last executing test programs:

5m35.322220691s ago: executing program 3 (id=1609):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x4e57, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x29, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='sys_enter\x00', r1, 0x0, 0x2}, 0x18)
msgsnd(0x0, 0x0, 0x0, 0x800)

5m35.256092371s ago: executing program 3 (id=1610):
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000008c0)=ANY=[@ANYBLOB="700021001200030200"/56, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000210001"], 0x70}}, 0x0)

5m35.255564791s ago: executing program 3 (id=1611):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x50)
pipe2$watch_queue(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x80)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, 0x0, &(0x7f0000000880))
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000780)={'macsec0\x00', <r3=>0x0})
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, 0x0, &(0x7f0000000140), 0x5}, 0x38)
r4 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000181100", @ANYRES32=r4], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
read(r6, &(0x7f0000000440)=""/247, 0x26)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r6, 0xc08c5335, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0xffffffff, 0x25dfdbfc, {0x0, 0x0, 0x74, r3, {0x0, 0xffe0}, {0x0, 0x4}}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
pipe(0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8000000, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r8}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)

5m34.408659968s ago: executing program 3 (id=1627):
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000000)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000300), 0x13f}}, 0x20)
r4 = socket$kcm(0x10, 0x100000000002, 0x4)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0xe, &(0x7f0000001100)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000340), 0xfffffffffffffe19, 0x0, 0xffffffffffffffff, 0x54, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x42)
setsockopt$sock_attach_bpf(r4, 0x1, 0x32, &(0x7f0000000040)=r5, 0x4)
sendmsg$kcm(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="39000000140081ae00002c000500015601618575e285af0180000000171300883795c04a31ba377a1b2cc32b38d3740000ffffffffffffffff", 0x39}], 0x1, 0x0, 0x0, 0xc00e}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000080)='9p_protocol_dump\x00', r3}, 0x10)
r6 = dup(r1)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETSF(r7, 0x5404, &(0x7f0000000000)={0x2, 0xffff, 0xfffffffb, 0x7, 0x1a, "f90a2d37c38eaa8ea4540acad9455fb5031af8"})
ioctl$TIOCPKT(r7, 0x5420, &(0x7f00000000c0)=0x1)
ioctl$TCSETS(r7, 0x5402, &(0x7f0000000080)={0x400, 0x1, 0x0, 0x10000, 0x16, "4415264a88b82c521113fb235902af2556c6b6"})
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
tee(0xffffffffffffffff, 0xffffffffffffffff, 0x8, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89100a, 0x0)
r8 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5)
ioctl$SG_IO(r8, 0x2285, 0x0)
writev(r8, &(0x7f0000000400)=[{&(0x7f0000000040)="aa1d484e243103000000f7c08bfcd111fbdf23ea32db0e8f21d5bc27bd8063067a0689fff2a41cfbf0e9d85e44751170", 0x30}], 0x1)
mount$bind(&(0x7f0000000000)='./file0\x00', &(0x7f0000000100)='./file0/file0\x00', 0x0, 0x100d002, 0x0)
mount$bind(&(0x7f0000000280)='./file0\x00', &(0x7f0000000480)='./file0/../file0\x00', 0x0, 0x21adc51, 0x0)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r6}})

5m34.252174888s ago: executing program 3 (id=1631):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
symlink(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000040)='./file0\x00')
utime(&(0x7f0000000340)='./file0\x00', 0x0)

5m34.251736688s ago: executing program 3 (id=1632):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00'})
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x48000)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = memfd_create(0x0, 0x1)
setsockopt$inet_mtu(r1, 0x0, 0xa, 0x0, 0x0)
ftruncate(r2, 0x40001)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x40200, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0x3)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2a, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xfffffffffffffdbd)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r4, 0x40047438, &(0x7f0000000180)=""/246)
dup3(r4, r3, 0x0)
writev(r4, &(0x7f0000000440)=[{&(0x7f0000000280)="c021", 0x1700}], 0x1)

5m34.247785647s ago: executing program 32 (id=1632):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00'})
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x48000)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = memfd_create(0x0, 0x1)
setsockopt$inet_mtu(r1, 0x0, 0xa, 0x0, 0x0)
ftruncate(r2, 0x40001)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x40200, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0x3)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2a, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xfffffffffffffdbd)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r4, 0x40047438, &(0x7f0000000180)=""/246)
dup3(r4, r3, 0x0)
writev(r4, &(0x7f0000000440)=[{&(0x7f0000000280)="c021", 0x1700}], 0x1)

1m23.116007361s ago: executing program 5 (id=5420):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=@newqdisc={0x40, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}, @TCA_RATE={0x6, 0x5, {0x4}}]}, 0x40}}, 0x0)

1m23.08261131s ago: executing program 5 (id=5422):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000020000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xe, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
r2 = socket$kcm(0x10, 0x2, 0x0)
recvmsg(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000000c0)=[{0x0}, {&(0x7f0000000600)=""/235, 0xeb}, {&(0x7f0000000540)=""/167, 0xa7}], 0x3}, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000000)=ANY=[@ANYBLOB="364000002600913e"], 0xfe33)
sched_setscheduler(0x0, 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)

1m22.98814378s ago: executing program 5 (id=5424):
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f0000000040)='./file2\x00', 0x0, &(0x7f0000000000)=ANY=[], 0xfd, 0x11f3, &(0x7f0000001b80)="$eJzs3E+LW1UYB+C3cWrHqfNHrdV2oQfduLo0s3AlSJApyASU2gitINw6NxpyTUJuGIiI1ZVbP4e4dCeIX2A2fgZ3s3HZhXiFpLVNTdUuOpH6PJv7kvf8cu8hEDjhnBy/8c2n/W6VdfNJNE6disYoIt1KkaIRd7y0P79eu77farf3rqR0uXW1+XpKaevlHz/4/LtXfpqcff/7rR/OxNHOh8e/7v5ydP7owvHvVz/pValXpcFwkvJ0Yzic5DfKIh30qn6W0rtlkVdF6g2qYrzQ75bD0Wia8sHB5sZoXFRVygfT1C+maTJMk/E05R/nvUHKsixtbgQPdPqfh3S+vVXXdURdn44no67r+qnYiLPxdGzGVnwZEc/Es/FcnIvn43y8EC/Ghdmok3h8AAAAAAAAAAAAAAAAAAAA+P/4u/P/27Hj/D8AAAAAAAAAAAAAAAAAAACcgPeuXd9vtdt7V1Jajyi/PuwcdubXeb/VjV6UUcSl2I7fYnb6f25eX367vXcpzezEV+XN2/mbh50nFvPN2d8J3M6vzXp38s15Pi3mz8TGvfnd2I5zy++/uzS/Hq+9ek8+i+34+aMYRhkHs3vfzX/RTOmtd9r35S/OxgEAAMDjIEt/Wrp+z7IH9ef5h/h94L719VpcXFvt3Imopp/187IsxovF+l9eUfz7ovGI3rkR/5EJKh7/YtXfTJyEux/6qp8EAAAAAAAAAACAh/GIdxGuxZKdZW+uZqoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB/sAPHAgAAAADC/K3T6NgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgqAAD//99CzUo=")
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f00000000c0)={[{@norecovery}, {@grpquota}, {@debug}, {@nombcache}]}, 0xee, 0x4b6, &(0x7f0000000980)="$eJzs3DtsHEUfAPD/rt95fPH3feGRkIAhPCIgduw8SEFDBBIFSEhQBFEZx4lCnBjFRiKRBYYilCgSPaJEokeiggYBBUKihR5FQshNAtWi3ds1Z/vOz4vtcL+fdOeZ3T3PzM7O7Xj+dw6gbQ3kT0nEroj4JSL21LILDxio/bg9NzP259zMWBJZ9uofSXHcrbmZserQ6nU7a5ksi+jJkz0Nyr3+RsToxMT4lTI/NH3p7aGpq9eOXLg0en78/PjlkVOnjh872H1y5ESxP1tn+9LyZ96uW/vfmzyw78XXb7w8dubGm99/kdd3V7m/vh3rki2t4UDt7C72UP702IYK21Z+zJ92121IOpsfPLgJFWL1OiIi766uIpdER/TN79sTL3y4hVUD7rAsy7JG9+eou29nwL9UYnxDm6ru9fnfv9Vjc2Ye28Pvz0XEkTIzNzN2e779nfNrB12L/r5tpYGIODP716f5I1qxDgEAsIKv8/nP043mf2ncW3fcf8oYSn9E/Dci/hcR/4+IvRFxT0Rx7H0Rl+5fY/mLIyRL5z/pzXU1bJXy+d+zRWwrn+XVz//K2V9f9HeUud1F+7uScxcmxo+W5+RwdPXk+eFlyvjm+Z8/rtK9i/bVz//yR15+NRcs63Gzc9EC3dnR6dEikWXZ+xtt/wcR+ztrsb3bC+a/SVRhnCQi9kXE/nWWceHJzw8027dy+5exTJxptbLPIp6oxTZnR3bVzkPZSfNdldTHJ/siYj4+OfzMyZETQ70xMX50qLoqlvrhp+uvNCt/Q+1vgbz/d0Tj/i/1J70RU1evXSzitVNrL+P6rx/VjekF0eW8/emXEWu+/ruT14p0d7nt3dHp6SvDEd3JS0VQa8H2kX9eW+Wr4/P2Hz7UqP1p8R5X1fiBiMgv4oMR8WAZxM377uGIeCQiDi3T/u9OP/pWs33N+7/ZqnxrVUNo2f6P+v5fe6Lj4rdfNSt/oIxBRnkeGvf/8SJ1uNwy//63jNVWcD3nDAAAAO42afEZ+CQdnE+n6eBg7TP8e2NHOjE5Nf3Uucl3Lp+tfVa+P7rSaqVrT9166HC5NlzlRxblj5Xrxp909BX5wbHJibNb3XhoczubjP/cbx1bXTvgjmtBHA24Sxn/0L6Mf2hfxj+0L+Mf2lej8b/RLxYAdwf3f2hfxfh/fHarqwFsgdXc/5PZdBNqAmw2839oS02/G59u6Cv/TRNJq39hw0T1vxM2o6yVE9X/otj00vvW/KrT5SXRu/Kpi7TFdc7nl9uiv7ZZonNJX0RnS4voabhrC9+UAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAWujvAAAA//+qNMrw")
chdir(&(0x7f0000000100)='./file0\x00')
setxattr$trusted_overlay_upper(&(0x7f00000003c0)='./file1\x00', &(0x7f00000001c0), &(0x7f0000000080)=ANY=[], 0x835, 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000200)='./file1\x00', &(0x7f00000001c0), 0x0, 0x835, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f0000000140)='2', 0x1, 0x8080c61)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x2, &(0x7f00000000c0), 0x7, 0x4be, &(0x7f00000005c0)="$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")
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb7020000080000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa2000000"], &(0x7f0000000000)='syzkaller\x00', 0x400000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x101)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc4042, 0x1ff)
sendfile(r2, r2, 0x0, 0xfffe80)
syz_open_dev$usbfs(0x0, 0x7, 0x2b4b00)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8fe00000000bfa200000000000007020000f8ffffffb703000008000000b70400008f2000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x31, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0xf, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

1m22.477348768s ago: executing program 5 (id=5429):
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='sys_enter\x00', r0}, 0x10)
pipe2(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RGETLOCK(r2, 0x0, 0xffffff6a)
pipe2(&(0x7f0000000240)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
tee(r1, r3, 0xfffffffffffffc01, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x80c, &(0x7f00000001c0)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@quota}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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")
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r4, 0x8933, &(0x7f0000002140)={'wg2\x00', <r5=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000600)=ANY=[@ANYBLOB="34000000680089042abd7020020000000a0000000000000008000500", @ANYRES32=r5, @ANYBLOB="14000600ff9ca047c71af1315ba505040009000000cb164450ac1414"], 0x34}}, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0)
r6 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r6, 0x4c04, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x2, 0x0, 0x0, 0x1c, 0x4, "ef359f413bb90152f7d6d1ce5d29c3ee5e5ca9000f7c41499dc2aac63a01000000000000004faa2ad9c084a003ea000000000000b600", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b900000000fffffffff2060000000000000200"})
truncate(&(0x7f0000000100)='./file1\x00', 0xc88)

1m22.119621597s ago: executing program 5 (id=5433):
r0 = socket$inet_icmp(0x2, 0x2, 0x1)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, 0x0, 0x0)

1m21.247834964s ago: executing program 5 (id=5440):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={0x0, r3}, 0x18)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r4, <r5=>0xffffffffffffffff}, &(0x7f00000006c0), &(0x7f0000000700)=r1}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000540)={{r5}, 0x0, &(0x7f0000000500)=r0}, 0x20)

1m21.242182644s ago: executing program 33 (id=5440):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={0x0, r3}, 0x18)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r4, <r5=>0xffffffffffffffff}, &(0x7f00000006c0), &(0x7f0000000700)=r1}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000540)={{r5}, 0x0, &(0x7f0000000500)=r0}, 0x20)

4.254228165s ago: executing program 1 (id=6473):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c00850000000f00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xe, 0x8e}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=<r3=>r1, @ANYBLOB="0000000004000000b703000008000040850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='kfree\x00', r2}, 0x18)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'team_slave_0\x00'})
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000001c0)=ANY=[@ANYRESOCT=r1, @ANYRES16, @ANYBLOB="010300000000000000001c0000000c00018008000100", @ANYRES32=r3], 0x20}, 0x1, 0x0, 0x0, 0x20040005}, 0x7c557955c329aded)
syz_open_procfs(0x0, 0x0)
open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
r6 = getpid()
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket(0x80000000000000a, 0x2, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)
fcntl$setstatus(r9, 0x4, 0x0)
pwritev2(0xffffffffffffffff, 0x0, 0x0, 0xd8c1, 0x1, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000300)={0x0, 0x8000}, 0x4)
socket$packet(0x11, 0x3, 0x300)
unshare(0x64000600)

3.948277304s ago: executing program 2 (id=6475):
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r0}, 0x18)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r1, 0x400, 0x0)
fsetxattr$trusted_overlay_redirect(r1, &(0x7f0000000040), 0x0, 0x0, 0x0)

2.92440678s ago: executing program 2 (id=6479):
ioperm(0x2, 0xf, 0x9e8f)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x4000, &(0x7f00000000c0), 0x5, 0xbb8, &(0x7f0000000280)="$eJzs3M1rXFUbAPDn3kymaZv3nfTlRawbIyItiNOkkmKLYCsVNy4E3QoN6aSETD9IIjVpFhP9B0RdC24EtSgu7LobRbdutN0qLoQisVEQ0cidjyQ2mTS1M70x/f3gzD3nnpl5nmcuM/cemJkA7luD2U0asT8iTiURpeb+NCKK9V5fRK1xv6XF+bFfF+fHklhefumnJJKIuLk4P9Z6rqS53dsc9EXE188m8b831sednp2bHK1WK1PN8aGZsxcOTc/OPTFxdvRM5Uzl3PCRp0YOjxwZOjrSsVp/++74lV8eef6H2u8f/nH557ffT+J49Dfn1tbRKYMxuPKarFWIiNFOB8tJT7OetXUmhds8KO1yUgAAtJWuuYZ7IErRE6sXb6X4/JtckwMAAAA6YrknYhkAAADY4RLrfwAAANjhWt8DuLk4P9Zq+X4j4d66cSIiBhr1LzVbY6YQtfq2L3ojYs/NJNb+rDVpPOyuDUbE99ePfpK16NLvkDdTW4iIBzc6/km9/oH6r7jX159GxFAH4g/eMv431X+8A/Hzrh+A+9PVE40T2frzX7py/RMbnP8KG5y7/om8z3+t67+lddd/q/X3tLn+e3GLMS598O7FdnNZ/U9fee7jVsviZ9u7KuoO3FiIeKiwUf3JSv1Jm/pPbTFG6c+LlXZzede//F7Egdi4/pZk8/8nOjQ+Ua0MNW43jLHw1chH7eLnXX92/Pe0qb/1/0/tjv+FLcZ45eTJT9ftvL7a3bz+9Mdi8nK9V2zueW10ZmZqOKKYvLB+/+HNc2ndp/UcWf0HH938/b9R/dlnQq35OmRrgYXmNhu/fkvMZy5f+qxdPq31X57H/3Sb47+2/i8L64//m1uM8dgXbx1sN7d2/Zu1LH5rLQwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALWlE9EeSllf6aVouR+yNiP/HnrR6fnrm8fHzr547nc1FDERvOj5RrQxFRKkxTrLxcL2/Oj58y/jJiNgXEe+UdtfH5bHz1dN5Fw8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMCKvRHRH0lajog0IpZKaVou550VAAAA0HEDeScAAAAAdJ31PwAAAOx81v8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB02b6Hr15LIqJ2bHe9ZYrNud5cMwO6Lc07ASA3PXknAOSmkHcCQG7ucI3vcgF2oOQ2831tZ3Z1PBcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAtq8D+69eSyKidmx3vWWKzbneXDMDui3NOwEgNz2bTRbuXR7AvectDvcva3wguc183+p9an+f2dW1nAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADYfvrrLUnLEVFs7iuXI/4TEQPRm4xPVCtDEfHfiPi21LsrGw/nnDMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACdNz07NzlarVamsk4azc7KHp3VTtJ4xWrbJR+du+wUY1uksU07eX8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACQh+nZucnRarUyNZ13JgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEDepmfnJker1cpUFzt51wgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQH7+CgAA//9gfgp0")
truncate(&(0x7f0000000900)='./file1\x00', 0xb73d)

2.721617439s ago: executing program 1 (id=6480):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x69, 0x7ffc0005}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000fb"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
set_tid_address(&(0x7f0000000080))

2.367479869s ago: executing program 1 (id=6483):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000"], 0x0, 0xfff, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r0, 0x0, 0x9135}, 0x18)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x3, 0x0, "7e12ddc5a89047bf00"})
r2 = syz_open_pts(r1, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000200)=0x2)
read(r2, 0x0, 0x2006)

2.220094488s ago: executing program 2 (id=6490):
symlink(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
readlink(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000001200)=""/4096, 0x1000)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4b, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff, @void, @value}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$unix(r1, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000080)="03", 0x1}], 0x1, &(0x7f0000000280)=ANY=[@ANYBLOB="14000000000000000100000001"], 0x18}, 0x0)
setsockopt$sock_int(r2, 0x1, 0x2a, &(0x7f0000000000), 0x4)
recvmmsg(r2, &(0x7f0000001140), 0x700, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
connect$inet6(0xffffffffffffffff, &(0x7f00000003c0)={0xa, 0x0, 0x0, @mcast2}, 0x1c)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
keyctl$set_timeout(0xf, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYRESHEX=r0], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
gettid()
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x5)
r6 = socket$inet(0x2, 0x3, 0x8)
setsockopt$inet_opts(r6, 0x0, 0x4, &(0x7f0000000080)="441f0803", 0x4)
getsockopt$inet_opts(r6, 0x0, 0x4, 0x0, &(0x7f0000000040))
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x800, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10)
pivot_root(&(0x7f0000000000)='.\x00', &(0x7f0000000080)='./file0/../file0\x00')
sendto$inet6(r3, 0x0, 0x0, 0x20000845, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)

1.496256175s ago: executing program 1 (id=6499):
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f0000000040)='./file2\x00', 0x0, &(0x7f0000000000)=ANY=[], 0xfd, 0x11f3, &(0x7f0000001b80)="$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")
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f00000000c0)={[{@norecovery}, {@grpquota}, {@debug}, {@nombcache}]}, 0xee, 0x4b6, &(0x7f0000000980)="$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")
chdir(0x0)
setxattr$trusted_overlay_upper(&(0x7f00000003c0)='./file1\x00', &(0x7f00000001c0), &(0x7f0000000080)=ANY=[], 0x835, 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000200)='./file1\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f0000000140)='2', 0x1, 0x8080c61)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x2, &(0x7f00000000c0), 0x7, 0x4be, &(0x7f00000005c0)="$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")
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB="0500000004000000080000000b"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb7020000080000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000000)='syzkaller\x00', 0x400000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x101)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc4042, 0x1ff)
sendfile(r2, r2, 0x0, 0xfffe80)
syz_open_dev$usbfs(0x0, 0x7, 0x2b4b00)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8fe00000000bfa200000000000007020000f8ffffffb703000008000000b70400008f2000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x31, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0xf, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

1.358340115s ago: executing program 6 (id=6503):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x2, &(0x7f0000002a80)=ANY=[@ANYRES8=0x0, @ANYRESHEX, @ANYRESDEC], 0xff, 0x313, &(0x7f0000000580)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1/file4\x00', 0x1c0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file1/file4/file6\x00', 0xc0)
renameat2(0xffffffffffffff9c, &(0x7f0000000580)='./file1/file4/file6\x00', 0xffffffffffffff9c, &(0x7f00000005c0)='./file0\x00', 0x8c)

1.303166945s ago: executing program 6 (id=6504):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x69, 0x7ffc0005}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000fb"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
set_tid_address(&(0x7f0000000080))

1.302698665s ago: executing program 4 (id=6506):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b7000000002000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xe, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
r2 = socket$kcm(0x10, 0x2, 0x0)
recvmsg(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000002640)=""/4096, 0x1000}, {&(0x7f0000000540)=""/167, 0xa7}], 0x2}, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000000)=ANY=[@ANYBLOB="364000002600913e"], 0xfe33)

1.270265645s ago: executing program 2 (id=6508):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000e00), 0x2aa481, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600002, 0x600002, 0x7, &(0x7f0000a00000/0x600000)=nil)
recvmmsg(r0, 0x0, 0x0, 0x2, 0x0)

1.152546304s ago: executing program 6 (id=6509):
socket$inet_udplite(0x2, 0x2, 0x88)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000002c0)='mm_page_alloc\x00', r1}, 0x10)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f0000000240)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xe}}, 0x10)
sendmmsg$inet(r2, &(0x7f0000000e80)=[{{&(0x7f0000000680)={0x2, 0x4e22, @multicast2}, 0x10, 0x0}}, {{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f00000006c0)="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", 0x131}, {&(0x7f0000000380)="c0aa02def6c5dbe7abfea14433bf5783cbb997f7a16d7caad59cad440f32b7f9132f928d1782e80389550a6083adcff9e901b43ef350ab2b1e8530ed8aef81965ccf989d4ca1dcb46c244b5f4a924b38ca1356b2b05f079dde815349824d5cfdbfa82d552246cde4104f2dc151df2a35c9bfbcdfe3a4664f197f290c02cc7f62cb021a1f23898e790cafc141abed04c40290ea9d75418e49f7d3fb9624dcb296eb8026dbe3348250e097642e7dfb6e5e72402063365a73e528ffdd68632bb09a28b90fceb9d3f9e5590038a40b25e0d61acceb2a454429a1b92ce5acbbf208701fee00e18c470b55402b1f90502822fd074936597dba3f3cb8", 0xf9}, {&(0x7f0000000800)="8cb00a8c7c408a1e7131682f9b4a25bb4b62cbd32b8cf2f0e205723bf5a11729cbeb22193bcdaf6a13612b7bed657a0008d9797ce760cfaa3ce237b8d9281719199a96e60f9e2c1a886159019315a74bc5c44cd276be320e12e95b8ae8eef1b899f4b73f3721c8b8eb73438a4a1c30a4cb7b18b00f03fbd346c93cfae759d56513e61137d45c6977d2d844785be4d527896767ace9f604fee757d131fccdb255240373eeda36a6838907f79e299166c6afaf98a53024bbee5994a9812e658e5da4ef", 0xc2}, {&(0x7f0000000540)="33391f900d7b655c0d96e0fb3228068f310988d1378aeffd55352a0b8cda00a47b396ef14471e6adca2f4d8b9c923c251b479ebc56f0ac3a38a2be27634b8a8da7c6e39c0e12d517c357d47d254aa93d0926b88619881bfac2a960c177f6afef3e0e673479e7ea16b09c04c9fd54ddaad2cc632444c19560657c19687f6268d7e69d7e4bab42403e527ec8309ea2b91daa8b04b4049ebe6ff00705d5cce381a648bfbd0d7d789c29d4edd007898a332478f1d29110d43b2bb799db7968295cbf42baf4e776", 0xc5}, {&(0x7f0000000000)="6941d8ee6ac6c7be822b6361d48d826cab8f", 0x12}, {&(0x7f0000000140)="ab28eefbb3a9093e0b95266bcd5ede5679a6f49257e02879d8f104f309e67349ca72239f7e7e6ad80167cf5b26982666d7414032e4e7f783765cdbe430f9ee61f37b6337e851bc8e9cc7272b69aeea49b4b7746bde2fc6c8a32dc686c01f04d7b99b926f98fe155dba7574a9acc7712303077644368f283152e86a580ef81876aab98478a340ed9f7dd811c3c5b73e5426b7a022d8eae6720005b8", 0x9b}], 0x6}}, {{0x0, 0x0, &(0x7f00000027c0)=[{&(0x7f0000000ac0)="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", 0x13f}, {&(0x7f0000000a00)="b3fe109a0a0e5fbf3f4e8ce314c9de", 0xf}], 0x2}}], 0x3, 0xc044)
connect$inet(r2, &(0x7f0000000040)={0x2, 0x0, @empty}, 0x10)
sendmmsg$inet(r2, &(0x7f0000001380)=[{{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000100)="ee", 0x1}], 0x1}}], 0x1, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3, 0x0, 0x4}, 0x18)
r4 = socket$key(0xf, 0x3, 0x2)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x40000000}, 0x0)
sendmsg$key(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={0x2, 0xa, 0x0, 0x0, 0x2}, 0x10}}, 0x0)

898.032174ms ago: executing program 6 (id=6512):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
unshare(0x1100000)
execveat(0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x0)

875.222963ms ago: executing program 2 (id=6513):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000060000000000000000008500000007000000850000000e00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000012c0)={&(0x7f0000000040)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000000300)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@errors_remount}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x2}}, {@stripe={'stripe', 0x3d, 0x2004000}}, {@max_batch_time={'max_batch_time', 0x3d, 0x2}}, {@max_batch_time={'max_batch_time', 0x3d, 0x4}}]}, 0x3, 0x43a, &(0x7f0000000780)="$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")
creat(&(0x7f0000000240)='./file1\x00', 0xd) (fail_nth: 3)

874.446633ms ago: executing program 4 (id=6514):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='sched_switch\x00', r0}, 0x10)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e000000200000000000000000000000000000000000000000a000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000400000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000044000500000000000000000000000000000000000000000033"], 0xfc}}, 0x0)

812.039963ms ago: executing program 6 (id=6516):
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x2400)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000200)='./file0\x00', 0x800, &(0x7f0000000180)=ANY=[@ANYRES8=0x0, @ANYRES16, @ANYRES64, @ANYRES16=0x0], 0x1, 0x36e, &(0x7f0000000c00)="$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")
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuacct.usage_sys\x00', 0x275a, 0x0)
r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
fallocate(r0, 0x0, 0x0, 0x1000f4)
r1 = open(0x0, 0x66842, 0x0)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0xffffffe4}], 0x1, 0x1400, 0x0, 0x0)

786.253483ms ago: executing program 4 (id=6518):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r1 = socket$kcm(0x2, 0x5, 0x84)
sendmsg$inet(r1, &(0x7f00000002c0)={&(0x7f0000000040)={0x2, 0x0, @multicast2}, 0x10, &(0x7f0000001400)}, 0x64)
setsockopt$sock_attach_bpf(r1, 0x84, 0x1e, &(0x7f0000000000), 0x10)
close_range(r0, 0xffffffffffffffff, 0x0)

668.851153ms ago: executing program 6 (id=6520):
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f0000000040)='./file2\x00', 0x0, &(0x7f0000000000)=ANY=[], 0xfd, 0x11f3, &(0x7f0000001b80)="$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")
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f00000000c0)={[{@norecovery}, {@grpquota}, {@debug}, {@nombcache}]}, 0xee, 0x4b6, &(0x7f0000000980)="$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")
chdir(&(0x7f0000000100)='./file0\x00')
setxattr$trusted_overlay_upper(&(0x7f00000003c0)='./file1\x00', &(0x7f00000001c0), &(0x7f0000000080)=ANY=[], 0x835, 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000200)='./file1\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f0000000140)='2', 0x1, 0x8080c61)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x2, &(0x7f00000000c0), 0x7, 0x4be, &(0x7f00000005c0)="$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")
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB="0500000004000000080000000b"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000000)='syzkaller\x00', 0x400000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x101)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc4042, 0x1ff)
sendfile(r2, r2, 0x0, 0xfffe80)
syz_open_dev$usbfs(0x0, 0x7, 0x2b4b00)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8fe00000000bfa200000000000007020000f8ffffffb703000008000000b70400008f2000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x31, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0xf, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

668.608653ms ago: executing program 4 (id=6521):
ioctl$SCSI_IOCTL_BENCHMARK_COMMAND(0xffffffffffffffff, 0x3)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
fsetxattr$system_posix_acl(r0, &(0x7f0000000040)='system.posix_acl_access\x00', &(0x7f0000000200)=ANY=[], 0x24, 0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1}, 0x18)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r2 = socket(0x2000000000000021, 0x2, 0x10000000000002)
connect$rxrpc(r2, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x8, @multicast2}}, 0x24)
sendmmsg(r2, &(0x7f0000000180)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x18, 0xe000}, 0x5}], 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x18)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = mq_open(&(0x7f0000000200)='\xe6\xb3\xf8ww\x85M\x1f\xc3\x17\xc9K\xe8\xbe\x1b\xba{^\xa7\x98Sd6@\xad', 0x42, 0x0, 0x0)
mq_notify(r4, &(0x7f00000000c0)={0x0, 0x0, 0x0, @tid=0xffffffffffffffff})
mq_timedsend(r4, 0x0, 0x0, 0x0, 0x0)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000000)={'netdevsim0\x00', &(0x7f0000000400)=@ethtool_flash={0x33, 0x0, '.\x00'}})
getpid()
r5 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r5, 0x10f, 0x87, &(0x7f0000000300)={0x43, 0x3, 0x3, 0x3}, 0x10)
socket$tipc(0x1e, 0x2, 0x0)

545.382062ms ago: executing program 0 (id=6523):
socket$inet_udplite(0x2, 0x2, 0x88)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000002c0)='mm_page_alloc\x00', r1}, 0x10)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f0000000240)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xe}}, 0x10)
sendmmsg$inet(r2, &(0x7f0000000e80)=[{{&(0x7f0000000680)={0x2, 0x4e22, @multicast2}, 0x10, 0x0}}, {{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f00000006c0)="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", 0x131}, {&(0x7f0000000380)="c0aa02def6c5dbe7abfea14433bf5783cbb997f7a16d7caad59cad440f32b7f9132f928d1782e80389550a6083adcff9e901b43ef350ab2b1e8530ed8aef81965ccf989d4ca1dcb46c244b5f4a924b38ca1356b2b05f079dde815349824d5cfdbfa82d552246cde4104f2dc151df2a35c9bfbcdfe3a4664f197f290c02cc7f62cb021a1f23898e790cafc141abed04c40290ea9d75418e49f7d3fb9624dcb296eb8026dbe3348250e097642e7dfb6e5e72402063365a73e528ffdd68632bb09a28b90fceb9d3f9e5590038a40b25e0d61acceb2a454429a1b92ce5acbbf208701fee00e18c470b55402b1f90502822fd074936597dba3f3cb8", 0xf9}, {&(0x7f0000000800)="8cb00a8c7c408a1e7131682f9b4a25bb4b62cbd32b8cf2f0e205723bf5a11729cbeb22193bcdaf6a13612b7bed657a0008d9797ce760cfaa3ce237b8d9281719199a96e60f9e2c1a886159019315a74bc5c44cd276be320e12e95b8ae8eef1b899f4b73f3721c8b8eb73438a4a1c30a4cb7b18b00f03fbd346c93cfae759d56513e61137d45c6977d2d844785be4d527896767ace9f604fee757d131fccdb255240373eeda36a6838907f79e299166c6afaf98a53024bbee5994a9812e658e5da4ef", 0xc2}, {&(0x7f0000000540)="33391f900d7b655c0d96e0fb3228068f310988d1378aeffd55352a0b8cda00a47b396ef14471e6adca2f4d8b9c923c251b479ebc56f0ac3a38a2be27634b8a8da7c6e39c0e12d517c357d47d254aa93d0926b88619881bfac2a960c177f6afef3e0e673479e7ea16b09c04c9fd54ddaad2cc632444c19560657c19687f6268d7e69d7e4bab42403e527ec8309ea2b91daa8b04b4049ebe6ff00705d5cce381a648bfbd0d7d789c29d4edd007898a332478f1d29110d43b2bb799db7968295cbf42baf4e776", 0xc5}, {&(0x7f0000000000)="6941d8ee6ac6c7be822b6361d48d826cab8f", 0x12}, {&(0x7f0000000140)="ab28eefbb3a9093e0b95266bcd5ede5679a6f49257e02879d8f104f309e67349ca72239f7e7e6ad80167cf5b26982666d7414032e4e7f783765cdbe430f9ee61f37b6337e851bc8e9cc7272b69aeea49b4b7746bde2fc6c8a32dc686c01f04d7b99b926f98fe155dba7574a9acc7712303077644368f283152e86a580ef81876aab98478a340ed9f7dd811c3c5b73e5426b7a022d8eae6720005b8", 0x9b}], 0x6}}, {{0x0, 0x0, &(0x7f00000027c0)=[{&(0x7f0000000ac0)="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", 0x13f}, {&(0x7f0000000a00)="b3fe109a0a0e5fbf3f4e8ce314c9de", 0xf}], 0x2}}], 0x3, 0xc044)
connect$inet(r2, &(0x7f0000000040)={0x2, 0x0, @empty}, 0x10)
sendmmsg$inet(r2, &(0x7f0000001380)=[{{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000100)="ee", 0x1}], 0x1}}], 0x1, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3, 0x0, 0x4}, 0x18)
r4 = socket$key(0xf, 0x3, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$key(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={0x2, 0xa, 0x0, 0x0, 0x2}, 0x10}}, 0x0)

441.283672ms ago: executing program 2 (id=6524):
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/time\x00')
r0 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000040)={0x0, <r1=>0x0}, &(0x7f00000000c0)=0xc)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={0x28, 0x18, 0x1, 0x0, 0x0, {0x2}, [@typed={0x8, 0x800, 0x0, 0x0, @u32=0x4}, @nested={0xc, 0x8, 0x0, 0x1, [@typed={0x8, 0xc, 0x0, 0x0, @uid=r1}]}]}, 0x28}}, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}, 0x1000)
lchown(&(0x7f00000001c0)='./file0\x00', r1, r2)
setreuid(0xee01, r1)
r3 = socket(0x2, 0x80805, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r6}, 0x10)
r7 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r7}, &(0x7f0000bbdffc))
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r8=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
splice(r8, 0x0, r10, 0x0, 0x39000, 0x0)
splice(r9, 0x0, r8, 0x0, 0x408cd, 0x0)
write$binfmt_elf64(r10, 0x0, 0xfffffe3e)
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r11=>0x0}, &(0x7f0000001080)=0x8)
setsockopt$inet_sctp_SCTP_RTOINFO(r3, 0x84, 0x0, &(0x7f0000000240)={r11, 0x3, 0x0, 0xfffffff1}, 0x10)
r12 = ioctl$TUNGETDEVNETNS(0xffffffffffffffff, 0x54e3, 0x0)
fcntl$addseals(r5, 0x409, 0x8)
ioctl$FICLONERANGE(r3, 0x4020940d, &(0x7f0000000000)={{r12}, 0x0, 0x6})

437.975242ms ago: executing program 0 (id=6525):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b7000000002000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xe, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
r2 = socket$kcm(0x10, 0x2, 0x0)
recvmsg(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000002640)=""/4096, 0x1000}, {&(0x7f0000000540)=""/167, 0xa7}], 0x2}, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000000)=ANY=[@ANYBLOB="364000002600913e"], 0xfe33)

397.425232ms ago: executing program 1 (id=6526):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
truncate(&(0x7f0000000180)='./file0\x00', 0x8fff5)

308.408822ms ago: executing program 0 (id=6527):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'vxcan1\x00'})
sendmsg$ETHTOOL_MSG_PAUSE_SET(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000080)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000010651fbe347b2c"], 0x20}}, 0x0)

270.978441ms ago: executing program 4 (id=6528):
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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")
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x83)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
mkdir(&(0x7f0000005740)='./file0\x00', 0x3b)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f3bbb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68000000000000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80af740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48bc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd3170400000085be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9f0390a6f01e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5eaff07000000000000b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df902aeec50e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f000000000100000000d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7167d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b909006f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f1400010000ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1b0100448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f949170ef8cb9c13c12138116bca7a8c59363799be7005c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2c74664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677eff7c5c568a89d6e36b165c39132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae1676384ff799783f55d7e5a1a0920300000000000000d98440c355927629f2bcf9dc405a18ca0264400abf38e90000000000000000008faf2cddffbfa69bf32eb718e88ec75603ed7c7a8825ce0f27a114bd7a4ab74d0c7b8d90ccc1c3ca6620def782e24d75aed70eb676437f62677a69e0994cd82d72e95493c830fe9515329f40b7025326dec33a527c5d999298eaa3690fd0d38a02fc6e0bc16dbe19f353027edc014411e1138087221492f5d5e5cc9d0a1acd3f581eda9a807aa0e609f935f626d96351e0ff116686cbeb8939feecd5dac8cf45101942cc7cec21b7f337df5431bcf7e504b7c427f70a10e1cb8993a661306a0576b638a0171e6800b5b35589d676eb30ed1a72e8f7b057eb281c4504195635b6b285ebaba019913a2520e43ed790231f047f7d3789c10ae7d724929f77aec1d33d9587580268ee14396f71e7ef588cb2560d6bd0795a9b97281229eb16de086553469fad7214ffc3e416f8b8e442dce1d37f9b1c88a5d8a8d9f2fe45bd8df213ecb4194c8554aea13cadcd502e51f6fec80418e772b5bd8d0228949058038b185909ee542848680f9ad43f4057d676d5e21ae3d7e0e4a28c04f112a94707f032b35915e42993ff148291b8babe026646ee41905992db217561b90811c4702a14f312fe5d2ae7257db6be1034cc1c346b76a853ce274bf0435e18f7e86c660c18c80f30505dd4cf2ae2a1893b83c62d61bfeadc1f913e4cab2b897e096dd3fe3525090410cb23bab36cdf200a36014032cf6e5121803c5a0c4a273a19f340163fc6265425d513a1294b8439276394945d94a589708e32a1cb30f1fa4b2f08e01dc5e8c6732e6dc59b5c8cb400000000000000592c9b68f09c8f5ddb20b4ae08b4d9df548e5ed6cd47b91a4bea8b6aa52edf64576aef1e43f2958437fdc20fbbd0d4e13d8cce1193b2f9b4f107e25af178d056e1b1e40bd75b013f7484fae0bc447b1ffaf34819fe3ad1a634c94345e26e1e68dec08723a37b05d1594a66a4718a51d4d6"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000340)=ANY=[], &(0x7f0000000200)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, @void, @value}, 0x94)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r1}, 0x0, &(0x7f00000005c0)}, 0x20)
creat(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x40)
link(&(0x7f0000001240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f00000007c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

253.581201ms ago: executing program 0 (id=6529):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='sched_switch\x00', r0}, 0x10)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e000000200000000000000000000000000000000000000000a000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000400000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000044000500000000000000000000000000000000000000000033"], 0xfc}}, 0x0)

221.852631ms ago: executing program 1 (id=6530):
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r5}, 0x0, &(0x7f00000002c0)}, 0x20)
r6 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_MCAST_MSFILTER(r6, 0x29, 0x30, &(0x7f0000000b00)={0xb, {{0xa, 0x0, 0x0, @mcast2}}, 0x0, 0x2, [{{0xa, 0x0, 0x0, @remote}}, {{0xa, 0x0, 0x0, @remote}}]}, 0x190)
syz_emit_ethernet(0x3e, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000001000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000010000000000000000000300000a5c000000060a0b0400000000000000000200000030000480200001800e000100636f6e6e6c696d69740000000c00028008000140000000000c000180080001006f7366000900010073797a30000000000900020073797a3200"], 0x1f4}}, 0x0)

89.687211ms ago: executing program 0 (id=6531):
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x2400)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000200)='./file0\x00', 0x800, &(0x7f0000000180)=ANY=[@ANYRES8=0x0, @ANYRES16, @ANYRES64, @ANYRES16=0x0], 0x1, 0x36e, &(0x7f0000000c00)="$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")
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuacct.usage_sys\x00', 0x275a, 0x0)
r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
fallocate(r0, 0x0, 0x0, 0x1000f4)
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x66842, 0x0)
pwritev2(r1, 0x0, 0x0, 0x1400, 0x0, 0x0)

61.778681ms ago: executing program 4 (id=6532):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'vxcan1\x00'})
sendmsg$ETHTOOL_MSG_PAUSE_SET(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000080)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000010651fbe347b2c"], 0x20}}, 0x0) (fail_nth: 1)

0s ago: executing program 0 (id=6533):
socket$inet_udp(0x2, 0x2, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f00000003c0), 0x40000, 0x0)
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x421000, 0x0)
fcntl$setstatus(r0, 0x4, 0x2400)
r1 = dup3(r0, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000c80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000080)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x38, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_MEDIA_GET(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000200)=ANY=[@ANYRES16=r4, @ANYBLOB="01000000000000eaeadf6b7382000000030000005800018044000400200001000a00000000000000fe800000000000000000000000000013f8000000200002000a00000000000000ff020000000000000000000000000001000000000d0001007564703a7379"], 0x6c}}, 0x0)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000200)='./file0\x00', 0x800, &(0x7f0000000180)=ANY=[@ANYRES8=0x0, @ANYRES16, @ANYRES64=<r5=>0xffffffffffffffff, @ANYRES16=0x0], 0x1, 0x36e, &(0x7f0000000c00)="$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")
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000a40)={0x11, 0x5, &(0x7f00000008c0)=ANY=[@ANYRES8=r5, @ANYRES64=r1, @ANYRES16=r5], &(0x7f0000000900)='GPL\x00', 0x6ce1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpu.stat\x00', 0x275a, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000380)='xprtrdma_cb_setup\x00', r6, 0x0, 0x7}, 0x27362a66a97c59cc)
prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f0000000180)={0x7, &(0x7f0000000300)=[{0x8, 0xf, 0x7, 0x2}, {0xff, 0x29, 0xa3, 0x3}, {0x1000, 0x1, 0xb, 0x1}, {0x8, 0x0, 0x3, 0x4}, {0x0, 0x1, 0x9, 0x4}, {0x7ff, 0x0, 0x2, 0x4}, {0x920e, 0x7, 0x1, 0x9}]})
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuacct.usage_sys\x00', 0x275a, 0x0)
sync_file_range(r7, 0x4000000008, 0x3ff, 0x7)
r8 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x20081e, &(0x7f0000000040), 0x1, 0x4ef, &(0x7f00000003c0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
fallocate(r8, 0x0, 0x0, 0x1000f4)
r9 = open(&(0x7f00000005c0)='./bus\x00', 0x66842, 0x0)
pwritev2(r9, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0xffffffe4}], 0x1, 0x1400, 0x0, 0x0)

kernel console output (not intermixed with test programs):

28
[  401.774186][T22188] loop2: detected capacity change from 0 to 512
[  401.792500][T22190] bio_check_eod: 2 callbacks suppressed
[  401.792519][T22190] syz.4.5907: attempt to access beyond end of device
[  401.792519][T22190] loop4: rw=2049, sector=128, nr_sectors = 1 limit=128
[  401.811692][T22190] Buffer I/O error on dev loop4, logical block 128, lost async page write
[  401.813457][T22188] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.5906: corrupted in-inode xattr: invalid ea_ino
[  401.821664][T22190] syz.4.5907: attempt to access beyond end of device
[  401.821664][T22190] loop4: rw=2049, sector=129, nr_sectors = 912 limit=128
[  401.838077][T22188] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.5906: couldn't read orphan inode 15 (err -117)
[  401.860218][T22188] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  401.911770][T12767] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  401.927401][T22199] loop4: detected capacity change from 0 to 8192
[  401.950990][T22199] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  402.440220][T22215] loop4: detected capacity change from 0 to 8192
[  402.447756][T22215] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  402.528067][T22218] loop6: detected capacity change from 0 to 128
[  402.549707][T22218] FAT-fs (loop6): error, corrupted directory (invalid i_start)
[  402.557553][T22218] FAT-fs (loop6): Filesystem has been set read-only
[  403.209702][T22238] loop1: detected capacity change from 0 to 1024
[  403.246539][T22238] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  403.377466][ T6476] bridge_slave_1: left allmulticast mode
[  403.381602][   T29] kauditd_printk_skb: 32 callbacks suppressed
[  403.381621][   T29] audit: type=1326 audit(15799234.115:21273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22245 comm="syz.4.5926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f197fb4cda9 code=0x7ffc0000
[  403.383164][ T6476] bridge_slave_1: left promiscuous mode
[  403.398188][T22247] loop4: detected capacity change from 0 to 1024
[  403.412946][ T6476] bridge0: port 2(bridge_slave_1) entered disabled state
[  403.424436][   T29] audit: type=1326 audit(15799234.135:21274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22245 comm="syz.4.5926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f197fb4cda9 code=0x7ffc0000
[  403.455218][   T29] audit: type=1326 audit(15799234.135:21275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22245 comm="syz.4.5926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=187 compat=0 ip=0x7f197fb4cda9 code=0x7ffc0000
[  403.478741][   T29] audit: type=1326 audit(15799234.135:21276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22245 comm="syz.4.5926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f197fb4cda9 code=0x7ffc0000
[  403.502175][   T29] audit: type=1326 audit(15799234.135:21277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22245 comm="syz.4.5926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f197fb4cda9 code=0x7ffc0000
[  403.525647][   T29] audit: type=1326 audit(15799234.135:21278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22245 comm="syz.4.5926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f197fb4cda9 code=0x7ffc0000
[  403.549104][   T29] audit: type=1326 audit(15799234.135:21279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22245 comm="syz.4.5926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f197fb4cde3 code=0x7ffc0000
[  403.572594][   T29] audit: type=1326 audit(15799234.135:21280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22245 comm="syz.4.5926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f197fb4b85f code=0x7ffc0000
[  403.596129][   T29] audit: type=1326 audit(15799234.135:21281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22245 comm="syz.4.5926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f197fb4ce37 code=0x7ffc0000
[  403.619478][   T29] audit: type=1326 audit(15799234.135:21282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22245 comm="syz.4.5926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f197fb4b710 code=0x7ffc0000
[  403.703607][ T6476] bridge_slave_0: left allmulticast mode
[  403.709391][ T6476] bridge_slave_0: left promiscuous mode
[  403.715108][ T6476] bridge0: port 1(bridge_slave_0) entered disabled state
[  403.727112][T22247] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  403.743755][T13721] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  403.947357][ T6476] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  403.980294][ T6476] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  404.059666][ T6476] bond0 (unregistering): Released all slaves
[  404.173770][T22278] loop2: detected capacity change from 0 to 512
[  404.186943][T22280] loop1: detected capacity change from 0 to 128
[  404.269311][T22278] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  404.279359][T12297] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  404.307515][T22278] EXT4-fs (loop2): invalid journal inode
[  404.332987][T22280] FAT-fs (loop1): error, corrupted directory (invalid i_start)
[  404.340636][T22280] FAT-fs (loop1): Filesystem has been set read-only
[  404.351301][T22278] EXT4-fs (loop2): can't get journal size
[  404.359810][T22278] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a056c119, mo2=0002]
[  404.370931][T22278] System zones: 1-12, 13-13
[  404.376727][T22278] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.5933: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  404.400838][ T6476] tipc: Left network mode
[  404.461676][T22278] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.5933: couldn't read orphan inode 15 (err -117)
[  404.477228][T22278] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  404.560343][ T6476] hsr_slave_0: left promiscuous mode
[  404.581467][ T6476] hsr_slave_1: left promiscuous mode
[  404.608797][ T6476] veth1_macvtap: left promiscuous mode
[  404.621063][ T6476] veth0_macvtap: left promiscuous mode
[  404.642596][ T6476] veth1_vlan: left promiscuous mode
[  404.665891][T22292] loop1: detected capacity change from 0 to 8192
[  404.668588][ T6476] veth0_vlan: left promiscuous mode
[  404.687465][T22292] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  405.314542][ T6476] team0 (unregistering): Port device team_slave_1 removed
[  405.324066][ T6476] team0 (unregistering): Port device team_slave_0 removed
[  405.331755][  T291] smc: removing ib device syz!
[  405.370014][T22294] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  405.420718][T12767] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  405.462514][T22097] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  405.484566][T22294] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  405.554850][T22097] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  405.559313][T22323] netlink: 68 bytes leftover after parsing attributes in process `syz.1.5940'.
[  405.587891][T22294] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  405.631024][T22097] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  405.651357][T22097] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  405.654700][T22331] loop1: detected capacity change from 0 to 1024
[  405.688352][T22294] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  405.703111][T22331] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  405.776999][T22294] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  405.807723][T22294] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  405.822723][T22294] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  405.834579][T22294] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  405.891498][T22097] 8021q: adding VLAN 0 to HW filter on device bond0
[  405.922105][T22358] loop4: detected capacity change from 0 to 8192
[  405.928274][T22097] 8021q: adding VLAN 0 to HW filter on device team0
[  405.937928][T22358] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  405.957343][   T28] bridge0: port 1(bridge_slave_0) entered blocking state
[  405.964497][   T28] bridge0: port 1(bridge_slave_0) entered forwarding state
[  406.004761][  T781] bridge0: port 2(bridge_slave_1) entered blocking state
[  406.011892][  T781] bridge0: port 2(bridge_slave_1) entered forwarding state
[  406.148806][T13721] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  406.209696][T22097] 8021q: adding VLAN 0 to HW filter on device batadv0
[  406.343527][T22097] veth0_vlan: entered promiscuous mode
[  406.352173][T22097] veth1_vlan: entered promiscuous mode
[  406.367656][T22097] veth0_macvtap: entered promiscuous mode
[  406.377274][T22097] veth1_macvtap: entered promiscuous mode
[  406.389553][T22097] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  406.400086][T22097] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  406.410031][T22097] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  406.420517][T22097] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  406.431699][T22097] batman_adv: batadv0: Interface activated: batadv_slave_0
[  406.439376][T22383] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.5948'.
[  406.449158][T22382] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.5948'.
[  406.480058][T22097] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  406.490616][T22097] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  406.500525][T22097] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  406.510991][T22097] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  406.543144][T22097] batman_adv: batadv0: Interface activated: batadv_slave_1
[  406.557966][T22097] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  406.566827][T22097] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  406.575641][T22097] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  406.584580][T22097] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  406.623622][T22389] loop1: detected capacity change from 0 to 2048
[  406.663575][T22391] loop6: detected capacity change from 0 to 2048
[  406.680600][T22389] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  406.701481][T22391] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  406.830466][T22407] netlink: 68 bytes leftover after parsing attributes in process `syz.2.5956'.
[  406.892322][T22416] netlink: 68 bytes leftover after parsing attributes in process `syz.1.5950'.
[  406.959392][T22424] netlink: 68 bytes leftover after parsing attributes in process `syz.6.5952'.
[  406.963124][T22422] SELinux: syz.2.5958 (22422) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  407.020569][T22389] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  407.057595][T22389] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  407.070157][T22389] EXT4-fs (loop1): This should not happen!! Data will be lost
[  407.070157][T22389] 
[  407.079979][T22389] EXT4-fs (loop1): Total free blocks count 0
[  407.086019][T22389] EXT4-fs (loop1): Free/Dirty block details
[  407.091949][T22389] EXT4-fs (loop1): free_blocks=2415919104
[  407.097755][T22389] EXT4-fs (loop1): dirty_blocks=8192
[  407.103133][T22389] EXT4-fs (loop1): Block reservation details
[  407.109186][T22389] EXT4-fs (loop1): i_reserved_data_blocks=512
[  407.143325][T22403] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  407.166605][T22438] netlink: 68 bytes leftover after parsing attributes in process `syz.0.5965'.
[  407.364398][T22391] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  407.397033][T22391] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  407.409692][T22391] EXT4-fs (loop6): This should not happen!! Data will be lost
[  407.409692][T22391] 
[  407.419463][T22391] EXT4-fs (loop6): Total free blocks count 0
[  407.425484][T22391] EXT4-fs (loop6): Free/Dirty block details
[  407.431395][T22391] EXT4-fs (loop6): free_blocks=2415919104
[  407.437213][T22391] EXT4-fs (loop6): dirty_blocks=8192
[  407.442510][T22391] EXT4-fs (loop6): Block reservation details
[  407.448580][T22391] EXT4-fs (loop6): i_reserved_data_blocks=512
[  407.479597][T22405] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  407.707440][T22452] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  407.717576][T22452] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  407.759132][T22465] netlink: 16402 bytes leftover after parsing attributes in process `syz.6.5972'.
[  407.829046][T22462] netlink: 16402 bytes leftover after parsing attributes in process `syz.6.5972'.
[  408.196989][    T8] IPVS: starting estimator thread 0...
[  408.221821][T22479] loop4: detected capacity change from 0 to 512
[  408.230052][T22479] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  408.243138][T22479] EXT4-fs (loop4): invalid journal inode
[  408.249258][T22479] EXT4-fs (loop4): can't get journal size
[  408.257564][T22479] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a056c119, mo2=0002]
[  408.265769][T22479] System zones: 1-12, 13-13
[  408.270757][T22479] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.5977: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  408.288166][T22479] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.5977: couldn't read orphan inode 15 (err -117)
[  408.300240][T22477] IPVS: using max 2016 ests per chain, 100800 per kthread
[  408.311097][T22479] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  408.328915][T22476] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  408.404180][T22476] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  408.447767][T12297] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  408.458227][   T29] kauditd_printk_skb: 215 callbacks suppressed
[  408.458244][   T29] audit: type=1400 audit(15799239.195:21498): avc:  denied  { setopt } for  pid=22484 comm="syz.1.5978" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  408.529641][T22476] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  408.542256][T22487] loop4: detected capacity change from 0 to 8192
[  408.542650][T22487] vfat: Unknown parameter '0177777777777777777777718446744073709551615'
[  408.641476][T22476] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  408.738908][   T29] audit: type=1326 audit(15799239.475:21499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22496 comm="syz.1.5982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf2f07cda9 code=0x7ffc0000
[  408.762532][   T29] audit: type=1326 audit(15799239.475:21500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22496 comm="syz.1.5982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf2f07cda9 code=0x7ffc0000
[  408.786033][   T29] audit: type=1326 audit(15799239.475:21501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22496 comm="syz.1.5982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdf2f07cda9 code=0x7ffc0000
[  408.809568][   T29] audit: type=1326 audit(15799239.475:21502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22496 comm="syz.1.5982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf2f07cda9 code=0x7ffc0000
[  408.833149][   T29] audit: type=1326 audit(15799239.475:21503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22496 comm="syz.1.5982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf2f07cda9 code=0x7ffc0000
[  408.857460][   T29] audit: type=1326 audit(15799239.505:21504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22496 comm="syz.1.5982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdf2f07cda9 code=0x7ffc0000
[  408.881112][   T29] audit: type=1326 audit(15799239.505:21505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22496 comm="syz.1.5982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf2f07cda9 code=0x7ffc0000
[  408.904670][   T29] audit: type=1326 audit(15799239.505:21506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22496 comm="syz.1.5982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf2f07cda9 code=0x7ffc0000
[  408.928259][   T29] audit: type=1326 audit(15799239.505:21507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22496 comm="syz.1.5982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fdf2f07cda9 code=0x7ffc0000
[  409.018152][T22476] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  409.068082][T22476] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  409.113103][T22476] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  409.136783][T22476] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  409.301363][T22531] loop2: detected capacity change from 0 to 256
[  409.318786][T22531] msdos: Unknown parameter 'gidN'
[  409.331056][T22506] chnl_net:caif_netlink_parms(): no params data found
[  409.339897][T22531] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5994'.
[  409.421751][T22506] bridge0: port 1(bridge_slave_0) entered blocking state
[  409.429038][T22506] bridge0: port 1(bridge_slave_0) entered disabled state
[  409.436804][T22506] bridge_slave_0: entered allmulticast mode
[  409.443428][T22506] bridge_slave_0: entered promiscuous mode
[  409.457455][T22506] bridge0: port 2(bridge_slave_1) entered blocking state
[  409.464612][T22506] bridge0: port 2(bridge_slave_1) entered disabled state
[  409.478898][T22506] bridge_slave_1: entered allmulticast mode
[  409.485586][T22506] bridge_slave_1: entered promiscuous mode
[  409.526675][T22506] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  409.542191][T22545] loop6: detected capacity change from 0 to 2048
[  409.547920][T22506] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  409.576353][T22545] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  409.576499][T22506] team0: Port device team_slave_0 added
[  409.597642][T22506] team0: Port device team_slave_1 added
[  409.636280][T22506] batman_adv: batadv0: Adding interface: batadv_slave_0
[  409.643294][T22506] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  409.669455][T22506] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  409.711697][T22506] batman_adv: batadv0: Adding interface: batadv_slave_1
[  409.718799][T22506] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  409.745351][T22506] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  409.792780][T22552] FAULT_INJECTION: forcing a failure.
[  409.792780][T22552] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  409.805997][T22552] CPU: 0 UID: 0 PID: 22552 Comm: syz.1.5997 Not tainted 6.13.0-syzkaller-09760-g69e858e0b8b2 #0
[  409.806031][T22552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  409.806047][T22552] Call Trace:
[  409.806055][T22552]  <TASK>
[  409.806063][T22552]  dump_stack_lvl+0xf2/0x150
[  409.806096][T22552]  dump_stack+0x15/0x1a
[  409.806120][T22552]  should_fail_ex+0x24a/0x260
[  409.806158][T22552]  should_fail+0xb/0x10
[  409.806193][T22552]  should_fail_usercopy+0x1a/0x20
[  409.806312][T22552]  _copy_from_user+0x1c/0xa0
[  409.806338][T22552]  memdup_user_nul+0x65/0xd0
[  409.806368][T22552]  sel_write_enforce+0x9d/0x2e0
[  409.806402][T22552]  vfs_writev+0x3fa/0x880
[  409.806438][T22552]  ? __pfx_sel_write_enforce+0x10/0x10
[  409.806521][T22552]  ? mutex_lock+0xd/0x40
[  409.806621][T22552]  do_writev+0xf4/0x220
[  409.806658][T22552]  __x64_sys_writev+0x45/0x50
[  409.806687][T22552]  x64_sys_call+0x1fab/0x2dc0
[  409.806719][T22552]  do_syscall_64+0xc9/0x1c0
[  409.806820][T22552]  ? clear_bhb_loop+0x55/0xb0
[  409.806854][T22552]  ? clear_bhb_loop+0x55/0xb0
[  409.806888][T22552]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  409.806977][T22552] RIP: 0033:0x7fdf2f07cda9
[  409.806999][T22552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  409.807017][T22552] RSP: 002b:00007fdf2d6e1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  409.807039][T22552] RAX: ffffffffffffffda RBX: 00007fdf2f295fa0 RCX: 00007fdf2f07cda9
[  409.807055][T22552] RDX: 0000000000000001 RSI: 0000000020000040 RDI: 0000000000000006
[  409.807070][T22552] RBP: 00007fdf2d6e1090 R08: 0000000000000000 R09: 0000000000000000
[  409.807085][T22552] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  409.807099][T22552] R13: 0000000000000000 R14: 00007fdf2f295fa0 R15: 00007ffd50556d78
[  409.807127][T22552]  </TASK>
[  409.879795][T22545] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  410.016024][T22545] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  410.028578][T22545] EXT4-fs (loop6): This should not happen!! Data will be lost
[  410.028578][T22545] 
[  410.038319][T22545] EXT4-fs (loop6): Total free blocks count 0
[  410.044553][T22545] EXT4-fs (loop6): Free/Dirty block details
[  410.050458][T22545] EXT4-fs (loop6): free_blocks=2415919104
[  410.056252][T22545] EXT4-fs (loop6): dirty_blocks=8192
[  410.061561][T22545] EXT4-fs (loop6): Block reservation details
[  410.067573][T22545] EXT4-fs (loop6): i_reserved_data_blocks=512
[  410.092184][T22549] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  410.095802][T22506] hsr_slave_0: entered promiscuous mode
[  410.113727][T22506] hsr_slave_1: entered promiscuous mode
[  410.124516][T22506] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  410.132155][T22506] Cannot create hsr debugfs directory
[  410.204561][T22570] loop2: detected capacity change from 0 to 512
[  410.286804][T22506] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  410.325560][T22506] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  410.364364][T22570] Invalid logical block size (-1)
[  410.386710][T22506] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  410.547406][T22506] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  410.592766][T22588] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  410.645958][T22588] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  410.687923][T22597] loop1: detected capacity change from 0 to 128
[  410.731641][T22597] syz.1.6011: attempt to access beyond end of device
[  410.731641][T22597] loop1: rw=2049, sector=128, nr_sectors = 1 limit=128
[  410.745140][T22597] Buffer I/O error on dev loop1, logical block 128, lost async page write
[  410.757343][T22588] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  410.757481][T22597] syz.1.6011: attempt to access beyond end of device
[  410.757481][T22597] loop1: rw=2049, sector=129, nr_sectors = 912 limit=128
[  410.828283][T22506] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  410.840270][T22506] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  410.851766][T22506] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  410.859447][T22603] loop1: detected capacity change from 0 to 2048
[  410.860920][T22506] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  410.876287][T22603] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  410.950412][T22588] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  410.982819][T22506] 8021q: adding VLAN 0 to HW filter on device bond0
[  410.995321][T22506] 8021q: adding VLAN 0 to HW filter on device team0
[  411.007469][ T6476] bridge0: port 1(bridge_slave_0) entered blocking state
[  411.014610][ T6476] bridge0: port 1(bridge_slave_0) entered forwarding state
[  411.047681][  T291] bridge0: port 2(bridge_slave_1) entered blocking state
[  411.054814][  T291] bridge0: port 2(bridge_slave_1) entered forwarding state
[  411.064136][T22607] __nla_validate_parse: 2 callbacks suppressed
[  411.064151][T22607] netlink: 68 bytes leftover after parsing attributes in process `syz.1.6014'.
[  411.166577][T22615] loop6: detected capacity change from 0 to 128
[  411.204068][T22615] FAT-fs (loop6): error, corrupted directory (invalid i_start)
[  411.211757][T22615] FAT-fs (loop6): Filesystem has been set read-only
[  411.223802][T22603] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  411.242185][T22603] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  411.254825][T22603] EXT4-fs (loop1): This should not happen!! Data will be lost
[  411.254825][T22603] 
[  411.264538][T22603] EXT4-fs (loop1): Total free blocks count 0
[  411.270533][T22603] EXT4-fs (loop1): Free/Dirty block details
[  411.276462][T22603] EXT4-fs (loop1): free_blocks=2415919104
[  411.282195][T22603] EXT4-fs (loop1): dirty_blocks=8192
[  411.287572][T22603] EXT4-fs (loop1): Block reservation details
[  411.293573][T22603] EXT4-fs (loop1): i_reserved_data_blocks=512
[  411.310598][T22588] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  411.331385][T22506] 8021q: adding VLAN 0 to HW filter on device batadv0
[  411.385741][T22606] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  411.420726][T22620] 9pnet_fd: Insufficient options for proto=fd
[  411.428835][T22588] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  411.449854][T22588] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  411.484039][T22588] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  411.658646][T22506] veth0_vlan: entered promiscuous mode
[  411.668958][T22506] veth1_vlan: entered promiscuous mode
[  411.725023][T22629] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  411.743596][T22629] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  411.757180][T22629] loop6: detected capacity change from 0 to 512
[  411.792012][    T8] IPVS: starting estimator thread 0...
[  411.800109][T22506] veth0_macvtap: entered promiscuous mode
[  411.808098][T22506] veth1_macvtap: entered promiscuous mode
[  411.820091][T22506] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  411.830695][T22506] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  411.840615][T22506] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  411.851109][T22506] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  411.860974][T22506] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  411.871434][T22506] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  411.883443][T22506] batman_adv: batadv0: Interface activated: batadv_slave_0
[  411.894812][T22660] IPVS: using max 1968 ests per chain, 98400 per kthread
[  411.902547][T22506] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  411.913046][T22506] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  411.923002][T22506] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  411.933464][T22506] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  411.943364][T22506] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  411.953985][T22506] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  411.965999][T22506] batman_adv: batadv0: Interface activated: batadv_slave_1
[  411.975946][T22506] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  411.984849][T22506] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  411.993586][T22506] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  412.002384][T22506] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  412.099397][T22668] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6028'.
[  412.139793][T22672] FAULT_INJECTION: forcing a failure.
[  412.139793][T22672] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  412.152984][T22672] CPU: 0 UID: 0 PID: 22672 Comm: syz.4.6029 Not tainted 6.13.0-syzkaller-09760-g69e858e0b8b2 #0
[  412.153066][T22672] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  412.153081][T22672] Call Trace:
[  412.153088][T22672]  <TASK>
[  412.153097][T22672]  dump_stack_lvl+0xf2/0x150
[  412.153131][T22672]  dump_stack+0x15/0x1a
[  412.153211][T22672]  should_fail_ex+0x24a/0x260
[  412.153252][T22672]  should_fail+0xb/0x10
[  412.153287][T22672]  should_fail_usercopy+0x1a/0x20
[  412.153434][T22672]  _copy_to_user+0x20/0xa0
[  412.153463][T22672]  simple_read_from_buffer+0xa0/0x110
[  412.153490][T22672]  proc_fail_nth_read+0xf9/0x140
[  412.153573][T22672]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  412.153601][T22672]  vfs_read+0x19b/0x6f0
[  412.153626][T22672]  ? m_stop+0x15/0x20
[  412.153656][T22672]  ? traverse+0x397/0x3c0
[  412.153729][T22672]  ? xfd_validate_state+0x46/0xf0
[  412.153756][T22672]  ksys_read+0xe8/0x1b0
[  412.153798][T22672]  __x64_sys_read+0x42/0x50
[  412.153825][T22672]  x64_sys_call+0x2874/0x2dc0
[  412.153858][T22672]  do_syscall_64+0xc9/0x1c0
[  412.153921][T22672]  ? clear_bhb_loop+0x55/0xb0
[  412.153952][T22672]  ? clear_bhb_loop+0x55/0xb0
[  412.153982][T22672]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  412.154008][T22672] RIP: 0033:0x7f1413dfb7bc
[  412.154023][T22672] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  412.154098][T22672] RSP: 002b:00007f1412461030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  412.154121][T22672] RAX: ffffffffffffffda RBX: 00007f1414015fa0 RCX: 00007f1413dfb7bc
[  412.154136][T22672] RDX: 000000000000000f RSI: 00007f14124610a0 RDI: 0000000000000004
[  412.154227][T22672] RBP: 00007f1412461090 R08: 0000000000000000 R09: 0000000000000000
[  412.154239][T22672] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  412.154253][T22672] R13: 0000000000000000 R14: 00007f1414015fa0 R15: 00007ffc8495a138
[  412.154278][T22672]  </TASK>
[  412.409539][T22677] SELinux: syz.0.6031 (22677) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  412.497092][T22684] loop4: detected capacity change from 0 to 8192
[  412.530884][T22684] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  412.572733][T22690] loop2: detected capacity change from 0 to 128
[  412.619569][T22688] loop1: detected capacity change from 0 to 8192
[  412.634603][T22690] FAT-fs (loop2): error, corrupted directory (invalid i_start)
[  412.642226][T22690] FAT-fs (loop2): Filesystem has been set read-only
[  412.651954][T22688] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  412.784096][T22701] serio: Serial port pts0
[  413.444678][T22710] SELinux: syz.4.6043 (22710) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  413.653784][   T29] kauditd_printk_skb: 105 callbacks suppressed
[  413.653798][   T29] audit: type=1326 audit(15799244.385:21613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22714 comm="syz.0.6046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3abb4cda9 code=0x7ffc0000
[  413.683571][   T29] audit: type=1326 audit(15799244.385:21614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22714 comm="syz.0.6046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3abb4cda9 code=0x7ffc0000
[  413.716749][   T29] audit: type=1326 audit(15799244.445:21615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22714 comm="syz.0.6046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=235 compat=0 ip=0x7fd3abb4cda9 code=0x7ffc0000
[  413.740277][   T29] audit: type=1326 audit(15799244.445:21616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22714 comm="syz.0.6046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3abb4cda9 code=0x7ffc0000
[  413.763716][   T29] audit: type=1326 audit(15799244.445:21617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22714 comm="syz.0.6046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3abb4cda9 code=0x7ffc0000
[  413.788749][   T29] audit: type=1326 audit(15799244.455:21618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22714 comm="syz.0.6046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fd3abb4cda9 code=0x7ffc0000
[  413.812050][   T29] audit: type=1326 audit(15799244.455:21619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22714 comm="syz.0.6046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3abb4cda9 code=0x7ffc0000
[  413.835545][   T29] audit: type=1326 audit(15799244.455:21620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22714 comm="syz.0.6046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3abb4cda9 code=0x7ffc0000
[  413.869472][T22723] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.6047'.
[  413.888894][T22721] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.6047'.
[  414.109632][T22742] SELinux: syz.2.6054 (22742) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  414.139508][T22736] loop4: detected capacity change from 0 to 8192
[  414.284201][T22736] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  414.303512][T22750] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  414.310074][T22750] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  414.317724][T22750] vhci_hcd vhci_hcd.0: Device attached
[  414.348196][T22753] vhci_hcd vhci_hcd.0: pdev(0) rhport(1) sockfd(10)
[  414.354910][T22753] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  414.362539][T22753] vhci_hcd vhci_hcd.0: Device attached
[  414.589175][   T29] audit: type=1400 audit(15799245.295:21621): avc:  denied  { read } for  pid=22749 comm="syz.0.6057" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  414.653403][T22761] loop1: detected capacity change from 0 to 1024
[  414.690988][T22761] EXT4-fs (loop1): couldn't mount as ext3 due to feature incompatibilities
[  414.708346][T22751] vhci_hcd: connection closed
[  414.708454][T22754] vhci_hcd: connection closed
[  414.708629][  T291] vhci_hcd: stop threads
[  414.722238][  T291] vhci_hcd: release socket
[  414.726696][  T291] vhci_hcd: disconnect device
[  414.731875][  T291] vhci_hcd: stop threads
[  414.736177][  T291] vhci_hcd: release socket
[  414.740618][  T291] vhci_hcd: disconnect device
[  414.763070][T22761] loop1: detected capacity change from 0 to 512
[  414.799929][T22761] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  414.855012][T13721] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  414.956746][T22775] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.6061'.
[  414.977891][T22774] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.6061'.
[  415.011402][T22778] loop4: detected capacity change from 0 to 1024
[  415.051860][   T29] audit: type=1326 audit(15799245.745:21622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22776 comm="syz.4.6063" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1413dfcda9 code=0x7ffc0000
[  415.065952][T22781] loop1: detected capacity change from 0 to 128
[  415.087105][T22778] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  415.124029][T22787] loop2: detected capacity change from 0 to 128
[  415.169795][T22787] FAT-fs (loop2): error, corrupted directory (invalid i_start)
[  415.177509][T22787] FAT-fs (loop2): Filesystem has been set read-only
[  415.316263][T22800] loop6: detected capacity change from 0 to 128
[  415.326555][T22802] loop1: detected capacity change from 0 to 512
[  415.371535][T22802] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  415.422729][T22812] loop6: detected capacity change from 0 to 512
[  415.436345][T22812] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  415.472110][T22812] EXT4-fs (loop6): invalid journal inode
[  415.478357][T22812] EXT4-fs (loop6): can't get journal size
[  415.479094][T13721] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  415.506314][T22812] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a056c119, mo2=0002]
[  415.515398][T22812] System zones: 1-12, 13-13
[  415.520126][T22812] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2240: inode #15: comm syz.6.6075: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  415.554750][T22803] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  415.563485][T22812] EXT4-fs error (device loop6): ext4_orphan_get:1394: comm syz.6.6075: couldn't read orphan inode 15 (err -117)
[  415.582994][T22506] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  415.592180][T22803] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  415.597457][T22812] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  415.676625][T22820] loop4: detected capacity change from 0 to 8192
[  415.685423][T22820] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  415.708307][T20602] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  415.748615][T22825] program syz.1.6079 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  415.769737][T22829] FAULT_INJECTION: forcing a failure.
[  415.769737][T22829] name failslab, interval 1, probability 0, space 0, times 0
[  415.782397][T22829] CPU: 0 UID: 0 PID: 22829 Comm: syz.6.6080 Not tainted 6.13.0-syzkaller-09760-g69e858e0b8b2 #0
[  415.782423][T22829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  415.782507][T22829] Call Trace:
[  415.782514][T22829]  <TASK>
[  415.782521][T22829]  dump_stack_lvl+0xf2/0x150
[  415.782550][T22829]  dump_stack+0x15/0x1a
[  415.782572][T22829]  should_fail_ex+0x24a/0x260
[  415.782604][T22829]  should_failslab+0x8f/0xb0
[  415.782659][T22829]  kmem_cache_alloc_noprof+0x52/0x320
[  415.782712][T22829]  ? skb_clone+0x154/0x1f0
[  415.782786][T22829]  skb_clone+0x154/0x1f0
[  415.782861][T22829]  __netlink_deliver_tap+0x2bd/0x4f0
[  415.782904][T22829]  netlink_unicast+0x64a/0x670
[  415.782937][T22829]  netlink_sendmsg+0x5cc/0x6e0
[  415.783073][T22829]  ? __pfx_netlink_sendmsg+0x10/0x10
[  415.783146][T22829]  __sock_sendmsg+0x140/0x180
[  415.783207][T22829]  ____sys_sendmsg+0x312/0x410
[  415.783313][T22829]  __sys_sendmsg+0x19d/0x230
[  415.783363][T22829]  __x64_sys_sendmsg+0x46/0x50
[  415.783397][T22829]  x64_sys_call+0x2734/0x2dc0
[  415.783423][T22829]  do_syscall_64+0xc9/0x1c0
[  415.783481][T22829]  ? clear_bhb_loop+0x55/0xb0
[  415.783516][T22829]  ? clear_bhb_loop+0x55/0xb0
[  415.783544][T22829]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  415.783571][T22829] RIP: 0033:0x7f8702adcda9
[  415.783586][T22829] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  415.783605][T22829] RSP: 002b:00007f8701147038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  415.783677][T22829] RAX: ffffffffffffffda RBX: 00007f8702cf5fa0 RCX: 00007f8702adcda9
[  415.783693][T22829] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[  415.783708][T22829] RBP: 00007f8701147090 R08: 0000000000000000 R09: 0000000000000000
[  415.783723][T22829] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  415.783737][T22829] R13: 0000000000000000 R14: 00007f8702cf5fa0 R15: 00007ffd528e3328
[  415.783754][T22829]  </TASK>
[  416.001189][T22836] loop6: detected capacity change from 0 to 1024
[  416.012177][T22836] EXT4-fs: dax option not supported
[  416.275410][T22847] loop2: detected capacity change from 0 to 1024
[  416.527225][T22847] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  416.621456][   T59] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 19971 - 0
[  416.631422][   T59] netdevsim netdevsim1 eth3 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  416.756106][   T59] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 19971 - 0
[  416.766158][   T59] netdevsim netdevsim1 eth2 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  416.767120][T22858] loop4: detected capacity change from 0 to 1024
[  416.799852][T22858] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  416.825875][   T59] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 19971 - 0
[  416.835833][   T59] netdevsim netdevsim1 eth1 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  416.897231][   T59] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 19971 - 0
[  416.907183][   T59] netdevsim netdevsim1 eth0 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  417.064018][T22867] loop6: detected capacity change from 0 to 2048
[  417.093429][   T59] bridge_slave_1: left allmulticast mode
[  417.099138][   T59] bridge_slave_1: left promiscuous mode
[  417.104849][   T59] bridge0: port 2(bridge_slave_1) entered disabled state
[  417.132097][T12767] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  417.141740][   T59] bridge_slave_0: left allmulticast mode
[  417.142628][T22867] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  417.147542][   T59] bridge_slave_0: left promiscuous mode
[  417.147671][   T59] bridge0: port 1(bridge_slave_0) entered disabled state
[  417.204034][T22506] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  417.204137][T22874] netlink: 16 bytes leftover after parsing attributes in process `syz.2.6090'.
[  417.338478][T22882] netlink: 68 bytes leftover after parsing attributes in process `syz.6.6089'.
[  417.406649][   T59] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  417.417256][   T59] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  417.437140][   T59] bond0 (unregistering): Released all slaves
[  417.457068][T22852] chnl_net:caif_netlink_parms(): no params data found
[  417.507862][   T59] hsr_slave_0: left promiscuous mode
[  417.524669][   T59] hsr_slave_1: left promiscuous mode
[  417.533608][   T59] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  417.541176][   T59] batman_adv: batadv0: Removing interface: batadv_slave_0
[  417.571817][   T59] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  417.579390][   T59] batman_adv: batadv0: Removing interface: batadv_slave_1
[  417.611932][   T59] veth1_macvtap: left promiscuous mode
[  417.631027][   T59] veth0_macvtap: left promiscuous mode
[  417.651357][   T59] veth1_vlan: left promiscuous mode
[  417.668372][   T59] veth0_vlan: left promiscuous mode
[  417.703205][T22867] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  417.719115][T22867] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  417.731664][T22867] EXT4-fs (loop6): This should not happen!! Data will be lost
[  417.731664][T22867] 
[  417.741377][T22867] EXT4-fs (loop6): Total free blocks count 0
[  417.747479][T22867] EXT4-fs (loop6): Free/Dirty block details
[  417.753397][T22867] EXT4-fs (loop6): free_blocks=2415919104
[  417.759192][T22867] EXT4-fs (loop6): dirty_blocks=8192
[  417.764548][T22867] EXT4-fs (loop6): Block reservation details
[  417.770639][T22867] EXT4-fs (loop6): i_reserved_data_blocks=512
[  417.795756][T22878] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  417.878517][   T59] team0 (unregistering): Port device team_slave_1 removed
[  417.901351][   T59] team0 (unregistering): Port device team_slave_0 removed
[  417.983461][T22898] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6094'.
[  418.047229][T22852] bridge0: port 1(bridge_slave_0) entered blocking state
[  418.054447][T22852] bridge0: port 1(bridge_slave_0) entered disabled state
[  418.069837][T22852] bridge_slave_0: entered allmulticast mode
[  418.082000][T22852] bridge_slave_0: entered promiscuous mode
[  418.097338][T22852] bridge0: port 2(bridge_slave_1) entered blocking state
[  418.104579][T22852] bridge0: port 2(bridge_slave_1) entered disabled state
[  418.131061][T22852] bridge_slave_1: entered allmulticast mode
[  418.177942][T22852] bridge_slave_1: entered promiscuous mode
[  418.222171][T22852] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  418.253287][T22852] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  418.289961][T22852] team0: Port device team_slave_0 added
[  418.311541][T22852] team0: Port device team_slave_1 added
[  418.372283][T22852] batman_adv: batadv0: Adding interface: batadv_slave_0
[  418.379375][T22852] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  418.405387][T22852] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  418.419263][T22937] loop6: detected capacity change from 0 to 512
[  418.426294][T22937] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  418.435881][T22937] EXT4-fs (loop6): invalid journal inode
[  418.441610][T22937] EXT4-fs (loop6): can't get journal size
[  418.449438][T22940] loop4: detected capacity change from 0 to 1024
[  418.461001][T22937] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a056c119, mo2=0002]
[  418.469960][T22852] batman_adv: batadv0: Adding interface: batadv_slave_1
[  418.470449][   T59] IPVS: stop unused estimator thread 0...
[  418.476991][T22852] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  418.508715][T22852] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  418.519658][T22937] System zones: 1-12, 13-13
[  418.524345][T22937] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2240: inode #15: comm syz.6.6099: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  418.541834][T22937] EXT4-fs error (device loop6): ext4_orphan_get:1394: comm syz.6.6099: couldn't read orphan inode 15 (err -117)
[  418.555728][T22940] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  418.557169][T22937] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  418.628032][T22852] hsr_slave_0: entered promiscuous mode
[  418.654638][T22852] hsr_slave_1: entered promiscuous mode
[  418.738862][T20602] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  418.894479][T22972] loop2: detected capacity change from 0 to 512
[  418.958196][   T29] kauditd_printk_skb: 163 callbacks suppressed
[  418.958214][   T29] audit: type=1326 audit(15799249.685:21786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22939 comm="syz.4.6100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1413dfcda9 code=0x7ffc0000
[  418.958923][T22972] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  418.964478][   T29] audit: type=1326 audit(15799249.685:21787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22939 comm="syz.4.6100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1413dfcda9 code=0x7ffc0000
[  418.984992][   T29] audit: type=1326 audit(15799249.705:21788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22939 comm="syz.4.6100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1413dfcda9 code=0x7ffc0000
[  419.050652][   T29] audit: type=1326 audit(15799249.735:21789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22939 comm="syz.4.6100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1413dfcda9 code=0x7ffc0000
[  419.074248][   T29] audit: type=1326 audit(15799249.735:21790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22939 comm="syz.4.6100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1413dfcda9 code=0x7ffc0000
[  419.097775][   T29] audit: type=1326 audit(15799249.785:21791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22939 comm="syz.4.6100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1413dfcda9 code=0x7ffc0000
[  419.121250][   T29] audit: type=1326 audit(15799249.785:21792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22939 comm="syz.4.6100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1413dfcda9 code=0x7ffc0000
[  419.144719][   T29] audit: type=1326 audit(15799249.785:21793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22939 comm="syz.4.6100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1413dfcda9 code=0x7ffc0000
[  419.362079][T12767] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  419.506417][T22506] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  419.571415][T22852] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  419.596554][T22852] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  419.616625][T22852] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  419.626132][T22852] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  419.652359][T22980] loop2: detected capacity change from 0 to 8192
[  419.718911][T22852] 8021q: adding VLAN 0 to HW filter on device bond0
[  419.756538][T22852] 8021q: adding VLAN 0 to HW filter on device team0
[  419.785369][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  419.792491][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  419.806390][T23004] loop6: detected capacity change from 0 to 8192
[  419.831063][T23004] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  419.842233][T23009] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.6111'.
[  419.852215][T23006] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.6111'.
[  419.864665][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  419.871761][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  419.987072][T22852] 8021q: adding VLAN 0 to HW filter on device batadv0
[  420.107279][T22852] veth0_vlan: entered promiscuous mode
[  420.126932][T23039] loop4: detected capacity change from 0 to 8192
[  420.135598][T22852] veth1_vlan: entered promiscuous mode
[  420.141385][T23039] vfat: Unknown parameter '0177777777777777777777718446744073709551615'
[  420.168549][T22852] veth0_macvtap: entered promiscuous mode
[  420.179806][T22852] veth1_macvtap: entered promiscuous mode
[  420.215892][T22852] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  420.218644][T23052] loop4: detected capacity change from 0 to 128
[  420.226477][T22852] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  420.226496][T22852] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  420.253167][T22852] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  420.263068][T22852] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  420.273906][T22852] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  420.298336][T22852] batman_adv: batadv0: Interface activated: batadv_slave_0
[  420.320880][T22852] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  420.331427][T22852] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  420.341337][T22852] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  420.351856][T22852] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  420.361720][T22852] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  420.372255][T22852] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  420.401038][T23052] syz.4.6117: attempt to access beyond end of device
[  420.401038][T23052] loop4: rw=2049, sector=128, nr_sectors = 1 limit=128
[  420.414564][T23052] Buffer I/O error on dev loop4, logical block 128, lost async page write
[  420.429490][T23052] syz.4.6117: attempt to access beyond end of device
[  420.429490][T23052] loop4: rw=2049, sector=129, nr_sectors = 912 limit=128
[  420.448302][T22852] batman_adv: batadv0: Interface activated: batadv_slave_1
[  420.467707][T22852] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  420.476598][T22852] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  420.485516][T22852] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  420.494252][T22852] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  420.598681][T23067] loop4: detected capacity change from 0 to 8192
[  420.613869][T23071] loop1: detected capacity change from 0 to 2048
[  420.615498][T23067] vfat: Unknown parameter '0177777777777777777777718446744073709551615'
[  420.682372][T23071] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  420.836994][T23089] netlink: 68 bytes leftover after parsing attributes in process `syz.1.6087'.
[  420.950927][  T781] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  421.017184][  T781] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  421.072819][T23113] loop6: detected capacity change from 0 to 128
[  421.082015][  T781] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  421.145875][  T781] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  421.160800][T23113] syz.6.6126: attempt to access beyond end of device
[  421.160800][T23113] loop6: rw=2049, sector=128, nr_sectors = 1 limit=128
[  421.174338][T23113] Buffer I/O error on dev loop6, logical block 128, lost async page write
[  421.188139][T23113] syz.6.6126: attempt to access beyond end of device
[  421.188139][T23113] loop6: rw=2049, sector=129, nr_sectors = 912 limit=128
[  421.237656][T23071] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  421.269877][T23071] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  421.282281][T23122] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[  421.282457][T23071] EXT4-fs (loop1): This should not happen!! Data will be lost
[  421.282457][T23071] 
[  421.290619][T23122] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[  421.300222][T23071] EXT4-fs (loop1): Total free blocks count 0
[  421.300241][T23071] EXT4-fs (loop1): Free/Dirty block details
[  421.320783][T23071] EXT4-fs (loop1): free_blocks=2415919104
[  421.326589][T23071] EXT4-fs (loop1): dirty_blocks=8192
[  421.331937][T23071] EXT4-fs (loop1): Block reservation details
[  421.338127][T23071] EXT4-fs (loop1): i_reserved_data_blocks=512
[  421.355251][T23087] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  421.380464][  T781] bridge_slave_1: left allmulticast mode
[  421.386211][  T781] bridge_slave_1: left promiscuous mode
[  421.391911][  T781] bridge0: port 2(bridge_slave_1) entered disabled state
[  421.406326][   T29] audit: type=1326 audit(15799252.115:21794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23131 comm="syz.0.6128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3abb4cda9 code=0x7ffc0000
[  421.429888][   T29] audit: type=1326 audit(15799252.115:21795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23131 comm="syz.0.6128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3abb4cda9 code=0x7ffc0000
[  421.461305][  T781] bridge_slave_0: left allmulticast mode
[  421.467155][  T781] bridge_slave_0: left promiscuous mode
[  421.472944][  T781] bridge0: port 1(bridge_slave_0) entered disabled state
[  421.667341][  T781] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  421.680920][T23151] loop6: detected capacity change from 0 to 8192
[  421.695798][  T781] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  421.709330][T23151] vfat: Unknown parameter '0177777777777777777777718446744073709551615'
[  421.729275][  T781] bond0 (unregistering): Released all slaves
[  421.785747][  T781] hsr_slave_0: left promiscuous mode
[  421.809320][  T781] hsr_slave_1: left promiscuous mode
[  421.830838][  T781] veth1_macvtap: left promiscuous mode
[  421.839377][  T781] veth0_macvtap: left promiscuous mode
[  421.858887][  T781] veth1_vlan: left promiscuous mode
[  421.864243][  T781] veth0_vlan: left promiscuous mode
[  422.011974][  T781] team0 (unregistering): Port device team_slave_1 removed
[  422.021855][  T781] team0 (unregistering): Port device team_slave_0 removed
[  422.057344][T23162] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  422.066807][T23162] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  422.085623][T23162] loop1: detected capacity change from 0 to 512
[  422.110635][T23162] EXT4-fs error (device loop1): ext4_acquire_dquot:6927: comm syz.1.6131: Failed to acquire dquot type 1
[  422.130289][T23162] EXT4-fs (loop1): 1 truncate cleaned up
[  422.150193][T23162] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  422.203412][ T1038] IPVS: starting estimator thread 0...
[  422.254548][T23191] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6139'.
[  422.263498][T23191] netlink: 84 bytes leftover after parsing attributes in process `syz.0.6139'.
[  422.282657][T23097] chnl_net:caif_netlink_parms(): no params data found
[  422.292128][T23191] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6139'.
[  422.294511][T23185] IPVS: using max 2304 ests per chain, 115200 per kthread
[  422.311678][T23193] qrtr: Invalid version 0
[  422.317358][T23191] geneve0: entered allmulticast mode
[  422.414643][T23097] bridge0: port 1(bridge_slave_0) entered blocking state
[  422.421774][T23097] bridge0: port 1(bridge_slave_0) entered disabled state
[  422.430650][T23097] bridge_slave_0: entered allmulticast mode
[  422.437845][T23097] bridge_slave_0: entered promiscuous mode
[  422.447651][T23097] bridge0: port 2(bridge_slave_1) entered blocking state
[  422.454808][T23097] bridge0: port 2(bridge_slave_1) entered disabled state
[  422.468048][T23097] bridge_slave_1: entered allmulticast mode
[  422.479084][T23210] loop4: detected capacity change from 0 to 2048
[  422.488371][T23097] bridge_slave_1: entered promiscuous mode
[  422.517554][T23210] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  422.533250][T23097] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  422.545632][  T781] IPVS: stop unused estimator thread 0...
[  422.568770][T23097] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  422.636831][T23097] team0: Port device team_slave_0 added
[  422.653910][T23097] team0: Port device team_slave_1 added
[  422.662550][T23229] netlink: 68 bytes leftover after parsing attributes in process `syz.4.6144'.
[  422.741165][T23097] batman_adv: batadv0: Adding interface: batadv_slave_0
[  422.748203][T23097] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  422.774490][T23097] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  422.840952][T23097] batman_adv: batadv0: Adding interface: batadv_slave_1
[  422.848102][T23097] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  422.870910][T23210] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  422.874017][T23097] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  422.900193][T23210] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  422.903129][T23231] loop6: detected capacity change from 0 to 512
[  422.912680][T23210] EXT4-fs (loop4): This should not happen!! Data will be lost
[  422.912680][T23210] 
[  422.912698][T23210] EXT4-fs (loop4): Total free blocks count 0
[  422.912711][T23210] EXT4-fs (loop4): Free/Dirty block details
[  422.912726][T23210] EXT4-fs (loop4): free_blocks=2415919104
[  422.946371][T23210] EXT4-fs (loop4): dirty_blocks=8192
[  422.951680][T23210] EXT4-fs (loop4): Block reservation details
[  422.957749][T23210] EXT4-fs (loop4): i_reserved_data_blocks=512
[  422.973400][T23231] EXT4-fs warning (device loop6): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  422.997859][T23097] hsr_slave_0: entered promiscuous mode
[  423.005298][T23228] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  423.020969][T23097] hsr_slave_1: entered promiscuous mode
[  423.024855][T23231] EXT4-fs (loop6): mount failed
[  423.058800][T23097] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  423.091398][T23097] Cannot create hsr debugfs directory
[  423.271240][T23266] loop6: detected capacity change from 0 to 128
[  423.376955][T23266] syz.6.6158: attempt to access beyond end of device
[  423.376955][T23266] loop6: rw=2049, sector=128, nr_sectors = 1 limit=128
[  423.390460][T23266] Buffer I/O error on dev loop6, logical block 128, lost async page write
[  423.425160][T23266] syz.6.6158: attempt to access beyond end of device
[  423.425160][T23266] loop6: rw=2049, sector=129, nr_sectors = 912 limit=128
[  423.497935][T23275] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  423.575856][T23275] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  423.688195][T23275] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  423.721713][T23308] serio: Serial port pts0
[  423.759817][T23097] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  423.795618][T23275] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  423.828395][T23097] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  423.844121][T23097] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  423.862632][T23097] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  423.895942][T23275] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  423.921669][T23275] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  423.941269][T23275] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  423.969607][T23275] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  424.037238][T23097] 8021q: adding VLAN 0 to HW filter on device bond0
[  424.181676][T23097] 8021q: adding VLAN 0 to HW filter on device team0
[  424.201360][  T291] bridge0: port 1(bridge_slave_0) entered blocking state
[  424.208604][  T291] bridge0: port 1(bridge_slave_0) entered forwarding state
[  424.654792][ T6476] bridge0: port 2(bridge_slave_1) entered blocking state
[  424.661897][ T6476] bridge0: port 2(bridge_slave_1) entered forwarding state
[  424.726955][T23097] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  424.766692][T23357] loop6: detected capacity change from 0 to 8192
[  424.787035][T23357] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  424.879047][T22852] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  424.914916][T23097] 8021q: adding VLAN 0 to HW filter on device batadv0
[  425.035692][T23391] loop1: detected capacity change from 0 to 512
[  425.069277][T23391] EXT4-fs warning (device loop1): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  425.138918][T23097] veth0_vlan: entered promiscuous mode
[  425.146778][T23391] EXT4-fs (loop1): mount failed
[  425.192392][T23097] veth1_vlan: entered promiscuous mode
[  425.251895][T23097] veth0_macvtap: entered promiscuous mode
[  425.270191][T23097] veth1_macvtap: entered promiscuous mode
[  425.296288][T23411] loop4: detected capacity change from 0 to 128
[  425.308383][T23097] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  425.319087][T23097] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  425.320768][T23409] loop1: detected capacity change from 0 to 8192
[  425.329238][T23097] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  425.329257][T23097] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  425.329272][T23097] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  425.329286][T23097] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  425.329303][T23097] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  425.329316][T23097] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  425.353906][T23097] batman_adv: batadv0: Interface activated: batadv_slave_0
[  425.413883][T23409] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  425.425896][T23097] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  425.436459][T23097] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  425.446307][T23097] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  425.456825][T23097] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  425.466662][T23097] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  425.477105][T23097] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  425.487030][T23097] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  425.497543][T23097] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  425.522791][T23411] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  425.535800][T23097] batman_adv: batadv0: Interface activated: batadv_slave_1
[  425.544257][T23097] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  425.553019][T23097] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  425.561803][T23097] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  425.570662][T23097] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  425.602788][   T29] kauditd_printk_skb: 75 callbacks suppressed
[  425.602877][   T29] audit: type=1400 audit(15799256.335:21869): avc:  denied  { create } for  pid=23410 comm="syz.4.6177" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  425.720699][   T29] audit: type=1400 audit(15799256.455:21870): avc:  denied  { link } for  pid=23410 comm="syz.4.6177" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop4" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  425.824448][   T29] audit: type=1400 audit(15799256.565:21871): avc:  denied  { setopt } for  pid=23423 comm="syz.0.6180" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  425.864154][T23424] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.6122'.
[  425.899313][T23420] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.6122'.
[  426.027969][T23439] loop6: detected capacity change from 0 to 128
[  426.180129][T23439] syz.6.6185: attempt to access beyond end of device
[  426.180129][T23439] loop6: rw=2049, sector=128, nr_sectors = 1 limit=128
[  426.193640][T23439] Buffer I/O error on dev loop6, logical block 128, lost async page write
[  426.230468][T23439] syz.6.6185: attempt to access beyond end of device
[  426.230468][T23439] loop6: rw=2049, sector=129, nr_sectors = 912 limit=128
[  426.355250][T23448] loop6: detected capacity change from 0 to 2048
[  426.412858][T23448] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  426.690845][T23470] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.6194'.
[  426.712194][T23468] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.6194'.
[  426.760550][T23472] loop2: detected capacity change from 0 to 128
[  426.788763][T23472] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  426.816555][T23459] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  426.842790][T23459] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  426.855455][T23459] EXT4-fs (loop6): This should not happen!! Data will be lost
[  426.855455][T23459] 
[  426.865179][T23459] EXT4-fs (loop6): Total free blocks count 0
[  426.870694][   T29] audit: type=1326 audit(15799257.605:21872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23474 comm="syz.0.6197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3abb4cda9 code=0x7ffc0000
[  426.871167][T23459] EXT4-fs (loop6): Free/Dirty block details
[  426.871184][T23459] EXT4-fs (loop6): free_blocks=2415919104
[  426.894624][   T29] audit: type=1326 audit(15799257.605:21873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23474 comm="syz.0.6197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3abb4cda9 code=0x7ffc0000
[  426.900512][T23459] EXT4-fs (loop6): dirty_blocks=8192
[  426.900528][T23459] EXT4-fs (loop6): Block reservation details
[  426.900584][T23459] EXT4-fs (loop6): i_reserved_data_blocks=512
[  427.003074][T23448] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  427.039710][   T29] audit: type=1326 audit(15799257.675:21874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23474 comm="syz.0.6197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3abb4cda9 code=0x7ffc0000
[  427.063339][   T29] audit: type=1326 audit(15799257.675:21875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23474 comm="syz.0.6197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3abb4cda9 code=0x7ffc0000
[  427.063375][   T29] audit: type=1326 audit(15799257.675:21876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23474 comm="syz.0.6197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3abb4cda9 code=0x7ffc0000
[  427.063407][   T29] audit: type=1326 audit(15799257.675:21877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23474 comm="syz.0.6197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3abb4cda9 code=0x7ffc0000
[  427.063459][   T29] audit: type=1326 audit(15799257.675:21878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23474 comm="syz.0.6197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3abb4cda9 code=0x7ffc0000
[  427.346676][T23485] loop6: detected capacity change from 0 to 128
[  427.372457][T23097] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  427.433180][T23485] syz.6.6200: attempt to access beyond end of device
[  427.433180][T23485] loop6: rw=2049, sector=128, nr_sectors = 1 limit=128
[  427.446786][T23485] Buffer I/O error on dev loop6, logical block 128, lost async page write
[  427.463688][T23485] syz.6.6200: attempt to access beyond end of device
[  427.463688][T23485] loop6: rw=2049, sector=129, nr_sectors = 912 limit=128
[  427.537803][T23498] loop2: detected capacity change from 0 to 8192
[  427.547258][T23497] loop1: detected capacity change from 0 to 512
[  427.588934][T23498] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  427.606817][T23497] EXT4-fs warning (device loop1): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  427.609487][T23502] loop6: detected capacity change from 0 to 8192
[  427.635977][T23502] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  427.657902][T23497] EXT4-fs (loop1): mount failed
[  427.765247][T23508] loop1: detected capacity change from 0 to 2048
[  427.806334][T23508] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  428.480316][T23522] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  428.516254][T23522] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  428.527315][T23536] serio: Serial port pts0
[  428.528974][T23522] EXT4-fs (loop1): This should not happen!! Data will be lost
[  428.528974][T23522] 
[  428.542930][T23522] EXT4-fs (loop1): Total free blocks count 0
[  428.549071][T23522] EXT4-fs (loop1): Free/Dirty block details
[  428.555018][T23522] EXT4-fs (loop1): free_blocks=2415919104
[  428.560807][T23522] EXT4-fs (loop1): dirty_blocks=8192
[  428.566227][T23522] EXT4-fs (loop1): Block reservation details
[  428.572262][T23522] EXT4-fs (loop1): i_reserved_data_blocks=512
[  428.594023][T23508] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  428.604552][T23539] netlink: 2048 bytes leftover after parsing attributes in process `syz.2.6219'.
[  428.616037][T23539] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6219'.
[  428.625001][T23539] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6219'.
[  428.735609][T23546] loop6: detected capacity change from 0 to 128
[  428.781729][T23546] syz.6.6225: attempt to access beyond end of device
[  428.781729][T23546] loop6: rw=2049, sector=128, nr_sectors = 1 limit=128
[  428.795212][T23546] Buffer I/O error on dev loop6, logical block 128, lost async page write
[  428.804794][T23546] syz.6.6225: attempt to access beyond end of device
[  428.804794][T23546] loop6: rw=2049, sector=129, nr_sectors = 912 limit=128
[  428.818850][T23549] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.6223'.
[  428.828689][T23548] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.6223'.
[  428.881354][T23555] loop6: detected capacity change from 0 to 164
[  428.892444][T23555] syz.6.6229: attempt to access beyond end of device
[  428.892444][T23555] loop6: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  428.906940][T23555] syz.6.6229: attempt to access beyond end of device
[  428.906940][T23555] loop6: rw=0, sector=263328, nr_sectors = 4 limit=164
[  428.921561][T23555] 9pnet_fd: Insufficient options for proto=fd
[  428.937501][T22506] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  428.989719][T23566] netlink: 16 bytes leftover after parsing attributes in process `syz.6.6232'.
[  429.015931][T23564] loop4: detected capacity change from 0 to 8192
[  429.028090][T23564] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  429.188283][T23574] loop1: detected capacity change from 0 to 8192
[  429.204176][T23574] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  430.224974][T23618] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  430.266023][T23618] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  430.301844][T23621] loop2: detected capacity change from 0 to 512
[  430.312349][T23621] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  430.321871][T23618] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  430.342289][T23621] EXT4-fs (loop2): invalid journal inode
[  430.351199][T23621] EXT4-fs (loop2): can't get journal size
[  430.362417][T23621] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a056c119, mo2=0002]
[  430.376045][T23618] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  430.396304][T23621] System zones: 1-12, 13-13
[  430.405664][T23621] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.6249: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  430.428700][T23621] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.6249: couldn't read orphan inode 15 (err -117)
[  430.447428][T23618] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  430.456195][T23621] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  430.468322][T23618] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  430.486017][T23618] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  430.499074][T23618] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  430.593193][T23097] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  430.663937][T23642] loop2: detected capacity change from 0 to 8192
[  430.671729][T23642] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  430.680891][T23644] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.6257'.
[  430.692200][T23640] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.6257'.
[  431.012730][T23658] netlink: 16 bytes leftover after parsing attributes in process `syz.1.6261'.
[  431.085197][T23659] netlink: 68 bytes leftover after parsing attributes in process `syz.0.6260'.
[  431.687712][T23682] loop6: detected capacity change from 0 to 512
[  431.717868][T23666] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  431.736237][T23682] EXT4-fs warning (device loop6): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  431.756391][T23685] loop2: detected capacity change from 0 to 128
[  431.762898][T23666] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  431.819734][T23682] EXT4-fs (loop6): mount failed
[  431.827798][T23666] loop4: detected capacity change from 0 to 512
[  431.931154][T23666] __quota_error: 29 callbacks suppressed
[  431.931174][T23666] Quota error (device loop4): do_check_range: Getting dqdh_entries 1536 out of range 0-14
[  431.946851][T23666] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  431.956857][T23666] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm syz.4.6263: Failed to acquire dquot type 1
[  431.987487][T23694] syz.2.6270: attempt to access beyond end of device
[  431.987487][T23694] loop2: rw=2049, sector=128, nr_sectors = 1 limit=128
[  432.000962][T23694] Buffer I/O error on dev loop2, logical block 128, lost async page write
[  432.016283][T23666] EXT4-fs (loop4): 1 truncate cleaned up
[  432.031608][T23666] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  432.049911][T23698] loop6: detected capacity change from 0 to 8192
[  432.065719][T23694] syz.2.6270: attempt to access beyond end of device
[  432.065719][T23694] loop2: rw=2049, sector=129, nr_sectors = 912 limit=128
[  432.100488][ T3377] IPVS: starting estimator thread 0...
[  432.129218][T23698] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  432.194449][T23700] IPVS: using max 2064 ests per chain, 103200 per kthread
[  432.261065][T23705] loop2: detected capacity change from 0 to 8192
[  432.293307][T23705] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  432.635713][T23722] vlan2: entered promiscuous mode
[  432.960007][   T29] audit: type=1326 audit(15799263.695:21908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23730 comm="syz.6.6284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8702adcda9 code=0x7ffc0000
[  432.983503][   T29] audit: type=1326 audit(15799263.695:21909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23730 comm="syz.6.6284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8702adcda9 code=0x7ffc0000
[  433.009391][   T29] audit: type=1326 audit(15799263.745:21910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23730 comm="syz.6.6284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=187 compat=0 ip=0x7f8702adcda9 code=0x7ffc0000
[  433.013104][T23731] loop6: detected capacity change from 0 to 1024
[  433.033454][   T29] audit: type=1326 audit(15799263.745:21911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23730 comm="syz.6.6284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8702adcda9 code=0x7ffc0000
[  433.063171][   T29] audit: type=1326 audit(15799263.745:21912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23730 comm="syz.6.6284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8702adcda9 code=0x7ffc0000
[  433.086672][   T29] audit: type=1326 audit(15799263.745:21913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23730 comm="syz.6.6284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f8702adcda9 code=0x7ffc0000
[  433.089899][T23731] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  433.110363][   T29] audit: type=1326 audit(15799263.745:21914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23730 comm="syz.6.6284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f8702adcde3 code=0x7ffc0000
[  433.146440][   T29] audit: type=1326 audit(15799263.745:21915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23730 comm="syz.6.6284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f8702adb85f code=0x7ffc0000
[  433.155639][T20602] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  433.206603][T23735] loop6: detected capacity change from 0 to 128
[  433.255725][T23735] syz.6.6286: attempt to access beyond end of device
[  433.255725][T23735] loop6: rw=2049, sector=128, nr_sectors = 1 limit=128
[  433.269320][T23735] Buffer I/O error on dev loop6, logical block 128, lost async page write
[  433.280947][T23735] syz.6.6286: attempt to access beyond end of device
[  433.280947][T23735] loop6: rw=2049, sector=129, nr_sectors = 912 limit=128
[  434.333742][T23794] loop2: detected capacity change from 0 to 128
[  434.375789][T23796] loop1: detected capacity change from 0 to 1024
[  434.399406][T23796] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  434.437042][T22852] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  434.449744][T23798] loop2: detected capacity change from 0 to 8192
[  434.460730][T23798] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  434.491253][T23804] loop1: detected capacity change from 0 to 128
[  434.513520][T23804] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  434.566860][T22506] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  435.310657][T22852] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  435.345818][T23833] loop1: detected capacity change from 0 to 512
[  435.352751][T23833] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  435.361975][T23833] EXT4-fs (loop1): invalid journal inode
[  435.367827][T23833] EXT4-fs (loop1): can't get journal size
[  435.421960][T23833] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a056c119, mo2=0002]
[  435.441881][T23833] System zones: 1-12, 13-13
[  435.453409][T23833] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.6317: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  435.455892][T23842] FAULT_INJECTION: forcing a failure.
[  435.455892][T23842] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  435.482691][T23833] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.6317: couldn't read orphan inode 15 (err -117)
[  435.483155][T23842] CPU: 0 UID: 0 PID: 23842 Comm: syz.2.6321 Not tainted 6.13.0-syzkaller-09760-g69e858e0b8b2 #0
[  435.483185][T23842] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  435.483201][T23842] Call Trace:
[  435.483210][T23842]  <TASK>
[  435.483219][T23842]  dump_stack_lvl+0xf2/0x150
[  435.483254][T23842]  dump_stack+0x15/0x1a
[  435.483280][T23842]  should_fail_ex+0x24a/0x260
[  435.483365][T23842]  should_fail+0xb/0x10
[  435.483399][T23842]  should_fail_usercopy+0x1a/0x20
[  435.483452][T23842]  _copy_from_user+0x1c/0xa0
[  435.483478][T23842]  do_sys_poll+0x153/0xc20
[  435.483518][T23842]  ? selinux_file_open+0x34a/0x3b0
[  435.483607][T23842]  __se_sys_poll+0xe1/0x200
[  435.483640][T23842]  __x64_sys_poll+0x43/0x50
[  435.483714][T23842]  x64_sys_call+0x2a72/0x2dc0
[  435.483746][T23842]  do_syscall_64+0xc9/0x1c0
[  435.483828][T23842]  ? clear_bhb_loop+0x55/0xb0
[  435.483862][T23842]  ? clear_bhb_loop+0x55/0xb0
[  435.483913][T23842]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  435.483995][T23842] RIP: 0033:0x7fef1e4ecda9
[  435.484013][T23842] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  435.484035][T23842] RSP: 002b:00007fef1cb51038 EFLAGS: 00000246 ORIG_RAX: 0000000000000007
[  435.484057][T23842] RAX: ffffffffffffffda RBX: 00007fef1e705fa0 RCX: 00007fef1e4ecda9
[  435.484072][T23842] RDX: ffffffffffbffff8 RSI: 0000000000000001 RDI: 0000000020b2c000
[  435.484087][T23842] RBP: 00007fef1cb51090 R08: 0000000000000000 R09: 0000000000000000
[  435.484148][T23842] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  435.484163][T23842] R13: 0000000000000000 R14: 00007fef1e705fa0 R15: 00007fff206effd8
[  435.484185][T23842]  </TASK>
[  435.680179][T23833] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  435.784583][T22852] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  435.961754][T23875] loop1: detected capacity change from 0 to 512
[  435.979346][T23875] EXT4-fs warning (device loop1): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  435.996762][T23875] EXT4-fs (loop1): mount failed
[  436.031773][T23885] loop1: detected capacity change from 0 to 128
[  436.048422][T23885] FAT-fs (loop1): error, corrupted directory (invalid i_start)
[  436.056061][T23885] FAT-fs (loop1): Filesystem has been set read-only
[  436.098837][T23887] loop1: detected capacity change from 0 to 128
[  436.166094][T23891] loop1: detected capacity change from 0 to 512
[  436.173973][T23891] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  436.189224][T23891] EXT4-fs (loop1): invalid journal inode
[  436.196462][T23891] EXT4-fs (loop1): can't get journal size
[  436.202929][T23891] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a056c119, mo2=0002]
[  436.212070][T23891] System zones: 1-12, 13-13
[  436.221399][T23891] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.6337: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  436.238321][T23891] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.6337: couldn't read orphan inode 15 (err -117)
[  436.251056][T23891] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  436.356380][T22852] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  436.500642][T23904] loop1: detected capacity change from 0 to 128
[  436.510745][T23904] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  436.564260][T22852] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  436.583283][T23912] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6345'.
[  436.592334][T23912] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6345'.
[  436.735004][T23926] loop4: detected capacity change from 0 to 512
[  436.757384][T23926] EXT4-fs warning (device loop4): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  436.775755][T23926] EXT4-fs (loop4): mount failed
[  437.220505][T23941] SELinux: syz.4.6356 (23941) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  437.267347][T23943] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  437.320219][T23943] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  437.391261][T23943] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  437.477581][T23943] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  437.480258][   T29] kauditd_printk_skb: 154 callbacks suppressed
[  437.480276][   T29] audit: type=1326 audit(15799268.215:22070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23946 comm="syz.1.6358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75017ecda9 code=0x7ffc0000
[  437.528502][   T29] audit: type=1326 audit(15799268.265:22071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23946 comm="syz.1.6358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f75017ecda9 code=0x7ffc0000
[  437.552087][   T29] audit: type=1326 audit(15799268.265:22072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23946 comm="syz.1.6358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75017ecda9 code=0x7ffc0000
[  437.575854][   T29] audit: type=1326 audit(15799268.265:22073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23946 comm="syz.1.6358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75017ecda9 code=0x7ffc0000
[  437.599327][   T29] audit: type=1326 audit(15799268.265:22074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23946 comm="syz.1.6358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f75017ecda9 code=0x7ffc0000
[  437.622870][   T29] audit: type=1326 audit(15799268.265:22075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23946 comm="syz.1.6358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75017ecda9 code=0x7ffc0000
[  437.622961][   T29] audit: type=1326 audit(15799268.265:22076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23946 comm="syz.1.6358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75017ecda9 code=0x7ffc0000
[  437.622995][   T29] audit: type=1326 audit(15799268.265:22077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23946 comm="syz.1.6358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f75017ecda9 code=0x7ffc0000
[  437.623094][   T29] audit: type=1326 audit(15799268.265:22078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23946 comm="syz.1.6358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75017ecda9 code=0x7ffc0000
[  437.623122][   T29] audit: type=1326 audit(15799268.265:22079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23946 comm="syz.1.6358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75017ecda9 code=0x7ffc0000
[  437.822177][T23943] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  437.841662][T23943] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  437.861912][T23943] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  437.882217][T23943] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  437.978645][T23969] SELinux: syz.4.6367 (23969) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  438.127985][T23991] loop4: detected capacity change from 0 to 128
[  438.142707][T23991] FAT-fs (loop4): error, corrupted directory (invalid i_start)
[  438.150410][T23991] FAT-fs (loop4): Filesystem has been set read-only
[  438.193067][T23996] SELinux: syz.4.6379 (23996) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  439.213958][T24022] loop4: detected capacity change from 0 to 512
[  439.263250][T24022] EXT4-fs warning (device loop4): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  439.338400][T24022] EXT4-fs (loop4): mount failed
[  439.479786][T24027] SELinux: syz.0.6390 (24027) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  439.730234][T24036] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.6392'.
[  440.695107][T24031] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.6392'.
[  440.931396][T24043] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6395'.
[  441.676122][T24062] loop6: detected capacity change from 0 to 8192
[  441.701418][T24062] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  442.004684][T24073] FAULT_INJECTION: forcing a failure.
[  442.004684][T24073] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  442.017961][T24073] CPU: 1 UID: 0 PID: 24073 Comm: syz.0.6405 Not tainted 6.13.0-syzkaller-09760-g69e858e0b8b2 #0
[  442.017989][T24073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  442.018004][T24073] Call Trace:
[  442.018011][T24073]  <TASK>
[  442.018020][T24073]  dump_stack_lvl+0xf2/0x150
[  442.018053][T24073]  dump_stack+0x15/0x1a
[  442.018125][T24073]  should_fail_ex+0x24a/0x260
[  442.018159][T24073]  should_fail+0xb/0x10
[  442.018192][T24073]  should_fail_usercopy+0x1a/0x20
[  442.018275][T24073]  _copy_to_user+0x20/0xa0
[  442.018303][T24073]  simple_read_from_buffer+0xa0/0x110
[  442.018332][T24073]  proc_fail_nth_read+0xf9/0x140
[  442.018362][T24073]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  442.018430][T24073]  vfs_read+0x19b/0x6f0
[  442.018507][T24073]  ? radix_tree_lookup+0xf9/0x150
[  442.018546][T24073]  ? __rcu_read_unlock+0x4e/0x70
[  442.018572][T24073]  ? __fget_files+0x17c/0x1c0
[  442.018607][T24073]  ksys_read+0xe8/0x1b0
[  442.018636][T24073]  __x64_sys_read+0x42/0x50
[  442.018661][T24073]  x64_sys_call+0x2874/0x2dc0
[  442.018692][T24073]  do_syscall_64+0xc9/0x1c0
[  442.018720][T24073]  ? clear_bhb_loop+0x55/0xb0
[  442.018753][T24073]  ? clear_bhb_loop+0x55/0xb0
[  442.018836][T24073]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  442.018869][T24073] RIP: 0033:0x7fd3abb4b7bc
[  442.018887][T24073] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  442.018909][T24073] RSP: 002b:00007fd3aa1b1030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  442.018932][T24073] RAX: ffffffffffffffda RBX: 00007fd3abd65fa0 RCX: 00007fd3abb4b7bc
[  442.018946][T24073] RDX: 000000000000000f RSI: 00007fd3aa1b10a0 RDI: 0000000000000003
[  442.019008][T24073] RBP: 00007fd3aa1b1090 R08: 0000000000000000 R09: 0000000000000000
[  442.019024][T24073] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[  442.019039][T24073] R13: 0000000000000000 R14: 00007fd3abd65fa0 R15: 00007ffd58009728
[  442.019060][T24073]  </TASK>
[  442.287285][T24077] SELinux: syz.0.6407 (24077) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  442.415192][T24081] FAULT_INJECTION: forcing a failure.
[  442.415192][T24081] name failslab, interval 1, probability 0, space 0, times 0
[  442.427889][T24081] CPU: 1 UID: 0 PID: 24081 Comm: syz.0.6410 Not tainted 6.13.0-syzkaller-09760-g69e858e0b8b2 #0
[  442.427918][T24081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  442.427930][T24081] Call Trace:
[  442.427936][T24081]  <TASK>
[  442.427944][T24081]  dump_stack_lvl+0xf2/0x150
[  442.427976][T24081]  dump_stack+0x15/0x1a
[  442.428032][T24081]  should_fail_ex+0x24a/0x260
[  442.428073][T24081]  should_failslab+0x8f/0xb0
[  442.428111][T24081]  kmem_cache_alloc_noprof+0x52/0x320
[  442.428152][T24081]  ? audit_log_start+0x34c/0x6b0
[  442.428211][T24081]  audit_log_start+0x34c/0x6b0
[  442.428261][T24081]  audit_seccomp+0x4b/0x130
[  442.428294][T24081]  __seccomp_filter+0x6fa/0x1180
[  442.428322][T24081]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  442.428386][T24081]  ? vfs_write+0x644/0x920
[  442.428416][T24081]  __secure_computing+0x9f/0x1c0
[  442.428443][T24081]  syscall_trace_enter+0xd1/0x1f0
[  442.428471][T24081]  ? fpregs_assert_state_consistent+0x83/0xa0
[  442.428571][T24081]  do_syscall_64+0xaa/0x1c0
[  442.428599][T24081]  ? clear_bhb_loop+0x55/0xb0
[  442.428660][T24081]  ? clear_bhb_loop+0x55/0xb0
[  442.428693][T24081]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  442.428725][T24081] RIP: 0033:0x7fd3abb4cda9
[  442.428743][T24081] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  442.428765][T24081] RSP: 002b:00007fd3aa1b1038 EFLAGS: 00000246 ORIG_RAX: 000000000000014e
[  442.428854][T24081] RAX: ffffffffffffffda RBX: 00007fd3abd65fa0 RCX: 00007fd3abb4cda9
[  442.428869][T24081] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000020000400
[  442.428956][T24081] RBP: 00007fd3aa1b1090 R08: 0000000000000000 R09: 0000000000000000
[  442.428970][T24081] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  442.428984][T24081] R13: 0000000000000000 R14: 00007fd3abd65fa0 R15: 00007ffd58009728
[  442.429004][T24081]  </TASK>
[  442.494237][   T29] kauditd_printk_skb: 28 callbacks suppressed
[  442.494257][   T29] audit: type=1326 audit(15799273.225:22106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24080 comm="syz.0.6410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7fd3abb4b7bc code=0x7ffc0000
[  442.655864][   T29] audit: type=1326 audit(15799273.225:22107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24080 comm="syz.0.6410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fd3abb4b85f code=0x7ffc0000
[  442.679282][   T29] audit: type=1326 audit(15799273.225:22108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24080 comm="syz.0.6410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fd3abb4ba0a code=0x7ffc0000
[  442.702548][   T29] audit: type=1326 audit(15799273.225:22109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24080 comm="syz.0.6410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3abb4cda9 code=0x7ffc0000
[  442.726351][   T29] audit: type=1326 audit(15799273.225:22110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24080 comm="syz.0.6410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3abb4cda9 code=0x7ffc0000
[  442.750208][T24087] netlink: 16402 bytes leftover after parsing attributes in process `syz.6.6408'.
[  442.760647][T24085] netlink: 16402 bytes leftover after parsing attributes in process `syz.6.6408'.
[  442.770848][   T29] audit: type=1326 audit(15799273.445:22111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24088 comm="syz.0.6412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3abb4cda9 code=0x7ffc0000
[  442.794475][   T29] audit: type=1326 audit(15799273.445:22112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24088 comm="syz.0.6412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3abb4cda9 code=0x7ffc0000
[  442.818175][   T29] audit: type=1326 audit(15799273.445:22113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24088 comm="syz.0.6412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7fd3abb4cda9 code=0x7ffc0000
[  442.841786][   T29] audit: type=1326 audit(15799273.445:22114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24088 comm="syz.0.6412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3abb4cda9 code=0x7ffc0000
[  442.865539][   T29] audit: type=1326 audit(15799273.445:22115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24088 comm="syz.0.6412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3abb4cda9 code=0x7ffc0000
[  442.890509][T24094] loop4: detected capacity change from 0 to 128
[  442.902990][T24093] netlink: 68 bytes leftover after parsing attributes in process `syz.0.6413'.
[  442.963565][T24102] loop6: detected capacity change from 0 to 128
[  442.975493][T24103] loop4: detected capacity change from 0 to 128
[  442.987922][T24102] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  443.040593][T24103] syz.4.6417: attempt to access beyond end of device
[  443.040593][T24103] loop4: rw=2049, sector=128, nr_sectors = 1 limit=128
[  443.054137][T24103] Buffer I/O error on dev loop4, logical block 128, lost async page write
[  443.065747][T24103] syz.4.6417: attempt to access beyond end of device
[  443.065747][T24103] loop4: rw=2049, sector=129, nr_sectors = 912 limit=128
[  443.082364][T20602] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  443.111163][T24109] SELinux: syz.0.6420 (24109) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  443.152215][T24113] netlink: 68 bytes leftover after parsing attributes in process `syz.4.6422'.
[  443.233296][T24111] loop6: detected capacity change from 0 to 8192
[  443.261715][T24111] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  444.086267][T24141] SELinux: syz.0.6434 (24141) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  444.324404][T24155] vlan0: entered promiscuous mode
[  444.482533][T24160] loop6: detected capacity change from 0 to 1024
[  444.560630][T24160] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  444.661925][T20602] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  444.767453][T23772] IPVS: starting estimator thread 0...
[  444.773983][T24166] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  444.854403][T24167] IPVS: using max 2016 ests per chain, 100800 per kthread
[  444.890951][T24165] loop2: detected capacity change from 0 to 128
[  444.926152][T24166] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  444.988088][T24165] EXT4-fs: Mount option(s) incompatible with ext2
[  445.082696][T24174] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6445'.
[  445.107742][T24178] SELinux: syz.6.6447 (24178) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  445.694714][T24192] loop2: detected capacity change from 0 to 1024
[  445.753090][T24192] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  445.832808][T23097] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  445.851981][T24204] loop6: detected capacity change from 0 to 128
[  445.896869][T24208] SELinux: syz.1.6459 (24208) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  446.015511][T24213] loop1: detected capacity change from 0 to 128
[  446.035044][T24210] serio: Serial port pts0
[  446.087057][T24213] FAT-fs (loop1): error, corrupted directory (invalid i_start)
[  446.094705][T24213] FAT-fs (loop1): Filesystem has been set read-only
[  446.181370][T24226] loop6: detected capacity change from 0 to 1024
[  446.329240][T24226] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  446.431293][T24228] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  446.439559][T24228] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  446.451431][T20602] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  446.492816][T24238] SELinux: syz.6.6471 (24238) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  446.511063][T24240] FAULT_INJECTION: forcing a failure.
[  446.511063][T24240] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  446.524281][T24240] CPU: 0 UID: 0 PID: 24240 Comm: syz.0.6472 Not tainted 6.13.0-syzkaller-09760-g69e858e0b8b2 #0
[  446.524308][T24240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  446.524320][T24240] Call Trace:
[  446.524326][T24240]  <TASK>
[  446.524333][T24240]  dump_stack_lvl+0xf2/0x150
[  446.524361][T24240]  dump_stack+0x15/0x1a
[  446.524385][T24240]  should_fail_ex+0x24a/0x260
[  446.524446][T24240]  should_fail+0xb/0x10
[  446.524481][T24240]  should_fail_usercopy+0x1a/0x20
[  446.524521][T24240]  _copy_from_user+0x1c/0xa0
[  446.524543][T24240]  move_addr_to_kernel+0x82/0x120
[  446.524631][T24240]  __sys_bind+0x9e/0x190
[  446.524662][T24240]  __x64_sys_bind+0x41/0x50
[  446.524686][T24240]  x64_sys_call+0x20ab/0x2dc0
[  446.524788][T24240]  do_syscall_64+0xc9/0x1c0
[  446.524817][T24240]  ? clear_bhb_loop+0x55/0xb0
[  446.524851][T24240]  ? clear_bhb_loop+0x55/0xb0
[  446.524886][T24240]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  446.524950][T24240] RIP: 0033:0x7fd3abb4cda9
[  446.524966][T24240] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  446.524988][T24240] RSP: 002b:00007fd3aa1b1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[  446.525011][T24240] RAX: ffffffffffffffda RBX: 00007fd3abd65fa0 RCX: 00007fd3abb4cda9
[  446.525025][T24240] RDX: 0000000000000018 RSI: 0000000020000040 RDI: 0000000000000005
[  446.525052][T24240] RBP: 00007fd3aa1b1090 R08: 0000000000000000 R09: 0000000000000000
[  446.525064][T24240] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  446.525075][T24240] R13: 0000000000000000 R14: 00007fd3abd65fa0 R15: 00007ffd58009728
[  446.525093][T24240]  </TASK>
[  448.056754][   T29] kauditd_printk_skb: 143 callbacks suppressed
[  448.056769][   T29] audit: type=1326 audit(15799278.795:22259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24260 comm="syz.1.6480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75017ecda9 code=0x7ffc0000
[  448.096004][T24259] loop2: detected capacity change from 0 to 4096
[  448.098172][   T29] audit: type=1326 audit(15799278.815:22260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24260 comm="syz.1.6480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f75017ecda9 code=0x7ffc0000
[  448.126112][   T29] audit: type=1326 audit(15799278.825:22261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24260 comm="syz.1.6480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75017ecda9 code=0x7ffc0000
[  448.149546][   T29] audit: type=1326 audit(15799278.825:22262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24260 comm="syz.1.6480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f75017ecda9 code=0x7ffc0000
[  448.173154][   T29] audit: type=1326 audit(15799278.825:22263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24260 comm="syz.1.6480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75017ecda9 code=0x7ffc0000
[  448.196774][   T29] audit: type=1326 audit(15799278.825:22264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24260 comm="syz.1.6480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f75017ecda9 code=0x7ffc0000
[  448.220199][   T29] audit: type=1326 audit(15799278.825:22265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24260 comm="syz.1.6480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75017ecda9 code=0x7ffc0000
[  448.243886][   T29] audit: type=1326 audit(15799278.825:22266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24260 comm="syz.1.6480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f75017ecda9 code=0x7ffc0000
[  448.267416][   T29] audit: type=1326 audit(15799278.825:22267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24260 comm="syz.1.6480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75017ecda9 code=0x7ffc0000
[  448.290861][   T29] audit: type=1326 audit(15799278.825:22268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24260 comm="syz.1.6480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f75017ecda9 code=0x7ffc0000
[  448.421280][T24267] serio: Serial port pts0
[  448.428404][T24259] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  448.501049][T23097] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  448.829765][T24301] FAULT_INJECTION: forcing a failure.
[  448.829765][T24301] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  448.843093][T24301] CPU: 0 UID: 0 PID: 24301 Comm: syz.4.6494 Not tainted 6.13.0-syzkaller-09760-g69e858e0b8b2 #0
[  448.843116][T24301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  448.843128][T24301] Call Trace:
[  448.843135][T24301]  <TASK>
[  448.843143][T24301]  dump_stack_lvl+0xf2/0x150
[  448.843171][T24301]  dump_stack+0x15/0x1a
[  448.843258][T24301]  should_fail_ex+0x24a/0x260
[  448.843300][T24301]  should_fail_alloc_page+0xfd/0x110
[  448.843413][T24301]  __alloc_frozen_pages_noprof+0x109/0x340
[  448.843442][T24301]  alloc_pages_mpol+0xb4/0x260
[  448.843481][T24301]  vma_alloc_folio_noprof+0x1a0/0x310
[  448.843530][T24301]  do_wp_page+0x64b/0x2340
[  448.843572][T24301]  ? __rcu_read_lock+0x36/0x50
[  448.843595][T24301]  handle_mm_fault+0xc63/0x2ac0
[  448.843639][T24301]  exc_page_fault+0x296/0x650
[  448.843691][T24301]  ? should_fail_ex+0x31/0x260
[  448.843754][T24301]  asm_exc_page_fault+0x26/0x30
[  448.843779][T24301] RIP: 0010:rep_movs_alternative+0x4a/0x70
[  448.843811][T24301] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1
[  448.843829][T24301] RSP: 0018:ffffc90005e8bac8 EFLAGS: 00050206
[  448.843848][T24301] RAX: ffff88810331ab88 RBX: 0000000020001500 RCX: 0000000000000500
[  448.843932][T24301] RDX: 0000000000000000 RSI: ffff88812b875b00 RDI: 0000000020002000
[  448.843944][T24301] RBP: ffff88812b875000 R08: 0000000000000000 R09: 0000000000000000
[  448.843957][T24301] R10: 000188812b875000 R11: 000188812b875fff R12: 0000000000001000
[  448.843972][T24301] R13: 00007ffffffff000 R14: ffffc90005e8bd58 R15: ffffc90005e8bd48
[  448.843996][T24301]  _copy_to_iter+0x141/0xd00
[  448.844022][T24301]  ? selinux_file_open+0x34a/0x3b0
[  448.844114][T24301]  ? from_kuid+0xf0/0x340
[  448.844140][T24301]  ? __rcu_read_unlock+0x4e/0x70
[  448.844165][T24301]  copy_page_to_iter+0x171/0x2b0
[  448.844186][T24301]  pipe_to_user+0x5c/0x90
[  448.844230][T24301]  __splice_from_pipe+0x207/0x4b0
[  448.844301][T24301]  ? __pfx_pipe_to_user+0x10/0x10
[  448.844332][T24301]  __se_sys_vmsplice+0x251/0xda0
[  448.844358][T24301]  ? kstrtouint+0x77/0xc0
[  448.844385][T24301]  ? kstrtouint_from_user+0xb0/0xe0
[  448.844479][T24301]  ? __rcu_read_unlock+0x4e/0x70
[  448.844506][T24301]  ? __schedule+0x75b/0x990
[  448.844542][T24301]  __x64_sys_vmsplice+0x55/0x70
[  448.844578][T24301]  x64_sys_call+0x29e6/0x2dc0
[  448.844610][T24301]  do_syscall_64+0xc9/0x1c0
[  448.844735][T24301]  ? clear_bhb_loop+0x55/0xb0
[  448.844835][T24301]  ? clear_bhb_loop+0x55/0xb0
[  448.844860][T24301]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  448.844885][T24301] RIP: 0033:0x7f1413dfcda9
[  448.844899][T24301] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  448.844917][T24301] RSP: 002b:00007f1412440038 EFLAGS: 00000246 ORIG_RAX: 0000000000000116
[  448.844975][T24301] RAX: ffffffffffffffda RBX: 00007f1414016080 RCX: 00007f1413dfcda9
[  448.844990][T24301] RDX: 0000000000000001 RSI: 0000000020000000 RDI: 0000000000000003
[  448.845004][T24301] RBP: 00007f1412440090 R08: 0000000000000000 R09: 0000000000000000
[  448.845115][T24301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  448.845158][T24301] R13: 0000000000000000 R14: 00007f1414016080 R15: 00007ffc8495a138
[  448.845181][T24301]  </TASK>
[  449.418699][T24322] loop6: detected capacity change from 0 to 128
[  449.426541][T24313] loop1: detected capacity change from 0 to 8192
[  449.448948][T24313] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  449.521480][T24332] FAULT_INJECTION: forcing a failure.
[  449.521480][T24332] name failslab, interval 1, probability 0, space 0, times 0
[  449.534385][T24332] CPU: 1 UID: 0 PID: 24332 Comm: syz.0.6507 Not tainted 6.13.0-syzkaller-09760-g69e858e0b8b2 #0
[  449.534414][T24332] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  449.534445][T24332] Call Trace:
[  449.534452][T24332]  <TASK>
[  449.534473][T24332]  dump_stack_lvl+0xf2/0x150
[  449.534504][T24332]  dump_stack+0x15/0x1a
[  449.534530][T24332]  should_fail_ex+0x24a/0x260
[  449.534598][T24332]  should_failslab+0x8f/0xb0
[  449.534636][T24332]  __kmalloc_node_track_caller_noprof+0xa8/0x410
[  449.534676][T24332]  ? sidtab_sid2str_get+0xb8/0x140
[  449.534698][T24332]  kmemdup_noprof+0x2a/0x60
[  449.534747][T24332]  sidtab_sid2str_get+0xb8/0x140
[  449.534781][T24332]  security_sid_to_context_core+0x1eb/0x2f0
[  449.534930][T24332]  security_sid_to_context+0x27/0x30
[  449.534972][T24332]  selinux_lsmprop_to_secctx+0x68/0xf0
[  449.534998][T24332]  security_lsmprop_to_secctx+0x40/0x80
[  449.535035][T24332]  audit_log_task_context+0x76/0x180
[  449.535090][T24332]  audit_log_task+0xf9/0x1c0
[  449.535154][T24332]  audit_seccomp+0x68/0x130
[  449.535180][T24332]  __seccomp_filter+0x6fa/0x1180
[  449.535202][T24332]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  449.535232][T24332]  ? vfs_write+0x644/0x920
[  449.535286][T24332]  ? putname+0xcf/0xf0
[  449.535320][T24332]  __secure_computing+0x9f/0x1c0
[  449.535344][T24332]  syscall_trace_enter+0xd1/0x1f0
[  449.535416][T24332]  ? fpregs_assert_state_consistent+0x83/0xa0
[  449.535483][T24332]  do_syscall_64+0xaa/0x1c0
[  449.535512][T24332]  ? clear_bhb_loop+0x55/0xb0
[  449.535546][T24332]  ? clear_bhb_loop+0x55/0xb0
[  449.535599][T24332]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  449.535625][T24332] RIP: 0033:0x7fd3abb4cda9
[  449.535640][T24332] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  449.535659][T24332] RSP: 002b:00007fd3aa1b1038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f1
[  449.535679][T24332] RAX: ffffffffffffffda RBX: 00007fd3abd65fa0 RCX: 00007fd3abb4cda9
[  449.535691][T24332] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  449.535745][T24332] RBP: 00007fd3aa1b1090 R08: 0000000000000000 R09: 0000000000000000
[  449.535810][T24332] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  449.535825][T24332] R13: 0000000000000000 R14: 00007fd3abd65fa0 R15: 00007ffd58009728
[  449.535843][T24332]  </TASK>
[  449.558954][T24334] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.6506'.
[  449.824992][T24331] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.6506'.
[  449.918134][T24347] loop2: detected capacity change from 0 to 512
[  449.922757][T24351] loop6: detected capacity change from 0 to 128
[  449.931012][T24348] netlink: 68 bytes leftover after parsing attributes in process `syz.4.6514'.
[  449.940803][T24347] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  449.970572][T24347] EXT4-fs (loop2): 1 truncate cleaned up
[  449.981091][T24347] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  449.997610][T24347] FAULT_INJECTION: forcing a failure.
[  449.997610][T24347] name failslab, interval 1, probability 0, space 0, times 0
[  450.010382][T24347] CPU: 0 UID: 0 PID: 24347 Comm: syz.2.6513 Not tainted 6.13.0-syzkaller-09760-g69e858e0b8b2 #0
[  450.010413][T24347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  450.010484][T24347] Call Trace:
[  450.010492][T24347]  <TASK>
[  450.010502][T24347]  dump_stack_lvl+0xf2/0x150
[  450.010546][T24347]  dump_stack+0x15/0x1a
[  450.010573][T24347]  should_fail_ex+0x24a/0x260
[  450.010634][T24347]  should_failslab+0x8f/0xb0
[  450.010664][T24347]  kmem_cache_alloc_noprof+0x52/0x320
[  450.010767][T24347]  ? alloc_empty_file+0xd0/0x200
[  450.010804][T24347]  alloc_empty_file+0xd0/0x200
[  450.010839][T24347]  path_openat+0x6a/0x1fc0
[  450.010860][T24347]  ? _parse_integer_limit+0x167/0x180
[  450.011056][T24347]  ? _parse_integer+0x27/0x30
[  450.011090][T24347]  ? kstrtoull+0x110/0x140
[  450.011123][T24347]  ? kstrtouint+0x77/0xc0
[  450.011216][T24347]  ? kstrtouint_from_user+0xb0/0xe0
[  450.011283][T24347]  do_filp_open+0x107/0x230
[  450.011318][T24347]  do_sys_openat2+0xab/0x120
[  450.011356][T24347]  __x64_sys_creat+0x66/0x90
[  450.011394][T24347]  x64_sys_call+0x1084/0x2dc0
[  450.011498][T24347]  do_syscall_64+0xc9/0x1c0
[  450.011537][T24347]  ? clear_bhb_loop+0x55/0xb0
[  450.011567][T24347]  ? clear_bhb_loop+0x55/0xb0
[  450.011595][T24347]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  450.011665][T24347] RIP: 0033:0x7fef1e4ecda9
[  450.011684][T24347] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  450.011705][T24347] RSP: 002b:00007fef1cb51038 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
[  450.011727][T24347] RAX: ffffffffffffffda RBX: 00007fef1e705fa0 RCX: 00007fef1e4ecda9
[  450.011742][T24347] RDX: 0000000000000000 RSI: 000000000000000d RDI: 0000000020000240
[  450.011810][T24347] RBP: 00007fef1cb51090 R08: 0000000000000000 R09: 0000000000000000
[  450.011825][T24347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  450.011840][T24347] R13: 0000000000000000 R14: 00007fef1e705fa0 R15: 00007fff206effd8
[  450.011862][T24347]  </TASK>
[  450.315393][T23097] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  450.379733][T24374] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.6525'.
[  450.392998][T24368] loop6: detected capacity change from 0 to 8192
[  450.406846][T24370] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.6525'.
[  450.410062][T24368] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  450.466681][T24377] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6527'.
[  450.498728][T24380] loop4: detected capacity change from 0 to 128
[  450.527004][T24383] netlink: 68 bytes leftover after parsing attributes in process `syz.0.6529'.
[  450.540904][T24380] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  450.703074][T22506] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  451.120605][T22506] ==================================================================
[  451.128774][T22506] BUG: KCSAN: data-race in __lru_add_drain_all / folios_put_refs
[  451.136553][T22506] 
[  451.138890][T22506] write to 0xffff888237c2a8e8 of 1 bytes by task 24396 on cpu 0:
[  451.146633][T22506]  folios_put_refs+0x26d/0x2b0
[  451.151442][T22506]  folio_batch_move_lru+0x202/0x230
[  451.156675][T22506]  folio_add_lru+0x145/0x1f0
[  451.161303][T22506]  folio_add_lru_vma+0x48/0x60
[  451.166095][T22506]  do_wp_page+0x17a2/0x2340
[  451.170632][T22506]  handle_mm_fault+0xc63/0x2ac0
[  451.175515][T22506]  exc_page_fault+0x3b9/0x650
[  451.180225][T22506]  asm_exc_page_fault+0x26/0x30
[  451.185107][T22506] 
[  451.187446][T22506] read to 0xffff888237c2a8e8 of 1 bytes by task 22506 on cpu 1:
[  451.195099][T22506]  __lru_add_drain_all+0x136/0x3f0
[  451.200280][T22506]  lru_add_drain_all+0x10/0x20
[  451.205104][T22506]  invalidate_bdev+0x47/0x70
[  451.209733][T22506]  ext4_put_super+0x571/0x810
[  451.214448][T22506]  generic_shutdown_super+0xe5/0x220
[  451.219947][T22506]  kill_block_super+0x2a/0x70
[  451.224653][T22506]  ext4_kill_sb+0x44/0x80
[  451.229009][T22506]  deactivate_locked_super+0x7d/0x1c0
[  451.234414][T22506]  deactivate_super+0x9f/0xb0
[  451.239130][T22506]  cleanup_mnt+0x268/0x2e0
[  451.243580][T22506]  __cleanup_mnt+0x19/0x20
[  451.248042][T22506]  task_work_run+0x13a/0x1a0
[  451.252666][T22506]  syscall_exit_to_user_mode+0xa8/0x120
[  451.258234][T22506]  do_syscall_64+0xd6/0x1c0
[  451.262757][T22506]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  451.268677][T22506] 
[  451.271009][T22506] value changed: 0x1f -> 0x02
[  451.275694][T22506] 
[  451.278026][T22506] Reported by Kernel Concurrency Sanitizer on:
[  451.284182][T22506] CPU: 1 UID: 0 PID: 22506 Comm: syz-executor Not tainted 6.13.0-syzkaller-09760-g69e858e0b8b2 #0
[  451.294786][T22506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  451.304860][T22506] ==================================================================
[  451.346017][T24399] FAULT_INJECTION: forcing a failure.
[  451.346017][T24399] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  451.359133][T24399] CPU: 1 UID: 0 PID: 24399 Comm: syz.4.6532 Not tainted 6.13.0-syzkaller-09760-g69e858e0b8b2 #0
[  451.359163][T24399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  451.359179][T24399] Call Trace:
[  451.359186][T24399]  <TASK>
[  451.359195][T24399]  dump_stack_lvl+0xf2/0x150
[  451.359248][T24399]  dump_stack+0x15/0x1a
[  451.359270][T24399]  should_fail_ex+0x24a/0x260
[  451.359308][T24399]  should_fail+0xb/0x10
[  451.359425][T24399]  should_fail_usercopy+0x1a/0x20
[  451.359530][T24399]  _copy_from_user+0x1c/0xa0
[  451.359553][T24399]  copy_msghdr_from_user+0x54/0x2a0
[  451.359663][T24399]  ? __fget_files+0x17c/0x1c0
[  451.359690][T24399]  __sys_sendmsg+0x13e/0x230
[  451.359726][T24399]  __x64_sys_sendmsg+0x46/0x50
[  451.359751][T24399]  x64_sys_call+0x2734/0x2dc0
[  451.359798][T24399]  do_syscall_64+0xc9/0x1c0
[  451.359818][T24399]  ? clear_bhb_loop+0x55/0xb0
[  451.359842][T24399]  ? clear_bhb_loop+0x55/0xb0
[  451.359919][T24399]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  451.359949][T24399] RIP: 0033:0x7f1413dfcda9
[  451.359966][T24399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  451.359988][T24399] RSP: 002b:00007f1412461038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  451.360042][T24399] RAX: ffffffffffffffda RBX: 00007f1414015fa0 RCX: 00007f1413dfcda9
[  451.360052][T24399] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000006
[  451.360063][T24399] RBP: 00007f1412461090 R08: 0000000000000000 R09: 0000000000000000
[  451.360073][T24399] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  451.360126][T24399] R13: 0000000000000000 R14: 00007f1414015fa0 R15: 00007ffc8495a138
[  451.360142][T24399]  </TASK>