last executing test programs:

2.43042487s ago: executing program 3 (id=5553):
socket$nl_generic(0x10, 0x3, 0x10)
socket$rds(0x15, 0x5, 0x0)
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
pipe2(0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)
r2 = syz_io_uring_setup(0x5c2, &(0x7f00000002c0)={0x0, 0x983a, 0x2, 0x1003, 0xea}, &(0x7f0000000240)=<r3=>0x0, &(0x7f0000000540)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000004c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x51, 0x0, 0x80, 0x2, 0x0, 0x127})
io_uring_enter(r2, 0x6e2, 0x3900, 0x1, 0x0, 0x0)
io_uring_enter(r2, 0x3058, 0xdf5e, 0x7, 0x0, 0x0)

2.341696191s ago: executing program 2 (id=5556):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000031c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0xe8c5}, 0x18)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r1, &(0x7f0000000200)={0x2, 0x4e24, @empty}, 0x10)
sendmmsg(r1, &(0x7f0000003a80)=[{{&(0x7f00000000c0)=@in={0x2, 0x4e24, @loopback}, 0x80, &(0x7f0000000400)=[{&(0x7f0000000240)='7', 0x1}], 0x1}}], 0x1, 0x2c000811)
close(r1)

2.136219594s ago: executing program 0 (id=5561):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='map_files\x00')
fchdir(r1)
r2 = openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getdents(r2, 0xfffffffffffffffd, 0x58)

2.109139634s ago: executing program 0 (id=5562):
shmget$private(0x0, 0x3000, 0x54001800, &(0x7f000010d000/0x3000)=nil)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, 0x0})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)
flock(r1, 0x5)
ptrace$ARCH_SHSTK_STATUS(0x1e, 0x0, 0x0, 0x5005)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f00000003c0)=@nat={'nat\x00', 0x670, 0x2, 0x328, 0x140, 0xa8, 0xfeffffff, 0x140, 0x1e8, 0x290, 0x290, 0xffffffff, 0x290, 0x290, 0x5, 0x0, {[{{@uncond, 0x0, 0x70, 0xa8}, @REDIRECT={0x38, 'REDIRECT\x00', 0x0, {0x6800, {0x0, @multicast2, @rand_addr, @port, @gre_key}}}}, {{@uncond, 0x0, 0x70, 0x98, 0x0, {0x0, 0x7}}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xa8}}, {{@uncond, 0x0, 0x70, 0xa8}, @SNAT0={0x38, 'SNAT\x00', 0x0, {0x1, {0x0, @rand_addr, @local}}}}, {{@ip={@multicast2, @multicast1, 0x0, 0x0, 'veth1_virt_wifi\x00', 'pim6reg0\x00'}, 0x0, 0x70, 0xa8}, @MASQUERADE={0x38, 'MASQUERADE\x00', 0x0, {0x1, {0x0, @initdev={0xac, 0x1e, 0xfd, 0x0}, @multicast2, @port, @icmp_id}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x388)
ioctl$sock_inet6_SIOCADDRT(r3, 0x890b, &(0x7f0000000380)={@private2, @ipv4={'\x00', '\xff\xff', @remote}, @remote, 0x3, 0x9, 0x7f, 0x100, 0x3ff, 0x200})
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB="9feb01001800000000000000300000003000000009000000000000000000000300000000020000000200000000000000000000000000000903000000070000000000001200000000000000000000002e"], 0x0, 0x51, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r5 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
flock(r5, 0x2)

2.020739485s ago: executing program 3 (id=5566):
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100020, 0x0, 0x0, 0x6, 0x3, 0x0, 0xa}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000000480)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="a10c0000000000000000320000000800170156f7ffff07000300", @ANYRES32=0x0, @ANYBLOB="0c0099000200000077000000"], 0x30}, 0x1, 0x0, 0x0, 0x40}, 0x0)
mknod(&(0x7f0000000000)='./file0\x00', 0x400, 0x4)
sendmsg$NL802154_CMD_NEW_SEC_KEY(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000200)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16, @ANYBLOB="3f9d70630000fedbdf251700000008000300", @ANYRES32=<r2=>0xffffffffffffffff, @ANYBLOB="4800308014000400403a050c5baee2004ef2b6d713459a7a2800018008000100000000001c000380080002000300000006000100fcff00000800020003000000050002"], 0x64}}, 0x10)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000400)=ANY=[@ANYRESHEX=r2, @ANYRES64=0x0, @ANYRES8=r0, @ANYRESHEX=0x0], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x3, 0xf, &(0x7f0000000300)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r3, @ANYRESHEX=r3], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x26, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r4, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc, 0x0, 0x0, 0x5}, 0x10)
r5 = socket(0x23, 0xa, 0x40)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008f00850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r6}, 0x10)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001000040000000000000000000100000a20000000000a05000000000000000000070000010900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021800000000c0a01030000000000000000070000080900020073797a31000000000900010073797a30000000005400038050000080080003400000000244000b802c0001800a0001006c696d69740000001c0002800c00014000000000000000030c00024000000000000000101400018009000100"], 0x104}}, 0x40000)
r8 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mreq(r8, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14)
r9 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_mreq(r9, 0x29, 0x1b, &(0x7f0000000040)={@dev}, 0x14)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="02d5000004002300080000000100000080000000c2ba012e520a907461d3193877c50517e7dfe45e8f33b93e9ebbe0f9d9b2a55a1ff019a12ce7fc", @ANYRES32=0x0, @ANYBLOB="45499b0ec6f4f7676a0b032d36021f20cd35ba1385b91b936c204005e5dab13964a3e842e34cf99809871c6f708171104b25e422eb4441051c3536147a47437c", @ANYBLOB='\x00'/28, @ANYRES64=r9, @ANYRES32=0x0], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000640)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b704000008000000850000000e5d283e6b886a96e3ba557b7b8e950000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sysinfo(&(0x7f0000000000)=""/12)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000340)=ANY=[@ANYRES8], &(0x7f0000000240)='GPL\x00', 0x76d, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44000000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r10}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r11 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r11, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000900)=ANY=[@ANYBLOB="440000001000090600"/20, @ANYRES32=0x0, @ANYBLOB="adffa888000000001c00128009000100626f6e64000000000c000280050001000600000008000a0079"], 0x44}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

1.869492247s ago: executing program 1 (id=5567):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$sock_int(r0, 0x1, 0x22, &(0x7f0000000080)=0xb, 0x4)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x80, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r1}, 0x18)
bind$rds(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_open_dev$vcsn(&(0x7f0000000180), 0x40008000, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket(0x28, 0x5, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b03000000000000000000000000000000000000e0da122fae5d3800b90644e2f122ce5785c7d8c4253c7a5e15c3da54466af4a91c671f82a8c4b9d97f0572813c69f82c454a6cac8f1d1f21d35ee10718d69e09ddf068972fb959c95356ca987942b7641f3d6224d06d2791987a5cbb6ebe38c2be0124e0c52552e77b3d", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
lsm_set_self_attr(0x66, 0x0, 0x40, 0x0)
connect$vsock_stream(r4, &(0x7f0000000180)={0x28, 0x0, 0x0, @local}, 0x10)
connect$vsock_stream(r4, &(0x7f0000000400)={0x28, 0x0, 0x2710, @host}, 0x10)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000000050005000200000c12000300686173683a6e65742c706f7274"], 0x4c}}, 0x2)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000140)=@generic={&(0x7f0000000040)='./file0\x00', 0x0, 0x14}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000440)={{r2}, &(0x7f00000001c0), &(0x7f0000000300)=r3}, 0x20)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000280)={r1, 0xe0, &(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, &(0x7f00000007c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x6c, &(0x7f0000000880)=[{}, {}, {}, {}, {}, {}], 0x30, 0x10, &(0x7f00000008c0), &(0x7f0000000900), 0x8, 0xa1, 0x8, 0x8, &(0x7f0000000940)}}, 0xb)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="50000000090601020000000000000000020000000900020073797a31000000000500010007000000280007800c00018008000140ffffffff0500070084000000060004404e22000006000540"], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

1.834861948s ago: executing program 1 (id=5568):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x65, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000000000180003801400010076657468305f746f5f687372000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c000380140001"], 0xfc}}, 0x0)
r2 = syz_io_uring_setup(0x416f, &(0x7f0000000780)={0x0, 0xfffffffd, 0x10100, 0x200, 0x1}, &(0x7f0000000100)=<r3=>0x0, &(0x7f00000000c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000000)=""/4, 0x4}], 0x27})
io_uring_enter(r2, 0x567, 0x1000a387, 0x0, 0x0, 0x0)

1.808019738s ago: executing program 1 (id=5569):
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_rdma(0x10, 0x3, 0x14)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=ANY=[@ANYBLOB="34000000ff0c011d0000000000000000020000080900010073797a310000000004000480050003001100000006000240001700"], 0x34}, 0x1, 0x0, 0x0, 0x4c40}, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f0000000200)={[{@jqfmt_vfsold}, {@max_batch_time={'max_batch_time', 0x3d, 0x1}}, {@debug}, {@noload}, {@nombcache}, {@noblock_validity}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000}}]}, 0xfe, 0x478, &(0x7f0000000940)="$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")
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x9135}, 0x18)
mount(0x0, &(0x7f0000000000)='.\x00', 0x0, 0x2012024, 0x0)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x38, 0x1403, 0x1, 0x70bd2c, 0x25dfdbfc, "", [{{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'dummy0\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x4c810)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000000)={<r4=>0xffffffffffffffff}, 0x111, 0x4}}, 0x20)
r5 = syz_open_dev$hidraw(0x0, 0x7, 0x80)
ioctl$EXT4_IOC_MOVE_EXT(r5, 0xc028660f, &(0x7f0000000400)={0x0, r2, 0xa, 0x1, 0x10, 0x4})
write$RDMA_USER_CM_CMD_LISTEN(r3, &(0x7f0000000040)={0x7, 0x8, 0xfa00, {r4, 0x1}}, 0x10)
write$RDMA_USER_CM_CMD_DESTROY_ID(r3, &(0x7f0000000380)={0x1, 0x10, 0xfa00, {&(0x7f0000000300), r4}}, 0x18)
sendmsg$NFT_MSG_GETFLOWTABLE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x14, 0x17, 0xa, 0x301, 0x0, 0x0, {0xa, 0x0, 0x3}}, 0x14}, 0x1, 0x0, 0x0, 0x4c011}, 0x20000800)

1.503020631s ago: executing program 3 (id=5571):
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
sendfile(r0, r0, 0x0, 0x40000f63c)
getsockopt$inet6_mreq(r0, 0x29, 0x14, &(0x7f00000000c0)={@mcast1, <r1=>0x0}, &(0x7f0000000100)=0x14)
setsockopt$MRT6_DEL_MIF(r0, 0x29, 0xcb, &(0x7f0000000140)={0x1, 0x0, 0x80, r1, 0x9}, 0xc)
sched_setscheduler(0x0, 0x2, 0x0)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/cpu_byteorder', 0x101000, 0x30)
copy_file_range(r2, 0x0, r2, 0x0, 0x7, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x56)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{}, &(0x7f0000000400), 0x0}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000006b8af8ff000010364c1807515228170000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa40000ffffb70200"/92, @ANYBLOB="0000000000000000b704000008000000850000009500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x1900000000000000, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000020000000000000", @ANYRES32, @ANYBLOB="000400"/18, @ANYRES32], 0x50)
pipe2$9p(&(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r4, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r5 = dup(r4)
write$P9_RLERRORu(r5, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r5, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r5, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r5])
r6 = creat(&(0x7f0000000380)='./file0\x00', 0x80)
write$qrtrtun(r6, &(0x7f0000000780)="fb", 0x1)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0xf896)
getsockopt$bt_BT_SECURITY(r0, 0x112, 0x4, &(0x7f0000000040), 0x2)

1.434017932s ago: executing program 2 (id=5572):
creat(&(0x7f0000000240)='./bus\x00', 0xc2)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000208500000004"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f00000009c0)={[{@nolazytime}, {@lazytime}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@bsdgroups}, {@lazytime}, {@noload}]}, 0x3, 0x45c, &(0x7f0000002400)="$eJzs3MtvG8UfAPDv+pG+m/yq/oA+gCBAlAJJk5bSAxcQSBxAQoJDOYYkrUrdBjVBIlUFBaFyRJU4cUEckfgLOMEFASckLhzgjipVqJcWTkYb76a2a+dVP0j9+UjrzuyuO/P1ztizM7EDGFij6UMSsTMifo+I4Vq28YTR2j+3blya/vvGpekkqtU3/kpK6eGbNy5N56fmz9uRZ0oRhU+SONCi3PnFi2enKpXZC1l+fOHcu+PzixefOXNu6vTs6dnzkydOHDs68dzxyWc7Emca1839H8wd3PfKW1dfmz559e2fvkny+Jvi6JDRlQ4+Xq12uLj+2lWXrrUMNoNirZtGean/D0cxbl+84Xj5475WDuiqarVava/94ctV4B6WRL9rAPRH/kGf3v/mW4+GHv8J11+o3QClcd/KttqRUhSyc8pN97edNBoRJy//82W6RXfmIQAAGnyXjn+ebjX+K0T9vNDubA1lJCL+FxF7IuJ4ROyNiP9HLJ17f0Q8sM7ymxdJ7hz/FK5tKLA1Ssd/z2drW43jv3z0FyPFLLdrKf5ycupMZfZI9pocivKWND+xQhnfv/TrZ+2O1Y//0i0tPx8LZvW4VtrS+JyZqYWpu4m53vWPIvaXWsWfLK8EJBGxLyL2b7CMM4e/Ptju2Orxr6AD60zVryKeqF3/y9EUfy5ZeX1yfGtUZo+M563iTj//cuX1duXfVfwdkF7/7S3b/3L8I0n9eu38ev73L55MH6/88Wnbe5qNtv+h5M2Gfe9PLSxcmIgYSl6tVbp+/2TTeZO3z0/jP/Ro6/6/J26/EgciIm3ED0bEQxHxcFb3R37bveqr8OOLj72z8fi7K41/Zu3XvzockTeExaHIEst7WieKZ3/4tqHQkdbx7257/Y8tpQ5le9by/reWeq23NQMAAMBmVYiInZEUxpbThcLYWO1v+PfG9kJlbn7hqVNz752fqX1HYCTKhXyma7huPnQiu63P85NN+aPZvPHnxW1L+bHpucpMv4OHAbejTf9P/Vnsd+2ArvN9LRhc+j8MLv0fBted/X9rX+oB9F6Lz/9t/agH0Hutxv8fruWJOztfF6C3mvq/ZT8YIOb/YHBtpP97z4B7Q2mln2we6mlVgN6Z3xarf0leYjMl8l+u6UYR5bS1HI6IxYtR6HukEl1M9PudCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoDP+DQAA//+CSeFs")

1.339554804s ago: executing program 2 (id=5575):
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
vmsplice(r1, &(0x7f00000000c0)=[{&(0x7f0000000180)="77690addcfbe1fbb66ec", 0xff3b}], 0x1, 0x1)
sendfile(r1, r0, 0x0, 0x79c3)
gettid()
close(r1)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r2}, 0x38)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r3, 0x0, 0x80000000000}, 0x18)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x120}}, 0x0)
splice(r0, 0x0, r1, 0x0, 0x10500, 0x0)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
perf_event_open(&(0x7f0000000600)={0x5, 0x80, 0x0, 0x0, 0x0, 0x6, 0x0, 0x5, 0x80260, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x3, @perf_config_ext={0x2, 0x8}, 0x0, 0x3, 0x3, 0x9, 0x0, 0x839, 0xfffc, 0x0, 0x0, 0x0, 0xbf}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
read$msr(r6, 0x0, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000000c0)=ANY=[@ANYRES64=r5, @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014000000b7038500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000023", @ANYRES8=r5], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x5, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r8}, 0x10)
syz_emit_ethernet(0x6e, &(0x7f0000000080)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x38, 0x3a, 0x0, @remote, @mcast2, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x5dc, {0x0, 0x6, "8cb02b", 0x4, 0x2f, 0x0, @loopback, @local, [@srh={0x2b, 0x0, 0x4, 0x0, 0x0, 0x10}]}}}}}}}, 0x0)
madvise(&(0x7f0000002000/0x1000)=nil, 0x1000, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r7, 0x0, 0xfffffffffffffffe}, 0x18)
r9 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r9, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
connect$inet(r9, &(0x7f0000000380)={0x2, 0x4e24, @local}, 0x10)

1.295194004s ago: executing program 1 (id=5576):
socket$nl_generic(0x10, 0x3, 0x10)
socket$rds(0x15, 0x5, 0x0)
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
pipe2(0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)
r2 = syz_io_uring_setup(0x5c2, &(0x7f00000002c0)={0x0, 0x983a, 0x2, 0x1003, 0xea}, &(0x7f0000000240)=<r3=>0x0, &(0x7f0000000540)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000004c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x51, 0x0, 0x80, 0x2, 0x0, 0x127})
io_uring_enter(r2, 0x6e2, 0x3900, 0x1, 0x0, 0x0)
io_uring_enter(r2, 0x3058, 0xdf5e, 0x7, 0x0, 0x0)

1.242417725s ago: executing program 2 (id=5577):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={0x0}, 0x18)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x800, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x1)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x100000)

1.199837106s ago: executing program 0 (id=5578):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$sock_int(r0, 0x1, 0x22, &(0x7f0000000080)=0xb, 0x4)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x80, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r1}, 0x18)
bind$rds(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_open_dev$vcsn(&(0x7f0000000180), 0x40008000, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b03000000000000000000000000000000000000e0da122fae5d3800b90644e2f122ce5785c7d8c4253c7a5e15c3da54466af4a91c671f82a8c4b9d97f0572813c69f82c454a6cac8f1d1f21d35ee10718d69e09ddf068972fb959c95356ca987942b7641f3d6224d06d2791987a5cbb6ebe38c2be0124e0c52552e77b3d", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
lsm_set_self_attr(0x66, 0x0, 0x40, 0x0)
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000180)={0x28, 0x0, 0x0, @local}, 0x10)
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000400)={0x28, 0x0, 0x2710, @host}, 0x10)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000000050005000200000c12000300686173683a6e65742c706f7274"], 0x4c}}, 0x2)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000140)=@generic={&(0x7f0000000040)='./file0\x00', 0x0, 0x14}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000440)={{r2}, &(0x7f00000001c0), &(0x7f0000000300)=r3}, 0x20)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000280)={r1, 0xe0, &(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, &(0x7f00000007c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x6c, &(0x7f0000000880)=[{}, {}, {}, {}, {}, {}], 0x30, 0x10, &(0x7f00000008c0), &(0x7f0000000900), 0x8, 0xa1, 0x8, 0x8, &(0x7f0000000940)}}, 0xb)
sendmsg$IPSET_CMD_ADD(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="50000000090601020000000000000000020000000900020073797a31000000000500010007000000280007800c00018008000140ffffffff0500070084000000060004404e22000006000540"], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

1.199286065s ago: executing program 0 (id=5579):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x8, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000130000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="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", @ANYRES8=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_ATTACH(0x8, 0x0, 0x20)
r2 = signalfd(0xffffffffffffffff, 0x0, 0x0)
name_to_handle_at(r2, 0x0, 0x0, 0x0, 0x1000)
r3 = socket$inet6(0xa, 0x2, 0x0)
r4 = socket$packet(0x11, 0xa, 0x300)
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000100)=[{0x80000006}]}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="170000000000000004000000ff00000000000000", @ANYRES32=0x1, @ANYBLOB="000000000000000000000000000000a21785b79800"/35, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x80, 0x5e, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, r2, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
setsockopt$inet6_udp_encap(r3, 0x11, 0x64, 0x0, 0x0)
setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0xb, &(0x7f0000000040)=0xc6, 0x2)
syz_emit_ethernet(0xd2, &(0x7f0000000900)=ANY=[@ANYBLOB="ffffffffbfff20000000000086dd600489f1009c1100fc010000000000000025030000000000ff02000000000000000000000000000100000e22"], 0x0)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000003c0)=0x14)
ioctl$TIOCVHANGUP(r6, 0x5437, 0x2)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x0, &(0x7f0000000100)})
syz_usbip_server_init(0x3)

1.134559876s ago: executing program 2 (id=5580):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x8, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000130000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="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", @ANYRES8=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_ATTACH(0x8, 0x0, 0x20)
r2 = signalfd(0xffffffffffffffff, 0x0, 0x0)
name_to_handle_at(r2, 0x0, 0x0, 0x0, 0x1000)
socket$inet6(0xa, 0x2, 0x0)
r3 = socket$packet(0x11, 0xa, 0x300)
setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000100)=[{0x80000006}]}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="170000000000000004000000ff00000000000000", @ANYRES32=0x1, @ANYBLOB="000000000000000000000000000000a21785b79800"/35, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x80, 0x5e, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, r2, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10)
setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0xb, &(0x7f0000000040)=0xc6, 0x2)
syz_emit_ethernet(0xd2, &(0x7f0000000900)=ANY=[@ANYBLOB="ffffffffbfff20000000000086dd600489f1009c1100fc010000000000000025030000000000ff02000000000000000000000000000100000e22"], 0x0)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000003c0)=0x14)
ioctl$TIOCVHANGUP(r6, 0x5437, 0x2)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x0, &(0x7f0000000100)})
syz_usbip_server_init(0x3)

1.011306147s ago: executing program 4 (id=5581):
r0 = creat(&(0x7f0000000240)='./bus\x00', 0xc2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f0000000340)=ANY=[@ANYRESOCT=r2, @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r3}, &(0x7f0000000080), &(0x7f0000000180)}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f00000009c0)={[{@nolazytime}, {@lazytime}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@bsdgroups}, {@lazytime}, {@noload}]}, 0x3, 0x45c, &(0x7f0000002400)="$eJzs3MtvG8UfAPDv+pG+m/yq/oA+gCBAlAJJk5bSAxcQSBxAQoJDOYYkrUrdBjVBIlUFBaFyRJU4cUEckfgLOMEFASckLhzgjipVqJcWTkYb76a2a+dVP0j9+UjrzuyuO/P1ztizM7EDGFij6UMSsTMifo+I4Vq28YTR2j+3blya/vvGpekkqtU3/kpK6eGbNy5N56fmz9uRZ0oRhU+SONCi3PnFi2enKpXZC1l+fOHcu+PzixefOXNu6vTs6dnzkydOHDs68dzxyWc7Emca1839H8wd3PfKW1dfmz559e2fvkny+Jvi6JDRlQ4+Xq12uLj+2lWXrrUMNoNirZtGean/D0cxbl+84Xj5475WDuiqarVava/94ctV4B6WRL9rAPRH/kGf3v/mW4+GHv8J11+o3QClcd/KttqRUhSyc8pN97edNBoRJy//82W6RXfmIQAAGnyXjn+ebjX+K0T9vNDubA1lJCL+FxF7IuJ4ROyNiP9HLJ17f0Q8sM7ymxdJ7hz/FK5tKLA1Ssd/z2drW43jv3z0FyPFLLdrKf5ycupMZfZI9pocivKWND+xQhnfv/TrZ+2O1Y//0i0tPx8LZvW4VtrS+JyZqYWpu4m53vWPIvaXWsWfLK8EJBGxLyL2b7CMM4e/Ptju2Orxr6AD60zVryKeqF3/y9EUfy5ZeX1yfGtUZo+M563iTj//cuX1duXfVfwdkF7/7S3b/3L8I0n9eu38ev73L55MH6/88Wnbe5qNtv+h5M2Gfe9PLSxcmIgYSl6tVbp+/2TTeZO3z0/jP/Ro6/6/J26/EgciIm3ED0bEQxHxcFb3R37bveqr8OOLj72z8fi7K41/Zu3XvzockTeExaHIEst7WieKZ3/4tqHQkdbx7257/Y8tpQ5le9by/reWeq23NQMAAMBmVYiInZEUxpbThcLYWO1v+PfG9kJlbn7hqVNz752fqX1HYCTKhXyma7huPnQiu63P85NN+aPZvPHnxW1L+bHpucpMv4OHAbejTf9P/Vnsd+2ArvN9LRhc+j8MLv0fBted/X9rX+oB9F6Lz/9t/agH0Hutxv8fruWJOztfF6C3mvq/ZT8YIOb/YHBtpP97z4B7Q2mln2we6mlVgN6Z3xarf0leYjMl8l+u6UYR5bS1HI6IxYtR6HukEl1M9PudCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoDP+DQAA//+CSeFs")

779.956101ms ago: executing program 4 (id=5582):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000031c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0xe8c5}, 0x18)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r1, &(0x7f0000000200)={0x2, 0x4e24, @empty}, 0x10)
sendmmsg(r1, &(0x7f0000003a80)=[{{&(0x7f00000000c0)=@in={0x2, 0x4e24, @loopback}, 0x80, &(0x7f0000000400)=[{&(0x7f0000000240)='7', 0x1}], 0x1}}], 0x1, 0x2c000811)
close(r1)

734.167681ms ago: executing program 4 (id=5583):
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100020, 0x0, 0x0, 0x6, 0x3, 0x0, 0xa}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000000480)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="a10c0000000000000000320000000800170156f7ffff07000300", @ANYRES32=0x0, @ANYBLOB="0c0099000200000077000000"], 0x30}, 0x1, 0x0, 0x0, 0x40}, 0x0)
mknod(&(0x7f0000000000)='./file0\x00', 0x400, 0x4)
sendmsg$NL802154_CMD_NEW_SEC_KEY(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000200)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16, @ANYBLOB="3f9d70630000fedbdf251700000008000300", @ANYRES32=<r2=>0xffffffffffffffff, @ANYBLOB="4800308014000400403a050c5baee2004ef2b6d713459a7a2800018008000100000000001c000380080002000300000006000100fcff00000800020003000000050002"], 0x64}}, 0x10)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000400)=ANY=[@ANYRESHEX=r2, @ANYRES64=0x0, @ANYRES8=r0, @ANYRESHEX=0x0], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x3, 0xf, &(0x7f0000000300)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r3, @ANYRESHEX=r3], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x26, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r4, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc, 0x0, 0x0, 0x5}, 0x10)
r5 = socket(0x23, 0xa, 0x40)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008f00850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r6}, 0x10)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001000040000000000000000000100000a20000000000a05000000000000000000070000010900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021800000000c0a01030000000000000000070000080900020073797a31000000000900010073797a30000000005400038050000080080003400000000244000b802c0001800a0001006c696d69740000001c0002800c00014000000000000000030c00024000000000000000101400018009000100"], 0x104}}, 0x40000)
r8 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mreq(r8, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14)
r9 = socket$inet6(0xa, 0x80002, 0x0)
syz_emit_ethernet(0xa5b, &(0x7f0000000000)=ANY=[@ANYBLOB="cdbf0e000084aaaaaaaaaabb86dd600000000a25000000000000000000000100000000000000ff020000000000000000000000000001"], 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="02d5000004002300080000000100000080000000c2ba012e520a907461d3193877c50517e7dfe45e8f33b93e9ebbe0f9d9b2a55a1ff019a12ce7fc", @ANYRES32=0x0, @ANYBLOB="45499b0ec6f4f7676a0b032d36021f20cd35ba1385b91b936c204005e5dab13964a3e842e34cf99809871c6f708171104b25e422eb4441051c3536147a47437c", @ANYBLOB='\x00'/28, @ANYRES64=r9, @ANYRES32=0x0], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000640)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b704000008000000850000000e5d283e6b886a96e3ba557b7b8e950000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sysinfo(&(0x7f0000000000)=""/12)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000340)=ANY=[@ANYRES8], &(0x7f0000000240)='GPL\x00', 0x76d, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44000000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r10}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r11 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r11, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000900)=ANY=[@ANYBLOB="440000001000090600"/20, @ANYRES32=0x0, @ANYBLOB="adffa888000000001c00128009000100626f6e64000000000c000280050001000600000008000a0079"], 0x44}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

564.584703ms ago: executing program 1 (id=5584):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$sock_int(r0, 0x1, 0x22, &(0x7f0000000080)=0xb, 0x4)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x80, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r1}, 0x18)
bind$rds(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_open_dev$vcsn(&(0x7f0000000180), 0x40008000, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = socket(0x28, 0x5, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b03000000000000000000000000000000000000e0da122fae5d3800b90644e2f122ce5785c7d8c4253c7a5e15c3da54466af4a91c671f82a8c4b9d97f0572813c69f82c454a6cac8f1d1f21d35ee10718d69e09ddf068972fb959c95356ca987942b7641f3d6224d06d2791987a5cbb6ebe38c2be0124e0c52552e77b3d", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={0x0, r7}, 0x18)
lsm_set_self_attr(0x66, 0x0, 0x40, 0x0)
connect$vsock_stream(r5, &(0x7f0000000180)={0x28, 0x0, 0x0, @local}, 0x10)
connect$vsock_stream(r5, &(0x7f0000000400)={0x28, 0x0, 0x2710, @host}, 0x10)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000000050005000200000c12000300686173683a6e65742c706f7274"], 0x4c}}, 0x2)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000140)=@generic={&(0x7f0000000040)='./file0\x00', 0x0, 0x14}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000440)={{r2}, &(0x7f00000001c0), &(0x7f0000000300)=r3}, 0x20)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000280)={r1, 0xe0, &(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, &(0x7f00000007c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x6c, &(0x7f0000000880)=[{}, {}, {}, {}, {}, {}], 0x30, 0x10, &(0x7f00000008c0), &(0x7f0000000900), 0x8, 0xa1, 0x8, 0x8, &(0x7f0000000940)}}, 0xb)
sendmsg$IPSET_CMD_ADD(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="50000000090601020000000000000000020000000900020073797a31000000000500010007000000280007800c00018008000140ffffffff0500070084000000060004404e22000006000540"], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x50032, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r9, 0x0, 0x0)

556.696423ms ago: executing program 3 (id=5585):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r0}, 0x0, &(0x7f0000000340)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x65, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000000000180003801400010076657468305f746f5f687372000000005c000000160a0101000b000000000000010000000900020073797a300000"], 0xfc}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = syz_io_uring_setup(0x416f, &(0x7f0000000780)={0x0, 0xfffffffd, 0x10100, 0x200, 0x1}, &(0x7f0000000100)=<r4=>0x0, &(0x7f00000000c0)=<r5=>0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000000)=""/4, 0x4}], 0x27})
io_uring_enter(r3, 0x567, 0x1000a387, 0x0, 0x0, 0x0)

518.549964ms ago: executing program 1 (id=5586):
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_rdma(0x10, 0x3, 0x14)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=ANY=[@ANYBLOB="34000000ff0c011d0000000000000000020000080900010073797a310000000004000480050003001100000006000240001700"], 0x34}, 0x1, 0x0, 0x0, 0x4c40}, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f0000000200)={[{@jqfmt_vfsold}, {@max_batch_time={'max_batch_time', 0x3d, 0x1}}, {@debug}, {@noload}, {@nombcache}, {@noblock_validity}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000}}]}, 0xfe, 0x478, &(0x7f0000000940)="$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")
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x9135}, 0x18)
mount(0x0, &(0x7f0000000000)='.\x00', 0x0, 0x2012024, 0x0)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x38, 0x1403, 0x1, 0x70bd2c, 0x25dfdbfc, "", [{{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'dummy0\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x4c810)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000000)={<r4=>0xffffffffffffffff}, 0x111, 0x4}}, 0x20)
r5 = syz_open_dev$hidraw(0x0, 0x7, 0x80)
ioctl$EXT4_IOC_MOVE_EXT(r5, 0xc028660f, &(0x7f0000000400)={0x0, r2, 0xa, 0x1, 0x10, 0x4})
write$RDMA_USER_CM_CMD_LISTEN(r3, &(0x7f0000000040)={0x7, 0x8, 0xfa00, {r4, 0x1}}, 0x10)
write$RDMA_USER_CM_CMD_DESTROY_ID(r3, &(0x7f0000000380)={0x1, 0x10, 0xfa00, {&(0x7f0000000300), r4}}, 0x18)
sendmsg$NFT_MSG_GETFLOWTABLE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x14, 0x17, 0xa, 0x301, 0x0, 0x0, {0xa, 0x0, 0x3}}, 0x14}, 0x1, 0x0, 0x0, 0x4c011}, 0x20000800)

419.082015ms ago: executing program 3 (id=5587):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x65, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000"], 0xfc}}, 0x0)
r1 = syz_io_uring_setup(0x416f, &(0x7f0000000780)={0x0, 0xfffffffd, 0x10100, 0x200, 0x1}, &(0x7f0000000100)=<r2=>0x0, &(0x7f00000000c0)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000000)=""/4, 0x4}], 0x27})
io_uring_enter(r1, 0x567, 0x1000a387, 0x0, 0x0, 0x0)

374.582726ms ago: executing program 3 (id=5588):
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100020, 0x0, 0x0, 0x6, 0x3, 0x0, 0xa}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000000480)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="a10c0000000000000000320000000800170156f7ffff07000300", @ANYRES32=0x0, @ANYBLOB="0c0099000200000077000000"], 0x30}, 0x1, 0x0, 0x0, 0x40}, 0x0)
mknod(&(0x7f0000000000)='./file0\x00', 0x400, 0x4)
sendmsg$NL802154_CMD_NEW_SEC_KEY(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000200)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16, @ANYBLOB="3f9d70630000fedbdf251700000008000300", @ANYRES32=<r2=>0xffffffffffffffff, @ANYBLOB="4800308014000400403a050c5baee2004ef2b6d713459a7a2800018008000100000000001c000380080002000300000006000100fcff00000800020003000000050002"], 0x64}}, 0x10)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000400)=ANY=[@ANYRESHEX=r2, @ANYRES64=0x0, @ANYRES8=r0, @ANYRESHEX=0x0], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x3, 0xf, &(0x7f0000000300)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r3, @ANYRESHEX=r3], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x26, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r4, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc, 0x0, 0x0, 0x5}, 0x10)
r5 = socket(0x23, 0xa, 0x40)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008f00850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r6}, 0x10)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001000040000000000000000000100000a20000000000a05000000000000000000070000010900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021800000000c0a01030000000000000000070000080900020073797a31000000000900010073797a30000000005400038050000080080003400000000244000b802c0001800a0001006c696d69740000001c0002800c00014000000000000000030c00024000000000000000101400018009000100"], 0x104}}, 0x40000)
r8 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mreq(r8, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14)
r9 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_mreq(r9, 0x29, 0x1b, &(0x7f0000000040)={@dev}, 0x14)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="02d5000004002300080000000100000080000000c2ba012e520a907461d3193877c50517e7dfe45e8f33b93e9ebbe0f9d9b2a55a1ff019a12ce7fc", @ANYRES32=0x0, @ANYBLOB="45499b0ec6f4f7676a0b032d36021f20cd35ba1385b91b936c204005e5dab13964a3e842e34cf99809871c6f708171104b25e422eb4441051c3536147a47437c", @ANYBLOB='\x00'/28, @ANYRES64=r9, @ANYRES32=0x0], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000640)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b704000008000000850000000e5d283e6b886a96e3ba557b7b8e950000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sysinfo(&(0x7f0000000000)=""/12)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000340)=ANY=[@ANYRES8], &(0x7f0000000240)='GPL\x00', 0x76d, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44000000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r10}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r11 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r11, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000900)=ANY=[@ANYBLOB="440000001000090600"/20, @ANYRES32=0x0, @ANYBLOB="adffa888000000001c00128009000100626f6e64000000000c000280050001000600000008000a0079"], 0x44}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

282.642337ms ago: executing program 4 (id=5589):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x2000480, &(0x7f0000000100), 0x5, 0x757, &(0x7f0000000f80)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42042, 0x14a)
fallocate(r1, 0x8, 0x0, 0x8000)

213.120428ms ago: executing program 0 (id=5590):
socket$nl_route(0x10, 0x3, 0x0)
mmap(&(0x7f00000d1000/0x1000)=nil, 0x1000, 0x0, 0x200000005c831, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x131, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b000000a4620000000000000080000000000000", @ANYRES32, @ANYBLOB="00000000000000001a0000000000520000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000000000000fcffffff1810f400", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000820000009500000000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
request_key(&(0x7f0000000000)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x2, 0x11}, 0x0, 0x0)
r2 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r2, 0x0, 0xca, &(0x7f0000000140)={0x5, 0x1, 0xc, 0x2, @vifc_lcl_addr=@rand_addr=0x64010102, @broadcast}, 0x10)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x18)
setsockopt$MRT_FLUSH(r2, 0x0, 0xd4, &(0x7f0000000040)=0x8, 0x4)
r5 = socket(0x10, 0x3, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r5, 0x89f3, &(0x7f0000000500)={'gre0\x00', &(0x7f0000000280)={'sit0\x00', 0x0, 0x8, 0x1, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x1, 0x14, 0x64, 0x0, 0x5, 0x2f, 0x0, @empty, @private}}}})
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x4004110)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x480d5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000007f160085000000820000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x169142, 0x0)
fcntl$setlease(r7, 0x400, 0x1)
lsetxattr$security_selinux(&(0x7f0000000380)='./file1\x00', &(0x7f00000003c0), &(0x7f0000000400)='system_u:object_r:udev_exec_t:s0\x00', 0x21, 0x0)
mount$9p_tcp(0x0, &(0x7f0000000040)='./cgroup\x00', 0x0, 0x800000, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000000))

192.706008ms ago: executing program 2 (id=5591):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="18010000008000000000000000000004850000006d00"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x800, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000003c0)=0x1)
ioctl$TIOCVHANGUP(r1, 0x5437, 0x100000)

182.962118ms ago: executing program 4 (id=5592):
r0 = socket(0x10, 0x803, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0xffffffffffffff34, &(0x7f0000000080)={0x0, 0xb8}}, 0x0)
getsockname$packet(r0, &(0x7f0000000000)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x3c)
sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r2, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x4)
sendmsg$nl_route(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x20088814}, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x7400, &(0x7f00000001c0)={&(0x7f0000000200)=@delchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r5}}, 0x24}}, 0x0) (fail_nth: 3)

48.33692ms ago: executing program 4 (id=5593):
r0 = creat(&(0x7f0000000240)='./bus\x00', 0xc2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f0000000340)=ANY=[@ANYRESOCT=r2, @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r3}, &(0x7f0000000080), &(0x7f0000000180)}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f00000009c0)={[{@nolazytime}, {@lazytime}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@bsdgroups}, {@lazytime}, {@noload}]}, 0x3, 0x45c, &(0x7f0000002400)="$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")

0s ago: executing program 0 (id=5594):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
bpf$ENABLE_STATS(0x20, 0x0, 0x0) (async)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
sendmsg$IEEE802154_LLSEC_ADD_DEV(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x4, 0x700000000000000, 0x0, 0x40005}, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r3, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x4})
openat$dir(0xffffffffffffff9c, &(0x7f0000000380)='./file0/../file0\x00', 0x230800, 0x194)
ioctl$sock_netdev_private(r3, 0x89f5, &(0x7f0000000000))
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000c40)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2901090, 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
mount(0x0, &(0x7f0000000d40)='./file0/../file0/../file0\x00', &(0x7f00000002c0)='sysfs\x00', 0x0, 0x0)
pivot_root(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f00000001c0)='./file0/../file0/../file0\x00') (async)
pivot_root(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f00000001c0)='./file0/../file0/../file0\x00')
syz_open_dev$tty1(0xc, 0x4, 0x2)
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000900)=[{{&(0x7f0000000800)=@file={0x0, './file0/../file0/../file0\x00'}, 0x6e, &(0x7f00000008c0)=[{&(0x7f0000000880)="d4201e3d5025af1e4815f71f1fc1", 0xe}], 0x1, 0x0, 0x0, 0x4}}], 0x1, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0) (async)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYRES64=r1, @ANYBLOB], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r4, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20) (async)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r4, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000780)={[{@bsdgroups}, {@nodiscard}, {@noblock_validity}, {@grpjquota}, {@grpjquota}, {@noquota}, {@abort}, {@nodelalloc}, {@nodiscard}]}, 0x64, 0x50d, &(0x7f0000000200)="$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") (async)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000780)={[{@bsdgroups}, {@nodiscard}, {@noblock_validity}, {@grpjquota}, {@grpjquota}, {@noquota}, {@abort}, {@nodelalloc}, {@nodiscard}]}, 0x64, 0x50d, &(0x7f0000000200)="$eJzs3VFrHFsdAPD/bHZj06Y3ueqDXvB69V5Ji3Y3aWwbfKgVRJ8Kan2vMdmEkE02ZDdtE4qm+AEEERV80hdfBD+AIAVffBShoM+KiiLa6oMP2rns7iRN091k226zafb3g8mcc2Zm/+dsmNk5M4eZAAbWOxFxLSIep2l6PiLGsvJcNsV2a2qs9+jh3bnGlESa3vhnEklWtvNZSTY/k212KiK+9uWIbybPxq1tbi3PVirl9Sxfqq+slWqbWxeWVmYXy4vl1enpqcszV2YuzUz2pJ1nI+LqF//6g+/+7EtXf/WZ23+6+fdz32pUazRbvrcdzyl/0MJW0wvN72LvBusvGOw4yjdbmBlpt8bQMyX3XnGdAABor3GO/8GI+GREnI+xGDr4dBYAAAB4DaWfH43/JRFpe8MdygEAAIDXSK45BjbJFbOxAKORyxWLrTG8H47TuUq1Vv/0QnVjdb41VnY8CrmFpUp5MhsrPB6FpJGfaqaf5C/uy09HxJsR8f2xkWa+OFetzPf74gcAAAAMiDP7+v//GWv1/wEAAIATZrzfFQAAAABeOf1/AAAAOPn0/wEAAOBE+8r1640p3Xn/9fytzY3l6q0L8+XacnFlY644V11fKy5Wq4vNZ/atHPZ5lWp17bOxunGnVC/X6qXa5tbNlerGav3m0lOvwAYAAACO0Jsfv/+HJCK2PzfSnBqGu9u0y9WA4yq/m0qyeZvd+o9vtOZ/OaJKAUdiqN8VAPom3+8KAH1T6HcFgL5LDlnecfDOb7P5J3pbHwAAoPcmPtr5/n/uwC23D14MHHt2Yhhc7v/D4Gre/+92JK+TBThRCs4AYOC99P3/Q6Xpc1UIAADoudHmlOSK2eW90cjlisWIs83XAhSShaVKeTIi3oiI348VPtDITzW3TA7tMwAAAAAAAAAAAAAAAAAAAAAAAAAALWmaRAoAAACcaBG5vyW/bj3Lf2LsvdH91weGk/+ORfaK0Ns/vvHDO7P1+vpUo/xfu+X1H2XlF/txBQMAAAAGwnO9wH+nn77TjwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAXnr08O7cznSUcf/xhYgYbxc/H6ea81NRiIjT/04iv2e7JCKGehB/pPHnI+3iJ41q7YZsF3+kB/G37x0YP8azb2F//OGIONOD+DDI7jeOP9fa7X+5eKc5b7//5SOeyr+ozse/2D3+DXU4/pztMsZbD35R6hj/XsRb+fbHn534SYf473YZ/xtf39rqtCz9ScRE29+f5KlYpfrKWqm2uXVhaWV2sbxYXp2enro8c2Xm0sxkaWGpUs7+to3xvY/98vFB7T/dIf74Ie1/r8v2///BnYcfaiUL7eKfe7dN/N/8NFvj2fi57LfvU1m6sXxiJ73dSu/19s9/9/ZB7Z/v0P7D/v/numz/+a9+589drgoAHIHa5tbybKVSXj+xiUYv/RhUQ+IYJr7d0w9M0zRt7FMv8TlJHIevpZno95EJAADotScn/f2uCQAAAAAAAAAAAAAAAAAAAAyuo3ic2P6Y27uppBeP0AYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA6In3AwAA///d8Nla")
setrlimit(0x6, &(0x7f0000000740)={0x63a2, 0x5}) (async)
setrlimit(0x6, &(0x7f0000000740)={0x63a2, 0x5})
unshare(0x42000000)

kernel console output (not intermixed with test programs):

0 may have been left with an inconsistent configuration, please check.
[  294.379991][   T25] lo speed is unknown, defaulting to 1000
[  294.386295][   T36] dummy0 speed is unknown, defaulting to 1000
[  294.396318][T11133] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  294.450927][T11696] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  294.462838][T17066] loop4: detected capacity change from 0 to 512
[  294.479933][T17066] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  294.505073][T17070] loop3: detected capacity change from 0 to 512
[  294.511007][T17074] loop0: detected capacity change from 0 to 128
[  294.518207][T17070] EXT4-fs: Ignoring removed oldalloc option
[  294.525498][T17066] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  294.543045][T17066] ext4 filesystem being mounted at /328/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  294.573941][T17070] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  294.587915][T17068] loop1: detected capacity change from 0 to 8192
[  294.606605][T17070] EXT4-fs (loop3): 1 truncate cleaned up
[  294.607932][T17066] netlink: 36 bytes leftover after parsing attributes in process `syz.4.4828'.
[  294.620939][T17070] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  294.661586][ T5399] kworker/u8:8: attempt to access beyond end of device
[  294.661586][ T5399] loop0: rw=1, sector=145, nr_sectors = 8 limit=128
[  294.703698][ T5399] kworker/u8:8: attempt to access beyond end of device
[  294.703698][ T5399] loop0: rw=1, sector=161, nr_sectors = 8 limit=128
[  294.720153][T17070] loop3: detected capacity change from 512 to 64
[  294.741160][T17070] EXT4-fs warning (device loop3): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 255)
[  294.756868][T17070] EXT4-fs warning (device loop3): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 253)
[  294.773307][T11418] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  294.782908][T17070] EXT4-fs warning (device loop3): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 37)
[  294.794420][T17070] EXT4-fs warning (device loop3): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 249)
[  294.834341][T17093] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4838'.
[  294.898914][T17097] loop0: detected capacity change from 0 to 512
[  294.906326][T17097] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  294.919973][T17102] netlink: 'syz.2.4840': attribute type 16 has an invalid length.
[  294.927857][T17102] netlink: 'syz.2.4840': attribute type 17 has an invalid length.
[  294.942822][T11133] EXT4-fs warning (device loop3): ext4_evict_inode:276: xattr delete (err -12)
[  294.971899][T17097] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002]
[  294.988330][T17097] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.4834: corrupted in-inode xattr: e_value size too large
[  295.005565][T17097] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.4834: couldn't read orphan inode 15 (err -117)
[  295.018005][T11133] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  295.018037][T17102] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  295.044326][T17097] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  295.066608][T17091] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none.
[  295.082951][T17091] rdma_rxe: rxe_newlink: failed to add lo
[  295.093881][T17091] rdma_rxe: rxe_newlink: failed to add dummy0
[  295.136280][T17109] loop3: detected capacity change from 0 to 1024
[  295.161323][T17109] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  295.288158][T17109] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4841'.
[  295.332375][T11696] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  295.383222][T17119] loop0: detected capacity change from 0 to 2048
[  295.407259][T17120] lo speed is unknown, defaulting to 1000
[  295.440471][T17120] dummy0 speed is unknown, defaulting to 1000
[  295.520090][T11133] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  295.570374][T17119]  loop0: p1 < > p4
[  295.579186][T17119] loop0: p4 size 8388608 extends beyond EOD, truncated
[  295.657112][T17122] loop3: detected capacity change from 0 to 2048
[  295.703515][T17122] EXT4-fs error (device loop3): ext4_orphan_get:1415: comm syz.3.4846: bad orphan inode 8192
[  295.717287][T17125] loop0: detected capacity change from 0 to 512
[  295.725342][ T3291] udevd[3291]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[  295.728390][ T3487] udevd[3487]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[  295.748509][T17122] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  295.752178][T17125] EXT4-fs (loop0): blocks per group (95) and clusters per group (32768) inconsistent
[  295.794918][ T3487] udevd[3487]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[  295.796007][T17128] xt_TPROXY: Can be used only with -p tcp or -p udp
[  295.817631][ T3291] udevd[3291]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[  295.923911][T11133] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  295.964809][T17139] loop4: detected capacity change from 0 to 2048
[  295.975690][T17141] loop0: detected capacity change from 0 to 512
[  295.986119][T17141] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  295.995041][T17144] netlink: 'syz.3.4854': attribute type 16 has an invalid length.
[  295.996049][T17141] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002]
[  296.002996][T17144] netlink: 'syz.3.4854': attribute type 17 has an invalid length.
[  296.012145][T17141] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.4855: corrupted in-inode xattr: e_value size too large
[  296.034377][T17141] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.4855: couldn't read orphan inode 15 (err -117)
[  296.047873][T17141] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  296.070949][T17139] EXT4-fs error (device loop4): ext4_orphan_get:1415: comm syz.4.4853: bad orphan inode 8192
[  296.082010][T17141] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none.
[  296.082533][T17139] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  296.098350][T17141] rdma_rxe: rxe_newlink: failed to add lo
[  296.120029][T17144] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  296.144085][T17141] rdma_rxe: rxe_newlink: failed to add dummy0
[  296.274393][T17157] loop3: detected capacity change from 0 to 2048
[  296.341658][T17157]  loop3: p1 < > p4
[  296.347026][T17157] loop3: p4 size 8388608 extends beyond EOD, truncated
[  296.447137][ T3291] udevd[3291]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[  296.457925][ T3487] udevd[3487]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  296.553104][T17189] netlink: 68 bytes leftover after parsing attributes in process `syz.3.4863'.
[  296.688864][T17205] netlink: 'syz.4.4868': attribute type 16 has an invalid length.
[  296.695388][T17209] loop1: detected capacity change from 0 to 512
[  296.696768][T17205] netlink: 'syz.4.4868': attribute type 17 has an invalid length.
[  296.722903][T17209] EXT4-fs: Ignoring removed oldalloc option
[  296.730636][T17205] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  296.753688][T17209] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  296.767365][T17213] loop3: detected capacity change from 0 to 512
[  296.775179][T17209] EXT4-fs (loop1): 1 truncate cleaned up
[  296.784181][T17213] EXT4-fs: Ignoring removed oldalloc option
[  296.829913][T17213] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  296.843546][   T30] kauditd_printk_skb: 429 callbacks suppressed
[  296.843563][   T30] audit: type=1326 audit(1742430073.151:11312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17222 comm="syz.0.4875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19c6afd169 code=0x7ffc0000
[  296.843930][   T30] audit: type=1326 audit(1742430073.151:11313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17222 comm="syz.0.4875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f19c6afd169 code=0x7ffc0000
[  296.845053][   T30] audit: type=1326 audit(1742430073.151:11314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17222 comm="syz.0.4875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19c6afd169 code=0x7ffc0000
[  296.925033][T17209] loop1: detected capacity change from 512 to 64
[  296.933084][   T30] audit: type=1326 audit(1742430073.161:11315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17222 comm="syz.0.4875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19c6afd169 code=0x7ffc0000
[  296.956989][   T30] audit: type=1326 audit(1742430073.161:11316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17222 comm="syz.0.4875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f19c6afd169 code=0x7ffc0000
[  296.957362][T17223] loop0: detected capacity change from 0 to 2048
[  296.980658][   T30] audit: type=1326 audit(1742430073.211:11317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17222 comm="syz.0.4875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19c6afd169 code=0x7ffc0000
[  297.010751][   T30] audit: type=1326 audit(1742430073.211:11318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17222 comm="syz.0.4875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19c6afd169 code=0x7ffc0000
[  297.014411][T17209] EXT4-fs warning (device loop1): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 255)
[  297.034387][   T30] audit: type=1326 audit(1742430073.231:11319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17222 comm="syz.0.4875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=74 compat=0 ip=0x7f19c6afd169 code=0x7ffc0000
[  297.046035][T17209] EXT4-fs warning (device loop1): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 253)
[  297.069132][   T30] audit: type=1326 audit(1742430073.231:11320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17222 comm="syz.0.4875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19c6afd169 code=0x7ffc0000
[  297.069170][   T30] audit: type=1326 audit(1742430073.231:11321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17222 comm="syz.0.4875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f19c6afd169 code=0x7ffc0000
[  297.081058][T17227] loop4: detected capacity change from 0 to 512
[  297.107340][T17213] EXT4-fs (loop3): 1 truncate cleaned up
[  297.134274][T17227] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  297.148225][T17209] EXT4-fs warning (device loop1): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 37)
[  297.160659][T17209] EXT4-fs warning (device loop1): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 249)
[  297.194823][T17227] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002]
[  297.203313][T17223] EXT4-fs error (device loop0): ext4_orphan_get:1415: comm syz.0.4875: bad orphan inode 8192
[  297.223567][T17213] loop3: detected capacity change from 512 to 64
[  297.230384][T12669] EXT4-fs warning (device loop1): ext4_evict_inode:276: xattr delete (err -12)
[  297.235722][T17213] EXT4-fs warning (device loop3): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 255)
[  297.241814][T17227] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.4874: corrupted in-inode xattr: e_value size too large
[  297.253833][T17213] EXT4-fs warning (device loop3): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 253)
[  297.281542][T17227] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.4874: couldn't read orphan inode 15 (err -117)
[  297.301186][T17213] EXT4-fs warning (device loop3): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 37)
[  297.314808][T17213] EXT4-fs warning (device loop3): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 249)
[  297.340642][T17237] __nla_validate_parse: 2 callbacks suppressed
[  297.340661][T17237] netlink: 68 bytes leftover after parsing attributes in process `syz.1.4878'.
[  297.369103][T17225] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none.
[  297.390825][T17225] rdma_rxe: rxe_newlink: failed to add lo
[  297.403056][T17225] rdma_rxe: rxe_newlink: failed to add dummy0
[  297.410921][T11133] EXT4-fs warning (device loop3): ext4_evict_inode:276: xattr delete (err -12)
[  297.578218][T17266] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  297.601807][T17271] loop3: detected capacity change from 0 to 2048
[  297.650126][T17271]  loop3: p1 < > p4
[  297.655039][T17271] loop3: p4 size 8388608 extends beyond EOD, truncated
[  297.701439][T17287] FAULT_INJECTION: forcing a failure.
[  297.701439][T17287] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  297.714635][T17287] CPU: 0 UID: 0 PID: 17287 Comm: syz.2.4889 Tainted: G        W          6.14.0-rc7-syzkaller-00074-ga7f2e10ecd8f #0
[  297.714690][T17287] Tainted: [W]=WARN
[  297.714699][T17287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  297.714715][T17287] Call Trace:
[  297.714730][T17287]  <TASK>
[  297.714739][T17287]  dump_stack_lvl+0xf2/0x150
[  297.714767][T17287]  dump_stack+0x15/0x1a
[  297.714788][T17287]  should_fail_ex+0x24a/0x260
[  297.714900][T17287]  should_fail+0xb/0x10
[  297.714934][T17287]  should_fail_usercopy+0x1a/0x20
[  297.714972][T17287]  _copy_from_user+0x1c/0xa0
[  297.715061][T17287]  memdup_user+0x64/0xc0
[  297.715091][T17287]  strndup_user+0x68/0xa0
[  297.715124][T17287]  __se_sys_mount+0x4e/0x2d0
[  297.715215][T17287]  ? fput+0x1c4/0x200
[  297.715239][T17287]  ? ksys_write+0x176/0x1b0
[  297.715318][T17287]  __x64_sys_mount+0x67/0x80
[  297.715355][T17287]  x64_sys_call+0x2c84/0x2dc0
[  297.715385][T17287]  do_syscall_64+0xc9/0x1c0
[  297.715418][T17287]  ? clear_bhb_loop+0x55/0xb0
[  297.715444][T17287]  ? clear_bhb_loop+0x55/0xb0
[  297.715481][T17287]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  297.715576][T17287] RIP: 0033:0x7f3b3537d169
[  297.715595][T17287] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  297.715615][T17287] RSP: 002b:00007f3b339e1038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  297.715633][T17287] RAX: ffffffffffffffda RBX: 00007f3b35595fa0 RCX: 00007f3b3537d169
[  297.715646][T17287] RDX: 0000400000000240 RSI: 0000400000000200 RDI: 0000000000000000
[  297.715736][T17287] RBP: 00007f3b339e1090 R08: 0000400000000400 R09: 0000000000000000
[  297.715748][T17287] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  297.715760][T17287] R13: 0000000000000000 R14: 00007f3b35595fa0 R15: 00007ffe5ac15148
[  297.715777][T17287]  </TASK>
[  297.726769][ T3000]  loop3: p1 < > p4
[  297.899771][T17279] loop1: detected capacity change from 0 to 8192
[  297.910903][T17296] netlink: 56 bytes leftover after parsing attributes in process `syz.2.4892'.
[  297.936676][ T3000] loop3: p4 size 8388608 extends beyond EOD, truncated
[  298.012659][ T3481] udevd[3481]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[  298.023710][ T3487] udevd[3487]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  298.160448][T17310] loop4: detected capacity change from 0 to 2048
[  298.214580][T17310] EXT4-fs error (device loop4): ext4_orphan_get:1415: comm syz.4.4895: bad orphan inode 8192
[  298.230661][T17321] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  298.386532][T17331] loop4: detected capacity change from 0 to 8192
[  298.400876][T17337] loop3: detected capacity change from 0 to 512
[  298.412676][T17337] EXT4-fs (loop3): blocks per group (95) and clusters per group (32768) inconsistent
[  298.592384][T17344] loop0: detected capacity change from 0 to 512
[  298.599891][T17344] EXT4-fs: Ignoring removed oldalloc option
[  298.619039][T17344] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  298.663185][T17344] EXT4-fs (loop0): 1 truncate cleaned up
[  298.691476][T17351] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4910'.
[  298.700447][T17351] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4910'.
[  298.721265][T17351] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4910'.
[  298.752131][T17348] loop1: detected capacity change from 0 to 2048
[  298.758981][T17344] loop0: detected capacity change from 512 to 64
[  298.765991][T17351] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4910'.
[  298.770581][T17344] bio_check_eod: 103 callbacks suppressed
[  298.770600][T17344] syz.0.4907: attempt to access beyond end of device
[  298.770600][T17344] loop0: rw=2049, sector=510, nr_sectors = 2 limit=64
[  298.774915][T17351] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4910'.
[  298.780646][T17344] EXT4-fs warning (device loop0): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 255)
[  298.794593][T17351] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4910'.
[  298.802864][T17344] buffer_io_error: 40 callbacks suppressed
[  298.802943][T17344] Buffer I/O error on device loop0, logical block 255
[  298.836663][T17344] syz.0.4907: attempt to access beyond end of device
[  298.836663][T17344] loop0: rw=2049, sector=506, nr_sectors = 4 limit=64
[  298.850084][T17344] EXT4-fs warning (device loop0): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 253)
[  298.855169][T17355] bond1: entered promiscuous mode
[  298.861349][T17344] Buffer I/O error on device loop0, logical block 253
[  298.861410][T17344] Buffer I/O error on device loop0, logical block 254
[  298.877473][T17351] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4910'.
[  298.880283][T17355] bond1: entered allmulticast mode
[  298.889219][T17351] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4910'.
[  298.894748][T17355] 8021q: adding VLAN 0 to HW filter on device bond1
[  298.911852][T17344] syz.0.4907: attempt to access beyond end of device
[  298.911852][T17344] loop0: rw=2049, sector=74, nr_sectors = 8 limit=64
[  298.924482][T17348] EXT4-fs error (device loop1): ext4_orphan_get:1415: comm syz.1.4908: bad orphan inode 8192
[  298.929931][T17344] EXT4-fs warning (device loop0): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 37)
[  298.946581][T17344] Buffer I/O error on device loop0, logical block 37
[  298.953317][T17344] Buffer I/O error on device loop0, logical block 38
[  298.960016][T17344] Buffer I/O error on device loop0, logical block 39
[  298.966773][T17344] Buffer I/O error on device loop0, logical block 40
[  298.986811][T17344] syz.0.4907: attempt to access beyond end of device
[  298.986811][T17344] loop0: rw=2049, sector=498, nr_sectors = 6 limit=64
[  299.000321][T17344] EXT4-fs warning (device loop0): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 249)
[  299.011579][T17344] Buffer I/O error on device loop0, logical block 249
[  299.018360][T17344] Buffer I/O error on device loop0, logical block 250
[  299.020842][T17355] bond1 (unregistering): Released all slaves
[  299.025133][T17344] Buffer I/O error on device loop0, logical block 251
[  299.086756][T11696] EXT4-fs warning (device loop0): ext4_evict_inode:276: xattr delete (err -12)
[  299.247620][T17370] loop1: detected capacity change from 0 to 2048
[  299.270064][T17370] EXT4-fs error (device loop1): ext4_orphan_get:1415: comm syz.1.4914: bad orphan inode 8192
[  299.449939][T17386] loop3: detected capacity change from 0 to 8192
[  299.510983][T17391] loop0: detected capacity change from 0 to 512
[  299.522982][T17391] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  299.541718][T17391] ext4 filesystem being mounted at /371/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  299.566352][T17391] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=640 sclass=netlink_route_socket pid=17391 comm=syz.0.4923
[  299.758863][T17402] 8021q: adding VLAN 0 to HW filter on device batadv1
[  299.977577][T17410] xt_hashlimit: max too large, truncated to 1048576
[  300.075188][T17415] loop0: detected capacity change from 0 to 2048
[  300.100456][T17415] EXT4-fs error (device loop0): ext4_orphan_get:1415: comm syz.0.4929: bad orphan inode 8192
[  300.320117][T17427] loop1: detected capacity change from 0 to 512
[  300.333013][T17427] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  300.384858][T17427] ext4 filesystem being mounted at /292/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  300.427180][T17435] loop3: detected capacity change from 0 to 2048
[  300.449989][T17435]  loop3: p1 < > p4
[  300.454279][T17435] loop3: p4 size 8388608 extends beyond EOD, truncated
[  300.470098][ T3000]  loop3: p1 < > p4
[  300.478219][ T3000] loop3: p4 size 8388608 extends beyond EOD, truncated
[  300.497585][T17437] loop0: detected capacity change from 0 to 2048
[  300.550751][T17437] EXT4-fs error (device loop0): ext4_orphan_get:1415: comm syz.0.4938: bad orphan inode 8192
[  300.585485][ T3485] udevd[3485]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[  300.588495][ T3487] udevd[3487]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  300.656664][T17448] loop3: detected capacity change from 0 to 164
[  300.668371][T17448] syz.3.4943: attempt to access beyond end of device
[  300.668371][T17448] loop3: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  300.683175][T17448] syz.3.4943: attempt to access beyond end of device
[  300.683175][T17448] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164
[  300.733333][T17454] loop1: detected capacity change from 0 to 164
[  300.768488][T17454] syz.1.4942: attempt to access beyond end of device
[  300.768488][T17454] loop1: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  300.785342][T17454] syz.1.4942: attempt to access beyond end of device
[  300.785342][T17454] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[  300.803880][ T5399] bond0: (slave bond_slave_0): interface is now down
[  300.803878][T17456] bond0: option resend_igmp: invalid value (37005)
[  300.803904][T17456] bond0: option resend_igmp: allowed values 0 - 255
[  300.810641][ T5399] bond0: (slave bond_slave_1): interface is now down
[  300.834164][ T5399] bond0: now running without any active interface!
[  300.890488][T17461] loop3: detected capacity change from 0 to 512
[  300.897778][T17461] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  300.922119][T17461] ext4 filesystem being mounted at /479/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  300.957243][T17467] loop1: detected capacity change from 0 to 128
[  301.036579][T17470] syz.1.4950: attempt to access beyond end of device
[  301.036579][T17470] loop1: rw=3, sector=177, nr_sectors = 7 limit=128
[  301.058253][T17470] syz.1.4950: attempt to access beyond end of device
[  301.058253][T17470] loop1: rw=2051, sector=184, nr_sectors = 1 limit=128
[  301.259211][T17492] loop3: detected capacity change from 0 to 512
[  301.304996][T17492] EXT4-fs (loop3): blocks per group (95) and clusters per group (32768) inconsistent
[  301.347075][T17494] loop0: detected capacity change from 0 to 2048
[  301.418490][T17494] EXT4-fs error (device loop0): ext4_orphan_get:1415: comm syz.0.4958: bad orphan inode 8192
[  301.526977][T17526] loop3: detected capacity change from 0 to 512
[  301.554193][T17526] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  301.584810][T17531] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  301.591999][T17526] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002]
[  301.618679][T17531] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[  301.619494][T17526] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.4965: corrupted in-inode xattr: e_value size too large
[  301.625226][T17531] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  301.625395][T17531] vhci_hcd vhci_hcd.0: Device attached
[  301.649854][T17526] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.4965: couldn't read orphan inode 15 (err -117)
[  301.674584][T17526] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none.
[  301.695496][T17526] rdma_rxe: rxe_newlink: failed to add lo
[  301.701762][T17526] rdma_rxe: rxe_newlink: failed to add dummy0
[  301.751235][T17535] vhci_hcd: connection closed
[  301.751835][ T5848] vhci_hcd: stop threads
[  301.760873][ T5848] vhci_hcd: release socket
[  301.765302][ T5848] vhci_hcd: disconnect device
[  301.803369][T17540] loop0: detected capacity change from 0 to 2048
[  301.825526][T17540] EXT4-fs error (device loop0): ext4_orphan_get:1415: comm syz.0.4967: bad orphan inode 8192
[  301.865470][   T30] kauditd_printk_skb: 304 callbacks suppressed
[  301.865487][   T30] audit: type=1326 audit(1742430078.171:11626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17539 comm="syz.0.4967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f19c6afbad0 code=0x7ffc0000
[  301.958361][   T30] audit: type=1326 audit(1742430078.211:11627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17539 comm="syz.0.4967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f19c6afbeb7 code=0x7ffc0000
[  301.982075][   T30] audit: type=1326 audit(1742430078.211:11628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17539 comm="syz.0.4967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f19c6afbad0 code=0x7ffc0000
[  302.005740][   T30] audit: type=1326 audit(1742430078.211:11629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17539 comm="syz.0.4967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19c6afd169 code=0x7ffc0000
[  302.029365][   T30] audit: type=1326 audit(1742430078.211:11630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17539 comm="syz.0.4967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19c6afd169 code=0x7ffc0000
[  302.057364][   T30] audit: type=1326 audit(1742430078.211:11631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17539 comm="syz.0.4967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f19c6afd169 code=0x7ffc0000
[  302.081726][   T30] audit: type=1326 audit(1742430078.211:11632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17539 comm="syz.0.4967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19c6afd169 code=0x7ffc0000
[  302.105360][   T30] audit: type=1326 audit(1742430078.211:11633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17539 comm="syz.0.4967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19c6afd169 code=0x7ffc0000
[  302.129352][   T30] audit: type=1326 audit(1742430078.211:11634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17539 comm="syz.0.4967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=328 compat=0 ip=0x7f19c6afd169 code=0x7ffc0000
[  302.153193][   T30] audit: type=1326 audit(1742430078.221:11635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17539 comm="syz.0.4967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19c6afd169 code=0x7ffc0000
[  302.218787][T17572] validate_nla: 4 callbacks suppressed
[  302.218804][T17572] netlink: 'syz.1.4972': attribute type 16 has an invalid length.
[  302.232262][T17572] netlink: 'syz.1.4972': attribute type 17 has an invalid length.
[  302.329191][T17572] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  302.396939][T17588] loop4: detected capacity change from 0 to 8192
[  302.411733][T17592] loop1: detected capacity change from 0 to 512
[  302.437918][T17594] loop0: detected capacity change from 0 to 512
[  302.444632][T17592] EXT4-fs (loop1): blocks per group (95) and clusters per group (32768) inconsistent
[  302.481990][T17594] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  302.502367][T17594] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002]
[  302.517907][T17594] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.4979: corrupted in-inode xattr: e_value size too large
[  302.569648][T17594] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.4979: couldn't read orphan inode 15 (err -117)
[  302.626136][T17594] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none.
[  302.636823][T17594] rdma_rxe: rxe_newlink: failed to add lo
[  302.643622][T17594] rdma_rxe: rxe_newlink: failed to add dummy0
[  303.126366][T17626] netlink: 'syz.0.4988': attribute type 16 has an invalid length.
[  303.134290][T17626] netlink: 'syz.0.4988': attribute type 17 has an invalid length.
[  303.157565][T17626] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  303.295214][T17637] loop1: detected capacity change from 0 to 512
[  303.311273][T17637] journal_path: Non-blockdev passed as './bus'
[  303.317538][T17637] EXT4-fs: error: could not find journal device path
[  303.350589][T17651] __nla_validate_parse: 10 callbacks suppressed
[  303.350608][T17651] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4991'.
[  303.374590][T17651] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4991'.
[  303.387098][T17655] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  303.393720][T17655] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  303.401380][T17655] vhci_hcd vhci_hcd.0: Device attached
[  303.421192][T17656] vhci_hcd: connection closed
[  303.421898][ T5399] vhci_hcd: stop threads
[  303.431138][ T5399] vhci_hcd: release socket
[  303.435578][ T5399] vhci_hcd: disconnect device
[  303.451284][T17660] netlink: 380 bytes leftover after parsing attributes in process `syz.0.4991'.
[  303.482986][T17662] loop3: detected capacity change from 0 to 128
[  303.858908][T17680] loop3: detected capacity change from 0 to 512
[  303.865888][T17680] journal_path: Non-blockdev passed as './bus'
[  303.872117][T17680] EXT4-fs: error: could not find journal device path
[  303.991953][T17687] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5008'.
[  304.000947][T17687] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5008'.
[  304.019068][T17687] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5008'.
[  304.019975][T17688] loop0: detected capacity change from 0 to 8192
[  304.081796][T17687] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5008'.
[  304.090781][T17687] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5008'.
[  304.117920][T17687] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5008'.
[  304.153422][T17687] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5008'.
[  304.440254][T17706] 9pnet_fd: Insufficient options for proto=fd
[  304.748896][T17720] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  304.755594][T17720] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  304.763320][T17720] vhci_hcd vhci_hcd.0: Device attached
[  304.771739][T17721] vhci_hcd: connection closed
[  304.773382][ T5848] vhci_hcd: stop threads
[  304.782574][ T5848] vhci_hcd: release socket
[  304.787013][ T5848] vhci_hcd: disconnect device
[  304.871901][T17724] loop1: detected capacity change from 0 to 512
[  304.894568][T17724] journal_path: Non-blockdev passed as './bus'
[  304.900956][T17724] EXT4-fs: error: could not find journal device path
[  304.994642][T17726] loop1: detected capacity change from 0 to 512
[  305.023080][T17726] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  305.063728][T17726] ext4 filesystem being mounted at /317/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  305.305859][T17751] netlink: 'syz.2.5041': attribute type 16 has an invalid length.
[  305.313760][T17751] netlink: 'syz.2.5041': attribute type 17 has an invalid length.
[  305.324559][T17752] loop3: detected capacity change from 0 to 128
[  305.341302][T17751] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  305.398136][T17755] bio_check_eod: 218 callbacks suppressed
[  305.398156][T17755] syz.3.5031: attempt to access beyond end of device
[  305.398156][T17755] loop3: rw=3, sector=177, nr_sectors = 7 limit=128
[  305.420874][T17755] syz.3.5031: attempt to access beyond end of device
[  305.420874][T17755] loop3: rw=2051, sector=184, nr_sectors = 1 limit=128
[  305.447156][T17757] rdma_rxe: rxe_newlink: failed to add lo
[  305.453899][T17757] rdma_rxe: rxe_newlink: failed to add dummy0
[  305.505801][T17760] loop4: detected capacity change from 0 to 512
[  305.529710][T17760] journal_path: Non-blockdev passed as './bus'
[  305.535965][T17760] EXT4-fs: error: could not find journal device path
[  305.583380][ T5399] kworker/u8:8: attempt to access beyond end of device
[  305.583380][ T5399] loop3: rw=1, sector=145, nr_sectors = 32 limit=128
[  305.599525][ T5399] kworker/u8:8: attempt to access beyond end of device
[  305.599525][ T5399] loop3: rw=1, sector=185, nr_sectors = 8 limit=128
[  305.613082][T17762] loop4: detected capacity change from 0 to 128
[  305.613609][ T5399] kworker/u8:8: attempt to access beyond end of device
[  305.613609][ T5399] loop3: rw=1, sector=201, nr_sectors = 16 limit=128
[  305.655469][ T5399] kworker/u8:8: attempt to access beyond end of device
[  305.655469][ T5399] loop3: rw=1, sector=225, nr_sectors = 8 limit=128
[  305.676720][ T5399] kworker/u8:8: attempt to access beyond end of device
[  305.676720][ T5399] loop3: rw=1, sector=241, nr_sectors = 8 limit=128
[  305.694298][ T5399] kworker/u8:8: attempt to access beyond end of device
[  305.694298][ T5399] loop3: rw=1, sector=257, nr_sectors = 8 limit=128
[  305.707876][ T5399] kworker/u8:8: attempt to access beyond end of device
[  305.707876][ T5399] loop3: rw=1, sector=273, nr_sectors = 8 limit=128
[  305.722058][ T5399] kworker/u8:8: attempt to access beyond end of device
[  305.722058][ T5399] loop3: rw=1, sector=289, nr_sectors = 8 limit=128
[  305.806974][T17766] loop3: detected capacity change from 0 to 2048
[  305.830031][T17766] EXT4-fs error (device loop3): ext4_orphan_get:1415: comm syz.3.5035: bad orphan inode 8192
[  305.920171][T17782] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7)
[  305.926764][T17782] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  305.934463][T17782] vhci_hcd vhci_hcd.0: Device attached
[  305.943732][T17783] vhci_hcd: connection closed
[  305.948385][   T12] vhci_hcd: stop threads
[  305.957543][   T12] vhci_hcd: release socket
[  305.960864][T17788] netlink: 'syz.2.5043': attribute type 16 has an invalid length.
[  305.962035][   T12] vhci_hcd: disconnect device
[  305.969794][T17788] netlink: 'syz.2.5043': attribute type 17 has an invalid length.
[  306.010928][T17788] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  306.110858][T17796] loop0: detected capacity change from 0 to 512
[  306.132320][T17796] journal_path: Non-blockdev passed as './bus'
[  306.138525][T17796] EXT4-fs: error: could not find journal device path
[  306.231638][T17800] loop0: detected capacity change from 0 to 512
[  306.263273][T17800] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  306.292860][T17800] EXT4-fs (loop0): 1 truncate cleaned up
[  306.331583][T17806] loop0: detected capacity change from 0 to 512
[  306.359506][T17806] EXT4-fs: Ignoring removed oldalloc option
[  306.370583][T17806] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  306.423779][T17810] loop1: detected capacity change from 0 to 512
[  306.433586][T17810] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  306.456583][T17806] EXT4-fs (loop0): 1 truncate cleaned up
[  306.477161][T17810] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002]
[  306.488135][T17810] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.5051: corrupted in-inode xattr: e_value size too large
[  306.510521][T17810] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.5051: couldn't read orphan inode 15 (err -117)
[  306.542170][T17810] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none.
[  306.553824][T17810] s
z1: rxe_newlink: already configured on lo
[  306.560485][T17810] syz2: rxe_newlink: already configured on dummy0
[  306.577186][T17806] loop0: detected capacity change from 512 to 64
[  306.594870][T17806] EXT4-fs warning (device loop0): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 255)
[  306.606247][T17806] Buffer I/O error on device loop0, logical block 255
[  306.643936][T17806] EXT4-fs warning (device loop0): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 253)
[  306.655266][T17806] Buffer I/O error on device loop0, logical block 253
[  306.662126][T17806] Buffer I/O error on device loop0, logical block 254
[  306.689088][T17806] EXT4-fs warning (device loop0): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 37)
[  306.700294][T17806] Buffer I/O error on device loop0, logical block 37
[  306.706990][T17806] Buffer I/O error on device loop0, logical block 38
[  306.713683][T17806] Buffer I/O error on device loop0, logical block 39
[  306.720408][T17806] Buffer I/O error on device loop0, logical block 40
[  306.740576][T17806] EXT4-fs warning (device loop0): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 249)
[  306.751951][T17806] Buffer I/O error on device loop0, logical block 249
[  306.758739][T17806] Buffer I/O error on device loop0, logical block 250
[  306.765523][T17806] Buffer I/O error on device loop0, logical block 251
[  306.795670][T11696] EXT4-fs warning (device loop0): ext4_evict_inode:276: xattr delete (err -12)
[  306.886513][T17825] loop3: detected capacity change from 0 to 8192
[  307.096931][T17836] loop0: detected capacity change from 0 to 128
[  307.433410][T17857] loop1: detected capacity change from 0 to 128
[  307.665466][T17867] loop4: detected capacity change from 0 to 512
[  307.716140][T17867] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  307.731758][T17867] EXT4-fs (loop4): 1 truncate cleaned up
[  307.893304][T17881] loop1: detected capacity change from 0 to 2048
[  307.910816][T17881] EXT4-fs error (device loop1): ext4_orphan_get:1415: comm syz.1.5073: bad orphan inode 8192
[  308.288572][   T30] kauditd_printk_skb: 139 callbacks suppressed
[  308.288586][   T30] audit: type=1326 audit(1742430084.591:11775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17899 comm="syz.1.5080" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23ae28d169 code=0x7ffc0000
[  308.322318][   T30] audit: type=1326 audit(1742430084.631:11776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17899 comm="syz.1.5080" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23ae28d169 code=0x7ffc0000
[  308.329408][T17900] bond1: entered promiscuous mode
[  308.346257][   T30] audit: type=1326 audit(1742430084.631:11777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17899 comm="syz.1.5080" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f23ae28d169 code=0x7ffc0000
[  308.351255][T17900] bond1: entered allmulticast mode
[  308.374787][   T30] audit: type=1326 audit(1742430084.631:11778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17899 comm="syz.1.5080" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23ae28d169 code=0x7ffc0000
[  308.382636][T17900] 8021q: adding VLAN 0 to HW filter on device bond1
[  308.403494][   T30] audit: type=1326 audit(1742430084.631:11779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17899 comm="syz.1.5080" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23ae28d169 code=0x7ffc0000
[  308.433811][   T30] audit: type=1326 audit(1742430084.631:11780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17899 comm="syz.1.5080" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f23ae28d169 code=0x7ffc0000
[  308.457464][   T30] audit: type=1326 audit(1742430084.631:11781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17899 comm="syz.1.5080" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23ae28d169 code=0x7ffc0000
[  308.481135][   T30] audit: type=1326 audit(1742430084.631:11782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17899 comm="syz.1.5080" exe="/root/syz-executor" sig=0 arch=c000003e syscall=99 compat=0 ip=0x7f23ae28d169 code=0x7ffc0000
[  308.504774][   T30] audit: type=1326 audit(1742430084.631:11783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17899 comm="syz.1.5080" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23ae28d169 code=0x7ffc0000
[  308.528423][   T30] audit: type=1326 audit(1742430084.631:11784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17899 comm="syz.1.5080" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f23ae28d169 code=0x7ffc0000
[  308.560482][T17900] bond1 (unregistering): Released all slaves
[  308.603108][T17911] loop0: detected capacity change from 0 to 512
[  308.612208][T17911] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  308.640602][T17911] ext4 filesystem being mounted at /412/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  308.667830][T17911] __nla_validate_parse: 14 callbacks suppressed
[  308.667853][T17911] netlink: 44 bytes leftover after parsing attributes in process `syz.0.5083'.
[  308.727461][T17915] loop1: detected capacity change from 0 to 8192
[  309.431698][T17946] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5095'.
[  309.440693][T17946] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5095'.
[  309.470477][T17946] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5095'.
[  309.518078][T17946] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5095'.
[  309.527055][T17946] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5095'.
[  309.547098][T17948] bond1: entered promiscuous mode
[  309.552304][T17948] bond1: entered allmulticast mode
[  309.558145][T17948] 8021q: adding VLAN 0 to HW filter on device bond1
[  309.560554][T17946] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5095'.
[  309.595965][T17948] bond1 (unregistering): Released all slaves
[  309.624464][T17946] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5095'.
[  309.633569][T17946] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5095'.
[  309.709136][T17946] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5095'.
[  309.942540][T17975] loop1: detected capacity change from 0 to 8192
[  310.063221][T17985] loop0: detected capacity change from 0 to 128
[  310.207519][T17989] loop0: detected capacity change from 0 to 128
[  310.882254][T18020] loop4: detected capacity change from 0 to 128
[  311.021637][T18021] bio_check_eod: 650 callbacks suppressed
[  311.021658][T18021] syz.4.5118: attempt to access beyond end of device
[  311.021658][T18021] loop4: rw=3, sector=177, nr_sectors = 7 limit=128
[  311.050431][T18021] syz.4.5118: attempt to access beyond end of device
[  311.050431][T18021] loop4: rw=2051, sector=184, nr_sectors = 1 limit=128
[  311.120661][T18025] loop0: detected capacity change from 0 to 8192
[  311.322963][ T5399] kworker/u8:8: attempt to access beyond end of device
[  311.322963][ T5399] loop4: rw=1, sector=145, nr_sectors = 32 limit=128
[  311.348600][ T5399] kworker/u8:8: attempt to access beyond end of device
[  311.348600][ T5399] loop4: rw=1, sector=185, nr_sectors = 8 limit=128
[  311.377739][ T5399] kworker/u8:8: attempt to access beyond end of device
[  311.377739][ T5399] loop4: rw=1, sector=201, nr_sectors = 16 limit=128
[  311.407645][ T5399] kworker/u8:8: attempt to access beyond end of device
[  311.407645][ T5399] loop4: rw=1, sector=225, nr_sectors = 8 limit=128
[  311.436628][ T5399] kworker/u8:8: attempt to access beyond end of device
[  311.436628][ T5399] loop4: rw=1, sector=241, nr_sectors = 8 limit=128
[  311.462862][ T5399] kworker/u8:8: attempt to access beyond end of device
[  311.462862][ T5399] loop4: rw=1, sector=257, nr_sectors = 8 limit=128
[  311.493091][ T5399] kworker/u8:8: attempt to access beyond end of device
[  311.493091][ T5399] loop4: rw=1, sector=273, nr_sectors = 8 limit=128
[  311.540238][ T5399] kworker/u8:8: attempt to access beyond end of device
[  311.540238][ T5399] loop4: rw=1, sector=289, nr_sectors = 8 limit=128
[  311.642489][T18072] loop4: detected capacity change from 0 to 128
[  311.951149][T18082] loop4: detected capacity change from 0 to 2048
[  312.015390][T18082] EXT4-fs error (device loop4): ext4_orphan_get:1415: comm syz.4.5131: bad orphan inode 8192
[  312.116550][T18099] loop4: detected capacity change from 0 to 512
[  312.123459][T18099] EXT4-fs: Ignoring removed oldalloc option
[  312.132389][T18099] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  312.143946][T18099] EXT4-fs (loop4): 1 truncate cleaned up
[  312.184263][T18103] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8)
[  312.190829][T18103] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  312.198483][T18103] vhci_hcd vhci_hcd.0: Device attached
[  312.212094][T18099] loop4: detected capacity change from 512 to 64
[  312.213963][T18104] vhci_hcd: connection closed
[  312.224432][   T12] vhci_hcd: stop threads
[  312.233465][   T12] vhci_hcd: release socket
[  312.233616][T18108] EXT4-fs warning (device loop4): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 255)
[  312.237879][   T12] vhci_hcd: disconnect device
[  312.253964][T18108] Buffer I/O error on device loop4, logical block 255
[  312.261190][T18108] EXT4-fs warning (device loop4): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 253)
[  312.272481][T18108] Buffer I/O error on device loop4, logical block 253
[  312.279356][T18108] Buffer I/O error on device loop4, logical block 254
[  312.286236][T18108] EXT4-fs warning (device loop4): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 37)
[  312.297409][T18108] Buffer I/O error on device loop4, logical block 37
[  312.304251][T18108] Buffer I/O error on device loop4, logical block 38
[  312.310944][T18108] Buffer I/O error on device loop4, logical block 39
[  312.317701][T18108] Buffer I/O error on device loop4, logical block 40
[  312.326640][T18108] EXT4-fs warning (device loop4): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 249)
[  312.337957][T18108] Buffer I/O error on device loop4, logical block 249
[  312.344882][T18108] Buffer I/O error on device loop4, logical block 250
[  312.351688][T18108] Buffer I/O error on device loop4, logical block 251
[  312.389415][T11418] EXT4-fs warning (device loop4): ext4_evict_inode:276: xattr delete (err -12)
[  312.464144][T18125] loop3: detected capacity change from 0 to 512
[  312.505211][T18125] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  312.548234][T18125] EXT4-fs (loop3): 1 truncate cleaned up
[  312.619695][T18147] loop3: detected capacity change from 0 to 128
[  313.602551][   T30] kauditd_printk_skb: 28 callbacks suppressed
[  313.602569][   T30] audit: type=1326 audit(1742430089.901:11813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18271 comm="syz.0.5163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19c6afd169 code=0x7ffc0000
[  313.632369][   T30] audit: type=1326 audit(1742430089.901:11814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18271 comm="syz.0.5163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19c6afd169 code=0x7ffc0000
[  313.656207][   T30] audit: type=1326 audit(1742430089.901:11815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18271 comm="syz.0.5163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f19c6afd169 code=0x7ffc0000
[  313.679880][   T30] audit: type=1326 audit(1742430089.901:11816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18271 comm="syz.0.5163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19c6afd169 code=0x7ffc0000
[  313.703663][   T30] audit: type=1326 audit(1742430089.901:11817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18271 comm="syz.0.5163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f19c6afd169 code=0x7ffc0000
[  313.707327][T18272] bond1: entered promiscuous mode
[  313.727328][   T30] audit: type=1326 audit(1742430089.901:11818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18271 comm="syz.0.5163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19c6afd169 code=0x7ffc0000
[  313.732367][T18272] bond1: entered allmulticast mode
[  313.733190][T18272] 8021q: adding VLAN 0 to HW filter on device bond1
[  313.755979][   T30] audit: type=1326 audit(1742430089.911:11819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18271 comm="syz.0.5163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=99 compat=0 ip=0x7f19c6afd169 code=0x7ffc0000
[  313.791249][   T30] audit: type=1326 audit(1742430089.911:11820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18271 comm="syz.0.5163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19c6afd169 code=0x7ffc0000
[  313.807099][T18284] loop3: detected capacity change from 0 to 512
[  313.814989][   T30] audit: type=1326 audit(1742430089.911:11821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18271 comm="syz.0.5163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f19c6afd169 code=0x7ffc0000
[  313.825694][T18284] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  313.844771][   T30] audit: type=1326 audit(1742430089.911:11822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18271 comm="syz.0.5163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19c6afd169 code=0x7ffc0000
[  313.880616][T18284] EXT4-fs (loop3): 1 truncate cleaned up
[  313.887063][T18284] EXT4-fs mount: 58 callbacks suppressed
[  313.887077][T18284] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  313.906387][T18284] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  313.906975][T18272] bond1 (unregistering): Released all slaves
[  313.975901][T18290] loop1: detected capacity change from 0 to 512
[  313.991181][T18290] EXT4-fs: Ignoring removed oldalloc option
[  314.005499][T18290] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  314.028047][T18290] EXT4-fs (loop1): 1 truncate cleaned up
[  314.034819][T18290] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  314.129093][T18290] loop1: detected capacity change from 512 to 64
[  314.140524][T18290] EXT4-fs warning (device loop1): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 255)
[  314.153032][T18290] EXT4-fs warning (device loop1): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 253)
[  314.164736][T18290] EXT4-fs warning (device loop1): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 37)
[  314.180848][T18290] EXT4-fs warning (device loop1): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 249)
[  314.219394][T12669] EXT4-fs warning (device loop1): ext4_evict_inode:276: xattr delete (err -12)
[  314.284715][T12669] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  314.288556][T18326] __nla_validate_parse: 15 callbacks suppressed
[  314.288585][T18326] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5175'.
[  314.341248][T18326] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5175'.
[  314.388379][T18333] loop0: detected capacity change from 0 to 2048
[  314.438705][T18333] EXT4-fs error (device loop0): ext4_orphan_get:1415: comm syz.0.5180: bad orphan inode 8192
[  314.461520][T18333] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  314.586225][T11696] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  314.677295][T18372] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5188'.
[  314.686297][T18372] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5188'.
[  314.708627][T18378] loop0: detected capacity change from 0 to 128
[  314.738638][T18372] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5188'.
[  314.781355][T18372] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5188'.
[  314.790394][T18372] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5188'.
[  314.807063][T18372] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5188'.
[  314.901463][T18386] bond1: entered promiscuous mode
[  314.906618][T18386] bond1: entered allmulticast mode
[  314.918460][T18386] 8021q: adding VLAN 0 to HW filter on device bond1
[  314.929742][T18397] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  314.936375][T18397] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  314.944107][T18397] vhci_hcd vhci_hcd.0: Device attached
[  314.950681][T18372] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5188'.
[  314.959696][T18372] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5188'.
[  314.971454][T18402] vhci_hcd: connection closed
[  314.971875][   T12] vhci_hcd: stop threads
[  314.981049][   T12] vhci_hcd: release socket
[  314.985526][   T12] vhci_hcd: disconnect device
[  314.993428][T18386] bond1 (unregistering): Released all slaves
[  315.243473][T18439] FAULT_INJECTION: forcing a failure.
[  315.243473][T18439] name failslab, interval 1, probability 0, space 0, times 0
[  315.256314][T18439] CPU: 0 UID: 0 PID: 18439 Comm: syz.2.5200 Tainted: G        W          6.14.0-rc7-syzkaller-00074-ga7f2e10ecd8f #0
[  315.256349][T18439] Tainted: [W]=WARN
[  315.256358][T18439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  315.256377][T18439] Call Trace:
[  315.256386][T18439]  <TASK>
[  315.256396][T18439]  dump_stack_lvl+0xf2/0x150
[  315.256480][T18439]  dump_stack+0x15/0x1a
[  315.256570][T18439]  should_fail_ex+0x24a/0x260
[  315.256671][T18439]  should_failslab+0x8f/0xb0
[  315.256736][T18439]  __kmalloc_node_noprof+0xad/0x410
[  315.256764][T18439]  ? vmemdup_user+0x42/0x1b0
[  315.256814][T18439]  vmemdup_user+0x42/0x1b0
[  315.256847][T18439]  map_lookup_elem+0x1f5/0x560
[  315.256888][T18439]  __sys_bpf+0x398/0x7a0
[  315.256930][T18439]  __x64_sys_bpf+0x43/0x50
[  315.256978][T18439]  x64_sys_call+0x2914/0x2dc0
[  315.257004][T18439]  do_syscall_64+0xc9/0x1c0
[  315.257043][T18439]  ? clear_bhb_loop+0x55/0xb0
[  315.257109][T18439]  ? clear_bhb_loop+0x55/0xb0
[  315.257137][T18439]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.257170][T18439] RIP: 0033:0x7f3b3537d169
[  315.257189][T18439] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  315.257276][T18439] RSP: 002b:00007f3b339e1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  315.257314][T18439] RAX: ffffffffffffffda RBX: 00007f3b35595fa0 RCX: 00007f3b3537d169
[  315.257330][T18439] RDX: 0000000000000020 RSI: 0000400000000200 RDI: 0000000000000001
[  315.257345][T18439] RBP: 00007f3b339e1090 R08: 0000000000000000 R09: 0000000000000000
[  315.257360][T18439] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  315.257375][T18439] R13: 0000000000000000 R14: 00007f3b35595fa0 R15: 00007ffe5ac15148
[  315.257401][T18439]  </TASK>
[  315.457386][T18441] loop4: detected capacity change from 0 to 512
[  315.471178][T18441] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  315.483209][T18446] loop1: detected capacity change from 0 to 512
[  315.489829][T18446] journal_path: Non-blockdev passed as './bus'
[  315.496096][T18446] EXT4-fs: error: could not find journal device path
[  315.503976][T18441] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002]
[  315.518476][T18441] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.5199: corrupted in-inode xattr: e_value size too large
[  315.536477][T18441] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.5199: couldn't read orphan inode 15 (err -117)
[  315.553866][T18441] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  315.600549][T18441] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none.
[  315.626025][T18441] rdma_rxe: rxe_newlink: failed to add lo
[  315.634065][T18441] rdma_rxe: rxe_newlink: failed to add dummy0
[  315.683685][T18463] bond1: entered promiscuous mode
[  315.688782][T18463] bond1: entered allmulticast mode
[  315.701044][T18463] 8021q: adding VLAN 0 to HW filter on device bond1
[  315.720234][T18463] bond1 (unregistering): Released all slaves
[  315.726451][T18466] loop3: detected capacity change from 0 to 512
[  315.734894][T18466] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  315.829818][T18466] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  315.870774][T18466] ext4 filesystem being mounted at /518/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  315.933753][T18477] loop1: detected capacity change from 0 to 512
[  315.957253][T18477] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  315.979332][T11133] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  316.008908][T18477] EXT4-fs (loop1): 1 truncate cleaned up
[  316.015251][T18477] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  316.048275][T18477] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  316.097619][T11418] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  316.157152][T18488] rdma_rxe: rxe_newlink: failed to add lo
[  316.180788][T18488] rdma_rxe: rxe_newlink: failed to add dummy0
[  316.191847][T18499] loop4: detected capacity change from 0 to 512
[  316.205256][T18499] EXT4-fs: Ignoring removed oldalloc option
[  316.223469][T18499] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  316.247277][T18499] EXT4-fs (loop4): 1 truncate cleaned up
[  316.254614][T18499] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  316.329122][T18499] loop4: detected capacity change from 512 to 64
[  316.340016][T18499] bio_check_eod: 325 callbacks suppressed
[  316.340048][T18499] syz.4.5219: attempt to access beyond end of device
[  316.340048][T18499] loop4: rw=2049, sector=510, nr_sectors = 2 limit=64
[  316.359158][T18499] EXT4-fs warning (device loop4): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 255)
[  316.373764][T18499] syz.4.5219: attempt to access beyond end of device
[  316.373764][T18499] loop4: rw=2049, sector=506, nr_sectors = 4 limit=64
[  316.387190][T18499] EXT4-fs warning (device loop4): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 253)
[  316.398906][T18499] syz.4.5219: attempt to access beyond end of device
[  316.398906][T18499] loop4: rw=2049, sector=74, nr_sectors = 8 limit=64
[  316.412244][T18499] EXT4-fs warning (device loop4): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 37)
[  316.433569][T18499] syz.4.5219: attempt to access beyond end of device
[  316.433569][T18499] loop4: rw=2049, sector=498, nr_sectors = 6 limit=64
[  316.446990][T18499] EXT4-fs warning (device loop4): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 249)
[  316.496480][T11418] EXT4-fs warning (device loop4): ext4_evict_inode:276: xattr delete (err -12)
[  316.527635][T11418] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  316.655099][T18530] bond1: entered promiscuous mode
[  316.660296][T18530] bond1: entered allmulticast mode
[  316.665748][T18530] 8021q: adding VLAN 0 to HW filter on device bond1
[  316.687344][T18530] bond1 (unregistering): Released all slaves
[  316.705705][T18544] dvmrp5: entered allmulticast mode
[  316.714110][T18544] dvmrp5: left allmulticast mode
[  316.775868][T18546] SELinux:  Context system_u:object_r:udev_exec_t:s0 is not valid (left unmapped).
[  316.796517][T18548] loop4: detected capacity change from 0 to 256
[  316.812795][T18548] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  316.897609][T18550] 9pnet: Could not find request transport: fd0x0000000000000005
[  316.954322][T18555] loop0: detected capacity change from 0 to 512
[  316.978047][T18555] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  316.990614][T18555] EXT4-fs (loop0): 1 truncate cleaned up
[  316.996785][T18555] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  317.019854][T18555] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  317.040046][T18563] loop1: detected capacity change from 0 to 128
[  317.081975][T18563] syz.1.5231: attempt to access beyond end of device
[  317.081975][T18563] loop1: rw=2051, sector=104, nr_sectors = 25 limit=128
[  317.221205][T18587] 9pnet: Could not find request transport: fd0x0000000000000005
[  317.251743][T18598] loop4: detected capacity change from 0 to 128
[  317.255404][T18577] bond1: entered promiscuous mode
[  317.263292][T18577] bond1: entered allmulticast mode
[  317.268994][T18577] 8021q: adding VLAN 0 to HW filter on device bond1
[  317.278662][T18598] syz.4.5242: attempt to access beyond end of device
[  317.278662][T18598] loop4: rw=2051, sector=104, nr_sectors = 25 limit=128
[  317.294645][T18577] bond1 (unregistering): Released all slaves
[  317.317878][T18603] loop4: detected capacity change from 0 to 512
[  317.335782][T18603] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  317.344187][T18603] EXT4-fs (loop4): orphan cleanup on readonly fs
[  317.351522][T18603] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm syz.4.5243: Failed to acquire dquot type 1
[  317.363838][T18603] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5243: bg 0: block 40: padding at end of block bitmap is not set
[  317.378580][T18603] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  317.388086][T18603] EXT4-fs (loop4): 1 truncate cleaned up
[  317.394435][T18603] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  317.418678][T18606] loop1: detected capacity change from 0 to 512
[  317.427125][T18606] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  317.438429][T18606] EXT4-fs (loop1): 1 truncate cleaned up
[  317.444624][T18606] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  317.457476][T18606] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  317.492910][T18610] loop1: detected capacity change from 0 to 512
[  317.499519][T18610] journal_path: Non-blockdev passed as './bus'
[  317.505833][T18610] EXT4-fs: error: could not find journal device path
[  317.718178][T18629] loop1: detected capacity change from 0 to 512
[  317.725220][T18629] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  317.751140][T18629] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  317.763878][T18629] ext4 filesystem being mounted at /363/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  317.868204][T12669] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  317.935047][T18638] 9pnet: Could not find request transport: fd0x0000000000000005
[  317.966479][T18642] loop1: detected capacity change from 0 to 1024
[  317.978614][T18642] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  317.989608][T18642] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  318.000602][T18642] JBD2: no valid journal superblock found
[  318.006361][T18642] EXT4-fs (loop1): Could not load journal inode
[  318.080286][T18653] dvmrp5: entered allmulticast mode
[  318.087156][T18653] dvmrp5: left allmulticast mode
[  318.178447][T11418] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  318.204004][T18671] 9pnet_fd: Insufficient options for proto=fd
[  318.246425][T18676] loop4: detected capacity change from 0 to 512
[  318.273105][T18676] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  318.302406][T18676] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  318.330538][T18676] ext4 filesystem being mounted at /399/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  318.416549][T18690] loop0: detected capacity change from 0 to 8192
[  318.461107][T11418] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  318.561888][T18701] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  318.824750][T18736] loop4: detected capacity change from 0 to 512
[  318.831633][T18736] EXT4-fs: Ignoring removed oldalloc option
[  318.837972][T18736] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  318.850757][T18737] 9pnet_fd: Insufficient options for proto=fd
[  318.861115][T18736] EXT4-fs (loop4): 1 truncate cleaned up
[  318.921082][T18736] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  318.948148][T18748] veth1_macvtap: left promiscuous mode
[  319.009344][T18736] loop4: detected capacity change from 512 to 64
[  319.035839][T18736] syz.4.5274: attempt to access beyond end of device
[  319.035839][T18736] loop4: rw=2049, sector=510, nr_sectors = 2 limit=64
[  319.049424][T18736] EXT4-fs warning (device loop4): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 255)
[  319.060681][T18736] buffer_io_error: 20 callbacks suppressed
[  319.060695][T18736] Buffer I/O error on device loop4, logical block 255
[  319.073684][T18736] syz.4.5274: attempt to access beyond end of device
[  319.073684][T18736] loop4: rw=2049, sector=506, nr_sectors = 4 limit=64
[  319.087139][T18736] EXT4-fs warning (device loop4): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 253)
[  319.098445][T18736] Buffer I/O error on device loop4, logical block 253
[  319.105351][T18736] Buffer I/O error on device loop4, logical block 254
[  319.112996][T18736] syz.4.5274: attempt to access beyond end of device
[  319.112996][T18736] loop4: rw=2049, sector=74, nr_sectors = 8 limit=64
[  319.126347][T18736] EXT4-fs warning (device loop4): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 37)
[  319.137728][T18736] Buffer I/O error on device loop4, logical block 37
[  319.144412][T18736] Buffer I/O error on device loop4, logical block 38
[  319.151095][T18736] Buffer I/O error on device loop4, logical block 39
[  319.157846][T18736] Buffer I/O error on device loop4, logical block 40
[  319.165315][T18736] syz.4.5274: attempt to access beyond end of device
[  319.165315][T18736] loop4: rw=2049, sector=498, nr_sectors = 6 limit=64
[  319.178794][T18736] EXT4-fs warning (device loop4): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 249)
[  319.190091][T18736] Buffer I/O error on device loop4, logical block 249
[  319.196870][T18736] Buffer I/O error on device loop4, logical block 250
[  319.203713][T18736] Buffer I/O error on device loop4, logical block 251
[  319.277863][T11418] EXT4-fs warning (device loop4): ext4_evict_inode:276: xattr delete (err -12)
[  319.315213][T11418] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  319.356189][T18769] __nla_validate_parse: 45 callbacks suppressed
[  319.356204][T18769] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5280'.
[  319.413479][T18777] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5280'.
[  319.423218][T18776] 9pnet_fd: Insufficient options for proto=fd
[  319.462911][T18784] netlink: 40 bytes leftover after parsing attributes in process `syz.2.5288'.
[  319.560686][T18801] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5290'.
[  319.735053][T18836] netlink: 40 bytes leftover after parsing attributes in process `syz.0.5300'.
[  319.738554][T18838] 9pnet_fd: Insufficient options for proto=fd
[  319.827249][T18846] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  319.925817][T18853] loop3: detected capacity change from 0 to 512
[  319.940598][T18853] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  319.955916][T18864] loop0: detected capacity change from 0 to 512
[  319.959711][T18853] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002]
[  319.972324][T18853] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.5306: corrupted in-inode xattr: e_value size too large
[  319.989008][T18853] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.5306: couldn't read orphan inode 15 (err -117)
[  320.002336][T18864] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  320.014821][T18853] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  320.032118][T18864] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  320.046747][T18853] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none.
[  320.057239][T18853] rdma_rxe: rxe_newlink: failed to add lo
[  320.063581][T18853] rdma_rxe: rxe_newlink: failed to add dummy0
[  320.065366][T18864] ext4 filesystem being mounted at /466/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  320.108264][T18864] netlink: 32 bytes leftover after parsing attributes in process `syz.0.5309'.
[  320.199703][T18893] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5310'.
[  320.243864][T11696] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  320.259414][T18893] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5310'.
[  320.282708][T11133] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  320.326677][T18905] loop3: detected capacity change from 0 to 512
[  320.363726][T18905] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  320.382001][T18909] netlink: 40 bytes leftover after parsing attributes in process `syz.0.5313'.
[  320.404636][T18905] EXT4-fs (loop3): 1 truncate cleaned up
[  320.424936][T18905] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  320.451928][T18905] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  320.466013][T18918] dvmrp5: entered allmulticast mode
[  320.475968][T18918] dvmrp5: left allmulticast mode
[  320.588246][T18927] loop4: detected capacity change from 0 to 512
[  320.597930][T18927] EXT4-fs: Ignoring removed oldalloc option
[  320.605827][T18927] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  320.621418][T18930] loop0: detected capacity change from 0 to 512
[  320.624857][T18931] loop3: detected capacity change from 0 to 2048
[  320.634255][T18927] EXT4-fs (loop4): 1 truncate cleaned up
[  320.644890][T18930] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  320.646628][T18927] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  320.662128][T18931] EXT4-fs error (device loop3): ext4_orphan_get:1415: comm syz.3.5318: bad orphan inode 8192
[  320.677067][T18931] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  320.702247][T18930] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  320.709101][T18927] loop4: detected capacity change from 512 to 64
[  320.722187][T18930] ext4 filesystem being mounted at /470/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  320.730887][T18927] EXT4-fs warning (device loop4): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 255)
[  320.750632][T18930] netlink: 32 bytes leftover after parsing attributes in process `syz.0.5321'.
[  320.760516][T18927] EXT4-fs warning (device loop4): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 253)
[  320.772036][T18927] EXT4-fs warning (device loop4): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 37)
[  320.783778][T18927] EXT4-fs warning (device loop4): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 249)
[  320.784539][T11133] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  320.821858][T11418] EXT4-fs warning (device loop4): ext4_evict_inode:276: xattr delete (err -12)
[  320.832937][T11696] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  320.843217][T11418] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  320.845795][T18938] loop3: detected capacity change from 0 to 128
[  320.871831][T18940] loop4: detected capacity change from 0 to 128
[  320.999412][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  321.122612][T18962] loop3: detected capacity change from 0 to 512
[  321.137905][T18962] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  321.154178][T18962] EXT4-fs (loop3): 1 truncate cleaned up
[  321.160904][T18962] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  321.177021][T18962] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.262676][T18987] loop4: detected capacity change from 0 to 512
[  321.272684][T18987] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  321.311762][T18987] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  321.329329][T18987] ext4 filesystem being mounted at /411/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  321.360308][T18995] loop3: detected capacity change from 0 to 512
[  321.380290][T18995] journal_path: Non-blockdev passed as './bus'
[  321.386593][T18995] EXT4-fs: error: could not find journal device path
[  321.493825][T19009] loop1: detected capacity change from 0 to 512
[  321.512198][T19009] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  321.521815][T19009] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002]
[  321.531446][T11418] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.541407][T19009] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.5339: corrupted in-inode xattr: e_value size too large
[  321.556966][T19009] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.5339: couldn't read orphan inode 15 (err -117)
[  321.569978][T19009] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  321.593067][T19009] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none.
[  321.603448][T19009] s
z1: rxe_newlink: already configured on lo
[  321.610779][T19009] syz2: rxe_newlink: already configured on dummy0
[  321.625610][T19018] loop3: detected capacity change from 0 to 512
[  321.633530][T19018] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  321.653142][T19018] EXT4-fs (loop3): 1 truncate cleaned up
[  321.660458][T19018] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  321.673408][T19018] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.785275][T19028] loop3: detected capacity change from 0 to 2048
[  321.831158][T19028] EXT4-fs error (device loop3): ext4_orphan_get:1415: comm syz.3.5345: bad orphan inode 8192
[  321.834276][T19031] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  321.855841][T19028] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  321.904635][T12669] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.936056][T11133] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.985396][T19052] dvmrp5: entered allmulticast mode
[  321.992424][T19052] dvmrp5: left allmulticast mode
[  322.012018][   T36] kernel write not supported for file /1187/attr/exec (pid: 36 comm: kworker/1:1)
[  322.123232][T19065] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8)
[  322.129788][T19065] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  322.137618][T19065] vhci_hcd vhci_hcd.0: Device attached
[  322.161205][T19075] loop1: detected capacity change from 0 to 512
[  322.169267][T19075] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  322.189345][T19075] EXT4-fs (loop1): 1 truncate cleaned up
[  322.195521][T19075] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  322.223416][T19066] vhci_hcd: connection closed
[  322.223692][ T5848] vhci_hcd: stop threads
[  322.232771][ T5848] vhci_hcd: release socket
[  322.237490][ T5848] vhci_hcd: disconnect device
[  322.246934][T19089] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  322.258244][T19075] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  322.325480][T19089] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(8)
[  322.332160][T19089] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  322.339833][T19089] vhci_hcd vhci_hcd.0: Device attached
[  322.346629][T19094] vhci_hcd: connection closed
[  322.346775][ T3393] vhci_hcd: stop threads
[  322.355910][ T3393] vhci_hcd: release socket
[  322.360649][ T3393] vhci_hcd: disconnect device
[  322.794311][T19125] loop0: detected capacity change from 0 to 512
[  322.801194][T19125] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  322.820674][T19125] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002]
[  322.828847][T19125] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.5360: corrupted in-inode xattr: e_value size too large
[  322.843119][T19125] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.5360: couldn't read orphan inode 15 (err -117)
[  322.855661][T19125] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  322.875083][T19125] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none.
[  322.885512][T19125] rdma_rxe: rxe_newlink: failed to add lo
[  322.898188][T19125] rdma_rxe: rxe_newlink: failed to add dummy0
[  322.927272][T19131] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  323.018462][T19135] loop3: detected capacity change from 0 to 2048
[  323.049299][T19135] EXT4-fs error (device loop3): ext4_orphan_get:1415: comm syz.3.5363: bad orphan inode 8192
[  323.061736][T19135] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  323.089168][T11133] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  323.129283][T19148] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  323.163913][T19152] loop3: detected capacity change from 0 to 2048
[  323.214925][T11696] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  323.240137][T19152] EXT4-fs error (device loop3): ext4_orphan_get:1415: comm syz.3.5365: bad orphan inode 8192
[  323.261123][T19152] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  323.282462][T19162] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  323.309373][   T10] kernel write not supported for file /1197/attr/exec (pid: 10 comm: kworker/0:1)
[  323.330296][T19162] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[  323.336852][T19162] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  323.344541][T19162] vhci_hcd vhci_hcd.0: Device attached
[  323.352263][T19173] vhci_hcd: connection closed
[  323.352799][   T51] vhci_hcd: stop threads
[  323.361808][   T51] vhci_hcd: release socket
[  323.366261][   T51] vhci_hcd: disconnect device
[  323.375742][T11133] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  323.434294][T19188] loop4: detected capacity change from 0 to 512
[  323.452441][T19188] EXT4-fs: Ignoring removed oldalloc option
[  323.461236][T19188] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  323.498717][T19188] EXT4-fs (loop4): 1 truncate cleaned up
[  323.506172][T19188] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  323.525725][T19199] loop3: detected capacity change from 0 to 512
[  323.532293][T19199] journal_path: Non-blockdev passed as './bus'
[  323.538478][T19199] EXT4-fs: error: could not find journal device path
[  323.590134][T19188] loop4: detected capacity change from 512 to 64
[  323.610072][T19205] loop3: detected capacity change from 0 to 128
[  323.627828][T19188] bio_check_eod: 224 callbacks suppressed
[  323.627845][T19188] syz.4.5375: attempt to access beyond end of device
[  323.627845][T19188] loop4: rw=2049, sector=510, nr_sectors = 2 limit=64
[  323.647041][T19188] EXT4-fs warning (device loop4): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 255)
[  323.660371][T19188] syz.4.5375: attempt to access beyond end of device
[  323.660371][T19188] loop4: rw=2049, sector=506, nr_sectors = 4 limit=64
[  323.673813][T19188] EXT4-fs warning (device loop4): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 253)
[  323.687850][T19188] syz.4.5375: attempt to access beyond end of device
[  323.687850][T19188] loop4: rw=2049, sector=74, nr_sectors = 8 limit=64
[  323.701186][T19188] EXT4-fs warning (device loop4): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 37)
[  323.713075][T19206] syz.3.5380: attempt to access beyond end of device
[  323.713075][T19206] loop3: rw=3, sector=377, nr_sectors = 7 limit=128
[  323.714089][T19188] syz.4.5375: attempt to access beyond end of device
[  323.714089][T19188] loop4: rw=2049, sector=498, nr_sectors = 6 limit=64
[  323.726656][T19206] syz.3.5380: attempt to access beyond end of device
[  323.726656][T19206] loop3: rw=2051, sector=384, nr_sectors = 1 limit=128
[  323.739601][T19188] EXT4-fs warning (device loop4): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 249)
[  323.793896][T11418] EXT4-fs warning (device loop4): ext4_evict_inode:276: xattr delete (err -12)
[  323.821589][T11418] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  323.831334][   T51] kworker/u8:3: attempt to access beyond end of device
[  323.831334][   T51] loop3: rw=1, sector=145, nr_sectors = 32 limit=128
[  323.845721][   T51] kworker/u8:3: attempt to access beyond end of device
[  323.845721][   T51] loop3: rw=1, sector=185, nr_sectors = 8 limit=128
[  323.860557][   T51] kworker/u8:3: attempt to access beyond end of device
[  323.860557][   T51] loop3: rw=1, sector=201, nr_sectors = 16 limit=128
[  323.910901][   T51] kworker/u8:3: attempt to access beyond end of device
[  323.910901][   T51] loop3: rw=1, sector=225, nr_sectors = 8 limit=128
[  323.948195][T19214] loop4: detected capacity change from 0 to 164
[  323.963595][T19214] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  323.966850][T19218] loop1: detected capacity change from 0 to 512
[  323.978225][T19216] dvmrp5: entered allmulticast mode
[  323.998306][T19218] EXT4-fs: Ignoring removed i_version option
[  324.011308][T19216] dvmrp5: left allmulticast mode
[  324.025587][T19218] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  324.040587][T19218] ext4 filesystem being mounted at /388/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  324.055091][T19218] FAULT_INJECTION: forcing a failure.
[  324.055091][T19218] name failslab, interval 1, probability 0, space 0, times 0
[  324.068062][T19218] CPU: 0 UID: 0 PID: 19218 Comm: syz.1.5385 Tainted: G        W          6.14.0-rc7-syzkaller-00074-ga7f2e10ecd8f #0
[  324.068093][T19218] Tainted: [W]=WARN
[  324.068099][T19218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  324.068112][T19218] Call Trace:
[  324.068118][T19218]  <TASK>
[  324.068126][T19218]  dump_stack_lvl+0xf2/0x150
[  324.068175][T19218]  dump_stack+0x15/0x1a
[  324.068199][T19218]  should_fail_ex+0x24a/0x260
[  324.068231][T19218]  should_failslab+0x8f/0xb0
[  324.068264][T19218]  kmem_cache_alloc_lru_noprof+0x57/0x320
[  324.068288][T19218]  ? __d_alloc+0x3d/0x350
[  324.068351][T19218]  __d_alloc+0x3d/0x350
[  324.068372][T19218]  ? __rcu_read_unlock+0x34/0x70
[  324.068396][T19218]  d_alloc_parallel+0x54/0xc80
[  324.068456][T19218]  ? selinux_inode_permission+0x341/0x410
[  324.068494][T19218]  ? lockref_get_not_dead+0x117/0x1b0
[  324.068588][T19218]  ? down_read+0x171/0x4b0
[  324.068625][T19218]  __lookup_slow+0x8d/0x250
[  324.068653][T19218]  lookup_slow+0x3c/0x60
[  324.068674][T19218]  walk_component+0x1f5/0x230
[  324.068768][T19218]  ? path_lookupat+0xfd/0x2b0
[  324.068870][T19218]  path_lookupat+0x10a/0x2b0
[  324.068896][T19218]  filename_lookup+0x150/0x340
[  324.068939][T19218]  user_path_at+0x3c/0x120
[  324.068967][T19218]  do_fchownat+0x92/0x1a0
[  324.069032][T19218]  __x64_sys_lchown+0x4a/0x60
[  324.069141][T19218]  x64_sys_call+0x1e29/0x2dc0
[  324.069167][T19218]  do_syscall_64+0xc9/0x1c0
[  324.069253][T19218]  ? clear_bhb_loop+0x55/0xb0
[  324.069283][T19218]  ? clear_bhb_loop+0x55/0xb0
[  324.069364][T19218]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  324.069391][T19218] RIP: 0033:0x7f23ae28d169
[  324.069407][T19218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  324.069461][T19218] RSP: 002b:00007f23ac8f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000005e
[  324.069480][T19218] RAX: ffffffffffffffda RBX: 00007f23ae4a5fa0 RCX: 00007f23ae28d169
[  324.069493][T19218] RDX: 000000000000ee01 RSI: 0000000000000000 RDI: 00004000000006c0
[  324.069564][T19218] RBP: 00007f23ac8f7090 R08: 0000000000000000 R09: 0000000000000000
[  324.069577][T19218] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  324.069590][T19218] R13: 0000000000000000 R14: 00007f23ae4a5fa0 R15: 00007fff064b43b8
[  324.069624][T19218]  </TASK>
[  324.398201][T12669] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  324.464455][T19238] loop1: detected capacity change from 0 to 512
[  324.475336][T19235] __nla_validate_parse: 1 callbacks suppressed
[  324.475352][T19235] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5393'.
[  324.490639][T19235] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5393'.
[  324.490791][T19225] loop4: detected capacity change from 0 to 8192
[  324.513597][T19238] EXT4-fs: Ignoring removed oldalloc option
[  324.520095][T19235] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5393'.
[  324.538535][T19238] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  324.553377][   T30] kauditd_printk_skb: 85 callbacks suppressed
[  324.553398][   T30] audit: type=1326 audit(1742430100.861:11906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19234 comm="syz.3.5393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f345422d169 code=0x7ffc0000
[  324.583252][   T30] audit: type=1326 audit(1742430100.861:11907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19234 comm="syz.3.5393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f345422d169 code=0x7ffc0000
[  324.607474][   T30] audit: type=1326 audit(1742430100.861:11908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19234 comm="syz.3.5393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f345422d169 code=0x7ffc0000
[  324.631186][   T30] audit: type=1326 audit(1742430100.861:11909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19234 comm="syz.3.5393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f345422d169 code=0x7ffc0000
[  324.640481][T19235] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5393'.
[  324.654942][   T30] audit: type=1326 audit(1742430100.861:11910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19234 comm="syz.3.5393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f345422d169 code=0x7ffc0000
[  324.663751][T19235] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5393'.
[  324.687262][   T30] audit: type=1326 audit(1742430100.861:11911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19234 comm="syz.3.5393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=99 compat=0 ip=0x7f345422d169 code=0x7ffc0000
[  324.719910][   T30] audit: type=1326 audit(1742430100.861:11912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19234 comm="syz.3.5393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f345422d169 code=0x7ffc0000
[  324.743510][   T30] audit: type=1326 audit(1742430100.861:11913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19234 comm="syz.3.5393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f345422d169 code=0x7ffc0000
[  324.767306][   T30] audit: type=1326 audit(1742430100.861:11914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19234 comm="syz.3.5393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f345422d169 code=0x7ffc0000
[  324.787503][T19235] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5393'.
[  324.791009][   T30] audit: type=1326 audit(1742430100.861:11915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19234 comm="syz.3.5393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f345422d169 code=0x7ffc0000
[  324.803928][T19238] EXT4-fs (loop1): 1 truncate cleaned up
[  324.829831][T19238] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  324.851051][T19235] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5393'.
[  324.860130][T19235] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5393'.
[  324.876531][T19242] bond1: entered promiscuous mode
[  324.881664][T19242] bond1: entered allmulticast mode
[  324.887084][T19235] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5393'.
[  324.897207][T19242] 8021q: adding VLAN 0 to HW filter on device bond1
[  324.904148][T19238] loop1: detected capacity change from 512 to 64
[  324.917543][T19238] EXT4-fs warning (device loop1): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 255)
[  324.928990][T19238] buffer_io_error: 20 callbacks suppressed
[  324.929014][T19238] Buffer I/O error on device loop1, logical block 255
[  324.945149][T19242] bond1 (unregistering): Released all slaves
[  324.951288][T19238] EXT4-fs warning (device loop1): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 253)
[  324.962619][T19238] Buffer I/O error on device loop1, logical block 253
[  324.969580][T19238] Buffer I/O error on device loop1, logical block 254
[  324.976445][T19238] EXT4-fs warning (device loop1): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 37)
[  324.987748][T19238] Buffer I/O error on device loop1, logical block 37
[  324.994480][T19238] Buffer I/O error on device loop1, logical block 38
[  325.001201][T19238] Buffer I/O error on device loop1, logical block 39
[  325.008750][T19238] Buffer I/O error on device loop1, logical block 40
[  325.015881][T19238] EXT4-fs warning (device loop1): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 249)
[  325.027173][T19238] Buffer I/O error on device loop1, logical block 249
[  325.033963][T19238] Buffer I/O error on device loop1, logical block 250
[  325.040768][T19238] Buffer I/O error on device loop1, logical block 251
[  325.109613][T19254] rdma_rxe: rxe_newlink: failed to add lo
[  325.121235][T19254] rdma_rxe: rxe_newlink: failed to add dummy0
[  325.173104][T12669] EXT4-fs warning (device loop1): ext4_evict_inode:276: xattr delete (err -12)
[  325.206839][T19257] loop3: detected capacity change from 0 to 2048
[  325.207779][T12669] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  325.236182][T19257] EXT4-fs error (device loop3): ext4_orphan_get:1415: comm syz.3.5396: bad orphan inode 8192
[  325.248813][T19257] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  325.306653][T11133] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  325.344942][T19270] netlink: 20 bytes leftover after parsing attributes in process `syz.2.5401'.
[  325.398819][T19273] lo speed is unknown, defaulting to 1000
[  325.404851][T19276] loop3: detected capacity change from 0 to 8192
[  325.496272][T19273] dummy0 speed is unknown, defaulting to 1000
[  325.841037][T19303] dvmrp5: entered allmulticast mode
[  325.846494][T19306] dvmrp5: left allmulticast mode
[  326.089379][T19319] loop0: detected capacity change from 0 to 2048
[  326.100436][T19313] bond1: entered promiscuous mode
[  326.105580][T19313] bond1: entered allmulticast mode
[  326.112368][T19319] EXT4-fs error (device loop0): ext4_orphan_get:1415: comm syz.0.5412: bad orphan inode 8192
[  326.113683][T19313] 8021q: adding VLAN 0 to HW filter on device bond1
[  326.138472][T19313] bond1 (unregistering): Released all slaves
[  326.268973][T19328] loop0: detected capacity change from 0 to 512
[  326.277614][T19328] EXT4-fs: Ignoring removed oldalloc option
[  326.285083][T19328] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  326.310277][T19328] EXT4-fs (loop0): 1 truncate cleaned up
[  326.331660][T19330] loop1: detected capacity change from 0 to 2048
[  326.351089][T19330] EXT4-fs error (device loop1): ext4_orphan_get:1415: comm syz.1.5416: bad orphan inode 8192
[  326.380973][T19328] loop0: detected capacity change from 512 to 64
[  326.410939][T19328] EXT4-fs warning (device loop0): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 255)
[  326.436602][T19328] EXT4-fs warning (device loop0): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 253)
[  326.448626][T19328] EXT4-fs warning (device loop0): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 37)
[  326.457209][T19333] bond1: entered promiscuous mode
[  326.459932][T19328] EXT4-fs warning (device loop0): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 249)
[  326.464834][T19333] bond1: entered allmulticast mode
[  326.482896][T19333] 8021q: adding VLAN 0 to HW filter on device bond1
[  326.494103][T19333] bond1 (unregistering): Released all slaves
[  326.549635][T11696] EXT4-fs warning (device loop0): ext4_evict_inode:276: xattr delete (err -12)
[  326.592080][T19348] loop1: detected capacity change from 0 to 512
[  326.607203][T19348] EXT4-fs: Ignoring removed oldalloc option
[  326.614765][T19349] loop0: detected capacity change from 0 to 128
[  326.636180][T19348] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  326.673483][T19348] EXT4-fs (loop1): 1 truncate cleaned up
[  326.707804][T19357] dvmrp5: entered allmulticast mode
[  326.760443][T19357] dvmrp5: left allmulticast mode
[  326.819260][T19348] loop1: detected capacity change from 512 to 64
[  326.830942][T19369] FAULT_INJECTION: forcing a failure.
[  326.830942][T19369] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  326.844087][T19369] CPU: 0 UID: 0 PID: 19369 Comm: syz.3.5422 Tainted: G        W          6.14.0-rc7-syzkaller-00074-ga7f2e10ecd8f #0
[  326.844124][T19369] Tainted: [W]=WARN
[  326.844132][T19369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  326.844148][T19369] Call Trace:
[  326.844156][T19369]  <TASK>
[  326.844166][T19369]  dump_stack_lvl+0xf2/0x150
[  326.844194][T19369]  dump_stack+0x15/0x1a
[  326.844250][T19369]  should_fail_ex+0x24a/0x260
[  326.844287][T19369]  should_fail+0xb/0x10
[  326.844368][T19369]  should_fail_usercopy+0x1a/0x20
[  326.844407][T19369]  _copy_from_user+0x1c/0xa0
[  326.844432][T19369]  copy_msghdr_from_user+0x54/0x2a0
[  326.844513][T19369]  ? __fget_files+0x17c/0x1c0
[  326.844549][T19369]  __sys_sendmmsg+0x1e8/0x4b0
[  326.844598][T19369]  __x64_sys_sendmmsg+0x57/0x70
[  326.844691][T19369]  x64_sys_call+0x29aa/0x2dc0
[  326.844734][T19369]  do_syscall_64+0xc9/0x1c0
[  326.844793][T19369]  ? clear_bhb_loop+0x55/0xb0
[  326.844820][T19369]  ? clear_bhb_loop+0x55/0xb0
[  326.844854][T19369]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  326.844920][T19369] RIP: 0033:0x7f345422d169
[  326.844946][T19369] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  326.844964][T19369] RSP: 002b:00007f3452897038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  326.844982][T19369] RAX: ffffffffffffffda RBX: 00007f3454445fa0 RCX: 00007f345422d169
[  326.844996][T19369] RDX: 040000000000009f RSI: 00004000000002c0 RDI: 0000000000000004
[  326.845012][T19369] RBP: 00007f3452897090 R08: 0000000000000000 R09: 0000000000000000
[  326.845027][T19369] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  326.845103][T19369] R13: 0000000000000000 R14: 00007f3454445fa0 R15: 00007ffd7576b628
[  326.845126][T19369]  </TASK>
[  327.053205][T19372] loop3: detected capacity change from 0 to 2048
[  327.108163][T19372] EXT4-fs error (device loop3): ext4_orphan_get:1415: comm syz.3.5424: bad orphan inode 8192
[  327.130176][T12669] EXT4-fs warning (device loop1): ext4_evict_inode:276: xattr delete (err -12)
[  327.256352][T19408] loop3: detected capacity change from 0 to 512
[  327.281521][T19408] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  327.302041][T19408] ext4 filesystem being mounted at /570/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  327.320672][T19398] loop1: detected capacity change from 0 to 8192
[  327.495543][T19426] loop0: detected capacity change from 0 to 128
[  327.570423][T19427] loop4: detected capacity change from 0 to 512
[  327.602083][T19427] journal_path: Non-blockdev passed as './bus'
[  327.608315][T19427] EXT4-fs: error: could not find journal device path
[  327.717328][T19442] loop3: detected capacity change from 0 to 512
[  327.724296][T19442] EXT4-fs: Ignoring removed oldalloc option
[  327.824330][T19442] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  327.837813][T19442] EXT4-fs (loop3): 1 truncate cleaned up
[  327.888986][T19442] loop3: detected capacity change from 512 to 64
[  327.971862][T19442] EXT4-fs warning (device loop3): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 255)
[  328.000763][T19442] EXT4-fs warning (device loop3): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 253)
[  328.013293][T19469] loop4: detected capacity change from 0 to 2048
[  328.021626][T19442] EXT4-fs warning (device loop3): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 37)
[  328.094846][T19442] EXT4-fs warning (device loop3): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 249)
[  328.176913][T11133] EXT4-fs warning (device loop3): ext4_evict_inode:276: xattr delete (err -12)
[  328.207143][T19480] loop0: detected capacity change from 0 to 512
[  328.220499][T19480] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  328.272930][T19480] ext4 filesystem being mounted at /495/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  328.285606][T19487] loop4: detected capacity change from 0 to 512
[  328.292399][T19487] journal_path: Non-blockdev passed as './bus'
[  328.298670][T19487] EXT4-fs: error: could not find journal device path
[  328.364798][T19494] loop3: detected capacity change from 0 to 512
[  328.376870][T19494] journal_path: Non-blockdev passed as './bus'
[  328.383394][T19494] EXT4-fs: error: could not find journal device path
[  328.456981][T19502] loop4: detected capacity change from 0 to 512
[  328.464888][T19502] journal_path: Non-blockdev passed as './bus'
[  328.471169][T19502] EXT4-fs: error: could not find journal device path
[  328.537399][T19514] 9pnet_fd: Insufficient options for proto=fd
[  328.604476][T19519] loop4: detected capacity change from 0 to 512
[  328.611531][T19519] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  328.627515][T19519] EXT4-fs (loop4): 1 truncate cleaned up
[  328.684207][T19526] FAULT_INJECTION: forcing a failure.
[  328.684207][T19526] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  328.697457][T19526] CPU: 1 UID: 0 PID: 19526 Comm: syz.4.5457 Tainted: G        W          6.14.0-rc7-syzkaller-00074-ga7f2e10ecd8f #0
[  328.697493][T19526] Tainted: [W]=WARN
[  328.697501][T19526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  328.697516][T19526] Call Trace:
[  328.697524][T19526]  <TASK>
[  328.697534][T19526]  dump_stack_lvl+0xf2/0x150
[  328.697617][T19526]  dump_stack+0x15/0x1a
[  328.697636][T19526]  should_fail_ex+0x24a/0x260
[  328.697694][T19526]  should_fail+0xb/0x10
[  328.697717][T19526]  should_fail_usercopy+0x1a/0x20
[  328.697798][T19526]  _copy_from_user+0x1c/0xa0
[  328.697815][T19526]  memdup_user+0x64/0xc0
[  328.697841][T19526]  sctp_getsockopt_connectx3+0x1c0/0x350
[  328.697875][T19526]  sctp_getsockopt+0x805/0xab0
[  328.697940][T19526]  sock_common_getsockopt+0x5b/0x70
[  328.697971][T19526]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  328.698001][T19526]  do_sock_getsockopt+0x1ca/0x260
[  328.698089][T19526]  __x64_sys_getsockopt+0x18c/0x200
[  328.698113][T19526]  x64_sys_call+0x1288/0x2dc0
[  328.698135][T19526]  do_syscall_64+0xc9/0x1c0
[  328.698163][T19526]  ? clear_bhb_loop+0x55/0xb0
[  328.698241][T19526]  ? clear_bhb_loop+0x55/0xb0
[  328.698264][T19526]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  328.698288][T19526] RIP: 0033:0x7f2327a1d169
[  328.698301][T19526] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  328.698317][T19526] RSP: 002b:00007f2326087038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  328.698395][T19526] RAX: ffffffffffffffda RBX: 00007f2327c35fa0 RCX: 00007f2327a1d169
[  328.698405][T19526] RDX: 000000000000006f RSI: 0000000000000084 RDI: 0000000000000003
[  328.698415][T19526] RBP: 00007f2326087090 R08: 0000400000000100 R09: 0000000000000000
[  328.698426][T19526] R10: 00004000000000c0 R11: 0000000000000246 R12: 0000000000000001
[  328.698436][T19526] R13: 0000000000000000 R14: 00007f2327c35fa0 R15: 00007ffd1fa01518
[  328.698451][T19526]  </TASK>
[  328.926941][T19530] loop4: detected capacity change from 0 to 512
[  328.941511][T19530] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  328.974421][T19530] ext4 filesystem being mounted at /444/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  329.002510][T19546] loop3: detected capacity change from 0 to 512
[  329.011845][T19546] journal_path: Non-blockdev passed as './bus'
[  329.018047][T19546] EXT4-fs: error: could not find journal device path
[  329.104748][T19553] netdevsim netdevsim3 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  329.115207][T19553] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  329.181830][T19553] netdevsim netdevsim3 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  329.192333][T19553] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  329.256359][T19564] loop1: detected capacity change from 0 to 2048
[  329.271812][T19553] netdevsim netdevsim3 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  329.275192][T19564] EXT4-fs error (device loop1): ext4_orphan_get:1415: comm syz.1.5470: bad orphan inode 8192
[  329.282137][T19553] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  329.375183][T19572] loop0: detected capacity change from 0 to 128
[  329.384422][T19553] netdevsim netdevsim3 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  329.394903][T19553] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  329.450428][T19579] bio_check_eod: 336 callbacks suppressed
[  329.450445][T19579] syz.0.5473: attempt to access beyond end of device
[  329.450445][T19579] loop0: rw=3, sector=177, nr_sectors = 7 limit=128
[  329.471528][T19579] syz.0.5473: attempt to access beyond end of device
[  329.471528][T19579] loop0: rw=2051, sector=184, nr_sectors = 1 limit=128
[  329.508564][T19555] lo speed is unknown, defaulting to 1000
[  329.522513][T19553] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  329.530877][T19553] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  329.563066][T19553] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  329.571438][T19553] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  329.579798][T19555] dummy0 speed is unknown, defaulting to 1000
[  329.623194][T19553] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  329.631501][T19553] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  329.642832][ T5399] kworker/u8:8: attempt to access beyond end of device
[  329.642832][ T5399] loop0: rw=1, sector=145, nr_sectors = 32 limit=128
[  329.656828][ T5399] kworker/u8:8: attempt to access beyond end of device
[  329.656828][ T5399] loop0: rw=1, sector=185, nr_sectors = 8 limit=128
[  329.670791][ T5399] kworker/u8:8: attempt to access beyond end of device
[  329.670791][ T5399] loop0: rw=1, sector=201, nr_sectors = 16 limit=128
[  329.684530][ T5399] kworker/u8:8: attempt to access beyond end of device
[  329.684530][ T5399] loop0: rw=1, sector=225, nr_sectors = 8 limit=128
[  329.698671][ T5399] kworker/u8:8: attempt to access beyond end of device
[  329.698671][ T5399] loop0: rw=1, sector=241, nr_sectors = 8 limit=128
[  329.703397][T19553] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  329.712469][ T5399] kworker/u8:8: attempt to access beyond end of device
[  329.712469][ T5399] loop0: rw=1, sector=257, nr_sectors = 8 limit=128
[  329.720333][T19553] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  329.734254][ T5399] kworker/u8:8: attempt to access beyond end of device
[  329.734254][ T5399] loop0: rw=1, sector=273, nr_sectors = 8 limit=128
[  329.755507][ T5399] kworker/u8:8: attempt to access beyond end of device
[  329.755507][ T5399] loop0: rw=1, sector=289, nr_sectors = 8 limit=128
[  329.770707][T19582] loop1: detected capacity change from 0 to 512
[  329.777206][T19582] journal_path: Non-blockdev passed as './bus'
[  329.783511][T19582] EXT4-fs: error: could not find journal device path
[  329.886647][T19591] __nla_validate_parse: 25 callbacks suppressed
[  329.886666][T19591] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5480'.
[  329.906276][T19589] loop1: detected capacity change from 0 to 2048
[  329.912771][T19595] loop3: detected capacity change from 0 to 2048
[  329.920188][T19591] netdevsim netdevsim4 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  329.930605][T19591] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  329.954567][T19589] EXT4-fs error (device loop1): ext4_orphan_get:1415: comm syz.1.5479: bad orphan inode 8192
[  330.019808][T19591] netdevsim netdevsim4 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  330.030190][T19591] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  330.030383][T19603] loop1: detected capacity change from 0 to 2048
[  330.060188][T19603] EXT4-fs error (device loop1): ext4_orphan_get:1415: comm syz.1.5483: bad orphan inode 8192
[  330.108093][T19591] netdevsim netdevsim4 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  330.118507][T19591] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  330.161110][ T3435] kernel write not supported for file /1025/attr/exec (pid: 3435 comm: kworker/1:5)
[  330.192265][T19591] netdevsim netdevsim4 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  330.202955][T19591] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  330.240241][T19623] dvmrp5: entered allmulticast mode
[  330.247343][T19623] dvmrp5: left allmulticast mode
[  330.267738][T19591] netdevsim netdevsim4 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  330.276064][T19591] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  330.289639][T19591] netdevsim netdevsim4 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  330.297955][T19591] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  330.309783][T19627] dvmrp5: entered allmulticast mode
[  330.318625][T19591] netdevsim netdevsim4 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  330.326930][T19591] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  330.343483][T19591] netdevsim netdevsim4 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  330.351821][T19591] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  330.366508][T19627] dvmrp5: left allmulticast mode
[  330.477305][T19636] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5497'.
[  330.576643][   T36] kernel write not supported for file /1116/attr/exec (pid: 36 comm: kworker/1:1)
[  330.657391][T19646] loop1: detected capacity change from 0 to 8192
[  330.707111][T19655] loop4: detected capacity change from 0 to 2048
[  330.768843][T19666] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5504'.
[  330.777874][T19666] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5504'.
[  330.787370][T19666] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5504'.
[  330.796598][T19655] EXT4-fs error (device loop4): ext4_orphan_get:1415: comm syz.4.5503: bad orphan inode 8192
[  330.837477][T19666] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5504'.
[  330.846511][T19666] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5504'.
[  330.856034][T19666] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5504'.
[  330.879993][T19672] bond1: entered promiscuous mode
[  330.885151][T19672] bond1: entered allmulticast mode
[  330.897652][T19666] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5504'.
[  330.906790][T19666] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5504'.
[  330.919327][T19672] 8021q: adding VLAN 0 to HW filter on device bond1
[  330.934014][T19672] bond1 (unregistering): Released all slaves
[  331.115734][T19693] loop4: detected capacity change from 0 to 8192
[  331.444392][   T25] kernel write not supported for file /1341/attr/exec (pid: 25 comm: kworker/1:0)
[  331.779521][T19743] loop1: detected capacity change from 0 to 512
[  331.795409][T19743] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  331.806178][T19743] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002]
[  331.818114][T19743] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.5516: corrupted in-inode xattr: e_value size too large
[  331.832572][T19743] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.5516: couldn't read orphan inode 15 (err -117)
[  331.866791][T19743] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none.
[  331.914361][T19743] s
z1: rxe_newlink: already configured on lo
[  332.197847][T19760] dvmrp5: entered allmulticast mode
[  332.213368][T19763] dvmrp5: left allmulticast mode
[  332.263917][   T30] kauditd_printk_skb: 136 callbacks suppressed
[  332.263934][   T30] audit: type=1326 audit(1742430620.578:12052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19765 comm="syz.1.5521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23ae28d169 code=0x7ffc0000
[  332.312571][   T30] audit: type=1326 audit(1742430620.608:12053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19765 comm="syz.1.5521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f23ae28d169 code=0x7ffc0000
[  332.336787][   T30] audit: type=1326 audit(1742430620.608:12054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19765 comm="syz.1.5521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23ae28d169 code=0x7ffc0000
[  332.360471][   T30] audit: type=1326 audit(1742430620.608:12055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19765 comm="syz.1.5521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f23ae28d169 code=0x7ffc0000
[  332.384175][   T30] audit: type=1326 audit(1742430620.618:12056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19765 comm="syz.1.5521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23ae28d169 code=0x7ffc0000
[  332.407845][   T30] audit: type=1326 audit(1742430620.618:12057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19765 comm="syz.1.5521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f23ae28d169 code=0x7ffc0000
[  332.431566][   T30] audit: type=1326 audit(1742430620.618:12058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19765 comm="syz.1.5521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23ae28d169 code=0x7ffc0000
[  332.455398][   T30] audit: type=1326 audit(1742430620.618:12059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19765 comm="syz.1.5521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f23ae28d169 code=0x7ffc0000
[  332.479084][   T30] audit: type=1326 audit(1742430620.618:12060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19765 comm="syz.1.5521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23ae28d169 code=0x7ffc0000
[  332.502838][   T30] audit: type=1326 audit(1742430620.618:12061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19765 comm="syz.1.5521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f23ae28d169 code=0x7ffc0000
[  332.549057][T19762] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[  332.555625][T19762] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  332.563339][T19762] vhci_hcd vhci_hcd.0: Device attached
[  332.571860][T19773] vhci_hcd: connection closed
[  332.574515][ T5848] vhci_hcd: stop threads
[  332.583644][ T5848] vhci_hcd: release socket
[  332.588107][ T5848] vhci_hcd: disconnect device
[  332.601608][   T36] kernel write not supported for file /1056/attr/exec (pid: 36 comm: kworker/1:1)
[  332.610390][T19752] lo speed is unknown, defaulting to 1000
[  332.656442][T19783] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  332.696017][T19752] dummy0 speed is unknown, defaulting to 1000
[  333.034295][T19824] bond1: entered promiscuous mode
[  333.039522][T19824] bond1: entered allmulticast mode
[  333.045214][T19824] 8021q: adding VLAN 0 to HW filter on device bond1
[  333.056596][T19824] bond1 (unregistering): Released all slaves
[  333.147412][T19834] rdma_rxe: rxe_newlink: failed to add lo
[  333.224652][ T4336] kernel write not supported for file /1299/attr/exec (pid: 4336 comm: kworker/0:9)
[  333.286908][T19846] 9pnet_fd: Insufficient options for proto=fd
[  333.524106][T19867] loop1: detected capacity change from 0 to 8192
[  334.018747][T19922] rdma_rxe: rxe_newlink: failed to add dummy0
[  334.265931][T19951] loop4: detected capacity change from 0 to 512
[  334.282115][T19951] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  334.301371][T19951] ext4 filesystem being mounted at /456/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  334.497642][T19980] loop4: detected capacity change from 0 to 512
[  334.573819][T19990] dvmrp5: entered allmulticast mode
[  334.594271][T19990] dvmrp5: left allmulticast mode
[  334.602696][T19980] EXT4-fs: Ignoring removed oldalloc option
[  334.624658][T19980] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  334.701475][T19980] EXT4-fs (loop4): 1 truncate cleaned up
[  334.709226][T20002] bond1: entered promiscuous mode
[  334.714368][T20002] bond1: entered allmulticast mode
[  334.723716][T20002] 8021q: adding VLAN 0 to HW filter on device bond1
[  334.735958][T20002] bond1 (unregistering): Released all slaves
[  334.769155][T19980] loop4: detected capacity change from 512 to 64
[  334.782262][T20013] loop1: detected capacity change from 0 to 512
[  334.783521][T19980] bio_check_eod: 100 callbacks suppressed
[  334.783538][T19980] syz.4.5563: attempt to access beyond end of device
[  334.783538][T19980] loop4: rw=2049, sector=510, nr_sectors = 2 limit=64
[  334.789841][T20013] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  334.794377][T19980] EXT4-fs warning (device loop4): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 255)
[  334.810606][T20013] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002]
[  334.815885][T19980] buffer_io_error: 20 callbacks suppressed
[  334.815903][T19980] Buffer I/O error on device loop4, logical block 255
[  334.827397][T20013] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.5569: corrupted in-inode xattr: e_value size too large
[  334.835826][T19980] syz.4.5563: attempt to access beyond end of device
[  334.835826][T19980] loop4: rw=2049, sector=506, nr_sectors = 4 limit=64
[  334.842923][T20013] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.5569: couldn't read orphan inode 15 (err -117)
[  334.847567][T19980] EXT4-fs warning (device loop4): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 253)
[  334.898534][T19980] Buffer I/O error on device loop4, logical block 253
[  334.905405][T19980] Buffer I/O error on device loop4, logical block 254
[  334.912790][T19980] syz.4.5563: attempt to access beyond end of device
[  334.912790][T19980] loop4: rw=2049, sector=74, nr_sectors = 8 limit=64
[  334.926113][T19980] EXT4-fs warning (device loop4): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 37)
[  334.937296][T19980] Buffer I/O error on device loop4, logical block 37
[  334.944072][T19980] Buffer I/O error on device loop4, logical block 38
[  334.950806][T19980] Buffer I/O error on device loop4, logical block 39
[  334.957635][T19980] Buffer I/O error on device loop4, logical block 40
[  334.964917][T19980] syz.4.5563: attempt to access beyond end of device
[  334.964917][T19980] loop4: rw=2049, sector=498, nr_sectors = 6 limit=64
[  334.978310][T19980] EXT4-fs warning (device loop4): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 249)
[  334.989566][T19980] Buffer I/O error on device loop4, logical block 249
[  334.996358][T19980] Buffer I/O error on device loop4, logical block 250
[  335.003131][T19980] Buffer I/O error on device loop4, logical block 251
[  335.010425][T20017] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none.
[  335.022322][T20017] syz2: rxe_newlink: already configured on dummy0
[  335.054018][T11418] EXT4-fs warning (device loop4): ext4_evict_inode:276: xattr delete (err -12)
[  335.150603][T20028] 9pnet: bogus RWRITE count (38144 > 1)
[  335.190867][T20030] loop4: detected capacity change from 0 to 512
[  335.286929][T20030] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  335.402778][T20030] ext4 filesystem being mounted at /460/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  335.451619][T20030] __nla_validate_parse: 25 callbacks suppressed
[  335.451637][T20030] netlink: 32 bytes leftover after parsing attributes in process `syz.4.5574'.
[  335.601085][T20065] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  335.631356][T20045] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  335.637995][T20045] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  335.645827][T20045] vhci_hcd vhci_hcd.0: Device attached
[  335.654233][T20041] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8)
[  335.660799][T20041] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  335.668468][T20041] vhci_hcd vhci_hcd.0: Device attached
[  335.679109][T20068] vhci_hcd: connection closed
[  335.679421][   T51] vhci_hcd: stop threads
[  335.688374][   T51] vhci_hcd: release socket
[  335.691663][T20042] vhci_hcd: connection closed
[  335.692863][   T51] vhci_hcd: disconnect device
[  335.733664][   T51] vhci_hcd: stop threads
[  335.738081][   T51] vhci_hcd: release socket
[  335.742525][   T51] vhci_hcd: disconnect device
[  335.759642][T20076] loop4: detected capacity change from 0 to 512
[  335.766108][T20076] journal_path: Non-blockdev passed as './bus'
[  335.772364][T20076] EXT4-fs: error: could not find journal device path
[  335.924005][T20090] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5583'.
[  335.933171][T20090] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5583'.
[  335.949697][T20090] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5583'.
[  336.033000][T20086] bond1: entered promiscuous mode
[  336.038086][T20086] bond1: entered allmulticast mode
[  336.047968][T20090] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5583'.
[  336.057099][T20090] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5583'.
[  336.066073][T20090] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5583'.
[  336.084727][T20086] 8021q: adding VLAN 0 to HW filter on device bond1
[  336.092813][T20090] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5583'.
[  336.101937][T20090] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5583'.
[  336.110881][T20090] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5583'.
[  336.113724][T20105] loop1: detected capacity change from 0 to 512
[  336.137343][T20105] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  336.151783][T20086] bond1 (unregistering): Released all slaves
[  336.163647][T20105] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002]
[  336.176251][T20105] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.5586: corrupted in-inode xattr: e_value size too large
[  336.200035][T20105] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.5586: couldn't read orphan inode 15 (err -117)
[  336.247249][T20127] loop4: detected capacity change from 0 to 2048
[  336.276756][T20105] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none.
[  336.293598][T20105] syz2: rxe_newlink: already configured on dummy0
[  336.307950][T20127] EXT4-fs error (device loop4): ext4_orphan_get:1415: comm syz.4.5589: bad orphan inode 8192
[  336.325133][T20121] bond1: entered promiscuous mode
[  336.330401][T20121] bond1: entered allmulticast mode
[  336.340838][T20121] 8021q: adding VLAN 0 to HW filter on device bond1
[  336.399763][T20121] bond1 (unregistering): Released all slaves
[  336.436119][T20143] dvmrp5: entered allmulticast mode
[  336.453414][T20153] dvmrp5: left allmulticast mode
[  336.504050][T20158] loop4: detected capacity change from 0 to 512
[  336.543474][T20158] journal_path: Non-blockdev passed as './bus'
[  336.549845][T20158] EXT4-fs: error: could not find journal device path
[  336.585104][T20164] ==================================================================
[  336.593236][T20164] BUG: KCSAN: data-race in __lookup_mnt / __se_sys_pivot_root
[  336.600720][T20164] 
[  336.603058][T20164] write to 0xffff888118782d98 of 8 bytes by task 20163 on cpu 0:
[  336.610807][T20164]  __se_sys_pivot_root+0x850/0x1090
[  336.616027][T20164]  __x64_sys_pivot_root+0x31/0x40
[  336.621076][T20164]  x64_sys_call+0x1abf/0x2dc0
[  336.625792][T20164]  do_syscall_64+0xc9/0x1c0
[  336.630334][T20164]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  336.636257][T20164] 
[  336.638584][T20164] read to 0xffff888118782d98 of 8 bytes by task 20164 on cpu 1:
[  336.646214][T20164]  __lookup_mnt+0xa0/0xf0
[  336.650554][T20164]  step_into+0x426/0x820
[  336.654845][T20164]  link_path_walk+0x50e/0x830
[  336.659539][T20164]  path_lookupat+0x72/0x2b0
[  336.664054][T20164]  filename_lookup+0x150/0x340
[  336.668825][T20164]  user_path_at+0x3c/0x120
[  336.673248][T20164]  __se_sys_pivot_root+0x10e/0x1090
[  336.678462][T20164]  __x64_sys_pivot_root+0x31/0x40
[  336.683526][T20164]  x64_sys_call+0x1abf/0x2dc0
[  336.688218][T20164]  do_syscall_64+0xc9/0x1c0
[  336.692762][T20164]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  336.698672][T20164] 
[  336.700999][T20164] value changed: 0xffff888106a31d80 -> 0xffff8881004dccc0
[  336.708105][T20164] 
[  336.710427][T20164] Reported by Kernel Concurrency Sanitizer on:
[  336.716608][T20164] CPU: 1 UID: 0 PID: 20164 Comm: syz.0.5594 Tainted: G        W          6.14.0-rc7-syzkaller-00074-ga7f2e10ecd8f #0
[  336.728857][T20164] Tainted: [W]=WARN
[  336.733008][T20164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  336.743071][T20164] ==================================================================