last executing test programs:

1m56.691668765s ago: executing program 1 (id=378):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
recvmmsg(r1, &(0x7f0000003a40)=[{{&(0x7f0000000380)=@xdp, 0x80, &(0x7f0000000940)}, 0x7}, {{&(0x7f0000001cc0)=@ieee802154={0x24, @long}, 0x80, &(0x7f0000001e80)=[{0x0}, {0x0}, {&(0x7f0000001e00)=""/116, 0x74}], 0x3, &(0x7f0000001f00)=""/3, 0x3}, 0x6}, {{&(0x7f0000001f40)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @remote}}, 0x80, &(0x7f0000004f40)=[{&(0x7f0000001fc0)=""/29, 0x1d}, {&(0x7f0000003080)=""/133, 0x85}, {&(0x7f0000003c00)=""/76, 0x4c}, {&(0x7f0000000b40)=""/117, 0x75}, {&(0x7f0000003e00)=""/4096, 0x1000}, {&(0x7f0000004e00)=""/142, 0x8e}], 0x6}, 0x5}, {{&(0x7f0000003140)=@qipcrtr, 0x80, &(0x7f00000035c0)}, 0x3}, {{&(0x7f0000003640)=@alg, 0x80, &(0x7f0000003780), 0x0, &(0x7f00000037c0)=""/24, 0x18}, 0x5}, {{&(0x7f0000003800)=@rc, 0x80, &(0x7f0000003900)=[{&(0x7f0000003880)=""/13, 0xd}, {0x0}], 0x2, &(0x7f0000003940)=""/230, 0xe6}, 0xa}], 0x6, 0x40000000, &(0x7f0000003bc0)={0x0, 0x3938700})
ioctl$PIO_UNIMAP(r1, 0x4b67, &(0x7f0000000040)={0x3ffffffffffffe96, &(0x7f0000000000)=[{0x2000, 0x5}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r4)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000d80)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/14, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa2000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = getegid()
getresuid(&(0x7f00000004c0)=<r7=>0x0, &(0x7f0000000500), &(0x7f0000000540))
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000580)={<r8=>0x0, <r9=>0x0, <r10=>0x0}, &(0x7f00000005c0)=0xc)
r11 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r11, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="38000000031401002abd7000fedbdf250900020073727a3100000000080041007369770014003300626f6e643000000000"], 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x20000000)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f00000011c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)=""/203, 0x34, 0xcb, 0x1, 0x726, 0x0, @void, @value}, 0x28)
r12 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r13 = socket(0x10, 0x3, 0x9)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000000bc0)={&(0x7f0000000340)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000400)=[{&(0x7f0000000240)="a50769f9b1", 0x5}, {&(0x7f00000003c0)="e2bb1ed63a57576cc2dcd86b8604be154e8a7600393346db8d", 0x19}], 0x2, &(0x7f0000000e40)=ANY=[@ANYBLOB="28000000000000000100000001000000", @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r3, @ANYRES32, @ANYRES32=r3, @ANYRES32=r5, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32=r6, @ANYBLOB="0daca2354da58f0000000028000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=r13, @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=r7, @ANYRES32=r10, @ANYBLOB="000000001c000000000000000100000001000000", @ANYRES32, @ANYRES32=r11, @ANYRES32, @ANYBLOB="000000002c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32=r12, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=r8, @ANYRES32=r9, @ANYRES32=r6, @ANYBLOB='\x00\x00\x00\x00'], 0x100, 0x200400d1}, 0x80)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r11, 0xc0502100, &(0x7f00000009c0)={0x0, <r14=>0x0})
stat(&(0x7f0000008000)='./file0\x00', &(0x7f0000000d00)={0x0, 0x0, 0x0, 0x0, 0x0, <r15=>0x0})
r16 = getpid()
sched_setscheduler(r16, 0x2, &(0x7f0000000200)=0x7)
getresuid(&(0x7f0000000f80), &(0x7f0000000fc0), &(0x7f0000001000)=<r17=>0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000001040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xffffffffffffffff, <r18=>0xee01}}, './file0\x00'})
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000001180)={&(0x7f0000000600)=@kern={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000640)=[{0x0}], 0x1, &(0x7f0000001080)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, r4]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee00}}}, @rights={{0x14, 0x1, 0x1, [r5]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, r10}}}, @cred={{0x1c, 0x1, 0x2, {r14, 0xee01, r15}}}, @cred={{0x1c, 0x1, 0x2, {r16, r17, r18}}}, @rights={{0x20, 0x1, 0x1, [r4, 0xffffffffffffffff, r4, r5]}}], 0xf0, 0x41}, 0x2040001)
newfstatat(0xffffffffffffff9c, &(0x7f0000004fc0)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, <r19=>0x0}, 0x2000)
getgroups(0x3, &(0x7f0000000180)=[r15, 0x0, r19])
execve(&(0x7f0000000400)='./file0\x00', 0x0, 0x0)

1m56.481787088s ago: executing program 1 (id=380):
r0 = socket$kcm(0x11, 0x200000000000002, 0x300)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f00000003c0)=[{0x0, 0x0, 0x0, 0xa}, {0x90010022}], 0x10, 0x0, @void, @value}, 0x94)
close(r2)
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
socket$kcm(0x11, 0x200000000000002, 0x300)
socket$kcm(0x11, 0x200000000000002, 0x300)
setsockopt$sock_attach_bpf(r0, 0x107, 0x12, &(0x7f00000008c0)=r3, 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000004000)=ANY=[@ANYBLOB="b702000003000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd0cdfa146ec561750379585e5a076d839240d29c034055b67dafe6c8dc3d5d0f65acc0d06d1a1434e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab7ea0c34f17e3946ef3bb622e03b538dfd8e012e79578e51bc53099e90f4580d760551b5b341a29f31e3106d1ddd6152f7cbdb9cd38bdb2209c67deca8eeb9c15ab0300817ac61e4dd11183a13477bf7e860e3670ef0e789f65f1328d6704902cbe7bc04b82d2789cb132b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c690220b87b20581e7be6ba0dc001c4110555850915148ba532e6ea09c346dfebd38608b3280080005d9a9500000000000000334d83239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd713089856f756436303767d2e24f29e5dad9796edb697a8ad004eea0182babd18cac1bd4f4390af9a9ceafd0002cab154ad029a1090000002780870014751c3c975d5aec84222fd3a0ec4be3e563112f0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a6a71bc85018e5ff22dc518afc9ffc2cc788bee1b47683db01a2f9398685211dfbbae3e2ed0a50e7313bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd36e7487afa407e2edfae4f390a8337841cef386e22cc22ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d3ae526aca54183fb01c73f979ca9857399537f5831808b0dc2a2d0e0000000000000578673f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c96a0c93d47018c12e7ba8188a22e8b15c3e233db00002e30d46a9d24d37cef099ece729aa218f9f44a3210223fdae7ed04935c3c90d3add8eebc8619d73415cda2130f5011e4845535a8b90dfae158b94f50adab188dd8e12baf5cc9398fff00404d5d99f82e20ee6a8c88e18c2977aab37d9ac4cfc1c7b400000000000007ff57c39495c826b956ba859ac8e3c177b91bd7d5e41ff868f7ca1664fe2f3ced846891180604b6dd2499d16d7d9158ffffffff00000000ef069dc42749a89f854797f29d0000002d8c38a967c1bbe09315c29877a308bcc87dc3addb08141bdee5d27874b2f663ddeef0005b4896c7aabf4df517d90bdc01e73835d50200a90800c66ee2b1ad76dff9f9003f07000099d4894ee7f8249dc1e3428d2129369ee1b85af6eb2eea0d0df414b315f651c8412392191fa83ee830548f11e1036a8debd64cbe359454a3f2239cfe35f81b7a490f167e6d5c1109000000000000000042b8ff8c21ad702ccacad5b39eef213d1ca296d2a27798c8ce2a305c0c7d35cf4b22549a4bd92052188bd1f285f653b621491dc6aaee0200e2ff08644fb94c06006eff1be2f633c1d987595ec3db58a7bb3042ec3f771f7a1338a5c3dd35e926049fe86e09c58e273cd905deb28c13c1ed1c0d9cae846bcbfa8cce7b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4eda0545c00f576b2b5cc7f819abd0f885cc4806f40300966fcf1e54f5a2d38708294cd6f496e547f7ad33850d9feccd0111a2e3700845dee734fe7da3770845cf442d488afd80e17000000000000000000000000000000000000000000000000000005202000000dc1c56d59f35d367632952a93466ae595c6a8cda690d192a070886df42b27098773b45198b4a34ac977ebd4450e121d01342703f5bf030e935878a12489c80aa4252d4ea6b8f6216ff202b5b5a182cb5e838b307632d03a7ca6f6d0339f9953c3093c3690d10ecb65dc5b47481edbf1f000000000000004d16d29c28eb5167e9936ed327fb237a56224e49d9ea955a5f0dec1b3ccd35364600000000000000000000000000000000000000000000000000000000000026ded4dd6fe1518cc7802043ecfe69f743f1213bf8179ecd9e5a225d67521dc728eac7d80a5656ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be1827fcd95cf107753cb0a6a979d3db08407081c6281e2d8429a8639034a75f4c7df3ea8fc2018d07af14915f29b719f54926fc32468f65bd06b4092140faed0c329be610c3082d43e121861b5cc03f1a1561f0589e0d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea20bdac0000000000000000ca06f256c8028e0f9b4c8787361f3289f86ae826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bb37b61fa0a2d8974e69115d33394e86e4b838297ba20f96936b7e4746e92dea6c5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab9000000000000000000000000b5ace293bec833c13e3229432ad71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b61227ad40f52c9f2500579aca11033bb9cc16bd83a00840e31d828ec78e116ae46c4897e2795b6ff92e9a1e24b0b855c02f2b7add58ffb25f339297729a7a51810134d3dfbf71f6516737be55c06d9cdcfb1e2bb10b50000eb4acff90756dba1ecf9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8d03fe28bc358684492aa771dbfe80745fe89ad349ffaad76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a59b53f2fb0e16d8262c080c159ce1d9bc7ef3e3f40c14089c82759106f422582b42e3e8484ea5a6ad9aa520000afe0e0caea1ad4cb23f3c2b8a0f455ba69ea284c268d54b43158a8b1d128d02af263b3dc1cab794c9ac57a2a7332f4d8764c302ccd5aac114482b619fc575aa0dd2777e881e29a854380e2f1e49db5a1517ec40bb3fa44f9959bad67ccaba76408da357f9e93ce055019c9f1534c8bd48bbd61627a2e0a74b5e6aefb7eee403502734137ff47257f164391c672b6079e65d7295eed164ca63e4ea26dce0fb3ce0f6591d80dfb8f386bb74b5589829b6b0679b5d6fccbecfae5553d9950d48c774eaa35b24fce69a20d8bc410d9f48bf7eac90529cd6af061c9e53addddc620ce73c5d177e3d097159f2768636fc10276c6a0adc57483b3f7083f66b87ef296ee85e9bb70a3009a5d30f479e293a3302e11350ea857b37e76ca2f50378e4092ce2c574ad278b9b7b717c571afb2077b019fd9d89efd59b41f051ec5a8ff87ecc8df917a1e386d849fcd10e2f9ca52e02339c2f4666b0c545e25f1cd62421c28d25994be0cff7271a0dee38d7ac4ac736b090e1d29f981fd9086e4000000000000646174b55d251f7f8ca5ccc22a5efb33b237eff5597a3c3a5f3a9bb54abb40e54593e1a7ce4cfa17b3c3fe91c06363496341eae20dcc59b6179b32ddddef5c34000096a54c0c571a91878f61f74912e2299e5501d4d6943bfd74c856511726f0ac8f7d17f1c6b4451c1bcdc6b6e1700e4cd87709d97afc5423c96fa981873d4369b04bbf1fb9f68f17991540868e408201ad1a74179e489aa61f021a437a3fa935588be2068f7ff9b253106326fde795e530b93626cc68e06e602198724249b4445eef08401cd1a3e266db41474e69902e4d8f5da4e94cc36794258fd4032de7ab36bc24c5efd5c8495c1ccd580033c55725f2d60354f8ad5914a0155eaa743350ddb388f486b6de0549ef3b1b3c3b7d4d3a830ff39885776119408029be3788dd8422b1ab7b4c9d5b7d8682fd759c713108e1bdfc64b9121bbf07099def5c0ce3c861ae4b5cad8bba5a0b6059b9ef90c2f96a59320309e25df89484522bb1d6eaa92164f9e4042cb689a45a898354c17b08705205a9189772bcbcb6414e44b33a2470d3bc16f761c33f565b9da5e7991ad8482579cc1b16c1fcec815a5482ae8b1779c5e339971a6ec1217bcfd1ef24284de8a0a9f068f297037d6478c2434a9a18dcc6c7c791e444a79d7ce37f9cf2826b47ad8ca6a2fa254aa02cd098026798a6d336348af0fc11fa2809a5ebbe17ca4d0f889d518f64ee50f562b5fdb1f76d4a7fe14701f8ed0c6a55d66a6efea3e449e6b478abc5b196dd5308cb20c4e2a0bd702651bb39f10523102dcd8ece692159028f314e0d6bfa400475c6699fdc40efe0948e3cef7419a7f113134e5ee20fd87c4521ccfbd32d6f147f743d30866bdd86ca8bf0c7bcc475f4ed53517aaa51f1c151d859a7f0b53abd332c84bdad313e82ac3777a6f7f649ff8a25f6dfe09cb29213896b49a825257bf143e9fa3bbd47009e66fe5705b3ef2b40a182e408c680727d64e00e1ce508f8fd64ac6c84ccc28fc333067de63b9bb5daaa12ce60ee3779ded79651be69d2a413cd948a873dd7ad7017b150828cf100d3df8537f22aff58343c9ee966fceb594bbe10b911427f76a25a219be2f85287b7f83d323a30991067ad1369792166062085ff20c5fb9f6e4f78dd09c7d2d6ca3c8a5d0d26ccbe576f44a1bc94194817"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r4, 0x18000000000002a0, 0xe80, 0x6000, &(0x7f0000000640)="b9ff03076844268cb89e14f088a847e086dd2088a8006006000aac14140ce0", 0x0, 0x11, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x48)
r5 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r3)
sendmsg$IPVS_CMD_NEW_DAEMON(r3, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000100)={0xa0, r5, 0x800, 0x70bd25, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xc}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8}, @IPVS_CMD_ATTR_DEST={0x14, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_TYPE={0x5, 0xd, 0x1}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0x8}]}, @IPVS_CMD_ATTR_SERVICE={0x68, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x0, 0x10}}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@multicast1}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x2c}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x5, 0x23}}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e22}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x9}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x39}]}]}, 0xa0}, 0x1, 0x0, 0x0, 0x1}, 0x40000)

1m56.116846124s ago: executing program 1 (id=388):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xb, &(0x7f0000000980)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0, 0x0, 0x800004}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x101042, 0x45)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r2, &(0x7f0000000040)={0x18, 0x0, {0x3, @broadcast, 'macvlan1\x00'}}, 0x1e)
sendmmsg(r2, &(0x7f0000001340)=[{{0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000500)="ab", 0x5ea}], 0x1}}], 0x484, 0x24048084)
socket$kcm(0x11, 0xa, 0x300)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x6, 0x3, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffdf, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0d0000000000000004000000ff00000000000000", @ANYRES32=0x1, @ANYBLOB="0000000000000000000000000000000000000000a5d757854f3ff676a8224dc85f5c7579e8459271ce0f0f0496886dfe9fa10aeeb35a59e956acf73ad452584150aab56ba13d50a03bf932079b852538d4e700f7c4f71cf8a29258e4484efa9d1bdf76bf15f21c1f3a91906e5b4bb5ecb1a737b37d4492464123bc21e9fc6d6d4b0d52a9d6801fd9c2fa26ca29a2d9e99b99e3294afd748b03ac2a39cc7fb8141043cc30de63fd1655bb22c680feb4e5fbc4dfae38633186cf772c6824167a06f9a6634e491b495321bbfa19b905f00a25ce956a5386dd83b2c67ec6d2e3d8c33501a1e32b91c8696aebb70ea6c5b6ede3bc590243feda", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400000010000700000e0000000000000000000a20000000000a03000000000000000000010000000900010073797a30000000003c000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a30000000000800054000000002600000000c0a01080000000000000000010000000900020073797a32000000003400038030000080080003400000000224000b80200001800e000100636f6e6e6c696d69740000000c00028008000140000000000900010073797a30"], 0xe4}}, 0x0)

1m55.957779467s ago: executing program 1 (id=395):
r0 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
symlink(&(0x7f0000000240)='./file0/file0\x00', 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_opts(r1, 0x0, 0x80000000000008, &(0x7f0000000180)="8c", 0x1)
setsockopt$inet_opts(r1, 0x0, 0xc, &(0x7f0000000000)="c1", 0x1)
getsockopt$inet_opts(r1, 0x0, 0x9, &(0x7f0000000380)=""/20, &(0x7f0000000580)=0x14)
socket(0x28, 0x3, 0x40)
r2 = openat$selinux_create(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
getsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f00000001c0)={@loopback, @dev}, &(0x7f0000000200)=0xc)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000540)={r0, 0x20, &(0x7f0000000500)={&(0x7f00000003c0)=""/161, 0xa1, 0x0, &(0x7f0000000480)=""/71, 0x47}}, 0x10)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r3 = syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x400, &(0x7f0000000000)={[{@grpjquota}, {@stripe={'stripe', 0x3d, 0x1}}]}, 0x1, 0x4a6, &(0x7f0000000a40)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
r4 = creat(&(0x7f0000000340)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r5 = open(&(0x7f0000000500)='./bus\x00', 0x0, 0x42)
ioctl$LOOP_SET_STATUS64(r5, 0x4c04, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x13, 0x0, "ef359f41a4ae6dddfbd1ce5d29c2ee5e5c9d000ff8ee09e737ff0edf110ff4eb4b78c66ee677df701905b9aafab4ffffffff00", "cba3d625780820d1cbf7db71038259ca171ce1a311ef97e4298d1e14ef01060000e9009600fdff00000000000000000000000000000000000400", "d300e6d6ae9ef30bea2a004000", [0x2]})
openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
llistxattr(&(0x7f0000000040)='./file1\x00', 0x0, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000000, 0x8010, r0, 0x0)
syz_io_uring_setup(0x3bc1, &(0x7f0000000780)={0x0, 0x942e, 0x10100, 0x2, 0x289}, &(0x7f0000000540), &(0x7f0000000040)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd=r3, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)=""/4, 0x4}], 0x1})
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000800)=@IORING_OP_ASYNC_CANCEL={0xe, 0x46, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x0, {0x0, r8}})
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="09000000070000000000010003"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, &(0x7f0000000840)=ANY=[@ANYBLOB="180000000107000000000000000000001811000091fb5eb25c7c23ec4acf900b241b31a977dd82506becb8d4067e8de08f070000000000000071ec896a65e6600d3d9fd53375db85611d3501a098cb59b13005c99a4710638d8716c1ae7ed38c30a8f01092402128af2bff81ba6250dfb0f32bdb013b28a3ed0f1c6685e4f7472a6dddb5f960a8d874a79ed2bbf01ac51bff14dd1c7286307e2278ed67bc6c7c9b6755fc2e769eb17acedf95af5f6f6a072e49290100000000000000dfadbea25f75281c063642f3cea55daf26d4bbc550bbf12ffa5a286ce42136e4978091b5764a35d22e9670353984c69ce0ba623c9eecd414b6e5732afd4fa80cebe5844414245288d0a807fb", @ANYRES16=r2, @ANYBLOB="000000000000dd6e9babe2e33be7170040912328d3aa3da4661249b762f8ff00000000bfa2000000003a1407020000f8ffffffb7030000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, @fallback=0x2e, r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x83, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r9, 0x0, 0x178}, 0x18)
r10 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0)
ioctl$TIOCVHANGUP(r10, 0x5437, 0x2)

1m55.489751334s ago: executing program 1 (id=405):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f00000003c0)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x29, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
getresgid(&(0x7f0000000c40), &(0x7f0000000140), &(0x7f0000000240)=<r3=>0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000400396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={0x0, r4, 0x0, 0x8000000000}, 0x18)
socket$xdp(0x2c, 0x3, 0x0)
syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000000200)='./file0\x00', 0x3111c34, &(0x7f0000000780)=ANY=[@ANYBLOB="756d61736b3d30303030303030303030301030303030303030301030302c666c7573682c6e74732c646f74732c6769643d000000", @ANYRESHEX, @ANYBLOB="00006b746769643d0092", @ANYRESDEC, @ANYRES8], 0x1, 0x206, &(0x7f0000000c80)="$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")
fchown(r2, 0x0, r3)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r5 = timerfd_create(0x7, 0x0)
r6 = add_key$user(&(0x7f0000000340), &(0x7f0000000380)={'syz', 0x2}, &(0x7f0000000440)="706a11756bf1256b1ecba540f1ad46002c1d073e5fc53287f9b3f3b69f76ef5cef413f5df8fe857447aa4ce1a1687bb8592aff855ce63ff42cd438d85a4268fb76ffb0ee1333d01b1e96eba8dea1fde5296e3563572fad00fc6c9a3e50b14d3f86e88e52cc22797258b9303f5f598dad0518f9d6637b281e7c1d64a069b6c9ce224d83a9e2885d981992b3511cbae80f83d542", 0x93, 0xfffffffffffffffb)
keyctl$KEYCTL_WATCH_KEY(0x20, r6, 0xffffffffffffffff, 0x21)
timerfd_gettime(r5, &(0x7f0000000000))
r7 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$restrict_keyring(0x1d, r7, 0x0, 0x0)
fsetxattr$security_selinux(r1, &(0x7f0000000200), &(0x7f0000000300)='system_u:object_r:qemu_device_t:s0\x00', 0x23, 0x0)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r7, &(0x7f0000000040)='asymmetric\x00', &(0x7f0000000000)=@chain)
syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000940)=ANY=[], 0x54}}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1ffffffffffffddc, &(0x7f0000000080)=[{0x6, 0x0, 0x7, 0x7fff0000}]})
msgrcv(0x0, &(0x7f0000000540)={0x0, ""/38}, 0x2e, 0x0, 0x1000)
msgctl$MSG_INFO(0x0, 0xc, 0x0)
unshare(0x64000600)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000faffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, 0x0, &(0x7f0000000400)='GPL\x00', 0xf1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

1m55.236747239s ago: executing program 1 (id=410):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000540)='./bus\x00', 0x8800, &(0x7f00000006c0)={[{@errors_remount}, {@sysvgroups}, {@minixdf}]}, 0x1, 0x50c, &(0x7f0000001000)="$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")
r0 = open(&(0x7f00000002c0)='./file2\x00', 0x189242, 0x0)
fallocate(r0, 0x10, 0x2, 0x7000000)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x300000000000000, 0x0, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x107042, 0x0)
write$P9_RSTAT(r0, 0x0, 0x47)
openat(0xffffffffffffff9c, 0x0, 0x187842, 0x3)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00"/11], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000680)='kfree\x00', r2}, 0x18)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000180)={'bridge0\x00', <r4=>0x0})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000200)={'batadv0\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=@newlink={0x48, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x21}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @hsr={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_HSR_SLAVE1={0x8, 0x1, r4}, @IFLA_HSR_SLAVE2={0x8, 0x2, r5}]}}}, @IFLA_MASTER={0x8, 0xa, r5}]}, 0x48}}, 0x0)

1m55.236294078s ago: executing program 32 (id=410):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000540)='./bus\x00', 0x8800, &(0x7f00000006c0)={[{@errors_remount}, {@sysvgroups}, {@minixdf}]}, 0x1, 0x50c, &(0x7f0000001000)="$eJzs3c9vG1kdAPCvnThx0uwmu+wBEOyW3YWCqjqJuxut9gDLEaGVEHsEqRsSN4pix1HsLJvQQ3rmikQlTvTIH8C5Jw7cuCC4cSkHJH5EoAaJg9GMJ6mb2o3VJHYUfz7SaObNm/r7fXH8Xuc59gtgZF2PiP2ImIiITyNiNjufy7b4qL0l1z05uLdyeHBvJRet1if/zKX1ybno+DeJa9ljFiPihw8jfpJ7Pm5jd29juVqtbGfl+WZta76xu3drvba8VlmrbJbLS4tLCx/cfr98bm19qzaRHX318R/2v/WzJK2Z7ExnO85Tu+mF4ziJ8Yj4/kUEG4KxrD0Tw06El5KPiNcj4u309T8bY+mzCQBcZa3WbLRmO8sAwFWXT+fAcvlSNhcwE/l8qdSew3sjpvPVeqN58259Z3O1PVc2F4X83fVqZSGbK5yLQi4pL6bHT8vlE+XbEfFaRPxiciotl1bq1dVh/scHAEbYtRPj/38m2+M/AHDFFYedAAAwcD3G//1B5wEADI77fwAYPcZ/ABg97fF/athpAAAD5P4fAEaP8R8ARsoPPv442VqH2fdfr362u7NR/+zWaqWxUartrJRW6ttbpbV6fS39zp7aaY9Xrde3Ft+Lnc/nvr3VaM43dvfu1Oo7m8076fd636kU0qt8sgAAhum1tx79OZeMyB9OpVt0rOVQGGpmwEXLDzsBYGjGhp0AMDRW+4LRdYZ7fNMDcEV0WaL3GcVuHxBqtVqti0sJuGA3vmT+H0ZVx/y/vwKGEWP+H0aX+X8YXa1Wrt81/6PfCwGAy80cP9Dj/f/Xs/1vsjcHfrx68ooHF5kVAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAXG5H6/+WsrXAZyKfL5UiXomIuSjk7q5XKwsR8WpE/GmyMJmUF4ecMwBwVvm/5bL1v27MvjvzTNWb144PJyLip7/65JefLzeb23+MmMj9a/LofPNBdr48+OwBgNMdjdPpvuNG/snBvZWjbZD5/P27EVFsxz88mIjD4/jjMZ7ui1GIiOl/57JyW65j7uIs9u9HxBe7tT8XM+kcSHvl05Pxk9ivDDR+/pn4+bSuvU9+Fl84h1xg1DxK+p+Pur3+8nE93Xd//RfTHurssv4veaiVw7QPfBr/qP8b69H/Xe83xnu/+177aOr5uvsRXx6POIp92NH/HMXP9Yj/bp/x//KVN9/uVdf6dcSN6B6/M9Z8s7Y139jdu7VeW16rrFU2y+WlxaWFD26/X55P56jne48G//jw5qu96pL2T/eIXzyl/V/vs/0P//fpj772gvjffKdb/Hy88YL4yZj4jT7jL0//ttirLom/2qP9pz3/N/uM//ive88tGw4ADE9jd29juVqtbI/kQfR38e+zH9alyHmkD5Jn4RKk0fXgO4OKNRHdq37+TvvXdDKi8xe71XqpWL16jPOYdQMug+MXfUT8d9jJAAAAAAAAAAAAAAAAXQ3iE0vDbiMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABX1/8DAAD//9RMyv0=")
r0 = open(&(0x7f00000002c0)='./file2\x00', 0x189242, 0x0)
fallocate(r0, 0x10, 0x2, 0x7000000)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x300000000000000, 0x0, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x107042, 0x0)
write$P9_RSTAT(r0, 0x0, 0x47)
openat(0xffffffffffffff9c, 0x0, 0x187842, 0x3)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00"/11], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000680)='kfree\x00', r2}, 0x18)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000180)={'bridge0\x00', <r4=>0x0})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000200)={'batadv0\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=@newlink={0x48, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x21}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @hsr={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_HSR_SLAVE1={0x8, 0x1, r4}, @IFLA_HSR_SLAVE2={0x8, 0x2, r5}]}}}, @IFLA_MASTER={0x8, 0xa, r5}]}, 0x48}}, 0x0)

1m9.282427489s ago: executing program 4 (id=1782):
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$KEYCTL_MOVE(0x1e, r0, 0xfffffffffffffffe, r0, 0x0)

1m9.22085615s ago: executing program 4 (id=1783):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0, 0x0, 0xffffffff}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000100)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@resgid}, {@data_err_ignore}, {@jqfmt_vfsv0}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
fallocate(r1, 0x2000000, 0x0, 0x8000c62)

1m9.005187884s ago: executing program 4 (id=1790):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000012c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEAUTHENTICATE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)={0x20, r1, 0xfc5, 0x0, 0x0, {{0x11}, {@val={0x8}, @void}}, [@NL80211_ATTR_IE={0x4}]}, 0x20}}, 0x0)

1m8.975410964s ago: executing program 4 (id=1792):
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c480000", @ANYRES16=0x0, @ANYBLOB="010000000008000000001200000007"], 0x1c}}, 0x0)
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fffffff7850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000000)='kfree\x00', r1}, 0x30)
write$selinux_load(r0, &(0x7f0000000340)={0xf97cff8c, 0x8}, 0x2000)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200180000000000000000000850000007b00000095"], &(0x7f0000000800)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x11, &(0x7f0000000180)={[{@nombcache}, {@debug}, {@norecovery}, {@grpid}, {@norecovery}]}, 0x9, 0x60c, &(0x7f00000001c0)="$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")
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_emit_ethernet(0x1de, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd606410a601a80000fc020000000000000000000000000000fe8000000000000000000000000000aa223405"], 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, 0x0, 0x0)
prctl$PR_SET_NAME(0xf, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000080000000000000010000009400000007ad4160850000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x4e, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='netlink_extack\x00', r3}, 0x10)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000008c0)=ANY=[@ANYBLOB="7c02000021000100000000000100000000000000000000000000000000000000fe8000000000000000000000000000bb00000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRESHEX=r0], 0x27c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000005c0)={{r5}, &(0x7f0000000540), &(0x7f0000000580)='%pS    \x00'}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r6}, 0x10)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r7}, 0x10)
syz_clone(0x3002500, 0x0, 0x0, 0x0, 0x0, 0x0)
stat(0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000840)={&(0x7f0000000880)='xprtrdma_post_send_err\x00', r2, 0x0, 0x1}, 0x18)
syz_io_uring_setup(0x5c3, &(0x7f0000000500)={0x0, 0x67a4, 0x0, 0x0, 0x11d}, &(0x7f0000000240)=<r8=>0x0, &(0x7f0000000040)=<r9=>0x0)
unshare(0x22020600)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r8, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r8, r9, &(0x7f00000004c0)=@IORING_OP_READ=@pass_buffer={0x16, 0xa, 0x0, @fd_index=0x9, 0xc, 0x0, 0x0, 0x2})

1m8.585018191s ago: executing program 4 (id=1799):
r0 = socket$nl_route(0x10, 0x3, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x4008040)

1m5.437409261s ago: executing program 4 (id=1860):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_emit_ethernet(0x3e, &(0x7f0000000500)=ANY=[@ANYBLOB="ffffffffffffbbbbbbbbbbbb86dd600000ef00083a00fc010000000002000000000000000000fe8000000000000000000000000000aa"], 0x0)

1m5.401951551s ago: executing program 33 (id=1860):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_emit_ethernet(0x3e, &(0x7f0000000500)=ANY=[@ANYBLOB="ffffffffffffbbbbbbbbbbbb86dd600000ef00083a00fc010000000002000000000000000000fe8000000000000000000000000000aa"], 0x0)

1.024778814s ago: executing program 5 (id=3628):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$rds(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000d40)=@base={0x1, 0x7, 0x6, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f00000002c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x10, 0x4, 0x410, 0x1f8, 0x110, 0x110, 0x328, 0x328, 0x328, 0x4, 0x0, {[{{@arp={@initdev={0xac, 0x1e, 0x1, 0x0}, @empty, 0xffffffff, 0xff, 0x6, 0x9, {@empty, {[0x0, 0x0, 0x0, 0xff, 0x0, 0xff]}}, {@mac=@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, {[0x0, 0x0, 0xff, 0x0, 0xff, 0xff]}}, 0x9, 0x1, 0x4, 0x8000, 0x9, 0x6, 'team_slave_1\x00', 'pimreg1\x00', {0xff}, {0xff}, 0x0, 0x80}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@random="373d5a32f183", @mac=@local, @multicast1, @private=0xa010101, 0xf, 0xffffffff}}}, {{@uncond, 0xc0, 0xe8}, @unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00', 0x2, {0xf801, 0x1}}}, {{@uncond, 0xc0, 0x130}, @unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x503, 0x7, 0x3, 0x0, 0x0, "87c554beb2237beb86334ba164072a96605dfe6fd1171a40dde8fa491b8c5efa97e8f2b9ecfddca69fdea22ab391cbb3318bebd8d70d16ac533b2967195b6c2d"}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x460)
r3 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000280), 0x1, 0x0)
writev(r3, &(0x7f0000000040)=[{&(0x7f0000002500)='\f7', 0x2}, {&(0x7f0000000000)='0', 0x1}], 0x2)

892.366806ms ago: executing program 0 (id=3629):
bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x2, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000100)='io_uring_register\x00', r0}, 0x10)
r1 = io_uring_setup(0x5594, &(0x7f00000003c0)={0x0, 0x10000000, 0x1, 0x0, 0x200001d2})
io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)

865.120926ms ago: executing program 3 (id=3630):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
personality(0x6000003)
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f0000000c00), 0x1, 0xb80, &(0x7f0000000c40)="$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")
getsockname$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0x0, <r0=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000140)=0x14)
r1 = openat$selinux_status(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000500)={0xffffffffffffffff, 0xe0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000240)=[0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x6, 0x6, &(0x7f0000000280)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], <r2=>0x0, 0x4e, &(0x7f0000000300)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f0000000340), &(0x7f0000000380), 0x8, 0x59, 0x8, 0x8, &(0x7f00000003c0)}}, 0x10)
r3 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000580)=@generic={&(0x7f0000000540)='./file0\x00', 0x0, 0x10}, 0x18)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000005c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x5, 0x1, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b704000008000000850000009500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000080000000c"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e00000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r6}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r7 = syz_open_dev$usbfs(&(0x7f0000000080), 0x72, 0x101301)
ioctl$USBDEVFS_IOCTL(r7, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r7, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect)
r8 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000640)={0x1b, 0x0, 0x0, 0x96c, 0x0, 0xffffffffffffffff, 0x10001, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x5, 0x2, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000740)=@bpf_lsm={0x1d, 0x4, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x800}, [@ldst={0x3, 0x1, 0x0, 0x0, 0x4, 0xfffffffffffffff4, 0xfffffffffffffff0}]}, &(0x7f0000000080)='GPL\x00', 0x3, 0x0, 0x0, 0x74effef4693881eb, 0xa, '\x00', r0, 0x1b, r1, 0x8, &(0x7f00000001c0)={0x4, 0x1}, 0x8, 0x10, &(0x7f0000000200)={0x3, 0x9, 0x4ce8debc, 0x6}, 0x10, r2, 0x0, 0x2, &(0x7f00000006c0)=[0x1, 0xffffffffffffffff, r3, r4, 0xffffffffffffffff, r8, 0x1], &(0x7f0000000700)=[{0x2, 0x3, 0xc, 0xc}, {0x5, 0x4, 0xc, 0x5}], 0x10, 0x7ff, @void, @value}, 0x94)
lchown(&(0x7f0000000e40)='./file1\x00', 0xffffffffffffffff, 0xee01)

771.464398ms ago: executing program 0 (id=3632):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000003, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r0 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e24, 0x3, @mcast1, 0x5}, 0x1c)
writev(r0, 0x0, 0x0)

695.866929ms ago: executing program 6 (id=3636):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000980)=ANY=[@ANYBLOB="48000000100039042abd7000eaffffff000003e4", @ANYBLOB="03000000c31006002800128008000100736974001c000280080002000614142d08000c00ee"], 0x48}, 0x1, 0x0, 0x0, 0x8000}, 0x4008040)

637.66756ms ago: executing program 5 (id=3637):
close(0xffffffffffffffff)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000002000000e27f000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r0}, &(0x7f0000000040), &(0x7f0000000080)=r1}, 0x20)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f00000006c0), 0x1, 0x513, &(0x7f0000000c40)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c460d04000c028000000000000003003e00ecffffff940200000000000040000000000000004d020000000000000000000000003800010001017f000800030000006400000005000000000000000a000000000000000101000000000000a1"], 0x78)
close(r2)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)

636.84743ms ago: executing program 3 (id=3638):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
open(&(0x7f0000000080)='./bus\x00', 0x143c62, 0x0)
mbind(&(0x7f00005b4000/0x4000)=nil, 0x100000000004000, 0x0, 0x0, 0x0, 0x2)

624.12495ms ago: executing program 6 (id=3639):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000001100)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000b800000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f00000002c0)='kmem_cache_free\x00', r0}, 0x18)
process_mrelease(0xffffffffffffffff, 0x1000000)

564.811531ms ago: executing program 6 (id=3642):
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0xe, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000a80)='block_plug\x00', r0, 0x0, 0xfffffffffffffffe}, 0x18)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB], &(0x7f00000000c0)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
preadv(0xffffffffffffffff, &(0x7f0000000180)=[{&(0x7f00000012c0)=""/112, 0x70}], 0x1, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_DELETE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[], 0xc3ff}}, 0x0)
writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)

506.234992ms ago: executing program 5 (id=3644):
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x10)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000002540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040)={<r2=>0xffffffffffffffff}, 0x106}}, 0x20)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r4=>0x0})
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_MESH(r3, &(0x7f0000006880)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)={0x24, r5, 0x1, 0x0, 0x25dfdbff, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r4}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x48000}, 0x0)
sendmsg$nl_generic(r3, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x1c, 0x21, 0x400, 0x70bd25, 0x25dfdbfd, {0x6}, [@typed={0x8, 0x5d, 0x0, 0x0, @u32=0xa}, @generic]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x1)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000640)='mm_page_free\x00', r8, 0x0, 0x178}, 0x18)
r9 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCVHANGUP(r9, 0x5437, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r10}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r6}, &(0x7f0000000800), &(0x7f0000000840)=r10}, 0x20)
io_submit(0x0, 0x0, 0x0)
rseq(0x0, 0x0, 0x1, 0x0)
write$RDMA_USER_CM_CMD_QUERY(r1, &(0x7f0000000000)={0x13, 0x10, 0xfa00, {&(0x7f0000005b00), r2, 0x1}}, 0x18)
r11 = socket(0x2, 0x80802, 0x0)
r12 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r12, 0x1, r11, &(0x7f00000000c0)={0x2001})
epoll_pwait(r12, &(0x7f0000000080)=[{}], 0x1, 0x80000001, 0x0, 0x0)
shutdown(r11, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2c0000001a000100000000000000000002"], 0x2c}}, 0x0)

505.314952ms ago: executing program 6 (id=3645):
tkill(0xffffffffffffffff, 0x2d)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3af, 0x4}, 0x100000, 0x0, 0x0, 0x3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r0 = syz_clone(0x20000, 0x0, 0x0, 0x0, 0x0, 0x0)
io_submit(0x0, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x2, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x2000000000000022, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ff"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000780), 0x4, r2}, 0x38)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xd, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRESOCT=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x14, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000080)='kfree\x00', r3}, 0x18)
r4 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r5 = dup(r4)
ioctl$PTP_EXTTS_REQUEST2(r5, 0x43403d05, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r6}, 0x38)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000140)='cq_process\x00', r7, 0x0, 0x2}, 0x18)
write$nci(r1, 0x0, 0xfffffeea)
r8 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
r9 = syz_open_dev$mouse(&(0x7f00000001c0), 0x7fffffff, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'vxcan0\x00', <r10=>0x0})
sendmsg$can_bcm(r9, &(0x7f0000000380)={&(0x7f0000000280)={0x1d, r10}, 0x10, &(0x7f0000000340)={&(0x7f00000002c0)=ANY=[@ANYBLOB="05000000040000000800000000000000", @ANYRES64=0x77359400, @ANYRES64=0x0, @ANYRES64=0x77359400, @ANYRES64=0x0, @ANYBLOB="0400006001000000040000c03d030000e3f07ab3c2a5bc8d812b81cf8b8b6b449df7a581fe62eb4b60e1d949717ffff91186005844b86485cb2f585860c67bf8dcb743414adc5bbd758134a5748351a6"], 0x80}, 0x1, 0x0, 0x0, 0x40800}, 0x48000)
keyctl$KEYCTL_MOVE(0x1e, r8, 0xfffffffffffffffe, r8, 0x0)

490.009442ms ago: executing program 2 (id=3646):
r0 = creat(&(0x7f0000000100)='./file0\x00', 0x96)
close(r0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0xfc, 0x7ffc1ffb}]})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000c80)='kmem_cache_free\x00', r2}, 0x10)
io_pgetevents(0x0, 0x5, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b708fcec292000d918546ab0e3007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008f477a782e3b3cd8600000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r3, 0x0, 0x9}, 0x18)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c00000010000305000000000000000000000300", @ANYRES32=0x0, @ANYBLOB="15460100493406001c0012800b0001006d616373656300000c0002800500030008"], 0x3c}}, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0b00000007000000010001000800000001000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00f\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x2})
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='qdisc_create\x00', r6}, 0x10)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='qdisc_create\x00', r7}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f0000000140)={'pim6reg1\x00', @broadcast})
eventfd(0xc)
mount$9p_fd(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r0}})

409.808954ms ago: executing program 3 (id=3647):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'macvlan0\x00'})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r3, 0x400, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='afs_folio_dirty\x00', 0xffffffffffffffff, 0x0, 0xfffffffffffffffc}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x7, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x2000cd5, &(0x7f0000000a40)=ANY=[@ANYBLOB="666c7573682c756e695f786c6174653d312c6e6f6e756d7461696c3d302c726f6469722c757466383d312c6e6f6e756d7461696c3d302c756e695f786c6174653d312c6e6f6e756d7461696c3d302c756e695f786c6174653d302c757466383d312c756e695f786c6174653d302c757466383d312c756e695f786c6174653d312c6e6f6e756d7461696c3d302c646f733178666c6f7070792c726f6469722c756e695f786c6174653d312c71756965742c00aaed2e6322e12ca43d55f4e47d9fb6f319fab9c81cd7b9b508d5df5619dad30ed85701f46d5bb2b85a6aecd28cb992054878a859b15b1598ee0b05192ff4df579d2dd32fb9a6a092bb22740cfe0636a3d8ff4e975e21fc6d6e2d6ece2beac2098361fe652ea69917e6d47463ceb0b35bc7a2f8799debe5e7b6e82c84ab25d06157c08f006d90e62a8026a845835dbf4ac25eec51c3ec73c82014eee15eaaa123084415546ca2e37c23d441b343cec1f74e52bc1f21eb18053a9b98d3a304fba3751bd0121940bc9d276f1e5352b9f4e674bb80ffeaaff6843ef1c8a7a7e0d592893a77ae91e025a35840e7ff4fdb3571d1986ed6f5a23d9ee6bf1cec94fb17af0627c04bf47586ce288a466c039a1ead7fd99feacc51d9f7a2e67f46a0b86b45e5d7cb4affc1c539a764f5"], 0xf5, 0x305, &(0x7f0000000080)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=ANY=[], &(0x7f0000000180), 0x0)

355.657484ms ago: executing program 2 (id=3648):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400ee", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001240)=@newqdisc={0x2c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000002c0)=@newtfilter={0xf0, 0x28, 0xd27, 0x70bd2b, 0x25dfdbff, {0x0, 0x0, 0x0, r4}, [@filter_kind_options=@f_flow={{0x9}, {0xb8, 0x2, [@TCA_FLOW_RSHIFT={0x8, 0x4, 0x8f}, @TCA_FLOW_ADDEND={0x8, 0x5, 0x800}, @TCA_FLOW_KEYS={0x8, 0x1, 0xdd96}, @TCA_FLOW_XOR={0x2, 0x7, 0x1}, @TCA_FLOW_EMATCHES={0x94, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x6}}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x6}}, @TCA_EMATCH_TREE_LIST={0x58, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x14, 0x1, 0x0, 0x0, {{0x400}, {0x400, 0x2, 0x1, "8876"}}}, @TCF_EM_CMP={0x18, 0x1, 0x0, 0x0, {{0x7, 0x1, 0xb}, {0x6, 0x2, 0x3, 0x0, 0x6}}}, @TCF_EM_CONTAINER={0xc, 0x3, 0x0, 0x0, {{0x3}}}, @TCF_EM_U32={0x1c, 0x3, 0x0, 0x0, {{0x2, 0x3, 0x6}, {0x5, 0x8, 0x3, 0x2fba}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x3}}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x1}}, @TCA_EMATCH_TREE_HDR={0x8}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x3}}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x800}}]}]}}, @TCA_RATE={0x6, 0x5, {0xb8, 0x1}}]}, 0xf0}}, 0x0)

324.404805ms ago: executing program 0 (id=3649):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000980)=ANY=[@ANYBLOB="48000000100039042abd7000eaffffff000003e4", @ANYBLOB="03000000c31006002800128008000100736974001c000280080002000614142d08000c00ee"], 0x48}, 0x1, 0x0, 0x0, 0x8000}, 0x4008040)

323.956875ms ago: executing program 0 (id=3650):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bf"], &(0x7f0000000340)='GPL\x00', 0x2, 0x0, 0x0, 0x1e00, 0x0, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x18)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$VT_DISALLOCATE(r1, 0x5608)

308.293025ms ago: executing program 5 (id=3651):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500000073000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0, 0x0, 0xffffffff}, 0x18)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000002c0)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000080), 0x111, 0x6}}, 0x20)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r2, 0xffffffffffffffff, 0x0)

295.305166ms ago: executing program 3 (id=3652):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$PROG_LOAD(0x5, &(0x7f0000001100)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000b800000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
process_mrelease(0xffffffffffffffff, 0x1000000)

281.763226ms ago: executing program 2 (id=3653):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
eventfd(0x8b)

269.335225ms ago: executing program 0 (id=3654):
close(0xffffffffffffffff)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000002000000e27f000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r0}, &(0x7f0000000040), &(0x7f0000000080)=r1}, 0x20)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f00000006c0), 0x1, 0x513, &(0x7f0000000c40)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c460d04000c028000000000000003003e00ecffffff940200000000000040000000000000004d020000000000000000000000003800010001017f000800030000006400000005000000000000000a000000000000000101000000000000a1"], 0x78)
close(r2)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)

252.184316ms ago: executing program 5 (id=3655):
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000080)={<r0=>0x0, <r1=>0x0})
close(r0)
setsockopt$sock_attach_bpf(r1, 0x10f, 0x87, &(0x7f0000000180), 0x4bd)
r2 = socket$kcm(0x1e, 0x4, 0x0)
setsockopt$sock_attach_bpf(r2, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
sendmsg$kcm(r2, &(0x7f0000000100)={&(0x7f0000001540)=@tipc=@name={0x1e, 0x2, 0x0, {{0x0, 0x1}, 0x1}}, 0x80, 0x0}, 0xd0)
ioctl$TUNSETPERSIST(0xffffffffffffffff, 0x400454cb, 0x40000)
socket$tipc(0x1e, 0x5, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = memfd_create(&(0x7f00000001c0)='\x00\xc76\xbe\x91\x8d\x182)!\x9a%\xd9\x19\x17\xb0\xed|\xb3\xc2\x017h\xe9kL\xa2\xd28\xd6\x06\a\x0e\xfc\xfe\x12\x8f&\x13\xae%@T\xa3\xb0>\\\xec\xa9\xf9Q@6A\x10\x8cn|\x00\x00\x00\x00\x00\x00\x00\x00\xeb0\xdd\xe8\x87\x05=\xfb\x8b$\xdcQ\xee\xc5\x1f\x8bQ\xf7fo\"i\xa1hk\x1d\xf5z\xc1\x7f\xa4\\]\xc4\xbe3\xf9\xa8\t?:\xd8\xda\x84\xeepI[\x1c\x00\x00\x00\x00\xf9v\x00\x00\x00\x00\x00T\xb6\xbe\x0f~\xc0\x92\xe9O{\xa8\x81(\x01\x14\xfc\x83\xf9\xfb\x05\x94Tr@Lq]\xf9\x15zj\x87\xc4\x8e\xe8/\xb9-&R\x8e\xb2\xb3bBx\x1e1\x18\x8f2\xf7]#\xed,\xc7\x03\x00\x00\x00\xa3\xee\xcb\xaf\xb3\xe3\'}\x18\xe8O\xa8#K\xb6\xe4R$\xaa\x00U\x92\xd2\x99\xb8<X\xfa\xdd\x8a6\xa1\x82\xf7r\xd8z\x85\x8do\xa5\xed\xd4\xbc8\xfb\x16\x8e\x8b-W\xd4\xc9\xbc\x94CR[Du8U^\xf2tl8\xfe\xd0\x94\xfe\xf5\x1c+\x00U\te\xfa6\xca\xb9\xb4Q\xd9\xee\r6\x861h{\xc7z\'F\xc7\x91\x06x\xe1`\xf1:\xbd+\xd5\f\xb2\xce\xa4\x06\x90\x90\x9b\x1d\xcaa\xf7\x8f\x9e\x80\x93\xafT\xdfl\xec\xc6\x8e\x96', 0x5)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000008000000000000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000940)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f00000001c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
fsetxattr$security_selinux(r3, &(0x7f0000000480), &(0x7f00000004c0)='system_u:object_r:hwdata_t:s0\x00', 0x1a, 0x0)

243.356816ms ago: executing program 3 (id=3656):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
personality(0x6000003)
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f0000000c00), 0x1, 0xb80, &(0x7f0000000c40)="$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")
getsockname$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0x0, <r0=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000140)=0x14)
r1 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000500)={0xffffffffffffffff, 0xe0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000240)=[0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x6, 0x6, &(0x7f0000000280)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], <r2=>0x0, 0x4e, &(0x7f0000000300)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f0000000340), &(0x7f0000000380), 0x8, 0x59, 0x8, 0x8, &(0x7f00000003c0)}}, 0x10)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000005c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x5, 0x1, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b704000008000000850000009500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000080000000c"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e00000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r5}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r6 = syz_open_dev$usbfs(&(0x7f0000000080), 0x72, 0x101301)
ioctl$USBDEVFS_IOCTL(r6, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r6, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect)
r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000640)={0x1b, 0x0, 0x0, 0x96c, 0x0, 0xffffffffffffffff, 0x10001, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x5, 0x2, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000740)=@bpf_lsm={0x1d, 0x4, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x800}, [@ldst={0x3, 0x1, 0x0, 0x0, 0x4, 0xfffffffffffffff4, 0xfffffffffffffff0}]}, &(0x7f0000000080)='GPL\x00', 0x3, 0x0, 0x0, 0x74effef4693881eb, 0xa, '\x00', r0, 0x1b, r1, 0x8, &(0x7f00000001c0)={0x4, 0x1}, 0x8, 0x10, &(0x7f0000000200)={0x3, 0x9, 0x4ce8debc, 0x6}, 0x10, r2, 0x0, 0x2, &(0x7f00000006c0)=[0x1, 0xffffffffffffffff, 0xffffffffffffffff, r3, 0xffffffffffffffff, r7, 0x1], &(0x7f0000000700)=[{0x2, 0x3, 0xc, 0xc}, {0x5, 0x4, 0xc, 0x5}], 0x10, 0x7ff, @void, @value}, 0x94)
lchown(&(0x7f0000000e40)='./file1\x00', 0xffffffffffffffff, 0xee01)

234.080936ms ago: executing program 2 (id=3657):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
open(&(0x7f0000000080)='./bus\x00', 0x143c62, 0x0)
mbind(&(0x7f00005b4000/0x4000)=nil, 0x100000000004000, 0x0, 0x0, 0x0, 0x2)

214.111877ms ago: executing program 5 (id=3658):
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000840)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fcae68da850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000040)={[{@errors_remount}, {@abort}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5e}}, {@noauto_da_alloc}, {@bsdgroups}, {@oldalloc}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x2, 0x44a, &(0x7f0000000400)="$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")

213.757317ms ago: executing program 6 (id=3659):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x2000cd5, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], 0xf5, 0x305, &(0x7f0000000080)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000000180), 0x0)

84.018879ms ago: executing program 2 (id=3660):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0xd, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="040000000400000004000000"], 0x48)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000980)={0x0, 0x7}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
mount(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,')
mbind(&(0x7f0000978000/0x2000)=nil, 0x2000, 0x4, 0x0, 0x4000000000000000, 0x2)
mbind(&(0x7f00005b4000/0x4000)=nil, 0x100000000004000, 0x0, 0x0, 0x0, 0x2)

64.511339ms ago: executing program 0 (id=3661):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000980)=ANY=[@ANYBLOB="48000000100039042abd7000eaffffff000003e4", @ANYBLOB="03000000c31006002800128008000100736974001c000280080002000614142d08000c00ee"], 0x48}, 0x1, 0x0, 0x0, 0x8000}, 0x4008040)

61.0359ms ago: executing program 6 (id=3662):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'macvlan0\x00'})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r3, 0x400, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='afs_folio_dirty\x00', 0xffffffffffffffff, 0x0, 0xfffffffffffffffc}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x7, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x2000cd5, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], 0xf5, 0x305, &(0x7f0000000080)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=ANY=[], &(0x7f0000000180), 0x0)

6.67848ms ago: executing program 2 (id=3663):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000003, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r0 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e24, 0x3, @mcast1, 0x5}, 0x1c)
writev(r0, 0x0, 0x0)

0s ago: executing program 3 (id=3664):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400ee", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001240)=@newqdisc={0x2c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000002c0)=@newtfilter={0xf0, 0x28, 0xd27, 0x70bd2b, 0x25dfdbff, {0x0, 0x0, 0x0, r4}, [@filter_kind_options=@f_flow={{0x9}, {0xb8, 0x2, [@TCA_FLOW_RSHIFT={0x8, 0x4, 0x8f}, @TCA_FLOW_ADDEND={0x8, 0x5, 0x800}, @TCA_FLOW_KEYS={0x8, 0x1, 0xdd96}, @TCA_FLOW_XOR={0x2, 0x7, 0x1}, @TCA_FLOW_EMATCHES={0x94, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x6}}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x6}}, @TCA_EMATCH_TREE_LIST={0x58, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x14, 0x1, 0x0, 0x0, {{0x400}, {0x400, 0x2, 0x1, "8876"}}}, @TCF_EM_CMP={0x18, 0x1, 0x0, 0x0, {{0x7, 0x1, 0xb}, {0x6, 0x2, 0x3, 0x0, 0x6}}}, @TCF_EM_CONTAINER={0xc, 0x3, 0x0, 0x0, {{0x3}}}, @TCF_EM_U32={0x1c, 0x3, 0x0, 0x0, {{0x2, 0x3, 0x6}, {0x5, 0x8, 0x3, 0x2fba}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x3}}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x1}}, @TCA_EMATCH_TREE_HDR={0x8}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x3}}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x800}}]}]}}, @TCA_RATE={0x6, 0x5, {0xb8, 0x1}}]}, 0xf0}}, 0x0)

kernel console output (not intermixed with test programs):


[  130.876278][T16650]  get_sigframe+0x308/0x440
[  130.876347][T16650]  x64_setup_rt_frame+0xb4/0x5a0
[  130.876419][T16650]  arch_do_signal_or_restart+0x279/0x480
[  130.876502][T16650]  syscall_exit_to_user_mode+0x62/0x120
[  130.876577][T16650]  do_syscall_64+0xd6/0x1a0
[  130.876601][T16650]  ? clear_bhb_loop+0x25/0x80
[  130.876618][T16650]  ? clear_bhb_loop+0x25/0x80
[  130.876636][T16650]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.876732][T16650] RIP: 0033:0x7f562b66e169
[  130.876747][T16650] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  130.876765][T16650] RSP: 002b:00007f5629cd7038 EFLAGS: 00000246 ORIG_RAX: 000000000000005e
[  130.876785][T16650] RAX: 0000000000000000 RBX: 00007f562b895fa0 RCX: 00007f562b66e169
[  130.876802][T16650] RDX: 000000000000ee01 RSI: 0000000000000000 RDI: 0000200000000000
[  130.876814][T16650] RBP: 00007f5629cd7090 R08: 0000000000000000 R09: 0000000000000000
[  130.876824][T16650] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  130.876867][T16650] R13: 0000000000000000 R14: 00007f562b895fa0 R15: 00007ffccb06d5e8
[  130.876906][T16650]  </TASK>
[  131.077572][T16651] loop5: detected capacity change from 0 to 512
[  131.084209][T16651] EXT4-fs: Ignoring removed oldalloc option
[  131.137671][T16651] EXT4-fs error (device loop5): ext4_xattr_inode_iget:433: comm syz.5.2967: Parent and EA inode have the same ino 15
[  131.150744][T16651] EXT4-fs (loop5): Remounting filesystem read-only
[  131.157303][T16651] EXT4-fs warning (device loop5): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  131.170653][T16651] EXT4-fs (loop5): 1 orphan inode deleted
[  131.176790][T16651] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  131.189337][T16657] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=16657 comm=syz.0.2964
[  131.201924][T16657] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=16657 comm=syz.0.2964
[  131.239748][T16651] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.508178][T16663] infiniband srz1: RDMA CMA: cma_listen_on_dev, error -98
[  131.587953][T16670] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2974'.
[  131.598548][T16670] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2974'.
[  131.632823][T16674] loop2: detected capacity change from 0 to 512
[  131.633627][T16670] netlink: 156 bytes leftover after parsing attributes in process `syz.3.2974'.
[  131.640383][T16674] EXT4-fs: Ignoring removed oldalloc option
[  131.656450][T16676] loop6: detected capacity change from 0 to 128
[  131.663805][T16676] FAT-fs (loop6): bogus number of reserved sectors
[  131.670330][T16676] FAT-fs (loop6): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  131.679633][T16676] FAT-fs (loop6): Can't find a valid FAT filesystem
[  131.691227][T16678] loop5: detected capacity change from 0 to 4096
[  131.713976][T16678] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.756659][T16674] EXT4-fs error (device loop2): ext4_xattr_inode_iget:433: comm syz.2.2976: Parent and EA inode have the same ino 15
[  131.773660][T16678] hub 4-0:1.0: USB hub found
[  131.779925][T16678] hub 4-0:1.0: 8 ports detected
[  131.785026][T16674] EXT4-fs (loop2): Remounting filesystem read-only
[  131.791551][T16674] EXT4-fs warning (device loop2): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  131.802675][T16674] EXT4-fs (loop2): 1 orphan inode deleted
[  131.820463][T16674] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  131.825653][T16690] loop3: detected capacity change from 0 to 512
[  131.839632][T16690] EXT4-fs: Ignoring removed oldalloc option
[  131.850751][ T4557] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.861271][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.871810][T16690] EXT4-fs error (device loop3): ext4_xattr_inode_iget:433: comm syz.3.2983: Parent and EA inode have the same ino 15
[  131.884413][T16690] EXT4-fs (loop3): Remounting filesystem read-only
[  131.891000][T16690] EXT4-fs warning (device loop3): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  131.901230][T16690] EXT4-fs (loop3): 1 orphan inode deleted
[  131.907693][T16690] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  131.930293][T16690] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.044585][T16704] loop5: detected capacity change from 0 to 512
[  132.063040][T16704] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  132.085847][T16704] EXT4-fs (loop5): orphan cleanup on readonly fs
[  132.100044][T16704] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.2989: bg 0: block 248: padding at end of block bitmap is not set
[  132.123595][T16704] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.2989: Failed to acquire dquot type 1
[  132.150285][T16704] EXT4-fs (loop5): 1 truncate cleaned up
[  132.158970][T16704] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  132.193847][T16704] EXT4-fs error (device loop5): ext4_lookup:1793: inode #2: comm syz.5.2989: deleted inode referenced: 12
[  132.247382][ T4557] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.323904][T16735] loop6: detected capacity change from 0 to 512
[  132.328220][T16737] loop5: detected capacity change from 0 to 512
[  132.337835][T16737] EXT4-fs: Ignoring removed oldalloc option
[  132.345370][T16735] EXT4-fs: Ignoring removed oldalloc option
[  132.361547][T16737] EXT4-fs error (device loop5): ext4_xattr_inode_iget:433: comm syz.5.3003: Parent and EA inode have the same ino 15
[  132.375835][T16735] EXT4-fs error (device loop6): ext4_xattr_inode_iget:433: comm syz.6.3002: Parent and EA inode have the same ino 15
[  132.388573][T16735] EXT4-fs (loop6): Remounting filesystem read-only
[  132.393746][T16737] EXT4-fs (loop5): Remounting filesystem read-only
[  132.395179][T16735] EXT4-fs warning (device loop6): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  132.401650][T16737] EXT4-fs warning (device loop5): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  132.411888][T16735] EXT4-fs (loop6): 1 orphan inode deleted
[  132.428470][T16735] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  132.429120][T16737] EXT4-fs (loop5): 1 orphan inode deleted
[  132.452306][T16743] loop2: detected capacity change from 0 to 4096
[  132.452438][T16737] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  132.472771][ T9684] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.483139][T16743] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.497565][T16737] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.536202][T16743] hub 4-0:1.0: USB hub found
[  132.541149][T16743] hub 4-0:1.0: 8 ports detected
[  132.588438][T16752] loop6: detected capacity change from 0 to 512
[  132.605036][T16752] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  132.613790][T16755] loop5: detected capacity change from 0 to 512
[  132.617366][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.630510][T16752] EXT4-fs (loop6): orphan cleanup on readonly fs
[  132.638788][T16752] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.3009: bg 0: block 248: padding at end of block bitmap is not set
[  132.639758][T16755] EXT4-fs (loop5): 1 orphan inode deleted
[  132.659212][   T12] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:0: Failed to release dquot type 1
[  132.664180][T16755] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.684780][T16752] EXT4-fs error (device loop6): ext4_acquire_dquot:6935: comm syz.6.3009: Failed to acquire dquot type 1
[  132.696506][T16755] ext4 filesystem being mounted at /528/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  132.712496][T16752] EXT4-fs (loop6): 1 truncate cleaned up
[  132.718894][T16752] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  132.747963][T16752] EXT4-fs error (device loop6): ext4_lookup:1793: inode #2: comm syz.6.3009: deleted inode referenced: 12
[  132.780893][ T4557] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.781024][   T12] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:0: Failed to release dquot type 1
[  132.786955][ T9684] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.908111][T16783] loop0: detected capacity change from 0 to 4096
[  132.925056][T16783] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.967138][T16783] hub 4-0:1.0: USB hub found
[  132.982541][T16783] hub 4-0:1.0: 8 ports detected
[  133.016603][T16084] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.038611][T16795] loop5: detected capacity change from 0 to 512
[  133.052131][T16795] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  133.090607][T16795] EXT4-fs (loop5): orphan cleanup on readonly fs
[  133.098072][T16795] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.3027: bg 0: block 248: padding at end of block bitmap is not set
[  133.113821][T16795] __quota_error: 299 callbacks suppressed
[  133.113834][T16795] Quota error (device loop5): write_blk: dquota write failed
[  133.127072][T16795] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  133.137001][T16795] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.3027: Failed to acquire dquot type 1
[  133.152339][T16795] EXT4-fs (loop5): 1 truncate cleaned up
[  133.160003][T16795] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  133.196021][T16795] EXT4-fs error (device loop5): ext4_lookup:1793: inode #2: comm syz.5.3027: deleted inode referenced: 12
[  133.244364][T16821] loop2: detected capacity change from 0 to 512
[  133.255857][T16821] EXT4-fs (loop2): 1 orphan inode deleted
[  133.262041][T16821] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.275649][ T3398] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  133.285451][ T3398] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:7: Failed to release dquot type 1
[  133.311589][T16821] ext4 filesystem being mounted at /577/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  133.341133][T16830] loop6: detected capacity change from 0 to 4096
[  133.356574][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.365663][ T3398] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  133.375486][ T3398] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:7: Failed to release dquot type 1
[  133.389959][T16830] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.402918][ T4557] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.446540][T16830] hub 4-0:1.0: USB hub found
[  133.451329][T16830] hub 4-0:1.0: 8 ports detected
[  133.476476][ T9684] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.492863][   T29] audit: type=1326 audit(1745001181.189:15824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16839 comm="syz.5.3042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe7694e169 code=0x7ffc0000
[  133.496132][T16840] loop5: detected capacity change from 0 to 512
[  133.525017][   T29] audit: type=1326 audit(1745001181.189:15825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16839 comm="syz.5.3042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe7694e169 code=0x7ffc0000
[  133.548759][   T29] audit: type=1326 audit(1745001181.189:15826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16839 comm="syz.5.3042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7efe7694e169 code=0x7ffc0000
[  133.572326][   T29] audit: type=1326 audit(1745001181.189:15827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16839 comm="syz.5.3042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7efe7694e1a3 code=0x7ffc0000
[  133.595841][   T29] audit: type=1326 audit(1745001181.189:15828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16839 comm="syz.5.3042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7efe7694cc1f code=0x7ffc0000
[  133.619238][   T29] audit: type=1326 audit(1745001181.189:15829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16839 comm="syz.5.3042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7efe7694e1f7 code=0x7ffc0000
[  133.643751][T16840] EXT4-fs: Ignoring removed oldalloc option
[  133.665511][T16840] EXT4-fs error (device loop5): ext4_xattr_inode_iget:433: comm syz.5.3042: Parent and EA inode have the same ino 15
[  133.680448][T16840] EXT4-fs (loop5): Remounting filesystem read-only
[  133.687024][T16840] EXT4-fs warning (device loop5): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  133.705213][T16840] EXT4-fs (loop5): 1 orphan inode deleted
[  133.711372][T16840] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  133.738133][ T4557] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.796956][T16863] loop6: detected capacity change from 0 to 128
[  133.804096][T16861] loop2: detected capacity change from 0 to 512
[  133.810341][T16863] FAT-fs (loop6): bogus number of reserved sectors
[  133.810356][T16863] FAT-fs (loop6): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  133.810376][T16863] FAT-fs (loop6): Can't find a valid FAT filesystem
[  133.837962][T16865] loop5: detected capacity change from 0 to 128
[  133.844909][T16861] EXT4-fs (loop2): 1 orphan inode deleted
[  133.851576][T16861] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.866312][T16861] ext4 filesystem being mounted at /581/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  133.868378][ T3398] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:7: Failed to release dquot type 1
[  133.900736][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.903800][T16864] dccp_close: ABORT with 7550 bytes unread
[  133.918551][  T563] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:5: Failed to release dquot type 1
[  133.989617][T16881] loop2: detected capacity change from 0 to 512
[  133.997661][T16881] EXT4-fs: Ignoring removed oldalloc option
[  134.005243][T16881] EXT4-fs error (device loop2): ext4_xattr_inode_iget:433: comm syz.2.3057: Parent and EA inode have the same ino 15
[  134.019247][T16881] EXT4-fs (loop2): Remounting filesystem read-only
[  134.025887][T16881] EXT4-fs warning (device loop2): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  134.040835][T16881] EXT4-fs (loop2): 1 orphan inode deleted
[  134.048292][T16881] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  134.094672][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.166582][T16897] loop0: detected capacity change from 0 to 512
[  134.189623][T16901] pim6reg1: entered promiscuous mode
[  134.195051][T16901] pim6reg1: entered allmulticast mode
[  134.203522][T16897] EXT4-fs (loop0): 1 orphan inode deleted
[  134.211931][T16897] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.230723][ T3398] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:7: Failed to release dquot type 1
[  134.239650][T16897] ext4 filesystem being mounted at /34/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  134.266794][T16084] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.267020][ T3398] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:7: Failed to release dquot type 1
[  134.313366][T16908] siw: device registration error -23
[  134.346040][T16915] loop0: detected capacity change from 0 to 512
[  134.352936][T16915] EXT4-fs: Ignoring removed oldalloc option
[  134.360883][T16915] EXT4-fs error (device loop0): ext4_xattr_inode_iget:433: comm syz.0.3070: Parent and EA inode have the same ino 15
[  134.373892][T16915] EXT4-fs (loop0): Remounting filesystem read-only
[  134.380494][T16915] EXT4-fs warning (device loop0): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  134.393377][T16918] loop6: detected capacity change from 0 to 4096
[  134.395053][T16915] EXT4-fs (loop0): 1 orphan inode deleted
[  134.406997][T16915] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  134.421794][T16918] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.450607][T16084] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.466146][T16918] hub 4-0:1.0: USB hub found
[  134.476518][T16918] hub 4-0:1.0: 8 ports detected
[  134.591872][ T9684] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.638471][T16932] loop0: detected capacity change from 0 to 512
[  134.645179][T16932] EXT4-fs: Ignoring removed oldalloc option
[  134.665971][T16932] EXT4-fs error (device loop0): ext4_xattr_inode_iget:433: comm syz.0.3078: Parent and EA inode have the same ino 15
[  134.690616][T16932] EXT4-fs (loop0): Remounting filesystem read-only
[  134.697312][T16932] EXT4-fs warning (device loop0): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  134.713531][T16932] EXT4-fs (loop0): 1 orphan inode deleted
[  134.719949][T16932] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  134.734011][T16932] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.786990][T16944] loop2: detected capacity change from 0 to 512
[  134.790712][T16946] loop6: detected capacity change from 0 to 128
[  134.801302][T16946] FAT-fs (loop6): bogus number of reserved sectors
[  134.808001][T16946] FAT-fs (loop6): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  134.808132][T16944] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  134.817433][T16946] FAT-fs (loop6): Can't find a valid FAT filesystem
[  134.833391][T16944] EXT4-fs (loop2): orphan cleanup on readonly fs
[  134.853700][T16944] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3083: bg 0: block 248: padding at end of block bitmap is not set
[  134.871814][T16944] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.3083: Failed to acquire dquot type 1
[  134.886881][T16944] EXT4-fs (loop2): 1 truncate cleaned up
[  134.893032][T16956] loop0: detected capacity change from 0 to 512
[  134.893162][T16944] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  134.901075][T16956] EXT4-fs: Ignoring removed oldalloc option
[  134.915966][T16944] EXT4-fs error (device loop2): ext4_lookup:1793: inode #2: comm syz.2.3083: deleted inode referenced: 12
[  134.919686][T16957] serio: Serial port ttyS3
[  134.984208][T16956] EXT4-fs error (device loop0): ext4_xattr_inode_iget:433: comm syz.0.3086: Parent and EA inode have the same ino 15
[  135.064609][T16957] loop6: detected capacity change from 0 to 2048
[  135.072992][T16956] EXT4-fs (loop0): Remounting filesystem read-only
[  135.079562][T16956] EXT4-fs warning (device loop0): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  135.089918][T16956] EXT4-fs (loop0): 1 orphan inode deleted
[  135.260216][T16980] loop6: detected capacity change from 0 to 512
[  135.269572][T16980] EXT4-fs: Ignoring removed oldalloc option
[  135.298745][T16990] loop2: detected capacity change from 0 to 512
[  135.309162][T16980] EXT4-fs error (device loop6): ext4_xattr_inode_iget:433: comm syz.6.3093: Parent and EA inode have the same ino 15
[  135.323458][T16990] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3100: bg 0: block 288: padding at end of block bitmap is not set
[  135.339404][T16980] EXT4-fs (loop6): Remounting filesystem read-only
[  135.346002][T16980] EXT4-fs warning (device loop6): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  135.403315][T16994] loop5: detected capacity change from 0 to 128
[  135.409918][T16990] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  135.424507][T16980] EXT4-fs (loop6): 1 orphan inode deleted
[  135.441945][T16990] EXT4-fs error (device loop2): ext4_clear_blocks:876: inode #13: comm syz.2.3100: attempt to clear invalid blocks 1024 len 1
[  135.466771][T16990] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.3100: invalid indirect mapped block 1819239214 (level 0)
[  135.485640][T16990] EXT4-fs (loop2): 1 truncate cleaned up
[  135.510105][T16996] loop6: detected capacity change from 0 to 512
[  135.527435][T16996] EXT4-fs: Ignoring removed oldalloc option
[  135.535517][T16996] EXT4-fs error (device loop6): ext4_xattr_inode_iget:433: comm syz.6.3103: Parent and EA inode have the same ino 15
[  135.535623][T16996] EXT4-fs (loop6): Remounting filesystem read-only
[  135.535638][T16996] EXT4-fs warning (device loop6): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  135.535662][T16996] EXT4-fs (loop6): 1 orphan inode deleted
[  135.575525][T17001] loop5: detected capacity change from 0 to 512
[  135.621600][T16998] siw: device registration error -23
[  135.624572][T17001] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  135.638049][T17001] EXT4-fs (loop5): orphan cleanup on readonly fs
[  135.645036][T17001] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.3104: bg 0: block 248: padding at end of block bitmap is not set
[  135.660643][T17001] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.3104: Failed to acquire dquot type 1
[  135.672377][T17001] EXT4-fs (loop5): 1 truncate cleaned up
[  135.681303][T17001] EXT4-fs error (device loop5): ext4_lookup:1793: inode #2: comm syz.5.3104: deleted inode referenced: 12
[  135.717811][T16990] random: crng reseeded on system resumption
[  135.737138][T17007] loop6: detected capacity change from 0 to 128
[  135.816958][T17007] FAT-fs (loop6): bogus number of reserved sectors
[  135.823596][T17007] FAT-fs (loop6): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  135.832928][T17007] FAT-fs (loop6): Can't find a valid FAT filesystem
[  135.947570][T17023] loop6: detected capacity change from 0 to 512
[  135.954179][T17023] EXT4-fs: Ignoring removed oldalloc option
[  136.027981][T17024] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3111'.
[  136.037016][T17024] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3111'.
[  136.054442][T17023] EXT4-fs error (device loop6): ext4_xattr_inode_iget:433: comm syz.6.3114: Parent and EA inode have the same ino 15
[  136.085180][T17028] loop2: detected capacity change from 0 to 128
[  136.091799][T17023] EXT4-fs (loop6): Remounting filesystem read-only
[  136.098376][T17023] EXT4-fs warning (device loop6): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  136.120268][T17028] FAT-fs (loop2): bogus number of reserved sectors
[  136.126875][T17028] FAT-fs (loop2): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  136.136226][T17028] FAT-fs (loop2): Can't find a valid FAT filesystem
[  136.144140][T17023] EXT4-fs (loop6): 1 orphan inode deleted
[  136.216555][T17030] loop5: detected capacity change from 0 to 4096
[  136.232872][T17034] pim6reg1: entered promiscuous mode
[  136.238230][T17034] pim6reg1: entered allmulticast mode
[  136.278094][T17034] 9pnet_fd: Insufficient options for proto=fd
[  136.319583][T17030] hub 4-0:1.0: USB hub found
[  136.324468][T17030] hub 4-0:1.0: 8 ports detected
[  136.404389][T17046] loop6: detected capacity change from 0 to 128
[  136.430867][T17046] FAT-fs (loop6): bogus number of reserved sectors
[  136.437427][T17046] FAT-fs (loop6): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  136.446749][T17046] FAT-fs (loop6): Can't find a valid FAT filesystem
[  136.571353][T17037] chnl_net:caif_netlink_parms(): no params data found
[  136.593364][T17059] loop6: detected capacity change from 0 to 512
[  136.631174][T17059] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  136.675213][T17059] EXT4-fs (loop6): orphan cleanup on readonly fs
[  136.697406][T17059] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.3125: bg 0: block 248: padding at end of block bitmap is not set
[  136.714398][T17059] EXT4-fs error (device loop6): ext4_acquire_dquot:6935: comm syz.6.3125: Failed to acquire dquot type 1
[  136.726310][T17059] EXT4-fs (loop6): 1 truncate cleaned up
[  136.748667][T17059] EXT4-fs error (device loop6): ext4_lookup:1793: inode #2: comm syz.6.3125: deleted inode referenced: 12
[  136.762995][T17061] loop5: detected capacity change from 0 to 4096
[  136.772220][T17037] bridge0: port 1(bridge_slave_0) entered blocking state
[  136.779483][T17037] bridge0: port 1(bridge_slave_0) entered disabled state
[  136.829051][T17037] bridge_slave_0: entered allmulticast mode
[  136.843590][T17037] bridge_slave_0: entered promiscuous mode
[  136.856225][T17061] hub 4-0:1.0: USB hub found
[  136.860961][T17061] hub 4-0:1.0: 8 ports detected
[  136.879868][T17037] bridge0: port 2(bridge_slave_1) entered blocking state
[  136.887055][T17037] bridge0: port 2(bridge_slave_1) entered disabled state
[  136.914638][T17037] bridge_slave_1: entered allmulticast mode
[  136.921044][T17037] bridge_slave_1: entered promiscuous mode
[  136.936214][T17072] loop5: detected capacity change from 0 to 512
[  136.943389][T16978] loop0: detected capacity change from 0 to 512
[  136.950276][T17072] EXT4-fs: Ignoring removed oldalloc option
[  136.987094][T17072] EXT4-fs error (device loop5): ext4_xattr_inode_iget:433: comm syz.5.3128: Parent and EA inode have the same ino 15
[  137.002423][T17037] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  137.015772][T17037] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  137.028315][T17072] EXT4-fs (loop5): Remounting filesystem read-only
[  137.034868][T17072] EXT4-fs warning (device loop5): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  137.057821][T16978] ext4 filesystem being mounted at /44/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  137.077111][T17072] EXT4-fs (loop5): 1 orphan inode deleted
[  137.084559][T17037] team0: Port device team_slave_0 added
[  137.105835][T17037] team0: Port device team_slave_1 added
[  137.165120][T16978] netem: change failed
[  137.169662][T17037] batman_adv: batadv0: Adding interface: batadv_slave_0
[  137.176629][T17037] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  137.202667][T17037] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  137.214787][T17083] loop3: detected capacity change from 0 to 128
[  137.222533][T17083] FAT-fs (loop3): bogus number of reserved sectors
[  137.229260][T17083] FAT-fs (loop3): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  137.238567][T17083] FAT-fs (loop3): Can't find a valid FAT filesystem
[  137.249051][T17037] batman_adv: batadv0: Adding interface: batadv_slave_1
[  137.256031][T17037] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  137.282005][T17037] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  137.516344][T17100] FAULT_INJECTION: forcing a failure.
[  137.516344][T17100] name failslab, interval 1, probability 0, space 0, times 0
[  137.529079][T17100] CPU: 1 UID: 0 PID: 17100 Comm: syz.5.3141 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(voluntary) 
[  137.529108][T17100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  137.529121][T17100] Call Trace:
[  137.529127][T17100]  <TASK>
[  137.529134][T17100]  dump_stack_lvl+0xf6/0x150
[  137.529160][T17100]  dump_stack+0x15/0x1a
[  137.529177][T17100]  should_fail_ex+0x261/0x270
[  137.529206][T17100]  should_failslab+0x8f/0xb0
[  137.529235][T17100]  kmem_cache_alloc_noprof+0x59/0x340
[  137.529329][T17100]  ? skb_clone+0x154/0x1f0
[  137.529356][T17100]  skb_clone+0x154/0x1f0
[  137.529380][T17100]  __netlink_deliver_tap+0x2bd/0x4f0
[  137.529406][T17100]  netlink_unicast+0x69e/0x6c0
[  137.529505][T17100]  netlink_sendmsg+0x609/0x720
[  137.529530][T17100]  ? __pfx_netlink_sendmsg+0x10/0x10
[  137.529552][T17100]  __sock_sendmsg+0x140/0x180
[  137.529583][T17100]  ____sys_sendmsg+0x350/0x4e0
[  137.529610][T17100]  __sys_sendmsg+0x1a0/0x240
[  137.529729][T17100]  __x64_sys_sendmsg+0x46/0x50
[  137.529754][T17100]  x64_sys_call+0x26f3/0x2e10
[  137.529776][T17100]  do_syscall_64+0xc9/0x1a0
[  137.529798][T17100]  ? clear_bhb_loop+0x25/0x80
[  137.529854][T17100]  ? clear_bhb_loop+0x25/0x80
[  137.529872][T17100]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.529947][T17100] RIP: 0033:0x7efe7694e169
[  137.529959][T17100] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  137.530029][T17100] RSP: 002b:00007efe74fb7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  137.530045][T17100] RAX: ffffffffffffffda RBX: 00007efe76b75fa0 RCX: 00007efe7694e169
[  137.530055][T17100] RDX: 0000000004004010 RSI: 0000200000000040 RDI: 0000000000000003
[  137.530065][T17100] RBP: 00007efe74fb7090 R08: 0000000000000000 R09: 0000000000000000
[  137.530074][T17100] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  137.530084][T17100] R13: 0000000000000000 R14: 00007efe76b75fa0 R15: 00007fff94f47d58
[  137.530099][T17100]  </TASK>
[  137.777369][T17107] loop5: detected capacity change from 0 to 128
[  137.786630][T17107] FAT-fs (loop5): bogus number of reserved sectors
[  137.793192][T17107] FAT-fs (loop5): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  137.802557][T17107] FAT-fs (loop5): Can't find a valid FAT filesystem
[  137.856446][T17110] loop5: detected capacity change from 0 to 512
[  137.863451][T17110] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  137.884669][T17110] EXT4-fs (loop5): orphan cleanup on readonly fs
[  137.897625][T17110] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.3144: bg 0: block 248: padding at end of block bitmap is not set
[  137.924122][T17110] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.3144: Failed to acquire dquot type 1
[  137.937073][T17110] EXT4-fs (loop5): 1 truncate cleaned up
[  137.945839][T17110] EXT4-fs error (device loop5): ext4_lookup:1793: inode #2: comm syz.5.3144: deleted inode referenced: 12
[  138.025178][   T41] bond0 (unregistering): Released all slaves
[  138.048363][T17037] hsr_slave_0: entered promiscuous mode
[  138.060077][T17037] hsr_slave_1: entered promiscuous mode
[  138.076623][T17037] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  138.095783][T17037] Cannot create hsr debugfs directory
[  138.110576][   T41] hsr_slave_0: left promiscuous mode
[  138.122219][T17127] loop3: detected capacity change from 0 to 4096
[  138.172978][T17137] loop0: detected capacity change from 0 to 128
[  138.180447][   T29] kauditd_printk_skb: 429 callbacks suppressed
[  138.180462][   T29] audit: type=1326 audit(1745001185.859:16247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17135 comm="syz.0.3153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31eddce169 code=0x7ffc0000
[  138.210442][   T29] audit: type=1326 audit(1745001185.859:16248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17135 comm="syz.0.3153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f31eddce169 code=0x7ffc0000
[  138.213005][T17137] FAT-fs (loop0): bogus number of reserved sectors
[  138.234147][   T29] audit: type=1326 audit(1745001185.859:16249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17135 comm="syz.0.3153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f31eddce1a3 code=0x7ffc0000
[  138.240633][T17137] FAT-fs (loop0): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  138.264181][   T29] audit: type=1326 audit(1745001185.859:16250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17135 comm="syz.0.3153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f31eddccc1f code=0x7ffc0000
[  138.273301][T17137] FAT-fs (loop0): Can't find a valid FAT filesystem
[  138.303456][   T29] audit: type=1326 audit(1745001185.859:16251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17135 comm="syz.0.3153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f31eddce1f7 code=0x7ffc0000
[  138.327150][   T29] audit: type=1326 audit(1745001185.859:16252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17135 comm="syz.0.3153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f31eddccad0 code=0x7ffc0000
[  138.350836][   T29] audit: type=1326 audit(1745001185.859:16253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17135 comm="syz.0.3153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f31eddcdd6b code=0x7ffc0000
[  138.374565][   T29] audit: type=1326 audit(1745001185.869:16254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17135 comm="syz.0.3153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f31eddccdca code=0x7ffc0000
[  138.398048][   T29] audit: type=1326 audit(1745001185.869:16255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17135 comm="syz.0.3153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f31eddccdca code=0x7ffc0000
[  138.421457][   T29] audit: type=1326 audit(1745001185.869:16256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17135 comm="syz.0.3153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f31eddcc9d7 code=0x7ffc0000
[  138.446473][T17140] FAULT_INJECTION: forcing a failure.
[  138.446473][T17140] name failslab, interval 1, probability 0, space 0, times 0
[  138.459215][T17140] CPU: 0 UID: 0 PID: 17140 Comm: syz.6.3156 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(voluntary) 
[  138.459321][T17140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  138.459334][T17140] Call Trace:
[  138.459339][T17140]  <TASK>
[  138.459346][T17140]  dump_stack_lvl+0xf6/0x150
[  138.459368][T17140]  dump_stack+0x15/0x1a
[  138.459381][T17140]  should_fail_ex+0x261/0x270
[  138.459402][T17140]  should_failslab+0x8f/0xb0
[  138.459469][T17140]  kmem_cache_alloc_noprof+0x59/0x340
[  138.459493][T17140]  ? getname_flags+0x81/0x3b0
[  138.459513][T17140]  getname_flags+0x81/0x3b0
[  138.459536][T17140]  user_path_at+0x26/0x140
[  138.459608][T17140]  __se_sys_mount+0x25e/0x2e0
[  138.459626][T17140]  __x64_sys_mount+0x67/0x80
[  138.459643][T17140]  x64_sys_call+0xd11/0x2e10
[  138.459666][T17140]  do_syscall_64+0xc9/0x1a0
[  138.459743][T17140]  ? clear_bhb_loop+0x25/0x80
[  138.459764][T17140]  ? clear_bhb_loop+0x25/0x80
[  138.459786][T17140]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.459808][T17140] RIP: 0033:0x7fc9481ce169
[  138.459828][T17140] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.459847][T17140] RSP: 002b:00007fc946837038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  138.459886][T17140] RAX: ffffffffffffffda RBX: 00007fc9483f5fa0 RCX: 00007fc9481ce169
[  138.459898][T17140] RDX: 00002000000002c0 RSI: 0000200000000080 RDI: 0000000000000000
[  138.459908][T17140] RBP: 00007fc946837090 R08: 0000200000000240 R09: 0000000000000000
[  138.459918][T17140] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  138.459927][T17140] R13: 0000000000000000 R14: 00007fc9483f5fa0 R15: 00007fff640cbf18
[  138.459977][T17140]  </TASK>
[  138.711738][T17148] netlink: 156 bytes leftover after parsing attributes in process `syz.5.3155'.
[  138.751767][T17160] loop6: detected capacity change from 0 to 512
[  138.777759][T17154] infiniband srz1: RDMA CMA: cma_listen_on_dev, error -98
[  138.811271][T17160] EXT4-fs (loop6): 1 orphan inode deleted
[  138.818670][T17160] ext4 filesystem being mounted at /254/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  138.829279][T15877] EXT4-fs error (device loop6): ext4_release_dquot:6971: comm kworker/u8:11: Failed to release dquot type 1
[  138.886492][T17172] loop3: detected capacity change from 0 to 512
[  138.893569][T17172] EXT4-fs: Ignoring removed oldalloc option
[  138.902021][T17172] EXT4-fs error (device loop3): ext4_xattr_inode_iget:433: comm syz.3.3165: Parent and EA inode have the same ino 15
[  138.902905][   T12] EXT4-fs error (device loop6): ext4_release_dquot:6971: comm kworker/u8:0: Failed to release dquot type 1
[  138.927664][T17172] EXT4-fs (loop3): Remounting filesystem read-only
[  138.934264][T17172] EXT4-fs warning (device loop3): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  138.945890][T17172] EXT4-fs (loop3): 1 orphan inode deleted
[  138.966204][T17175] loop6: detected capacity change from 0 to 128
[  138.987353][T17175] FAT-fs (loop6): bogus number of reserved sectors
[  138.993902][T17175] FAT-fs (loop6): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  139.003254][T17175] FAT-fs (loop6): Can't find a valid FAT filesystem
[  139.025958][T17177] loop3: detected capacity change from 0 to 512
[  139.042672][T17177] EXT4-fs: Ignoring removed oldalloc option
[  139.066495][T17177] EXT4-fs error (device loop3): ext4_xattr_inode_iget:433: comm syz.3.3167: Parent and EA inode have the same ino 15
[  139.089768][T17180] loop6: detected capacity change from 0 to 512
[  139.092163][T17177] EXT4-fs (loop3): Remounting filesystem read-only
[  139.102609][T17177] EXT4-fs warning (device loop3): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  139.102864][T17180] EXT4-fs: Ignoring removed oldalloc option
[  139.113973][T17177] EXT4-fs (loop3): 1 orphan inode deleted
[  139.133051][T17180] EXT4-fs error (device loop6): ext4_xattr_inode_iget:433: comm syz.6.3168: Parent and EA inode have the same ino 15
[  139.158768][T17037] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  139.164278][T17180] EXT4-fs (loop6): Remounting filesystem read-only
[  139.171999][T17180] EXT4-fs warning (device loop6): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  139.190884][T17037] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  139.199796][T17180] EXT4-fs (loop6): 1 orphan inode deleted
[  139.207446][T17037] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  139.223830][T17037] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  139.261916][T17037] 8021q: adding VLAN 0 to HW filter on device bond0
[  139.272722][T17037] 8021q: adding VLAN 0 to HW filter on device team0
[  139.291355][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  139.298559][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  139.314348][   T41] bridge0: port 2(bridge_slave_1) entered blocking state
[  139.321414][   T41] bridge0: port 2(bridge_slave_1) entered forwarding state
[  139.371353][T17037] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  139.371393][T17037] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  139.428414][T17204] pim6reg1: entered promiscuous mode
[  139.428508][T17204] pim6reg1: entered allmulticast mode
[  139.436755][T17204] 9pnet_fd: Insufficient options for proto=fd
[  139.442538][T17037] 8021q: adding VLAN 0 to HW filter on device batadv0
[  139.470183][T17208] loop3: detected capacity change from 0 to 128
[  139.471376][T17208] FAT-fs (loop3): bogus number of reserved sectors
[  139.471390][T17208] FAT-fs (loop3): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  139.471449][T17208] FAT-fs (loop3): Can't find a valid FAT filesystem
[  139.533565][T17215] loop0: detected capacity change from 0 to 512
[  139.538171][T17215] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  139.550290][T17215] EXT4-fs (loop0): orphan cleanup on readonly fs
[  139.551029][T17215] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.3180: bg 0: block 248: padding at end of block bitmap is not set
[  139.551342][T17215] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.3180: Failed to acquire dquot type 1
[  139.551912][T17215] EXT4-fs (loop0): 1 truncate cleaned up
[  139.561064][T17215] EXT4-fs error (device loop0): ext4_lookup:1793: inode #2: comm syz.0.3180: deleted inode referenced: 12
[  139.600149][T17037] veth0_vlan: entered promiscuous mode
[  139.648995][T17037] veth1_vlan: entered promiscuous mode
[  139.666631][T17037] veth0_macvtap: entered promiscuous mode
[  139.677254][T17037] veth1_macvtap: entered promiscuous mode
[  139.688594][T17037] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  139.699126][T17037] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.708958][T17037] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  139.719389][T17037] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.729208][T17037] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  139.733140][T17227] loop3: detected capacity change from 0 to 4096
[  139.739674][T17037] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.742746][T17037] batman_adv: batadv0: Interface activated: batadv_slave_0
[  139.767301][T17037] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  139.778087][T17037] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.788215][T17037] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  139.798769][T17037] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.808741][T17037] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  139.819274][T17037] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.829153][T17037] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  139.839572][T17037] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.850119][T17037] batman_adv: batadv0: Interface activated: batadv_slave_1
[  139.875535][T17037] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  139.884367][T17037] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  139.893049][T17037] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  139.901791][T17037] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  139.947716][T17227] hub 4-0:1.0: USB hub found
[  139.952462][T17227] hub 4-0:1.0: 8 ports detected
[  140.061996][T17247] loop2: detected capacity change from 0 to 128
[  140.070106][T17247] FAT-fs (loop2): bogus number of reserved sectors
[  140.076772][T17247] FAT-fs (loop2): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  140.086148][T17247] FAT-fs (loop2): Can't find a valid FAT filesystem
[  140.140798][T17253] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3191'.
[  140.163039][T17253] FAULT_INJECTION: forcing a failure.
[  140.163039][T17253] name failslab, interval 1, probability 0, space 0, times 0
[  140.175746][T17253] CPU: 1 UID: 0 PID: 17253 Comm: syz.2.3191 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(voluntary) 
[  140.175771][T17253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  140.175782][T17253] Call Trace:
[  140.175788][T17253]  <TASK>
[  140.175795][T17253]  dump_stack_lvl+0xf6/0x150
[  140.175820][T17253]  dump_stack+0x15/0x1a
[  140.175873][T17253]  should_fail_ex+0x261/0x270
[  140.175895][T17253]  should_failslab+0x8f/0xb0
[  140.175914][T17253]  kmem_cache_alloc_noprof+0x59/0x340
[  140.175943][T17253]  ? skb_clone+0x154/0x1f0
[  140.176044][T17253]  skb_clone+0x154/0x1f0
[  140.176069][T17253]  __netlink_deliver_tap+0x2bd/0x4f0
[  140.176113][T17253]  netlink_unicast+0x69e/0x6c0
[  140.176147][T17253]  netlink_sendmsg+0x609/0x720
[  140.176172][T17253]  ? __pfx_netlink_sendmsg+0x10/0x10
[  140.176193][T17253]  __sock_sendmsg+0x140/0x180
[  140.176270][T17253]  ____sys_sendmsg+0x350/0x4e0
[  140.176366][T17253]  __sys_sendmsg+0x1a0/0x240
[  140.176415][T17253]  __x64_sys_sendmsg+0x46/0x50
[  140.176551][T17253]  x64_sys_call+0x26f3/0x2e10
[  140.176610][T17253]  do_syscall_64+0xc9/0x1a0
[  140.176652][T17253]  ? clear_bhb_loop+0x25/0x80
[  140.176673][T17253]  ? clear_bhb_loop+0x25/0x80
[  140.176703][T17253]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.176725][T17253] RIP: 0033:0x7fa6aac0e169
[  140.176738][T17253] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  140.176818][T17253] RSP: 002b:00007fa6a9277038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  140.176898][T17253] RAX: ffffffffffffffda RBX: 00007fa6aae35fa0 RCX: 00007fa6aac0e169
[  140.176912][T17253] RDX: 0000000000004000 RSI: 0000200000000300 RDI: 0000000000000006
[  140.176924][T17253] RBP: 00007fa6a9277090 R08: 0000000000000000 R09: 0000000000000000
[  140.176952][T17253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  140.176966][T17253] R13: 0000000000000000 R14: 00007fa6aae35fa0 R15: 00007fff21e26298
[  140.177046][T17253]  </TASK>
[  140.582775][T17276] loop0: detected capacity change from 0 to 128
[  140.591549][T17277] siw: device registration error -23
[  140.613968][T17276] FAT-fs (loop0): bogus number of reserved sectors
[  140.620485][T17276] FAT-fs (loop0): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  140.629788][T17276] FAT-fs (loop0): Can't find a valid FAT filesystem
[  140.707443][T17289] hub 4-0:1.0: USB hub found
[  140.712214][T17289] hub 4-0:1.0: 8 ports detected
[  140.859648][T17308] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3217'.
[  140.902617][T17313] loop6: detected capacity change from 0 to 128
[  140.910672][T17313] FAT-fs (loop6): bogus number of reserved sectors
[  140.917326][T17313] FAT-fs (loop6): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  140.926692][T17313] FAT-fs (loop6): Can't find a valid FAT filesystem
[  140.987814][T17321] hub 4-0:1.0: USB hub found
[  140.992533][T17321] hub 4-0:1.0: 8 ports detected
[  141.179214][T17339] pim6reg1: entered promiscuous mode
[  141.184753][T17339] pim6reg1: entered allmulticast mode
[  141.199490][T17337] siw: device registration error -23
[  141.225479][T17343] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3234'.
[  141.231083][T17341] loop0: detected capacity change from 0 to 128
[  141.241675][T17341] FAT-fs (loop0): bogus number of reserved sectors
[  141.248319][T17341] FAT-fs (loop0): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  141.257964][T17341] FAT-fs (loop0): Can't find a valid FAT filesystem
[  141.318055][T17347] hub 4-0:1.0: USB hub found
[  141.323039][T17347] hub 4-0:1.0: 8 ports detected
[  141.525129][T17371] loop2: detected capacity change from 0 to 128
[  141.526167][T17371] FAT-fs (loop2): bogus number of reserved sectors
[  141.526182][T17371] FAT-fs (loop2): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  141.526198][T17371] FAT-fs (loop2): Can't find a valid FAT filesystem
[  141.642873][T17382] loop3: detected capacity change from 0 to 512
[  141.649726][T17379] loop6: detected capacity change from 0 to 4096
[  141.657667][T17382] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  141.673180][T17382] EXT4-fs (loop3): orphan cleanup on readonly fs
[  141.684176][T17382] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.3251: bg 0: block 248: padding at end of block bitmap is not set
[  141.699219][T17382] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.3251: Failed to acquire dquot type 1
[  141.700290][T17382] EXT4-fs (loop3): 1 truncate cleaned up
[  141.706115][T17379] hub 4-0:1.0: USB hub found
[  141.722786][T17379] hub 4-0:1.0: 8 ports detected
[  141.727045][T17382] EXT4-fs error (device loop3): ext4_lookup:1793: inode #2: comm syz.3.3251: deleted inode referenced: 12
[  141.764815][T17394] loop0: detected capacity change from 0 to 512
[  141.813061][T17394] EXT4-fs (loop0): 1 orphan inode deleted
[  141.820606][T17394] ext4 filesystem being mounted at /78/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  141.831348][T15877] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:11: Failed to release dquot type 1
[  141.872886][T15877] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:11: Failed to release dquot type 1
[  141.917421][T17406] loop6: detected capacity change from 0 to 128
[  141.929582][T17406] FAT-fs (loop6): bogus number of reserved sectors
[  141.936206][T17406] FAT-fs (loop6): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  141.945540][T17406] FAT-fs (loop6): Can't find a valid FAT filesystem
[  142.120933][T17429] loop6: detected capacity change from 0 to 512
[  142.131055][T17431] loop5: detected capacity change from 0 to 4096
[  142.212425][T17429] EXT4-fs (loop6): 1 orphan inode deleted
[  142.220910][T17431] hub 4-0:1.0: USB hub found
[  142.225658][T17431] hub 4-0:1.0: 8 ports detected
[  142.226801][   T41] EXT4-fs error (device loop6): ext4_release_dquot:6971: comm kworker/u8:2: Failed to release dquot type 1
[  142.242213][T17429] ext4 filesystem being mounted at /281/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  142.271392][   T41] EXT4-fs error (device loop6): ext4_release_dquot:6971: comm kworker/u8:2: Failed to release dquot type 1
[  142.468526][T17466] loop0: detected capacity change from 0 to 512
[  142.476240][T17466] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  142.486798][T17466] EXT4-fs (loop0): orphan cleanup on readonly fs
[  142.509001][T17469] loop3: detected capacity change from 0 to 4096
[  142.512484][T17466] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.3281: bg 0: block 248: padding at end of block bitmap is not set
[  142.531171][T17466] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.3281: Failed to acquire dquot type 1
[  142.542897][T17471] loop6: detected capacity change from 0 to 512
[  142.543397][T17466] EXT4-fs (loop0): 1 truncate cleaned up
[  142.565884][T17471] EXT4-fs (loop6): 1 orphan inode deleted
[  142.572249][T17471] ext4 filesystem being mounted at /286/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  142.586580][T17469] hub 4-0:1.0: USB hub found
[  142.591272][T17469] hub 4-0:1.0: 8 ports detected
[  142.599882][T15877] EXT4-fs error (device loop6): ext4_release_dquot:6971: comm kworker/u8:11: Failed to release dquot type 1
[  142.636538][T15877] EXT4-fs error (device loop6): ext4_release_dquot:6971: comm kworker/u8:11: Failed to release dquot type 1
[  142.706901][T17480] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1 sclass=netlink_route_socket pid=17480 comm=syz.6.3286
[  142.769290][T17483] siw: device registration error -23
[  142.779714][T17487] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3289'.
[  142.823978][T17487] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3289'.
[  142.866995][T17501] loop2: detected capacity change from 0 to 128
[  142.875561][T17501] FAT-fs (loop2): bogus number of reserved sectors
[  142.882170][T17501] FAT-fs (loop2): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  142.891521][T17501] FAT-fs (loop2): Can't find a valid FAT filesystem
[  142.940724][T17504] loop2: detected capacity change from 0 to 4096
[  142.977253][T17504] hub 4-0:1.0: USB hub found
[  142.984159][T17504] hub 4-0:1.0: 8 ports detected
[  143.019618][T17516] loop3: detected capacity change from 0 to 512
[  143.028860][T17516] EXT4-fs: Ignoring removed oldalloc option
[  143.037400][T17516] EXT4-fs error (device loop3): ext4_xattr_inode_iget:433: comm syz.3.3298: Parent and EA inode have the same ino 15
[  143.051419][T17516] EXT4-fs (loop3): Remounting filesystem read-only
[  143.058003][T17516] EXT4-fs warning (device loop3): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  143.068219][T17516] EXT4-fs (loop3): 1 orphan inode deleted
[  143.132674][T17529] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3304'.
[  143.143347][T17529] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3304'.
[  143.167005][T17532] loop6: detected capacity change from 0 to 128
[  143.181019][T17529] netlink: 156 bytes leftover after parsing attributes in process `syz.2.3304'.
[  143.191651][   T29] kauditd_printk_skb: 563 callbacks suppressed
[  143.191664][   T29] audit: type=1326 audit(1745001190.879:16806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17531 comm="syz.6.3305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7fc9481cf90a code=0x7ffc0000
[  143.221534][T17532] FAT-fs (loop6): bogus number of reserved sectors
[  143.228139][T17532] FAT-fs (loop6): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  143.237467][T17532] FAT-fs (loop6): Can't find a valid FAT filesystem
[  143.243167][T17538] loop2: detected capacity change from 0 to 512
[  143.254349][T17538] EXT4-fs: Ignoring removed oldalloc option
[  143.260949][   T29] audit: type=1326 audit(1745001190.949:16807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17531 comm="syz.6.3305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc9481ccad0 code=0x7ffc0000
[  143.284787][   T29] audit: type=1326 audit(1745001190.949:16808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17531 comm="syz.6.3305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc9481cdd6b code=0x7ffc0000
[  143.308547][   T29] audit: type=1326 audit(1745001190.949:16809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17531 comm="syz.6.3305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fc9481ccdca code=0x7ffc0000
[  143.332030][   T29] audit: type=1326 audit(1745001190.949:16810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17531 comm="syz.6.3305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9481ce169 code=0x7ffc0000
[  143.336458][T17538] EXT4-fs error (device loop2): ext4_xattr_inode_iget:433: comm syz.2.3306: Parent and EA inode have the same ino 15
[  143.355614][   T29] audit: type=1326 audit(1745001190.959:16811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17531 comm="syz.6.3305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc9481ce169 code=0x7ffc0000
[  143.355671][   T29] audit: type=1326 audit(1745001190.959:16812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17531 comm="syz.6.3305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9481ce169 code=0x7ffc0000
[  143.415059][   T29] audit: type=1326 audit(1745001190.959:16813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17531 comm="syz.6.3305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=303 compat=0 ip=0x7fc9481ce169 code=0x7ffc0000
[  143.438671][   T29] audit: type=1326 audit(1745001190.959:16814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17531 comm="syz.6.3305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9481ce169 code=0x7ffc0000
[  143.466806][T17538] EXT4-fs (loop2): Remounting filesystem read-only
[  143.473385][T17538] EXT4-fs warning (device loop2): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  143.483590][   T29] audit: type=1326 audit(1745001191.159:16815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17544 comm="syz.6.3309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9481ce169 code=0x7ffc0000
[  143.508232][T17538] EXT4-fs (loop2): 1 orphan inode deleted
[  143.519482][T17549] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3311'.
[  143.528550][T17549] netem: unknown loss type 13
[  143.533318][T17549] netem: change failed
[  143.547485][T17549] vxcan1 speed is unknown, defaulting to 1000
[  143.554239][T17549] vxcan1 speed is unknown, defaulting to 1000
[  143.560641][T17549] vxcan1 speed is unknown, defaulting to 1000
[  143.620144][T17549] infiniband syz2: set active
[  143.624870][T17549] infiniband syz2: added vxcan1
[  143.629772][ T3379] vxcan1 speed is unknown, defaulting to 1000
[  143.646981][T17549] RDS/IB: syz2: added
[  143.660710][T17554] loop2: detected capacity change from 0 to 4096
[  143.665839][T17549] smc: adding ib device syz2 with port count 1
[  143.673480][T17549] smc:    ib device syz2 port 1 has pnetid 
[  143.679517][ T3380] vxcan1 speed is unknown, defaulting to 1000
[  143.688821][T17549] vxcan1 speed is unknown, defaulting to 1000
[  143.721879][T17549] vxcan1 speed is unknown, defaulting to 1000
[  143.731318][T17554] hub 4-0:1.0: USB hub found
[  143.739651][T17554] hub 4-0:1.0: 8 ports detected
[  143.790222][T17563] loop0: detected capacity change from 0 to 512
[  143.796024][T17549] vxcan1 speed is unknown, defaulting to 1000
[  143.818930][T17565] loop2: detected capacity change from 0 to 128
[  143.819078][T17563] EXT4-fs (loop0): 1 orphan inode deleted
[  143.832081][T17563] ext4 filesystem being mounted at /88/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  143.842596][T17565] FAT-fs (loop2): bogus number of reserved sectors
[  143.849269][T17565] FAT-fs (loop2): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  143.858645][T17565] FAT-fs (loop2): Can't find a valid FAT filesystem
[  143.867330][T17569] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3318'.
[  143.876384][T15877] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:11: Failed to release dquot type 1
[  143.876641][T17569] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3318'.
[  143.895939][T17549] vxcan1 speed is unknown, defaulting to 1000
[  143.936000][T17549] vxcan1 speed is unknown, defaulting to 1000
[  143.946271][  T563] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:5: Failed to release dquot type 1
[  144.015540][T17579] loop2: detected capacity change from 0 to 512
[  144.027403][T17579] EXT4-fs: Ignoring removed oldalloc option
[  144.056118][T17579] EXT4-fs error (device loop2): ext4_xattr_inode_iget:433: comm syz.2.3323: Parent and EA inode have the same ino 15
[  144.070426][T17579] EXT4-fs (loop2): Remounting filesystem read-only
[  144.076972][T17579] EXT4-fs warning (device loop2): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  144.088652][T17579] EXT4-fs (loop2): 1 orphan inode deleted
[  144.179661][T17599] loop3: detected capacity change from 0 to 512
[  144.188414][T17600] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3330'.
[  144.205186][T17599] EXT4-fs (loop3): 1 orphan inode deleted
[  144.214463][T17599] ext4 filesystem being mounted at /72/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  144.227158][  T563] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:5: Failed to release dquot type 1
[  144.240612][T17596] infiniband syz!: set active
[  144.245370][T17596] infiniband syz!: added team_slave_0
[  144.270862][ T3398] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:7: Failed to release dquot type 1
[  144.286182][T17596] RDS/IB: syz!: added
[  144.310889][T17596] smc: adding ib device syz! with port count 1
[  144.317473][T17596] smc:    ib device syz! port 1 has pnetid 
[  144.371004][T17619] loop6: detected capacity change from 0 to 2048
[  144.430079][T17626] FAULT_INJECTION: forcing a failure.
[  144.430079][T17626] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  144.443310][T17626] CPU: 1 UID: 0 PID: 17626 Comm: syz.5.3340 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(voluntary) 
[  144.443370][T17626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  144.443385][T17626] Call Trace:
[  144.443392][T17626]  <TASK>
[  144.443400][T17626]  dump_stack_lvl+0xf6/0x150
[  144.443427][T17626]  dump_stack+0x15/0x1a
[  144.443443][T17626]  should_fail_ex+0x261/0x270
[  144.443472][T17626]  should_fail+0xb/0x10
[  144.443494][T17626]  should_fail_usercopy+0x1a/0x20
[  144.443523][T17626]  _copy_from_iter+0xd8/0xd10
[  144.443550][T17626]  ? selinux_file_open+0x356/0x3c0
[  144.443575][T17626]  ? should_fail_ex+0xd7/0x270
[  144.443626][T17626]  ? skb_set_owner_w+0x164/0x1b0
[  144.443718][T17626]  ? __virt_addr_valid+0x1ed/0x250
[  144.443740][T17626]  ? __check_object_size+0x367/0x510
[  144.443778][T17626]  skb_copy_datagram_from_iter+0xbb/0x490
[  144.443863][T17626]  ? skb_put+0xba/0x100
[  144.443883][T17626]  tun_get_user+0x10ea/0x2640
[  144.443908][T17626]  ? _parse_integer+0x27/0x30
[  144.443931][T17626]  ? skip_spaces+0x30/0x40
[  144.443993][T17626]  ? ref_tracker_alloc+0x1ff/0x310
[  144.444092][T17626]  tun_chr_write_iter+0x188/0x240
[  144.444117][T17626]  vfs_write+0x79b/0x950
[  144.444209][T17626]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  144.444243][T17626]  ksys_write+0xeb/0x1b0
[  144.444267][T17626]  __x64_sys_write+0x42/0x50
[  144.444288][T17626]  x64_sys_call+0x2a45/0x2e10
[  144.444323][T17626]  do_syscall_64+0xc9/0x1a0
[  144.444350][T17626]  ? clear_bhb_loop+0x25/0x80
[  144.444402][T17626]  ? clear_bhb_loop+0x25/0x80
[  144.444476][T17626]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.444499][T17626] RIP: 0033:0x7efe7694e169
[  144.444514][T17626] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  144.444532][T17626] RSP: 002b:00007efe74fb7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  144.444552][T17626] RAX: ffffffffffffffda RBX: 00007efe76b75fa0 RCX: 00007efe7694e169
[  144.444639][T17626] RDX: 00000000000000d2 RSI: 0000200000000480 RDI: 0000000000000006
[  144.444653][T17626] RBP: 00007efe74fb7090 R08: 0000000000000000 R09: 0000000000000000
[  144.444665][T17626] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  144.444675][T17626] R13: 0000000000000000 R14: 00007efe76b75fa0 R15: 00007fff94f47d58
[  144.444697][T17626]  </TASK>
[  144.800571][T17642] loop3: detected capacity change from 0 to 512
[  144.809051][T17640] siw: device registration error -23
[  144.839156][T17642] EXT4-fs: Ignoring removed oldalloc option
[  144.861014][T17651] futex_wake_op: syz.0.3350 tries to shift op by -1; fix this program
[  144.878920][T17651] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  144.891754][T17642] EXT4-fs error (device loop3): ext4_xattr_inode_iget:433: comm syz.3.3345: Parent and EA inode have the same ino 15
[  144.917127][T17642] EXT4-fs (loop3): Remounting filesystem read-only
[  144.923861][T17642] EXT4-fs warning (device loop3): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  144.935292][T17642] EXT4-fs (loop3): 1 orphan inode deleted
[  144.969115][T17651] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.009437][T17673] netlink: 'syz.3.3357': attribute type 12 has an invalid length.
[  145.021482][T17651] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.057458][T17673] loop3: detected capacity change from 0 to 128
[  145.103482][T17651] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.173125][T17651] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  145.197653][T17651] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  145.232107][T17651] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  145.252094][T17651] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  145.306160][T17688] vxcan1 speed is unknown, defaulting to 1000
[  145.339635][T17695] netdevsim netdevsim0 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  145.347913][T17695] netdevsim netdevsim0 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  145.356138][T17695] netdevsim netdevsim0 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  145.364321][T17695] netdevsim netdevsim0 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  145.372575][T17695] vxlan0: entered promiscuous mode
[  145.598950][T17701] vxcan1 speed is unknown, defaulting to 1000
[  145.619568][T17720] FAULT_INJECTION: forcing a failure.
[  145.619568][T17720] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  145.632824][T17720] CPU: 1 UID: 0 PID: 17720 Comm: syz.0.3373 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(voluntary) 
[  145.632853][T17720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  145.632866][T17720] Call Trace:
[  145.632873][T17720]  <TASK>
[  145.632879][T17720]  dump_stack_lvl+0xf6/0x150
[  145.632900][T17720]  dump_stack+0x15/0x1a
[  145.632990][T17720]  should_fail_ex+0x261/0x270
[  145.633016][T17720]  should_fail+0xb/0x10
[  145.633037][T17720]  should_fail_usercopy+0x1a/0x20
[  145.633122][T17720]  _copy_from_user+0x1c/0xa0
[  145.633153][T17720]  do_ipv6_setsockopt+0x1e0/0x2220
[  145.633180][T17720]  ? kstrtouint+0x7b/0xc0
[  145.633266][T17720]  ? __rcu_read_unlock+0x4e/0x70
[  145.633289][T17720]  ? avc_has_perm_noaudit+0x1cc/0x210
[  145.633317][T17720]  ? selinux_netlbl_socket_setsockopt+0xea/0x2d0
[  145.633349][T17720]  ? avc_has_perm+0xd6/0x150
[  145.633424][T17720]  ipv6_setsockopt+0x57/0x130
[  145.633447][T17720]  udpv6_setsockopt+0x95/0xb0
[  145.633479][T17720]  sock_common_setsockopt+0x64/0x80
[  145.633576][T17720]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  145.633609][T17720]  __sys_setsockopt+0x187/0x200
[  145.633692][T17720]  __x64_sys_setsockopt+0x66/0x80
[  145.633846][T17720]  x64_sys_call+0x2a09/0x2e10
[  145.633912][T17720]  do_syscall_64+0xc9/0x1a0
[  145.633939][T17720]  ? clear_bhb_loop+0x25/0x80
[  145.633960][T17720]  ? clear_bhb_loop+0x25/0x80
[  145.633982][T17720]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.634048][T17720] RIP: 0033:0x7f31eddce169
[  145.634062][T17720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  145.634081][T17720] RSP: 002b:00007f31ec437038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  145.634101][T17720] RAX: ffffffffffffffda RBX: 00007f31edff5fa0 RCX: 00007f31eddce169
[  145.634122][T17720] RDX: 0000000000000039 RSI: 0000000000000029 RDI: 0000000000000005
[  145.634159][T17720] RBP: 00007f31ec437090 R08: 0000000000000018 R09: 0000000000000000
[  145.634169][T17720] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000001
[  145.634180][T17720] R13: 0000000000000000 R14: 00007f31edff5fa0 R15: 00007ffd41657768
[  145.634196][T17720]  </TASK>
[  145.885497][T17724] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(9)
[  145.892059][T17724] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  145.899826][T17724] vhci_hcd vhci_hcd.0: Device attached
[  145.961579][T17733] loop0: detected capacity change from 0 to 512
[  145.972550][T17733] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  145.983896][T17726] vhci_hcd: connection closed
[  145.984279][   T41] vhci_hcd: stop threads
[  145.993303][   T41] vhci_hcd: release socket
[  145.997759][   T41] vhci_hcd: disconnect device
[  146.013637][T17733] EXT4-fs (loop0): orphan cleanup on readonly fs
[  146.022574][T17733] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.3378: bg 0: block 248: padding at end of block bitmap is not set
[  146.048562][T17736] loop6: detected capacity change from 0 to 4096
[  146.063286][T17733] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.3378: Failed to acquire dquot type 1
[  146.077611][T17701] chnl_net:caif_netlink_parms(): no params data found
[  146.084947][T17733] EXT4-fs (loop0): 1 truncate cleaned up
[  146.140070][T17736] hub 4-0:1.0: USB hub found
[  146.152390][T17736] hub 4-0:1.0: 8 ports detected
[  146.166767][T17701] bridge0: port 1(bridge_slave_0) entered blocking state
[  146.174673][T17701] bridge0: port 1(bridge_slave_0) entered disabled state
[  146.197657][T17701] bridge_slave_0: entered allmulticast mode
[  146.207198][T17701] bridge_slave_0: entered promiscuous mode
[  146.225138][T17752] loop2: detected capacity change from 0 to 512
[  146.225178][T17701] bridge0: port 2(bridge_slave_1) entered blocking state
[  146.225206][T17701] bridge0: port 2(bridge_slave_1) entered disabled state
[  146.231679][T17752] EXT4-fs: Ignoring removed oldalloc option
[  146.251847][T17701] bridge_slave_1: entered allmulticast mode
[  146.256000][T17752] EXT4-fs error (device loop2): ext4_xattr_inode_iget:433: comm syz.2.3383: Parent and EA inode have the same ino 15
[  146.272871][T17701] bridge_slave_1: entered promiscuous mode
[  146.284743][T17752] EXT4-fs (loop2): Remounting filesystem read-only
[  146.291269][T17752] EXT4-fs warning (device loop2): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  146.301837][T17755] SELinux:  Context system_u:object_r:semanage_exec_t:s0 is not valid (left unmapped).
[  146.325196][T17701] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  146.335462][T17701] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  146.353729][T17752] EXT4-fs (loop2): 1 orphan inode deleted
[  146.398783][T17701] team0: Port device team_slave_0 added
[  146.408792][T17760] __nla_validate_parse: 11 callbacks suppressed
[  146.408807][T17760] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3385'.
[  146.435594][T17701] team0: Port device team_slave_1 added
[  146.450597][T15877] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.503248][T17768] loop2: detected capacity change from 0 to 512
[  146.511440][T17768] EXT4-fs: Ignoring removed oldalloc option
[  146.519471][T17701] batman_adv: batadv0: Adding interface: batadv_slave_0
[  146.526463][T17701] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  146.552389][T17701] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  146.566808][T17765] bridge0: entered promiscuous mode
[  146.576032][T17771] loop6: detected capacity change from 0 to 512
[  146.584113][T17768] EXT4-fs error (device loop2): ext4_xattr_inode_iget:433: comm syz.2.3389: Parent and EA inode have the same ino 15
[  146.598050][T17765] bridge0: port 3(macvlan2) entered blocking state
[  146.604699][T17765] bridge0: port 3(macvlan2) entered disabled state
[  146.612076][T17768] EXT4-fs (loop2): Remounting filesystem read-only
[  146.612654][T17765] macvlan2: entered allmulticast mode
[  146.618675][T17768] EXT4-fs warning (device loop2): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  146.624067][T17765] bridge0: entered allmulticast mode
[  146.645200][T17771] EXT4-fs error (device loop6): ext4_orphan_get:1416: comm syz.6.3388: bad orphan inode 15
[  146.655555][T17771] ext4_test_bit(bit=14, block=5) = 0
[  146.658529][T17768] EXT4-fs (loop2): 1 orphan inode deleted
[  146.679368][T17776] loop3: detected capacity change from 0 to 4096
[  146.688446][T17771] EXT4-fs error (device loop6): __ext4_new_inode:1072: comm syz.6.3388: reserved inode found cleared - inode=1
[  146.688710][T17765] macvlan2: left allmulticast mode
[  146.688736][T17765] bridge0: left allmulticast mode
[  146.689169][T17765] bridge0: left promiscuous mode
[  146.714179][T15877] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.721624][T17701] batman_adv: batadv0: Adding interface: batadv_slave_1
[  146.721636][T17701] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  146.721664][T17701] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  146.722736][T17781] loop2: detected capacity change from 0 to 512
[  146.734189][T17781] EXT4-fs (loop2): inodes count not valid: 2 vs 32
[  146.736421][T17776] hub 4-0:1.0: USB hub found
[  146.795384][T17776] hub 4-0:1.0: 8 ports detected
[  146.805708][T17781] 9pnet_fd: p9_fd_create_tcp (17781): problem connecting socket to 127.0.0.1
[  146.852168][T15877] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.866756][T17701] hsr_slave_0: entered promiscuous mode
[  146.872516][T17788] loop6: detected capacity change from 0 to 1024
[  146.872926][T17701] hsr_slave_1: entered promiscuous mode
[  146.879425][T17788] EXT4-fs: Ignoring removed nobh option
[  146.890009][T17788] EXT4-fs: Ignoring removed bh option
[  146.897700][T17701] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  146.905817][T17701] Cannot create hsr debugfs directory
[  146.921802][T17788] EXT4-fs error (device loop6): ext4_orphan_get:1416: comm syz.6.3394: bad orphan inode 32767
[  146.932937][T15877] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.980208][T17788] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4113: comm syz.6.3394: Allocating blocks 449-513 which overlap fs metadata
[  147.029740][T17788] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3394'.
[  147.032349][T17796] vxcan1 speed is unknown, defaulting to 1000
[  147.060531][T17787] EXT4-fs (loop6): pa ffff888104ce68c0: logic 48, phys. 177, len 21
[  147.068595][T17787] EXT4-fs error (device loop6): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[  147.117296][T15877] bridge_slave_1: left allmulticast mode
[  147.122964][T15877] bridge_slave_1: left promiscuous mode
[  147.128606][T15877] bridge0: port 2(bridge_slave_1) entered disabled state
[  147.154191][T15877] bridge_slave_0: left allmulticast mode
[  147.159850][T15877] bridge_slave_0: left promiscuous mode
[  147.165565][T15877] bridge0: port 1(bridge_slave_0) entered disabled state
[  147.189559][T17805] loop2: detected capacity change from 0 to 512
[  147.210713][T17807] loop6: detected capacity change from 0 to 1024
[  147.232691][T17805] EXT4-fs (loop2): 1 orphan inode deleted
[  147.239821][T17807] EXT4-fs (loop6): can't mount with journal_checksum, fs mounted w/o journal
[  147.259558][   T41] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:2: Failed to release dquot type 1
[  147.272868][T17805] ext4 filesystem being mounted at /43/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  147.295271][T17813] loop3: detected capacity change from 0 to 164
[  147.302266][T17813] Unable to read rock-ridge attributes
[  147.317615][   T12] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:0: Failed to release dquot type 1
[  147.329940][T17813] Unable to read rock-ridge attributes
[  147.342602][T17814] netlink: 24 bytes leftover after parsing attributes in process `syz.6.3402'.
[  147.356481][T17816] loop2: detected capacity change from 0 to 164
[  147.364309][T17816] Unable to read rock-ridge attributes
[  147.370890][T17816] FAULT_INJECTION: forcing a failure.
[  147.370890][T17816] name failslab, interval 1, probability 0, space 0, times 0
[  147.383592][T17816] CPU: 1 UID: 0 PID: 17816 Comm: syz.2.3405 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(voluntary) 
[  147.383696][T17816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  147.383708][T17816] Call Trace:
[  147.383714][T17816]  <TASK>
[  147.383721][T17816]  dump_stack_lvl+0xf6/0x150
[  147.383746][T17816]  dump_stack+0x15/0x1a
[  147.383764][T17816]  should_fail_ex+0x261/0x270
[  147.383791][T17816]  should_failslab+0x8f/0xb0
[  147.383812][T17816]  kmem_cache_alloc_noprof+0x59/0x340
[  147.383840][T17816]  ? getname_flags+0x81/0x3b0
[  147.383921][T17816]  getname_flags+0x81/0x3b0
[  147.384025][T17816]  user_path_at+0x26/0x140
[  147.384055][T17816]  __se_sys_mount+0x25e/0x2e0
[  147.384075][T17816]  ? fput+0x99/0xd0
[  147.384131][T17816]  __x64_sys_mount+0x67/0x80
[  147.384151][T17816]  x64_sys_call+0xd11/0x2e10
[  147.384207][T17816]  do_syscall_64+0xc9/0x1a0
[  147.384233][T17816]  ? clear_bhb_loop+0x25/0x80
[  147.384322][T17816]  ? clear_bhb_loop+0x25/0x80
[  147.384402][T17816]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.384423][T17816] RIP: 0033:0x7fa6aac0e169
[  147.384439][T17816] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.384457][T17816] RSP: 002b:00007fa6a9277038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  147.384475][T17816] RAX: ffffffffffffffda RBX: 00007fa6aae35fa0 RCX: 00007fa6aac0e169
[  147.384485][T17816] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000000
[  147.384495][T17816] RBP: 00007fa6a9277090 R08: 0000000000000000 R09: 0000000000000000
[  147.384507][T17816] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  147.384604][T17816] R13: 0000000000000000 R14: 00007fa6aae35fa0 R15: 00007fff21e26298
[  147.384620][T17816]  </TASK>
[  147.581628][T17822] loop2: detected capacity change from 0 to 512
[  147.588595][T17822] EXT4-fs: Ignoring removed oldalloc option
[  147.606158][T17822] EXT4-fs error (device loop2): ext4_xattr_inode_iget:433: comm syz.2.3407: Parent and EA inode have the same ino 15
[  147.618928][T17822] EXT4-fs (loop2): Remounting filesystem read-only
[  147.625497][T17822] EXT4-fs warning (device loop2): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  147.635737][T17822] EXT4-fs (loop2): 1 orphan inode deleted
[  147.661988][T17825] loop2: detected capacity change from 0 to 512
[  147.668473][T17825] EXT4-fs: Ignoring removed oldalloc option
[  147.677273][T17825] EXT4-fs error (device loop2): ext4_xattr_inode_iget:433: comm syz.2.3408: Parent and EA inode have the same ino 15
[  147.689845][T17825] EXT4-fs (loop2): Remounting filesystem read-only
[  147.696475][T17825] EXT4-fs warning (device loop2): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  147.706712][T17825] EXT4-fs (loop2): 1 orphan inode deleted
[  147.734205][T17828] FAULT_INJECTION: forcing a failure.
[  147.734205][T17828] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  147.747417][T17828] CPU: 0 UID: 0 PID: 17828 Comm: syz.2.3409 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(voluntary) 
[  147.747444][T17828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  147.747454][T17828] Call Trace:
[  147.747519][T17828]  <TASK>
[  147.747525][T17828]  dump_stack_lvl+0xf6/0x150
[  147.747545][T17828]  dump_stack+0x15/0x1a
[  147.747559][T17828]  should_fail_ex+0x261/0x270
[  147.747580][T17828]  should_fail+0xb/0x10
[  147.747597][T17828]  should_fail_usercopy+0x1a/0x20
[  147.747620][T17828]  _copy_from_user+0x1c/0xa0
[  147.747645][T17828]  copy_msghdr_from_user+0x54/0x2b0
[  147.747672][T17828]  ? __fget_files+0x186/0x1c0
[  147.747692][T17828]  __sys_sendmsg+0x141/0x240
[  147.747725][T17828]  __x64_sys_sendmsg+0x46/0x50
[  147.747794][T17828]  x64_sys_call+0x26f3/0x2e10
[  147.747816][T17828]  do_syscall_64+0xc9/0x1a0
[  147.747839][T17828]  ? clear_bhb_loop+0x25/0x80
[  147.747858][T17828]  ? clear_bhb_loop+0x25/0x80
[  147.747876][T17828]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.747908][T17828] RIP: 0033:0x7fa6aac0e169
[  147.747940][T17828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.747956][T17828] RSP: 002b:00007fa6a9277038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  147.747972][T17828] RAX: ffffffffffffffda RBX: 00007fa6aae35fa0 RCX: 00007fa6aac0e169
[  147.748040][T17828] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 000000000000000d
[  147.748051][T17828] RBP: 00007fa6a9277090 R08: 0000000000000000 R09: 0000000000000000
[  147.748061][T17828] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  147.748071][T17828] R13: 0000000000000000 R14: 00007fa6aae35fa0 R15: 00007fff21e26298
[  147.748088][T17828]  </TASK>
[  148.120268][T15877] $Hÿ (unregistering): (slave bond_slave_0): Releasing backup interface
[  148.129185][T15877] bond_slave_0: left promiscuous mode
[  148.137738][T15877] $Hÿ (unregistering): (slave bond_slave_1): Releasing backup interface
[  148.140592][T17843] loop2: detected capacity change from 0 to 512
[  148.152871][T15877] bond_slave_1: left promiscuous mode
[  148.159328][T15877] $Hÿ (unregistering): Released all slaves
[  148.178055][T17843] EXT4-fs (loop2): 1 orphan inode deleted
[  148.184516][T17843] ext4 filesystem being mounted at /53/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  148.197416][   T41] __quota_error: 265 callbacks suppressed
[  148.197429][   T41] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  148.212888][   T41] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:2: Failed to release dquot type 1
[  148.234061][   T29] audit: type=1326 audit(1745001195.929:17071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17847 comm="syz.6.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9481ce169 code=0x7ffc0000
[  148.264108][   T29] audit: type=1326 audit(1745001195.959:17072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17847 comm="syz.6.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc9481ce169 code=0x7ffc0000
[  148.287742][   T29] audit: type=1326 audit(1745001195.959:17073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17847 comm="syz.6.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9481ce169 code=0x7ffc0000
[  148.311526][   T29] audit: type=1326 audit(1745001195.959:17074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17847 comm="syz.6.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9481ce169 code=0x7ffc0000
[  148.335691][   T29] audit: type=1326 audit(1745001195.989:17075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17847 comm="syz.6.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc9481ce169 code=0x7ffc0000
[  148.359357][   T29] audit: type=1326 audit(1745001195.989:17076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17847 comm="syz.6.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9481ce169 code=0x7ffc0000
[  148.382967][   T29] audit: type=1326 audit(1745001195.989:17077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17847 comm="syz.6.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=448 compat=0 ip=0x7fc9481ce169 code=0x7ffc0000
[  148.406533][   T29] audit: type=1326 audit(1745001195.989:17078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17847 comm="syz.6.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9481ce169 code=0x7ffc0000
[  148.431706][   T41] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  148.441493][   T41] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:2: Failed to release dquot type 1
[  148.509199][T17854] loop0: detected capacity change from 0 to 4096
[  148.546651][T15877] batman_adv: batadv0: Removing interface: batadv_slave_0
[  148.556404][T17854] hub 4-0:1.0: USB hub found
[  148.561178][T17854] hub 4-0:1.0: 8 ports detected
[  148.566645][T15877] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  148.574145][T15877] batman_adv: batadv0: Removing interface: batadv_slave_1
[  148.585857][T15877] veth1_macvtap: left promiscuous mode
[  148.591507][T15877] veth0_macvtap: left promiscuous mode
[  148.603315][T15877] veth1_vlan: left promiscuous mode
[  148.626627][T15877] veth0_vlan: left promiscuous mode
[  148.668929][T17867] 9p: Unknown access argument j: -22
[  148.735341][T15877] team0 (unregistering): Port device team_slave_1 removed
[  148.855136][T17874] loop3: detected capacity change from 0 to 512
[  148.875476][T17874] EXT4-fs: Ignoring removed oldalloc option
[  148.881646][T15877] team0 (unregistering): Port device team_slave_0 removed
[  148.891388][T17874] EXT4-fs error (device loop3): ext4_xattr_inode_iget:433: comm syz.3.3426: Parent and EA inode have the same ino 15
[  148.914413][T17874] EXT4-fs (loop3): Remounting filesystem read-only
[  148.920983][T17874] EXT4-fs warning (device loop3): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  148.932882][T17874] EXT4-fs (loop3): 1 orphan inode deleted
[  148.993629][T17879] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3427'.
[  149.025324][T17881] loop2: detected capacity change from 0 to 512
[  149.056649][T17881] EXT4-fs (loop2): 1 orphan inode deleted
[  149.063473][T17881] ext4 filesystem being mounted at /55/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  149.075253][T17701] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  149.082082][  T563] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:5: Failed to release dquot type 1
[  149.148492][T17701] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  149.167371][T17888] siw: device registration error -23
[  149.188579][T17701] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  149.211124][T17892] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3432'.
[  149.241407][T17701] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  149.251937][  T563] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:5: Failed to release dquot type 1
[  149.319410][T17898] loop3: detected capacity change from 0 to 2048
[  149.327865][T17901] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3437'.
[  149.365299][T17898] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  149.369201][T17701] 8021q: adding VLAN 0 to HW filter on device bond0
[  149.388110][T17901] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3437'.
[  149.408086][T17701] 8021q: adding VLAN 0 to HW filter on device team0
[  149.429934][   T41] bridge0: port 1(bridge_slave_0) entered blocking state
[  149.437009][   T41] bridge0: port 1(bridge_slave_0) entered forwarding state
[  149.454622][T17898] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 31 with max blocks 1 with error 28
[  149.466956][T17898] EXT4-fs (loop3): This should not happen!! Data will be lost
[  149.466956][T17898] 
[  149.476615][T17898] EXT4-fs (loop3): Total free blocks count 0
[  149.482649][T17898] EXT4-fs (loop3): Free/Dirty block details
[  149.488701][T17898] EXT4-fs (loop3): free_blocks=2415919104
[  149.494437][T17898] EXT4-fs (loop3): dirty_blocks=32
[  149.499569][T17898] EXT4-fs (loop3): Block reservation details
[  149.505557][T17898] EXT4-fs (loop3): i_reserved_data_blocks=2
[  149.529419][   T41] bridge0: port 2(bridge_slave_1) entered blocking state
[  149.536496][   T41] bridge0: port 2(bridge_slave_1) entered forwarding state
[  149.586571][T17701] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  149.596961][T17701] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  149.625709][   T12] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  149.638054][   T12] EXT4-fs (loop3): This should not happen!! Data will be lost
[  149.638054][   T12] 
[  149.672850][T17912] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3440'.
[  149.756793][T17701] 8021q: adding VLAN 0 to HW filter on device batadv0
[  149.767548][T17922] loop3: detected capacity change from 0 to 512
[  149.804385][T17922] EXT4-fs (loop3): 1 orphan inode deleted
[  149.810713][T17924] bridge0: entered promiscuous mode
[  149.819156][T17924] bridge0: port 3(macvlan2) entered blocking state
[  149.825730][T17924] bridge0: port 3(macvlan2) entered disabled state
[  149.825828][   T12] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:0: Failed to release dquot type 1
[  149.832326][T17924] macvlan2: entered allmulticast mode
[  149.849155][T17924] bridge0: entered allmulticast mode
[  149.858867][T17935] loop2: detected capacity change from 0 to 512
[  149.866924][T17922] ext4 filesystem being mounted at /104/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  149.885163][T17924] macvlan2: left allmulticast mode
[  149.890373][T17924] bridge0: left allmulticast mode
[  149.925107][   T12] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:0: Failed to release dquot type 1
[  149.937899][T17924] bridge0: left promiscuous mode
[  149.948091][T17935] EXT4-fs error (device loop2): ext4_orphan_get:1416: comm syz.2.3443: bad orphan inode 15
[  149.975525][T17935] ext4_test_bit(bit=14, block=5) = 0
[  150.065905][T17924] EXT4-fs error (device loop2): __ext4_new_inode:1072: comm syz.2.3443: reserved inode found cleared - inode=1
[  150.157907][T17956] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3449'.
[  150.184168][T17701] veth0_vlan: entered promiscuous mode
[  150.191575][T17956] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3449'.
[  150.201430][T17701] veth1_vlan: entered promiscuous mode
[  150.233483][T17701] veth0_macvtap: entered promiscuous mode
[  150.250325][T17701] veth1_macvtap: entered promiscuous mode
[  150.285089][T17701] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  150.295612][T17701] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.305529][T17701] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  150.316108][T17701] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.326003][T17701] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  150.336438][T17701] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.346271][T17701] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  150.356754][T17701] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.369691][T17701] batman_adv: batadv0: Interface activated: batadv_slave_0
[  150.380810][T17701] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  150.391263][T17701] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.401179][T17701] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  150.411674][T17701] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.421492][T17701] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  150.431929][T17701] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.441825][T17701] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  150.452357][T17701] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.466303][T17701] batman_adv: batadv0: Interface activated: batadv_slave_1
[  150.477695][T17701] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  150.486550][T17701] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  150.495387][T17701] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  150.504213][T17701] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  150.504554][T17953] FAULT_INJECTION: forcing a failure.
[  150.504554][T17953] name failslab, interval 1, probability 0, space 0, times 0
[  150.525528][T17953] CPU: 1 UID: 0 PID: 17953 Comm: syz.3.3448 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(voluntary) 
[  150.525556][T17953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  150.525570][T17953] Call Trace:
[  150.525576][T17953]  <TASK>
[  150.525608][T17953]  dump_stack_lvl+0xf6/0x150
[  150.525629][T17953]  dump_stack+0x15/0x1a
[  150.525642][T17953]  should_fail_ex+0x261/0x270
[  150.525669][T17953]  should_failslab+0x8f/0xb0
[  150.525689][T17953]  __kmalloc_noprof+0xad/0x410
[  150.525715][T17953]  ? kernfs_fop_write_iter+0xe1/0x2d0
[  150.525736][T17953]  ? selinux_file_permission+0x22d/0x360
[  150.525793][T17953]  kernfs_fop_write_iter+0xe1/0x2d0
[  150.525882][T17953]  vfs_write+0x79b/0x950
[  150.525917][T17953]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  150.525943][T17953]  ksys_write+0xeb/0x1b0
[  150.525959][T17953]  __x64_sys_write+0x42/0x50
[  150.525974][T17953]  x64_sys_call+0x2a45/0x2e10
[  150.525993][T17953]  do_syscall_64+0xc9/0x1a0
[  150.526061][T17953]  ? clear_bhb_loop+0x25/0x80
[  150.526141][T17953]  ? clear_bhb_loop+0x25/0x80
[  150.526164][T17953]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.526184][T17953] RIP: 0033:0x7f562b66e169
[  150.526196][T17953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  150.526289][T17953] RSP: 002b:00007f5629cd7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  150.526305][T17953] RAX: ffffffffffffffda RBX: 00007f562b895fa0 RCX: 00007f562b66e169
[  150.526315][T17953] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000008
[  150.526325][T17953] RBP: 00007f5629cd7090 R08: 0000000000000000 R09: 0000000000000000
[  150.526334][T17953] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  150.526346][T17953] R13: 0000000000000000 R14: 00007f562b895fa0 R15: 00007ffccb06d5e8
[  150.526361][T17953]  </TASK>
[  150.849753][T17981] FAULT_INJECTION: forcing a failure.
[  150.849753][T17981] name failslab, interval 1, probability 0, space 0, times 0
[  150.862559][T17981] CPU: 1 UID: 0 PID: 17981 Comm: syz.5.3457 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(voluntary) 
[  150.862636][T17981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  150.862655][T17981] Call Trace:
[  150.862662][T17981]  <TASK>
[  150.862745][T17981]  dump_stack_lvl+0xf6/0x150
[  150.862767][T17981]  dump_stack+0x15/0x1a
[  150.862781][T17981]  should_fail_ex+0x261/0x270
[  150.862846][T17981]  should_failslab+0x8f/0xb0
[  150.862866][T17981]  __kvmalloc_node_noprof+0x12c/0x520
[  150.862942][T17981]  ? __se_sys_add_key+0x1e0/0x330
[  150.862961][T17981]  ? strncpy_from_user+0x144/0x230
[  150.862996][T17981]  __se_sys_add_key+0x1e0/0x330
[  150.863017][T17981]  ? fput+0x99/0xd0
[  150.863049][T17981]  __x64_sys_add_key+0x67/0x80
[  150.863071][T17981]  x64_sys_call+0x1f10/0x2e10
[  150.863096][T17981]  do_syscall_64+0xc9/0x1a0
[  150.863165][T17981]  ? clear_bhb_loop+0x25/0x80
[  150.863187][T17981]  ? clear_bhb_loop+0x25/0x80
[  150.863206][T17981]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.863225][T17981] RIP: 0033:0x7f4b1fdee169
[  150.863241][T17981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  150.863260][T17981] RSP: 002b:00007f4b1e457038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8
[  150.863291][T17981] RAX: ffffffffffffffda RBX: 00007f4b20015fa0 RCX: 00007f4b1fdee169
[  150.863302][T17981] RDX: 0000200000000080 RSI: 0000000000000000 RDI: 00002000000003c0
[  150.863313][T17981] RBP: 00007f4b1e457090 R08: 00000000252dd41d R09: 0000000000000000
[  150.863323][T17981] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  150.863334][T17981] R13: 0000000000000000 R14: 00007f4b20015fa0 R15: 00007ffde2a11a88
[  150.863354][T17981]  </TASK>
[  151.112202][T17988] loop3: detected capacity change from 0 to 4096
[  151.189247][T17995] loop0: detected capacity change from 0 to 512
[  151.199233][T17988] hub 4-0:1.0: USB hub found
[  151.211558][T17988] hub 4-0:1.0: 8 ports detected
[  151.261052][T17995] EXT4-fs warning (device loop0): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  151.279405][T17995] EXT4-fs (loop0): mount failed
[  151.343983][T17995] ip6gretap1: entered allmulticast mode
[  151.358128][T18008] pim6reg: entered allmulticast mode
[  151.364275][T18008] pim6reg: left allmulticast mode
[  151.424020][T18008] loop3: detected capacity change from 0 to 128
[  151.444996][T18008] netlink: 'syz.3.3467': attribute type 2 has an invalid length.
[  151.463286][T18018] FAULT_INJECTION: forcing a failure.
[  151.463286][T18018] name failslab, interval 1, probability 0, space 0, times 0
[  151.476036][T18018] CPU: 0 UID: 0 PID: 18018 Comm: syz.0.3470 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(voluntary) 
[  151.476061][T18018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  151.476083][T18018] Call Trace:
[  151.476089][T18018]  <TASK>
[  151.476096][T18018]  dump_stack_lvl+0xf6/0x150
[  151.476120][T18018]  dump_stack+0x15/0x1a
[  151.476204][T18018]  should_fail_ex+0x261/0x270
[  151.476237][T18018]  should_failslab+0x8f/0xb0
[  151.476345][T18018]  kmem_cache_alloc_node_noprof+0x5c/0x340
[  151.476377][T18018]  ? __alloc_skb+0x10d/0x320
[  151.476428][T18018]  __alloc_skb+0x10d/0x320
[  151.476445][T18018]  netlink_alloc_large_skb+0xad/0xe0
[  151.476476][T18018]  netlink_sendmsg+0x3da/0x720
[  151.476504][T18018]  ? __pfx_netlink_sendmsg+0x10/0x10
[  151.476551][T18018]  __sock_sendmsg+0x140/0x180
[  151.476581][T18018]  ____sys_sendmsg+0x350/0x4e0
[  151.476648][T18018]  __sys_sendmsg+0x1a0/0x240
[  151.476704][T18018]  __x64_sys_sendmsg+0x46/0x50
[  151.476728][T18018]  x64_sys_call+0x26f3/0x2e10
[  151.476750][T18018]  do_syscall_64+0xc9/0x1a0
[  151.476815][T18018]  ? clear_bhb_loop+0x25/0x80
[  151.476864][T18018]  ? clear_bhb_loop+0x25/0x80
[  151.476883][T18018]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.476905][T18018] RIP: 0033:0x7f31eddce169
[  151.476940][T18018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  151.477012][T18018] RSP: 002b:00007f31ec437038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  151.477030][T18018] RAX: ffffffffffffffda RBX: 00007f31edff5fa0 RCX: 00007f31eddce169
[  151.477043][T18018] RDX: 0000000020050800 RSI: 00002000000000c0 RDI: 0000000000000003
[  151.477106][T18018] RBP: 00007f31ec437090 R08: 0000000000000000 R09: 0000000000000000
[  151.477122][T18018] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  151.477136][T18018] R13: 0000000000000000 R14: 00007f31edff5fa0 R15: 00007ffd41657768
[  151.477155][T18018]  </TASK>
[  151.479369][T18008] SELinux:  Context system_u:object_r:inetd_child_exec_t:s0 is not valid (left unmapped).
[  151.830534][T18028] loop2: detected capacity change from 0 to 4096
[  151.837057][T18026] loop3: detected capacity change from 0 to 4096
[  151.888169][T18028] hub 4-0:1.0: USB hub found
[  151.893235][T18028] hub 4-0:1.0: 8 ports detected
[  151.908849][T18040] siw: device registration error -23
[  151.936011][T18042] FAULT_INJECTION: forcing a failure.
[  151.936011][T18042] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  151.949191][T18042] CPU: 0 UID: 0 PID: 18042 Comm: syz.6.3478 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(voluntary) 
[  151.949215][T18042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  151.949225][T18042] Call Trace:
[  151.949230][T18042]  <TASK>
[  151.949236][T18042]  dump_stack_lvl+0xf6/0x150
[  151.949257][T18042]  dump_stack+0x15/0x1a
[  151.949274][T18042]  should_fail_ex+0x261/0x270
[  151.949347][T18042]  should_fail+0xb/0x10
[  151.949387][T18042]  should_fail_usercopy+0x1a/0x20
[  151.949410][T18042]  strncpy_from_user+0x25/0x230
[  151.949438][T18042]  ? __fget_files+0x186/0x1c0
[  151.949462][T18042]  __se_sys_request_key+0x5a/0x290
[  151.949558][T18042]  ? fput+0x99/0xd0
[  151.949582][T18042]  __x64_sys_request_key+0x55/0x70
[  151.949601][T18042]  x64_sys_call+0x2b17/0x2e10
[  151.949619][T18042]  do_syscall_64+0xc9/0x1a0
[  151.949709][T18042]  ? clear_bhb_loop+0x25/0x80
[  151.949727][T18042]  ? clear_bhb_loop+0x25/0x80
[  151.949745][T18042]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.949764][T18042] RIP: 0033:0x7fc9481ce169
[  151.949801][T18042] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  151.949817][T18042] RSP: 002b:00007fc946837038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f9
[  151.949833][T18042] RAX: ffffffffffffffda RBX: 00007fc9483f5fa0 RCX: 00007fc9481ce169
[  151.949843][T18042] RDX: 0000200000000080 RSI: 0000200000000040 RDI: 0000200000000000
[  151.949853][T18042] RBP: 00007fc946837090 R08: 0000000000000000 R09: 0000000000000000
[  151.949863][T18042] R10: fffffffffffffffd R11: 0000000000000246 R12: 0000000000000001
[  151.949873][T18042] R13: 0000000000000001 R14: 00007fc9483f5fa0 R15: 00007fff640cbf18
[  151.949889][T18042]  </TASK>
[  152.174219][T18045] loop0: detected capacity change from 0 to 512
[  152.180664][T18045] EXT4-fs: Ignoring removed oldalloc option
[  152.207135][T18045] EXT4-fs error (device loop0): ext4_xattr_inode_iget:433: comm syz.0.3481: Parent and EA inode have the same ino 15
[  152.244823][T18047] loop2: detected capacity change from 0 to 8192
[  152.284652][T18045] EXT4-fs (loop0): Remounting filesystem read-only
[  152.291223][T18045] EXT4-fs warning (device loop0): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  152.310879][T18045] EXT4-fs (loop0): 1 orphan inode deleted
[  152.330834][T18065] loop5: detected capacity change from 0 to 512
[  152.341256][T18065] EXT4-fs: Ignoring removed oldalloc option
[  152.364367][T18067] siw: device registration error -23
[  152.371102][T18065] EXT4-fs error (device loop5): ext4_xattr_inode_iget:433: comm syz.5.3488: Parent and EA inode have the same ino 15
[  152.390858][T18065] EXT4-fs (loop5): Remounting filesystem read-only
[  152.397417][T18065] EXT4-fs warning (device loop5): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  152.407666][T18065] EXT4-fs (loop5): 1 orphan inode deleted
[  152.566719][T18093] pim6reg1: entered promiscuous mode
[  152.572050][T18093] pim6reg1: entered allmulticast mode
[  152.676091][T18106] loop2: detected capacity change from 0 to 512
[  152.682713][T18106] EXT4-fs: Ignoring removed oldalloc option
[  152.691801][T18106] EXT4-fs error (device loop2): ext4_xattr_inode_iget:433: comm syz.2.3502: Parent and EA inode have the same ino 15
[  152.707810][T18106] EXT4-fs (loop2): Remounting filesystem read-only
[  152.714371][T18106] EXT4-fs warning (device loop2): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  152.726101][T18106] EXT4-fs (loop2): 1 orphan inode deleted
[  152.770621][T18115] loop2: detected capacity change from 0 to 512
[  152.777284][T18115] EXT4-fs: Ignoring removed oldalloc option
[  152.800907][T18115] EXT4-fs error (device loop2): ext4_xattr_inode_iget:433: comm syz.2.3504: Parent and EA inode have the same ino 15
[  152.819852][T18115] EXT4-fs (loop2): Remounting filesystem read-only
[  152.826522][T18115] EXT4-fs warning (device loop2): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  152.837428][T18115] EXT4-fs (loop2): 1 orphan inode deleted
[  152.871603][T18122] __nla_validate_parse: 3 callbacks suppressed
[  152.871618][T18122] netlink: 416 bytes leftover after parsing attributes in process `syz.5.3507'.
[  152.886964][T18122] netlink: 416 bytes leftover after parsing attributes in process `syz.5.3507'.
[  152.901740][T18122] can0: slcan on ttyS3.
[  152.911214][T18118] siw: device registration error -23
[  152.934057][T18121] can0 (unregistered): slcan off ttyS3.
[  152.993492][T18136] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3514'.
[  153.002768][T18136] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3514'.
[  153.044788][T18138] pim6reg1: entered promiscuous mode
[  153.050115][T18138] pim6reg1: entered allmulticast mode
[  153.207382][T18153] siw: device registration error -23
[  153.215772][   T29] kauditd_printk_skb: 324 callbacks suppressed
[  153.215786][   T29] audit: type=1326 audit(1745001200.909:17396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18154 comm="syz.5.3521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b1fdee169 code=0x7ffc0000
[  153.250073][T18155] loop5: detected capacity change from 0 to 512
[  153.257460][T18155] EXT4-fs: Ignoring removed oldalloc option
[  153.271287][   T29] audit: type=1326 audit(1745001200.949:17397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18154 comm="syz.5.3521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f4b1fdee169 code=0x7ffc0000
[  153.295006][   T29] audit: type=1326 audit(1745001200.949:17398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18154 comm="syz.5.3521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f4b1fdee1a3 code=0x7ffc0000
[  153.318401][   T29] audit: type=1326 audit(1745001200.949:17399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18154 comm="syz.5.3521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f4b1fdecc1f code=0x7ffc0000
[  153.341883][   T29] audit: type=1326 audit(1745001200.949:17400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18154 comm="syz.5.3521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f4b1fdee1f7 code=0x7ffc0000
[  153.351428][T18155] EXT4-fs error (device loop5): ext4_xattr_inode_iget:433: comm syz.5.3521: Parent and EA inode have the same ino 15
[  153.365417][   T29] audit: type=1326 audit(1745001200.949:17401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18154 comm="syz.5.3521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4b1fdecad0 code=0x7ffc0000
[  153.365452][   T29] audit: type=1326 audit(1745001200.949:17402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18154 comm="syz.5.3521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4b1fdedd6b code=0x7ffc0000
[  153.381986][T18155] EXT4-fs (loop5): Remounting filesystem read-only
[  153.401288][   T29] audit: type=1326 audit(1745001200.959:17403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18154 comm="syz.5.3521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f4b1fdecdca code=0x7ffc0000
[  153.424722][T18155] EXT4-fs warning (device loop5): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  153.431212][   T29] audit: type=1326 audit(1745001200.959:17404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18154 comm="syz.5.3521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f4b1fdecdca code=0x7ffc0000
[  153.465038][T18155] EXT4-fs (loop5): 1 orphan inode deleted
[  153.488017][   T29] audit: type=1326 audit(1745001200.959:17405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18154 comm="syz.5.3521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f4b1fdec9d7 code=0x7ffc0000
[  153.560747][T18169] loop5: detected capacity change from 0 to 128
[  153.579734][T18169] FAT-fs (loop5): bogus number of reserved sectors
[  153.586373][T18169] FAT-fs (loop5): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  153.595827][T18169] FAT-fs (loop5): Can't find a valid FAT filesystem
[  153.665734][T18179] loop5: detected capacity change from 0 to 512
[  153.672077][T18182] loop0: detected capacity change from 0 to 512
[  153.682689][T18179] EXT4-fs: Ignoring removed oldalloc option
[  153.710742][T18179] EXT4-fs error (device loop5): ext4_xattr_inode_iget:433: comm syz.5.3531: Parent and EA inode have the same ino 15
[  153.724060][T18179] EXT4-fs (loop5): Remounting filesystem read-only
[  153.724774][T18182] EXT4-fs (loop0): 1 orphan inode deleted
[  153.730622][T18179] EXT4-fs warning (device loop5): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  153.746699][T18179] EXT4-fs (loop5): 1 orphan inode deleted
[  153.747369][   T12] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:0: Failed to release dquot type 1
[  153.770854][T18182] ext4 filesystem being mounted at /128/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  153.792058][T18197] loop3: detected capacity change from 0 to 512
[  153.799114][T18197] EXT4-fs: Ignoring removed oldalloc option
[  153.807980][T18197] EXT4-fs error (device loop3): ext4_xattr_inode_iget:433: comm syz.3.3536: Parent and EA inode have the same ino 15
[  153.829167][T18200] loop5: detected capacity change from 0 to 128
[  153.839320][T18197] EXT4-fs (loop3): Remounting filesystem read-only
[  153.845953][T18197] EXT4-fs warning (device loop3): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  153.860500][T15877] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:11: Failed to release dquot type 1
[  153.861532][T18200] FAT-fs (loop5): bogus number of reserved sectors
[  153.878631][T18200] FAT-fs (loop5): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  153.887964][T18200] FAT-fs (loop5): Can't find a valid FAT filesystem
[  153.902782][T18197] EXT4-fs (loop3): 1 orphan inode deleted
[  153.964462][T18210] loop6: detected capacity change from 0 to 128
[  153.973308][T18210] FAT-fs (loop6): bogus number of reserved sectors
[  153.979933][T18210] FAT-fs (loop6): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  153.989284][T18210] FAT-fs (loop6): Can't find a valid FAT filesystem
[  154.052923][T18219] loop6: detected capacity change from 0 to 4096
[  154.092842][T18224] loop0: detected capacity change from 0 to 512
[  154.099663][T18224] EXT4-fs: Ignoring removed oldalloc option
[  154.108196][T18219] hub 4-0:1.0: USB hub found
[  154.113708][T18219] hub 4-0:1.0: 8 ports detected
[  154.118691][T18224] EXT4-fs error (device loop0): ext4_xattr_inode_iget:433: comm syz.0.3548: Parent and EA inode have the same ino 15
[  154.131491][T18224] EXT4-fs (loop0): Remounting filesystem read-only
[  154.138201][T18224] EXT4-fs warning (device loop0): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  154.148569][T18224] EXT4-fs (loop0): 1 orphan inode deleted
[  154.187981][T18229] loop0: detected capacity change from 0 to 128
[  154.197268][T18229] FAT-fs (loop0): bogus number of reserved sectors
[  154.203867][T18229] FAT-fs (loop0): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  154.213180][T18229] FAT-fs (loop0): Can't find a valid FAT filesystem
[  154.378538][T18241] loop0: detected capacity change from 0 to 128
[  154.385972][T18241] FAT-fs (loop0): bogus number of reserved sectors
[  154.392509][T18241] FAT-fs (loop0): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  154.401896][T18241] FAT-fs (loop0): Can't find a valid FAT filesystem
[  154.512654][T18255] loop6: detected capacity change from 0 to 512
[  154.519637][T18255] EXT4-fs: Ignoring removed oldalloc option
[  154.528048][T18255] EXT4-fs error (device loop6): ext4_xattr_inode_iget:433: comm syz.6.3561: Parent and EA inode have the same ino 15
[  154.541100][T18255] EXT4-fs (loop6): Remounting filesystem read-only
[  154.547672][T18255] EXT4-fs warning (device loop6): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  154.559027][T18255] EXT4-fs (loop6): 1 orphan inode deleted
[  154.581736][T18260] loop3: detected capacity change from 0 to 128
[  154.618238][T18260] FAT-fs (loop3): bogus number of reserved sectors
[  154.624803][T18260] FAT-fs (loop3): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  154.634097][T18260] FAT-fs (loop3): Can't find a valid FAT filesystem
[  154.674126][T18270] loop0: detected capacity change from 0 to 512
[  154.685678][T18270] EXT4-fs (loop0): 1 orphan inode deleted
[  154.700011][T18270] ext4 filesystem being mounted at /140/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  154.710551][T15870] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1
[  154.756933][   T12] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:0: Failed to release dquot type 1
[  154.834306][T18287] FAULT_INJECTION: forcing a failure.
[  154.834306][T18287] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  154.847574][T18287] CPU: 0 UID: 0 PID: 18287 Comm: syz.0.3577 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(voluntary) 
[  154.847677][T18287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  154.847690][T18287] Call Trace:
[  154.847696][T18287]  <TASK>
[  154.847703][T18287]  dump_stack_lvl+0xf6/0x150
[  154.847729][T18287]  dump_stack+0x15/0x1a
[  154.847746][T18287]  should_fail_ex+0x261/0x270
[  154.847837][T18287]  should_fail_alloc_page+0xfd/0x110
[  154.847862][T18287]  __alloc_frozen_pages_noprof+0x11d/0x360
[  154.847887][T18287]  alloc_pages_mpol+0xb6/0x260
[  154.847964][T18287]  alloc_pages_noprof+0xe8/0x130
[  154.848065][T18287]  __pud_alloc+0x4d/0x450
[  154.848089][T18287]  handle_mm_fault+0x1741/0x2e80
[  154.848110][T18287]  ? mas_walk+0x204/0x320
[  154.848139][T18287]  ? __rcu_read_unlock+0x4e/0x70
[  154.848172][T18287]  exc_page_fault+0x3b9/0x6a0
[  154.848214][T18287]  ? do_syscall_64+0xd6/0x1a0
[  154.848245][T18287]  asm_exc_page_fault+0x26/0x30
[  154.848332][T18287] RIP: 0033:0x7f31edda6cb9
[  154.848364][T18287] Code: f8 77 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 89 f8 48 89 fa c5 f9 ef c0 25 ff 0f 00 00 3d e0 0f 00 00 0f 87 27 01 00 00 <c5> fd 74 0f c5 fd d7 c1 85 c0 74 5b f3 0f bc c0 e9 30 01 00 00 66
[  154.848380][T18287] RSP: 002b:00007f31ec4367c8 EFLAGS: 00010283
[  154.848394][T18287] RAX: 00000000000001c0 RBX: 00007f31ec436d30 RCX: 00007f31edfb4120
[  154.848405][T18287] RDX: 00002000000001c0 RSI: 00007f31ede50782 RDI: 00002000000001c0
[  154.848415][T18287] RBP: 0000000000000012 R08: 0000000000000000 R09: 0000000000000000
[  154.848491][T18287] R10: 00000000ffffffff R11: 0000000000000000 R12: 0000000000000073
[  154.848503][T18287] R13: 00007f31ec436eb0 R14: 00002000000001c0 R15: 0000000000000000
[  154.848519][T18287]  </TASK>
[  154.848527][T18287] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  154.896219][T18289] loop5: detected capacity change from 0 to 4096
[  154.940102][T18295] loop2: detected capacity change from 0 to 512
[  155.044073][T18301] loop3: detected capacity change from 0 to 512
[  155.056361][T18302] loop0: detected capacity change from 0 to 512
[  155.076880][T18289] hub 4-0:1.0: USB hub found
[  155.082136][T18289] hub 4-0:1.0: 8 ports detected
[  155.089250][T18302] EXT4-fs (loop0): 1 orphan inode deleted
[  155.098511][T18301] EXT4-fs (loop3): 1 orphan inode deleted
[  155.101091][T18295] EXT4-fs (loop2): 1 orphan inode deleted
[  155.104374][T18302] ext4 filesystem being mounted at /144/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  155.120680][T15877] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:11: Failed to release dquot type 1
[  155.132425][T18295] ext4 filesystem being mounted at /76/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  155.142959][T15877] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:11: Failed to release dquot type 1
[  155.143148][T15877] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:11: Failed to release dquot type 1
[  155.166769][T18301] ext4 filesystem being mounted at /140/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  155.207324][   T12] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:0: Failed to release dquot type 1
[  155.214307][T18317] loop6: detected capacity change from 0 to 128
[  155.225132][T15870] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1
[  155.227674][T18317] ext4 filesystem being mounted at /346/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  155.238936][T15870] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1
[  155.291299][T18320] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3588'.
[  155.357012][T18333] loop6: detected capacity change from 0 to 512
[  155.380539][T18333] EXT4-fs: Ignoring removed oldalloc option
[  155.390865][T18335] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3595'.
[  155.395222][T18333] EXT4-fs error (device loop6): ext4_xattr_inode_iget:433: comm syz.6.3593: Parent and EA inode have the same ino 15
[  155.426821][T18333] EXT4-fs (loop6): Remounting filesystem read-only
[  155.433453][T18333] EXT4-fs warning (device loop6): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  155.446138][T18333] EXT4-fs (loop6): 1 orphan inode deleted
[  155.509556][T18342] loop5: detected capacity change from 0 to 4096
[  155.535725][T18348] loop3: detected capacity change from 0 to 512
[  155.568596][T18350] pim6reg1: entered promiscuous mode
[  155.574193][T18350] pim6reg1: entered allmulticast mode
[  155.584243][T18342] hub 4-0:1.0: USB hub found
[  155.589352][T18342] hub 4-0:1.0: 8 ports detected
[  155.595924][T18348] EXT4-fs (loop3): 1 orphan inode deleted
[  155.608885][T18354] loop0: detected capacity change from 0 to 512
[  155.616018][   T12] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:0: Failed to release dquot type 1
[  155.633356][T18348] ext4 filesystem being mounted at /146/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  155.645997][T18354] EXT4-fs: Ignoring removed oldalloc option
[  155.667573][T18354] EXT4-fs error (device loop0): ext4_xattr_inode_iget:433: comm syz.0.3600: Parent and EA inode have the same ino 15
[  155.680600][T18354] EXT4-fs (loop0): Remounting filesystem read-only
[  155.687240][T18354] EXT4-fs warning (device loop0): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  155.698777][T18354] EXT4-fs (loop0): 1 orphan inode deleted
[  155.735689][   T12] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:0: Failed to release dquot type 1
[  155.739139][T18363] loop5: detected capacity change from 0 to 256
[  155.830074][T18363] vxcan1 speed is unknown, defaulting to 1000
[  155.908157][T18379] loop6: detected capacity change from 0 to 4096
[  156.057984][T18379] hub 4-0:1.0: USB hub found
[  156.062691][T18379] hub 4-0:1.0: 8 ports detected
[  156.107239][T18396] loop3: detected capacity change from 0 to 512
[  156.152248][T18399] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3618'.
[  156.196980][T18409] loop2: detected capacity change from 0 to 512
[  156.199427][T18396] EXT4-fs (loop3): 1 orphan inode deleted
[  156.204820][T18409] EXT4-fs: Ignoring removed oldalloc option
[  156.213900][   T41] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:2: Failed to release dquot type 1
[  156.218390][T18409] EXT4-fs error (device loop2): ext4_xattr_inode_iget:433: comm syz.2.3622: Parent and EA inode have the same ino 15
[  156.239112][T18409] EXT4-fs (loop2): Remounting filesystem read-only
[  156.245682][T18409] EXT4-fs warning (device loop2): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  156.256089][T18409] EXT4-fs (loop2): 1 orphan inode deleted
[  156.265354][T18396] ext4 filesystem being mounted at /150/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  156.316094][T15877] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:11: Failed to release dquot type 1
[  156.337761][T18420] loop2: detected capacity change from 0 to 128
[  156.362824][T18420] ext4 filesystem being mounted at /86/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  156.402286][T18424] loop3: detected capacity change from 0 to 512
[  156.457024][T18424] EXT4-fs (loop3): 1 orphan inode deleted
[  156.463311][T18424] ext4 filesystem being mounted at /151/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  156.484731][T15877] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:11: Failed to release dquot type 1
[  156.515272][   T41] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:2: Failed to release dquot type 1
[  156.578478][T18440] loop3: detected capacity change from 0 to 4096
[  156.632876][T18448] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3633'.
[  156.654839][T18440] hub 4-0:1.0: USB hub found
[  156.682519][T18440] hub 4-0:1.0: 8 ports detected
[  156.722504][T18455] loop5: detected capacity change from 0 to 512
[  156.792849][T18455] EXT4-fs (loop5): 1 orphan inode deleted
[  156.802058][T18455] ext4 filesystem being mounted at /31/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  156.820843][T18467] loop2: detected capacity change from 0 to 128
[  156.828390][T18467] FAT-fs (loop2): bogus number of reserved sectors
[  156.835069][T18467] FAT-fs (loop2): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  156.844396][T18467] FAT-fs (loop2): Can't find a valid FAT filesystem
[  156.885209][ T3398] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:7: Failed to release dquot type 1
[  156.907204][T18473] pim6reg1: entered promiscuous mode
[  156.912588][T18473] pim6reg1: entered allmulticast mode
[  156.921165][T18473] 9pnet_fd: Insufficient options for proto=fd
[  156.987514][T18477] loop3: detected capacity change from 0 to 128
[  156.994700][T18477] FAT-fs (loop3): bogus number of reserved sectors
[  157.001340][T18477] FAT-fs (loop3): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  157.010739][T18477] FAT-fs (loop3): Can't find a valid FAT filesystem
[  157.028870][T18484] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3648'.
[  157.054294][T18484] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3648'.
[  157.115687][T18494] loop0: detected capacity change from 0 to 512
[  157.157093][T18494] EXT4-fs (loop0): 1 orphan inode deleted
[  157.170723][T18500] loop3: detected capacity change from 0 to 4096
[  157.183962][T18509] loop5: detected capacity change from 0 to 512
[  157.190858][T18509] EXT4-fs: Ignoring removed oldalloc option
[  157.191232][T18494] ext4 filesystem being mounted at /157/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  157.209186][T15877] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:11: Failed to release dquot type 1
[  157.222117][T18509] EXT4-fs error (device loop5): ext4_xattr_inode_iget:433: comm syz.5.3658: Parent and EA inode have the same ino 15
[  157.234739][T18508] loop6: detected capacity change from 0 to 128
[  157.243118][T18508] FAT-fs (loop6): bogus number of reserved sectors
[  157.249735][T18508] FAT-fs (loop6): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  157.259127][T18508] FAT-fs (loop6): Can't find a valid FAT filesystem
[  157.272023][T18509] EXT4-fs (loop5): Remounting filesystem read-only
[  157.278624][T18509] EXT4-fs warning (device loop5): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  157.297253][T18500] hub 4-0:1.0: USB hub found
[  157.301978][T18500] hub 4-0:1.0: 8 ports detected
[  157.326268][T18515] loop6: detected capacity change from 0 to 128
[  157.333480][T18509] EXT4-fs (loop5): 1 orphan inode deleted
[  157.339396][   T12] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:0: Failed to release dquot type 1
[  157.360417][T18515] FAT-fs (loop6): bogus number of reserved sectors
[  157.367159][T18515] FAT-fs (loop6): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  157.376681][T18515] FAT-fs (loop6): Can't find a valid FAT filesystem
[  157.385792][T16393] ==================================================================
[  157.393905][T16393] BUG: KCSAN: data-race in __find_get_block / has_bh_in_lru
[  157.401207][T16393] 
[  157.403520][T16393] read-write to 0xffff888237d26b30 of 8 bytes by task 18506 on cpu 1:
[  157.411659][T16393]  __find_get_block+0x430/0x8a0
[  157.416511][T16393]  bdev_getblk+0x30/0x3b0
[  157.420842][T16393]  __ext4_get_inode_loc+0x328/0x9a0
[  157.426044][T16393]  ext4_reserve_inode_write+0xd9/0x240
[  157.431502][T16393]  __ext4_mark_inode_dirty+0x92/0x440
[  157.436915][T16393]  ext4_dirty_inode+0x91/0xb0
[  157.441597][T16393]  __mark_inode_dirty+0x166/0x7e0
[  157.446616][T16393]  file_update_time+0x285/0x2b0
[  157.451467][T16393]  ext4_page_mkwrite+0x18c/0xb90
[  157.456400][T16393]  handle_mm_fault+0x14ba/0x2e80
[  157.461335][T16393]  exc_page_fault+0x3b9/0x6a0
[  157.466003][T16393]  asm_exc_page_fault+0x26/0x30
[  157.470844][T16393] 
[  157.473165][T16393] read to 0xffff888237d26b30 of 8 bytes by task 16393 on cpu 0:
[  157.480783][T16393]  has_bh_in_lru+0x35/0x1f0
[  157.485286][T16393]  __lru_add_drain_all+0x23f/0x3f0
[  157.490397][T16393]  lru_add_drain_all+0x10/0x20
[  157.495161][T16393]  invalidate_bdev+0x47/0x70
[  157.499752][T16393]  ext4_put_super+0x65b/0x910
[  157.504560][T16393]  generic_shutdown_super+0xe5/0x220
[  157.509848][T16393]  kill_block_super+0x2a/0x70
[  157.514513][T16393]  ext4_kill_sb+0x44/0x80
[  157.518834][T16393]  deactivate_locked_super+0x7d/0x1c0
[  157.524215][T16393]  deactivate_super+0x9f/0xb0
[  157.528891][T16393]  cleanup_mnt+0x26e/0x2e0
[  157.533305][T16393]  __cleanup_mnt+0x19/0x20
[  157.537727][T16393]  task_work_run+0x13c/0x1b0
[  157.542324][T16393]  syscall_exit_to_user_mode+0xa8/0x120
[  157.547874][T16393]  do_syscall_64+0xd6/0x1a0
[  157.552381][T16393]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.558264][T16393] 
[  157.560577][T16393] value changed: 0x0000000000000000 -> 0xffff8881005a9208
[  157.567778][T16393] 
[  157.570099][T16393] Reported by Kernel Concurrency Sanitizer on:
[  157.576250][T16393] CPU: 0 UID: 0 PID: 16393 Comm: syz-executor Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(voluntary) 
[  157.588918][T16393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  157.598966][T16393] ==================================================================