating blocks 1-17 which overlap fs metadata
[  210.016702][T11488] loop2: detected capacity change from 0 to 512
[  210.035279][T11488] ext4 filesystem being mounted at /428/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  210.126215][T11494] loop3: detected capacity change from 0 to 512
[  210.152163][T11494] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.2192: Failed to acquire dquot type 1
[  210.169151][T11494] EXT4-fs (loop3): 1 truncate cleaned up
[  210.175698][T11494] ext4 filesystem being mounted at /467/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  210.196744][T11494] EXT4-fs: Cannot change quota options when quota turned on
[  210.298824][T11507] loop2: detected capacity change from 0 to 1024
[  210.305675][T11507] EXT4-fs: Ignoring removed nomblk_io_submit option
[  210.313191][T11507] EXT4-fs: Ignoring removed nobh option
[  210.391263][T11519] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.2196: Allocating blocks 497-513 which overlap fs metadata
[  210.425842][T11521] netlink: 168 bytes leftover after parsing attributes in process `syz.0.2200'.
[  210.435068][T11521] netlink: 160 bytes leftover after parsing attributes in process `syz.0.2200'.
[  210.484049][T11528] 9pnet_fd: Insufficient options for proto=fd
[  210.519655][T11529] loop4: detected capacity change from 0 to 1024
[  210.530716][T11529] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  210.540555][T11529] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  210.551097][T11529] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  210.562447][T11529] EXT4-fs error (device loop4): ext4_get_journal_inode:5800: inode #5: comm syz.4.2201: unexpected bad inode w/o EXT4_IGET_BAD
[  210.599604][T11531] loop0: detected capacity change from 0 to 512
[  210.611344][T11529] EXT4-fs (loop4): no journal found
[  210.616650][T11529] EXT4-fs (loop4): can't get journal size
[  210.627402][T11529] EXT4-fs (loop4): too many log groups per flexible block group
[  210.635185][T11507] EXT4-fs (loop2): pa ffff888107230690: logic 16, phys. 145, len 23
[  210.635215][T11529] EXT4-fs (loop4): failed to initialize mballoc (-12)
[  210.643296][T11507] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 1
[  210.650145][T11529] EXT4-fs (loop4): mount failed
[  210.688340][T11536] SELinux:  policydb version 0 does not match my version range 15-35
[  210.711481][T11536] SELinux: failed to load policy
[  210.729236][T11531] ext4 filesystem being mounted at /427/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  210.908954][T11552] netlink: 168 bytes leftover after parsing attributes in process `syz.0.2213'.
[  210.918214][T11552] netlink: 160 bytes leftover after parsing attributes in process `syz.0.2213'.
[  211.003626][T11560] loop4: detected capacity change from 0 to 512
[  211.160134][T11573] SELinux:  policydb version 0 does not match my version range 15-35
[  211.174724][T11573] SELinux: failed to load policy
[  211.182971][T11560] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.2214: Failed to acquire dquot type 1
[  211.226006][T11560] EXT4-fs (loop4): 1 truncate cleaned up
[  211.320829][T11560] ext4 filesystem being mounted at /428/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  211.515270][T11591] netlink: 168 bytes leftover after parsing attributes in process `syz.3.2225'.
[  211.552159][T11588] loop4: detected capacity change from 0 to 512
[  211.563739][T11588] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.2224: Failed to acquire dquot type 1
[  211.576125][T11588] EXT4-fs (loop4): 1 truncate cleaned up
[  211.589431][T11594] loop3: detected capacity change from 0 to 512
[  211.590822][T11588] ext4 filesystem being mounted at /431/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  211.621564][T11594] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.2226: Failed to acquire dquot type 1
[  211.644716][T11594] EXT4-fs (loop3): 1 truncate cleaned up
[  211.654483][T11588] EXT4-fs: Cannot change quota options when quota turned on
[  211.670882][T11594] ext4 filesystem being mounted at /480/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  211.718474][T11594] EXT4-fs: Cannot change quota options when quota turned on
[  211.754355][T11607] loop3: detected capacity change from 0 to 1024
[  211.761136][T11607] EXT4-fs: Ignoring removed nomblk_io_submit option
[  211.767865][T11607] EXT4-fs: Ignoring removed nobh option
[  211.876792][T11612] loop2: detected capacity change from 0 to 512
[  211.902837][T11612] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.2231: Failed to acquire dquot type 1
[  211.991926][T11612] EXT4-fs (loop2): 1 truncate cleaned up
[  211.998225][T11612] ext4 filesystem being mounted at /433/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  212.073883][T11624] SELinux:  policydb version 0 does not match my version range 15-35
[  212.087939][T11624] SELinux: failed to load policy
[  212.132493][T11629] SELinux:  policydb version 0 does not match my version range 15-35
[  212.142105][T11629] SELinux: failed to load policy
[  212.196757][T11635] 9pnet_fd: Insufficient options for proto=fd
[  212.268623][T11607] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4183: comm syz.3.2230: Allocating blocks 1-17 which overlap fs metadata
[  212.308215][T11607] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4183: comm syz.3.2230: Allocating blocks 1-17 which overlap fs metadata
[  212.393232][T11641] loop9: detected capacity change from 0 to 7
[  212.399477][T11641] Buffer I/O error on dev loop9, logical block 0, async page read
[  212.407515][T11641] Buffer I/O error on dev loop9, logical block 0, async page read
[  212.415393][T11641]  loop9: unable to read partition table
[  212.421257][T11641] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  212.421257][T11641] 
) failed (rc=-5)
[  212.438353][T11646] loop3: detected capacity change from 0 to 512
[  212.452431][T11646] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.2243: Failed to acquire dquot type 1
[  212.464406][T11646] EXT4-fs (loop3): 1 truncate cleaned up
[  212.472044][T11646] ext4 filesystem being mounted at /482/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  212.518079][T11654] loop2: detected capacity change from 0 to 1024
[  212.525686][T11654] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  212.535516][T11654] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  212.548502][T11654] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  212.561329][T11654] EXT4-fs error (device loop2): ext4_get_journal_inode:5800: inode #5: comm syz.2.2245: unexpected bad inode w/o EXT4_IGET_BAD
[  212.575018][T11654] EXT4-fs (loop2): no journal found
[  212.580294][T11654] EXT4-fs (loop2): can't get journal size
[  212.588115][T11656] loop3: detected capacity change from 0 to 512
[  212.597451][T11654] EXT4-fs (loop2): too many log groups per flexible block group
[  212.605244][T11654] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  212.612994][T11654] EXT4-fs (loop2): mount failed
[  212.666700][T11656] ext4 filesystem being mounted at /483/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  212.754746][T11672] 9pnet_fd: Insufficient options for proto=fd
[  212.868534][T11682] loop4: detected capacity change from 0 to 1024
[  212.960575][T11684] loop3: detected capacity change from 0 to 512
[  213.005422][T11684] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.2253: Failed to acquire dquot type 1
[  213.060118][T11693] __nla_validate_parse: 2 callbacks suppressed
[  213.060150][T11693] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2251'.
[  213.092858][T11684] EXT4-fs (loop3): 1 truncate cleaned up
[  213.107908][T11684] ext4 filesystem being mounted at /487/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  213.139333][T11693] syz!: rxe_newlink: already configured on team_slave_0
[  213.174379][T11698] loop0: detected capacity change from 0 to 512
[  213.233566][T11698] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.2256: Failed to acquire dquot type 1
[  213.273231][T11677] EXT4-fs: Cannot change quota options when quota turned on
[  213.295791][T11698] EXT4-fs (loop0): 1 truncate cleaned up
[  213.317537][T11698] ext4 filesystem being mounted at /438/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  213.803999][T11713] loop0: detected capacity change from 0 to 1024
[  213.833011][T11713] EXT4-fs: Ignoring removed nomblk_io_submit option
[  213.856376][T11713] EXT4-fs: Ignoring removed nobh option
[  213.902762][T11724] 9pnet_fd: Insufficient options for proto=fd
[  214.006517][T11731] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4183: comm syz.0.2260: Allocating blocks 449-513 which overlap fs metadata
[  214.042007][T11728] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2264'.
[  214.084786][T11730] loop3: detected capacity change from 0 to 512
[  214.155943][   T29] kauditd_printk_skb: 549 callbacks suppressed
[  214.155957][   T29] audit: type=1326 audit(1758940352.236:16782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11738 comm="syz.1.2267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f791da6eec9 code=0x7ffc0000
[  214.228157][T11730] ext4 filesystem being mounted at /490/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  214.246181][   T29] audit: type=1326 audit(1758940352.266:16783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11738 comm="syz.1.2267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f791da6eec9 code=0x7ffc0000
[  214.270310][   T29] audit: type=1326 audit(1758940352.266:16784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11738 comm="syz.1.2267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f791da6eec9 code=0x7ffc0000
[  214.294172][   T29] audit: type=1326 audit(1758940352.266:16785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11738 comm="syz.1.2267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f791da6eec9 code=0x7ffc0000
[  214.318228][   T29] audit: type=1326 audit(1758940352.276:16786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11738 comm="syz.1.2267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f791da6eec9 code=0x7ffc0000
[  214.342061][   T29] audit: type=1326 audit(1758940352.276:16787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11738 comm="syz.1.2267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f791da6eec9 code=0x7ffc0000
[  214.365716][   T29] audit: type=1326 audit(1758940352.276:16788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11738 comm="syz.1.2267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f791da6eec9 code=0x7ffc0000
[  214.389692][   T29] audit: type=1326 audit(1758940352.276:16789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11738 comm="syz.1.2267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f791da6eec9 code=0x7ffc0000
[  214.413430][   T29] audit: type=1326 audit(1758940352.276:16790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11738 comm="syz.1.2267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f791da6eec9 code=0x7ffc0000
[  214.437180][   T29] audit: type=1326 audit(1758940352.276:16791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11738 comm="syz.1.2267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f791da6eec9 code=0x7ffc0000
[  214.496657][T11745] SELinux:  policydb version 0 does not match my version range 15-35
[  214.507325][T11745] SELinux: failed to load policy
[  214.526730][T11742] loop2: detected capacity change from 0 to 512
[  214.544680][T11742] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.2268: Failed to acquire dquot type 1
[  214.557990][T11742] EXT4-fs (loop2): 1 truncate cleaned up
[  214.565578][T11742] ext4 filesystem being mounted at /445/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  214.585778][T11742] EXT4-fs: Cannot change quota options when quota turned on
[  214.601874][T11713] EXT4-fs (loop0): pa ffff888107230620: logic 48, phys. 193, len 20
[  214.610017][T11713] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  214.706488][T11771] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2271'.
[  214.716778][T11771] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  214.744029][T11774] loop2: detected capacity change from 0 to 1024
[  214.751719][T11774] EXT4-fs: Ignoring removed nomblk_io_submit option
[  214.758895][T11774] EXT4-fs: Ignoring removed nobh option
[  214.811078][T11781] loop0: detected capacity change from 0 to 512
[  214.849019][T11781] EXT4-fs: Ignoring removed mblk_io_submit option
[  214.856381][T11781] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  214.868189][T11781] EXT4-fs (loop0): 1 truncate cleaned up
[  215.235574][T11774] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.2277: Allocating blocks 1-17 which overlap fs metadata
[  215.269475][T11774] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.2277: Allocating blocks 1-17 which overlap fs metadata
[  215.398010][T11789] loop2: detected capacity change from 0 to 512
[  215.486152][T11794] SELinux:  policydb version 0 does not match my version range 15-35
[  215.514818][T11789] ext4 filesystem being mounted at /448/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  215.525126][T11794] SELinux: failed to load policy
[  215.628770][T11802] loop2: detected capacity change from 0 to 1024
[  215.667918][T11802] EXT4-fs: Ignoring removed nomblk_io_submit option
[  215.704282][T11802] EXT4-fs: Ignoring removed nobh option
[  215.841944][T11819] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.2285: Allocating blocks 449-513 which overlap fs metadata
[  215.963598][T11821] netlink: 168 bytes leftover after parsing attributes in process `syz.3.2291'.
[  215.972882][T11821] netlink: 160 bytes leftover after parsing attributes in process `syz.3.2291'.
[  215.994592][T11802] EXT4-fs (loop2): pa ffff88810719b230: logic 48, phys. 193, len 20
[  216.002691][T11802] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  216.086520][T11827] loop3: detected capacity change from 0 to 1024
[  216.126071][T11827] EXT4-fs: Ignoring removed nomblk_io_submit option
[  216.138560][T11827] EXT4-fs: Ignoring removed nobh option
[  216.209264][T11837] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2297'.
[  216.310479][T11841] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4183: comm syz.3.2293: Allocating blocks 449-513 which overlap fs metadata
[  216.333247][T11835] loop2: detected capacity change from 0 to 512
[  216.406933][T11835] ext4 filesystem being mounted at /452/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  216.520576][T11840] EXT4-fs (loop3): pa ffff88810719b230: logic 48, phys. 193, len 20
[  216.529043][T11840] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  216.677481][T11860] SELinux:  policydb version 0 does not match my version range 15-35
[  216.710324][T11860] SELinux: failed to load policy
[  216.754535][T11864] loop0: detected capacity change from 0 to 1024
[  216.771643][T11864] EXT4-fs: Ignoring removed nomblk_io_submit option
[  216.779736][T11866] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2308'.
[  216.783311][T11864] EXT4-fs: Ignoring removed nobh option
[  216.904708][T11872] loop3: detected capacity change from 0 to 512
[  216.932598][T11872] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.2310: Failed to acquire dquot type 1
[  216.950729][T11878] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4183: comm syz.0.2307: Allocating blocks 449-513 which overlap fs metadata
[  216.991486][T11872] EXT4-fs (loop3): 1 truncate cleaned up
[  217.006574][T11872] ext4 filesystem being mounted at /500/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  217.122970][T11864] EXT4-fs (loop0): pa ffff88810719b070: logic 48, phys. 193, len 20
[  217.131055][T11864] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  217.257735][T11883] loop3: detected capacity change from 0 to 512
[  217.399588][T11887] loop9: detected capacity change from 0 to 7
[  217.405885][T11887] Buffer I/O error on dev loop9, logical block 0, async page read
[  217.413779][T11887] Buffer I/O error on dev loop9, logical block 0, async page read
[  217.421829][T11887]  loop9: unable to read partition table
[  217.427565][T11887] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  217.427565][T11887] 
) failed (rc=-5)
[  217.489071][T11883] ext4 filesystem being mounted at /502/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  217.524503][T11897] SELinux:  policydb version 0 does not match my version range 15-35
[  217.539164][T11897] SELinux: failed to load policy
[  217.553721][T11899] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2318'.
[  217.637147][T11905] loop0: detected capacity change from 0 to 512
[  217.689358][T11913] loop3: detected capacity change from 0 to 1024
[  217.697417][T11905] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.2321: Failed to acquire dquot type 1
[  217.700136][T11913] EXT4-fs: Ignoring removed nomblk_io_submit option
[  217.715529][T11913] EXT4-fs: Ignoring removed nobh option
[  217.722634][T11905] EXT4-fs (loop0): 1 truncate cleaned up
[  217.728869][T11905] ext4 filesystem being mounted at /450/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  217.736356][T11918] loop4: detected capacity change from 0 to 512
[  217.763098][T11918] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.2325: Failed to acquire dquot type 1
[  217.775341][T11918] EXT4-fs (loop4): 1 truncate cleaned up
[  217.782936][T11918] ext4 filesystem being mounted at /441/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  217.836840][T11918] EXT4-fs: Cannot change quota options when quota turned on
[  217.925565][T11930] netlink: 168 bytes leftover after parsing attributes in process `syz.0.2327'.
[  217.934865][T11930] netlink: 160 bytes leftover after parsing attributes in process `syz.0.2327'.
[  218.073757][T11937] loop4: detected capacity change from 0 to 512
[  218.114736][T11937] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.2328: Failed to acquire dquot type 1
[  218.320059][T11937] EXT4-fs (loop4): 1 truncate cleaned up
[  218.437746][T11937] ext4 filesystem being mounted at /442/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  218.545897][T11947] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2330'.
[  218.813394][T11933] EXT4-fs: Cannot change quota options when quota turned on
[  219.027069][T11951] loop0: detected capacity change from 0 to 512
[  219.138525][T11951] ext4 filesystem being mounted at /454/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  219.154633][T11958] loop4: detected capacity change from 0 to 1024
[  219.188253][T11958] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  219.198143][T11958] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  219.270410][T11958] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  219.302192][T11962] loop3: detected capacity change from 0 to 1024
[  219.313342][T11958] EXT4-fs error (device loop4): ext4_get_journal_inode:5800: inode #5: comm syz.4.2334: unexpected bad inode w/o EXT4_IGET_BAD
[  219.335185][T11962] EXT4-fs: Ignoring removed nomblk_io_submit option
[  219.350687][T11962] EXT4-fs: Ignoring removed nobh option
[  219.366757][T11958] EXT4-fs (loop4): no journal found
[  219.372528][T11958] EXT4-fs (loop4): can't get journal size
[  219.394309][T11964] loop0: detected capacity change from 0 to 512
[  219.418705][T11964] __quota_error: 382 callbacks suppressed
[  219.418782][T11964] Quota error (device loop0): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  219.434825][T11964] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  219.444899][T11964] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.2337: Failed to acquire dquot type 1
[  219.463777][T11958] EXT4-fs (loop4): too many log groups per flexible block group
[  219.471605][T11958] EXT4-fs (loop4): failed to initialize mballoc (-12)
[  219.499135][T11958] EXT4-fs (loop4): mount failed
[  219.521537][T11973] netlink: 168 bytes leftover after parsing attributes in process `syz.1.2339'.
[  219.530752][T11973] netlink: 160 bytes leftover after parsing attributes in process `syz.1.2339'.
[  219.545181][T11964] EXT4-fs (loop0): 1 truncate cleaned up
[  219.551782][T11964] ext4 filesystem being mounted at /455/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  219.610834][   T29] audit: type=1326 audit(1758940357.696:17164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11983 comm="syz.1.2343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f791da6eec9 code=0x7ffc0000
[  219.682322][   T29] audit: type=1326 audit(1758940357.716:17165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11983 comm="syz.1.2343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7f791da6eec9 code=0x7ffc0000
[  219.706420][   T29] audit: type=1326 audit(1758940357.716:17166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11983 comm="syz.1.2343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f791da6eec9 code=0x7ffc0000
[  219.730547][   T29] audit: type=1326 audit(1758940357.716:17167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11983 comm="syz.1.2343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f791da6eec9 code=0x7ffc0000
[  219.754453][   T29] audit: type=1326 audit(1758940357.716:17168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11983 comm="syz.1.2343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f791da6eec9 code=0x7ffc0000
[  219.778764][   T29] audit: type=1326 audit(1758940357.716:17169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11983 comm="syz.1.2343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f791da6eec9 code=0x7ffc0000
[  219.802589][   T29] audit: type=1326 audit(1758940357.716:17170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11983 comm="syz.1.2343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f791da6eec9 code=0x7ffc0000
[  219.826188][   T29] audit: type=1326 audit(1758940357.716:17171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11983 comm="syz.1.2343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f791da6eec9 code=0x7ffc0000
[  219.852058][T11984] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2343'.
[  219.873806][T11994] loop0: detected capacity change from 0 to 512
[  219.891821][T11988] loop4: detected capacity change from 0 to 512
[  219.926336][T11988] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.2344: Failed to acquire dquot type 1
[  219.939479][T12005] loop2: detected capacity change from 0 to 1024
[  219.958966][T11988] EXT4-fs (loop4): 1 truncate cleaned up
[  219.966406][T11988] ext4 filesystem being mounted at /445/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  219.978884][T12002] loop3: detected capacity change from 0 to 512
[  219.980563][T12005] EXT4-fs: Ignoring removed nomblk_io_submit option
[  219.995130][T12005] EXT4-fs: Ignoring removed nobh option
[  220.004566][T11994] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.2341: Failed to acquire dquot type 1
[  220.051591][T11994] EXT4-fs (loop0): 1 truncate cleaned up
[  220.095927][T12002] ext4 filesystem being mounted at /510/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  220.108286][T11994] ext4 filesystem being mounted at /456/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  220.167442][T12018] netlink: 168 bytes leftover after parsing attributes in process `syz.2.2350'.
[  220.167466][T12018] netlink: 160 bytes leftover after parsing attributes in process `syz.2.2350'.
[  220.189264][T11982] EXT4-fs: Cannot change quota options when quota turned on
[  220.269237][T12024] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2352'.
[  220.269271][T12024] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2352'.
[  220.286746][T12020] loop2: detected capacity change from 0 to 512
[  220.355427][T12020] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.2351: Failed to acquire dquot type 1
[  220.375287][T12020] EXT4-fs (loop2): 1 truncate cleaned up
[  220.383514][T12020] ext4 filesystem being mounted at /461/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  220.511237][T12037] loop0: detected capacity change from 0 to 512
[  220.546299][T12046] netlink: 168 bytes leftover after parsing attributes in process `syz.4.2361'.
[  220.555493][T12046] netlink: 160 bytes leftover after parsing attributes in process `syz.4.2361'.
[  220.583269][T12040] loop9: detected capacity change from 0 to 7
[  220.589619][T12040] Buffer I/O error on dev loop9, logical block 0, async page read
[  220.597656][T12040] Buffer I/O error on dev loop9, logical block 0, async page read
[  220.605614][T12040]  loop9: unable to read partition table
[  220.611306][T12040] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  220.611306][T12040] 
) failed (rc=-5)
[  220.630384][T12043] loop2: detected capacity change from 0 to 512
[  220.656919][T12043] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.2359: Failed to acquire dquot type 1
[  220.677797][T12037] ext4 filesystem being mounted at /461/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  220.737245][T12043] EXT4-fs (loop2): 1 truncate cleaned up
[  220.761448][T12043] ext4 filesystem being mounted at /463/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  220.765065][T12057] loop4: detected capacity change from 0 to 512
[  220.825683][T12057] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.2362: Failed to acquire dquot type 1
[  220.850313][T12057] EXT4-fs (loop4): 1 truncate cleaned up
[  220.860664][T12057] ext4 filesystem being mounted at /448/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  220.875740][T12071] loop3: detected capacity change from 0 to 512
[  220.913364][T12071] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.2363: Failed to acquire dquot type 1
[  220.916881][T12055] EXT4-fs: Cannot change quota options when quota turned on
[  220.934239][T12071] EXT4-fs (loop3): 1 truncate cleaned up
[  220.950585][T12071] ext4 filesystem being mounted at /513/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  220.993433][T12060] EXT4-fs: Cannot change quota options when quota turned on
[  221.108590][T12096] loop4: detected capacity change from 0 to 512
[  221.117523][T12100] loop3: detected capacity change from 0 to 1024
[  221.125849][T12102] loop2: detected capacity change from 0 to 1024
[  221.126956][T12100] EXT4-fs: Ignoring removed nomblk_io_submit option
[  221.133687][T12102] EXT4-fs: Ignoring removed nomblk_io_submit option
[  221.140559][T12100] EXT4-fs: Ignoring removed nobh option
[  221.148216][T12102] EXT4-fs: Ignoring removed nobh option
[  221.158425][T12096] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.2375: Failed to acquire dquot type 1
[  221.181551][T12096] EXT4-fs (loop4): 1 truncate cleaned up
[  221.188061][T12096] ext4 filesystem being mounted at /450/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  221.455984][T12136] loop3: detected capacity change from 0 to 512
[  221.468002][T12127] loop4: detected capacity change from 0 to 512
[  221.513800][T12136] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.2385: Failed to acquire dquot type 1
[  221.526513][T12136] EXT4-fs (loop3): 1 truncate cleaned up
[  221.536114][T12127] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.2384: Failed to acquire dquot type 1
[  221.563956][T12136] ext4 filesystem being mounted at /517/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  221.610481][T12127] EXT4-fs (loop4): 1 truncate cleaned up
[  221.616976][T12127] ext4 filesystem being mounted at /452/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  221.637106][T12131] EXT4-fs: Cannot change quota options when quota turned on
[  221.722250][T12123] EXT4-fs: Cannot change quota options when quota turned on
[  221.777470][T12156] loop3: detected capacity change from 0 to 1024
[  221.785932][T12156] EXT4-fs: Ignoring removed nomblk_io_submit option
[  221.792975][T12156] EXT4-fs: Ignoring removed nobh option
[  221.805711][T12102] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.2377: Allocating blocks 1-17 which overlap fs metadata
[  221.822779][T12126] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.2377: Allocating blocks 1-17 which overlap fs metadata
[  221.845275][T12159] loop4: detected capacity change from 0 to 512
[  221.851899][T12160] loop0: detected capacity change from 0 to 512
[  221.869508][T12160] ext4 filesystem being mounted at /473/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  221.887017][T12102] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.2377: Allocating blocks 1-17 which overlap fs metadata
[  221.910983][T12159] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.2393: Failed to acquire dquot type 1
[  221.912258][ T3302] EXT4-fs unmount: 113 callbacks suppressed
[  221.912276][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.940779][T12126] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.2377: Allocating blocks 1-17 which overlap fs metadata
[  221.959677][T12168] loop3: detected capacity change from 0 to 1024
[  221.967017][T12168] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  221.967757][T12159] EXT4-fs (loop4): 1 truncate cleaned up
[  221.976990][T12168] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  221.977073][T12168] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  222.003623][T12159] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  222.016733][T12168] EXT4-fs error (device loop3): ext4_get_journal_inode:5800: inode #5: comm syz.3.2395: unexpected bad inode w/o EXT4_IGET_BAD
[  222.030263][T12159] ext4 filesystem being mounted at /453/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  222.040901][T12168] EXT4-fs (loop3): no journal found
[  222.046237][T12168] EXT4-fs (loop3): can't get journal size
[  222.054951][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.064013][T12168] EXT4-fs (loop3): too many log groups per flexible block group
[  222.071828][T12168] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  222.110861][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.140395][T12168] EXT4-fs (loop3): mount failed
[  222.166254][T12187] SELinux:  policydb version 0 does not match my version range 15-35
[  222.175623][T12187] SELinux: failed to load policy
[  222.218199][T12186] loop4: detected capacity change from 0 to 512
[  222.259236][T12194] loop2: detected capacity change from 0 to 1024
[  222.268635][T12194] EXT4-fs: Ignoring removed nomblk_io_submit option
[  222.275956][T12194] EXT4-fs: Ignoring removed nobh option
[  222.280534][T12186] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.2401: Failed to acquire dquot type 1
[  222.309860][T12186] EXT4-fs (loop4): 1 truncate cleaned up
[  222.316874][T12186] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  222.329894][T12186] ext4 filesystem being mounted at /454/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  222.346498][T12194] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  222.363994][T12186] EXT4-fs: Cannot change quota options when quota turned on
[  222.495659][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.889034][T12219] loop4: detected capacity change from 0 to 512
[  222.960253][T12219] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.2411: Failed to acquire dquot type 1
[  223.076107][T12219] EXT4-fs (loop4): 1 truncate cleaned up
[  223.120889][T12219] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  223.270369][T12219] ext4 filesystem being mounted at /457/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  223.348514][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.365831][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.402962][T12225] loop3: detected capacity change from 0 to 1024
[  223.430095][T12225] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  223.439982][T12225] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  223.504079][T12225] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  223.517452][T12231] SELinux:  policydb version 0 does not match my version range 15-35
[  223.546721][T12225] EXT4-fs error (device loop3): ext4_get_journal_inode:5800: inode #5: comm syz.3.2412: unexpected bad inode w/o EXT4_IGET_BAD
[  223.563064][T12231] SELinux: failed to load policy
[  223.604440][T12225] EXT4-fs (loop3): no journal found
[  223.609817][T12225] EXT4-fs (loop3): can't get journal size
[  223.634892][T12235] can0: slcan on ttyS3.
[  223.661629][T12225] EXT4-fs (loop3): too many log groups per flexible block group
[  223.669435][T12225] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  223.727602][T12225] EXT4-fs (loop3): mount failed
[  223.734530][T12241] FAULT_INJECTION: forcing a failure.
[  223.734530][T12241] name failslab, interval 1, probability 0, space 0, times 0
[  223.747459][T12241] CPU: 1 UID: 0 PID: 12241 Comm: syz.4.2418 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  223.747524][T12241] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  223.747540][T12241] Call Trace:
[  223.747548][T12241]  <TASK>
[  223.747556][T12241]  __dump_stack+0x1d/0x30
[  223.747582][T12241]  dump_stack_lvl+0xe8/0x140
[  223.747648][T12241]  dump_stack+0x15/0x1b
[  223.747709][T12241]  should_fail_ex+0x265/0x280
[  223.747736][T12241]  should_failslab+0x8c/0xb0
[  223.747767][T12241]  kmem_cache_alloc_node_noprof+0x57/0x320
[  223.747799][T12241]  ? __alloc_skb+0x101/0x320
[  223.747829][T12241]  __alloc_skb+0x101/0x320
[  223.747848][T12241]  inet_netconf_notify_devconf+0x173/0x230
[  223.747891][T12241]  inetdev_event+0x743/0xc10
[  223.747914][T12241]  ? __pfx_ib_netdevice_event+0x10/0x10
[  223.747965][T12241]  ? ib_netdevice_event+0x186/0x5f0
[  223.748068][T12241]  ? __pfx_arp_netdev_event+0x10/0x10
[  223.748103][T12241]  ? __pfx_inetdev_event+0x10/0x10
[  223.748132][T12241]  raw_notifier_call_chain+0x6f/0x1b0
[  223.748158][T12241]  ? call_netdevice_notifiers_info+0x9c/0x100
[  223.748234][T12241]  call_netdevice_notifiers_info+0xae/0x100
[  223.748274][T12241]  unregister_netdevice_many_notify+0xda9/0x15d0
[  223.748316][T12241]  unregister_netdevice_queue+0x1f5/0x220
[  223.748397][T12241]  unregister_netdev+0xb3/0xe0
[  223.748428][T12241]  unregister_candev+0x15/0x20
[  223.748468][T12241]  slcan_close+0x46/0xe0
[  223.748578][T12241]  ? __pfx_slcan_close+0x10/0x10
[  223.748610][T12241]  tty_ldisc_kill+0x8a/0x140
[  223.748634][T12241]  tty_ldisc_hangup+0x2fa/0x370
[  223.748659][T12241]  __tty_hangup+0x3c2/0x540
[  223.748745][T12241]  tty_ioctl+0x601/0xb80
[  223.748937][T12241]  ? __pfx_tty_ioctl+0x10/0x10
[  223.748962][T12241]  __se_sys_ioctl+0xcb/0x140
[  223.748995][T12241]  __x64_sys_ioctl+0x43/0x50
[  223.749085][T12241]  x64_sys_call+0x1816/0x2ff0
[  223.749114][T12241]  do_syscall_64+0xd2/0x200
[  223.749218][T12241]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  223.749384][T12241]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  223.749421][T12241]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.749449][T12241] RIP: 0033:0x7ff76968eec9
[  223.749469][T12241] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  223.749538][T12241] RSP: 002b:00007ff7680d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  223.749563][T12241] RAX: ffffffffffffffda RBX: 00007ff7698e6090 RCX: 00007ff76968eec9
[  223.749579][T12241] RDX: 0000000000000002 RSI: 0000000000005437 RDI: 0000000000000003
[  223.749595][T12241] RBP: 00007ff7680d6090 R08: 0000000000000000 R09: 0000000000000000
[  223.749611][T12241] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  223.749626][T12241] R13: 00007ff7698e6128 R14: 00007ff7698e6090 R15: 00007ffcad1a9db8
[  223.749661][T12241]  </TASK>
[  224.042114][T12243] __nla_validate_parse: 12 callbacks suppressed
[  224.042134][T12243] netlink: 168 bytes leftover after parsing attributes in process `syz.2.2420'.
[  224.057730][T12243] netlink: 160 bytes leftover after parsing attributes in process `syz.2.2420'.
[  224.070458][T12241] can0 (unregistered): slcan off ttyS3.
[  224.224259][T12246] loop4: detected capacity change from 0 to 512
[  224.241070][T12246] EXT4-fs: Ignoring removed mblk_io_submit option
[  224.254114][T12246] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  224.293046][T12246] EXT4-fs (loop4): 1 truncate cleaned up
[  224.319720][T12246] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  224.373955][T12254] can0: slcan on ttyS3.
[  224.513368][   T29] kauditd_printk_skb: 785 callbacks suppressed
[  224.513387][   T29] audit: type=1400 audit(1758940362.596:17933): avc:  denied  { write } for  pid=12259 comm="syz.3.2425" name="softnet_stat" dev="proc" ino=4026532391 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  224.544949][T12254] can0 (unregistered): slcan off ttyS3.
[  224.627898][T12273] 9pnet_fd: Insufficient options for proto=fd
[  224.681727][T12279] 9pnet_fd: Insufficient options for proto=fd
[  224.702250][T12280] netlink: 168 bytes leftover after parsing attributes in process `syz.2.2431'.
[  224.711899][T12280] netlink: 160 bytes leftover after parsing attributes in process `syz.2.2431'.
[  224.777437][T12276] loop0: detected capacity change from 0 to 512
[  224.832207][T12276] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  224.847441][T12276] ext4 filesystem being mounted at /475/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  224.870204][T12293] loop2: detected capacity change from 0 to 512
[  224.884615][T12293] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  224.902028][T12293] ext4 filesystem being mounted at /482/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  224.910760][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.166289][T12299] loop0: detected capacity change from 0 to 1024
[  225.193326][T12299] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  225.490259][T12306] loop3: detected capacity change from 0 to 512
[  225.565004][T12306] Quota error (device loop3): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  225.575156][T12306] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  225.585158][T12306] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.2436: Failed to acquire dquot type 1
[  225.767705][T12306] EXT4-fs (loop3): 1 truncate cleaned up
[  225.842072][T12306] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  225.898121][T12306] ext4 filesystem being mounted at /525/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  225.973003][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.990380][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.003553][ T3299] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.072229][   T29] audit: type=1326 audit(1758940364.156:17934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12314 comm="syz.2.2440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f8e79eec9 code=0x7ffc0000
[  226.096244][   T29] audit: type=1326 audit(1758940364.156:17935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12314 comm="syz.2.2440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7f1f8e79eec9 code=0x7ffc0000
[  226.120477][   T29] audit: type=1326 audit(1758940364.156:17936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12314 comm="syz.2.2440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f8e79eec9 code=0x7ffc0000
[  226.144541][   T29] audit: type=1326 audit(1758940364.156:17937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12314 comm="syz.2.2440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1f8e79eec9 code=0x7ffc0000
[  226.224297][T12320] loop4: detected capacity change from 0 to 512
[  226.224760][   T29] audit: type=1326 audit(1758940364.306:17938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12314 comm="syz.2.2440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f8e79eec9 code=0x7ffc0000
[  226.224798][   T29] audit: type=1326 audit(1758940364.306:17939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12314 comm="syz.2.2440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f8e79eec9 code=0x7ffc0000
[  226.234393][T12326] 9pnet_fd: Insufficient options for proto=fd
[  226.267699][T12320] Quota error (device loop4): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  226.267748][T12320] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.2439: Failed to acquire dquot type 1
[  226.268286][T12320] EXT4-fs (loop4): 1 truncate cleaned up
[  226.268773][T12320] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  226.268875][T12320] ext4 filesystem being mounted at /462/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  226.277539][T12320] EXT4-fs: Cannot change quota options when quota turned on
[  226.290363][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.476396][T12337] loop9: detected capacity change from 0 to 7
[  226.476576][T12337] Buffer I/O error on dev loop9, logical block 0, async page read
[  226.476605][T12337] Buffer I/O error on dev loop9, logical block 0, async page read
[  226.476619][T12337]  loop9: unable to read partition table
[  226.476636][T12337] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  226.476636][T12337] 
) failed (rc=-5)
[  226.719704][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.777690][T12350] loop4: detected capacity change from 0 to 512
[  226.799541][T12350] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  226.799626][T12350] ext4 filesystem being mounted at /465/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  226.912305][T12355] loop9: detected capacity change from 0 to 7
[  226.918696][T12355] Buffer I/O error on dev loop9, logical block 0, async page read
[  226.926622][T12355] Buffer I/O error on dev loop9, logical block 0, async page read
[  226.934487][T12355]  loop9: unable to read partition table
[  226.940150][T12355] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  226.940150][T12355] 
) failed (rc=-5)
[  226.975627][T12361] can0: slcan on ttyS3.
[  227.051415][T12367] 9pnet_fd: Insufficient options for proto=fd
[  227.071485][T12363] can0 (unregistered): slcan off ttyS3.
[  227.351810][T12380] loop0: detected capacity change from 0 to 1024
[  227.444213][T12380] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  227.877507][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.099223][T12393] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2466'.
[  228.108365][T12393] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2466'.
[  228.319203][T12398] 9pnet_fd: Insufficient options for proto=fd
[  228.345099][T12403] SELinux:  policydb version 0 does not match my version range 15-35
[  228.353650][T12403] SELinux: failed to load policy
[  228.365484][T12397] loop9: detected capacity change from 0 to 7
[  228.371937][T12397] Buffer I/O error on dev loop9, logical block 0, async page read
[  228.380157][T12397] Buffer I/O error on dev loop9, logical block 0, async page read
[  228.388680][T12397]  loop9: unable to read partition table
[  228.394492][T12397] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  228.394492][T12397] 
) failed (rc=-5)
[  228.486607][T12409] loop3: detected capacity change from 0 to 512
[  228.662920][T12419] process 'syz.4.2475' launched '/dev/fd/43' with NULL argv: empty string added
[  228.686180][T12409] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.2472: Failed to acquire dquot type 1
[  228.802314][T12409] EXT4-fs (loop3): 1 truncate cleaned up
[  228.809766][T12409] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  228.823233][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.823878][T12409] ext4 filesystem being mounted at /536/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  228.864722][T12409] EXT4-fs: Cannot change quota options when quota turned on
[  228.884432][ T3299] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.958474][T12440] SELinux:  policydb version 0 does not match my version range 15-35
[  228.968412][T12440] SELinux: failed to load policy
[  229.018173][T12443] loop3: detected capacity change from 0 to 512
[  229.057470][T12443] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  229.072967][T12443] ext4 filesystem being mounted at /539/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  229.139328][ T3299] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.174851][T12447] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2484'.
[  229.292295][T12453] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2487'.
[  229.316218][T12459] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2489'.
[  229.424500][T12461] loop9: detected capacity change from 0 to 7
[  229.430824][T12461] Buffer I/O error on dev loop9, logical block 0, async page read
[  229.438757][T12461] Buffer I/O error on dev loop9, logical block 0, async page read
[  229.446789][T12461]  loop9: unable to read partition table
[  229.452697][T12461] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  229.452697][T12461] 
) failed (rc=-5)
[  229.567167][T12470] loop3: detected capacity change from 0 to 512
[  229.612142][T12470] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  229.626644][T12470] ext4 filesystem being mounted at /545/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  229.726527][ T3299] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.749104][T12479] loop4: detected capacity change from 0 to 1024
[  229.756070][T12479] EXT4-fs: Ignoring removed nomblk_io_submit option
[  229.763044][T12479] EXT4-fs: Ignoring removed nobh option
[  229.788672][T12479] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  229.807755][   T29] kauditd_printk_skb: 140 callbacks suppressed
[  229.807772][   T29] audit: type=1326 audit(1758940367.886:18077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12487 comm="syz.0.2500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d899eec9 code=0x7ffc0000
[  229.837950][   T29] audit: type=1326 audit(1758940367.886:18078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12487 comm="syz.0.2500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d899eec9 code=0x7ffc0000
[  229.838018][   T29] audit: type=1326 audit(1758940367.886:18079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12487 comm="syz.0.2500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7f44d899eec9 code=0x7ffc0000
[  229.860267][   T29] audit: type=1326 audit(1758940367.886:18080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12487 comm="syz.0.2500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d899eec9 code=0x7ffc0000
[  229.873919][T12490] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2500'.
[  229.885877][   T29] audit: type=1326 audit(1758940367.886:18081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12487 comm="syz.0.2500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d899eec9 code=0x7ffc0000
[  229.914569][T12477] loop2: detected capacity change from 0 to 512
[  229.918426][   T29] audit: type=1326 audit(1758940367.886:18082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12487 comm="syz.0.2500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44d899eec9 code=0x7ffc0000
[  229.918460][   T29] audit: type=1326 audit(1758940367.886:18083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12487 comm="syz.0.2500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d899eec9 code=0x7ffc0000
[  229.918494][   T29] audit: type=1326 audit(1758940367.886:18084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12487 comm="syz.0.2500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44d899eec9 code=0x7ffc0000
[  230.019551][   T29] audit: type=1326 audit(1758940367.886:18085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12487 comm="syz.0.2500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d899eec9 code=0x7ffc0000
[  230.043506][   T29] audit: type=1326 audit(1758940367.886:18086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12487 comm="syz.0.2500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44d899eec9 code=0x7ffc0000
[  230.109430][T12497] netlink: 272 bytes leftover after parsing attributes in process `syz.3.2501'.
[  230.161294][T12477] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  230.183342][T12477] ext4 filesystem being mounted at /492/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  230.393899][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  230.515818][T12510] loop2: detected capacity change from 0 to 1024
[  230.522632][T12510] EXT4-fs: Ignoring removed nomblk_io_submit option
[  230.529611][T12510] EXT4-fs: Ignoring removed nobh option
[  230.540805][T12479] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.2498: Allocating blocks 1-17 which overlap fs metadata
[  230.666561][T12515] loop9: detected capacity change from 0 to 7
[  230.673102][T12515] Buffer I/O error on dev loop9, logical block 0, async page read
[  230.678879][T12491] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.2498: Allocating blocks 1-17 which overlap fs metadata
[  230.681061][T12515] Buffer I/O error on dev loop9, logical block 0, async page read
[  230.703192][T12515]  loop9: unable to read partition table
[  230.709046][T12515] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  230.709046][T12515] 
) failed (rc=-5)
[  230.725778][T12510] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  230.756509][T12479] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.2498: Allocating blocks 1-17 which overlap fs metadata
[  230.889198][T12519] loop0: detected capacity change from 0 to 512
[  230.902069][T12491] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.2498: Allocating blocks 1-17 which overlap fs metadata
[  230.990979][T12521] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.2505: Allocating blocks 449-513 which overlap fs metadata
[  231.024470][T12519] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  231.044164][T12519] ext4 filesystem being mounted at /489/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  231.125853][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  231.232681][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  231.263461][T12520] EXT4-fs (loop2): pa ffff88810719b000: logic 48, phys. 193, len 20
[  231.272787][T12520] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  231.322019][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  231.440913][T12543] netlink: 168 bytes leftover after parsing attributes in process `syz.4.2516'.
[  231.450120][T12543] netlink: 160 bytes leftover after parsing attributes in process `syz.4.2516'.
[  231.484372][T12545] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2518'.
[  231.493440][T12545] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2518'.
[  231.635333][T12547] loop9: detected capacity change from 0 to 7
[  231.641647][T12547] Buffer I/O error on dev loop9, logical block 0, async page read
[  231.649517][T12547] Buffer I/O error on dev loop9, logical block 0, async page read
[  231.657414][T12547]  loop9: unable to read partition table
[  231.663120][T12547] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  231.663120][T12547] 
) failed (rc=-5)
[  231.764707][T12549] loop2: detected capacity change from 0 to 512
[  231.807924][T12549] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  231.823367][T12549] ext4 filesystem being mounted at /496/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  231.914372][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  231.940180][T12556] loop4: detected capacity change from 0 to 512
[  231.962363][T12567] netlink: 168 bytes leftover after parsing attributes in process `syz.3.2528'.
[  232.034456][T12556] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  232.052752][T12556] ext4 filesystem being mounted at /479/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  232.111727][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  232.145230][T12587] FAULT_INJECTION: forcing a failure.
[  232.145230][T12587] name failslab, interval 1, probability 0, space 0, times 0
[  232.158454][T12587] CPU: 1 UID: 0 PID: 12587 Comm: syz.0.2536 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  232.158496][T12587] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  232.158512][T12587] Call Trace:
[  232.158521][T12587]  <TASK>
[  232.158529][T12587]  __dump_stack+0x1d/0x30
[  232.158638][T12587]  dump_stack_lvl+0xe8/0x140
[  232.158691][T12587]  dump_stack+0x15/0x1b
[  232.158712][T12587]  should_fail_ex+0x265/0x280
[  232.158745][T12587]  should_failslab+0x8c/0xb0
[  232.158778][T12587]  kmem_cache_alloc_node_noprof+0x57/0x320
[  232.158818][T12587]  ? __alloc_skb+0x101/0x320
[  232.158857][T12587]  __alloc_skb+0x101/0x320
[  232.158883][T12587]  netlink_alloc_large_skb+0xba/0xf0
[  232.158944][T12587]  netlink_sendmsg+0x3cf/0x6b0
[  232.158976][T12587]  ? __pfx_netlink_sendmsg+0x10/0x10
[  232.159014][T12587]  __sock_sendmsg+0x145/0x180
[  232.159107][T12587]  ____sys_sendmsg+0x31e/0x4e0
[  232.159167][T12587]  ___sys_sendmsg+0x17b/0x1d0
[  232.159212][T12587]  __x64_sys_sendmsg+0xd4/0x160
[  232.159244][T12587]  x64_sys_call+0x191e/0x2ff0
[  232.159311][T12587]  do_syscall_64+0xd2/0x200
[  232.159387][T12587]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  232.159416][T12587]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  232.159452][T12587]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  232.159482][T12587] RIP: 0033:0x7f44d899eec9
[  232.159501][T12587] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  232.159521][T12587] RSP: 002b:00007f44d7407038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  232.159645][T12587] RAX: ffffffffffffffda RBX: 00007f44d8bf5fa0 RCX: 00007f44d899eec9
[  232.159662][T12587] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[  232.159678][T12587] RBP: 00007f44d7407090 R08: 0000000000000000 R09: 0000000000000000
[  232.159694][T12587] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  232.159710][T12587] R13: 00007f44d8bf6038 R14: 00007f44d8bf5fa0 R15: 00007ffe226766c8
[  232.159733][T12587]  </TASK>
[  233.186437][T12614] loop2: detected capacity change from 0 to 512
[  233.214285][T12614] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  233.237873][T12614] ext4 filesystem being mounted at /499/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  233.253740][T12621] SELinux:  policydb version 0 does not match my version range 15-35
[  233.253770][T12621] SELinux: failed to load policy
[  233.281510][T12623] loop0: detected capacity change from 0 to 1024
[  233.293041][T12623] EXT4-fs: Ignoring removed nomblk_io_submit option
[  233.300101][T12623] EXT4-fs: Ignoring removed nobh option
[  233.318010][T12623] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  233.356244][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  233.447077][T12636] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4183: comm syz.0.2548: Allocating blocks 449-513 which overlap fs metadata
[  233.500464][T12635] loop4: detected capacity change from 0 to 1024
[  233.508081][T12635] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  233.518031][T12635] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  233.532683][T12635] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  233.552699][T12635] EXT4-fs error (device loop4): ext4_get_journal_inode:5800: inode #5: comm syz.4.2552: unexpected bad inode w/o EXT4_IGET_BAD
[  233.575823][T12635] EXT4-fs (loop4): no journal found
[  233.581151][T12635] EXT4-fs (loop4): can't get journal size
[  233.606171][T12635] EXT4-fs (loop4): too many log groups per flexible block group
[  233.614178][T12635] EXT4-fs (loop4): failed to initialize mballoc (-12)
[  233.625062][T12635] EXT4-fs (loop4): mount failed
[  233.638590][T12631] EXT4-fs (loop0): pa ffff88810719b2a0: logic 48, phys. 193, len 20
[  233.646709][T12631] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  233.757247][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  233.759565][T12658] SELinux:  policydb version 0 does not match my version range 15-35
[  233.775149][T12658] SELinux: failed to load policy
[  233.853839][T12662] loop0: detected capacity change from 0 to 512
[  233.923706][T12671] loop4: detected capacity change from 0 to 512
[  233.948194][T12662] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  233.964269][T12671] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  233.978425][T12662] ext4 filesystem being mounted at /498/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  233.980318][T12671] ext4 filesystem being mounted at /487/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  234.066129][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  234.131919][T12678] 9pnet_fd: Insufficient options for proto=fd
[  234.324034][T12691] loop0: detected capacity change from 0 to 512
[  234.351605][T12691] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.2571: Failed to acquire dquot type 1
[  234.549527][T12699] SELinux:  policydb version 0 does not match my version range 15-35
[  234.563770][T12699] SELinux: failed to load policy
[  234.590944][T12691] EXT4-fs (loop0): 1 truncate cleaned up
[  234.597102][T12691] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  234.617624][T12691] ext4 filesystem being mounted at /502/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  234.640735][T12691] EXT4-fs: Cannot change quota options when quota turned on
[  234.682068][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  234.835144][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  234.885882][T12709] loop2: detected capacity change from 0 to 1024
[  234.900676][T12709] EXT4-fs: Ignoring removed nomblk_io_submit option
[  234.907840][T12709] EXT4-fs: Ignoring removed nobh option
[  234.977677][T12705] loop3: detected capacity change from 0 to 512
[  235.034200][T12709] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  235.065300][T12708] loop4: detected capacity change from 0 to 512
[  235.108781][T12705] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  235.133934][T12708] __quota_error: 957 callbacks suppressed
[  235.133958][T12708] Quota error (device loop4): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  235.149907][T12708] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  235.160121][T12708] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.2576: Failed to acquire dquot type 1
[  235.191074][T12705] ext4 filesystem being mounted at /558/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  235.226934][T12708] EXT4-fs (loop4): 1 truncate cleaned up
[  235.295976][T12708] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  235.324582][   T29] audit: type=1326 audit(1758940373.406:19042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12722 comm="syz.0.2579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d899eec9 code=0x7ffc0000
[  235.324750][   T29] audit: type=1326 audit(1758940373.406:19043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12722 comm="syz.0.2579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44d899eec9 code=0x7ffc0000
[  235.324972][   T29] audit: type=1326 audit(1758940373.406:19044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12722 comm="syz.0.2579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d899eec9 code=0x7ffc0000
[  235.325195][   T29] audit: type=1326 audit(1758940373.406:19045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12722 comm="syz.0.2579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44d899eec9 code=0x7ffc0000
[  235.325309][   T29] audit: type=1326 audit(1758940373.406:19046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12722 comm="syz.0.2579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d899eec9 code=0x7ffc0000
[  235.325581][   T29] audit: type=1326 audit(1758940373.406:19047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12722 comm="syz.0.2579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44d899eec9 code=0x7ffc0000
[  235.326277][   T29] audit: type=1326 audit(1758940373.406:19048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12722 comm="syz.0.2579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d899eec9 code=0x7ffc0000
[  235.326748][   T29] audit: type=1326 audit(1758940373.406:19049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12722 comm="syz.0.2579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44d899eec9 code=0x7ffc0000
[  235.361027][T12708] ext4 filesystem being mounted at /488/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  235.393340][T12708] EXT4-fs: Cannot change quota options when quota turned on
[  235.451552][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  235.643278][T12709] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.2577: Allocating blocks 1-17 which overlap fs metadata
[  235.744186][ T3299] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  235.771934][T12709] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.2577: Allocating blocks 1-17 which overlap fs metadata
[  235.789420][T12720] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.2577: Allocating blocks 1-17 which overlap fs metadata
[  235.810690][T12735] 9pnet_fd: Insufficient options for proto=fd
[  235.839386][T12737] SELinux:  policydb version 0 does not match my version range 15-35
[  235.855175][T12737] SELinux: failed to load policy
[  235.863084][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  235.971625][T12745] usb usb8: usbfs: process 12745 (syz.3.2588) did not claim interface 0 before use
[  235.993576][T12745] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  236.023611][T12745] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  236.025929][T12751] __nla_validate_parse: 5 callbacks suppressed
[  236.025948][T12751] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2578'.
[  236.033754][T12745] netlink: 27 bytes leftover after parsing attributes in process `syz.3.2588'.
[  236.061255][T12745] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2588'.
[  236.157979][T12758] netlink: 272 bytes leftover after parsing attributes in process `syz.2.2590'.
[  236.202837][T12760] loop4: detected capacity change from 0 to 512
[  236.246342][T12760] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  236.260785][T12760] ext4 filesystem being mounted at /493/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  236.315327][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  236.377666][T12773] 9pnet_fd: Insufficient options for proto=fd
[  236.451843][T12779] SELinux:  policydb version 0 does not match my version range 15-35
[  236.459992][T12779] SELinux: failed to load policy
[  236.539325][T12781] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2600'.
[  236.593693][T12785] loop0: detected capacity change from 0 to 1024
[  236.673987][T12785] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  236.683848][T12785] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  236.707112][T12785] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  236.722642][T12785] EXT4-fs error (device loop0): ext4_get_journal_inode:5800: inode #5: comm syz.0.2601: unexpected bad inode w/o EXT4_IGET_BAD
[  236.738129][T12785] EXT4-fs (loop0): no journal found
[  236.743505][T12785] EXT4-fs (loop0): can't get journal size
[  236.750421][T12785] EXT4-fs (loop0): too many log groups per flexible block group
[  236.758217][T12785] EXT4-fs (loop0): failed to initialize mballoc (-12)
[  236.765422][T12785] EXT4-fs (loop0): mount failed
[  236.884091][T12801] 9pnet_fd: Insufficient options for proto=fd
[  236.953508][T12799] loop4: detected capacity change from 0 to 512
[  236.974694][T12798] loop0: detected capacity change from 0 to 512
[  237.012239][T12799] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  237.012808][T12799] ext4 filesystem being mounted at /500/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  237.071647][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  237.100422][T12812] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2611'.
[  237.123461][T12815] SELinux:  policydb version 0 does not match my version range 15-35
[  237.138587][T12815] SELinux: failed to load policy
[  237.143552][T12798] ext4 filesystem being mounted at /511/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  237.147978][T12817] loop2: detected capacity change from 0 to 1024
[  237.201502][T12817] EXT4-fs: Ignoring removed nomblk_io_submit option
[  237.201624][T12817] EXT4-fs: Ignoring removed nobh option
[  237.420613][T12832] 9pnet_fd: Insufficient options for proto=fd
[  237.427500][T12836] loop3: detected capacity change from 0 to 1024
[  237.432410][T12835] netlink: 272 bytes leftover after parsing attributes in process `syz.4.2619'.
[  237.449742][T12836] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  237.459657][T12836] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  237.471098][T12836] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  237.482334][T12836] EXT4-fs error (device loop3): ext4_get_journal_inode:5800: inode #5: comm syz.3.2616: unexpected bad inode w/o EXT4_IGET_BAD
[  237.496419][T12836] EXT4-fs (loop3): no journal found
[  237.502722][T12836] EXT4-fs (loop3): can't get journal size
[  237.542904][T12836] EXT4-fs (loop3): too many log groups per flexible block group
[  237.550943][T12836] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  237.560694][T12836] EXT4-fs (loop3): mount failed
[  237.668837][T12848] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2623'.
[  237.768710][T12850] FAULT_INJECTION: forcing a failure.
[  237.768710][T12850] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  237.776456][T12817] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.2612: Allocating blocks 1-17 which overlap fs metadata
[  237.782063][T12850] CPU: 1 UID: 0 PID: 12850 Comm: syz.1.2624 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  237.782094][T12850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  237.782112][T12850] Call Trace:
[  237.782121][T12850]  <TASK>
[  237.782132][T12850]  __dump_stack+0x1d/0x30
[  237.782189][T12850]  dump_stack_lvl+0xe8/0x140
[  237.782265][T12850]  dump_stack+0x15/0x1b
[  237.782344][T12850]  should_fail_ex+0x265/0x280
[  237.782439][T12850]  should_fail+0xb/0x20
[  237.782467][T12850]  should_fail_usercopy+0x1a/0x20
[  237.782502][T12850]  _copy_to_user+0x20/0xa0
[  237.782654][T12850]  simple_read_from_buffer+0xb5/0x130
[  237.782687][T12850]  proc_fail_nth_read+0x10e/0x150
[  237.782725][T12850]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  237.782793][T12850]  vfs_read+0x1a5/0x770
[  237.782821][T12850]  ? __rcu_read_unlock+0x4f/0x70
[  237.782905][T12850]  ? __fget_files+0x184/0x1c0
[  237.782936][T12850]  ? pick_next_task_fair+0x20/0x2b0
[  237.782969][T12850]  ksys_read+0xda/0x1a0
[  237.783001][T12850]  __x64_sys_read+0x40/0x50
[  237.783027][T12850]  x64_sys_call+0x27bc/0x2ff0
[  237.783063][T12850]  do_syscall_64+0xd2/0x200
[  237.783103][T12850]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  237.783136][T12850]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  237.783239][T12850]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  237.783269][T12850] RIP: 0033:0x7f791da6d8dc
[  237.783291][T12850] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  237.783321][T12850] RSP: 002b:00007f791c4d7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  237.783393][T12850] RAX: ffffffffffffffda RBX: 00007f791dcc5fa0 RCX: 00007f791da6d8dc
[  237.783410][T12850] RDX: 000000000000000f RSI: 00007f791c4d70a0 RDI: 0000000000000009
[  237.783427][T12850] RBP: 00007f791c4d7090 R08: 0000000000000000 R09: 000000000000001c
[  237.783444][T12850] R10: 0000000022004001 R11: 0000000000000246 R12: 0000000000000001
[  237.783461][T12850] R13: 00007f791dcc6038 R14: 00007f791dcc5fa0 R15: 00007ffc6645a6b8
[  237.783614][T12850]  </TASK>
[  238.012237][T12833] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.2612: Allocating blocks 1-17 which overlap fs metadata
[  238.038315][T12833] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.2612: Allocating blocks 1-17 which overlap fs metadata
[  238.055093][T12817] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.2612: Allocating blocks 1-17 which overlap fs metadata
[  238.198519][T12876] loop3: detected capacity change from 0 to 512
[  238.211985][T12876] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.2630: Failed to acquire dquot type 1
[  238.224650][T12876] EXT4-fs (loop3): 1 truncate cleaned up
[  238.230899][T12876] ext4 filesystem being mounted at /573/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  238.251963][T12876] EXT4-fs: Cannot change quota options when quota turned on
[  238.309266][T12888] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2633'.
[  238.319019][T12888] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2633'.
[  238.356376][T12895] loop3: detected capacity change from 0 to 1024
[  238.369252][T12895] EXT4-fs: Ignoring removed nomblk_io_submit option
[  238.377466][T12892] loop4: detected capacity change from 0 to 512
[  238.385398][T12895] EXT4-fs: Ignoring removed nobh option
[  238.446034][T12903] loop0: detected capacity change from 0 to 1024
[  238.453627][T12903] EXT4-fs: Ignoring removed nomblk_io_submit option
[  238.460742][T12903] EXT4-fs: Ignoring removed nobh option
[  238.474444][T12906] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4183: comm syz.3.2636: Allocating blocks 497-513 which overlap fs metadata
[  238.485297][T12892] ext4 filesystem being mounted at /505/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  238.768409][T12895] EXT4-fs (loop3): pa ffff888107230930: logic 16, phys. 145, len 23
[  238.776545][T12895] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 1
[  238.799994][T12922] loop2: detected capacity change from 0 to 1024
[  239.665926][T12939] loop4: detected capacity change from 0 to 512
[  239.729345][T12945] loop3: detected capacity change from 0 to 512
[  239.774447][T12939] ext4 filesystem being mounted at /508/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  239.985728][T12945] ext4 filesystem being mounted at /577/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  240.168336][T12970] loop4: detected capacity change from 0 to 1024
[  240.206645][T12970] EXT4-fs: Ignoring removed nomblk_io_submit option
[  240.233880][T12970] EXT4-fs: Ignoring removed nobh option
[  240.286876][   T29] kauditd_printk_skb: 190 callbacks suppressed
[  240.286896][   T29] audit: type=1326 audit(1758940378.366:19238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12976 comm="syz.2.2661" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f8e79eec9 code=0x7ffc0000
[  240.311965][T12979] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.2658: Allocating blocks 497-513 which overlap fs metadata
[  240.346496][   T29] audit: type=1326 audit(1758940378.366:19239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12976 comm="syz.2.2661" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f8e79eec9 code=0x7ffc0000
[  240.370657][   T29] audit: type=1326 audit(1758940378.366:19240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12976 comm="syz.2.2661" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1f8e79eec9 code=0x7ffc0000
[  240.394445][   T29] audit: type=1326 audit(1758940378.366:19241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12976 comm="syz.2.2661" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f8e79eec9 code=0x7ffc0000
[  240.418104][   T29] audit: type=1326 audit(1758940378.366:19242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12976 comm="syz.2.2661" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f8e79eec9 code=0x7ffc0000
[  240.442495][   T29] audit: type=1326 audit(1758940378.366:19243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12976 comm="syz.2.2661" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1f8e79eec9 code=0x7ffc0000
[  240.466244][   T29] audit: type=1326 audit(1758940378.366:19244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12976 comm="syz.2.2661" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f8e79eec9 code=0x7ffc0000
[  240.489980][   T29] audit: type=1326 audit(1758940378.366:19245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12976 comm="syz.2.2661" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1f8e79eec9 code=0x7ffc0000
[  240.514096][   T29] audit: type=1326 audit(1758940378.366:19246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12976 comm="syz.2.2661" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f8e79eec9 code=0x7ffc0000
[  240.515006][T12983] loop2: detected capacity change from 0 to 512
[  240.537988][   T29] audit: type=1326 audit(1758940378.366:19247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12976 comm="syz.2.2661" exe="/root/syz-executor" sig=0 arch=c000003e syscall=119 compat=0 ip=0x7f1f8e79eec9 code=0x7ffc0000
[  240.572979][T12983] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.2663: Failed to acquire dquot type 1
[  240.585807][T12983] EXT4-fs (loop2): 1 truncate cleaned up
[  240.592011][T12983] ext4 filesystem being mounted at /514/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  240.660807][T12970] EXT4-fs (loop4): pa ffff888107230b60: logic 16, phys. 145, len 23
[  240.668940][T12970] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 1
[  240.682164][T12993] loop2: detected capacity change from 0 to 512
[  240.721126][T12993] ext4 filesystem being mounted at /515/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  240.826986][T13004] loop4: detected capacity change from 0 to 512
[  240.881679][T13014] loop0: detected capacity change from 0 to 1024
[  240.888796][T13014] EXT4-fs: Ignoring removed nomblk_io_submit option
[  240.895559][T13014] EXT4-fs: Ignoring removed nobh option
[  240.944295][T13004] ext4 filesystem being mounted at /513/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  240.982483][T13021] loop3: detected capacity change from 0 to 1024
[  241.675946][T13036] SELinux:  policydb version 0 does not match my version range 15-35
[  241.693219][T13036] SELinux: failed to load policy
[  241.900983][T13045] __nla_validate_parse: 4 callbacks suppressed
[  241.901010][T13045] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2677'.
[  242.118371][T13052] loop4: detected capacity change from 0 to 512
[  242.160837][T13052] EXT4-fs: Ignoring removed mblk_io_submit option
[  242.183366][T13052] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  242.213051][T13054] 9pnet_fd: Insufficient options for proto=fd
[  242.239953][T13052] EXT4-fs (loop4): 1 truncate cleaned up
[  242.398486][T13072] loop0: detected capacity change from 0 to 512
[  242.447842][T13072] EXT4-fs: Ignoring removed mblk_io_submit option
[  242.456356][T13074] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2692'.
[  242.472239][T13072] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  242.502812][T13072] EXT4-fs (loop0): 1 truncate cleaned up
[  242.514224][T13079] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2694'.
[  242.663162][T13085] netlink: 272 bytes leftover after parsing attributes in process `syz.3.2697'.
[  242.690186][T13087] loop2: detected capacity change from 0 to 512
[  242.717296][T13087] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.2698: Failed to acquire dquot type 1
[  242.733480][T13087] EXT4-fs (loop2): 1 truncate cleaned up
[  242.740272][T13087] ext4 filesystem being mounted at /518/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  242.999527][T13103] SELinux:  policydb version 0 does not match my version range 15-35
[  243.008036][T13103] SELinux: failed to load policy
[  243.088146][T13110] loop4: detected capacity change from 0 to 1024
[  243.095022][T13110] EXT4-fs: Ignoring removed nomblk_io_submit option
[  243.101974][T13110] EXT4-fs: Ignoring removed nobh option
[  243.348095][T13125] loop2: detected capacity change from 0 to 512
[  243.373101][T13125] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.2708: Failed to acquire dquot type 1
[  243.426636][T13125] EXT4-fs (loop2): 1 truncate cleaned up
[  243.433003][T13125] ext4 filesystem being mounted at /522/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  243.506069][T13132] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13132 comm=syz.0.2710
[  243.571051][T13137] loop2: detected capacity change from 0 to 512
[  243.582715][T13137] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.2711: Failed to acquire dquot type 1
[  243.617883][T13137] EXT4-fs (loop2): 1 truncate cleaned up
[  243.643247][T13137] ext4 filesystem being mounted at /523/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  243.732071][T13149] loop2: detected capacity change from 0 to 1024
[  243.741115][T13149] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  243.751187][T13149] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  243.761852][T13149] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  243.763622][T13110] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.2705: Allocating blocks 1-17 which overlap fs metadata
[  243.787611][T13149] EXT4-fs error (device loop2): ext4_get_journal_inode:5800: inode #5: comm syz.2.2716: unexpected bad inode w/o EXT4_IGET_BAD
[  243.802220][T13115] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.2705: Allocating blocks 1-17 which overlap fs metadata
[  243.803668][T13149] EXT4-fs (loop2): no journal found
[  243.821535][T13149] EXT4-fs (loop2): can't get journal size
[  243.831647][T13115] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.2705: Allocating blocks 1-17 which overlap fs metadata
[  243.832535][T13154] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2717'.
[  243.848213][T13110] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.2705: Allocating blocks 1-17 which overlap fs metadata
[  243.861694][T13149] EXT4-fs (loop2): too many log groups per flexible block group
[  243.877293][T13149] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  243.884324][T13149] EXT4-fs (loop2): mount failed
[  243.999748][T13167] FAULT_INJECTION: forcing a failure.
[  243.999748][T13167] name failslab, interval 1, probability 0, space 0, times 0
[  244.013223][T13167] CPU: 0 UID: 0 PID: 13167 Comm: syz.3.2723 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  244.013392][T13167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  244.013407][T13167] Call Trace:
[  244.013416][T13167]  <TASK>
[  244.013425][T13167]  __dump_stack+0x1d/0x30
[  244.013452][T13167]  dump_stack_lvl+0xe8/0x140
[  244.013477][T13167]  dump_stack+0x15/0x1b
[  244.013499][T13167]  should_fail_ex+0x265/0x280
[  244.013576][T13167]  should_failslab+0x8c/0xb0
[  244.013608][T13167]  kmem_cache_alloc_noprof+0x50/0x310
[  244.013644][T13167]  ? getname_flags+0x80/0x3b0
[  244.013682][T13167]  getname_flags+0x80/0x3b0
[  244.013758][T13167]  user_path_at+0x28/0x130
[  244.013790][T13167]  __se_sys_mount+0x25b/0x2e0
[  244.013812][T13167]  ? fput+0x8f/0xc0
[  244.013845][T13167]  __x64_sys_mount+0x67/0x80
[  244.013875][T13167]  x64_sys_call+0x2b4d/0x2ff0
[  244.013918][T13167]  do_syscall_64+0xd2/0x200
[  244.013957][T13167]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  244.014056][T13167]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  244.014088][T13167]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  244.014157][T13167] RIP: 0033:0x7fa3bfc0eec9
[  244.014176][T13167] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  244.014264][T13167] RSP: 002b:00007fa3be677038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  244.014288][T13167] RAX: ffffffffffffffda RBX: 00007fa3bfe65fa0 RCX: 00007fa3bfc0eec9
[  244.014304][T13167] RDX: 00002000000002c0 RSI: 0000200000000080 RDI: 0000000000000000
[  244.014319][T13167] RBP: 00007fa3be677090 R08: 0000200000000240 R09: 0000000000000000
[  244.014334][T13167] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  244.014347][T13167] R13: 00007fa3bfe66038 R14: 00007fa3bfe65fa0 R15: 00007ffce86d3c58
[  244.014424][T13167]  </TASK>
[  244.016732][T13163] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2722'.
[  244.215241][T13163] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2722'.
[  244.226780][T13178] loop3: detected capacity change from 0 to 512
[  244.277424][T13186] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2730'.
[  244.293064][T13178] ext4 filesystem being mounted at /589/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  244.314323][T13185] loop2: detected capacity change from 0 to 1024
[  244.326287][T13185] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  244.326312][T13185] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  244.326350][T13185] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  244.331543][T13185] EXT4-fs error (device loop2): ext4_get_journal_inode:5800: inode #5: comm syz.2.2729: unexpected bad inode w/o EXT4_IGET_BAD
[  244.373200][T13185] EXT4-fs (loop2): no journal found
[  244.373220][T13185] EXT4-fs (loop2): can't get journal size
[  244.373464][T13185] EXT4-fs (loop2): too many log groups per flexible block group
[  244.373510][T13185] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  244.373538][T13185] EXT4-fs (loop2): mount failed
[  244.434338][T13195] loop2: detected capacity change from 0 to 512
[  244.533118][T13195] ext4 filesystem being mounted at /529/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  244.557743][T13205] loop0: detected capacity change from 0 to 512
[  244.557990][T13205] EXT4-fs: Ignoring removed nobh option
[  244.573219][T13205] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #3: comm syz.0.2738: corrupted inode contents
[  244.587309][T13205] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #3: comm syz.0.2738: mark_inode_dirty error
[  244.587750][T13205] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #3: comm syz.0.2738: corrupted inode contents
[  244.587935][T13205] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #3: comm syz.0.2738: mark_inode_dirty error
[  244.588242][T13205] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.2738: Failed to acquire dquot type 0
[  244.588822][T13205] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.2738: corrupted inode contents
[  244.588944][T13205] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #16: comm syz.0.2738: mark_inode_dirty error
[  244.589139][T13205] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.2738: corrupted inode contents
[  244.589281][T13205] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #16: comm syz.0.2738: mark_inode_dirty error
[  244.589449][T13205] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.2738: corrupted inode contents
[  244.589600][T13205] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[  244.589716][T13205] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.2738: corrupted inode contents
[  244.589904][T13205] EXT4-fs error (device loop0): ext4_truncate:4666: inode #16: comm syz.0.2738: mark_inode_dirty error
[  244.590030][T13205] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[  244.591910][T13205] EXT4-fs (loop0): 1 truncate cleaned up
[  244.592540][T13205] ext4 filesystem being mounted at /530/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  244.710893][T13212] netlink: 68 bytes leftover after parsing attributes in process `syz.4.2736'.
[  244.793596][T13216] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2740'.
[  244.832104][T13214] loop0: detected capacity change from 0 to 512
[  244.849796][T13220] loop2: detected capacity change from 0 to 512
[  244.850431][T13214] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.2739: Failed to acquire dquot type 1
[  244.889430][T13220] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.2741: Failed to acquire dquot type 1
[  244.907878][T13214] EXT4-fs (loop0): 1 truncate cleaned up
[  244.914986][T13214] ext4 filesystem being mounted at /531/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  244.927678][T13220] EXT4-fs (loop2): 1 truncate cleaned up
[  244.934208][T13220] ext4 filesystem being mounted at /530/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  244.990115][T13220] EXT4-fs: Cannot change quota options when quota turned on
[  245.069299][T13239] SELinux: ebitmap: truncated map
[  245.077421][T13239] SELinux: failed to load policy
[  245.148167][T13241] loop0: detected capacity change from 0 to 512
[  245.216907][T13241] ext4 filesystem being mounted at /534/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  245.288179][T13253] FAULT_INJECTION: forcing a failure.
[  245.288179][T13253] name failslab, interval 1, probability 0, space 0, times 0
[  245.301791][T13253] CPU: 0 UID: 0 PID: 13253 Comm: syz.1.2752 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  245.301877][T13253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  245.301958][T13253] Call Trace:
[  245.301966][T13253]  <TASK>
[  245.301975][T13253]  __dump_stack+0x1d/0x30
[  245.302002][T13253]  dump_stack_lvl+0xe8/0x140
[  245.302030][T13253]  dump_stack+0x15/0x1b
[  245.302045][T13253]  should_fail_ex+0x265/0x280
[  245.302070][T13253]  should_failslab+0x8c/0xb0
[  245.302165][T13253]  kmem_cache_alloc_node_noprof+0x57/0x320
[  245.302247][T13253]  ? __alloc_skb+0x101/0x320
[  245.302273][T13253]  __alloc_skb+0x101/0x320
[  245.302295][T13253]  ? audit_log_start+0x365/0x6c0
[  245.302335][T13253]  audit_log_start+0x380/0x6c0
[  245.302376][T13253]  audit_seccomp+0x48/0x100
[  245.302440][T13253]  ? __seccomp_filter+0x68c/0x10d0
[  245.302468][T13253]  __seccomp_filter+0x69d/0x10d0
[  245.302496][T13253]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  245.302581][T13253]  ? vfs_write+0x7e8/0x960
[  245.302610][T13253]  ? __rcu_read_unlock+0x4f/0x70
[  245.302637][T13253]  ? __fget_files+0x184/0x1c0
[  245.302674][T13253]  __secure_computing+0x82/0x150
[  245.302702][T13253]  syscall_trace_enter+0xcf/0x1e0
[  245.302731][T13253]  do_syscall_64+0xac/0x200
[  245.302770][T13253]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  245.302801][T13253]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  245.302836][T13253]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  245.302876][T13253] RIP: 0033:0x7f791da6eec9
[  245.302909][T13253] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  245.302934][T13253] RSP: 002b:00007f791c4d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  245.302960][T13253] RAX: ffffffffffffffda RBX: 00007f791dcc5fa0 RCX: 00007f791da6eec9
[  245.302980][T13253] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00002000000008c0
[  245.302996][T13253] RBP: 00007f791c4d7090 R08: 0000000000000000 R09: 0000000000000000
[  245.303012][T13253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  245.303025][T13253] R13: 00007f791dcc6038 R14: 00007f791dcc5fa0 R15: 00007ffc6645a6b8
[  245.303048][T13253]  </TASK>
[  245.303062][T13253] audit_log_lost: 109 callbacks suppressed
[  245.303075][T13253] audit: audit_lost=3 audit_rate_limit=0 audit_backlog_limit=64
[  245.463013][T13254] loop0: detected capacity change from 0 to 512
[  245.475832][T13253] audit: out of memory in audit_log_start
[  245.550366][   T29] audit: type=1326 audit(1758940383.566:19343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13252 comm="syz.1.2752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f791da6d8dc code=0x7ffc0000
[  245.583183][   T29] audit: type=1326 audit(1758940383.566:19344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13252 comm="syz.1.2752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f791da6d97f code=0x7ffc0000
[  245.608133][   T29] audit: type=1326 audit(1758940383.566:19345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13252 comm="syz.1.2752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f791da6db2a code=0x7ffc0000
[  245.631586][   T29] audit: type=1326 audit(1758940383.566:19346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13252 comm="syz.1.2752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f791da6eec9 code=0x7ffc0000
[  245.656086][   T29] audit: type=1326 audit(1758940383.566:19347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13252 comm="syz.1.2752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f791da6eec9 code=0x7ffc0000
[  245.736776][T13254] ext4 filesystem being mounted at /535/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  245.803657][T13264] loop4: detected capacity change from 0 to 128
[  245.816565][T13264] ext4 filesystem being mounted at /527/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  245.827837][T13264] syz.4.2757(13264): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[  245.828893][T13264] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 !
[  245.829169][T13264] EXT4-fs warning (device loop4): ext4_group_extend:1891: can't read last block, resize aborted
[  245.829716][   T29] audit: type=1400 audit(1758940383.906:19348): avc:  denied  { setattr } for  pid=13263 comm="syz.4.2757" name="/" dev="loop4" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  246.057166][T13283] loop2: detected capacity change from 0 to 512
[  246.064451][T13283] EXT4-fs: Ignoring removed mblk_io_submit option
[  246.071760][T13283] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  246.083177][T13283] EXT4-fs (loop2): 1 truncate cleaned up
[  246.088945][   T29] audit: type=1326 audit(1758940384.176:19349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13285 comm="syz.3.2758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3bfc0eec9 code=0x7ffc0000
[  246.112775][   T29] audit: type=1326 audit(1758940384.176:19350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13285 comm="syz.3.2758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3bfc0eec9 code=0x7ffc0000
[  246.146633][T13290] loop3: detected capacity change from 0 to 1024
[  246.160777][T13290] EXT4-fs: Ignoring removed nomblk_io_submit option
[  246.168187][T13290] EXT4-fs: Ignoring removed nobh option
[  246.591769][T13295] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4183: comm syz.3.2765: Allocating blocks 1-17 which overlap fs metadata
[  246.631654][T13290] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4183: comm syz.3.2765: Allocating blocks 1-17 which overlap fs metadata
[  246.718686][T13298] loop0: detected capacity change from 0 to 512
[  246.793195][T13298] ext4 filesystem being mounted at /537/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  246.934132][T13318] loop3: detected capacity change from 0 to 512
[  246.955609][T13318] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.2770: Failed to acquire dquot type 1
[  246.975114][T13318] EXT4-fs (loop3): 1 truncate cleaned up
[  246.986136][T13318] ext4 filesystem being mounted at /595/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  247.009019][T13311] EXT4-fs: Cannot change quota options when quota turned on
[  247.012853][T13326] loop2: detected capacity change from 0 to 512
[  247.076232][T13326] ext4 filesystem being mounted at /535/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  247.077606][T13338] __nla_validate_parse: 2 callbacks suppressed
[  247.077625][T13338] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2777'.
[  247.483032][T13352] lo speed is unknown, defaulting to 1000
[  247.581777][T13352] chnl_net:caif_netlink_parms(): no params data found
[  247.628906][T13352] bridge0: port 1(bridge_slave_0) entered blocking state
[  247.636136][T13352] bridge0: port 1(bridge_slave_0) entered disabled state
[  247.643667][T13352] bridge_slave_0: entered allmulticast mode
[  247.650254][T13352] bridge_slave_0: entered promiscuous mode
[  247.657313][T13352] bridge0: port 2(bridge_slave_1) entered blocking state
[  247.664798][T13352] bridge0: port 2(bridge_slave_1) entered disabled state
[  247.672403][T13352] bridge_slave_1: entered allmulticast mode
[  247.679381][T13352] bridge_slave_1: entered promiscuous mode
[  247.716690][T13352] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  247.728595][T13352] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  247.754037][ T5239] geneve0: left allmulticast mode
[  247.759401][ T5239] geneve0: left promiscuous mode
[  247.765079][ T5239] bridge0: port 1(geneve0) entered disabled state
[  247.791435][ T5239] bond1 (unregistering): (slave bridge0): Releasing active interface
[  247.819607][T13375] loop0: detected capacity change from 0 to 512
[  247.832082][T13375] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.2786: Failed to acquire dquot type 1
[  247.844974][T13375] EXT4-fs (loop0): 1 truncate cleaned up
[  247.851932][ T5239] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  247.852098][T13375] ext4 filesystem being mounted at /539/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  247.873883][ T5239] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  247.886127][ T5239] bond0 (unregistering): Released all slaves
[  247.889957][T13375] EXT4-fs: Cannot change quota options when quota turned on
[  247.895286][ T5239] bond1 (unregistering): Released all slaves
[  247.909226][T13352] team0: Port device team_slave_0 added
[  247.918396][T13352] team0: Port device team_slave_1 added
[  247.953553][T13352] batman_adv: batadv0: Adding interface: batadv_slave_0
[  247.960855][T13352] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  247.987932][T13352] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  248.001668][T13352] batman_adv: batadv0: Adding interface: batadv_slave_1
[  248.008739][T13352] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  248.036093][T13352] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  248.068915][T13388] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2790'.
[  248.078235][T13388] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2790'.
[  248.106057][ T5239] hsr_slave_0: left promiscuous mode
[  248.113727][ T5239] hsr_slave_1: left promiscuous mode
[  248.120258][ T5239] batman_adv: batadv0: Removing interface: batadv_slave_0
[  248.128592][ T5239] batman_adv: batadv0: Removing interface: batadv_slave_1
[  248.164352][ T5239] team0 (unregistering): Port device team_slave_1 removed
[  248.179118][ T5239] team0 (unregistering): Port device team_slave_0 removed
[  248.236416][T13352] hsr_slave_0: entered promiscuous mode
[  248.244214][T13352] hsr_slave_1: entered promiscuous mode
[  248.289550][T13402] loop0: detected capacity change from 0 to 512
[  248.297955][T13402] EXT4-fs: Ignoring removed mblk_io_submit option
[  248.305202][T13402] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  248.326661][T13404] loop2: detected capacity change from 0 to 512
[  248.336058][T13402] EXT4-fs (loop0): 1 truncate cleaned up
[  248.354007][T13404] ext4 filesystem being mounted at /539/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  248.544146][T13412] loop4: detected capacity change from 0 to 512
[  248.597497][T13412] ext4 filesystem being mounted at /531/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  248.742354][T13352] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  248.752747][T13352] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  248.871539][T13352] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  248.882110][T13421] loop4: detected capacity change from 0 to 512
[  248.898796][T13352] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  248.950936][T13421] ext4 filesystem being mounted at /534/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  248.954976][T13352] 8021q: adding VLAN 0 to HW filter on device bond0
[  249.003973][T13352] 8021q: adding VLAN 0 to HW filter on device team0
[  249.029589][   T31] bridge0: port 1(bridge_slave_0) entered blocking state
[  249.036981][   T31] bridge0: port 1(bridge_slave_0) entered forwarding state
[  249.058281][T13352] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  249.069091][T13352] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  249.085429][   T31] bridge0: port 2(bridge_slave_1) entered blocking state
[  249.085501][   T31] bridge0: port 2(bridge_slave_1) entered forwarding state
[  249.167167][T13352] 8021q: adding VLAN 0 to HW filter on device batadv0
[  249.193291][T13438] loop4: detected capacity change from 0 to 512
[  249.240754][T13438] ext4 filesystem being mounted at /536/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  249.342771][T13352] veth0_vlan: entered promiscuous mode
[  249.352195][T13352] veth1_vlan: entered promiscuous mode
[  249.372034][T13352] veth0_macvtap: entered promiscuous mode
[  249.391806][T13459] loop4: detected capacity change from 0 to 512
[  249.391915][T13352] veth1_macvtap: entered promiscuous mode
[  249.396823][T13352] batman_adv: batadv0: Interface activated: batadv_slave_0
[  249.419223][T13352] batman_adv: batadv0: Interface activated: batadv_slave_1
[  249.432812][ T5239] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  249.442064][ T5239] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  249.461046][ T5239] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  249.496075][ T5239] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  249.514038][T13459] ext4 filesystem being mounted at /537/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  249.613636][T13480] loop4: detected capacity change from 0 to 512
[  249.625612][T13480] EXT4-fs: Ignoring removed mblk_io_submit option
[  249.635114][T13480] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  249.655287][T13480] EXT4-fs (loop4): 1 truncate cleaned up
[  249.719652][T13480] ==================================================================
[  249.719697][T13480] BUG: KCSAN: data-race in __writeback_single_inode / xas_clear_mark
[  249.719750][T13480] 
[  249.719762][T13480] write to 0xffff88811a43b6ac of 4 bytes by task 13486 on cpu 0:
[  249.719781][T13480]  xas_clear_mark+0x16b/0x180
[  249.719818][T13480]  __folio_start_writeback+0x2ce/0x440
[  249.719853][T13480]  ext4_bio_write_folio+0x5ad/0x9f0
[  249.719882][T13480]  mpage_process_page_bufs+0x4a1/0x620
[  249.719901][T13480]  mpage_prepare_extent_to_map+0x786/0xc00
[  249.719920][T13480]  ext4_do_writepages+0x708/0x2750
[  249.719953][T13480]  ext4_writepages+0x176/0x300
[  249.719975][T13480]  do_writepages+0x1c3/0x310
[  249.719997][T13480]  file_write_and_wait_range+0x156/0x2c0
[  249.720026][T13480]  generic_buffers_fsync_noflush+0x45/0x120
[  249.720053][T13480]  ext4_sync_file+0x1ab/0x690
[  249.720074][T13480]  vfs_fsync_range+0x10a/0x130
[  249.720094][T13480]  ext4_buffered_write_iter+0x34f/0x3c0
[  249.720130][T13480]  ext4_file_write_iter+0xdbf/0xf00
[  249.720169][T13480]  iter_file_splice_write+0x666/0xa60
[  249.720190][T13480]  direct_splice_actor+0x156/0x2a0
[  249.720209][T13480]  splice_direct_to_actor+0x312/0x680
[  249.720226][T13480]  do_splice_direct+0xda/0x150
[  249.720243][T13480]  do_sendfile+0x380/0x650
[  249.720270][T13480]  __x64_sys_sendfile64+0x105/0x150
[  249.720303][T13480]  x64_sys_call+0x2bb0/0x2ff0
[  249.720329][T13480]  do_syscall_64+0xd2/0x200
[  249.720367][T13480]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  249.720388][T13480] 
[  249.720393][T13480] read to 0xffff88811a43b6ac of 4 bytes by task 13480 on cpu 1:
[  249.720408][T13480]  __writeback_single_inode+0x1f9/0x7c0
[  249.720445][T13480]  writeback_single_inode+0x167/0x3e0
[  249.720477][T13480]  sync_inode_metadata+0x5b/0x90
[  249.720502][T13480]  generic_buffers_fsync_noflush+0xd9/0x120
[  249.720525][T13480]  ext4_sync_file+0x1ab/0x690
[  249.720550][T13480]  vfs_fsync_range+0x10a/0x130
[  249.720577][T13480]  ext4_buffered_write_iter+0x34f/0x3c0
[  249.720620][T13480]  ext4_file_write_iter+0xdbf/0xf00
[  249.720649][T13480]  iter_file_splice_write+0x666/0xa60
[  249.720667][T13480]  direct_splice_actor+0x156/0x2a0
[  249.720685][T13480]  splice_direct_to_actor+0x312/0x680
[  249.720704][T13480]  do_splice_direct+0xda/0x150
[  249.720720][T13480]  do_sendfile+0x380/0x650
[  249.720747][T13480]  __x64_sys_sendfile64+0x105/0x150
[  249.720791][T13480]  x64_sys_call+0x2bb0/0x2ff0
[  249.720812][T13480]  do_syscall_64+0xd2/0x200
[  249.720839][T13480]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  249.720862][T13480] 
[  249.720867][T13480] value changed: 0x0e000021 -> 0x04000021
[  249.720880][T13480] 
[  249.720885][T13480] Reported by Kernel Concurrency Sanitizer on:
[  249.720900][T13480] CPU: 1 UID: 0 PID: 13480 Comm: syz.4.2814 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  249.720931][T13480] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  249.720947][T13480] ==================================================================