last executing test programs:

45.653563184s ago: executing program 2 (id=1181):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB='\n'], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
rt_sigsuspend(&(0x7f0000000080)={[0x5]}, 0x8)

44.784257751s ago: executing program 2 (id=1190):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000500)=@newtaction={0x6c, 0x30, 0xb, 0x0, 0x0, {}, [{0x58, 0x1, [@m_ct={0x54, 0x1, 0x0, 0x0, {{0x7}, {0x2c, 0x2, 0x0, 0x1, [@TCA_CT_NAT_IPV6_MIN={0x14, 0xb, @empty}, @TCA_CT_LABELS={0x14, 0x7, "0d4e8a365c0205a14cd011023d5c8fab"}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0x6c}}, 0x10000000)

44.756746361s ago: executing program 2 (id=1192):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000800), &(0x7f0000000840)=r1}, 0x20)
r2 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r2, &(0x7f0000e5c000)={0x2, 0x4e20, @remote}, 0x10)

44.746484171s ago: executing program 2 (id=1193):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x40, &(0x7f00000008c0)={[{@nobh}, {@noauto_da_alloc}, {@jqfmt_vfsold}, {@data_err_ignore}, {@resuid}, {@dioread_nolock}, {@usrjquota}, {@discard}, {@jqfmt_vfsv1}]}, 0xfc, 0x564, &(0x7f0000002bc0)="$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")
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000580)={'batadv_slave_0\x00', <r2=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000140)=0x1, 0x4)
bind$xdp(r0, &(0x7f0000000100)={0x2c, 0x0, r2}, 0x10)
r3 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r4 = fcntl$dupfd(r3, 0x0, r3)
write$sndseq(r4, &(0x7f0000000180)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @quote}], 0x38)
r5 = syz_io_uring_setup(0x7dca, &(0x7f0000000340)={0x0, 0x0, 0x10100, 0x0, 0x36}, &(0x7f0000000500), &(0x7f0000000100)=<r6=>0x0)
syz_io_uring_setup(0x1868, &(0x7f0000000200)={0x0, 0xab62, 0x800, 0x3, 0x1}, &(0x7f0000000080)=<r7=>0x0, &(0x7f0000001540))
syz_io_uring_submit(r7, r6, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54})
io_uring_enter(r5, 0x184c, 0x0, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000006200)=[{{0x0, 0x0, 0x0}, 0x2}, {{0x0, 0x0, 0x0}, 0xc6d}], 0x2, 0x160, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000f8)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100000008)

44.603001111s ago: executing program 2 (id=1196):
socket$phonet_pipe(0x23, 0x5, 0x2)
r0 = socket$unix(0x1, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000004340)={<r1=>0x0, <r2=>0x0})
recvmmsg$unix(r0, &(0x7f00000041c0)=[{{&(0x7f0000000000)=@abs, 0x6e, &(0x7f0000002300)=[{&(0x7f0000000080)=""/252, 0xfc}, {&(0x7f0000000180)=""/4096, 0x1000}, {&(0x7f0000001180)=""/4096, 0x1000}, {&(0x7f0000002180)=""/190, 0xbe}, {&(0x7f0000002240)=""/54, 0x36}, {&(0x7f0000002280)=""/88, 0x58}], 0x6, &(0x7f0000002380)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f00000023c0)=@abs, 0x6e, &(0x7f0000002680)=[{&(0x7f0000002440)=""/198, 0xc6}, {&(0x7f0000002540)=""/232, 0xe8}, {&(0x7f0000002640)=""/24, 0x18}], 0x3, &(0x7f00000026c0)}}, {{&(0x7f0000002700)=@abs, 0x6e, &(0x7f0000002880)=[{&(0x7f0000002780)=""/83, 0x53}, {&(0x7f0000002800)=""/57, 0x39}, {&(0x7f0000002840)=""/42, 0x2a}], 0x3, &(0x7f00000028c0)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}], 0x130}}, {{&(0x7f0000002a00)=@abs, 0x6e, &(0x7f0000003c00)=[{&(0x7f0000002a80)=""/4096, 0x1000}, {&(0x7f0000003a80)=""/78, 0x4e}, {&(0x7f0000003b00)=""/5, 0x5}, {&(0x7f0000003b40)=""/64, 0x40}, {&(0x7f0000003b80)=""/60, 0x3c}, {&(0x7f0000003bc0)=""/24, 0x18}], 0x6, &(0x7f0000003c80)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x18}}, {{&(0x7f0000003cc0), 0x6e, &(0x7f0000003f00)=[{&(0x7f0000003d40)=""/76, 0x4c}, {&(0x7f0000003dc0)=""/89, 0x59}, {&(0x7f0000003e40)=""/142, 0x8e}], 0x3, &(0x7f0000003f40)=[@rights={{0x14, 0x1, 0x1, [<r9=>0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [<r10=>0xffffffffffffffff]}}], 0x50}}, {{0x0, 0x0, &(0x7f0000004140)=[{&(0x7f0000003fc0)=""/199, 0xc7}, {&(0x7f00000040c0)=""/71, 0x47}], 0x2, &(0x7f0000004180)=[@cred={{0x1c}}], 0x20}}], 0x6, 0x12003, &(0x7f0000004380)={r1, r2+10000000})
epoll_pwait(r8, &(0x7f00000043c0)=[{}, {}, {}, {}, {}, {}, {}], 0x7, 0x1, &(0x7f0000004440)={[0x1]}, 0x8)
sendmsg$NFT_BATCH(r4, &(0x7f0000005140)={&(0x7f0000004480)={0x10, 0x0, 0x0, 0x2000210}, 0xc, &(0x7f0000005100)={&(0x7f00000044c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x2}}, [@NFT_MSG_DELCHAIN={0x60, 0x5, 0xa, 0x201, 0x0, 0x0, {0x3, 0x0, 0x9}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}, @NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x4}, @NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x5}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_COUNTERS={0x1c, 0x8, 0x0, 0x1, [@NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x8}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x5}]}]}, @NFT_MSG_NEWRULE={0x20, 0x6, 0xa, 0x201, 0x0, 0x0, {0x0, 0x0, 0x7}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELSETELEM={0xac4, 0xe, 0xa, 0x101, 0x0, 0x0, {0x1, 0x0, 0x2}, [@NFTA_SET_ELEM_LIST_SET_ID={0x8}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0xa88, 0x3, 0x0, 0x1, [{0x640, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_USERDATA={0x9c, 0x6, 0x1, 0x0, "6a1205e708689c4a6052c641d4a6330f729af1f0c79ab08ec5a97a0cdeebfc84cc4bf487213fabbd827551af44671bf9e3a000a38854da79a8661dfa3e5e7645202e2c2d8caba002127a663f27cdacd96af6fbd69afee72a1e518f55a182f5291eb8728374e628352225da7be051f0a5b6565a17e19f007f1b7e18245f27745a86a4b2ec6c213ee0693a5cff47e118ef3131cb7061464d5c"}, @NFTA_SET_ELEM_KEY_END={0x1e8, 0xa, 0x0, 0x1, [@NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}]}, @NFTA_DATA_VERDICT={0x38, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VALUE={0xbb, 0x1, "717ba99b2dfc98face8f28ec9327c9b4b113baaaff62b8ef90f61829471db000751761980a84f8205915452b3895ae5a5d4d68dacb5b70db51056b47149decad4f19b7b5a9488d1ff78e98918a5bb8586303e52b4943035febaa35c4a675c2c1ceb2b5d86362ca0a0f23aa8058259f31249899af566488c28c6c754aeb0d6d59fde733de2b3fe05f04cd7008100f81d4ba4b79c678f6afe3af93295510cdd75384522df379ece67f2866302f48d4d7a89a601d3d777071"}, @NFTA_DATA_VERDICT={0x2c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}]}, @NFTA_DATA_VALUE={0x83, 0x1, "e2767c2cd59bd27ea1bc59ae683bb26cc60610710b62fc2a87392ecc9e43c29c6403a58edd29ca8849de4274862a02f68ff35f67fc2f569465e80d03805644aa9e6a54fef62ac40dd9dde97e83786857e9ea04fb7ffdf6d1bd1532ecf3b730e9f2873099538ad747aa495323a5cdec5e1e7b6853c19382cb30c7e2a50189c5"}, @NFTA_DATA_VERDICT={0x28, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8}]}]}, @NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x7}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz2\x00'}, @NFTA_SET_ELEM_KEY={0x394, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x27, 0x1, "4084d59be03460744a97ee17ff42d4a34529314d9a224ad02fec5d2b821308845a72ae"}, @NFTA_DATA_VALUE={0xb3, 0x1, "7ec803b424b3765474470c32653ec72efba8eccb355cf0df4c8ba4f4066af1ac2893894d3bbbfb46aeac0736a374d63d8e5ecbd51aedfdbae0b8d5dc95391179f37c9249426564e43875aeb733f4ce307407d42a851b2abf97f4763b9fc523d47ab750a21e588c67d0b0e3a5f34a9a0814d4e6afa8b3e37e0b96fca73820c8436d9b0443a52833c882c7ee75257d99e33ee70acf347275a6e24ef234f6d8f245451c04d44d2ccb937fd135f8a1eedd"}, @NFTA_DATA_VALUE={0x7f, 0x1, "9b63de12c7b9b2af6a6f0a8cd7e46ffb80719d04d791144181eb253c8066efadfcf1ce328c0b162ba5ca67b3593a2069745a6643e4c14515f806ea0d58bdcab41a38060f33417145a3a3f6cf1d81c41cc35fe8e2343a3d6cc132511dd7c5ebe703deb534d34bd9a36e4fd7afcf633744fbd5e78f303b381d5c7abf"}, @NFTA_DATA_VERDICT={0x3c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFTA_DATA_VALUE={0x6f, 0x1, "42779fbde9798a8b571d16aea225d6c11734ea6fb92d4a6f3c2d74d2ae14ff26d8b479fd006d2d626194200bb11289813f711b11d5587e50b71b6878f52a85cc52ac414c5a69b214d89600287aa340593175ebea57f454784d5d96402209985573060cd5da40b895a48af8"}, @NFTA_DATA_VALUE={0x20, 0x1, "be900b3d36574645f2d759f874492032ba75ecbdeb9a3b3c0b456d87"}, @NFTA_DATA_VERDICT={0x10, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFTA_DATA_VALUE={0x83, 0x1, "a8ba80207df1b026695e575b28f20b7515f4110568f3cd0c346da84ac9bc675f18ae6950afcb53ab48673b59bc2a10709892a611ae9a7b5ab01e745f1a7ac8f6b73703a90841b90c3477b2d61bfc585f4235c90715d4bbc4e5bc840ecb2ef167c14f94148509234770b9b460a0868ad82c668493d500edf9a574d13a04244d"}, @NFTA_DATA_VALUE={0x7a, 0x1, "00bf8aa62a0550f5035168e725781a5546c33f66d2119bd743d73fa5e1b9f547464697f1823ee8ac91a417bb4d5a4609fde46ab2f51ae5887aa51bc53e496e065c9a930ad8d384e4593d7942d1dcc30e0a4f7a037480186b796db33f97184704c95f40afabfe2993e40b50d0668f654ebe493ae9b72d"}, @NFTA_DATA_VERDICT={0x58, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}]}]}, {0x444, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x190, 0x1, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x38, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}, @NFTA_DATA_VALUE={0x48, 0x1, "e3e841674245a04490dcbfa734a625080feedc6928db5dfd67d891b425d4a629876e2cb2e20a9831b1deff438171724921f479096f0056345ad9c660a5bebed74d595a0f"}, @NFTA_DATA_VALUE={0x82, 0x1, "5419f0268fd1e6c7e75df53e4d37fb371ccaf287557d587615c8de791500f9b608527869a9913c0b0bbca766d51539772a803dc1d68a63159fb7bf006319920cda36d69cb83ca79a19b2edfe8fc3bb36bbe150cfea5b1c6ff1b842d4d44bdce84268e43f8bcb19ce3ca2643c7f8554c07a0481001dd8de910d19d34f6c2e"}, @NFTA_DATA_VALUE={0x28, 0x1, "15d09196a7d7585bdedac4aa054b95a5648490dd2b883fa9c98b2f2fdb95c81b7babc477"}, @NFTA_DATA_VERDICT={0x60, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}]}, @NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_SET_ELEM_USERDATA={0x9c, 0x6, 0x1, 0x0, "b6d061f7b61dd0a9ad903afde80fab3724958430e3c2398b05cca807e3183d6152801f993df1b8b603fc901659b8a51a618439c00299d668483f16e554ebfec173ba9c994721a23ed1bcc5d179ff13be809ead6b8a638fdbd1908e8516ed1b02ba7b047ad7ea1f54cb860e2ef070aa8e7bc5ad8d28740c2623564a308222418f63c250d28000bfbc28f01c4d49e41147dd7a03595b0ac0fc"}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x9e}, @NFTA_SET_ELEM_FLAGS={0x8}, @NFTA_SET_ELEM_USERDATA={0xb5, 0x6, 0x1, 0x0, "3d6aa419fb443870174af5892bed0967ce5fb701315862df817f2238adf2396be21798d77fb62c22d8e30f6a66f51467af8a26a57cc953ae3de9682fc4e02aecfcae076d2f5e3aaacbe3c68b147be9038ea160ea3aa5f35109bb72e6ed5c861f705c8f20ce04772ab91a94d11e678eff5014bb1302c98920e9fa0af63edf4f5a2c440875179667cd7fe175a517526fad6dd9ede3513fa5e225f0a5ebfa8d622942b17b7324ab3741f590bd28eb0b0bedf4"}, @NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_USERDATA={0x75, 0x6, 0x1, 0x0, "4befd6f35a110c0e5ae279cd58ecf660043959414248c88892cab6d7e2bc94e5c36dab5f92ccd6fb40887cfb14df8eb99f1829eda067d44c100a78c287e12a5c5b5c3b1fff6a90fb683f384ffdadf9058520c5c0bbe8df4c72e511b303d5b6879231f10c0549d492ee3074223cb08b2657"}, @NFTA_SET_ELEM_USERDATA={0x9b, 0x6, 0x1, 0x0, "61aec8d49660bfea65de781f559c3bc685a3a63c10fa36e8d7841c9aa0b50bf579a83e4285284507ecda725982abb0cfaf820850a8c8a720966264af7418f5823cf909c66fe47fd0897579d59e4aadbcc083489a27d98df24adf4195ae698972c53fb01b9d8e9de5ca71e2293ff054b4a8a798539e19faa4a83290f454e5d22f8ea6389642308378861e27e1bd037536c6723787347658"}, @NFTA_SET_ELEM_EXPR={0x20, 0x7, 0x0, 0x1, @synproxy={{0xd}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_SYNPROXY_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}]}}}]}]}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x5c, 0x16, 0xa, 0xd6ab92b8e662a0f2, 0x0, 0x0, {0x0, 0x0, 0x1}, [@NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x1}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x2}]}, @NFT_MSG_NEWOBJ={0x20, 0x12, 0xa, 0x201, 0x0, 0x0, {0x7, 0x0, 0x6}, @NFT_OBJECT_CT_TIMEOUT=@NFTA_OBJ_NAME={0x9, 0x2, 'syz1\x00'}}, @NFT_MSG_DELCHAIN={0x1c, 0x5, 0xa, 0x201, 0x0, 0x0, {0x0, 0x0, 0x2}, [@NFTA_CHAIN_POLICY={0x8}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0xc04}, 0x1, 0x0, 0x0, 0xc804}, 0x20)
r11 = signalfd4(r7, &(0x7f0000005180)={[0x9]}, 0x8, 0x80000)
sendmsg$RDMA_NLDEV_CMD_SET(r10, &(0x7f0000005280)={&(0x7f00000051c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000005240)={&(0x7f0000005200)={0x18, 0x1402, 0x2, 0x70bd2b, 0x25dfdbff, "", [@RDMA_NLDEV_NET_NS_FD={0x8, 0x44, r6}]}, 0x18}, 0x1, 0x0, 0x0, 0x20040000}, 0x4000040)
r12 = mmap$IORING_OFF_SQES(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000001, 0x810, r4, 0x10000000)
syz_io_uring_submit(0x0, r12, &(0x7f0000005340)=@IORING_OP_SEND={0x1a, 0x0, 0x0, r9, 0x0, &(0x7f00000052c0)="7fd84b81a32608d0d4d977e0ecefd81aaf67d1f433cceb0ed74d5b740572c47d9f297a795d342865f8d3caa7a9a0a5d65f2e85e1bd221385ddb97112dc13ff22b80dc3f0acf46e269a52e9fbc794843cea0472e69058981d60da1a2efa2a381f0d961a037b7fb1f346b13739a5", 0x6d, 0x4000081})
r13 = openat$cgroup_procs(r5, &(0x7f0000005380)='cgroup.threads\x00', 0x2, 0x0)
r14 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000053c0), 0x4)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000005500)={@fallback=r13, 0x20, 0x1, 0x80000001, &(0x7f0000005400)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x7, 0x0, &(0x7f0000005440)=[0x0, 0x0, 0x0], &(0x7f0000005480)=[0x0, 0x0], &(0x7f00000054c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], <r15=>0x0}, 0x40)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000005540)={@cgroup=r3, r9, 0x12, 0x18, r14, @void, @value=r4, @void, @void, r15}, 0x20)
sendmsg$nl_route_sched(r7, &(0x7f0000005640)={&(0x7f0000005580)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000005600)={&(0x7f00000055c0)=@gettclass={0x24, 0x2a, 0x400, 0x70bd2d, 0x5, {0x0, 0x0, 0x0, 0x0, {0x1, 0x4}, {0xffff, 0x4}, {0x7, 0x2}}, ["", ""]}, 0x24}}, 0x24000080)
openat$cgroup_ro(r3, &(0x7f0000005680)='pids.current\x00', 0x0, 0x0)
ioctl$FIDEDUPERANGE(r6, 0xc0189436, &(0x7f0000005700)={0xe3, 0x9, 0x4, 0x0, 0x0, [{{r3}, 0x5}, {{}, 0x2}, {{r11}, 0x4}, {{r13}, 0x1}]})
syz_open_dev$hidraw(&(0x7f00000057c0), 0x9, 0x0)
openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000005880), 0x2, 0x0)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000058c0), 0x180, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffff9c, 0x40106614, &(0x7f0000005900))
setsockopt$nfc_llcp_NFC_LLCP_RW(r6, 0x118, 0x0, &(0x7f0000005940), 0x4)

43.915584239s ago: executing program 2 (id=1210):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000800), &(0x7f0000000840)=r1}, 0x20)
r2 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r2, &(0x7f0000e5c000)={0x2, 0x4e20, @remote}, 0x10)

43.899061639s ago: executing program 32 (id=1210):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000800), &(0x7f0000000840)=r1}, 0x20)
r2 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r2, &(0x7f0000e5c000)={0x2, 0x4e20, @remote}, 0x10)

2.739129318s ago: executing program 1 (id=1937):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000c80)=@raw={'raw\x00', 0x3c1, 0x3, 0x4c0, 0x2e0, 0x940c, 0x3002, 0x2e0, 0x2c0, 0x3f0, 0x3d8, 0x3d8, 0x3f0, 0x3d8, 0x3, 0x0, {[{{@uncond, 0x0, 0x298, 0x2e0, 0x4001, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x4001, 0x1, 0x3, 'syz0\x00'}}, @common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x2, 0x0, 'syz0\x00'}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@loopback, 'virt_wifi0\x00'}}}, {{@uncond, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x1, 0xbe, {0x565159d7}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x565)

2.718739038s ago: executing program 1 (id=1938):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
open(0x0, 0x1c927e, 0xb4)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000140)=@raw={'raw\x00', 0x8, 0x3, 0x3f8, 0x1c0, 0x43, 0xa0, 0x0, 0x98, 0x360, 0x178, 0x178, 0x360, 0x178, 0x49, 0x0, {[{{@ip={@empty=0x5107, @multicast2, 0x0, 0x0, 'veth0_to_bond\x00', 'ip6erspan0\x00'}, 0x12a, 0x1a0, 0x1c0, 0x0, {0x0, 0x7a010000}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x8, 0x0, 'syz0\x00'}}, @common=@unspec=@connbytes={{0x38}}]}, @unspec=@TRACE={0x20}}, {{@uncond, 0x0, 0x168, 0x1a0, 0x0, {}, [@common=@unspec=@connbytes={{0x38}}, @common=@unspec=@conntrack2={{0xc0}, {{@ipv4=@multicast1, [], @ipv6=@loopback, [], @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}, [], @ipv4=@multicast1}}}]}, @common=@inet=@SET3={0x38}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x468)
r1 = getpid()
prlimit64(r1, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, 0x0, 0x0, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'lo\x00'})
r6 = socket(0x10, 0x2, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r6, 0x10e, 0xc, &(0x7f0000000080)={0x8}, 0x10)
write(r6, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f00"/28, 0x1c)
recvmmsg(r6, &(0x7f0000002ec0), 0x400000000000ec0, 0x2, &(0x7f00000001c0)={0x77359400})

2.074732427s ago: executing program 0 (id=1945):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000faffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0xe, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000340), 0xfffffffffffffe19, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x42)
setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000200)=r2, 0x4)
socket$xdp(0x2c, 0x3, 0x0)
openat$selinux_checkreqprot(0xffffffffffffff9c, 0x0, 0x80402, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000188500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x18)
r5 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x9a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000000000001}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r5, 0x40082406, &(0x7f0000000000)='cpu\t&0&&\t')

2.016848606s ago: executing program 0 (id=1949):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
open(0x0, 0x1c927e, 0xb4)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000140)=@raw={'raw\x00', 0x8, 0x3, 0x3f8, 0x1c0, 0x43, 0xa0, 0x0, 0x98, 0x360, 0x178, 0x178, 0x360, 0x178, 0x49, 0x0, {[{{@ip={@empty=0x5107, @multicast2, 0x0, 0x0, 'veth0_to_bond\x00', 'ip6erspan0\x00'}, 0x12a, 0x1a0, 0x1c0, 0x0, {0x0, 0x7a010000}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x8, 0x0, 'syz0\x00'}}, @common=@unspec=@connbytes={{0x38}}]}, @unspec=@TRACE={0x20}}, {{@uncond, 0x0, 0x168, 0x1a0, 0x0, {}, [@common=@unspec=@connbytes={{0x38}}, @common=@unspec=@conntrack2={{0xc0}, {{@ipv4=@multicast1, [], @ipv6=@loopback, [], @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}, [], @ipv4=@multicast1}}}]}, @common=@inet=@SET3={0x38}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x468)
r1 = getpid()
prlimit64(r1, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, 0x0, 0x0)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'lo\x00'})
r6 = socket(0x10, 0x2, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r6, 0x10e, 0xc, &(0x7f0000000080)={0x8}, 0x10)
write(r6, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f00"/28, 0x1c)
recvmmsg(r6, &(0x7f0000002ec0), 0x400000000000ec0, 0x2, &(0x7f00000001c0)={0x77359400})

1.879448836s ago: executing program 3 (id=1951):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r0}, 0x18)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r1, &(0x7f0000000140)={0x2, 0x6e22, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f00000002c0)={{{@in=@loopback, @in6=@private2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x8000000}, {}, 0x0, 0x0, 0x1}, {{@in, 0x0, 0x33}, 0x0, @in6=@private0={0xfc, 0x0, '\x00', 0x1}, 0x0, 0x0, 0x3, 0xb7}}, 0xe8)
sendmmsg(r1, &(0x7f0000007fc0), 0x800001d, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
dup2(r2, r3)

1.860169556s ago: executing program 1 (id=1952):
pipe(&(0x7f0000000240)={<r0=>0xffffffffffffffff})
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/profiling', 0x22042, 0x0)
splice(r0, 0x0, r1, 0x0, 0xbfd1, 0x0)

1.811175786s ago: executing program 4 (id=1954):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000faffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0xe, &(0x7f00000004c0)=ANY=[@ANYBLOB="b702000000000000bfa30000000000000703000000feffff7a0af0fff8ffff1971a4f0ff00000000b7060000080000001e6400000000000045040400010000001704000001000a00b7040000000100006a0af2fe00000000850000001a000000b7000000000000009500000000000000455781a5feee5e1ce784909b849d5550adf200000000000000b61d69f2ffdaa10350e11cb97c8ad51bcda0c4ee6d9674c77404ceb9971e43405d621ffbc9a4fd39b0631f6dde53a9a53608c10556e5734eb84049761471ce540c772e2d9f8004e26f7fcc059c062234d5595f6dba87b81d0806fb0289ce67a66afd9ac3d09e29a9d542ca9d85a5c9c88474895d679838def0a83a733dc6a39b63a5ed69d32394c53361d7480884bd8048a967d9b912ef9f1dcc4ff8546fee53f5b2e7b91c61ced1ebad000000000000e8122a793c080a882add4e1179bd4a44f231b6d753a7be428ba953df4aece69311687f4122073a236c3ad198e3f3a532efa04137d452ff47d2638da3261c8362bb7c7824be6195a66d2e17e122040e11e3bd4a69fc6e8d9f7043e09b9e10dc7777bfae5884e4ba1e9cc4a2bbe99e30816127f46a1aae33d4d63d716c0975e1ce4a655362e7062ff6ab3934555c0184021b829472adefa06d3482c7b2711b98eabdca89b77efd13e6dba4a431ce47910000118093b6cabaa17a57727474e1785ee234835088445aa4a9b677d3d342640e328504aea02a2d727e62b7f097a02dbf8fe1d704765de7482040b2fc3000000000000000008947baeaaf954aff687deaa2f80492461d273ee26d8115cbca081a14cba24788779291745083fccdddc90d7af35c528df8000000d8d79c79ddca066da478c197d4a550470557bc99cca336bd88cd28a5ee651627e3a6fbf6ea53b95ddb64c69c7d8d2f4baddc239828760459564124bad68209d2a1d16ad085886c017679cfcda8b1e152ac1e2bcc5ede5b5687aa418abfa29acd7339e73b2cd185c9eb5fb34fccd20ffa155b16c0c309ed6f6663677df37de0ec0d0f548b273940be5d1fe0bae14d1a76bf741330dacd9cc19c0163bcc93059e8d2d1bfa928e2ba458ecd989cb3581a3f270ad48255ac0dad4923e3e36629589ff6b0ceb3438e4b432dd454c04be2d538aaf60c9f7a7281d32142f2fdbc3d37e5a072b5d7f0a349f1a75f01b5c203d4bdde6ff12de9a37f7fb9a16059ad97e2edefb5e0b0326bd25f6fd1d108efa9d30a9883815654486fe42cf2f676cdbb91f7582ab314be"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000340), 0xfffffffffffffe19, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x42)
setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000200)=r2, 0x4)
socket$xdp(0x2c, 0x3, 0x0)
openat$selinux_checkreqprot(0xffffffffffffff9c, 0x0, 0x80402, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r3 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x9a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000000000001}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x40082406, &(0x7f0000000000)='cpu\t&0&&\t')

1.746235616s ago: executing program 3 (id=1955):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x2, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000240)={&(0x7f0000000040)=@ipmr_newroute={0x2c, 0x18, 0x200, 0x70bd2d, 0x25dfdbfd, {0x80, 0x14, 0x14, 0xff, 0x0, 0x3, 0xfd, 0x1, 0xc00}, [@RTA_MARK={0x8}, @RTA_DPORT={0x6, 0x1d, 0x4e21}]}, 0x2c}, 0x1, 0x0, 0x0, 0x80}, 0xc080)
r2 = bpf$TOKEN_CREATE(0x24, &(0x7f00000002c0)={0x0, r1}, 0x8)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000008c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0xdb41e0696be522a3, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @value=r2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
r4 = socket$packet(0x11, 0x2, 0x300)
socket$inet6(0xa, 0x80003, 0xff)
close_range(r4, 0xffffffffffffffff, 0x0)

1.727460255s ago: executing program 3 (id=1956):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x2, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000240)={&(0x7f0000000040)=@ipmr_newroute={0x2c, 0x18, 0x200, 0x70bd2d, 0x25dfdbfd, {0x80, 0x14, 0x14, 0xff, 0x0, 0x3, 0xfd, 0x1, 0xc00}, [@RTA_MARK={0x8}, @RTA_DPORT={0x6, 0x1d, 0x4e21}]}, 0x2c}, 0x1, 0x0, 0x0, 0x80}, 0xc080)
r2 = bpf$TOKEN_CREATE(0x24, &(0x7f00000002c0)={0x0, r1}, 0x8)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000008c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0xdb41e0696be522a3, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @value=r2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$inet6(0xa, 0x80003, 0xff)
setsockopt$inet6_int(r5, 0x29, 0x16, &(0x7f0000fcb000)=0x2, 0x4)
close_range(r4, 0xffffffffffffffff, 0x0)

1.721288365s ago: executing program 4 (id=1957):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00'})
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200003, 0xfffffffd, 0x0, 0x3})
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB='\t\x00', @ANYRES32=0x1, @ANYBLOB, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0xec, 0x5, 0x42, 0x7, 0x0, 0x0, 0x9d6d1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x2, @perf_bp={0x0, 0x4}, 0x10137f, 0x7ff, 0x7, 0x0, 0x81, 0x2, 0x5, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)

1.687027215s ago: executing program 3 (id=1959):
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, 0x1c)
listen(r0, 0x80080400)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r1, &(0x7f0000e5c000)={0x2, 0x4e20, @remote}, 0x10)
r2 = signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmsg$kcm(r2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, &(0x7f00000042c0)=ANY=[], 0x23c8}, 0x4004)
readv(r2, &(0x7f0000002940)=[{0x0}, {0x0}], 0x2)
write$P9_RLERRORu(r2, &(0x7f00000000c0)={0xd, 0x7, 0x1, {{}, 0x8}}, 0xd)
getsockopt$inet_int(r1, 0x10d, 0xeb, &(0x7f0000000000), &(0x7f0000000080)=0x4)

1.682833335s ago: executing program 4 (id=1960):
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000c80)=@raw={'raw\x00', 0x3c1, 0x3, 0x4c0, 0x2e0, 0x940c, 0x3002, 0x2e0, 0x2c0, 0x3f0, 0x3d8, 0x3d8, 0x3f0, 0x3d8, 0x3, 0x0, {[{{@uncond, 0x0, 0x298, 0x2e0, 0x4001, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x4001, 0x1, 0x3, 'syz0\x00'}}, @common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x2, 0x0, 'syz0\x00'}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@loopback, 'virt_wifi0\x00'}}}, {{@uncond, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x1, 0xbe, {0x565159d7}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x565)

1.611578185s ago: executing program 4 (id=1962):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b405000000000000611004090000000063012c00000000009500000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

1.611239805s ago: executing program 4 (id=1963):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
open(0x0, 0x1c927e, 0xb4)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000140)=@raw={'raw\x00', 0x8, 0x3, 0x3f8, 0x1c0, 0x43, 0xa0, 0x0, 0x98, 0x360, 0x178, 0x178, 0x360, 0x178, 0x49, 0x0, {[{{@ip={@empty=0x5107, @multicast2, 0x0, 0x0, 'veth0_to_bond\x00', 'ip6erspan0\x00'}, 0x12a, 0x1a0, 0x1c0, 0x0, {0x0, 0x7a010000}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x8, 0x0, 'syz0\x00'}}, @common=@unspec=@connbytes={{0x38}}]}, @unspec=@TRACE={0x20}}, {{@uncond, 0x0, 0x168, 0x1a0, 0x0, {}, [@common=@unspec=@connbytes={{0x38}}, @common=@unspec=@conntrack2={{0xc0}, {{@ipv4=@multicast1, [], @ipv6=@loopback, [], @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}, [], @ipv4=@multicast1}}}]}, @common=@inet=@SET3={0x38}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x468)
r1 = getpid()
prlimit64(r1, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, 0x0, 0x0, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'lo\x00'})
r6 = socket(0x10, 0x2, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r6, 0x10e, 0xc, &(0x7f0000000080)={0x8}, 0x10)
write(r6, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f00"/28, 0x1c)
recvmmsg(r6, &(0x7f0000002ec0), 0x400000000000ec0, 0x2, &(0x7f00000001c0)={0x77359400})

1.001527923s ago: executing program 0 (id=1968):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
rt_sigsuspend(&(0x7f0000000080)={[0x5]}, 0x8)

978.814953ms ago: executing program 1 (id=1969):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000040)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}, {@journal_dev={'journal_dev', 0x3d, 0x8000}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@minixdf}, {@resgid}, {@grpquota}, {@usrjquota}]}, 0x4, 0x44a, &(0x7f0000000400)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000300)='./file0\x00', &(0x7f0000000240), &(0x7f0000000380)=ANY=[], 0xff27, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_audit(0x10, 0x3, 0x9)
pipe(&(0x7f00000001c0))
r0 = syz_open_dev$evdev(&(0x7f00000009c0), 0x1f, 0x101040)
ioctl$EVIOCGSND(r0, 0x8040451a, &(0x7f00000010c0)=""/162)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0a000000020000000900000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r1}, &(0x7f0000000200), &(0x7f0000000280)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000000)='kfree\x00', r2}, 0x18)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000005c0)=ANY=[@ANYBLOB="14000000100001ff00000000000000000000000a2c000000050a01020000000000000000020000000900030073797a32000000000900010073797a300000000014000000020a031747d21400000000000000000014000000110001"], 0x68}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
set_robust_list(&(0x7f00000008c0)={&(0x7f0000000340)={&(0x7f00000002c0)}, 0x6, &(0x7f0000000880)={&(0x7f0000000380)}}, 0x18)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="14000000100001000b000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000044000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f08000340000000045c0000000c0a01020000000000000000010000000900020073797a32000000000900010073797a3000000000300003802c00008028000180230001"], 0xe8}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1, 0xc, &(0x7f0000000100)=ANY=[@ANYBLOB="180800000000000000000000000000008500000023000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
setsockopt$sock_attach_bpf(r4, 0x1, 0x32, &(0x7f00000000c0)=r6, 0x4)
sendmsg$unix(r5, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40080c0}, 0x40)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080), &(0x7f00000001c0)={0x0, 0xfb, 0x15, 0x0, 0x0, "3312b2ef88d6d754ad9152c2e4c60f0b"}, 0x15, 0x0)

978.105853ms ago: executing program 5 (id=1970):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0a000000010000000800000008", @ANYRES8=0x0], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = syz_mount_image$vfat(&(0x7f0000001200), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000001a80)=ANY=[@ANYBLOB="002918d910d46be7099c66b02010b1f0b7c3dc1dabe625969fb0adc922385af53d57a1d35dd71c90d9dd649b53142dd3d4108b4c7db82e8475d5bb6fa2fa626cd92c7326ce1ba2f33b0aef2b2164e01d910058b51684696959ea7f5a607a6572d2640cf9312a07000000260e3651a0cbfd2c080990fb4c76e9e613a759863734a70d0600ec77e8ba76aacbb21e4b903aa4873a9951f269a9c0f87805a1a0cbdf6b8644a1de05a8d9dd9687d67c8af7f68cb59e60d1fbefb49b93d6b72cce4162edc4468a13987d94d428df36915621aeff6dc1358a7331fa69e05c417c2e1e6b8dc29c496c76d02dfc2d7b48616fb3f01b221f4f8f484a00090964922de8909a1f9f7ef655a12a68a56cb341a8fba4cd81cedec9cb518d13d2a2564427b63b037494748a24daa21fe1256df68d000b2778bf0437cc642cd83c5a1b34eeffdf93ecbd85bb340eeef68dd60101769c74f94d217264c171feea0305bfc87c36247d90b129a9973f00000001d99b195d2f75653a0193672783c6dbca5d1445110621d8095064f0a034f492cf5aa4767a772d6f4967722546bfd83d3202f76c20a9d7f40f9e7818d77129df7fd072804e0227ecaa03dddd303a318d6f7763ce011543587e6a306780ca2f37db7e8a5b64a5059ac91ff2110e40ea13d70e1504653ba9eebcf61b427797fb3fd79d2bb9aaa13c9729fe323c4ac222991981381e004684fb200b17d2f6ede181067662ad8a31f45b613869ca8fc5b1dbe62407a1f6dcb86a4c430210e9bcfca9b83283b87316c4d17f388e0bab0500000092a82e12f8e5348f11e7739033e9081bfc598746cf032fa55d9581470000000019ac65f89ca7d96da3ca2db52f8ec80462fddf42dbbca24b7200"/643], 0x1, 0x120b, &(0x7f0000002300)="$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")
mkdir(&(0x7f0000000100)='./control\x00', 0x0)
rmdir(&(0x7f0000000040)='./control\x00')
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000400), 0xffffffffffffffff)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000004c0)={'ip6tnl0\x00', &(0x7f0000000440)={'syztnl0\x00', <r5=>0x0, 0x4, 0xf, 0x4, 0xf0d, 0x4, @remote, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x40, 0x700, 0xb, 0x4}})
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000500)={'vxcan0\x00', <r6=>0x0})
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000c40)=ANY=[@ANYRESHEX=r4, @ANYRESHEX=r2, @ANYRES16=r2], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r9=>r7, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000cc0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYRESOCT=r0], &(0x7f0000000140)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb904, @void, @value}, 0x94)
r11 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r10}, 0x10)
openat2(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000b00)='./bus\x00', 0x0, &(0x7f0000000c80), 0xff, 0x269, &(0x7f0000000f80)="$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")
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f00000008c0)={[{@bsdgroups}, {@nodiscard}, {@noblock_validity}, {@grpjquota}, {@minixdf}, {@orlov}, {@abort}, {@delalloc}, {@data_journal}]}, 0x64, 0x50a, &(0x7f0000000200)="$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")
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000c00)='.\x00', 0x185a098, &(0x7f0000000d80)=ANY=[@ANYRES16=r11, @ANYBLOB, @ANYRESOCT=r5, @ANYRESDEC=r9, @ANYRES8=0x0, @ANYRESOCT=r3, @ANYRES64, @ANYRESOCT], 0xb, 0x0, &(0x7f0000000000))
mount(0x0, &(0x7f00000001c0)='.\x00', 0x0, 0x10f482a, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r8}, 0x10)
fsetxattr$security_capability(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0, 0x0)
r12 = socket$vsock_stream(0x28, 0x1, 0x0)
fgetxattr(r12, &(0x7f0000000000)=ANY=[], 0x0, 0x0)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r1, &(0x7f0000000580)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000540)={&(0x7f0000004bc0)=ANY=[@ANYBLOB="4a01a0e8a8f239486051029cc685b82c229d0104141377cc98afcfcb098ee652941913b4b645590cf9e6034b629ca1c9eb3b75eb2555c6ae4b491af6fb3ee5a22501e89efff6c64f187391b932807a510dc46cd7dee54158826cad2d4c95219b0343e01d28", @ANYRES16=r4, @ANYBLOB="000226bd7000ffdbdf2508000000f80302802700050056a603948a43d6c54c76eee4c09fc67868105d73a6d6c360603c79c6ba615e11ab9bbd00ff0004004870f186f8cf8831627652cbe9d28cbd4f1d5fa475fc2f5b0cf4877da06078607774d687ae95f1088576055173affe767788486bf3f49d86a3ca1de9e276d4efeeefa97eca2ee6ee20c7fb8041bdd8889e9f9e97f96ceffb2097b8d6d5c201a3a79084a32316d551d24ee6c5ca64e8fa7d61eafe1c18c02387dec3e732bcfd0d8b6dc4a6691ebd69a6f776cdf70edd0d4b23b310ec97acc1ce6edbf735a942648ffec0af58bb3045dcd4695a3ee762bedc07384d37f57c3a9c3b722db08a446f12f15ce7f03366a9d7b646354d9902e8258d3ce50b3b5dbcf5e31ec9f5f518660edc00008b42edcd223a2aded5abcdd85d1c77af0c10a5ffbe382b0004000100dc0003800c000180040003000400030030000180070002005b2b00000800010009000000040003000d000200232727295e2f3d24000000000800010002000000500001800a000200bbbbbbbbbbbb00000a000200bbbbbbbbbbbb000004000300080001000800000008000100ff010000060002002f000000060002002a00000008000100050000000800010001800000040001800c000180070002002b5c00003c0001800900020076666174000000000800010000000000040003000400030005000200000000000900020076666174000000000800010009000000f5000400321a32967561fcc2a42bc73c7b94b5c3f64052a2f8f6f8969cff75243ab35f0aa6a75a2a11300ec08c23533d09b4dce14156527ac2afc8a7e3b68417a1ce5cd9339667ad07d5a252397d0603f1378834d0c6dab3b8328c58d360b7242320858f89a88792e600f7316c40ea57cbc2b9d14b302fcc1c9817a723abe4ca5879e77ea5875ff42c3ba6272e705e39598a36433c9094aa0a4251e16fc6096bb76d7966a8da0ed3795a2a6dc8927c159a84e8af228cf9ff99c3f820072870da232cf4af2fae5687f9e9fbbfdca102875437373d273a8d38351a9384310c2442b48ae8f36fd7b8daff1ed238b70519f1cf8fb313ac000000f400038018000180040003000800020047504c00040003000400030040000180050002000000000004000300080001006c928b5a0800010007000000040003000a0002007663616e3000000004000300040003000400030004000300200001800800010004000000140002006b6d656d5f63616368655f667265650040000180080001000f0000000a000200bbbbbbbbbbbb00000400030008000100090000000400030008000100070000000500020000000000080001000f0000002800018008000100ff0100000800010000e0000008000100a8384d3a08000100f500000004000300100001800800010002000000040003000001028010000380040001800800018004000300380003803400018004000300040003000800010006000000040003000800010000d707000400030008000100090000000800020047504c0004000100a80003803c00018008000100ef07000008000100050000000800020026402900090002007666617400000000070002002a5d00000800020047504c0004000300080001800400030014000180040003000c0002002e2d2d2e2c2d2700140001800500020000000000080001005c0900002400018008000100db000000140002006b6d656d5f63616368655f667265650004000300140001800500020000000000080001000800000008000200000001000011028008000200050000006c0005000e9279556dce4000a3722b56584f0501798626c597ecf12df1d5e5a766d89fbc840d619c9175d3a2e356496f0f213be6a3dd8899cb59e68b71d9fef190233e9effb961d61aae260cad9dfe99e57f067673870c64705fab31477c35d9ab2f85893c03c5abcd11a33e080002000300000004100500a55723a8c78f77def55643d17caf1db15de7e5e60c250399159abb61f36f9ed059c5377ed3fc8b06b2ec52315af530c4a6509ad4b0874a7a0210d37aa8afba2dae497b194f0edf681bccc1a18982cc24d2497bc863db40486efcb43f319edab69ba5f60588a2f317cc4951c8f655f548e967cba15682f143b2c07ee33792b30e8f0618fca77fd6ab35b29a0a6f94d3f86b3a82f471b4e57ce4e3fdac9b9cc87e0c8a52bcbeae9c386632c7b8f093085c90c8f7d8a6248b5116748ec1dd11c0e21d2b2f3ef3bb19a647bfb5fcc1f7cd36219ff9d02686a491d511254784284965a959c054976c98bdcf1d413174e256a9b7efe12dc2e451d2475f3a056bc75000bfab1a3b012e81c205f01ea93ab9002604358d25f4d4ec11c68fc2cb137454eda4afffc9ee20a835ec00aa472ad58c4bbb603cca1e1d3dd9dc4a72fef685cd0d977a66ef58b951ae60fb74108bfde916036a0c549ea095db55b81159119bcca5d98d235ff1fd818e28ceb6ebe79b09c928d707e4d9206a6193dbcba798ed2a21c6c244594dc53f540da86bc5a246a95bd0a9952888aa9044d65d5d403ec9030e51c4d70418098f469394515543c5c763ff25f7d1c9b960906e065977f219dded23bbf3f9f6b58baaca8c7f7a9131f3f05707364681839c9cf64742a227de1e06bbda29f5e385bab4fae3a49f9cf1f68a654dcbecaaf0bb9dbe49a367f70cce48d6a8c5c6d528bdf18ecb6d9ca1fd3d24a3a30263aa1150bda8a9cda6420613e6b2760e8b1684f82ab0c54823a22e227af9514cfe63d4a0aeab6087b6ab9b34377c02dc72a4ca4dc363184e38aac497704b540b275fdb17ddf4ac98b86028ef8f6e2712d3e4167f8b3299898d092f4c298cbe742f84f5979729e42faa5b856c628e5f55dbe165271d4ee60d259cc8b2d0716097f5e1973f4164e12314755d7357a54cc2e4376812ab1197fee7c30aedd657cd8c3be05952fd4348d482f41d7c6209f62a7f73bcd02ddabfce50cce762c654ee5d497be7f83e6a486fb70c443f83f76f04dec6572fd24f9151b136fbd689413ecf9baac9029f97f7903f3c64700214b7098a9b472822cf860194fb00685e10ce806beb607ad3651d8d4aae61df5b50d2e1f51fc4b7977c5ea58f9e103d3586ab473411bb16cd3cd50dcc4beb93ccd4baa6e36bfb9170cbec92fb980245eb275d309f56f69c94239e1dbafffac4561b668f0d56e09e1ccd1356d372614ff4c4fb4c07a8d028451af4649d025d1cf1d88c8863502c2b8497d32b5a7fe7d027c2cb2a74f91e3e0368c1e404ab69d6494ad84ff0ae32469f3dd9f1ae115f7376c2b2a16185cd43676422f110828fb0c6647a2c7e3861e77accf934bb1efde7a43910db04a0dd1e6409a566673ef60828899948aa0fbb3c06e6d60e12fdb6a0102c8c988d88569c052facd1907b3a0a284d1842e8a43a0f9633e94cd30503c86f280c88d343fcd7962829fdf3aed8ed8b1a03c77720760a455fe5971e7ca252376386196279bb61aedebe00cd6dbc16f810afa12abacc6f10b1e075a9bd4275f819a0a751d4269950b96f548907674b1c94ec2405c814e72b60903abfb83d1f67fa1dca3a1ea69d46c69bba98d98547016bd387628ca0fbd80b631806cb25d81643248beb37f0dad7e41e89d7f5b31f4c2a9f3dcf3f46e2a21bb7f98ec843da229e5600aeccc6103a4cd59252d701eee29dd586857704587601edb0fb3fcfb93c84d8aab074cff8105efca38f408b6075048fecbc69c7fb6c4a16ca032ff0c77a89218e29414efda1e809ea846f700d455cef71cff59b02ae9d2e93959b681162f5da542341f73852de086c40f08166d166538cfb8f142ab255f779cadb109f427a774d435f19b4758ecf9ca463bc254aa66764dfbaa88db03f307037c844465837df4a4cf3bd6b0707411fb10e2d448ab0232a4398fc4969d6ba034f8970c55cea15570f6642e74d48eddbe82097986f3adb13e9ffd63d1aa46b2b58a816bbceadb208991da26e37ae182f64f25ef1add1e908f6e7c960a6c4761a22da3a9f46aa5b3e94c5dcdb05403971f9898c9af6882e63568f6ae3dd4da3a804b326f5b3deeadc2e55a04a736a658bb3595cc092c90d3bfbdca05390e38956237711b223412f03e5dba8ca632e2e1a766d063a1153d9113d5c87ee3a7ad9b8fce3e2e7cff8fd51f79c390366d08f3f16254b2f75dd21598c852871054b12c48b3ed7269fe241572cd9ae783357bc5eb8c1e43928dbc2215cff9b1f9b4c9de1995a04cd52d73ef4ed3656aebd5c11c0eb72d36d947179c7ef8702539ff0541425b5d69d6d9639f66d3f70937192d3aeb12877fbdf60b18c788671884732e00c588b73cefbf6533d8ca560841bd9a5389915bf0fcb7d4fdcc3658db21f1723c1eda668570a4d783bdd1c80191a151800228925563332cf6106a9ac073c957bf82936a8f49414536981fc2db1a979083b828afb276087654c68cf507855d6826c56d8327203b754f973ebb77738af6d604cd6965eddc27ffe432bbd4ae61a27bce2b94828d9675487dd046cc23b100d2c8ffdd2c585a47e83c8fcf5af0454818a7ee5de87b44e87d2cd5c7e38cf01efa105169e4d2a2fcefdc0f4d41bc34a21c08ea8885fc2496aec63abfc3d07a43721500a674a2a42490ee98838044bebf0a75b548335636ec59d09e6bf5431a75d9505a61ba803c0233586816a22e9680c9e89c2c7ba7657aef5eb913be71616ce847014b1bd75625b33f8353310c34c49dd01de5c1846aac89bcf80d094ba6037d5d01bebf2072d77bcd3da65eaf0d519688a934f8141488adfc74990f95029716419c1ce182f6f273c69573a475514a461e49845c9d5128ffe6a0a3d88266d06e65fb5c9df43edc04ae03c4c5e3bafc9903a8775dd08390114c41f07c28b208c20456f533eb107cbaa1748e74a10deb912e0b5f385a36f80acd96946691969df35e3dba67151c18a83af6eb00e1c5958121916c9c18f5a33b3d868bf3849f164982e94e39ab29b5ba748eb9937b8e15d340433f13742279340ab238b9fd5da2b06cca683f91285c752223157c4a0446be8d3dcccba8a45174f0e34fa9d79a6c7c45f6dfbef9639790af487b1d633b4f868de74e20395b45748694ee3f06dd50c3550d44bf08ac072b722d2d46f850f755c8aa7b958894023e4fb436dd77cc483cb90028e2ee1f3d4026538d2d82b3036c9ef8d90ca0e83adb4e2cadb5520fb4d3e76a4a7104724ef5263f7bd5d9f492ff38dc70cd42cbc289d676156667354b0ec1960dea80fd79a08bd702643580618b656ee64e75204714ca744f990c3181a3b9cdbdd540c08bce97c2ae19c409cd6360d164daa28a5bafd6e67e5e8bd8ab9a4e9af74a7840e5876df95b2a65270ae475176bdbc01072339abb5add547c50eec31d6f876dcc0ab5c3ca1d28ff35765aaebab2e38479a5795aea06a27c690e571ff712af7ea5942d744e34fbde79b66556de7ccbe390025dcb6f1c5b97b6bd5497246bf0c46dec241d1a1532edc5d7c688ad40aae5e4f5d7c9ee2260617e2a47a02a54fbc18ac76a9666566564089620d8d57bc05858fe8c093a01fe9effab5a6dea04a062d6ab6a5e915da9fa26ad94f1cd2bceebb10bfbed3348c78bed71eff0e78ba1401a378fc77cc4b473b8cbc3a7f69e11ff199b762514e6a776dc96a3277250693577a41daa3e18c4fa56879fed4e2a5b2679c0726f4bab20709468335ecd7f59197e8ef9b3abac52198871af42c5f8d7de085231d95e7573ec6df90f4b7a4b46ec4cdb13a8193ffbeb300d7eea2255c9be55d6d84c5830becf9d38d4985911c7ffad11d07045eaf87811ea2ff87c833ba511d0d1a40041b98ae4c3394ea50817f5994a86ec84f287d9bd89fda7c637d0134d91e6e645c4029090763480e0ecd1d3426a180adf6a7c74a83cb7757cf60da012ffc84dd6003dffc074dc17b8946523efe9add484577539de762931bc0a4dfba84b21ff4cc054874aea0292467c347ae2ec7e290a7a311873333a9a6c7d0435525887440e4a4c80bbf574c3d0e97c313c69b1c9a242696a8a39359bf08ef1516042e23a47f37ac4af3a6f0a27bf3edd656ef6b1eb1175151393a10fcf8ab214ec08556fc91213875487334540a089c557b8de08dbc2baf44df95e7e21c8c07733519597f7b24c3d6cd3c74c97f7969a4a246e9aea61f4b89cf099a5fd33c4524b4cf8c6ee9466c113bc38caffc6fb7c8aa93edb0f3aa6e085d94850aa70d83867dce542375257042a9c5d1b175da59c1df365b0f37ec34816eb14ff43d4615b88cbc5020181e6d572ff4cae981c64a34440741672d1deb7b635cbba848477f5264db50ce0dfef2be7330d5d9dacdeabe7dc583c148fae2a5f0162afe2e1622970caa66c5b7adbaf42cad364ef684e8efcbceefdaa63be4516ecce5a3f9131d52fb872fbdba0d15905d4a72fa0a0e1d7fcdaa17387f1ed9172442c2c35f6aaffd9615c39fab2ad52970384889b60dacc5c6bdfc2348d85dc53183f39d362af9360cdddf2ef7349879ae110d0de9afe481b40fbd3b0bcac92b50cb10566f32e006acc93aa360ae29920c05f5715464d32d14500947330bdff32b2ff0eb3c79503cecc728d50831714d99514b2abf16d15038b850e72334d871199767f60e11c0b62f63fbde1a23e6070eb737e111bc40e7d593c0aecf9f9f8cf92f7c931d3c1867415f474583c5cc37aef7460c29c7a114fbd2a3a0f78a99ca5e4dad3957dc01c4dceb29e0027104e909392538cb4c4b48388c585c6c7ef73dbfa30506afd08618ec50ac4fde8638eb9f2f476ee94b521cedd9d074340eabfcf3f166339eeac9a132ec9ee33ec79388b74e662a86a618dec579a66b43bcb1095d19df1059fa62d14e3bfde1c811e41c1d7dc00135f93dbfd2287803548ddc3c0c07d115fcffc6e8afd8b43d72b815bdd2406e8c4a5c0936f517e7ecbbb20062cc1d01ee1d76b294b36b4d9b686c8127675f84faf3d8cecbcacc55e500b87550e3813367b6c68907699237cb0ce60ba5ad8d61e77077b562fd1812a2fd66acb610a9170a1d56e1f5b66202aaf53cb1da5085de7802d404c2fb2f0f3af0f1ce29cc3302ee19ad4e1ee34ff619c568cd42902ffe2213b19ee0fb37fb61cd36f3739b592e627fe004d70489ac717ad9d527328a8d87ccf904ca1f2db8da6dc9019c485ad890b6699eb7f83ea7dd7226cc1e2dc9cb400089a84667b6aee7de206d849ee24c9541a83d24892b3e5d18feb1ddb79368d69542e92ea03e15a41dac6252e90220ba15524c394701e63211691e3a867e01db241a7e9493c610335b4cd039ff9504cef6f95a9f4cb8b7931691db709b15a6b8fcc93c7952b08f9573c532b2ab5afdba25ec0fdba8a9fb4c1998312362f08e1d179a473d1627cd4395d6125b71bee4d11a507e622b37bc725127f8b9bb061b6b6ef183f645c0a935b5d42fdc0a40711af25211f08a2404176b613f687b185ec104ebfd87d633371a4d9ed9e6d9f7250d33d468cd44f7161684b33d022bd23a3f1fc0c8d96ac5377c111a66cf57ae1daac3e561462a66723ba03a01af948f670257577e9a8a9bdf9f680cf12a6bda02221c014d85329096b059e20a77bec41b18e18cf176b0e288aadc103c7081bc9917a61b5ad67e4d8ef32a5698028131710a06686f391217761a40bc66122cedb1a0c5edbbb18032aa4ffaefd4878866bf8a750fd81f19f223fb4fc89a388a7b2500b25f9b8bb4509157a757e24f306c5c32b362ace16c000380140001800a0002007663616e30000000040003005400018004000300040003000800020047504c0004000300090002007666617400000000080001007f000000140002006b6d656d5f63616368655f667265650008000100060000000a000200bbbbbbbbbbbb0000080002000000000008000200660000003c00018008000100", @ANYRES32=r5, @ANYBLOB="1400020069705f767469300000000000000000001400020076657468305f746f5f7465616d00000008000100", @ANYRES32=r6, @ANYBLOB], 0x1648}, 0x1, 0x0, 0x0, 0x10}, 0x404c0c0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000002900000005"], 0x48)

894.316983ms ago: executing program 5 (id=1971):
socket$phonet_pipe(0x23, 0x5, 0x2)
r0 = socket$unix(0x1, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000004340)={<r1=>0x0, <r2=>0x0})
recvmmsg$unix(r0, &(0x7f00000041c0)=[{{&(0x7f0000000000)=@abs, 0x6e, &(0x7f0000002300)=[{&(0x7f0000000080)=""/252, 0xfc}, {&(0x7f0000000180)=""/4096, 0x1000}, {&(0x7f0000001180)=""/4096, 0x1000}, {&(0x7f0000002180)=""/190, 0xbe}, {&(0x7f0000002240)=""/54, 0x36}, {&(0x7f0000002280)=""/88, 0x58}], 0x6, &(0x7f0000002380)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f00000023c0)=@abs, 0x6e, &(0x7f0000002680)=[{&(0x7f0000002440)=""/198, 0xc6}, {&(0x7f0000002540)=""/232, 0xe8}, {&(0x7f0000002640)=""/24, 0x18}], 0x3, &(0x7f00000026c0)}}, {{&(0x7f0000002700)=@abs, 0x6e, &(0x7f0000002880)=[{&(0x7f0000002780)=""/83, 0x53}, {&(0x7f0000002800)=""/57, 0x39}, {&(0x7f0000002840)=""/42, 0x2a}], 0x3, &(0x7f00000028c0)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}], 0x130}}, {{&(0x7f0000002a00)=@abs, 0x6e, &(0x7f0000003c00)=[{&(0x7f0000002a80)=""/4096, 0x1000}, {&(0x7f0000003a80)=""/78, 0x4e}, {&(0x7f0000003b00)=""/5, 0x5}, {&(0x7f0000003b40)=""/64, 0x40}, {&(0x7f0000003b80)=""/60, 0x3c}, {&(0x7f0000003bc0)=""/24, 0x18}], 0x6, &(0x7f0000003c80)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x18}}, {{&(0x7f0000003cc0), 0x6e, &(0x7f0000003f00)=[{&(0x7f0000003d40)=""/76, 0x4c}, {&(0x7f0000003dc0)=""/89, 0x59}, {&(0x7f0000003e40)=""/142, 0x8e}], 0x3, &(0x7f0000003f40)=[@rights={{0x14, 0x1, 0x1, [<r9=>0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [<r10=>0xffffffffffffffff]}}], 0x50}}, {{0x0, 0x0, &(0x7f0000004140)=[{&(0x7f0000003fc0)=""/199, 0xc7}, {&(0x7f00000040c0)=""/71, 0x47}], 0x2, &(0x7f0000004180)=[@cred={{0x1c}}], 0x20}}], 0x6, 0x12003, &(0x7f0000004380)={r1, r2+10000000})
epoll_pwait(r8, &(0x7f00000043c0)=[{}, {}, {}, {}, {}, {}, {}], 0x7, 0x1, &(0x7f0000004440)={[0x1]}, 0x8)
sendmsg$NFT_BATCH(r4, &(0x7f0000005140)={&(0x7f0000004480)={0x10, 0x0, 0x0, 0x2000210}, 0xc, &(0x7f0000005100)={&(0x7f00000044c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x2}}, [@NFT_MSG_DELCHAIN={0x60, 0x5, 0xa, 0x201, 0x0, 0x0, {0x3, 0x0, 0x9}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}, @NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x4}, @NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x5}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_COUNTERS={0x1c, 0x8, 0x0, 0x1, [@NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x8}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x5}]}]}, @NFT_MSG_NEWRULE={0x20, 0x6, 0xa, 0x201, 0x0, 0x0, {0x0, 0x0, 0x7}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELSETELEM={0xae8, 0xe, 0xa, 0x101, 0x0, 0x0, {0x1, 0x0, 0x2}, [@NFTA_SET_ELEM_LIST_SET_ID={0x8}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0xaac, 0x3, 0x0, 0x1, [{0x640, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_USERDATA={0x9c, 0x6, 0x1, 0x0, "6a1205e708689c4a6052c641d4a6330f729af1f0c79ab08ec5a97a0cdeebfc84cc4bf487213fabbd827551af44671bf9e3a000a38854da79a8661dfa3e5e7645202e2c2d8caba002127a663f27cdacd96af6fbd69afee72a1e518f55a182f5291eb8728374e628352225da7be051f0a5b6565a17e19f007f1b7e18245f27745a86a4b2ec6c213ee0693a5cff47e118ef3131cb7061464d5c"}, @NFTA_SET_ELEM_KEY_END={0x1e8, 0xa, 0x0, 0x1, [@NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}]}, @NFTA_DATA_VERDICT={0x38, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VALUE={0xbb, 0x1, "717ba99b2dfc98face8f28ec9327c9b4b113baaaff62b8ef90f61829471db000751761980a84f8205915452b3895ae5a5d4d68dacb5b70db51056b47149decad4f19b7b5a9488d1ff78e98918a5bb8586303e52b4943035febaa35c4a675c2c1ceb2b5d86362ca0a0f23aa8058259f31249899af566488c28c6c754aeb0d6d59fde733de2b3fe05f04cd7008100f81d4ba4b79c678f6afe3af93295510cdd75384522df379ece67f2866302f48d4d7a89a601d3d777071"}, @NFTA_DATA_VERDICT={0x2c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}]}, @NFTA_DATA_VALUE={0x83, 0x1, "e2767c2cd59bd27ea1bc59ae683bb26cc60610710b62fc2a87392ecc9e43c29c6403a58edd29ca8849de4274862a02f68ff35f67fc2f569465e80d03805644aa9e6a54fef62ac40dd9dde97e83786857e9ea04fb7ffdf6d1bd1532ecf3b730e9f2873099538ad747aa495323a5cdec5e1e7b6853c19382cb30c7e2a50189c5"}, @NFTA_DATA_VERDICT={0x28, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8}]}]}, @NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x7}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz2\x00'}, @NFTA_SET_ELEM_KEY={0x394, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x27, 0x1, "4084d59be03460744a97ee17ff42d4a34529314d9a224ad02fec5d2b821308845a72ae"}, @NFTA_DATA_VALUE={0xb3, 0x1, "7ec803b424b3765474470c32653ec72efba8eccb355cf0df4c8ba4f4066af1ac2893894d3bbbfb46aeac0736a374d63d8e5ecbd51aedfdbae0b8d5dc95391179f37c9249426564e43875aeb733f4ce307407d42a851b2abf97f4763b9fc523d47ab750a21e588c67d0b0e3a5f34a9a0814d4e6afa8b3e37e0b96fca73820c8436d9b0443a52833c882c7ee75257d99e33ee70acf347275a6e24ef234f6d8f245451c04d44d2ccb937fd135f8a1eedd"}, @NFTA_DATA_VALUE={0x7f, 0x1, "9b63de12c7b9b2af6a6f0a8cd7e46ffb80719d04d791144181eb253c8066efadfcf1ce328c0b162ba5ca67b3593a2069745a6643e4c14515f806ea0d58bdcab41a38060f33417145a3a3f6cf1d81c41cc35fe8e2343a3d6cc132511dd7c5ebe703deb534d34bd9a36e4fd7afcf633744fbd5e78f303b381d5c7abf"}, @NFTA_DATA_VERDICT={0x3c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFTA_DATA_VALUE={0x6f, 0x1, "42779fbde9798a8b571d16aea225d6c11734ea6fb92d4a6f3c2d74d2ae14ff26d8b479fd006d2d626194200bb11289813f711b11d5587e50b71b6878f52a85cc52ac414c5a69b214d89600287aa340593175ebea57f454784d5d96402209985573060cd5da40b895a48af8"}, @NFTA_DATA_VALUE={0x20, 0x1, "be900b3d36574645f2d759f874492032ba75ecbdeb9a3b3c0b456d87"}, @NFTA_DATA_VERDICT={0x10, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFTA_DATA_VALUE={0x83, 0x1, "a8ba80207df1b026695e575b28f20b7515f4110568f3cd0c346da84ac9bc675f18ae6950afcb53ab48673b59bc2a10709892a611ae9a7b5ab01e745f1a7ac8f6b73703a90841b90c3477b2d61bfc585f4235c90715d4bbc4e5bc840ecb2ef167c14f94148509234770b9b460a0868ad82c668493d500edf9a574d13a04244d"}, @NFTA_DATA_VALUE={0x7a, 0x1, "00bf8aa62a0550f5035168e725781a5546c33f66d2119bd743d73fa5e1b9f547464697f1823ee8ac91a417bb4d5a4609fde46ab2f51ae5887aa51bc53e496e065c9a930ad8d384e4593d7942d1dcc30e0a4f7a037480186b796db33f97184704c95f40afabfe2993e40b50d0668f654ebe493ae9b72d"}, @NFTA_DATA_VERDICT={0x58, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}]}]}, {0x468, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x1b4, 0x1, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x38, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}, @NFTA_DATA_VALUE={0x44, 0x1, "e3e841674245a04490dcbfa734a625080feedc6928db5dfd67d891b425d4a629876e2cb2e20a9831b1deff438171724921f479096f0056345ad9c660a5bebed7"}, @NFTA_DATA_VALUE={0x82, 0x1, "5419f0268fd1e6c7e75df53e4d37fb371ccaf287557d587615c8de791500f9b608527869a9913c0b0bbca766d51539772a803dc1d68a63159fb7bf006319920cda36d69cb83ca79a19b2edfe8fc3bb36bbe150cfea5b1c6ff1b842d4d44bdce84268e43f8bcb19ce3ca2643c7f8554c07a0481001dd8de910d19d34f6c2e"}, @NFTA_DATA_VALUE={0x28, 0x1, "15d09196a7d7585bdedac4aa054b95a5648490dd2b883fa9c98b2f2fdb95c81b7babc477"}, @NFTA_DATA_VERDICT={0x28, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}]}, @NFTA_DATA_VERDICT={0x60, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}]}, @NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_SET_ELEM_USERDATA={0x9c, 0x6, 0x1, 0x0, "b6d061f7b61dd0a9ad903afde80fab3724958430e3c2398b05cca807e3183d6152801f993df1b8b603fc901659b8a51a618439c00299d668483f16e554ebfec173ba9c994721a23ed1bcc5d179ff13be809ead6b8a638fdbd1908e8516ed1b02ba7b047ad7ea1f54cb860e2ef070aa8e7bc5ad8d28740c2623564a308222418f63c250d28000bfbc28f01c4d49e41147dd7a03595b0ac0fc"}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x9e}, @NFTA_SET_ELEM_FLAGS={0x8}, @NFTA_SET_ELEM_USERDATA={0xb5, 0x6, 0x1, 0x0, "3d6aa419fb443870174af5892bed0967ce5fb701315862df817f2238adf2396be21798d77fb62c22d8e30f6a66f51467af8a26a57cc953ae3de9682fc4e02aecfcae076d2f5e3aaacbe3c68b147be9038ea160ea3aa5f35109bb72e6ed5c861f705c8f20ce04772ab91a94d11e678eff5014bb1302c98920e9fa0af63edf4f5a2c440875179667cd7fe175a517526fad6dd9ede3513fa5e225f0a5ebfa8d622942b17b7324ab3741f590bd28eb0b0bedf4"}, @NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_USERDATA={0x75, 0x6, 0x1, 0x0, "4befd6f35a110c0e5ae279cd58ecf660043959414248c88892cab6d7e2bc94e5c36dab5f92ccd6fb40887cfb14df8eb99f1829eda067d44c100a78c287e12a5c5b5c3b1fff6a90fb683f384ffdadf9058520c5c0bbe8df4c72e511b303d5b6879231f10c0549d492ee3074223cb08b2657"}, @NFTA_SET_ELEM_USERDATA={0x9b, 0x6, 0x1, 0x0, "61aec8d49660bfea65de781f559c3bc685a3a63c10fa36e8d7841c9aa0b50bf579a83e4285284507ecda725982abb0cfaf820850a8c8a720966264af7418f5823cf909c66fe47fd0897579d59e4aadbcc083489a27d98df24adf4195ae698972c53fb01b9d8e9de5ca71e2293ff054b4a8a798539e19faa4a83290f454e5d22f8ea6389642308378861e27e1bd037536c6723787347658"}, @NFTA_SET_ELEM_EXPR={0x20, 0x7, 0x0, 0x1, @synproxy={{0xd}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_SYNPROXY_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}]}}}]}]}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x5c, 0x16, 0xa, 0xd6ab92b8e662a0f2, 0x0, 0x0, {0x0, 0x0, 0x1}, [@NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x1}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x2}]}, @NFT_MSG_NEWOBJ={0x20, 0x12, 0xa, 0x201, 0x0, 0x0, {0x7, 0x0, 0x6}, @NFT_OBJECT_CT_TIMEOUT=@NFTA_OBJ_NAME={0x9, 0x2, 'syz1\x00'}}, @NFT_MSG_DELCHAIN={0x1c, 0x5, 0xa, 0x201, 0x0, 0x0, {0x0, 0x0, 0x2}, [@NFTA_CHAIN_POLICY={0x8}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0xc28}, 0x1, 0x0, 0x0, 0xc804}, 0x20)
r11 = signalfd4(r7, &(0x7f0000005180)={[0x9]}, 0x8, 0x80000)
sendmsg$RDMA_NLDEV_CMD_SET(r10, &(0x7f0000005280)={&(0x7f00000051c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000005240)={&(0x7f0000005200)={0x18, 0x1402, 0x2, 0x70bd2b, 0x25dfdbff, "", [@RDMA_NLDEV_NET_NS_FD={0x8, 0x44, r6}]}, 0x18}, 0x1, 0x0, 0x0, 0x20040000}, 0x4000040)
r12 = mmap$IORING_OFF_SQES(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000001, 0x810, r4, 0x10000000)
syz_io_uring_submit(0x0, r12, &(0x7f0000005340)=@IORING_OP_SEND={0x1a, 0x0, 0x0, r9, 0x0, &(0x7f00000052c0)="7fd84b81a32608d0d4d977e0ecefd81aaf67d1f433cceb0ed74d5b740572c47d9f297a795d342865f8d3caa7a9a0a5d65f2e85e1bd221385ddb97112dc13ff22b80dc3f0acf46e269a52e9fbc794843cea0472e69058981d60da1a2efa2a381f0d961a037b7fb1f346b13739a5", 0x6d, 0x4000081})
r13 = openat$cgroup_procs(r5, &(0x7f0000005380)='cgroup.threads\x00', 0x2, 0x0)
r14 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000053c0), 0x4)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000005500)={@fallback=r13, 0x20, 0x1, 0x80000001, &(0x7f0000005400)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x7, 0x0, &(0x7f0000005440)=[0x0, 0x0, 0x0], &(0x7f0000005480)=[0x0, 0x0], &(0x7f00000054c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], <r15=>0x0}, 0x40)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000005540)={@cgroup=r3, r9, 0x12, 0x18, r14, @void, @value=r4, @void, @void, r15}, 0x20)
sendmsg$nl_route_sched(r7, &(0x7f0000005640)={&(0x7f0000005580)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000005600)={&(0x7f00000055c0)=@gettclass={0x24, 0x2a, 0x400, 0x70bd2d, 0x5, {0x0, 0x0, 0x0, 0x0, {0x1, 0x4}, {0xffff, 0x4}, {0x7, 0x2}}, ["", ""]}, 0x24}}, 0x24000080)
openat$cgroup_ro(r3, &(0x7f0000005680)='pids.current\x00', 0x0, 0x0)
ioctl$FIDEDUPERANGE(r6, 0xc0189436, &(0x7f0000005700)={0xe3, 0x9, 0x4, 0x0, 0x0, [{{r3}, 0x5}, {{}, 0x2}, {{r11}, 0x4}, {{r13}, 0x1}]})
syz_open_dev$hidraw(&(0x7f00000057c0), 0x9, 0x0)
openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000005880), 0x2, 0x0)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000058c0), 0x180, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffff9c, 0x40106614, &(0x7f0000005900))
setsockopt$nfc_llcp_NFC_LLCP_RW(r6, 0x118, 0x0, &(0x7f0000005940), 0x4)

840.892683ms ago: executing program 5 (id=1972):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, 0x0, 0x0)

840.189403ms ago: executing program 5 (id=1973):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x2, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000240)={&(0x7f0000000040)=@ipmr_newroute={0x2c, 0x18, 0x200, 0x70bd2d, 0x25dfdbfd, {0x80, 0x14, 0x14, 0xff, 0x0, 0x3, 0xfd, 0x1, 0xc00}, [@RTA_MARK={0x8}, @RTA_DPORT={0x6, 0x1d, 0x4e21}]}, 0x2c}, 0x1, 0x0, 0x0, 0x80}, 0xc080)
r2 = bpf$TOKEN_CREATE(0x24, &(0x7f00000002c0)={0x0, r1}, 0x8)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000008c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0xdb41e0696be522a3, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @value=r2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$inet6(0xa, 0x80003, 0xff)
setsockopt$inet6_int(r5, 0x29, 0x16, &(0x7f0000fcb000)=0x2, 0x4)
close_range(r4, 0xffffffffffffffff, 0x0)

839.657913ms ago: executing program 5 (id=1974):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, 0x0}, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="14000000100001000b000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000044000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f08000340000000045c0000000c0a01020000000000000000010000000900020073797a32000000000900010073797a3000000000300003802c00008028000180230001"], 0xe8}}, 0x0)

819.392303ms ago: executing program 3 (id=1975):
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0)
symlinkat(0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r0}, &(0x7f0000000000), &(0x7f00000003c0)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='hrtimer_init\x00'}, 0x18)
timerfd_create(0x9, 0x0)
sendmsg$BATADV_CMD_SET_MESH(0xffffffffffffffff, 0x0, 0x0)
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$TUNATTACHFILTER(0xffffffffffffffff, 0x401054d5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000001000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
syz_emit_ethernet(0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="bbbbbbbbbbbb626c0fbed4b200dd6cd6972000000b070000009dbf45ccdd1d478b8d38f441718000000000000000000000000001fe80"], 0x0)
r3 = syz_io_uring_setup(0x1114, &(0x7f0000000200)={0x0, 0x0, 0x800, 0x0, 0x1af}, &(0x7f00000001c0)=<r4=>0x0, &(0x7f0000000040)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f0000000380)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x7, 0x0, 0x0, 0x200, 0x0, 0x1})
io_uring_enter(r3, 0x47fa, 0x0, 0x0, 0x0, 0x0)

818.712793ms ago: executing program 5 (id=1976):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB='\n'], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
rt_sigsuspend(&(0x7f0000000080)={[0x5]}, 0x8)

817.573813ms ago: executing program 1 (id=1977):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x21885e, &(0x7f0000000440)={[{@grpquota}, {@min_batch_time={'min_batch_time', 0x3d, 0x2f}}, {@dioread_lock}]}, 0x5, 0x504, &(0x7f0000001480)="$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")
acct(&(0x7f0000000200)='./file1\x00')
r1 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
fsconfig$FSCONFIG_SET_FLAG(r1, 0x0, &(0x7f0000000080)='ro\x00', 0x0, 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r1, 0x7, 0x0, 0x0, 0x0)

769.555923ms ago: executing program 4 (id=1978):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, 0x0, 0x0, 0x10)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r0, 0x0, r2, 0x0, 0x400000, 0x100000000000000)

708.794632ms ago: executing program 1 (id=1979):
pipe(&(0x7f0000000240)={<r0=>0xffffffffffffffff})
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/profiling', 0x22042, 0x0)
splice(r0, 0x0, r1, 0x0, 0xbfd1, 0x0)

683.869792ms ago: executing program 3 (id=1980):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
open(0x0, 0x1c927e, 0xb4)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000140)=@raw={'raw\x00', 0x8, 0x3, 0x3f8, 0x1c0, 0x43, 0xa0, 0x0, 0x98, 0x360, 0x178, 0x178, 0x360, 0x178, 0x49, 0x0, {[{{@ip={@empty=0x5107, @multicast2, 0x0, 0x0, 'veth0_to_bond\x00', 'ip6erspan0\x00'}, 0x12a, 0x1a0, 0x1c0, 0x0, {0x0, 0x7a010000}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x8, 0x0, 'syz0\x00'}}, @common=@unspec=@connbytes={{0x38}}]}, @unspec=@TRACE={0x20}}, {{@uncond, 0x0, 0x168, 0x1a0, 0x0, {}, [@common=@unspec=@connbytes={{0x38}}, @common=@unspec=@conntrack2={{0xc0}, {{@ipv4=@multicast1, [], @ipv6=@loopback, [], @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}, [], @ipv4=@multicast1}}}]}, @common=@inet=@SET3={0x38}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x468)
r1 = getpid()
prlimit64(r1, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, 0x0, 0x0)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'lo\x00'})
r6 = socket(0x10, 0x2, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r6, 0x10e, 0xc, &(0x7f0000000080)={0x8}, 0x10)
write(r6, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f00"/28, 0x1c)
recvmmsg(r6, &(0x7f0000002ec0), 0x400000000000ec0, 0x2, &(0x7f00000001c0)={0x77359400})

155.164991ms ago: executing program 0 (id=1981):
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x1208002, &(0x7f0000000100)={[{@grpquota}, {@delalloc}, {@resuid}, {@debug}, {@dioread_nolock}, {}, {@nomblk_io_submit}, {@noauto_da_alloc}]}, 0x1, 0x5d8, &(0x7f00000005c0)="$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")
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f0000000300)='kfree\x00', r1}, 0x10)
setitimer(0x2, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x4)
sendmsg$nl_route_sched(r0, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000003800)=@newtaction={0x88c, 0x30, 0x12f, 0x0, 0x0, {}, [{0x878, 0x1, [@m_police={0x874, 0x1, 0x0, 0x0, {{0xb}, {0x848, 0x2, 0x0, 0x1, [[@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x9, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x3, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5381, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe]}], [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0xf7e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0xffffffff, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x90000, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x3]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x10000000, 0x0, 0x0, 0x0, {0x7, 0x0, 0x0, 0x0, 0x0, 0x7}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x7}}}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa}}}]}]}, 0x88c}}, 0x0)
link(&(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='./file1\x00')
ioctl$TIOCEXCL(0xffffffffffffffff, 0x540c)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000008b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001840)=@newtaction={0xe68, 0x30, 0x25, 0x0, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{}, 0x3}, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x40}, {}, {}, {}, {0x0, 0x2}, {}, {0x129}, {0x80000000, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0xf}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x1ff}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0xffffffff}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xcc1}], [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {0x1}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800019f00000000000000000a000000000000000800010001000000040004"], 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmmsg(r2, &(0x7f0000000000), 0x4000000000001f2, 0x0)

82.3825ms ago: executing program 0 (id=1982):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r2}, 0x10)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="640000000206050000000000000000000000000015000300686173683a69702c706f72742c6e6574000000000900020073797a30000000000500040000400000050005000a000000050001000600000014000780080006400000000008001340"], 0x64}}, 0x24002800)
sendmsg$IPSET_CMD_DESTROY(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000030601020000000000000000000000000500010007"], 0x1c}}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x503}, [@ringbuf_output={{0x18, 0x2, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x43}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x56, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r4}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
unshare(0x62040200)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000000900010073797a300000000048000000030a01010000000000004000010000000900010073797a30000000000900030073797a3100000000080007006e617400140004800800014000000000080002400000000014000000020a010800000000000000000000000014000000110001"], 0xa4}, 0x1, 0x0, 0x0, 0x40000080}, 0x0)

0s ago: executing program 0 (id=1983):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x40, &(0x7f00000008c0)={[{@nobh}, {@noauto_da_alloc}, {@jqfmt_vfsold}, {@data_err_ignore}, {@resuid}, {@dioread_nolock}, {@usrjquota}, {@discard}, {@jqfmt_vfsv1}]}, 0xfc, 0x564, &(0x7f0000002bc0)="$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")
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, 0x0)
setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000140)=0x1, 0x4)
bind$xdp(r0, &(0x7f0000000100), 0x10)
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
write$sndseq(0xffffffffffffffff, &(0x7f0000000180)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @quote}], 0x38)
r2 = syz_io_uring_setup(0x7dca, &(0x7f0000000340)={0x0, 0x0, 0x10100, 0x0, 0x36}, &(0x7f0000000500), &(0x7f0000000100)=<r3=>0x0)
syz_io_uring_submit(0x0, r3, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54})
io_uring_enter(r2, 0x184c, 0x0, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000006200)=[{{0x0, 0x0, 0x0}, 0x2}, {{0x0, 0x0, 0x0}, 0xc6d}], 0x2, 0x160, 0x0)
r4 = open(&(0x7f0000000200)='./bus\x00', 0x14507e, 0x0)
fallocate(r4, 0x0, 0x0, 0x1000f8)
sendfile(r4, r4, 0x0, 0x100000008)

kernel console output (not intermixed with test programs):

 timestamps until 2038-01-19 (0x7fffffff)
[   86.414855][ T7327] ext4 filesystem being mounted at /289/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   86.453627][ T7328] Process accounting resumed
[   86.464486][ T7344] loop0: detected capacity change from 0 to 128
[   86.474397][ T7328] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   86.494993][ T7347] loop5: detected capacity change from 0 to 1024
[   86.511391][ T7347] EXT4-fs: Ignoring removed nobh option
[   86.587731][ T7332] loop0: detected capacity change from 0 to 512
[   86.607351][ T7332] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   86.617664][ T7355] loop4: detected capacity change from 0 to 512
[   86.654647][ T7357] loop3: detected capacity change from 0 to 1024
[   86.661538][ T7357] EXT4-fs: Ignoring removed nobh option
[   86.667945][ T7332] EXT4-fs (loop0): 1 truncate cleaned up
[   86.686636][ T7355] ext4 filesystem being mounted at /259/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   86.744758][ T7355] Process accounting resumed
[   86.775156][ T7355] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   86.843425][ T7379] netlink: 'syz.0.1301': attribute type 13 has an invalid length.
[   86.884049][ T7379] gretap0: refused to change device tx_queue_len
[   86.891156][ T7379] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   86.943056][ T7390] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1306'.
[   86.960340][ T7395] loop5: detected capacity change from 0 to 256
[   87.036625][ T7403] loop3: detected capacity change from 0 to 1024
[   87.049336][ T7403] EXT4-fs: Ignoring removed nobh option
[   87.109538][ T7388] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   87.118240][ T7388] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   87.124327][ T7414] loop4: detected capacity change from 0 to 512
[   87.141585][ T7416] loop0: detected capacity change from 0 to 512
[   87.154732][ T7414] ext4 filesystem being mounted at /263/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   87.170998][ T7421] FAULT_INJECTION: forcing a failure.
[   87.170998][ T7421] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   87.184126][ T7421] CPU: 0 UID: 0 PID: 7421 Comm: syz.5.1317 Not tainted 6.13.0-syzkaller-05474-g113691ce9f32 #0
[   87.184150][ T7421] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   87.184162][ T7421] Call Trace:
[   87.184169][ T7421]  <TASK>
[   87.184248][ T7421]  dump_stack_lvl+0xf2/0x150
[   87.184277][ T7421]  dump_stack+0x15/0x1a
[   87.184299][ T7421]  should_fail_ex+0x223/0x230
[   87.184384][ T7421]  should_fail+0xb/0x10
[   87.184422][ T7421]  should_fail_usercopy+0x1a/0x20
[   87.184440][ T7421]  _copy_from_user+0x1c/0xa0
[   87.184465][ T7421]  do_ipt_set_ctl+0x423/0x8b0
[   87.184524][ T7421]  ? tcp_release_cb+0xfe/0x380
[   87.184551][ T7421]  nf_setsockopt+0x195/0x1b0
[   87.184586][ T7421]  ip_setsockopt+0xea/0x100
[   87.184608][ T7421]  tcp_setsockopt+0x93/0xb0
[   87.184710][ T7421]  sock_common_setsockopt+0x64/0x80
[   87.184731][ T7421]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   87.184751][ T7421]  smc_setsockopt+0x182/0x7a0
[   87.184787][ T7421]  ? __pfx_smc_setsockopt+0x10/0x10
[   87.184885][ T7421]  __sys_setsockopt+0x187/0x200
[   87.184918][ T7421]  __x64_sys_setsockopt+0x66/0x80
[   87.184944][ T7421]  x64_sys_call+0x282e/0x2dc0
[   87.185045][ T7421]  do_syscall_64+0xc9/0x1c0
[   87.185079][ T7421]  ? clear_bhb_loop+0x55/0xb0
[   87.185106][ T7421]  ? clear_bhb_loop+0x55/0xb0
[   87.185139][ T7421]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.185171][ T7421] RIP: 0033:0x7f5cdf2ecd29
[   87.185224][ T7421] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.185308][ T7421] RSP: 002b:00007f5cdd957038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   87.185326][ T7421] RAX: ffffffffffffffda RBX: 00007f5cdf505fa0 RCX: 00007f5cdf2ecd29
[   87.185338][ T7421] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000004
[   87.185349][ T7421] RBP: 00007f5cdd957090 R08: 0000000000000248 R09: 0000000000000000
[   87.185361][ T7421] R10: 0000000020000580 R11: 0000000000000246 R12: 0000000000000001
[   87.185372][ T7421] R13: 0000000000000000 R14: 00007f5cdf505fa0 R15: 00007fffb108ccb8
[   87.185399][ T7421]  </TASK>
[   87.205605][ T7414] Process accounting resumed
[   87.248049][ T7416] ext4 filesystem being mounted at /286/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   87.419131][ T7414] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   87.530793][ T7436] xt_hashlimit: max too large, truncated to 1048576
[   87.537352][ T7437] loop5: detected capacity change from 0 to 1024
[   87.544730][ T7436] Cannot find set identified by id 0 to match
[   87.553552][ T7437] EXT4-fs (loop5): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   87.605398][ T7437] EXT4-fs error (device loop5): ext4_expand_extra_isize_ea:2793: inode #15: comm syz.5.1324: corrupted in-inode xattr: bad magic number in in-inode xattr
[   87.635306][ T7441] FAULT_INJECTION: forcing a failure.
[   87.635306][ T7441] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   87.648697][ T7441] CPU: 1 UID: 0 PID: 7441 Comm: syz.0.1326 Not tainted 6.13.0-syzkaller-05474-g113691ce9f32 #0
[   87.648719][ T7441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   87.648732][ T7441] Call Trace:
[   87.648738][ T7441]  <TASK>
[   87.648745][ T7441]  dump_stack_lvl+0xf2/0x150
[   87.648776][ T7441]  dump_stack+0x15/0x1a
[   87.648868][ T7441]  should_fail_ex+0x223/0x230
[   87.648905][ T7441]  should_fail_alloc_page+0xfd/0x110
[   87.648933][ T7441]  __alloc_pages_noprof+0x109/0x340
[   87.648975][ T7441]  alloc_pages_mpol_noprof+0xb8/0x260
[   87.649011][ T7441]  alloc_migration_target_by_mpol+0x121/0x230
[   87.649041][ T7441]  migrate_pages_batch+0x333/0x1910
[   87.649078][ T7441]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[   87.649175][ T7441]  migrate_pages+0xff1/0x1820
[   87.649208][ T7441]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[   87.649278][ T7441]  ? mas_next_slot+0xb87/0xbe0
[   87.649312][ T7441]  __se_sys_mbind+0xfd1/0x11c0
[   87.649397][ T7441]  __x64_sys_mbind+0x78/0x90
[   87.649432][ T7441]  x64_sys_call+0x2662/0x2dc0
[   87.649456][ T7441]  do_syscall_64+0xc9/0x1c0
[   87.649479][ T7441]  ? clear_bhb_loop+0x55/0xb0
[   87.649572][ T7441]  ? clear_bhb_loop+0x55/0xb0
[   87.649596][ T7441]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.649621][ T7441] RIP: 0033:0x7f17993ccd29
[   87.649660][ T7441] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.649682][ T7441] RSP: 002b:00007f1797a31038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[   87.649701][ T7441] RAX: ffffffffffffffda RBX: 00007f17995e5fa0 RCX: 00007f17993ccd29
[   87.649713][ T7441] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000000020001000
[   87.649724][ T7441] RBP: 00007f1797a31090 R08: 0000000000000000 R09: 0000000000000002
[   87.649735][ T7441] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   87.649761][ T7441] R13: 0000000000000000 R14: 00007f17995e5fa0 R15: 00007ffd18d4f278
[   87.649781][ T7441]  </TASK>
[   87.900917][ T7456] loop5: detected capacity change from 0 to 1024
[   87.901710][ T7457] loop4: detected capacity change from 0 to 256
[   87.911408][ T7456] EXT4-fs: Ignoring removed nobh option
[   87.916970][ T7459] loop1: detected capacity change from 0 to 512
[   87.936433][ T7457] msdos: Unknown parameter 'ÿÿ0xffffffffffffffff'
[   87.961265][ T7459] ext4 filesystem being mounted at /296/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   88.127955][ T7466] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1335'.
[   88.152605][ T7466] loop4: detected capacity change from 0 to 512
[   88.170756][ T7466] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   88.203330][ T7466] EXT4-fs (loop4): 1 truncate cleaned up
[   89.000906][ T7480] FAULT_INJECTION: forcing a failure.
[   89.000906][ T7480] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   89.014217][ T7480] CPU: 1 UID: 0 PID: 7480 Comm: syz.1.1338 Not tainted 6.13.0-syzkaller-05474-g113691ce9f32 #0
[   89.014246][ T7480] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   89.014261][ T7480] Call Trace:
[   89.014333][ T7480]  <TASK>
[   89.014341][ T7480]  dump_stack_lvl+0xf2/0x150
[   89.014368][ T7480]  dump_stack+0x15/0x1a
[   89.014391][ T7480]  should_fail_ex+0x223/0x230
[   89.014431][ T7480]  should_fail+0xb/0x10
[   89.014480][ T7480]  should_fail_usercopy+0x1a/0x20
[   89.014499][ T7480]  _copy_from_user+0x1c/0xa0
[   89.014520][ T7480]  copy_msghdr_from_user+0x54/0x2a0
[   89.014564][ T7480]  do_recvmmsg+0x256/0x6d0
[   89.014620][ T7480]  __x64_sys_recvmmsg+0xe2/0x170
[   89.014650][ T7480]  x64_sys_call+0x2a9a/0x2dc0
[   89.014682][ T7480]  do_syscall_64+0xc9/0x1c0
[   89.014770][ T7480]  ? clear_bhb_loop+0x55/0xb0
[   89.014798][ T7480]  ? clear_bhb_loop+0x55/0xb0
[   89.014829][ T7480]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.014861][ T7480] RIP: 0033:0x7fd3f1cccd29
[   89.014878][ T7480] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   89.014956][ T7480] RSP: 002b:00007fd3f0337038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[   89.014978][ T7480] RAX: ffffffffffffffda RBX: 00007fd3f1ee5fa0 RCX: 00007fd3f1cccd29
[   89.015001][ T7480] RDX: 0000000000000700 RSI: 0000000020001140 RDI: 0000000000000004
[   89.015016][ T7480] RBP: 00007fd3f0337090 R08: 0000000000000000 R09: 0000000000000000
[   89.015031][ T7480] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[   89.015045][ T7480] R13: 0000000000000000 R14: 00007fd3f1ee5fa0 R15: 00007fffe3a01fe8
[   89.015121][ T7480]  </TASK>
[   89.308639][ T7483] loop0: detected capacity change from 0 to 512
[   89.381231][ T7487] loop4: detected capacity change from 0 to 4096
[   89.401782][ T7484] ip6gre1: entered allmulticast mode
[   89.425468][ T7496] loop3: detected capacity change from 0 to 512
[   89.451602][ T7498] loop5: detected capacity change from 0 to 512
[   89.459574][ T7499] ref_tracker: memory allocation failure, unreliable refcount tracker.
[   89.488472][ T7483] ext4 filesystem being mounted at /290/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.533066][ T7498] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2240: inode #15: comm syz.5.1345: corrupted in-inode xattr: invalid ea_ino
[   89.548154][ T7496] ext4 filesystem being mounted at /233/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.557613][ T7483] Process accounting resumed
[   89.576277][ T7483] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   89.628780][ T7498] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.1345: couldn't read orphan inode 15 (err -117)
[   89.643006][ T7496] Process accounting resumed
[   89.656368][ T7496] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   89.706504][ T7507] loop0: detected capacity change from 0 to 512
[   89.785432][ T7509] SELinux:  policydb version 536871104 does not match my version range 15-34
[   89.804879][ T7515] loop5: detected capacity change from 0 to 512
[   89.814513][ T7509] SELinux: failed to load policy
[   89.820272][ T7507] ext4 filesystem being mounted at /291/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.853594][ T7515] ext4 filesystem being mounted at /18/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.874443][ T7519] loop3: detected capacity change from 0 to 512
[   89.924246][ T7523] loop0: detected capacity change from 0 to 512
[   89.926700][ T7519] ext4 filesystem being mounted at /235/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.953943][ T7519] Process accounting resumed
[   89.970994][ T7519] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   90.038549][ T7523] ext4 filesystem being mounted at /292/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   90.142711][ T7532] x_tables: ip6_tables: sctp match: only valid for protocol 132
[   90.281642][ T7536] loop5: detected capacity change from 0 to 512
[   90.330602][ T7536] EXT4-fs (loop5): too many log groups per flexible block group
[   90.338367][ T7536] EXT4-fs (loop5): failed to initialize mballoc (-12)
[   90.348268][ T7540] loop4: detected capacity change from 0 to 512
[   90.348319][ T7536] EXT4-fs (loop5): mount failed
[   90.397787][ T7540] ext4 filesystem being mounted at /272/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   90.435660][ T7540] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   90.509603][ T7548] loop0: detected capacity change from 0 to 1024
[   90.518851][ T7548] EXT4-fs: Ignoring removed nomblk_io_submit option
[   90.539600][ T7548] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   90.552829][ T7555] loop1: detected capacity change from 0 to 1024
[   90.554383][ T7548] System zones: 0-1, 3-36
[   90.559485][ T7555] EXT4-fs: Ignoring removed nomblk_io_submit option
[   90.572418][ T7555] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   90.580743][ T7555] System zones: 0-1, 3-36
[   90.586396][ T7555] FAULT_INJECTION: forcing a failure.
[   90.586396][ T7555] name failslab, interval 1, probability 0, space 0, times 0
[   90.599149][ T7555] CPU: 1 UID: 0 PID: 7555 Comm: syz.1.1363 Not tainted 6.13.0-syzkaller-05474-g113691ce9f32 #0
[   90.599220][ T7555] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   90.599236][ T7555] Call Trace:
[   90.599243][ T7555]  <TASK>
[   90.599251][ T7555]  dump_stack_lvl+0xf2/0x150
[   90.599283][ T7555]  dump_stack+0x15/0x1a
[   90.599304][ T7555]  should_fail_ex+0x223/0x230
[   90.599382][ T7555]  should_failslab+0x8f/0xb0
[   90.599412][ T7555]  kmem_cache_alloc_noprof+0x52/0x320
[   90.599452][ T7555]  ? getname_flags+0x81/0x3b0
[   90.599561][ T7555]  getname_flags+0x81/0x3b0
[   90.599596][ T7555]  user_path_at+0x26/0x120
[   90.599637][ T7555]  do_fchownat+0x92/0x1a0
[   90.599781][ T7555]  __x64_sys_chown+0x47/0x60
[   90.599810][ T7555]  x64_sys_call+0x7e0/0x2dc0
[   90.599837][ T7555]  do_syscall_64+0xc9/0x1c0
[   90.599865][ T7555]  ? clear_bhb_loop+0x55/0xb0
[   90.599936][ T7555]  ? clear_bhb_loop+0x55/0xb0
[   90.599964][ T7555]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.599990][ T7555] RIP: 0033:0x7fd3f1cccd29
[   90.600004][ T7555] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.600041][ T7555] RSP: 002b:00007fd3f0337038 EFLAGS: 00000246 ORIG_RAX: 000000000000005c
[   90.600063][ T7555] RAX: ffffffffffffffda RBX: 00007fd3f1ee5fa0 RCX: 00007fd3f1cccd29
[   90.600078][ T7555] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000140
[   90.600089][ T7555] RBP: 00007fd3f0337090 R08: 0000000000000000 R09: 0000000000000000
[   90.600102][ T7555] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   90.600115][ T7555] R13: 0000000000000000 R14: 00007fd3f1ee5fa0 R15: 00007fffe3a01fe8
[   90.600182][ T7555]  </TASK>
[   90.812074][ T7559] netlink: 'syz.0.1364': attribute type 13 has an invalid length.
[   90.821820][ T7559] gretap0: refused to change device tx_queue_len
[   90.828681][ T7559] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   90.905998][   T29] kauditd_printk_skb: 110 callbacks suppressed
[   90.906016][   T29] audit: type=1326 audit(1737756638.332:2731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7567 comm="syz.3.1368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf5da3cd29 code=0x7ffc0000
[   90.946220][   T29] audit: type=1326 audit(1737756638.362:2732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7567 comm="syz.3.1368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf5da3cd29 code=0x7ffc0000
[   90.996483][ T7577] loop0: detected capacity change from 0 to 512
[   91.019747][ T7577] ext4 filesystem being mounted at /298/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   91.052215][ T7583] loop3: detected capacity change from 0 to 1024
[   91.067196][ T7583] EXT4-fs: Ignoring removed nobh option
[   91.441431][   T29] audit: type=1400 audit(1737756638.862:2733): avc:  denied  { mounton } for  pid=7560 comm="syz.1.1365" path="/304/bus" dev="tmpfs" ino=1652 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   91.515185][ T7576] Process accounting resumed
[   91.546560][ T7592] FAULT_INJECTION: forcing a failure.
[   91.546560][ T7592] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   91.559734][ T7592] CPU: 0 UID: 0 PID: 7592 Comm: syz.4.1374 Not tainted 6.13.0-syzkaller-05474-g113691ce9f32 #0
[   91.559778][ T7592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   91.559871][ T7592] Call Trace:
[   91.559879][ T7592]  <TASK>
[   91.559889][ T7592]  dump_stack_lvl+0xf2/0x150
[   91.559922][ T7592]  dump_stack+0x15/0x1a
[   91.559949][ T7592]  should_fail_ex+0x223/0x230
[   91.560060][ T7592]  should_fail+0xb/0x10
[   91.560118][ T7592]  should_fail_usercopy+0x1a/0x20
[   91.560142][ T7592]  _copy_from_user+0x1c/0xa0
[   91.560164][ T7592]  core_sys_select+0x23c/0x530
[   91.560199][ T7592]  ? set_user_sigmask+0x83/0x190
[   91.560251][ T7592]  __se_sys_pselect6+0x21b/0x280
[   91.560284][ T7592]  __x64_sys_pselect6+0x78/0x90
[   91.560308][ T7592]  x64_sys_call+0x2ac2/0x2dc0
[   91.560431][ T7592]  do_syscall_64+0xc9/0x1c0
[   91.560459][ T7592]  ? clear_bhb_loop+0x55/0xb0
[   91.560520][ T7592]  ? clear_bhb_loop+0x55/0xb0
[   91.560597][ T7592]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.560627][ T7592] RIP: 0033:0x7f62c75ccd29
[   91.560707][ T7592] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   91.560754][ T7592] RSP: 002b:00007f62c5c37038 EFLAGS: 00000246 ORIG_RAX: 000000000000010e
[   91.560776][ T7592] RAX: ffffffffffffffda RBX: 00007f62c77e5fa0 RCX: 00007f62c75ccd29
[   91.560791][ T7592] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 0000000000000040
[   91.560805][ T7592] RBP: 00007f62c5c37090 R08: 0000000000000000 R09: 0000000000000000
[   91.560827][ T7592] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   91.560866][ T7592] R13: 0000000000000000 R14: 00007f62c77e5fa0 R15: 00007ffed1031da8
[   91.560884][ T7592]  </TASK>
[   91.783000][ T7595] netlink: 'syz.4.1376': attribute type 13 has an invalid length.
[   91.796828][ T7595] gretap0: refused to change device tx_queue_len
[   91.804064][ T7595] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   91.887990][ T7600] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   91.917612][ T7600] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   91.964767][ T7603] loop5: detected capacity change from 0 to 512
[   92.015002][ T7603] ext4 filesystem being mounted at /24/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   92.071485][ T7603] Process accounting resumed
[   92.103558][ T7603] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   92.127638][ T7613] loop0: detected capacity change from 0 to 512
[   92.182602][ T7615] loop4: detected capacity change from 0 to 1024
[   92.189520][ T7615] EXT4-fs: Ignoring removed nomblk_io_submit option
[   92.205006][ T7615] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   92.225802][   T29] audit: type=1326 audit(1737756639.652:2734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7619 comm="syz.3.1385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf5da3cd29 code=0x7ffc0000
[   92.243742][ T7615] System zones: 0-1, 3-36
[   92.257409][ T7622] SELinux:  policydb table sizes (0,0) do not match mine (6,7)
[   92.266835][   T29] audit: type=1326 audit(1737756639.682:2735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7619 comm="syz.3.1385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7fcf5da3cd29 code=0x7ffc0000
[   92.271444][ T7613] ext4 filesystem being mounted at /300/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   92.290340][   T29] audit: type=1326 audit(1737756639.682:2736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7619 comm="syz.3.1385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf5da3cd29 code=0x7ffc0000
[   92.290372][   T29] audit: type=1326 audit(1737756639.682:2737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7619 comm="syz.3.1385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7fcf5da3cd29 code=0x7ffc0000
[   92.290505][ T7622] SELinux: failed to load policy
[   92.308549][ T7615] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.1383: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[   92.395299][   T29] audit: type=1326 audit(1737756639.822:2738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7619 comm="syz.3.1385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf5da3cd29 code=0x7ffc0000
[   92.419151][   T29] audit: type=1326 audit(1737756639.822:2739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7619 comm="syz.3.1385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf5da3cd29 code=0x7ffc0000
[   92.457202][ T7612] Process accounting resumed
[   92.481439][ T7629] x_tables: ip6_tables: sctp match: only valid for protocol 132
[   92.495300][ T7631] loop4: detected capacity change from 0 to 512
[   92.520907][ T7633] loop0: detected capacity change from 0 to 512
[   92.545512][ T7631] ext4 filesystem being mounted at /280/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   92.570843][ T7631] Process accounting resumed
[   92.600435][ T7633] ext4 filesystem being mounted at /301/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   92.603163][ T7631] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   92.629260][   T29] audit: type=1326 audit(1737756640.052:2740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7625 comm="syz.5.1386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cdf2ecd29 code=0x7ffc0000
[   92.702076][ T7653] loop0: detected capacity change from 0 to 512
[   92.705028][ T7651] loop5: detected capacity change from 0 to 512
[   92.733668][ T7653] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.1396: corrupted in-inode xattr: invalid ea_ino
[   92.750286][ T7651] ext4 filesystem being mounted at /27/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   92.762611][ T7653] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.1396: couldn't read orphan inode 15 (err -117)
[   92.767278][ T7661] loop1: detected capacity change from 0 to 1024
[   92.775576][ T7651] Process accounting resumed
[   92.782625][ T7661] EXT4-fs: Ignoring removed nobh option
[   92.792278][ T7651] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   92.835141][ T7666] IPVS: Unknown mcast interface: pimreg0
[   92.905479][ T7668] x_tables: ip6_tables: sctp match: only valid for protocol 132
[   92.949621][ T7673] loop1: detected capacity change from 0 to 512
[   92.963476][ T7675] loop0: detected capacity change from 0 to 1024
[   92.974303][ T7675] EXT4-fs: Ignoring removed nobh option
[   92.993885][ T7673] ext4 filesystem being mounted at /311/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   92.997428][ T7681] FAULT_INJECTION: forcing a failure.
[   92.997428][ T7681] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   93.017649][ T7681] CPU: 0 UID: 0 PID: 7681 Comm: syz.5.1405 Not tainted 6.13.0-syzkaller-05474-g113691ce9f32 #0
[   93.017677][ T7681] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   93.017689][ T7681] Call Trace:
[   93.017695][ T7681]  <TASK>
[   93.017704][ T7681]  dump_stack_lvl+0xf2/0x150
[   93.017738][ T7681]  dump_stack+0x15/0x1a
[   93.017789][ T7681]  should_fail_ex+0x223/0x230
[   93.017820][ T7681]  should_fail+0xb/0x10
[   93.017845][ T7681]  should_fail_usercopy+0x1a/0x20
[   93.017861][ T7681]  _copy_from_user+0x1c/0xa0
[   93.017879][ T7681]  get_user_ifreq+0x8c/0x160
[   93.017959][ T7681]  sock_do_ioctl+0xc6/0x260
[   93.018009][ T7681]  sock_ioctl+0x40f/0x600
[   93.018047][ T7681]  ? __pfx_sock_ioctl+0x10/0x10
[   93.018110][ T7681]  __se_sys_ioctl+0xc9/0x140
[   93.018134][ T7681]  __x64_sys_ioctl+0x43/0x50
[   93.018157][ T7681]  x64_sys_call+0x1690/0x2dc0
[   93.018199][ T7681]  do_syscall_64+0xc9/0x1c0
[   93.018222][ T7681]  ? clear_bhb_loop+0x55/0xb0
[   93.018254][ T7681]  ? clear_bhb_loop+0x55/0xb0
[   93.018306][ T7681]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.018329][ T7681] RIP: 0033:0x7f5cdf2ecd29
[   93.018346][ T7681] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   93.018369][ T7681] RSP: 002b:00007f5cdd957038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   93.018466][ T7681] RAX: ffffffffffffffda RBX: 00007f5cdf505fa0 RCX: 00007f5cdf2ecd29
[   93.018482][ T7681] RDX: 0000000020000000 RSI: 0000000000008946 RDI: 0000000000000003
[   93.018497][ T7681] RBP: 00007f5cdd957090 R08: 0000000000000000 R09: 0000000000000000
[   93.018509][ T7681] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   93.018520][ T7681] R13: 0000000000000000 R14: 00007f5cdf505fa0 R15: 00007fffb108ccb8
[   93.018628][ T7681]  </TASK>
[   93.019099][ T7673] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[   93.225105][ T7673] Process accounting resumed
[   93.281190][ T7690] loop0: detected capacity change from 0 to 512
[   93.304920][ T7693] loop1: detected capacity change from 0 to 512
[   93.314330][ T7690] ext4 filesystem being mounted at /305/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.328681][ T7693] ext4 filesystem being mounted at /312/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.349386][ T7700] loop5: detected capacity change from 0 to 512
[   93.350264][ T7690] Process accounting resumed
[   93.367375][ T7690] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   93.396913][ T7700] ext4 filesystem being mounted at /32/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.401106][ T7704] loop1: detected capacity change from 0 to 512
[   93.413110][ T7700] Process accounting resumed
[   93.419838][ T7704] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.1411: corrupted in-inode xattr: invalid ea_ino
[   93.433692][ T7704] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.1411: couldn't read orphan inode 15 (err -117)
[   93.457848][ T7707] loop0: detected capacity change from 0 to 1024
[   93.464641][ T7707] EXT4-fs: Ignoring removed nobh option
[   93.470902][ T7700] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   93.554749][ T7716] x_tables: ip6_tables: sctp match: only valid for protocol 132
[   93.576587][ T7718] loop1: detected capacity change from 0 to 512
[   93.580319][ T7720] loop5: detected capacity change from 0 to 2048
[   93.610299][ T7718] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   93.627469][ T7718] EXT4-fs (loop1): 1 truncate cleaned up
[   93.660174][ T7720] Alternate GPT is invalid, using primary GPT.
[   93.666558][ T7720]  loop5: p2 p3 p7
[   93.666987][ T7727] loop0: detected capacity change from 0 to 512
[   93.698901][ T7729] loop3: detected capacity change from 0 to 512
[   93.705629][ T2999] Alternate GPT is invalid, using primary GPT.
[   93.712108][ T2999]  loop5: p2 p3 p7
[   93.718709][ T7727] ext4 filesystem being mounted at /308/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.720400][ T7731] loop1: detected capacity change from 0 to 512
[   93.747358][ T7727] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[   93.761378][ T7729] ext4 filesystem being mounted at /246/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.773728][ T7727] Process accounting resumed
[   93.780440][ T4323] udevd[4323]: inotify_add_watch(7, /dev/loop5p7, 10) failed: No such file or directory
[   93.784145][ T3284] udevd[3284]: inotify_add_watch(7, /dev/loop5p2, 10) failed: No such file or directory
[   93.791889][ T3374] udevd[3374]: inotify_add_watch(7, /dev/loop5p3, 10) failed: No such file or directory
[   93.809461][ T7731] ext4 filesystem being mounted at /315/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.823543][ T7729] Process accounting resumed
[   93.854042][ T7729] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   93.874053][ T3662] udevd[3662]: inotify_add_watch(7, /dev/loop5p2, 10) failed: No such file or directory
[   93.884878][ T3476] udevd[3476]: inotify_add_watch(7, /dev/loop5p3, 10) failed: No such file or directory
[   93.885144][ T3374] udevd[3374]: inotify_add_watch(7, /dev/loop5p7, 10) failed: No such file or directory
[   93.897045][ T7746] loop4: detected capacity change from 0 to 512
[   93.902045][ T7746] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.1424: corrupted in-inode xattr: invalid ea_ino
[   93.902257][ T7746] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.1424: couldn't read orphan inode 15 (err -117)
[   93.961356][ T7750] loop1: detected capacity change from 0 to 512
[   93.992393][ T7754] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   94.001264][ T7754] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   94.003218][ T7750] ext4 filesystem being mounted at /316/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.025052][ T7750] Process accounting resumed
[   94.037844][ T7750] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   94.052888][ T7758] x_tables: ip6_tables: sctp match: only valid for protocol 132
[   94.106192][ T7765] netlink: 'syz.5.1432': attribute type 13 has an invalid length.
[   94.121456][ T7765] gretap0: refused to change device tx_queue_len
[   94.122140][ T7767] netlink: 'syz.1.1431': attribute type 13 has an invalid length.
[   94.128820][ T7765] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   94.157872][ T7767] gretap0: refused to change device tx_queue_len
[   94.165045][ T7767] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   94.207651][ T7772] loop5: detected capacity change from 0 to 512
[   94.214141][ T7772] ext4: Unknown parameter 'subj_role'
[   94.250447][ T7774] loop1: detected capacity change from 0 to 512
[   94.284768][ T7774] ext4 filesystem being mounted at /318/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.300792][ T7782] loop0: detected capacity change from 0 to 512
[   94.317583][ T7782] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.1436: corrupted in-inode xattr: invalid ea_ino
[   94.332568][ T7774] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[   94.333323][ T7782] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.1436: couldn't read orphan inode 15 (err -117)
[   94.405157][ T7773] Process accounting resumed
[   94.425273][ T7787] loop0: detected capacity change from 0 to 1024
[   94.437693][ T7787] EXT4-fs: Ignoring removed orlov option
[   94.443451][ T7787] EXT4-fs: Ignoring removed bh option
[   94.448901][ T7787] EXT4-fs: Ignoring removed nomblk_io_submit option
[   94.450316][ T7789] loop5: detected capacity change from 0 to 512
[   94.480800][ T7786] delete_channel: no stack
[   94.496285][ T7795] loop1: detected capacity change from 0 to 512
[   94.544272][ T7795] ext4 filesystem being mounted at /320/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.556244][ T7795] Process accounting resumed
[   94.566037][ T7789] ext4 filesystem being mounted at /41/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.581139][ T7795] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   94.593852][ T7803] loop0: detected capacity change from 0 to 512
[   94.602739][ T7789] Process accounting resumed
[   94.612203][ T7789] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   94.641246][ T7803] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   94.649238][ T7803] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[   94.657814][ T7803] System zones: 0-1, 15-15, 18-18, 34-34
[   94.665750][ T7803] EXT4-fs (loop0): orphan cleanup on readonly fs
[   94.672341][ T7803] EXT4-fs warning (device loop0): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[   94.687003][ T7803] EXT4-fs (loop0): Cannot turn on quotas: error -22
[   94.694260][ T7803] EXT4-fs error (device loop0): ext4_orphan_get:1415: comm syz.0.1443: bad orphan inode 16
[   94.706452][ T7807] netlink: 'syz.1.1444': attribute type 13 has an invalid length.
[   94.736562][ T7807] gretap0: refused to change device tx_queue_len
[   94.744081][ T7803] ext4_test_bit(bit=15, block=18) = 1
[   94.749583][ T7803] is_bad_inode(inode)=0
[   94.753823][ T7803] NEXT_ORPHAN(inode)=0
[   94.757943][ T7803] max_ino=32
[   94.761187][ T7803] i_nlink=2
[   94.772975][ T7807] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   94.893560][ T7820] loop1: detected capacity change from 0 to 512
[   94.900871][ T7820] EXT4-fs: Ignoring removed i_version option
[   94.906916][ T7820] EXT4-fs: Ignoring removed mblk_io_submit option
[   94.914232][ T7820] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   94.925707][ T7820] EXT4-fs (loop1): 1 truncate cleaned up
[   95.079307][ T7832] loop1: detected capacity change from 0 to 512
[   95.101856][ T7832] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.1450: corrupted in-inode xattr: invalid ea_ino
[   95.115623][ T7832] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.1450: couldn't read orphan inode 15 (err -117)
[   95.246102][ T7843] loop1: detected capacity change from 0 to 512
[   95.260740][ T7843] ext4 filesystem being mounted at /327/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   95.451077][ T7854] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1458'.
[   95.529551][ T7862] loop1: detected capacity change from 0 to 1024
[   95.536335][ T7862] EXT4-fs: Ignoring removed nobh option
[   95.644325][ T7870] loop1: detected capacity change from 0 to 164
[   95.653679][ T7870] Unable to read rock-ridge attributes
[   95.665202][ T7870] Unable to read rock-ridge attributes
[   95.753076][ T7876] loop0: detected capacity change from 0 to 512
[   95.761145][ T7876] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   95.791081][ T7876] EXT4-fs error (device loop0): ext4_acquire_dquot:6927: comm syz.0.1467: Failed to acquire dquot type 0
[   95.802781][ T7876] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1145: updating to rev 1 because of new feature flag, running e2fsck is recommended
[   95.817714][ T7876] EXT4-fs (loop0): 1 truncate cleaned up
[   95.876641][ T7880] FAULT_INJECTION: forcing a failure.
[   95.876641][ T7880] name failslab, interval 1, probability 0, space 0, times 0
[   95.886689][ T7882] loop1: detected capacity change from 0 to 512
[   95.889341][ T7880] CPU: 0 UID: 0 PID: 7880 Comm: +}[@ Not tainted 6.13.0-syzkaller-05474-g113691ce9f32 #0
[   95.889370][ T7880] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   95.889386][ T7880] Call Trace:
[   95.889395][ T7880]  <TASK>
[   95.889413][ T7880]  dump_stack_lvl+0xf2/0x150
[   95.889450][ T7880]  dump_stack+0x15/0x1a
[   95.889505][ T7880]  should_fail_ex+0x223/0x230
[   95.889563][ T7880]  should_failslab+0x8f/0xb0
[   95.889592][ T7880]  kmem_cache_alloc_noprof+0x52/0x320
[   95.889624][ T7880]  ? security_file_alloc+0x32/0x100
[   95.889670][ T7880]  security_file_alloc+0x32/0x100
[   95.889808][ T7880]  init_file+0x5b/0x1a0
[   95.889844][ T7880]  alloc_empty_file+0xea/0x200
[   95.889939][ T7880]  path_openat+0x6a/0x1fb0
[   95.889962][ T7880]  ? audit_log_end+0x1d0/0x1e0
[   95.890019][ T7880]  ? __rcu_read_unlock+0x4e/0x70
[   95.890099][ T7880]  ? __perf_event_task_sched_in+0x9ac/0xa10
[   95.890131][ T7880]  ? __perf_event_task_sched_out+0x138/0x1010
[   95.890159][ T7880]  ? __dequeue_entity+0x22/0x310
[   95.890184][ T7880]  ? _raw_spin_unlock+0x26/0x50
[   95.890221][ T7880]  do_filp_open+0x107/0x230
[   95.890331][ T7880]  do_sys_openat2+0xab/0x120
[   95.890369][ T7880]  __x64_sys_openat+0xf3/0x120
[   95.890474][ T7880]  x64_sys_call+0x2b30/0x2dc0
[   95.890506][ T7880]  do_syscall_64+0xc9/0x1c0
[   95.890535][ T7880]  ? clear_bhb_loop+0x55/0xb0
[   95.890592][ T7880]  ? clear_bhb_loop+0x55/0xb0
[   95.890625][ T7880]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.890671][ T7880] RIP: 0033:0x7f17993ccd29
[   95.890689][ T7880] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.890714][ T7880] RSP: 002b:00007f1797a31038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   95.890737][ T7880] RAX: ffffffffffffffda RBX: 00007f17995e5fa0 RCX: 00007f17993ccd29
[   95.890752][ T7880] RDX: 0000000000000102 RSI: 0000000020000040 RDI: ffffffffffffff9c
[   95.890767][ T7880] RBP: 00007f1797a31090 R08: 0000000000000000 R09: 0000000000000000
[   95.890782][ T7880] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   95.890797][ T7880] R13: 0000000000000000 R14: 00007f17995e5fa0 R15: 00007ffd18d4f278
[   95.890820][ T7880]  </TASK>
[   95.979284][   T29] kauditd_printk_skb: 199 callbacks suppressed
[   95.979325][   T29] audit: type=1326 audit(1737756643.391:2935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7879 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=40 compat=0 ip=0x7f17993ccd29 code=0x7ffc0000
[   96.093746][ T7882] ext4 filesystem being mounted at /338/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   96.097164][   T29] audit: type=1326 audit(1737756643.391:2936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7879 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17993ccd29 code=0x7ffc0000
[   96.178941][   T29] audit: type=1326 audit(1737756643.391:2937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7879 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f17993ccd29 code=0x7ffc0000
[   96.201837][   T29] audit: type=1326 audit(1737756643.391:2938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7879 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17993ccd29 code=0x7ffc0000
[   96.224796][   T29] audit: type=1326 audit(1737756643.391:2939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7879 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f17993ccd29 code=0x7ffc0000
[   96.247640][   T29] audit: type=1326 audit(1737756643.391:2940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7879 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17993ccd29 code=0x7ffc0000
[   96.270787][   T29] audit: type=1326 audit(1737756643.401:2941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7879 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17993ccd29 code=0x7ffc0000
[   96.294092][   T29] audit: type=1400 audit(1737756643.441:2942): avc:  denied  { map } for  pid=7883 comm="syz.4.1470" path="socket:[16878]" dev="sockfs" ino=16878 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[   96.406981][ T7901] loop1: detected capacity change from 0 to 512
[   96.427696][ T7901] ext4 filesystem being mounted at /341/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   96.437190][ T7903] loop4: detected capacity change from 0 to 764
[   96.450020][ T7903] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[   96.453473][ T7901] Process accounting resumed
[   96.481231][ T7901] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   96.496969][ T7913] loop5: detected capacity change from 0 to 1024
[   96.504489][   T29] audit: type=1400 audit(1737756643.921:2943): avc:  denied  { write } for  pid=7902 comm="syz.4.1476" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[   96.507960][ T7913] EXT4-fs: Ignoring removed nobh option
[   96.552395][ T7903] infiniband syz!: set active
[   96.557195][ T7903] infiniband syz!: added team_slave_0
[   96.583536][ T7903] RDS/IB: syz!: added
[   96.587628][ T7903] smc: adding ib device syz! with port count 1
[   96.593958][ T7903] smc:    ib device syz! port 1 has pnetid 
[   96.628690][ T7920] 9pnet_fd: Insufficient options for proto=fd
[   96.699511][ T7926] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1482'.
[   96.735058][   T29] audit: type=1326 audit(1737756644.111:2944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7925 comm="syz.1.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3f1cccd29 code=0x7ffc0000
[   96.743255][ T7930] FAULT_INJECTION: forcing a failure.
[   96.743255][ T7930] name failslab, interval 1, probability 0, space 0, times 0
[   96.771381][ T7930] CPU: 0 UID: 0 PID: 7930 Comm: syz.5.1483 Not tainted 6.13.0-syzkaller-05474-g113691ce9f32 #0
[   96.771517][ T7930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   96.771532][ T7930] Call Trace:
[   96.771539][ T7930]  <TASK>
[   96.771548][ T7930]  dump_stack_lvl+0xf2/0x150
[   96.771577][ T7930]  dump_stack+0x15/0x1a
[   96.771598][ T7930]  should_fail_ex+0x223/0x230
[   96.771634][ T7930]  should_failslab+0x8f/0xb0
[   96.771687][ T7930]  kmem_cache_alloc_noprof+0x52/0x320
[   96.771787][ T7930]  ? skb_clone+0x154/0x1f0
[   96.771878][ T7930]  skb_clone+0x154/0x1f0
[   96.771987][ T7930]  __netlink_deliver_tap+0x2bd/0x4f0
[   96.772023][ T7930]  netlink_sendskb+0x126/0x150
[   96.772051][ T7930]  netlink_unicast+0x291/0x670
[   96.772139][ T7930]  netlink_ack+0x4bb/0x4f0
[   96.772176][ T7930]  netlink_rcv_skb+0x19c/0x230
[   96.772251][ T7930]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   96.772412][ T7930]  rtnetlink_rcv+0x1c/0x30
[   96.772487][ T7930]  netlink_unicast+0x599/0x670
[   96.772520][ T7930]  netlink_sendmsg+0x5cc/0x6e0
[   96.772560][ T7930]  ? __pfx_netlink_sendmsg+0x10/0x10
[   96.772598][ T7930]  __sock_sendmsg+0x140/0x180
[   96.772641][ T7930]  ____sys_sendmsg+0x312/0x410
[   96.772677][ T7930]  __sys_sendmsg+0x19d/0x230
[   96.772763][ T7930]  __x64_sys_sendmsg+0x46/0x50
[   96.772793][ T7930]  x64_sys_call+0x2734/0x2dc0
[   96.772823][ T7930]  do_syscall_64+0xc9/0x1c0
[   96.772865][ T7930]  ? clear_bhb_loop+0x55/0xb0
[   96.772898][ T7930]  ? clear_bhb_loop+0x55/0xb0
[   96.772978][ T7930]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.773004][ T7930] RIP: 0033:0x7f5cdf2ecd29
[   96.773022][ T7930] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.773043][ T7930] RSP: 002b:00007f5cdd957038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   96.773138][ T7930] RAX: ffffffffffffffda RBX: 00007f5cdf505fa0 RCX: 00007f5cdf2ecd29
[   96.773153][ T7930] RDX: 0000000004040080 RSI: 0000000020001240 RDI: 0000000000000003
[   96.773168][ T7930] RBP: 00007f5cdd957090 R08: 0000000000000000 R09: 0000000000000000
[   96.773182][ T7930] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   96.773227][ T7930] R13: 0000000000000000 R14: 00007f5cdf505fa0 R15: 00007fffb108ccb8
[   96.773326][ T7930]  </TASK>
[   97.067333][ T7933] bridge_slave_0 (unregistering): left allmulticast mode
[   97.074459][ T7933] bridge_slave_0 (unregistering): left promiscuous mode
[   97.081550][ T7933] bridge0: port 1(bridge_slave_0) entered disabled state
[   97.094942][ T7944] loop4: detected capacity change from 0 to 512
[   97.110130][ T7944] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.1487: corrupted in-inode xattr: invalid ea_ino
[   97.115040][ T7953] FAULT_INJECTION: forcing a failure.
[   97.115040][ T7953] name failslab, interval 1, probability 0, space 0, times 0
[   97.135408][ T7944] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.1487: couldn't read orphan inode 15 (err -117)
[   97.136196][ T7953] CPU: 1 UID: 0 PID: 7953 Comm: syz.5.1486 Not tainted 6.13.0-syzkaller-05474-g113691ce9f32 #0
[   97.136228][ T7953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   97.136245][ T7953] Call Trace:
[   97.136253][ T7953]  <TASK>
[   97.136264][ T7953]  dump_stack_lvl+0xf2/0x150
[   97.136345][ T7953]  dump_stack+0x15/0x1a
[   97.136370][ T7953]  should_fail_ex+0x223/0x230
[   97.136411][ T7953]  should_failslab+0x8f/0xb0
[   97.136441][ T7953]  kmem_cache_alloc_node_noprof+0x59/0x320
[   97.136488][ T7953]  ? __alloc_skb+0x10b/0x310
[   97.136520][ T7953]  __alloc_skb+0x10b/0x310
[   97.136548][ T7953]  netlink_ack+0xef/0x4f0
[   97.136632][ T7953]  ? __dev_queue_xmit+0x186/0x2090
[   97.136667][ T7953]  netlink_rcv_skb+0x19c/0x230
[   97.136780][ T7953]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   97.136822][ T7953]  rtnetlink_rcv+0x1c/0x30
[   97.136853][ T7953]  netlink_unicast+0x599/0x670
[   97.136890][ T7953]  netlink_sendmsg+0x5cc/0x6e0
[   97.136945][ T7953]  ? __pfx_netlink_sendmsg+0x10/0x10
[   97.136982][ T7953]  __sock_sendmsg+0x140/0x180
[   97.137023][ T7953]  ____sys_sendmsg+0x312/0x410
[   97.137209][ T7953]  __sys_sendmsg+0x19d/0x230
[   97.137331][ T7953]  __x64_sys_sendmsg+0x46/0x50
[   97.137433][ T7953]  x64_sys_call+0x2734/0x2dc0
[   97.137465][ T7953]  do_syscall_64+0xc9/0x1c0
[   97.137494][ T7953]  ? clear_bhb_loop+0x55/0xb0
[   97.137579][ T7953]  ? clear_bhb_loop+0x55/0xb0
[   97.137612][ T7953]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.137646][ T7953] RIP: 0033:0x7f5cdf2ecd29
[   97.137666][ T7953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   97.137767][ T7953] RSP: 002b:00007f5cdd936038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   97.137789][ T7953] RAX: ffffffffffffffda RBX: 00007f5cdf506080 RCX: 00007f5cdf2ecd29
[   97.137804][ T7953] RDX: 0000000000000000 RSI: 0000000020000580 RDI: 0000000000000003
[   97.137819][ T7953] RBP: 00007f5cdd936090 R08: 0000000000000000 R09: 0000000000000000
[   97.137834][ T7953] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   97.137892][ T7953] R13: 0000000000000001 R14: 00007f5cdf506080 R15: 00007fffb108ccb8
[   97.137915][ T7953]  </TASK>
[   97.303924][ T7956] loop0: detected capacity change from 0 to 512
[   97.321600][ T7944] EXT4-fs mount: 273 callbacks suppressed
[   97.321619][ T7944] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   97.428312][ T7956] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.1488: corrupted in-inode xattr: invalid ea_ino
[   97.444509][ T7956] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.1488: couldn't read orphan inode 15 (err -117)
[   97.449935][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.457693][ T7956] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   97.490859][ T7965] loop3: detected capacity change from 0 to 1024
[   97.499591][ T7965] EXT4-fs: Ignoring removed nobh option
[   97.545800][ T7971] loop5: detected capacity change from 0 to 512
[   97.570046][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.581723][ T7965] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   97.595134][ T7971] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   97.608753][ T7971] ext4 filesystem being mounted at /50/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   97.636478][ T7971] Process accounting resumed
[   97.675213][ T7971] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   97.739720][ T6925] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.762220][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.814618][ T7996] loop4: detected capacity change from 0 to 512
[   97.858374][ T8004] netlink: 'syz.5.1493': attribute type 13 has an invalid length.
[   97.973563][ T7996] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.1495: corrupted in-inode xattr: invalid ea_ino
[   97.985375][ T8002] loop3: detected capacity change from 0 to 164
[   97.999082][ T8004] gretap0: refused to change device tx_queue_len
[   97.999145][ T7996] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.1495: couldn't read orphan inode 15 (err -117)
[   98.007907][ T8004] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   98.041897][ T8044] loop1: detected capacity change from 0 to 512
[   98.053835][ T8002] syz.3.1494: attempt to access beyond end of device
[   98.053835][ T8002] loop3: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   98.059137][ T7996] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   98.082911][ T8002] syz.3.1494: attempt to access beyond end of device
[   98.082911][ T8002] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164
[   98.090105][ T8017] loop0: detected capacity change from 0 to 164
[   98.134217][ T8044] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   98.175790][ T8044] ext4 filesystem being mounted at /346/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   98.209473][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.234135][ T8044] Process accounting resumed
[   98.258623][ T8059] netlink: 'syz.4.1501': attribute type 13 has an invalid length.
[   98.276450][ T8059] gretap0: refused to change device tx_queue_len
[   98.284091][ T8044] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   98.290823][ T8059] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   98.373312][ T8065] loop5: detected capacity change from 0 to 1024
[   98.398321][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.438611][ T8065] EXT4-fs error (device loop5): ext4_acquire_dquot:6927: comm syz.5.1503: Failed to acquire dquot type 0
[   98.501707][ T8065] EXT4-fs (loop5): 1 truncate cleaned up
[   98.523708][ T8065] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   98.558017][ T8076] loop3: detected capacity change from 0 to 512
[   98.581004][ T8063] 9pnet_fd: Insufficient options for proto=fd
[   98.611226][ T8076] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   98.626692][ T8076] ext4 filesystem being mounted at /252/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   98.641572][ T8076] Process accounting resumed
[   98.647657][ T8076] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   98.683820][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.722670][ T8086] loop3: detected capacity change from 0 to 1024
[   98.737272][ T8086] EXT4-fs (loop3): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   98.751740][ T8078] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1509'.
[   98.763703][ T8078] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   98.772555][ T8078] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   98.781395][ T8078] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   98.784710][ T8086] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   98.790218][ T8078] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   98.810334][ T8086] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2793: inode #15: comm syz.3.1511: corrupted in-inode xattr: bad magic number in in-inode xattr
[   98.828873][ T6925] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.843196][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.873275][ T8093] loop5: detected capacity change from 0 to 256
[   98.916888][ T8097] loop5: detected capacity change from 0 to 512
[   98.934928][ T8099] loop3: detected capacity change from 0 to 128
[   98.942363][ T8097] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2240: inode #15: comm syz.5.1515: corrupted in-inode xattr: invalid ea_ino
[   98.958038][ T8097] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.1515: couldn't read orphan inode 15 (err -117)
[   98.972272][ T8097] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.008436][ T6925] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.040481][ T8095] loop3: detected capacity change from 0 to 512
[   99.055721][ T8095] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   99.071254][ T8095] EXT4-fs (loop3): 1 truncate cleaned up
[   99.077390][ T8095] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   99.181075][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.220157][ T8113] loop3: detected capacity change from 0 to 1024
[   99.233019][ T8113] EXT4-fs: Ignoring removed nomblk_io_submit option
[   99.251421][ T8113] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   99.281575][ T8115] loop5: detected capacity change from 0 to 512
[   99.288868][ T8113] EXT4-fs error (device loop3): ext4_ext_check_inode:524: inode #4: comm syz.3.1521: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[   99.316847][ T8115] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[   99.349610][ T8113] EXT4-fs error (device loop3): ext4_quota_enable:7104: comm syz.3.1521: Bad quota inode: 4, type: 1
[   99.364045][ T8113] EXT4-fs warning (device loop3): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   99.372538][ T8115] EXT4-fs (loop5): 1 truncate cleaned up
[   99.385314][ T8113] EXT4-fs (loop3): mount failed
[   99.385770][ T8115] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.429764][ T8108] vlan2: entered allmulticast mode
[   99.447652][ T8122] FAULT_INJECTION: forcing a failure.
[   99.447652][ T8122] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   99.460938][ T8122] CPU: 1 UID: 0 PID: 8122 Comm: syz.1.1523 Not tainted 6.13.0-syzkaller-05474-g113691ce9f32 #0
[   99.460967][ T8122] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   99.461038][ T8122] Call Trace:
[   99.461044][ T8122]  <TASK>
[   99.461051][ T8122]  dump_stack_lvl+0xf2/0x150
[   99.461079][ T8122]  dump_stack+0x15/0x1a
[   99.461099][ T8122]  should_fail_ex+0x223/0x230
[   99.461135][ T8122]  should_fail+0xb/0x10
[   99.461187][ T8122]  should_fail_usercopy+0x1a/0x20
[   99.461207][ T8122]  _copy_to_user+0x20/0xa0
[   99.461230][ T8122]  simple_read_from_buffer+0xa0/0x110
[   99.461255][ T8122]  proc_fail_nth_read+0xf9/0x140
[   99.461287][ T8122]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   99.461320][ T8122]  vfs_read+0x19b/0x6f0
[   99.461344][ T8122]  ? __rcu_read_unlock+0x4e/0x70
[   99.461369][ T8122]  ? __fget_files+0x17c/0x1c0
[   99.461397][ T8122]  ksys_read+0xe8/0x1b0
[   99.461418][ T8122]  __x64_sys_read+0x42/0x50
[   99.461490][ T8122]  x64_sys_call+0x2874/0x2dc0
[   99.461520][ T8122]  do_syscall_64+0xc9/0x1c0
[   99.461549][ T8122]  ? clear_bhb_loop+0x55/0xb0
[   99.461581][ T8122]  ? clear_bhb_loop+0x55/0xb0
[   99.461689][ T8122]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.461718][ T8122] RIP: 0033:0x7fd3f1ccb73c
[   99.461733][ T8122] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   99.461751][ T8122] RSP: 002b:00007fd3f0337030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   99.461835][ T8122] RAX: ffffffffffffffda RBX: 00007fd3f1ee5fa0 RCX: 00007fd3f1ccb73c
[   99.461851][ T8122] RDX: 000000000000000f RSI: 00007fd3f03370a0 RDI: 0000000000000004
[   99.461863][ T8122] RBP: 00007fd3f0337090 R08: 0000000000000000 R09: 0000000000000000
[   99.461877][ T8122] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   99.461891][ T8122] R13: 0000000000000000 R14: 00007fd3f1ee5fa0 R15: 00007fffe3a01fe8
[   99.461925][ T8122]  </TASK>
[   99.713070][ T6925] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.729788][ T8128] loop1: detected capacity change from 0 to 512
[   99.751330][ T8128] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -2
[   99.759894][ T8128] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 3279945729 > max in inode 13
[   99.762294][ T8138] loop5: detected capacity change from 0 to 512
[   99.771038][ T8128] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 3279945730 > max in inode 13
[   99.787614][ T8128] EXT4-fs (loop1): 1 truncate cleaned up
[   99.794599][ T8128] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.795013][ T8138] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.819934][ T8138] ext4 filesystem being mounted at /63/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   99.837637][ T8138] Process accounting resumed
[   99.843433][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.853178][ T8138] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   99.876478][ T6925] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.923304][ T8148] loop1: detected capacity change from 0 to 512
[   99.942393][ T8148] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.956656][ T8148] ext4 filesystem being mounted at /354/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   99.973093][ T8148] Process accounting resumed
[   99.978922][ T8148] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  100.000839][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.008948][ T8156] loop5: detected capacity change from 0 to 256
[  100.197411][ T8168] loop0: detected capacity change from 0 to 512
[  100.221882][ T8168] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.234648][ T8168] ext4 filesystem being mounted at /328/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  100.246330][ T8168] Process accounting resumed
[  100.252264][ T8168] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  100.271828][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.289413][ T8172] Process accounting resumed
[  100.294222][ T8172] FAULT_INJECTION: forcing a failure.
[  100.294222][ T8172] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  100.307433][ T8172] CPU: 1 UID: 0 PID: 8172 Comm: syz.0.1540 Not tainted 6.13.0-syzkaller-05474-g113691ce9f32 #0
[  100.307461][ T8172] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  100.307474][ T8172] Call Trace:
[  100.307482][ T8172]  <TASK>
[  100.307490][ T8172]  dump_stack_lvl+0xf2/0x150
[  100.307565][ T8172]  dump_stack+0x15/0x1a
[  100.307591][ T8172]  should_fail_ex+0x223/0x230
[  100.307697][ T8172]  should_fail+0xb/0x10
[  100.307730][ T8172]  should_fail_usercopy+0x1a/0x20
[  100.307789][ T8172]  _copy_to_user+0x20/0xa0
[  100.307818][ T8172]  simple_read_from_buffer+0xa0/0x110
[  100.307849][ T8172]  proc_fail_nth_read+0xf9/0x140
[  100.307880][ T8172]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  100.307902][ T8172]  vfs_read+0x19b/0x6f0
[  100.307922][ T8172]  ? __rcu_read_unlock+0x4e/0x70
[  100.307999][ T8172]  ? __fget_files+0x17c/0x1c0
[  100.308111][ T8172]  ksys_read+0xe8/0x1b0
[  100.308132][ T8172]  __x64_sys_read+0x42/0x50
[  100.308152][ T8172]  x64_sys_call+0x2874/0x2dc0
[  100.308210][ T8172]  do_syscall_64+0xc9/0x1c0
[  100.308294][ T8172]  ? clear_bhb_loop+0x55/0xb0
[  100.308396][ T8172]  ? clear_bhb_loop+0x55/0xb0
[  100.308430][ T8172]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.308528][ T8172] RIP: 0033:0x7f17993cb73c
[  100.308543][ T8172] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  100.308565][ T8172] RSP: 002b:00007f1797a31030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  100.308588][ T8172] RAX: ffffffffffffffda RBX: 00007f17995e5fa0 RCX: 00007f17993cb73c
[  100.308603][ T8172] RDX: 000000000000000f RSI: 00007f1797a310a0 RDI: 0000000000000007
[  100.308618][ T8172] RBP: 00007f1797a31090 R08: 0000000000000000 R09: 0000000000000000
[  100.308682][ T8172] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  100.308697][ T8172] R13: 0000000000000000 R14: 00007f17995e5fa0 R15: 00007ffd18d4f278
[  100.308715][ T8172]  </TASK>
[  100.339871][ T8174] loop3: detected capacity change from 0 to 512
[  100.464028][ T8178] netlink: 'syz.0.1543': attribute type 13 has an invalid length.
[  100.502588][ T8174] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.531284][ T8178] gretap0: refused to change device tx_queue_len
[  100.536996][ T8174] ext4 filesystem being mounted at /257/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  100.548902][ T8178] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  100.558197][ T8174] Process accounting resumed
[  100.577040][ T8174] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  100.596764][ T8187] loop4: detected capacity change from 0 to 512
[  100.616567][ T8190] loop0: detected capacity change from 0 to 512
[  100.619162][ T8187] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.1546: corrupted in-inode xattr: invalid ea_ino
[  100.642859][ T8187] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.1546: couldn't read orphan inode 15 (err -117)
[  100.656415][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.659734][ T8190] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.678561][ T8190] ext4 filesystem being mounted at /332/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  100.679951][ T8187] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.708257][ T8190] Process accounting resumed
[  100.715556][ T8190] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  100.737969][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.748324][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.782965][ T8197] loop4: detected capacity change from 0 to 4096
[  100.933038][ T8218] loop5: detected capacity change from 0 to 1024
[  100.945265][ T8218] EXT4-fs: Ignoring removed nobh option
[  100.983236][ T8218] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.174901][ T6925] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.219902][ T8249] loop5: detected capacity change from 0 to 1024
[  101.226714][ T8249] EXT4-fs: Ignoring removed nobh option
[  101.261719][ T8249] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.316779][ T6925] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.351547][ T8273] loop5: detected capacity change from 0 to 512
[  101.372942][ T8273] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.385710][ T8273] ext4 filesystem being mounted at /70/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  101.397785][ T8273] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  101.418350][ T8273] Process accounting resumed
[  101.425326][ T6925] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.456646][ T8291] netlink: 'syz.5.1557': attribute type 13 has an invalid length.
[  101.466940][ T8291] gretap0: refused to change device tx_queue_len
[  101.475583][ T8291] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  101.545171][ T8307] loop5: detected capacity change from 0 to 1024
[  101.553209][ T8307] EXT4-fs (loop5): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  101.573451][ T8307] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.594396][ T8315] loop3: detected capacity change from 0 to 512
[  101.604672][ T8307] EXT4-fs error (device loop5): ext4_expand_extra_isize_ea:2793: inode #15: comm syz.5.1559: corrupted in-inode xattr: bad magic number in in-inode xattr
[  101.622557][ T8315] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.635924][ T8315] ext4 filesystem being mounted at /259/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  101.648374][ T8315] Process accounting resumed
[  101.686066][ T8315] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  101.774597][ T6925] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.777457][   T29] kauditd_printk_skb: 220 callbacks suppressed
[  101.777522][   T29] audit: type=1326 audit(1737756649.201:3163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8341 comm="syz.0.1562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17993ccd29 code=0x7ffc0000
[  101.815768][   T29] audit: type=1326 audit(1737756649.241:3164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8341 comm="syz.0.1562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7f17993ccd29 code=0x7ffc0000
[  101.840507][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.876983][ T8347] loop3: detected capacity change from 0 to 1024
[  101.889205][ T8347] EXT4-fs (loop3): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  101.915641][ T8347] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.950448][   T29] audit: type=1326 audit(1737756649.381:3165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8352 comm="syz.4.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62c75ccd29 code=0x7ffc0000
[  101.969047][ T8347] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2793: inode #15: comm syz.3.1565: corrupted in-inode xattr: bad magic number in in-inode xattr
[  101.974201][   T29] audit: type=1326 audit(1737756649.381:3166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8352 comm="syz.4.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62c75ccd29 code=0x7ffc0000
[  102.013078][   T29] audit: type=1326 audit(1737756649.381:3167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8352 comm="syz.4.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f62c75ccd29 code=0x7ffc0000
[  102.036696][   T29] audit: type=1326 audit(1737756649.381:3168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8352 comm="syz.4.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62c75ccd29 code=0x7ffc0000
[  102.060829][   T29] audit: type=1326 audit(1737756649.431:3169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8352 comm="syz.4.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f62c75ccd29 code=0x7ffc0000
[  102.084200][   T29] audit: type=1326 audit(1737756649.431:3170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8352 comm="syz.4.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62c75ccd29 code=0x7ffc0000
[  102.107749][   T29] audit: type=1326 audit(1737756649.431:3171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8352 comm="syz.4.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f62c75ccd29 code=0x7ffc0000
[  102.145824][ T8358] loop4: detected capacity change from 0 to 128
[  102.158762][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.209838][   T29] audit: type=1326 audit(1737756649.631:3172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8365 comm="syz.1.1573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3f1cccd29 code=0x7ffc0000
[  102.261583][ T8358] loop4: detected capacity change from 0 to 512
[  102.318967][ T8358] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  102.336398][ T8358] EXT4-fs (loop4): 1 truncate cleaned up
[  102.342499][ T8358] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.534275][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.583040][ T8394] loop4: detected capacity change from 0 to 256
[  102.741901][ T8405] loop3: detected capacity change from 0 to 512
[  102.796074][ T8410] loop4: detected capacity change from 0 to 1024
[  102.804357][ T8410] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  102.816686][ T8405] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.833951][ T8405] ext4 filesystem being mounted at /262/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  102.848549][ T8410] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.861718][ T8405] Process accounting resumed
[  102.869354][ T8405] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  102.875070][ T8410] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2793: inode #15: comm syz.4.1579: corrupted in-inode xattr: bad magic number in in-inode xattr
[  102.933897][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.938442][ T8423] loop5: detected capacity change from 0 to 256
[  103.003117][ T8429] loop3: detected capacity change from 0 to 1024
[  103.020316][ T8429] EXT4-fs (loop3): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  103.030251][ T8434] loop5: detected capacity change from 0 to 1024
[  103.062949][ T8434] EXT4-fs: Ignoring removed nobh option
[  103.137929][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.150043][ T8429] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.170361][ T8434] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.197724][ T8429] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2793: inode #15: comm syz.3.1581: corrupted in-inode xattr: bad magic number in in-inode xattr
[  103.242324][ T8478] loop4: detected capacity change from 0 to 512
[  103.278498][ T8478] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.1585: corrupted in-inode xattr: invalid ea_ino
[  103.281737][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.294520][ T8478] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.1585: couldn't read orphan inode 15 (err -117)
[  103.314722][ T8478] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.328223][ T6925] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.391339][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.430279][ T8490] loop5: detected capacity change from 0 to 512
[  103.445433][ T8490] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.462403][ T8490] ext4 filesystem being mounted at /80/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  103.476994][ T8490] Process accounting resumed
[  103.483511][ T8490] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  103.506258][ T6925] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.553975][ T8498] loop3: detected capacity change from 0 to 4096
[  104.190808][ T8522] loop1: detected capacity change from 0 to 256
[  104.237439][ T8526] loop0: detected capacity change from 0 to 512
[  104.253457][ T8526] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.1607: corrupted in-inode xattr: invalid ea_ino
[  104.269247][ T8526] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.1607: couldn't read orphan inode 15 (err -117)
[  104.308846][ T8530] loop4: detected capacity change from 0 to 1024
[  104.316050][ T8530] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  104.416915][ T8541] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1613'.
[  104.432928][ T8540] loop1: detected capacity change from 0 to 512
[  104.475952][ T8545] loop0: detected capacity change from 0 to 1024
[  104.490945][ T8545] EXT4-fs: Ignoring removed nobh option
[  104.510333][ T8540] ext4 filesystem being mounted at /372/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  104.538656][ T8540] Process accounting resumed
[  104.546400][ T8540] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  104.574614][ T8551] loop4: detected capacity change from 0 to 512
[  104.584619][ T8553] loop3: detected capacity change from 0 to 128
[  104.630986][ T8551] ext4 filesystem being mounted at /314/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  104.644452][ T8551] Process accounting resumed
[  104.698654][ T8551] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  104.717150][ T8560] loop1: detected capacity change from 0 to 512
[  104.731636][ T8560] ext4 filesystem being mounted at /374/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  104.735894][ T8549] loop3: detected capacity change from 0 to 512
[  104.747993][ T8560] Process accounting resumed
[  104.755378][ T8549] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  104.774978][ T8560] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  104.775261][ T8549] EXT4-fs (loop3): 1 truncate cleaned up
[  104.828650][ T8569] loop0: detected capacity change from 0 to 1024
[  104.846836][ T8569] EXT4-fs (loop0): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  104.966571][ T8580] loop0: detected capacity change from 0 to 512
[  104.971343][ T8577] loop1: detected capacity change from 0 to 4096
[  104.974761][ T8580] EXT4-fs: Ignoring removed oldalloc option
[  105.012898][ T8580] EXT4-fs error (device loop0): ext4_xattr_inode_iget:436: comm syz.0.1625: Parent and EA inode have the same ino 15
[  105.068161][ T8580] EXT4-fs (loop0): Remounting filesystem read-only
[  105.074841][ T8580] EXT4-fs warning (device loop0): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[  105.093836][ T8580] EXT4-fs (loop0): 1 orphan inode deleted
[  105.102078][ T8580] SELinux: (dev loop0, type ext4) getxattr errno 5
[  105.461369][ T8623] loop4: detected capacity change from 0 to 512
[  105.508647][ T8623] ext4 filesystem being mounted at /318/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  105.537092][ T8623] Process accounting resumed
[  105.539079][ T8634] loop0: detected capacity change from 0 to 512
[  105.559139][ T8623] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  105.571811][ T8634] ext4 filesystem being mounted at /352/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  105.584696][ T8634] Process accounting resumed
[  105.592786][ T8634] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  105.681209][ T8651] loop4: detected capacity change from 0 to 1024
[  105.714787][ T8651] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  105.733659][ T8659] loop0: detected capacity change from 0 to 512
[  105.759557][ T8659] ext4 filesystem being mounted at /354/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  105.793935][ T8659] Process accounting resumed
[  105.851161][ T8659] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  105.933931][ T8697] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1641'.
[  105.992440][ T8702] loop1: detected capacity change from 0 to 256
[  106.005417][ T8704] loop4: detected capacity change from 0 to 1024
[  106.030973][ T8704] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  106.057522][ T8704] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2793: inode #15: comm syz.4.1643: corrupted in-inode xattr: bad magic number in in-inode xattr
[  106.138536][ T8712] loop1: detected capacity change from 0 to 256
[  106.177148][ T8716] loop4: detected capacity change from 0 to 512
[  106.217991][ T8716] ext4 filesystem being mounted at /324/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  106.226750][ T8721] loop1: detected capacity change from 0 to 4096
[  106.256416][ T8716] Process accounting resumed
[  106.267181][ T8716] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  106.432507][ T8740] loop4: detected capacity change from 0 to 512
[  106.460111][ T8740] ext4 filesystem being mounted at /325/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  106.484578][ T8740] Process accounting resumed
[  106.515129][ T8740] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  106.585700][ T8759] loop4: detected capacity change from 0 to 1024
[  106.603753][ T8759] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  106.626489][ T8759] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2793: inode #15: comm syz.4.1655: corrupted in-inode xattr: bad magic number in in-inode xattr
[  106.716397][ T8770] loop5: detected capacity change from 0 to 128
[  106.800337][   T29] kauditd_printk_skb: 158 callbacks suppressed
[  106.800373][   T29] audit: type=1326 audit(1737756654.220:3331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8763 comm="syz.5.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cdf2ecd29 code=0x7ffc0000
[  106.808942][ T8780] loop5: detected capacity change from 0 to 512
[  106.830466][   T29] audit: type=1326 audit(1737756654.220:3332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8763 comm="syz.5.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f5cdf2ecd29 code=0x7ffc0000
[  106.830506][   T29] audit: type=1326 audit(1737756654.220:3333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8763 comm="syz.5.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f5cdf2ecd63 code=0x7ffc0000
[  106.883402][   T29] audit: type=1326 audit(1737756654.220:3334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8763 comm="syz.5.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f5cdf2eb7df code=0x7ffc0000
[  106.906670][   T29] audit: type=1326 audit(1737756654.220:3335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8763 comm="syz.5.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f5cdf2ecdb7 code=0x7ffc0000
[  106.930088][   T29] audit: type=1326 audit(1737756654.230:3336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8763 comm="syz.5.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5cdf2eb690 code=0x7ffc0000
[  106.931468][ T8780] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  106.966276][   T29] audit: type=1326 audit(1737756654.230:3337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8763 comm="syz.5.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f5cdf2ec92b code=0x7ffc0000
[  106.989760][   T29] audit: type=1326 audit(1737756654.290:3338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8763 comm="syz.5.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f5cdf2eb98a code=0x7ffc0000
[  107.013311][   T29] audit: type=1326 audit(1737756654.290:3339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8763 comm="syz.5.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f5cdf2eb98a code=0x7ffc0000
[  107.016359][ T8784] loop4: detected capacity change from 0 to 256
[  107.036685][   T29] audit: type=1326 audit(1737756654.290:3340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8763 comm="syz.5.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f5cdf2eb597 code=0x7ffc0000
[  107.051481][ T8786] loop3: detected capacity change from 0 to 512
[  107.108078][ T8780] EXT4-fs (loop5): 1 truncate cleaned up
[  107.265662][ T8786] ext4 filesystem being mounted at /272/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.295451][ T8786] Process accounting resumed
[  107.310099][ T8786] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  107.341752][ T8821] loop4: detected capacity change from 0 to 256
[  107.423713][ T8827] loop3: detected capacity change from 0 to 512
[  107.442549][ T8829] loop4: detected capacity change from 0 to 512
[  107.449700][ T8827] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.1664: corrupted in-inode xattr: invalid ea_ino
[  107.469173][ T8827] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.1664: couldn't read orphan inode 15 (err -117)
[  107.488582][ T8829] ext4 filesystem being mounted at /330/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.502115][ T8829] Process accounting resumed
[  107.508079][ T8829] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  107.615676][ T8841] loop4: detected capacity change from 0 to 1024
[  107.628033][ T8841] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  107.670842][ T8841] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2793: inode #15: comm syz.4.1667: corrupted in-inode xattr: bad magic number in in-inode xattr
[  107.683856][ T8848] loop5: detected capacity change from 0 to 4096
[  107.756762][ T8851] loop3: detected capacity change from 0 to 1024
[  107.768955][ T8851] EXT4-fs (loop3): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  107.811649][ T8857] loop4: detected capacity change from 0 to 256
[  107.863351][ T8851] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2793: inode #15: comm syz.3.1671: corrupted in-inode xattr: bad magic number in in-inode xattr
[  107.926316][ T8860] loop4: detected capacity change from 0 to 512
[  107.942260][ T8860] EXT4-fs (loop4): too many log groups per flexible block group
[  107.950045][ T8860] EXT4-fs (loop4): failed to initialize mballoc (-12)
[  107.957750][ T8860] EXT4-fs (loop4): mount failed
[  108.024090][ T8871] loop4: detected capacity change from 0 to 512
[  108.052868][ T8871] ext4 filesystem being mounted at /335/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  108.070899][ T8871] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  108.142683][ T8878] loop3: detected capacity change from 0 to 128
[  108.246877][ T8875] loop3: detected capacity change from 0 to 512
[  108.275023][ T8881] loop4: detected capacity change from 0 to 1024
[  108.283048][ T8881] EXT4-fs: Ignoring removed nobh option
[  108.297968][ T8875] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  108.299050][ T8882] loop0: detected capacity change from 0 to 512
[  108.321681][ T8875] EXT4-fs (loop3): 1 truncate cleaned up
[  108.343057][ T8882] ext4 filesystem being mounted at /362/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  108.355235][ T8882] Process accounting resumed
[  108.418943][ T8882] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  108.467499][ T8893] loop0: detected capacity change from 0 to 256
[  108.470523][ T8889] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1682'.
[  108.535029][ T8898] loop4: detected capacity change from 0 to 512
[  108.564507][ T8898] ext4 filesystem being mounted at /339/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  108.611878][ T8898] Process accounting resumed
[  108.625707][ T8908] loop0: detected capacity change from 0 to 512
[  108.627389][ T8906] loop5: detected capacity change from 0 to 512
[  108.633446][ T8898] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  108.649557][ T8908] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.1689: corrupted in-inode xattr: invalid ea_ino
[  108.663438][ T8908] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.1689: couldn't read orphan inode 15 (err -117)
[  108.676873][ T8906] ext4 filesystem being mounted at /87/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  108.699329][ T8906] Process accounting resumed
[  108.734190][ T8906] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  108.768818][ T8918] xt_connbytes: Forcing CT accounting to be enabled
[  108.775641][ T8918] Cannot find add_set index 0 as target
[  109.052644][ T8927] loop3: detected capacity change from 0 to 256
[  109.137110][ T8934] FAULT_INJECTION: forcing a failure.
[  109.137110][ T8934] name failslab, interval 1, probability 0, space 0, times 0
[  109.139641][ T8932] loop3: detected capacity change from 0 to 4096
[  109.149858][ T8934] CPU: 1 UID: 0 PID: 8934 Comm: syz.4.1698 Not tainted 6.13.0-syzkaller-05474-g113691ce9f32 #0
[  109.149950][ T8934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  109.149966][ T8934] Call Trace:
[  109.149985][ T8934]  <TASK>
[  109.149996][ T8934]  dump_stack_lvl+0xf2/0x150
[  109.150030][ T8934]  dump_stack+0x15/0x1a
[  109.150056][ T8934]  should_fail_ex+0x223/0x230
[  109.150105][ T8934]  should_failslab+0x8f/0xb0
[  109.150135][ T8934]  kmem_cache_alloc_node_noprof+0x59/0x320
[  109.150177][ T8934]  ? __alloc_skb+0x10b/0x310
[  109.150207][ T8934]  __alloc_skb+0x10b/0x310
[  109.150305][ T8934]  create_monitor_ctrl_open+0x103/0x490
[  109.150408][ T8934]  hci_sock_ioctl+0x383/0x8f0
[  109.150436][ T8934]  sock_do_ioctl+0x81/0x260
[  109.150478][ T8934]  sock_ioctl+0x40f/0x600
[  109.150551][ T8934]  ? __pfx_sock_ioctl+0x10/0x10
[  109.150638][ T8934]  __se_sys_ioctl+0xc9/0x140
[  109.150663][ T8934]  __x64_sys_ioctl+0x43/0x50
[  109.150686][ T8934]  x64_sys_call+0x1690/0x2dc0
[  109.150749][ T8934]  do_syscall_64+0xc9/0x1c0
[  109.150778][ T8934]  ? clear_bhb_loop+0x55/0xb0
[  109.150811][ T8934]  ? clear_bhb_loop+0x55/0xb0
[  109.150946][ T8934]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.150986][ T8934] RIP: 0033:0x7f62c75ccd29
[  109.151005][ T8934] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.151027][ T8934] RSP: 002b:00007f62c5c37038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  109.151049][ T8934] RAX: ffffffffffffffda RBX: 00007f62c77e5fa0 RCX: 00007f62c75ccd29
[  109.151064][ T8934] RDX: 0000000000000000 RSI: 00000000400448cc RDI: 0000000000000004
[  109.151120][ T8934] RBP: 00007f62c5c37090 R08: 0000000000000000 R09: 0000000000000000
[  109.151134][ T8934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.151148][ T8934] R13: 0000000000000000 R14: 00007f62c77e5fa0 R15: 00007ffed1031da8
[  109.151170][ T8934]  </TASK>
[  109.435617][ T8942] loop4: detected capacity change from 0 to 512
[  109.469999][ T8942] ext4 filesystem being mounted at /346/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  109.491919][ T8942] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  109.567407][ T8947] loop0: detected capacity change from 0 to 512
[  109.588106][ T8949] loop4: detected capacity change from 0 to 512
[  109.607058][ T8947] ext4 filesystem being mounted at /369/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  109.620526][ T8949] ext4 filesystem being mounted at /347/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  109.625562][ T8956] loop5: detected capacity change from 0 to 1024
[  109.638270][ T8956] EXT4-fs: Ignoring removed nobh option
[  109.647588][ T8949] Process accounting resumed
[  109.654849][ T8947] Process accounting resumed
[  109.661606][ T8947] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  109.675445][ T8949] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  109.825871][ T8969] loop5: detected capacity change from 0 to 512
[  109.834244][ T8969] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2240: inode #15: comm syz.5.1708: corrupted in-inode xattr: invalid ea_ino
[  109.848038][ T8969] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.1708: couldn't read orphan inode 15 (err -117)
[  109.916387][ T8974] x_tables: ip6_tables: sctp match: only valid for protocol 132
[  110.022249][ T8979] loop5: detected capacity change from 0 to 128
[  110.068087][ T8981] loop3: detected capacity change from 0 to 256
[  110.104684][ T8978] loop5: detected capacity change from 0 to 512
[  110.117117][ T8978] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  110.132268][ T8978] EXT4-fs (loop5): 1 truncate cleaned up
[  110.210173][ T8990] Cannot find add_set index 0 as target
[  110.246667][ T8992] loop5: detected capacity change from 0 to 512
[  110.274348][ T8992] ext4 filesystem being mounted at /96/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  110.287283][ T8992] Process accounting resumed
[  110.295269][ T8992] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  110.520150][ T9000] loop5: detected capacity change from 0 to 512
[  110.535014][ T9000] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2240: inode #15: comm syz.5.1719: corrupted in-inode xattr: invalid ea_ino
[  110.560680][ T9000] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.1719: couldn't read orphan inode 15 (err -117)
[  110.641409][ T9012] loop5: detected capacity change from 0 to 1024
[  110.648252][ T9012] EXT4-fs: Ignoring removed nobh option
[  110.684645][ T9019] loop0: detected capacity change from 0 to 1024
[  110.692480][ T9019] EXT4-fs: Ignoring removed nobh option
[  110.766604][ T9025] loop0: detected capacity change from 0 to 512
[  110.792729][ T9025] ext4 filesystem being mounted at /374/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  110.806587][ T9025] Process accounting resumed
[  110.812952][ T9025] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  110.881823][ T9032] loop5: detected capacity change from 0 to 512
[  110.910384][ T9034] Cannot find add_set index 0 as target
[  110.911074][ T9032] ext4 filesystem being mounted at /102/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  111.491963][ T9045] loop4: detected capacity change from 0 to 512
[  111.502562][ T9045] ext4 filesystem being mounted at /351/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  111.515993][ T9045] Process accounting resumed
[  111.522283][ T9045] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  111.600123][ T9049] loop4: detected capacity change from 0 to 512
[  111.608773][ T9049] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.1736: corrupted in-inode xattr: invalid ea_ino
[  111.622530][ T9049] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.1736: couldn't read orphan inode 15 (err -117)
[  111.891827][ T9072] loop0: detected capacity change from 0 to 512
[  111.913235][ T9072] ext4 filesystem being mounted at /380/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  111.955217][ T9078] loop0: detected capacity change from 0 to 512
[  111.963869][ T9078] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.1748: corrupted in-inode xattr: invalid ea_ino
[  111.977549][ T9078] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.1748: couldn't read orphan inode 15 (err -117)
[  112.054116][ T9085] loop0: detected capacity change from 0 to 256
[  112.568417][ T9098] loop0: detected capacity change from 0 to 512
[  112.588186][ T9100] loop4: detected capacity change from 0 to 512
[  112.592762][ T9098] ext4 filesystem being mounted at /386/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  112.609313][ T9098] Process accounting resumed
[  112.615593][ T9098] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  112.638124][ T9100] ext4 filesystem being mounted at /358/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  112.712941][ T9112] loop0: detected capacity change from 0 to 512
[  112.721365][ T9112] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.1761: corrupted in-inode xattr: invalid ea_ino
[  112.735214][ T9112] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.1761: couldn't read orphan inode 15 (err -117)
[  112.782900][ T9118] loop3: detected capacity change from 0 to 1024
[  112.791211][ T9118] EXT4-fs: Ignoring removed nomblk_io_submit option
[  112.799608][ T9118] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  112.807903][ T9118] System zones: 0-1, 3-36
[  112.816250][ T9118] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.1763: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  112.861246][   T29] kauditd_printk_skb: 112 callbacks suppressed
[  112.861264][   T29] audit: type=1326 audit(1737756660.289:3453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9107 comm="syz.4.1760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62c75ccd29 code=0x7ffc0000
[  112.891045][   T29] audit: type=1326 audit(1737756660.289:3454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9107 comm="syz.4.1760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62c75ccd29 code=0x7ffc0000
[  112.914550][   T29] audit: type=1326 audit(1737756660.289:3455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9107 comm="syz.4.1760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f62c75ccd29 code=0x7ffc0000
[  112.956847][   T29] audit: type=1326 audit(1737756660.299:3456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9107 comm="syz.4.1760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62c75ccd29 code=0x7ffc0000
[  112.980471][   T29] audit: type=1326 audit(1737756660.299:3457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9107 comm="syz.4.1760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f62c75ccd29 code=0x7ffc0000
[  113.003930][   T29] audit: type=1326 audit(1737756660.299:3458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9107 comm="syz.4.1760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62c75ccd29 code=0x7ffc0000
[  113.027467][   T29] audit: type=1326 audit(1737756660.299:3459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9107 comm="syz.4.1760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62c75ccd29 code=0x7ffc0000
[  113.053471][   T29] audit: type=1326 audit(1737756660.389:3460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9127 comm="syz.3.1767" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf5da3cd29 code=0x7ffc0000
[  113.077195][   T29] audit: type=1326 audit(1737756660.389:3461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9127 comm="syz.3.1767" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf5da3cd29 code=0x7ffc0000
[  113.100751][   T29] audit: type=1326 audit(1737756660.389:3462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9127 comm="syz.3.1767" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7fcf5da3cd29 code=0x7ffc0000
[  113.126971][ T9136] loop5: detected capacity change from 0 to 512
[  113.137451][ T9136] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2240: inode #15: comm syz.5.1770: corrupted in-inode xattr: invalid ea_ino
[  113.156006][ T9136] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.1770: couldn't read orphan inode 15 (err -117)
[  113.246713][ T9147] loop5: detected capacity change from 0 to 512
[  113.274991][ T9147] ext4 filesystem being mounted at /111/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  113.286975][ T9147] Process accounting resumed
[  113.294207][ T9147] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  113.343531][ T9153] loop4: detected capacity change from 0 to 1024
[  113.346162][ T9151] loop3: detected capacity change from 0 to 4096
[  113.350392][ T9153] EXT4-fs: Ignoring removed nobh option
[  113.490238][ T9163] loop4: detected capacity change from 0 to 1024
[  113.521287][ T9163] EXT4-fs: Ignoring removed nomblk_io_submit option
[  113.543149][ T9163] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  113.562972][ T9163] System zones: 0-1, 3-36
[  113.575811][ T9163] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.1779: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  113.622384][ T9176] loop1: detected capacity change from 0 to 512
[  113.660449][ T9180] loop5: detected capacity change from 0 to 512
[  113.672446][ T9176] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.1783: corrupted in-inode xattr: invalid ea_ino
[  113.688464][ T9176] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.1783: couldn't read orphan inode 15 (err -117)
[  113.707231][ T9180] ext4 filesystem being mounted at /116/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  113.762826][ T9180] Process accounting resumed
[  113.768678][ T9180] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  113.844707][ T9196] Cannot find add_set index 0 as target
[  113.894982][ T9199] loop0: detected capacity change from 0 to 256
[  113.975306][ T9204] loop4: detected capacity change from 0 to 256
[  114.032009][ T9206] loop1: detected capacity change from 0 to 1024
[  114.052097][ T9206] EXT4-fs: Ignoring removed nomblk_io_submit option
[  114.072077][ T9206] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  114.082626][ T9206] System zones: 0-1, 3-36
[  114.098525][ T9206] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.1795: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  114.190211][ T9216] loop1: detected capacity change from 0 to 512
[  114.266841][ T9216] ext4 filesystem being mounted at /389/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  114.324719][ T9223] loop3: detected capacity change from 0 to 512
[  114.348817][ T9216] Process accounting resumed
[  114.373590][ T9216] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  114.410169][ T9223] ext4 filesystem being mounted at /295/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  114.452570][ T9223] Process accounting resumed
[  114.458836][ T9223] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  114.715263][ T9251] netlink: 'syz.5.1807': attribute type 10 has an invalid length.
[  114.733842][ T9251] bridge0: port 2(bridge_slave_1) entered disabled state
[  114.741062][ T9251] bridge0: port 1(bridge_slave_0) entered disabled state
[  114.770126][ T9251] bridge0: port 2(bridge_slave_1) entered blocking state
[  114.777279][ T9251] bridge0: port 2(bridge_slave_1) entered forwarding state
[  114.784824][ T9251] bridge0: port 1(bridge_slave_0) entered blocking state
[  114.792021][ T9251] bridge0: port 1(bridge_slave_0) entered forwarding state
[  114.823548][ T9251] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  114.879326][ T9258] FAULT_INJECTION: forcing a failure.
[  114.879326][ T9258] name failslab, interval 1, probability 0, space 0, times 0
[  114.892137][ T9258] CPU: 1 UID: 0 PID: 9258 Comm: syz.1.1808 Not tainted 6.13.0-syzkaller-05474-g113691ce9f32 #0
[  114.892163][ T9258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  114.892179][ T9258] Call Trace:
[  114.892185][ T9258]  <TASK>
[  114.892193][ T9258]  dump_stack_lvl+0xf2/0x150
[  114.892234][ T9258]  dump_stack+0x15/0x1a
[  114.892258][ T9258]  should_fail_ex+0x223/0x230
[  114.892295][ T9258]  should_failslab+0x8f/0xb0
[  114.892344][ T9258]  kmem_cache_alloc_node_noprof+0x59/0x320
[  114.892447][ T9258]  ? __alloc_skb+0x10b/0x310
[  114.892470][ T9258]  __alloc_skb+0x10b/0x310
[  114.892498][ T9258]  netlink_alloc_large_skb+0xad/0xe0
[  114.892533][ T9258]  netlink_sendmsg+0x3b4/0x6e0
[  114.892569][ T9258]  ? __pfx_netlink_sendmsg+0x10/0x10
[  114.892644][ T9258]  __sock_sendmsg+0x140/0x180
[  114.892681][ T9258]  ____sys_sendmsg+0x312/0x410
[  114.892763][ T9258]  __sys_sendmsg+0x19d/0x230
[  114.892885][ T9258]  __x64_sys_sendmsg+0x46/0x50
[  114.892911][ T9258]  x64_sys_call+0x2734/0x2dc0
[  114.892940][ T9258]  do_syscall_64+0xc9/0x1c0
[  114.892969][ T9258]  ? clear_bhb_loop+0x55/0xb0
[  114.893043][ T9258]  ? clear_bhb_loop+0x55/0xb0
[  114.893069][ T9258]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.893167][ T9258] RIP: 0033:0x7fd3f1cccd29
[  114.893182][ T9258] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.893202][ T9258] RSP: 002b:00007fd3f0337038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  114.893224][ T9258] RAX: ffffffffffffffda RBX: 00007fd3f1ee5fa0 RCX: 00007fd3f1cccd29
[  114.893240][ T9258] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000004
[  114.893254][ T9258] RBP: 00007fd3f0337090 R08: 0000000000000000 R09: 0000000000000000
[  114.893269][ T9258] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  114.893306][ T9258] R13: 0000000000000000 R14: 00007fd3f1ee5fa0 R15: 00007fffe3a01fe8
[  114.893326][ T9258]  </TASK>
[  114.912351][ T9262] loop5: detected capacity change from 0 to 512
[  115.162758][ T9262] ext4 filesystem being mounted at /119/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  115.182709][ T9262] Process accounting resumed
[  115.188980][ T9262] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  115.252981][ T9285] loop5: detected capacity change from 0 to 512
[  115.274184][ T9285] ext4 filesystem being mounted at /120/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  115.289244][ T9285] Process accounting resumed
[  115.304386][ T9285] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  115.476521][ T9326] loop3: detected capacity change from 0 to 512
[  115.588886][ T9326] ext4 filesystem being mounted at /297/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  115.657286][ T9326] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  115.729970][ T9344] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1822'.
[  115.740409][ T9338] loop0: detected capacity change from 0 to 8192
[  115.916780][ T9356] loop1: detected capacity change from 0 to 512
[  115.939753][ T9356] ext4 filesystem being mounted at /395/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  115.940513][ T9360] loop3: detected capacity change from 0 to 1024
[  115.952921][ T9356] Process accounting resumed
[  115.959619][ T9360] EXT4-fs: Ignoring removed nomblk_io_submit option
[  115.969122][ T9356] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  115.990655][ T9360] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  115.999202][ T9360] System zones: 0-1, 3-36
[  116.008579][ T9360] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.1830: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  116.066723][ T9369] loop1: detected capacity change from 0 to 4096
[  116.197692][ T9376] loop3: detected capacity change from 0 to 512
[  116.213296][ T9377] loop4: detected capacity change from 0 to 164
[  116.228711][ T9377] syz.4.1833: attempt to access beyond end of device
[  116.228711][ T9377] loop4: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  116.230520][ T9376] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.1843: corrupted in-inode xattr: invalid ea_ino
[  116.247280][ T9377] syz.4.1833: attempt to access beyond end of device
[  116.247280][ T9377] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[  116.280321][ T9376] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.1843: couldn't read orphan inode 15 (err -117)
[  116.394635][ T9383] loop4: detected capacity change from 0 to 1024
[  116.444756][ T9383] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  116.478548][ T9383] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2793: inode #15: comm syz.4.1835: corrupted in-inode xattr: bad magic number in in-inode xattr
[  116.567318][ T9390] loop5: detected capacity change from 0 to 128
[  116.579795][ T9392] loop4: detected capacity change from 0 to 512
[  116.599348][ T9392] ext4 filesystem being mounted at /380/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  116.617134][ T9392] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  116.663932][ T9390] loop5: detected capacity change from 0 to 512
[  116.672545][ T9390] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  116.708080][ T9390] EXT4-fs (loop5): 1 truncate cleaned up
[  116.807277][ T9405] loop0: detected capacity change from 0 to 512
[  116.844792][ T9405] ext4 filesystem being mounted at /403/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  116.857643][ T9405] Process accounting resumed
[  116.868868][ T9405] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  117.077659][ T9435] Cannot find add_set index 0 as target
[  117.219929][ T9440] loop5: detected capacity change from 0 to 8192
[  117.292862][ T9459] loop5: detected capacity change from 0 to 512
[  117.309894][ T9462] loop3: detected capacity change from 0 to 1024
[  117.322794][ T9462] EXT4-fs: Ignoring removed nomblk_io_submit option
[  117.341573][ T9459] ext4 filesystem being mounted at /129/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  117.345388][ T9462] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  117.360307][ T9462] System zones: 0-1, 3-36
[  117.365496][ T9459] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  117.371665][ T9462] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.1851: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  117.434618][ T9479] loop3: detected capacity change from 0 to 512
[  117.446412][ T9479] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.1853: corrupted in-inode xattr: invalid ea_ino
[  117.462390][ T9479] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.1853: couldn't read orphan inode 15 (err -117)
[  117.519376][ T9491] loop3: detected capacity change from 0 to 128
[  117.598546][ T9491] loop3: detected capacity change from 0 to 512
[  117.610666][ T9491] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  117.637240][ T9491] EXT4-fs (loop3): 1 truncate cleaned up
[  117.646998][ T9513] loop4: detected capacity change from 0 to 256
[  117.731618][ T9526] Cannot find add_set index 0 as target
[  117.748792][ T9529] loop3: detected capacity change from 0 to 512
[  117.772587][ T9529] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.1860: corrupted in-inode xattr: invalid ea_ino
[  117.787480][ T9529] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.1860: couldn't read orphan inode 15 (err -117)
[  117.895686][ T9551] loop4: detected capacity change from 0 to 1024
[  117.905150][ T9551] EXT4-fs: Ignoring removed nobh option
[  117.909472][ T9555] loop0: detected capacity change from 0 to 512
[  117.963896][ T9563] loop3: detected capacity change from 0 to 512
[  117.985263][ T9563] ext4 filesystem being mounted at /308/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  117.991347][ T9555] ext4 filesystem being mounted at /407/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  118.007865][ T9563] Process accounting resumed
[  118.015772][ T9570] loop4: detected capacity change from 0 to 512
[  118.028710][ T9563] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  118.034578][ T9554] Process accounting resumed
[  118.053553][ T9570] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.1865: corrupted in-inode xattr: invalid ea_ino
[  118.069542][   T29] kauditd_printk_skb: 162 callbacks suppressed
[  118.069559][   T29] audit: type=1326 audit(1737756665.499:3625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9572 comm="syz.1.1867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3f1cccd29 code=0x7ffc0000
[  118.100621][ T9573] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1867'.
[  118.103915][   T29] audit: type=1326 audit(1737756665.499:3626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9572 comm="syz.1.1867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3f1cccd29 code=0x7ffc0000
[  118.112642][ T9570] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.1865: couldn't read orphan inode 15 (err -117)
[  118.133050][   T29] audit: type=1326 audit(1737756665.499:3627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9572 comm="syz.1.1867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3f1cccd29 code=0x7ffc0000
[  118.168377][   T29] audit: type=1326 audit(1737756665.499:3628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9572 comm="syz.1.1867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3f1cccd29 code=0x7ffc0000
[  118.191943][   T29] audit: type=1326 audit(1737756665.499:3629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9572 comm="syz.1.1867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3f1cccd29 code=0x7ffc0000
[  118.215395][   T29] audit: type=1326 audit(1737756665.499:3630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9572 comm="syz.1.1867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd3f1cccd29 code=0x7ffc0000
[  118.238797][   T29] audit: type=1326 audit(1737756665.499:3631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9572 comm="syz.1.1867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3f1cccd29 code=0x7ffc0000
[  118.262332][   T29] audit: type=1326 audit(1737756665.499:3632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9572 comm="syz.1.1867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3f1cccd29 code=0x7ffc0000
[  118.285814][   T29] audit: type=1326 audit(1737756665.499:3633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9572 comm="syz.1.1867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fd3f1cccd29 code=0x7ffc0000
[  118.309271][   T29] audit: type=1326 audit(1737756665.509:3634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9574 comm="syz.1.1867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fd3f1cff5e5 code=0x7ffc0000
[  118.375039][ T9585] Cannot find add_set index 0 as target
[  118.427520][ T9579] loop1: detected capacity change from 0 to 8192
[  118.491175][ T9597] loop0: detected capacity change from 0 to 1024
[  118.498981][ T9597] EXT4-fs: Ignoring removed nobh option
[  118.507649][ T9598] loop1: detected capacity change from 0 to 256
[  118.559579][ T9603] loop4: detected capacity change from 0 to 512
[  118.615579][ T9605] loop3: detected capacity change from 0 to 512
[  118.645498][ T9603] ext4 filesystem being mounted at /391/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  118.651075][ T9609] loop0: detected capacity change from 0 to 4096
[  118.668477][ T9602] Process accounting resumed
[  118.675654][ T9605] ext4 filesystem being mounted at /310/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  118.690572][ T9605] Process accounting resumed
[  118.709025][ T9605] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  119.019515][ T9628] loop3: detected capacity change from 0 to 128
[  119.153218][ T9627] loop3: detected capacity change from 0 to 512
[  119.160524][ T9627] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  119.171629][ T9627] EXT4-fs (loop3): 1 truncate cleaned up
[  119.456919][ T9642] loop3: detected capacity change from 0 to 512
[  119.485722][ T9642] ext4 filesystem being mounted at /318/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  119.512650][ T9647] loop1: detected capacity change from 0 to 1024
[  119.514575][ T9641] Process accounting resumed
[  119.519791][ T9647] EXT4-fs: Ignoring removed nomblk_io_submit option
[  119.569248][ T9647] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  119.653151][ T9647] System zones: 0-1, 3-36
[  119.684100][ T9661] loop0: detected capacity change from 0 to 512
[  119.694129][ T9647] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.1892: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  119.719656][ T9661] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.1894: corrupted in-inode xattr: invalid ea_ino
[  119.720433][ T9664] loop4: detected capacity change from 0 to 512
[  119.752351][ T9661] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.1894: couldn't read orphan inode 15 (err -117)
[  119.803428][ T9664] ext4 filesystem being mounted at /395/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  119.842316][ T9664] Process accounting resumed
[  119.863273][ T9671] loop5: detected capacity change from 0 to 256
[  119.872323][ T9664] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  119.906470][ T9674] loop0: detected capacity change from 0 to 1024
[  119.922794][ T9674] EXT4-fs: Ignoring removed nobh option
[  120.003473][ T9678] loop3: detected capacity change from 0 to 4096
[  120.023410][ T9682] loop4: detected capacity change from 0 to 512
[  120.088175][ T9682] ext4 filesystem being mounted at /396/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  120.162241][ T9682] Process accounting resumed
[  120.175705][ T9682] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  120.253949][ T9695] loop1: detected capacity change from 0 to 512
[  120.286900][ T9695] ext4 filesystem being mounted at /405/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  120.313569][ T9695] Process accounting resumed
[  120.323697][ T9695] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  120.371254][ T9705] loop1: detected capacity change from 0 to 512
[  120.399442][ T9705] ext4 filesystem being mounted at /406/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  120.445300][ T9705] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  120.500175][ T9705] Process accounting resumed
[  120.564148][ T9716] loop4: detected capacity change from 0 to 128
[  120.598060][ T9718] loop1: detected capacity change from 0 to 256
[  120.629632][ T9720] Cannot find add_set index 0 as target
[  120.673296][ T9712] loop4: detected capacity change from 0 to 512
[  120.680528][ T9712] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  120.701932][ T9712] EXT4-fs (loop4): 1 truncate cleaned up
[  120.824559][ T9725] loop0: detected capacity change from 0 to 512
[  120.830638][ T9727] loop5: detected capacity change from 0 to 512
[  120.959773][ T9725] ext4 filesystem being mounted at /419/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  120.973818][ T9727] ext4 filesystem being mounted at /138/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  120.978888][ T9725] Process accounting resumed
[  121.000353][ T9727] Process accounting resumed
[  121.023872][ T9732] loop3: detected capacity change from 0 to 8192
[  121.039588][ T9727] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  121.107683][ T9725] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  121.275040][ T9751] loop4: detected capacity change from 0 to 512
[  121.285519][ T9751] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.1928: corrupted in-inode xattr: invalid ea_ino
[  121.299679][ T9751] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.1928: couldn't read orphan inode 15 (err -117)
[  121.402703][ T9758] loop4: detected capacity change from 0 to 4096
[  121.508371][ T9766] loop1: detected capacity change from 0 to 1024
[  121.529585][ T9760] loop5: detected capacity change from 0 to 8192
[  121.538071][ T9766] EXT4-fs: Ignoring removed nobh option
[  121.659832][ T9779] Cannot find add_set index 0 as target
[  122.158650][ T9790] loop0: detected capacity change from 0 to 512
[  122.167199][ T9790] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.1941: corrupted in-inode xattr: invalid ea_ino
[  122.184046][ T9790] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.1941: couldn't read orphan inode 15 (err -117)
[  122.321479][ T9801] x_tables: duplicate underflow at hook 2
[  122.371064][ T9812] Cannot find add_set index 0 as target
[  122.553716][ T9826] loop5: detected capacity change from 0 to 512
[  122.588495][ T9826] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2240: inode #15: comm syz.5.1953: corrupted in-inode xattr: invalid ea_ino
[  122.602317][ T9826] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.1953: couldn't read orphan inode 15 (err -117)
[  122.752157][ T9848] Cannot find add_set index 0 as target
[  123.102597][   T29] kauditd_printk_skb: 225 callbacks suppressed
[  123.102613][   T29] audit: type=1326 audit(1737756670.538:3860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9854 comm="syz.5.1965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cdf2ecd29 code=0x7ffc0000
[  123.132945][   T29] audit: type=1326 audit(1737756670.538:3861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9854 comm="syz.5.1965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cdf2ecd29 code=0x7ffc0000
[  123.156629][   T29] audit: type=1326 audit(1737756670.538:3862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9854 comm="syz.5.1965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5cdf2ecd29 code=0x7ffc0000
[  123.180125][   T29] audit: type=1326 audit(1737756670.538:3863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9854 comm="syz.5.1965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cdf2ecd29 code=0x7ffc0000
[  123.203857][   T29] audit: type=1326 audit(1737756670.538:3864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9854 comm="syz.5.1965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f5cdf2ecd29 code=0x7ffc0000
[  123.227331][   T29] audit: type=1326 audit(1737756670.538:3865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9854 comm="syz.5.1965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cdf2ecd29 code=0x7ffc0000
[  123.250839][   T29] audit: type=1326 audit(1737756670.538:3866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9854 comm="syz.5.1965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cdf2ecd29 code=0x7ffc0000
[  123.276970][   T29] audit: type=1326 audit(1737756670.618:3867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9859 comm="syz.5.1966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cdf2ecd29 code=0x7ffc0000
[  123.300581][   T29] audit: type=1326 audit(1737756670.618:3868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9859 comm="syz.5.1966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cdf2ecd29 code=0x7ffc0000
[  123.324055][   T29] audit: type=1326 audit(1737756670.618:3869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9859 comm="syz.5.1966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5cdf2ecd29 code=0x7ffc0000
[  123.409679][ T9869] loop1: detected capacity change from 0 to 512
[  123.432476][ T9869] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.1969: corrupted in-inode xattr: invalid ea_ino
[  123.444296][ T9868] loop5: detected capacity change from 0 to 8192
[  123.447801][ T9869] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.1969: couldn't read orphan inode 15 (err -117)
[  123.584206][ T9884] loop1: detected capacity change from 0 to 512
[  123.618180][ T9884] ext4 filesystem being mounted at /415/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  123.631560][ T9884] Process accounting resumed
[  123.637687][ T9884] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  123.704953][ T9892] Cannot find add_set index 0 as target
[  124.225105][ T9895] loop0: detected capacity change from 0 to 1024
[  124.231904][ T9895] EXT4-fs: Ignoring removed nomblk_io_submit option
[  124.240881][ T9895] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  124.249184][ T9895] System zones: 0-1, 3-36
[  124.257619][ T9895] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.1981: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  124.377844][ T9902] loop0: detected capacity change from 0 to 1024
[  124.384499][ T9902] EXT4-fs: Ignoring removed nobh option
[  124.390428][ T3662] ==================================================================
[  124.398537][ T3662] BUG: KCSAN: data-race in do_mpage_readpage / set_blocksize
[  124.405947][ T3662] 
[  124.408272][ T3662] write to 0xffff88810063042e of 1 bytes by task 9902 on cpu 1:
[  124.415993][ T3662]  set_blocksize+0x218/0x270
[  124.420608][ T3662]  sb_min_blocksize+0x63/0xe0
[  124.425307][ T3662]  ext4_fill_super+0x38b/0x3650
[  124.430168][ T3662]  get_tree_bdev_flags+0x29f/0x310
[  124.435287][ T3662]  get_tree_bdev+0x1f/0x30
[  124.439718][ T3662]  ext4_get_tree+0x1c/0x30
[  124.444141][ T3662]  vfs_get_tree+0x56/0x1e0
[  124.448564][ T3662]  do_new_mount+0x227/0x690
[  124.453080][ T3662]  path_mount+0x49b/0xb30
[  124.457429][ T3662]  __se_sys_mount+0x27f/0x2d0
[  124.462126][ T3662]  __x64_sys_mount+0x67/0x80
[  124.466737][ T3662]  x64_sys_call+0x2c84/0x2dc0
[  124.471433][ T3662]  do_syscall_64+0xc9/0x1c0
[  124.475947][ T3662]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.481852][ T3662] 
[  124.484177][ T3662] read to 0xffff88810063042e of 1 bytes by task 3662 on cpu 0:
[  124.491725][ T3662]  do_mpage_readpage+0x55/0xcb0
[  124.496591][ T3662]  mpage_readahead+0x1ad/0x2d0
[  124.501368][ T3662]  blkdev_readahead+0x1c/0x30
[  124.506075][ T3662]  read_pages+0xa0/0x540
[  124.510336][ T3662]  page_cache_ra_unbounded+0x2b8/0x310
[  124.515816][ T3662]  page_cache_sync_ra+0x252/0x670
[  124.520858][ T3662]  filemap_get_pages+0x2c1/0x10e0
[  124.525903][ T3662]  filemap_read+0x221/0x6a0
[  124.530431][ T3662]  blkdev_read_iter+0x20e/0x2c0
[  124.535290][ T3662]  vfs_read+0x5cc/0x6f0
[  124.539461][ T3662]  ksys_read+0xe8/0x1b0
[  124.543624][ T3662]  __x64_sys_read+0x42/0x50
[  124.548142][ T3662]  x64_sys_call+0x2874/0x2dc0
[  124.552919][ T3662]  do_syscall_64+0xc9/0x1c0
[  124.557435][ T3662]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.563348][ T3662] 
[  124.565672][ T3662] value changed: 0x0c -> 0x0a
[  124.570350][ T3662] 
[  124.572676][ T3662] Reported by Kernel Concurrency Sanitizer on:
[  124.578827][ T3662] CPU: 0 UID: 0 PID: 3662 Comm: udevd Not tainted 6.13.0-syzkaller-05474-g113691ce9f32 #0
[  124.588738][ T3662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  124.598798][ T3662] ==================================================================