last executing test programs:

2m19.894033845s ago: executing program 4 (id=346):
r0 = socket$inet(0x2, 0x3, 0x33)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000003000083850000002d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
getsockopt$inet_mreqsrc(r0, 0x0, 0x53, &(0x7f0000000000)={@dev, @local, @broadcast}, &(0x7f00000000c0)=0xc)
socket$pppl2tp(0x18, 0x1, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
socket$inet6_udp(0xa, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000000000850000007200000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000000)={'netdevsim0\x00', &(0x7f0000000400)=@ethtool_flash={0x33, 0x0, '.\x00'}})
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401)
socket$pppoe(0x18, 0x1, 0x0)
ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000540)={'\x00', 0x7ff, 0x1, 0xc, 0xb, 0x59c})
ioctl$SG_BLKTRACETEARDOWN(r3, 0x1276, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x29)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f00000008c0)={[{@bsdgroups}, {@nodiscard}, {@noblock_validity}, {@grpjquota}, {@grpjquota}, {@orlov}, {@abort}, {@nombcache}, {@stripe={'stripe', 0x3d, 0x10}}]}, 0x64, 0x50a, &(0x7f0000000200)="$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")
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
lseek(r4, 0x10001, 0x0)

2m19.350201916s ago: executing program 4 (id=351):
set_mempolicy(0x3, &(0x7f0000000000)=0x5, 0x6)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100), 0x842, 0x0)
writev(r0, &(0x7f0000000a40)=[{&(0x7f00000003c0)="ff071d", 0x3}], 0x1) (fail_nth: 1)

2m19.131386186s ago: executing program 4 (id=352):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newlink={0x3c, 0x10, 0x609, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x88a877f7, 0x40}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @gre={{0x8}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GRE_ENCAP_TYPE={0x6, 0xe, 0x1}, @IFLA_GRE_COLLECT_METADATA={0x4}]}}}]}, 0x3c}}, 0xc080)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_STOP_AP(r1, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f00000028c0)={0x0, 0x28}}, 0x0)
getsockname$packet(r1, &(0x7f0000000080)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newlink={0x4c, 0x10, 0x401, 0x0, 0x101, {0x0, 0x0, 0x0, 0x0, 0x9}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @ip6gretap={{0xe}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_LINK={0x8, 0x1, r2}]}}}, @IFLA_ADDRESS={0xa, 0x1, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x41}}]}, 0x4c}}, 0x0)
set_mempolicy(0x3, &(0x7f0000000000)=0x5, 0x6)
get_mempolicy(&(0x7f0000000040), &(0x7f0000000080), 0xede4000000000000, &(0x7f0000ffd000/0x1000)=nil, 0x1)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100), 0x842, 0x0)
writev(r4, &(0x7f0000000a40)=[{&(0x7f00000003c0)="ff071d", 0x3}], 0x1)

2m19.032094796s ago: executing program 4 (id=355):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000079e02200850000006d00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000100)='percpu_alloc_percpu_fail\x00', r0, 0x0, 0x800001}, 0x18) (async)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r1, &(0x7f0000002b80)=[{{&(0x7f00000001c0)={0x2, 0x4e24, @local}, 0x10, 0x0, 0x0, &(0x7f0000000800)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x2}}], 0x18}}], 0x1, 0x4) (async)
syz_mount_image$ext4(&(0x7f0000000480)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x3000006, &(0x7f00000004c0)={[{@discard}, {@abort}, {@block_validity}, {@init_itable_val={'init_itable', 0x3d, 0x6}}, {@usrjquota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1ff}}, {@nobh}, {@dioread_nolock}, {@orlov}, {@user_xattr}, {@init_itable_val={'init_itable', 0x3d, 0x400}}]}, 0x1, 0x556, &(0x7f0000001100)="$eJzs3d1rW+UfAPDvSdu9/37rYAwVkcIunMyltvVlghfzUnQ40PsZ2rMymi6jScdaB24X7sYbGYKIA/Fe770c/gP+FQMtDBlFL7ypnPSky9akybL0ZebzgbM9zzknfc4353yfPCdPQgIYWGPZP4WIFyPi6yTiaNO24cg3jq3vt/rwxnS2JLG29smfSST5usb+Sf7/4bzyQkT8+mXE6cLmdqtLy3OlcjldyOvjtfmr49Wl5TOX50uz6Wx6ZXJq6uxbU5PvvvN232J97cLf331874OzX51c/fbnlWN3kjgXR/JtzXE8g5vNlbEYy5+TkTj3xI4TfWhsL0l2+wDoyVCe5yOR9QFHYyjPeuC/74uIWAMGVCL/YUA1xgGNe/s+3Qc/Nx68v34DtDn+4fX3RuJA/d7o0Gry2J1Rdr872of2szZ++ePunWyJ/r0PAdDRzVsRK0PDw5v7vyTv/3r3Rhf7PNmG/g92zr1s/PN6q/FPYWP8Ey3GP4db5G4vOud/YaUPzbSVjf/eazn+3Zi0Gh3Ka/+rj/lGkkuXy2nWt/0/Ik7FyP6svtV8ztnV+2vttjWP/7Ila78xFsyPY2V4/+OPmSnVSs8Sc7MHtyJeajn+TTbOf9Li/GfPx4Uu2ziR3n2l3bbO8W+vtR8jXm15/h/NaCVbz0+O16+H8cZVsdlft0/81q793Y4/O/+Hto5/NGmer60+fRs/HPgnbbet1+t/X/JpvbwvX3e9VKstTETsSz7avH7y0WMb9cb+WfynTm7d/7W6/g9GxGddxn/7+E8v9x7/9srin3mq8//0hfsffv59u/a7O/9v1kun8jXd9H/dHuCzPHcAAAAAAACw1xQi4kgkheJGuVAoFtc/33E8DhXKlWrt9KXK4pWZqH9XdjRGCo2Z7qNNn4eYyD8P26hPPlGfiohjEfHN0MF6vThdKc/sdvAAAAAAAAAAAAAAAAAAAACwRxxu8/3/zO9Du310wLbzk98wuDrmfz9+6QnYk7z+w+CS/zC45D8MLvkPg0v+w+DqkP/JTh0HsPO8/sPgkv8AAAAAAAAAAAAAAAAAAAAAAAAAAADQVxfOn8+WtdWHN6az+sy1pcW5yrUzM2l1rji/OF2crixcLc5WKrPltDhdme/098qVytWJyVi8Pl5Lq7Xx6tLyxfnK4pXaxcvzpdn0YjqyI1EBAAAAAAAAAAAAAAAAAADA86W6tDxXKpfTBQWFngrDe+MwFPpc2O2eCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAe+TcAAP//Z7w5Vw==")
open(0x0, 0x181042, 0x0)
r2 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) (async)
futex(0x0, 0x800000000006, 0x0, 0x0, 0x0, 0x0) (async)
r3 = syz_pidfd_open(r2, 0x0)
r4 = pidfd_getfd(r3, 0xffffffffffffffff, 0x0) (async)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$tipc(r5, &(0x7f0000003280)={0x0, 0x0, 0x0}, 0x0) (async)
sendmsg$tipc(r5, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4008800}, 0x0)
sendmsg$inet(r5, &(0x7f0000000f80)={0x0, 0x0, 0x0}, 0x0) (async)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kmem_cache_free\x00', r6}, 0x10) (async)
close(0x3) (async)
ioctl$sock_SIOCDELRT(r4, 0x890c, &(0x7f0000000300)={0x0, @phonet={0x23, 0x20, 0x8, 0x9}, @hci={0x1f, 0x3, 0x3}, @llc={0x1a, 0x322, 0x6, 0x2, 0x4}, 0xc, 0x0, 0x0, 0x0, 0x5, &(0x7f00000000c0)='gretap0\x00', 0xf579, 0x8, 0x1}) (async)
r7 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r7, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x1, 0x1200, 0x0, 0x3)

2m18.894311396s ago: executing program 4 (id=357):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r1}, 0x10)
get_robust_list(0x0, &(0x7f0000000240)=0x0, &(0x7f0000000280))
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d0000008500000023"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2, 0x0, 0xc7ca}, 0x18)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
r4 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r4)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r4, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0b000000050000000100010009000000010000008324d6e2acfda2331d6e2e139664f57da48762749e1f6bd9620141f05ff824063f239ddb9f095485f00310f541b4b1f0f63cdb62603e05e685cfd145fdb577dac9e56036406535950bc9a62c896325a456ce229dc4c96032a589009790acbab22d827e0d855d592449ca5acb04416af6ff746ffc62776fb10f01fb4594d1c8c84240", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000b00)=ANY=[@ANYBLOB="18000000000000000000000000000200181100006e7edccc767947b237d25fc748270da8468f9aa8eaf605ad4873c1bd34b2b3994e7e9284d25b5f26db5667c29e7ff4a8006368b26489a980b19b12c911ad36201c45567e204209c55575d38918188a9f90fdce5063fb1c1dcba00f008016b48d0f8fd922e82e859e2ecd68854568dff524b4fef7ef4b93d9da2fd00e2ad249d746c717e5f54db5935c039048cbe9afb1f05f65b9a13e357a1369f3719863b2bc3887eb15d5e46d673c6a2a2b", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000100007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000100)='kmem_cache_free\x00', r7, 0x0, 0xfffffffffffbfffe}, 0x18)
setsockopt$inet6_tcp_int(r5, 0x6, 0x22, &(0x7f0000356000)=0x1, 0x4)
connect$inet6(r5, &(0x7f0000000340)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendto$inet6(r4, 0x0, 0x4, 0x0, 0x0, 0x0)
fcntl$getown(r3, 0x9)
socket$inet_smc(0x2b, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[], 0x48)
open(0x0, 0x141a42, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000280)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
sendmmsg$unix(r9, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r8, &(0x7f00000000c0), 0x6254, 0x40010060, 0x0)
unshare(0x68040200)
socket$inet6(0xa, 0x1, 0x84)
r10 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000007c0)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1}, {0xf}, {0xe, 0xd}}, [@TCA_INGRESS_BLOCK={0x8}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}}, 0x0)

2m18.598325267s ago: executing program 4 (id=365):
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x1)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffd71, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0xb7)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=@getqdisc={0x24, 0x26, 0x705, 0x70bd2b, 0x5, {0x0, 0x0, 0x0, 0x0, {0x1, 0xffe0}, {0x10, 0x8}, {0xfff2, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x8000}, 0x0)

2m18.597443697s ago: executing program 32 (id=365):
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x1)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffd71, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0xb7)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=@getqdisc={0x24, 0x26, 0x705, 0x70bd2b, 0x5, {0x0, 0x0, 0x0, 0x0, {0x1, 0xffe0}, {0x10, 0x8}, {0xfff2, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x8000}, 0x0)

1.782231267s ago: executing program 2 (id=2328):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x9, &(0x7f00000026c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x36, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x181840, 0x0)
ioctl$PPPIOCSACTIVE(r1, 0x40047459, &(0x7f0000000080)={0xfffffffffffffe43, 0x0})
read(r1, 0x0, 0x0)
write$ppp(r1, &(0x7f0000000200)="bc72", 0x2)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0xa00, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
r3 = socket$rxrpc(0x21, 0x2, 0xa)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d01080000c582b61bdd04878800080103"], 0x2c}, 0x1, 0x0, 0x0, 0x80}, 0x26004080)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r6, @ANYBLOB="ff830500000700ffffff", @ANYRES32=r3], 0x4}}, 0x0)
sendfile(r5, r4, 0x0, 0x100000002)

1.641797657s ago: executing program 2 (id=2330):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, @fallback=0xd1170707f0656889, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x14, r3, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@void, @void}}}, 0x14}}, 0x4000054)

1.591122837s ago: executing program 2 (id=2332):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000009385000000710000"], &(0x7f0000000200)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
request_key(&(0x7f0000000300)='logon\x00', &(0x7f0000000380)={'syz', 0x1}, &(0x7f0000000440)='wfdno', 0xfffffffffffffffc)

1.581702287s ago: executing program 5 (id=2333):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = gettid()
r1 = fsopen(&(0x7f0000000000)='ceph\x00', 0xcb3f0f22e7b47453)
openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x2c000, 0x3)
fsconfig$FSCONFIG_SET_PATH(r1, 0x3, &(0x7f0000000080)='kmem_cache_free\x00', &(0x7f0000000280)='./file0\x00', 0xffffffffffffffff)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000fc0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000c00)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
process_vm_writev(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

1.513688087s ago: executing program 2 (id=2336):
syz_mount_image$vfat(&(0x7f00000004c0), &(0x7f0000000640)='./bus\x00', 0x0, &(0x7f0000000080)=ANY=[], 0x1, 0x1268, &(0x7f0000002500)="$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")
open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0)
r0 = open(&(0x7f0000000100)='./bus\x00', 0x14113e, 0x0)
write$binfmt_script(r0, &(0x7f0000000080), 0x208e290)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xffc, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = open(&(0x7f0000000000)='.\x00', 0x0, 0x8e)
mkdirat(r2, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)

1.446547907s ago: executing program 5 (id=2337):
r0 = fsopen(&(0x7f0000000400)='autofs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000240)=',-\x10*\x00', &(0x7f0000000380)='$\x00', 0x0)
fsconfig$FSCONFIG_SET_FD(r0, 0x5, &(0x7f00000005c0)='dE\x00', 0x0, r0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
close(r0)

1.446048997s ago: executing program 5 (id=2338):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r2}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r3, 0x0, 0x200000000200}, 0x18)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$SG_IO(r5, 0x2285, &(0x7f0000000040)={0x53, 0x0, 0x6, 0x0, @buffer={0x2, 0x40002, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})

1.387738397s ago: executing program 5 (id=2339):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x48, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x20, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x2}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x2}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x40c0080)
r1 = dup(r0)
sendmsg$DEVLINK_CMD_SB_OCC_MAX_CLEAR(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000040)={&(0x7f0000000300)={0x14c, 0x0, 0x20, 0x70bd26, 0x25dfdbff, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x27}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x4}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x200}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0xcb16}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x8}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x7fff}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x101}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x5}}]}, 0x14c}, 0x1, 0x0, 0x0, 0x8000000}, 0x8001)

1.325890517s ago: executing program 5 (id=2340):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
stat(&(0x7f0000000340)='./file0\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext3\x00', &(0x7f00000003c0)='./file2\x00', 0x1c04b, &(0x7f0000000700)={[{@debug_want_extra_isize}, {@usrjquota_path={'usrjquota', 0x3d, './file1'}}, {@debug}, {@prjquota}, {@dax_always}]}, 0x1, 0x751, &(0x7f0000002880)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x8042, 0x0)
fcntl$setlease(r1, 0x400, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r6 = socket$netlink(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x803, 0x0)
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
getsockname$packet(r6, &(0x7f0000000340)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000300)=0x14)
sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000007c0)=ANY=[@ANYRESOCT=r8, @ANYRES64=r4, @ANYBLOB="03000016010000001800120008000100736974000c0002000800030036"], 0x38}}, 0x0)
r9 = syz_open_procfs$namespace(r2, &(0x7f00000006c0)='ns/pid\x00')
ioctl$BTRFS_IOC_SCRUB_CANCEL(r9, 0x941c, 0x0)
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f0000000080)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x800000, &(0x7f00000008c0)=ANY=[], 0x6, 0x2d0, &(0x7f00000003c0)="$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")

1.263107818s ago: executing program 2 (id=2342):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000100))
ioctl$PPPIOCSACTIVE(r0, 0x40107446, &(0x7f0000000280)={0x2, &(0x7f00000000c0)=[{0x40, 0x8, 0x0, 0x1}, {0x6, 0x0, 0x20, 0x4000}]})
pwritev(r0, &(0x7f0000000200)=[{&(0x7f0000000140)="07e0d2", 0x3}], 0x1, 0x1, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b705000008000000850000006900"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00'}, 0x10)
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x3000003, 0x8c4b815a5465c2b1, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, &(0x7f000095dffc)=0x8)
r3 = syz_open_dev$evdev(&(0x7f0000000040), 0x3, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r4}, 0x10)
syz_usb_disconnect(r3)
process_vm_writev(0x0, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r2, 0x0, 0x5}, 0x18)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xa, &(0x7f0000000080)=0x1, 0x4)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, &(0x7f0000000100)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
socket$inet_tcp(0x2, 0x1, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0b000000050000000500"/20, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800006693c1003cc1c74626000000bfa200002a4dab81444f0858f8ffffffb70000b072727b0095000000000000009062903ce2a346e89fc83a8e3d30e83d83"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000340)='kfree\x00', r6, 0x0, 0x8000000000000000}, 0x18)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000c40)=ANY=[@ANYBLOB], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYRESDEC, @ANYRESHEX, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f00000002c0)='syzkaller\x00', 0xd7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r7}, 0x10)
request_key(&(0x7f0000000300)='logon\x00', &(0x7f0000000380)={'syz', 0x1}, &(0x7f0000000440)='wfdno', 0xfffffffffffffffc)

783.826908ms ago: executing program 1 (id=2344):
r0 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
setsockopt$SO_J1939_SEND_PRIO(r0, 0x6b, 0x3, &(0x7f0000000040)=0x5, 0x4) (async, rerun: 64)
ioctl$sock_SIOCGIFBR(r0, 0x8940, &(0x7f0000000100)=@get={0x1, &(0x7f0000000080)=""/68, 0x2}) (async, rerun: 64)
sendto$inet6(r0, &(0x7f0000000140)="58276c4f30aadef3925d2c41b7c77cf1b522dfcae825db8c9172dec7de03122cb1d08fe9bcf7cf896a7b5f0e778d555d1f147e85e8623802804ec8a3a07713f490165686aa57899b5bb808174b342d3546ef8c06d99f66ef724bc77bf9ba2d44bb434691698e8351e19a830df80fcd1a367394b18619345cc7cb73522628310d9a2d38bba8dfab97b1037acce4bdf84e525334637a24927e8dfe3f551aec3a7b8093fb21b76a0b4d453284bf915c24ef7bf89b92004ada", 0xb7, 0x8058, &(0x7f0000000200)={0xa, 0x4e23, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}, 0x1000}, 0x1c)
r1 = request_key(&(0x7f0000000340)='ceph\x00', &(0x7f0000000380)={'syz', 0x0}, &(0x7f00000003c0)='\x00', 0xfffffffffffffffb)
add_key$fscrypt_v1(&(0x7f0000000240), &(0x7f0000000280)={'fscrypt:', @auto=[0x33, 0x61, 0x61, 0x31, 0x0, 0x66, 0x64, 0x63, 0x36, 0x32, 0x66, 0x37, 0x64, 0x67, 0x34, 0x37]}, &(0x7f00000002c0)={0x0, "9026ad58e251d55b7127dfaa32098a6f7269013b670c1e6a557c8247b0aa6d76c321b5f1833df0f24a610813e8d017db12438a18571f5073b55cce562356075e", 0x27}, 0x48, r1) (async)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r0, 0xc018937e, &(0x7f0000000400)={{0x1, 0x1, 0x18, <r2=>r0}, './file0\x00'})
connect$unix(r2, &(0x7f0000000440)=@file={0x0, './file0\x00'}, 0x6e)
listen(r2, 0x3369)
r3 = socket$nl_sock_diag(0x10, 0x3, 0x4)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000580)={'vlan0\x00', &(0x7f00000004c0)=@ethtool_rx_ntuple={0x35, {0x6, @hdata="e5c7dd3ee0fef701bd074b04b3164c8288576e71a74c3db679c4f998e8d37179ddd9b331c4cb6057d0a46a66530e76d87583594611d7e71a9eec44beec0f02829f7127f874caa1c3", @udp_ip4_spec={@rand_addr=0x64010100, @private=0xa010101, 0x4e21, 0x4e21, 0xf3}, 0x8, 0x69, 0x0, 0x2}}}) (async)
sendmsg$can_j1939(r2, &(0x7f0000000680)={&(0x7f00000005c0)={0x1d, 0x0, 0x0, {0x2, 0x1}, 0x2}, 0x18, &(0x7f0000000640)={&(0x7f0000000600)="7537d58c4752a552c7a64a13828acdae15e95a54f16652709e9d39b78cccaecb5db11bfec5ef944182bdcf", 0x2b}, 0x1, 0x0, 0x0, 0x20000800}, 0x8800)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=@bloom_filter={0x1e, 0x0, 0xfffffffe, 0x9, 0x20, r2, 0x7, '\x00', 0x0, r2, 0x1, 0x1, 0x0, 0x4, @void, @value, @void, @value}, 0x50)
r5 = signalfd(r4, &(0x7f0000000740)={[0x5]}, 0x8)
write$binfmt_elf64(r5, &(0x7f0000000780)={{0x7f, 0x45, 0x4c, 0x46, 0x7, 0xc, 0xfc, 0x2, 0xd2, 0x3, 0x3e, 0x2ff5, 0x217, 0x40, 0xc3, 0x3, 0x6, 0x38, 0x4, 0x40, 0xfffe, 0xf29b}, [{0x3, 0x6, 0x10, 0x40, 0x1, 0x34, 0x3, 0x7}, {0x3, 0x571, 0x10000, 0x4, 0x6, 0x8, 0x10001, 0x6}, {0x2, 0x27c, 0xb, 0x0, 0x4, 0x10ee, 0xe, 0x3ff}, {0x6474e551, 0x2, 0x0, 0x3, 0xa, 0x401, 0xd0f6, 0xfffffffffffffff9}], "0ba9495d2d1baf1b05826001f3979aa25bf3f5c23cef4f555d2947bd06a62381b5862fc697c4e19f08e968ed34f60ebc6c1d3e4bc69380b5bf7ee7619202a57ec8d9a23a1c3b753c42dd97ab94360649759f3110bedc17944f2ac2588cafa1a8c2887f71213ba9ecd5eba87361d4356516ec148b3b190dcc3cefcda03c7c8d6454150d7ffb29660cfa59e39df9375b2e7af9ea06e8707eb51d29ab2d821030000287c81dbd630c9a29816760bfa6047c789c6641b804e965ebb35eb8199e25e61dc9103c40a3834a5e2ece3db121762649e71feecbd798a23b721c2f0af34af8b97958edeaf5a1532108e0f6baf2fcdf13dfc6746273", ['\x00', '\x00', '\x00', '\x00']}, 0x616)
ioctl$TUNSETCARRIER(r0, 0x400454e2, &(0x7f0000000dc0)=0x1)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r5, 0xc0502100, &(0x7f0000000e00)={0x0, <r6=>0x0})
r7 = syz_open_procfs(r6, &(0x7f0000000e80)='net/ip_tables_targets\x00') (async)
getsockopt$inet6_mreq(r0, 0x29, 0xe9dd83d38ca6cb47, &(0x7f0000000ec0)={@dev, <r8=>0x0}, &(0x7f0000000f00)=0x14)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_VID_CMD(r0, 0x8982, &(0x7f0000000f40)) (async)
setrlimit(0xb, &(0x7f0000000f80)={0x0, 0xc7})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001000)={&(0x7f0000000fc0)='thermal_power_cpu_get_power\x00', 0xffffffffffffffff, 0x0, 0xde6c}, 0x18) (async)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, &(0x7f00000012c0)={&(0x7f0000001040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001280)={&(0x7f0000001080)={0x1e8, 0x3, 0x1, 0x801, 0x0, 0x0, {0x3, 0x0, 0x2}, [@CTA_ID={0x8, 0xc, 0x1, 0x0, 0x2}, @CTA_TUPLE_MASTER={0x5c, 0xe, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x8, 0x2, @private=0xa010101}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @empty}, {0x8, 0x2, @loopback}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @rand_addr=0x64010101}, {0x8, 0x2, @rand_addr=0x64010100}}}]}, @CTA_NAT_DST={0x10c, 0xd, 0x0, 0x1, [@CTA_NAT_V6_MAXIP={0x14, 0x5, @ipv4={'\x00', '\xff\xff', @local}}, @CTA_NAT_V4_MINIP={0x8, 0x1, @broadcast}, @CTA_NAT_PROTO={0x54, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e24}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e20}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e20}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e24}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e20}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e22}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e20}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e21}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}]}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @dev={0xfe, 0x80, '\x00', 0x29}}, @CTA_NAT_V4_MINIP={0x8, 0x1, @multicast2}, @CTA_NAT_V6_MINIP={0x14, 0x4, @private1}, @CTA_NAT_V6_MINIP={0x14, 0x4, @empty}, @CTA_NAT_PROTO={0x54, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e20}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e20}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e23}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e20}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e21}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e21}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e24}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e20}]}]}, @CTA_LABELS_MASK={0x24, 0x17, [0xb3, 0x2, 0x3, 0x306, 0xfffffff8, 0x4, 0xc0000, 0xd3ed]}, @CTA_FILTER={0x24, 0x19, 0x0, 0x1, [@CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x441}, @CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x423}, @CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x901}, @CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x463}]}, @CTA_LABELS_MASK={0x8, 0x17, [0x5]}, @CTA_SEQ_ADJ_ORIG={0x14, 0xf, 0x0, 0x1, [@CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x3bf7}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x80000000}]}]}, 0x1e8}, 0x1, 0x0, 0x0, 0x800}, 0x4048804) (async, rerun: 32)
setsockopt$packet_rx_ring(r5, 0x107, 0x5, &(0x7f0000001300)=@req3={0x3, 0x1, 0x9, 0x80, 0xfffffffe, 0x0, 0x9}, 0x1c) (async, rerun: 32)
fsconfig$FSCONFIG_SET_FD(r2, 0x5, &(0x7f0000001340)='*\x00', 0x0, r3)
r9 = syz_genetlink_get_family_id$tipc(&(0x7f00000013c0), r0)
sendmsg$TIPC_CMD_SHOW_PORTS(r5, &(0x7f0000001480)={&(0x7f0000001380)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000001440)={&(0x7f0000001400)={0x1c, r9, 0x15, 0x70bd2c, 0x25dfdbff, {}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x80d0}, 0x0)
ioctl$IMSETDEVNAME(r2, 0x80184947, &(0x7f00000014c0)={0x1, 'syz1\x00'})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001700)={0x11, 0x1f, &(0x7f0000001500)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x6}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1f48b446}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @map_idx={0x18, 0x3, 0x5, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x8}, @jmp={0x5, 0x0, 0x0, 0xb, 0x1, 0x80}, @ldst={0x0, 0x0, 0x4, 0x2, 0x8, 0x8, 0xfffffffffffffffc}, @tail_call={{0x18, 0x2, 0x1, 0x0, r7}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x5}}]}, &(0x7f0000001600)='syzkaller\x00', 0x10000, 0x0, 0x0, 0x41100, 0x24, '\x00', r8, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001640)={0x4, 0x3}, 0x8, 0x10, &(0x7f0000001680)={0x5, 0xe, 0x8, 0x8001}, 0x10, 0x0, 0x0, 0x2, 0x0, &(0x7f00000016c0)=[{0x3, 0x5, 0x9}, {0x4, 0x1, 0x6, 0x7}], 0x10, 0x4, @void, @value}, 0x94) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000029c0)={r0, 0x0, 0xc3, 0x6c, &(0x7f00000017c0)="9675b98a1d0c4cde537b8a688b4da1562c1fb22f00a8e90dabbe0605f480c9db888f8f84e47531abb2dd9c4c4f3fb002388f8ca2458a337b51d04c7efdd774d221d7feb638d10beeefc5df40949427b65a3cdcb6b5a9342dda25700356b9173836c386a56fb64cb36c47f09f0998c86cac3f21d0b02ccceb5e3e0f48a64205d358cf101db8d061c8879df98bd311942172865d032d22569df7e2093bfb3ea0b878c167d3f293fdcc45260f56c272371f816a69322680c0b13187e7d3c6c70bdc0b0a05", &(0x7f00000018c0)=""/108, 0x4, 0x0, 0x6d, 0x1000, &(0x7f0000001940)="4ee5e6bb5151059325d3e7afd4f23312b637993a06db14eed7b9b11712a0b1fd524eb89cbd588af53f04a8e8c73177f6dd506088294181c10afab13eec71200b9083339eb5c7e14d98d219e3714b9365c6c23cb06d4c6019b974abeeabf79845c13f024330770dbc70ede9b9c5", &(0x7f00000019c0)="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", 0x1, 0x0, 0x6}, 0x50)

738.085519ms ago: executing program 3 (id=2345):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f00000015c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
creat(&(0x7f0000000040)='./bus\x00', 0x140)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x169142, 0x0)
fcntl$setlease(r2, 0x400, 0x1)
rename(&(0x7f0000000440)='./bus\x00', &(0x7f00000003c0)='./file1\x00')

629.901359ms ago: executing program 3 (id=2346):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000938500000071000000"], &(0x7f0000000200)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
request_key(&(0x7f0000000300)='logon\x00', &(0x7f0000000380)={'syz', 0x1}, &(0x7f0000000440)='wfdno', 0xfffffffffffffffc)

602.838669ms ago: executing program 3 (id=2347):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="01000000060000000800000009"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r0}, &(0x7f0000000400), &(0x7f0000000340)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESDEC=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
socket$kcm(0xa, 0x922000000003, 0x11)
setreuid(0x0, 0xee00)
r2 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="48000000150081fb7059ae08060c04000aff0f11000000040011018701546fabca1b4e7d06a6bd7c493872f750375ed08a562af5745e17b8c119418f0f000000d6e74703c48f93b8", 0x48}], 0x1}, 0x0)
r3 = getpid()
syz_pidfd_open(r3, 0x0)

544.249589ms ago: executing program 0 (id=2349):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="01000000060000000800000009"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r0}, &(0x7f0000000400), &(0x7f0000000340)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
r2 = getpid()
syz_pidfd_open(r2, 0x2000000)

543.609659ms ago: executing program 3 (id=2350):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r2}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r3, 0x0, 0x200000000200}, 0x18)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$SG_IO(r5, 0x2285, &(0x7f0000000040)={0x53, 0x0, 0x6, 0x0, @buffer={0x2, 0x40002, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})

543.178719ms ago: executing program 0 (id=2351):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="006c1b7d9f23424ff911e42aae465d3beff209c7addde0030921b37ada45a7a7adbc6a40e1f16ce02efe619657de304a1a", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
ioctl$FS_IOC_GETFSSYSFSPATH(r0, 0x80811501, &(0x7f00000000c0)={0x80})
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0xfff, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffff30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010008000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r3, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=@framed={{}, [@ringbuf_output={{0x18, 0x2, 0x1, 0x0, r4}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x43}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r5}, 0x10)
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00')
writev(r6, &(0x7f00000000c0)=[{&(0x7f0000000040)="dc", 0x1}], 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000067dfb4a518110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000060000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff010000850000000e000000850000005000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x9)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r8 = gettid()
rt_sigqueueinfo(r8, 0x21, &(0x7f0000000000))
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000008c0)='page_pool_state_hold\x00', r9}, 0x10)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x6, 0x4, &(0x7f00000007c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000002c00000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r10, 0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000040)='./file2\x00', 0x101080e, &(0x7f00000001c0)=ANY=[@ANYBLOB="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", @ANYRES16, @ANYRESOCT], 0x1, 0x67e, &(0x7f0000001600)="$eJzs3V1v29Ydx/Ef5SfFHYJiG4IgSJOTZAUcLFMouXFgZMCqUZTNTRIFUh5sYECRNXYRRE63JAMW3xS+2BPQvYHd9WK72IsYsOu9iu1uA4rtbsBuWPCQsiVbD1btJG3y/QStKPLPc/4kFf7BSDwUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACQ49Vct+yoEbQ2Ns1oXi0Km2OWZ63N6WY2cXNiv5KT/qdiURezWRe/fbj4Qvq/67qcvbusYvpS1N5bF96+963ZQm/9MQl9GZq2wafP9x7d73a3n5wgdkZTN/8qqXCCoDW/FcRh0Kyu+SaIQ7O6suLeXq/Hph40/Hgr7vhN40V+oRNGZsm7acqrq8vGL22FG621WrXh92be/V7FdVfMjxayAy2pFHvrQaMRtNZsTLo4jblrPv1pFuBXm8bsPOxuL09KMg0qnySoMimo4lYq5XKlUl65s3rnruvOHpvhphz3gI5FnPmHFl8zZ3fyBk6pkNb/fzpSQ0W1tKFNmaF/PNUUKVRzxPJcr/6/e9sf229//e9V+YvSD/LFl2Tr/5Xs3ZVR9X9ELkbGrjBsiTNi/nR/5vJWnuq59vRI99VVV9t6cgZtG5mrp23h12eSxz+SzOiINflqKVCsUIGaqto5Jp9jtKoVrcjVB1pXXbGM6grUkK9YW4rVkW8/UZ4i+aqqo1CRjJbk6aaMylrVqpZl5KukLYXaUEtrqqmq/yVJsqOHdr8vj9kK9YLKIwIW+oMqY1oaVf9/9kn2Oc3rv0v9f1Nln4OF/Cw2Lgb4Ckjy6/8pXX0x2QAAAAAAgBfBsf/67tjv7t+RlKgeNHz3VacFAAAAAADOkKNkQZflyP6kTe/I4fofAAAAAIDXjWPvsXMkLdof9TuHd0Kd5B8BZl5CigAAAAAA4JTsnf9X5qXEDlpxVc5U1/8AAAAAAOBr4Hd9Y+zP9sbYTXpf6xckxe0F56//WVA05+y3N7/j7FbTJdXdPObYLwA69UvO+XygXvsyL8m+8/zLTt5bPgjmwbiDn+9MGuvfiY4kMD/T38CIBJy055XZ/J0+1bVslWv5OPMP9gqyS7JeFutBwy95YeNeWdXq+ULH3+z88vHDX0nRwXbuPOxulz78uPvA5rKfztrfTRv9ZCCdwvCdcZjLMzvegr3nYtgWn1O91+XvW81Fx/br9rZ/RtXdQn9H4w7AYZ+/0fXsmF1fzGIX9w5G3E+3v5huf7lkD9nA1kdzzmEW5aNbPuxAjMiiaLO4kcXcWLqRvfTyS9spOMXvzkiV0vFjMJBFpT+LyfvC+e+xfTEui3xfLKdZ/C1taEQWy9NlceyIAMCrsnNYhewg5sfqbq889E5qX6ruTK7u7w9W92d/TBK7wow0m383MbaXotIz+pJj69C87Il19tKQM7qb15WiRpzR3VNUt7Svvxw+AylP+1gW/0+S5F7Z9vuHI1X1s3SFz0b2GzcqM+kuvP1s9+d2APzUR9sfbT+uVJZX3Pdc905Fc3Yz8pcZHc2U32wCAE7wjJ2JEc57upZFXHvw73ezqYGK982DnxSU9KE+VlcPdKv3CIGrw1td7PsZwq3sqlV9V63mwtv3zklHY8u6NfKqztbSvtjKQeyceqsMVurD2OUXfBQAAHi5rk+ow8Prf3Gg/t/SUhaxdGnodfdgLT/6hOBRseXJyb9/1nsDAIA3gx997ix2futEUdD+oLy6Wq521n0Thd6PTRTU1nwTtDp+5K1XW2u+aUdhJ/TChmlHWghqfmzijXY7jDqmHkamHcbBpn3yu8kf/R77zWqrE3hxu+FXY994YatTnZGpBbFn2hs/bATxuh/ZleO27wX1wKt2grBl4nAj8vySMbHv9wUGNb/VCepBOtky7ShoVqMt85OwsdH0Tc2PvShod8KsQduX1zFBqx5GTdtsScnUDzoEAOB19PT53qP73e72kzET+5ock0/MD2mQ75sBAPiKOSzXU6xUfIEJAQAAAAAAAAAAAAAAAAAAAACAY05y/99UE3PDbhaUDub84vyRtf6kYe04OuvEppkoTLtW75aIvUd/HxN87mBOb/f3x+y/tA381zekt+wcZXNmz76vc3ZvvLwD9/2dbI+OjEkXDl20cHAsZs/+r0M68fjPIxYlSZKMX31hcB/Oj9vAwYlZSU/mT3EIBk4TjJsBvIa+CAAA//9z/kFZ")

542.555539ms ago: executing program 3 (id=2352):
r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x35, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1, 0x1ff}, 0x0, 0xf5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
socket(0x1, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_DETACH(0x8, 0x0, 0x10)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYRES16=r2, @ANYRES32=r0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYRES64=0x0, @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x3b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000002d00000095"], &(0x7f0000000540)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
read(r6, 0x0, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r6, 0x0, &(0x7f00000000c0)=<r7=>0x0)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r8)
sendmsg$NFC_CMD_DEV_UP(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r7], 0x1c}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r5, 0x0, 0xffffffffffffffff}, 0xffffffffffffff4c)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x200c840, &(0x7f0000000240)={[{@discard}, {@noload}]}, 0x64, 0x537, &(0x7f0000000f80)="$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")
llistxattr(&(0x7f0000000080)='./file1\x00', 0x0, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x13, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x40000, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r9}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', &(0x7f0000000040), 0x100)
close_range(r1, 0xffffffffffffffff, 0x0)
r10 = accept4$nfc_llcp(r3, &(0x7f0000000440), &(0x7f00000004c0)=0x60, 0x800)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r10, 0x8983, &(0x7f0000000500))

496.932959ms ago: executing program 1 (id=2353):
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x12, &(0x7f0000000140)=ANY=[@ANYBLOB="180200000000000000000000000031d0851000000600000018040000", @ANYRES32, @ANYBLOB="0000000000000000660000000000000018000000000000000000000000000000950000000000000018010000202070250000000000202020db1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b502000050002000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x3, &(0x7f0000000340)=""/206, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)

475.76969ms ago: executing program 1 (id=2354):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f00000015c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], &(0x7f0000000200)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
creat(&(0x7f0000000040)='./bus\x00', 0x140)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x169142, 0x0)
fcntl$setlease(r2, 0x400, 0x1)
rename(&(0x7f0000000440)='./bus\x00', &(0x7f00000003c0)='./file1\x00')

474.940369ms ago: executing program 5 (id=2355):
r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x35, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1, 0x1ff}, 0x0, 0xf5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
socket(0x1, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_DETACH(0x8, 0x0, 0x10)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYRES16=r2, @ANYRES32=r0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYRES64=0x0, @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x3b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000002d00000095"], &(0x7f0000000540)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
read(r6, 0x0, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r6, 0x0, &(0x7f00000000c0)=<r7=>0x0)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r8)
sendmsg$NFC_CMD_DEV_UP(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r9, @ANYBLOB="0100000000000000000002000000", @ANYRES32=r7], 0x1c}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r5, 0x0, 0xffffffffffffffff}, 0xffffffffffffff4c)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x200c840, &(0x7f0000000240)={[{@discard}, {@noload}]}, 0x64, 0x537, &(0x7f0000000f80)="$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")
llistxattr(&(0x7f0000000080)='./file1\x00', 0x0, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x13, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x40000, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r10}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', &(0x7f0000000040), 0x100)
close_range(r1, 0xffffffffffffffff, 0x0)
r11 = accept4$nfc_llcp(r3, &(0x7f0000000440), &(0x7f00000004c0)=0x60, 0x800)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r11, 0x8983, &(0x7f0000000500))

431.800489ms ago: executing program 0 (id=2356):
r0 = syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0x101c08a, &(0x7f0000000a00)=ANY=[@ANYBLOB="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"], 0x6, 0x2c8, &(0x7f0000002500)="$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")
open(&(0x7f0000000100)='./bus\x00', 0x143142, 0x0)
truncate(&(0x7f0000000000)='./file2\x00', 0x100)
r1 = syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000100)='.\x00', 0xe1, &(0x7f0000000840)=ANY=[], 0x1, 0x0, &(0x7f0000000000))
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYRESOCT=r0, @ANYRES32, @ANYBLOB="0000000000000000b7020000ffff0c63b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095", @ANYRES32=r1], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file1/file3\x00', 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000180)='./file1/file3\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
open(&(0x7f0000000600)='.\x00', 0x0, 0x0)
r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000180), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r3, 0x40345410, &(0x7f0000000040)={{0x1}})
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
sendto$inet(r4, &(0x7f0000000000)="877e52f65d0881e81dcd3a774f129925b576c7595810d84792f1", 0x1a, 0x8004, &(0x7f0000000080)={0x2, 0x4e24, @remote}, 0x10)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r3, 0x54a2)
socket$rds(0x15, 0x5, 0x0)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x3c, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0xfffe, 0x6, 0x0, 0xfffffffa}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
listen(0xffffffffffffffff, 0x3)
r5 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmmsg(r5, &(0x7f0000001500), 0x588, 0x0)
ioperm(0x0, 0x2, 0x5)
ptrace$getregset(0x4204, 0x0, 0x201, 0x0)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000e00), r6)
r7 = add_key$keyring(&(0x7f0000000540), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
r8 = add_key$user(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x0}, &(0x7f00000001c0)="a6", 0x1, r7)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r7, &(0x7f0000000200)='asymmetric\x00', &(0x7f0000000140)=@keyring={'key_or_keyring:', r8})
socket(0x1e, 0x4, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

405.685679ms ago: executing program 1 (id=2357):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000938500000071000000"], &(0x7f0000000200)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
request_key(&(0x7f0000000300)='logon\x00', &(0x7f0000000380)={'syz', 0x1}, &(0x7f0000000440)='wfdno', 0xfffffffffffffffc)

366.8565ms ago: executing program 1 (id=2358):
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0xa00, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000180), 0xfea7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d01080000c582b61bdd04878800080103"], 0x2c}, 0x1, 0x0, 0x0, 0x80}, 0x26004080)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r5, @ANYBLOB="ff830500000700ffffff", @ANYRES32=r2], 0x4}}, 0x0)
sendfile(r4, r3, 0x0, 0x100000002) (fail_nth: 2)

73.97214ms ago: executing program 1 (id=2359):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02008000f65c5c336334b2497a0614", @ANYRES32, @ANYBLOB='\x00'/15, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, <r1=>0xffffffffffffffff}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000a40)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYRES8=r0], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x800000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000002000000fd0f000003"], 0x48)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket(0x10, 0x3, 0x0)
unshare(0x22020600)
write(r3, &(0x7f0000000000)="3c00000058001f000307f4f9002304000a04d65f0800010002010002170003800500000099db973b91aa057972513500b0406700912deb5b85932234", 0x3c)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000400)='./file1\x00', 0x200000, &(0x7f0000000800)={[{@jqfmt_vfsv1}, {@min_batch_time={'min_batch_time', 0x3d, 0xc0}}, {@delalloc}, {@noauto_da_alloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x7c}}, {@nouid32}, {@resgid}, {@nobarrier}, {@sysvgroups}]}, 0x1, 0x573, &(0x7f0000001140)="$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")
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_BINDTODEVICE_wg(r4, 0x1, 0x19, &(0x7f0000000000)='wg0\x00', 0x4)
chdir(&(0x7f0000000080)='./file0\x00')
r5 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x10000, @value}, 0x28)
syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x862b01)
syz_open_dev$evdev(&(0x7f0000000140), 0x100000000, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b000000070000000000010009000000"], 0x50)
bpf$TOKEN_CREATE(0x24, &(0x7f00000001c0)={0x0, r5}, 0x8)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000200)={'syztnl1\x00', &(0x7f0000000dc0)={'syztnl0\x00', <r6=>0x0, 0x29, 0x2d, 0x4, 0x1, 0x30, @local, @mcast1, 0x20, 0x10, 0xf, 0x80000000}})
bpf$PROG_LOAD(0x5, &(0x7f0000000e40)={0x11, 0x0, 0x0, 0x0, 0x401, 0x2a, 0x0, 0x0, 0x0, '\x00', r6, @fallback=0x30, r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x80801c, &(0x7f0000000f40), 0x1, 0x503, &(0x7f0000000880)="$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")
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x2029c1b, 0x0, 0x1, 0x0, &(0x7f0000000080))
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mkdirat(r7, &(0x7f0000000000)='./bus/file0\x00', 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008042, &(0x7f0000000c00)={[{@norecovery}, {@bsdgroups}, {@resuid}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x7f}}, {@minixdf}, {@errors_remount}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x6}}, {@data_err_abort}]}, 0x1, 0x5d8, &(0x7f0000000600)="$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")
open(0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x9, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x40002, 0x800000000003}, 0x104a8a, 0x5dd8, 0x0, 0x0, 0x0, 0x8, 0xfffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)

73.79104ms ago: executing program 0 (id=2360):
r0 = fsopen(&(0x7f0000000400)='autofs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000240)=',-\x10*\x00', &(0x7f0000000380)='$\x00', 0x0)
fsconfig$FSCONFIG_SET_FD(r0, 0x5, &(0x7f00000005c0)='dE\x00', 0x0, r0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb70200"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
close(r0)

43.11733ms ago: executing program 0 (id=2361):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=@newsa={0x138, 0x10, 0x633, 0x0, 0x0, {{@in6=@mcast2, @in6=@dev}, {@in=@rand_addr=0x1, 0x0, 0x32}, @in6=@mcast2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, {}, {0x963}, 0x0, 0x0, 0x2, 0x1, 0x7}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}]}, 0x138}}, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0xa00, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000180), 0xfea7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)
r5 = socket$rxrpc(0x21, 0x2, 0xa)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d01080000c582b61bdd04878800080103"], 0x2c}, 0x1, 0x0, 0x0, 0x80}, 0x26004080)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r8, @ANYBLOB="ff830500000700ffffff", @ANYRES32=r5], 0x4}}, 0x0)
sendfile(r7, r6, 0x0, 0x100000002)

42.76959ms ago: executing program 0 (id=2362):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r2}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r3, 0x0, 0x200000000200}, 0x18)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$SG_IO(r5, 0x2285, &(0x7f0000000040)={0x53, 0x0, 0x6, 0x0, @buffer={0x2, 0x40002, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})

42.33746ms ago: executing program 3 (id=2363):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000180), 0xfea7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$rxrpc(0x21, 0x2, 0xa)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000000000000000000400121001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000002000083850000007100000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r5, 0x28, 0x1, &(0x7f0000000380)=0xffffffff00000041, 0x8)
bind$vsock_stream(r5, &(0x7f0000000440), 0x10)
listen(r5, 0x0)
r6 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r6, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r6, &(0x7f00000002c0)=[{&(0x7f0000000080)='?', 0x20000081}], 0x1)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r8, @ANYBLOB="ff"], 0x4}}, 0x0)
sendfile(r7, r2, 0x0, 0x100000002)

0s ago: executing program 2 (id=2364):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000180), 0xfea7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$rxrpc(0x21, 0x2, 0xa)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r4, @ANYBLOB="ff"], 0x4}}, 0x0)
sendfile(r3, r2, 0x0, 0x100000002) (fail_nth: 2)

kernel console output (not intermixed with test programs):

 enabled
[  151.202165][T10824] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  151.228088][T10824] lo speed is unknown, defaulting to 1000
[  151.234434][T10824] lo speed is unknown, defaulting to 1000
[  151.462425][T10841] loop3: detected capacity change from 0 to 8192
[  151.464242][T10843] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10843 comm=syz.0.1635
[  151.583758][T10848] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  151.628565][T10852] syz.3.1639[10852] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  151.628617][T10852] syz.3.1639[10852] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  151.640239][T10852] syz.3.1639[10852] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  151.674258][T10854] FAULT_INJECTION: forcing a failure.
[  151.674258][T10854] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  151.698935][T10854] CPU: 1 UID: 0 PID: 10854 Comm: syz.3.1640 Not tainted 6.13.0-rc1-syzkaller-00316-gb5f217084ab3 #0
[  151.709731][T10854] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  151.719813][T10854] Call Trace:
[  151.723143][T10854]  <TASK>
[  151.726094][T10854]  dump_stack_lvl+0xf2/0x150
[  151.730764][T10854]  dump_stack+0x15/0x1a
[  151.734985][T10854]  should_fail_ex+0x223/0x230
[  151.739685][T10854]  should_fail+0xb/0x10
[  151.743960][T10854]  should_fail_usercopy+0x1a/0x20
[  151.749018][T10854]  _copy_to_user+0x20/0xa0
[  151.753486][T10854]  simple_read_from_buffer+0xa0/0x110
[  151.758966][T10854]  proc_fail_nth_read+0xf9/0x140
[  151.763961][T10854]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  151.769652][T10854]  vfs_read+0x1a2/0x700
[  151.773836][T10854]  ? __rcu_read_unlock+0x4e/0x70
[  151.778901][T10854]  ? __fget_files+0x17c/0x1c0
[  151.783688][T10854]  ksys_read+0xe8/0x1b0
[  151.787897][T10854]  __x64_sys_read+0x42/0x50
[  151.792455][T10854]  x64_sys_call+0x2874/0x2dc0
[  151.797229][T10854]  do_syscall_64+0xc9/0x1c0
[  151.801758][T10854]  ? clear_bhb_loop+0x55/0xb0
[  151.806525][T10854]  ? clear_bhb_loop+0x55/0xb0
[  151.811220][T10854]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.817274][T10854] RIP: 0033:0x7fc08b5de8ec
[  151.821695][T10854] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  151.841414][T10854] RSP: 002b:00007fc089c57050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  151.850092][T10854] RAX: ffffffffffffffda RBX: 00007fc08b7a5fa0 RCX: 00007fc08b5de8ec
[  151.858185][T10854] RDX: 000000000000000f RSI: 00007fc089c570b0 RDI: 0000000000000007
[  151.866163][T10854] RBP: 00007fc089c570a0 R08: 0000000000000000 R09: 0000000000000000
[  151.874149][T10854] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  151.882132][T10854] R13: 0000000000000000 R14: 00007fc08b7a5fa0 R15: 00007ffef8068f48
[  151.890200][T10854]  </TASK>
[  151.977866][T10869] loop1: detected capacity change from 0 to 2048
[  151.993554][T10869] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1645'.
[  152.020699][T10876] loop2: detected capacity change from 0 to 512
[  152.048495][T10876] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  152.056658][T10876] System zones: 0-2, 18-18, 34-34
[  152.062622][T10876] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1644: bg 0: block 248: padding at end of block bitmap is not set
[  152.081747][T10875] loop3: detected capacity change from 0 to 8192
[  152.087938][T10876] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.1644: Failed to acquire dquot type 1
[  152.115415][T10876] EXT4-fs (loop2): 1 truncate cleaned up
[  152.131030][T10876] ext4 filesystem being mounted at /340/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  152.152990][T10876] EXT4-fs error (device loop2): ext4_lookup:1817: inode #2: comm syz.2.1644: deleted inode referenced: 12
[  152.165457][T10876] EXT4-fs error (device loop2): ext4_lookup:1817: inode #2: comm syz.2.1644: deleted inode referenced: 12
[  152.188917][T10887] loop5: detected capacity change from 0 to 1024
[  152.201001][T10882] lo speed is unknown, defaulting to 1000
[  152.206802][T10887] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  152.207285][T10882] lo speed is unknown, defaulting to 1000
[  152.216691][T10887] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  152.240544][T10887] EXT4-fs (loop5): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  152.256958][T10887] EXT4-fs error (device loop5): ext4_get_journal_inode:5809: inode #5: comm syz.5.1651: unexpected bad inode w/o EXT4_IGET_BAD
[  152.267322][T10890] loop3: detected capacity change from 0 to 128
[  152.276071][T10887] EXT4-fs (loop5): no journal found
[  152.281083][T10890] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  152.281668][T10887] EXT4-fs (loop5): can't get journal size
[  152.444337][T10890] cgroup: Bad value for 'name'
[  152.469350][T10898] lo speed is unknown, defaulting to 1000
[  152.476902][T10898] lo speed is unknown, defaulting to 1000
[  152.482889][T10898] lo speed is unknown, defaulting to 1000
[  152.488869][T10900] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1656'.
[  152.577390][T10910] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1655'.
[  152.579141][T10907] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1659'.
[  152.595702][T10903] lo speed is unknown, defaulting to 1000
[  152.604683][T10903] lo speed is unknown, defaulting to 1000
[  152.621419][T10912] loop3: detected capacity change from 0 to 2048
[  152.624171][T10898] infiniband s
z1: set active
[  152.628527][T10912] EXT4-fs: Invalid want_extra_isize 0
[  152.632618][T10898] infiniband s
z1: added lo
[  152.646463][ T3364] lo speed is unknown, defaulting to 1000
[  152.729102][T10898] RDS/IB: s
z1: added
[  152.733584][T10898] smc: adding ib device s
z1 with port count 1
[  152.744739][T10898] smc:    ib device s
z1 port 1 has pnetid 
[  152.750791][   T35] lo speed is unknown, defaulting to 1000
[  152.757063][T10898] lo speed is unknown, defaulting to 1000
[  152.793102][T10898] lo speed is unknown, defaulting to 1000
[  153.019820][T10898] lo speed is unknown, defaulting to 1000
[  153.124597][T10898] lo speed is unknown, defaulting to 1000
[  153.225578][T10898] lo speed is unknown, defaulting to 1000
[  153.307997][T10898] lo speed is unknown, defaulting to 1000
[  153.507102][T10932] netlink: 332 bytes leftover after parsing attributes in process `syz.3.1667'.
[  153.518971][T10930] loop1: detected capacity change from 0 to 1764
[  153.596379][T10938] loop3: detected capacity change from 0 to 1024
[  153.608155][T10938] EXT4-fs: Ignoring removed nobh option
[  153.613794][T10938] EXT4-fs: Ignoring removed nomblk_io_submit option
[  153.630073][T10940] loop5: detected capacity change from 0 to 512
[  153.634988][T10938] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  153.650048][T10930] netlink: 'Ù"bjxÍZ
[  153.650048][T10930] ': attribute type 10 has an invalid length.
[  153.693214][T10940] ext4 filesystem being mounted at /283/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  153.709080][T10938] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  153.750259][T10940] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  153.757554][T10940] IPv6: NLM_F_CREATE should be set when creating new route
[  153.764779][T10940] IPv6: NLM_F_CREATE should be set when creating new route
[  153.778396][T10938] lo speed is unknown, defaulting to 1000
[  153.785858][T10938] lo speed is unknown, defaulting to 1000
[  153.790003][T10940] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  153.806653][T10938] lo speed is unknown, defaulting to 1000
[  153.816032][T10951] __nla_validate_parse: 2 callbacks suppressed
[  153.816128][T10951] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1672'.
[  153.921446][T10940] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1670'.
[  153.965390][T10940] team0 (unregistering): Port device team_slave_0 removed
[  153.979424][T10940] team0 (unregistering): Port device team_slave_1 removed
[  154.129686][T10940] Process accounting resumed
[  154.144165][T10983] loop2: detected capacity change from 0 to 512
[  154.162487][T10980] loop3: detected capacity change from 0 to 2048
[  154.189540][T10985] loop1: detected capacity change from 0 to 512
[  154.191769][T10983] ext4 filesystem being mounted at /343/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  154.192829][T10983] EXT4-fs error (device loop2): ext4_readdir:261: inode #2: block 3: comm syz.2.1677: path /343/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=514, rec_len=0, size=2048 fake=0
[  154.242594][T10983] EXT4-fs (loop2): Remounting filesystem read-only
[  154.356252][T10985] ext4 filesystem being mounted at /316/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  154.395539][T11009] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1681'.
[  154.761074][T11033] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1686'.
[  154.810366][T11040] loop1: detected capacity change from 0 to 2048
[  154.819576][T11040] EXT4-fs: Invalid want_extra_isize 0
[  154.865473][T11043] syz.3.1692[11043] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  155.011213][T11054] loop3: detected capacity change from 0 to 128
[  155.156625][   T29] kauditd_printk_skb: 515 callbacks suppressed
[  155.156643][   T29] audit: type=1400 audit(1733580773.030:8813): avc:  denied  { read } for  pid=11039 comm="syz.1.1690" dev="nsfs" ino=4026532372 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  155.184136][   T29] audit: type=1400 audit(1733580773.030:8814): avc:  denied  { open } for  pid=11039 comm="syz.1.1690" path="pid:[4026532372]" dev="nsfs" ino=4026532372 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  155.207511][   T29] audit: type=1400 audit(1733580773.040:8815): avc:  denied  { ioctl } for  pid=11039 comm="syz.1.1690" path="pid:[4026532372]" dev="nsfs" ino=4026532372 ioctlcmd=0x941c scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  155.247864][T11054] ext4 filesystem being mounted at /328/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  155.403610][   T29] audit: type=1400 audit(1733580773.340:8816): avc:  denied  { write open } for  pid=11053 comm="syz.3.1695" path="/328/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop3" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  155.472551][   T29] audit: type=1326 audit(1733580773.410:8817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11063 comm="syz.0.1699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6feae5fed9 code=0x7ffc0000
[  155.496260][   T29] audit: type=1326 audit(1733580773.410:8818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11063 comm="syz.0.1699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6feae5fed9 code=0x7ffc0000
[  155.519877][   T29] audit: type=1326 audit(1733580773.410:8819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11063 comm="syz.0.1699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f6feae5fed9 code=0x7ffc0000
[  155.543546][   T29] audit: type=1326 audit(1733580773.410:8820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11063 comm="syz.0.1699" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6feae5fed9 code=0x0
[  155.596671][   T29] audit: type=1400 audit(1733580773.470:8821): avc:  denied  { link } for  pid=11053 comm="syz.3.1695" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop3" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  155.646422][T11074] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1703'.
[  155.662540][T11077] loop5: detected capacity change from 0 to 512
[  155.716133][T11079] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  155.756134][T11077] ext4 filesystem being mounted at /288/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  155.787390][   T29] audit: type=1400 audit(1733580773.720:8822): avc:  denied  { open } for  pid=11086 comm="syz.0.1707" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  155.817059][T11077] EXT4-fs error (device loop5): ext4_readdir:261: inode #2: block 3: comm syz.5.1704: path /288/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=514, rec_len=0, size=2048 fake=0
[  155.851137][T11082] loop1: detected capacity change from 0 to 8192
[  155.885461][T11077] EXT4-fs (loop5): Remounting filesystem read-only
[  155.933028][T11094] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1708'.
[  156.072762][T11089] loop2: detected capacity change from 0 to 8192
[  156.079422][T11109] loop1: detected capacity change from 0 to 2048
[  156.111813][T11109] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1711'.
[  156.159058][T11089]  loop2: p2 p3 p4
[  156.162938][T11089] loop2: p2 start 14935 is beyond EOD, truncated
[  156.169416][T11089] loop2: p3 size 196608 extends beyond EOD, truncated
[  156.207664][T11089] loop2: p4 start 4026530307 is beyond EOD, truncated
[  156.374569][T11117] random: crng reseeded on system resumption
[  156.479010][T11120] loop3: detected capacity change from 0 to 1024
[  156.508407][T11120] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  156.518272][T11120] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  156.537353][T11120] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  156.553693][T11120] EXT4-fs error (device loop3): ext4_get_journal_inode:5809: inode #5: comm syz.3.1714: unexpected bad inode w/o EXT4_IGET_BAD
[  156.573779][T11120] EXT4-fs (loop3): no journal found
[  156.579056][T11120] EXT4-fs (loop3): can't get journal size
[  156.632500][T11123] bpf_get_probe_write_proto: 2 callbacks suppressed
[  156.632517][T11123] syz.2.1715[11123] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  156.665958][T11123] syz.2.1715[11123] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  156.676286][T11127] loop3: detected capacity change from 0 to 2048
[  156.686120][T11123] syz.2.1715[11123] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  156.696518][T11129] syz.0.1718[11129] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  156.716752][T11129] syz.0.1718[11129] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  156.735821][T11129] syz.0.1718[11129] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  156.757997][T11129] random: crng reseeded on system resumption
[  156.779232][T11138] syz.2.1721[11138] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  156.779341][T11138] syz.2.1721[11138] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  156.791244][T11138] syz.2.1721[11138] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  156.804456][T11138] FAULT_INJECTION: forcing a failure.
[  156.804456][T11138] name failslab, interval 1, probability 0, space 0, times 0
[  156.828620][T11138] CPU: 1 UID: 0 PID: 11138 Comm: syz.2.1721 Not tainted 6.13.0-rc1-syzkaller-00316-gb5f217084ab3 #0
[  156.839522][T11138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  156.849951][T11138] Call Trace:
[  156.853288][T11138]  <TASK>
[  156.856320][T11138]  dump_stack_lvl+0xf2/0x150
[  156.861030][T11138]  dump_stack+0x15/0x1a
[  156.865304][T11138]  should_fail_ex+0x223/0x230
[  156.870070][T11138]  should_failslab+0x8f/0xb0
[  156.874772][T11138]  kmem_cache_alloc_noprof+0x52/0x320
[  156.880347][T11138]  ? getname_flags+0x81/0x3b0
[  156.885095][T11138]  getname_flags+0x81/0x3b0
[  156.889620][T11138]  getname+0x17/0x20
[  156.893527][T11138]  do_sys_openat2+0x67/0x120
[  156.898270][T11138]  __x64_sys_openat+0xf3/0x120
[  156.903087][T11138]  x64_sys_call+0x2b30/0x2dc0
[  156.907775][T11138]  do_syscall_64+0xc9/0x1c0
[  156.912284][T11138]  ? clear_bhb_loop+0x55/0xb0
[  156.917007][T11138]  ? clear_bhb_loop+0x55/0xb0
[  156.921756][T11138]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.927688][T11138] RIP: 0033:0x7ff6ae71fed9
[  156.932111][T11138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  156.951928][T11138] RSP: 002b:00007ff6acd97058 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  156.960357][T11138] RAX: ffffffffffffffda RBX: 00007ff6ae8e5fa0 RCX: 00007ff6ae71fed9
[  156.968387][T11138] RDX: 0000000000044503 RSI: 0000000020000000 RDI: ffffffffffffff9c
[  156.976390][T11138] RBP: 00007ff6acd970a0 R08: 0000000000000000 R09: 0000000000000000
[  156.984384][T11138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  156.992382][T11138] R13: 0000000000000000 R14: 00007ff6ae8e5fa0 R15: 00007ffde730d138
[  157.000455][T11138]  </TASK>
[  157.022757][T11141] loop3: detected capacity change from 0 to 512
[  157.042461][T11143] loop5: detected capacity change from 0 to 1024
[  157.047712][T11141] EXT4-fs (loop3): too many log groups per flexible block group
[  157.050006][T11143] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  157.056485][T11141] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  157.066233][T11143] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  157.066277][T11143] EXT4-fs (loop5): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  157.078803][T11141] EXT4-fs (loop3): mount failed
[  157.084997][T11143] EXT4-fs error (device loop5): ext4_get_journal_inode:5809: inode #5: comm syz.5.1723: unexpected bad inode w/o EXT4_IGET_BAD
[  157.111028][T11143] EXT4-fs (loop5): no journal found
[  157.116251][T11143] EXT4-fs (loop5): can't get journal size
[  157.164821][T11153] loop3: detected capacity change from 0 to 512
[  157.188243][T11153] ext4 filesystem being mounted at /334/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  157.199707][T11157] loop1: detected capacity change from 0 to 512
[  157.200839][T11153] EXT4-fs error (device loop3): ext4_readdir:261: inode #2: block 3: comm syz.3.1725: path /334/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=514, rec_len=0, size=2048 fake=0
[  157.228699][T11153] EXT4-fs (loop3): Remounting filesystem read-only
[  157.248012][T11157] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  157.256736][T11157] System zones: 0-2, 18-18, 34-34
[  157.262935][T11157] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1724: bg 0: block 248: padding at end of block bitmap is not set
[  157.278100][T11157] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.1724: Failed to acquire dquot type 1
[  157.294064][T11157] EXT4-fs (loop1): 1 truncate cleaned up
[  157.302719][T11157] ext4 filesystem being mounted at /324/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  157.319367][T11157] EXT4-fs error (device loop1): ext4_lookup:1817: inode #2: comm syz.1.1724: deleted inode referenced: 12
[  157.331348][T11157] EXT4-fs error (device loop1): ext4_lookup:1817: inode #2: comm syz.1.1724: deleted inode referenced: 12
[  157.637781][T11169] netlink: 16 bytes leftover after parsing attributes in process `+}[@'.
[  157.786636][T11180] loop5: detected capacity change from 0 to 512
[  157.828298][T11180] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  157.836342][T11180] System zones: 0-2, 18-18, 34-34
[  157.852370][T11180] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1728: bg 0: block 248: padding at end of block bitmap is not set
[  157.886949][T11180] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.1728: Failed to acquire dquot type 1
[  157.901716][T11180] EXT4-fs (loop5): 1 truncate cleaned up
[  157.908197][T11180] EXT4-fs mount: 129 callbacks suppressed
[  157.908214][T11180] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  157.926677][T11180] ext4 filesystem being mounted at /293/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  157.940004][T11180] EXT4-fs error (device loop5): ext4_lookup:1817: inode #2: comm syz.5.1728: deleted inode referenced: 12
[  157.951881][T11180] EXT4-fs error (device loop5): ext4_lookup:1817: inode #2: comm syz.5.1728: deleted inode referenced: 12
[  157.985129][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.037885][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.051616][T11184] loop1: detected capacity change from 0 to 1024
[  158.061947][T11184] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  158.071776][T11184] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  158.086474][T11184] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  158.097906][T11184] EXT4-fs error (device loop1): ext4_get_journal_inode:5809: inode #5: comm syz.1.1729: unexpected bad inode w/o EXT4_IGET_BAD
[  158.098466][T11186] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11186 comm=syz.3.1730
[  158.124575][T11184] EXT4-fs (loop1): no journal found
[  158.129831][T11184] EXT4-fs (loop1): can't get journal size
[  158.136784][T11184] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  158.169883][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.252439][T11192] lo speed is unknown, defaulting to 1000
[  158.262771][T11192] lo speed is unknown, defaulting to 1000
[  158.271404][T11192] lo speed is unknown, defaulting to 1000
[  158.410746][T11205] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1736'.
[  158.428302][T11207] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11207 comm=syz.2.1737
[  158.503735][T11207] loop2: detected capacity change from 0 to 1024
[  158.528710][T11207] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  158.596008][T11222] loop1: detected capacity change from 0 to 1024
[  158.603812][T11222] EXT4-fs: Ignoring removed i_version option
[  158.609898][T11222] EXT4-fs: Ignoring removed nomblk_io_submit option
[  158.620973][T11222] ext4: Unknown parameter 'fsmagic'
[  158.641185][ T4900] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.814257][T11229] loop3: detected capacity change from 0 to 8192
[  158.900133][T11229]  loop3: p2 p3 p4
[  158.904141][T11229] loop3: p2 start 14935 is beyond EOD, truncated
[  158.910570][T11229] loop3: p3 size 196608 extends beyond EOD, truncated
[  158.927054][T11229] loop3: p4 start 4026530307 is beyond EOD, truncated
[  159.269941][ T3296] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.483220][T11247] loop5: detected capacity change from 0 to 2048
[  159.499324][T11249] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11249 comm=syz.3.1749
[  159.564721][T11250] netlink: 16 bytes leftover after parsing attributes in process `+}[@'.
[  159.604648][T11249] loop3: detected capacity change from 0 to 1024
[  159.612706][T11247] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  159.688251][T11249] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  159.722771][ T4900] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.782602][T11263] loop5: detected capacity change from 0 to 512
[  159.808615][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.839731][T11263] EXT4-fs (loop5): too many log groups per flexible block group
[  159.847480][T11263] EXT4-fs (loop5): failed to initialize mballoc (-12)
[  159.861893][T11263] EXT4-fs (loop5): mount failed
[  159.925979][T11274] loop5: detected capacity change from 0 to 512
[  159.953240][T11275] loop3: detected capacity change from 0 to 512
[  159.973820][T11273] lo speed is unknown, defaulting to 1000
[  159.990343][T11273] lo speed is unknown, defaulting to 1000
[  159.996649][T11273] lo speed is unknown, defaulting to 1000
[  159.998338][T11274] EXT4-fs (loop5): too many log groups per flexible block group
[  160.010794][T11274] EXT4-fs (loop5): failed to initialize mballoc (-12)
[  160.020915][T11275] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  160.029150][T11275] System zones: 0-2, 18-18, 34-34
[  160.040887][T11275] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1752: bg 0: block 248: padding at end of block bitmap is not set
[  160.055450][T11274] EXT4-fs (loop5): mount failed
[  160.061038][T11275] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.1752: Failed to acquire dquot type 1
[  160.095569][T11275] EXT4-fs (loop3): 1 truncate cleaned up
[  160.109497][T11275] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.129237][T11275] ext4 filesystem being mounted at /339/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  160.143941][T11275] EXT4-fs error (device loop3): ext4_lookup:1817: inode #2: comm syz.3.1752: deleted inode referenced: 12
[  160.169665][T11284] rdma_rxe: rxe_newlink: failed to add lo
[  160.176891][T11275] EXT4-fs error (device loop3): ext4_lookup:1817: inode #2: comm syz.3.1752: deleted inode referenced: 12
[  160.314612][T11292] rdma_rxe: rxe_newlink: failed to add lo
[  160.485645][T11303] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11303 comm=syz.1.1764
[  160.495806][T11304] loop2: detected capacity change from 0 to 1024
[  160.611430][T11305] loop5: detected capacity change from 0 to 8192
[  160.622640][T11304] EXT4-fs: Ignoring removed nobh option
[  160.628277][T11304] EXT4-fs: Ignoring removed nomblk_io_submit option
[  160.636312][T11304] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  160.647090][T11305]  loop5: p2 p3 p4
[  160.651027][T11305] loop5: p2 start 14935 is beyond EOD, truncated
[  160.657445][T11305] loop5: p3 size 196608 extends beyond EOD, truncated
[  160.667617][T11305] loop5: p4 start 4026530307 is beyond EOD, truncated
[  160.694754][ T2998]  loop5: p2 p3 p4
[  160.715772][ T2998] loop5: p2 start 14935 is beyond EOD, truncated
[  160.722225][ T2998] loop5: p3 size 196608 extends beyond EOD, truncated
[  160.756811][T11304] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.791330][ T2998] loop5: p4 start 4026530307 is beyond EOD, truncated
[  160.846349][T11304] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  160.866636][   T29] kauditd_printk_skb: 157 callbacks suppressed
[  160.866653][   T29] audit: type=1400 audit(1733580778.780:8974): avc:  denied  { remount } for  pid=11302 comm="syz.2.1763" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  160.932237][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.975058][T11304] lo speed is unknown, defaulting to 1000
[  160.990020][T11304] lo speed is unknown, defaulting to 1000
[  161.002470][T11304] lo speed is unknown, defaulting to 1000
[  161.042719][T11310] loop3: detected capacity change from 0 to 8192
[  161.090541][T11316] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11316 comm=syz.0.1767
[  161.171628][ T3296] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.260077][T11324] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1771'.
[  161.320362][   T29] audit: type=1400 audit(1733580779.260:8975): avc:  denied  { read write } for  pid=3300 comm="syz-executor" name="loop1" dev="devtmpfs" ino=101 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  161.322168][T11327] lo speed is unknown, defaulting to 1000
[  161.377111][T11332] loop3: detected capacity change from 0 to 1024
[  161.384657][T11332] EXT4-fs: Ignoring removed oldalloc option
[  161.391092][T11327] lo speed is unknown, defaulting to 1000
[  161.397683][T11327] lo speed is unknown, defaulting to 1000
[  161.404936][   T29] audit: type=1400 audit(1733580779.290:8976): avc:  denied  { open } for  pid=3300 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=101 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  161.429299][   T29] audit: type=1400 audit(1733580779.290:8977): avc:  denied  { ioctl } for  pid=3300 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=101 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  161.455046][   T29] audit: type=1400 audit(1733580779.290:8978): avc:  denied  { append } for  pid=2980 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=9 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  161.477982][   T29] audit: type=1400 audit(1733580779.300:8979): avc:  denied  { create } for  pid=11325 comm="syz.0.1772" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  161.491338][T11332] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  161.499344][   T29] audit: type=1400 audit(1733580779.300:8980): avc:  denied  { map } for  pid=11325 comm="syz.0.1772" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=21186 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  161.533519][   T29] audit: type=1400 audit(1733580779.300:8981): avc:  denied  { read write } for  pid=11325 comm="syz.0.1772" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=21186 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  161.535082][T11335] loop5: detected capacity change from 0 to 8192
[  161.558551][   T29] audit: type=1400 audit(1733580779.310:8982): avc:  denied  { prog_load } for  pid=11325 comm="syz.0.1772" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  161.584116][   T29] audit: type=1400 audit(1733580779.310:8983): avc:  denied  { prog_load } for  pid=11330 comm="syz.1.1774" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  161.634626][T11332] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  161.686714][T11332] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1773'.
[  161.726294][T11346] loop1: detected capacity change from 0 to 1024
[  161.736717][T11346] EXT4-fs: Ignoring removed nobh option
[  161.740121][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.742297][T11346] EXT4-fs: Ignoring removed nomblk_io_submit option
[  161.748445][T11346] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  161.763139][T11348] loop5: detected capacity change from 0 to 2048
[  161.777264][T11346] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.781811][T11348] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  161.802437][T11346] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  161.838515][T11346] lo speed is unknown, defaulting to 1000
[  161.844600][T11346] lo speed is unknown, defaulting to 1000
[  161.845361][ T4900] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.854607][T11346] lo speed is unknown, defaulting to 1000
[  161.912833][T11365] loop3: detected capacity change from 0 to 512
[  161.935480][T11364] xt_nfacct: accounting object `sy' does not exists
[  161.968645][T11365] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  161.981032][T11365] System zones: 0-2, 18-18, 34-34
[  162.015275][T11375] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11375 comm=syz.5.1780
[  162.035615][T11365] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1779: bg 0: block 248: padding at end of block bitmap is not set
[  162.051523][T11365] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.1779: Failed to acquire dquot type 1
[  162.063607][T11365] EXT4-fs (loop3): 1 truncate cleaned up
[  162.073630][T11365] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  162.092576][T11382] loop5: detected capacity change from 0 to 1024
[  162.096260][T11365] ext4 filesystem being mounted at /342/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  162.115424][T11378] netlink: 16 bytes leftover after parsing attributes in process `+}[@'.
[  162.138399][T11382] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  162.151021][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.157865][T11385] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1785'.
[  162.169753][T11365] EXT4-fs error (device loop3): ext4_lookup:1817: inode #2: comm syz.3.1779: deleted inode referenced: 12
[  162.183229][T11365] EXT4-fs error (device loop3): ext4_lookup:1817: inode #2: comm syz.3.1779: deleted inode referenced: 12
[  162.559926][T11416] lo speed is unknown, defaulting to 1000
[  162.565954][T11416] lo speed is unknown, defaulting to 1000
[  162.572913][T11416] lo speed is unknown, defaulting to 1000
[  162.671406][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.718203][T11421] loop3: detected capacity change from 0 to 1024
[  162.725012][T11421] EXT4-fs: Ignoring removed nobh option
[  162.730650][T11421] EXT4-fs: Ignoring removed nomblk_io_submit option
[  162.738022][T11421] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  162.759515][T11421] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  162.775063][T11421] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  162.809007][T11421] lo speed is unknown, defaulting to 1000
[  162.812637][T11424] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1797'.
[  162.839569][T11421] lo speed is unknown, defaulting to 1000
[  162.847726][T11421] lo speed is unknown, defaulting to 1000
[  162.911564][ T4900] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.932363][T11432] loop2: detected capacity change from 0 to 512
[  162.949506][T11436] rdma_rxe: rxe_newlink: failed to add lo
[  163.004873][T11444] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  163.023776][T11432] EXT4-fs (loop2): too many log groups per flexible block group
[  163.031572][T11432] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  163.048080][T11432] EXT4-fs (loop2): mount failed
[  163.095784][T11451] loop5: detected capacity change from 0 to 1024
[  163.105807][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.121468][T11451] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  163.131346][T11451] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  163.141130][T11457] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1810'.
[  163.141584][T11451] EXT4-fs (loop5): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  163.175080][T11451] EXT4-fs error (device loop5): ext4_get_journal_inode:5809: inode #5: comm syz.5.1809: unexpected bad inode w/o EXT4_IGET_BAD
[  163.191505][T11451] EXT4-fs (loop5): no journal found
[  163.196777][T11451] EXT4-fs (loop5): can't get journal size
[  163.218329][T11451] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  163.231303][T11467] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11467 comm=syz.1.1812
[  163.286080][T11469] loop3: detected capacity change from 0 to 512
[  163.300740][T11473] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11473 comm=syz.2.1816
[  163.314735][T11469] EXT4-fs (loop3): too many log groups per flexible block group
[  163.322476][T11469] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  163.324106][T11476] loop1: detected capacity change from 0 to 1024
[  163.332798][T11469] EXT4-fs (loop3): mount failed
[  163.351943][T11476] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  163.373340][T11480] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11480 comm=syz.3.1817
[  163.391981][T11473] loop2: detected capacity change from 0 to 1024
[  163.408832][T11473] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  163.464623][T11486] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  163.496383][T11488] loop3: detected capacity change from 0 to 1024
[  163.503171][T11488] EXT4-fs: Ignoring removed nobh option
[  163.508814][T11488] EXT4-fs: Ignoring removed nomblk_io_submit option
[  163.515715][T11488] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  163.526713][T11156] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 233: padding at end of block bitmap is not set
[  163.543181][T11488] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.557101][T11488] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  163.580432][T11488] lo speed is unknown, defaulting to 1000
[  163.586527][T11488] lo speed is unknown, defaulting to 1000
[  163.592750][T11488] lo speed is unknown, defaulting to 1000
[  163.665396][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.719236][T11495] loop3: detected capacity change from 0 to 2048
[  163.726008][T11495] EXT4-fs: Invalid want_extra_isize 0
[  163.804134][ T4900] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.931989][T11501] loop3: detected capacity change from 0 to 256
[  164.166069][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.209830][ T3296] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.270258][T11507] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11507 comm=syz.5.1828
[  164.276923][T11509] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  164.314048][T11512] loop2: detected capacity change from 0 to 512
[  164.326884][T11513] loop1: detected capacity change from 0 to 2048
[  164.352918][T11512] EXT4-fs (loop2): too many log groups per flexible block group
[  164.360695][T11512] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  164.368002][T11512] EXT4-fs (loop2): mount failed
[  164.375965][T11516] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  164.386061][T11513] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  164.404398][T11522] loop5: detected capacity change from 0 to 2048
[  164.411306][T11522] EXT4-fs: Invalid want_extra_isize 0
[  164.491708][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.667394][T11532] loop5: detected capacity change from 0 to 256
[  164.762815][T11538] loop2: detected capacity change from 0 to 1024
[  164.803703][T11538] EXT4-fs: Ignoring removed oldalloc option
[  164.815855][T11534] lo speed is unknown, defaulting to 1000
[  164.859819][T11538] EXT4-fs (loop2): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  164.882482][T11534] lo speed is unknown, defaulting to 1000
[  164.913693][T11540] loop1: detected capacity change from 0 to 2048
[  164.926369][T11534] lo speed is unknown, defaulting to 1000
[  164.960631][T11538] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  165.052261][T11540] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  165.055919][T11538] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1838'.
[  165.078869][T11546] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11546 comm=syz.0.1840
[  165.093168][T11540] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1839'.
[  165.114760][ T3296] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.124830][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.139499][T11549] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1843'.
[  165.191345][T11551] loop2: detected capacity change from 0 to 512
[  165.229831][T11559] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1845'.
[  165.240477][T11551] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.276896][T11551] ext4 filesystem being mounted at /366/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  165.289656][T11553] siw: device registration error -23
[  165.336780][T11551] EXT4-fs error (device loop2): ext4_readdir:261: inode #2: block 3: comm syz.2.1841: path /366/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=514, rec_len=0, size=2048 fake=0
[  165.380719][T11564] loop5: detected capacity change from 0 to 2048
[  165.390029][T11551] EXT4-fs (loop2): Remounting filesystem read-only
[  165.397306][T11572] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11572 comm=syz.0.1848
[  165.418363][T11564] EXT4-fs: Invalid want_extra_isize 0
[  165.651649][T11582] loop5: detected capacity change from 0 to 256
[  165.972583][   T29] kauditd_printk_skb: 230 callbacks suppressed
[  165.972602][   T29] audit: type=1400 audit(1733580783.910:9212): avc:  denied  { create } for  pid=11591 comm="syz.3.1855" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  166.021151][   T29] audit: type=1400 audit(1733580783.960:9213): avc:  denied  { open } for  pid=11593 comm="syz.0.1856" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  166.025029][T11592] loop3: detected capacity change from 0 to 2048
[  166.040819][   T29] audit: type=1400 audit(1733580783.960:9214): avc:  denied  { kernel } for  pid=11593 comm="syz.0.1856" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  166.086738][   T29] audit: type=1400 audit(1733580784.000:9215): avc:  denied  { read } for  pid=2980 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[  166.109223][   T29] audit: type=1400 audit(1733580784.000:9216): avc:  denied  { search } for  pid=2980 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  166.130979][   T29] audit: type=1400 audit(1733580784.000:9217): avc:  denied  { open } for  pid=2980 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=9 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  166.145065][T11603] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1859'.
[  166.154042][   T29] audit: type=1400 audit(1733580784.000:9218): avc:  denied  { getattr } for  pid=2980 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=9 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  166.154078][   T29] audit: type=1400 audit(1733580784.010:9219): avc:  denied  { write } for  pid=11593 comm="syz.0.1856" name="virtual_nci" dev="devtmpfs" ino=132 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  166.219015][T11592] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  166.246048][   T29] audit: type=1400 audit(1733580784.060:9220): avc:  denied  { unmount } for  pid=3296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  166.263069][T11592] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1855'.
[  166.265763][   T29] audit: type=1400 audit(1733580784.130:9221): avc:  denied  { read } for  pid=11593 comm="syz.0.1856" dev="nsfs" ino=4026532685 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  166.278772][ T3296] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.328275][T11611] lo speed is unknown, defaulting to 1000
[  166.334532][T11611] lo speed is unknown, defaulting to 1000
[  166.340763][T11611] lo speed is unknown, defaulting to 1000
[  166.348693][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.426523][T11625] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11625 comm=syz.3.1862
[  166.503705][T11625] loop3: detected capacity change from 0 to 1024
[  166.521189][T11625] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  166.547396][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.559586][T11649] netlink: 16 bytes leftover after parsing attributes in process `+}[@'.
[  166.695330][T11672] loop5: detected capacity change from 0 to 1024
[  166.721517][T11672] EXT4-fs: Ignoring removed oldalloc option
[  166.746011][T11672] EXT4-fs (loop5): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  166.787472][T11672] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  166.821923][T11672] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1870'.
[  166.832561][T11672] netlink: 56 bytes leftover after parsing attributes in process `syz.5.1870'.
[  166.864068][ T4900] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.000385][T11702] loop3: detected capacity change from 0 to 512
[  167.060957][T11710] veth0_to_team: entered promiscuous mode
[  167.061135][T11702] EXT4-fs (loop3): too many log groups per flexible block group
[  167.066734][T11710] veth0_to_team: entered allmulticast mode
[  167.080400][T11702] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  167.088755][T11712] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11712 comm=syz.0.1876
[  167.251700][T11702] EXT4-fs (loop3): mount failed
[  167.476310][T11766] lo speed is unknown, defaulting to 1000
[  167.504832][T11766] lo speed is unknown, defaulting to 1000
[  167.511250][T11766] lo speed is unknown, defaulting to 1000
[  167.589589][T11785] loop2: detected capacity change from 0 to 1024
[  167.597673][T11785] EXT4-fs: Ignoring removed oldalloc option
[  167.609835][T11785] EXT4-fs (loop2): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  167.755421][T11793] loop3: detected capacity change from 0 to 8192
[  167.818102][T11793]  loop3: p2 p3 p4
[  167.821974][T11793] loop3: p2 start 14935 is beyond EOD, truncated
[  167.828341][T11793] loop3: p3 size 196608 extends beyond EOD, truncated
[  167.837539][T11793] loop3: p4 start 4026530307 is beyond EOD, truncated
[  167.872507][ T2998]  loop3: p2 p3 p4
[  167.883716][T11785] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  167.905561][ T2998] loop3: p2 start 14935 is beyond EOD, truncated
[  167.911977][ T2998] loop3: p3 size 196608 extends beyond EOD, truncated
[  168.007348][T11785] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1883'.
[  168.017525][ T2998] loop3: p4 start 4026530307 is beyond EOD, truncated
[  168.051611][ T3296] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.249598][T11852] loop2: detected capacity change from 0 to 512
[  168.289274][T11854] loop1: detected capacity change from 0 to 2048
[  168.300455][T11852] EXT4-fs (loop2): too many log groups per flexible block group
[  168.308202][T11852] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  168.380551][T11854] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  168.402493][T11852] EXT4-fs (loop2): mount failed
[  168.481263][T11870] syz_tun: entered promiscuous mode
[  168.532389][T11879] loop2: detected capacity change from 0 to 2048
[  168.544737][T11870] syz_tun: left promiscuous mode
[  168.572240][T11884] loop5: detected capacity change from 0 to 512
[  168.585067][T11879] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  168.640362][T11884] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  168.646573][ T3296] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.648770][T11884] System zones: 0-2, 18-18, 34-34
[  168.660107][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.675968][T11884] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1889: bg 0: block 248: padding at end of block bitmap is not set
[  168.692934][T11884] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.1889: Failed to acquire dquot type 1
[  168.705463][T11884] EXT4-fs (loop5): 1 truncate cleaned up
[  168.726044][T11884] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  168.736718][T11911] loop1: detected capacity change from 0 to 1024
[  168.746154][T11884] ext4 filesystem being mounted at /325/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  168.750656][T11911] EXT4-fs: Ignoring removed nobh option
[  168.762326][T11911] EXT4-fs: Ignoring removed nomblk_io_submit option
[  168.770172][T11884] EXT4-fs error (device loop5): ext4_lookup:1817: inode #2: comm syz.5.1889: deleted inode referenced: 12
[  168.787044][T11884] EXT4-fs error (device loop5): ext4_lookup:1817: inode #2: comm syz.5.1889: deleted inode referenced: 12
[  168.787842][T11913] loop2: detected capacity change from 0 to 1024
[  168.817828][T11911] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  168.827077][T11913] EXT4-fs: Ignoring removed oldalloc option
[  168.839396][T11911] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  168.860105][T11913] EXT4-fs (loop2): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  168.870228][T11911] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  168.898866][T11911] lo speed is unknown, defaulting to 1000
[  168.905446][T11911] lo speed is unknown, defaulting to 1000
[  168.911563][T11911] lo speed is unknown, defaulting to 1000
[  168.923450][T11913] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  168.996215][ T3296] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.193643][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.325192][T11976] loop2: detected capacity change from 0 to 8192
[  169.490777][T11976]  loop2: p2 p3 p4
[  169.494763][T11976] loop2: p2 start 14935 is beyond EOD, truncated
[  169.501223][T11976] loop2: p3 size 196608 extends beyond EOD, truncated
[  169.509044][T11976] loop2: p4 start 4026530307 is beyond EOD, truncated
[  169.614892][ T2998]  loop2: p2 p3 p4
[  169.621335][ T4900] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.660856][ T2998] loop2: p2 start 14935 is beyond EOD, truncated
[  169.661050][T11965] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  169.667350][ T2998] loop2: p3 size 196608 extends beyond EOD, truncated
[  169.711144][ T2998] loop2: p4 start 4026530307 is beyond EOD, truncated
[  169.778524][T12014] loop3: detected capacity change from 0 to 1024
[  169.787208][T12014] EXT4-fs: Ignoring removed oldalloc option
[  169.813178][T12014] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  169.839337][T12014] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  169.931666][T12030] lo speed is unknown, defaulting to 1000
[  169.937912][T12030] lo speed is unknown, defaulting to 1000
[  169.944289][T12030] lo speed is unknown, defaulting to 1000
[  169.970627][T12028] lo speed is unknown, defaulting to 1000
[  169.973456][T12032] loop2: detected capacity change from 0 to 1024
[  169.983472][T12032] EXT4-fs: Ignoring removed nobh option
[  169.989106][T12032] EXT4-fs: Ignoring removed nomblk_io_submit option
[  169.991467][T12028] lo speed is unknown, defaulting to 1000
[  170.002929][T12032] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  170.013263][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.025256][T12032] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  170.060843][T12028] lo speed is unknown, defaulting to 1000
[  170.071154][T12032] lo speed is unknown, defaulting to 1000
[  170.077749][T12032] lo speed is unknown, defaulting to 1000
[  170.122940][T12040] loop3: detected capacity change from 0 to 2048
[  170.124438][T12032] lo speed is unknown, defaulting to 1000
[  170.242263][T12049] __nla_validate_parse: 3 callbacks suppressed
[  170.242282][T12049] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1920'.
[  170.312010][T12051] loop3: detected capacity change from 0 to 2048
[  170.348477][T12051] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1921'.
[  170.442331][T12066] s
z1: rxe_newlink: already configured on lo
[  170.467312][T12066] lo speed is unknown, defaulting to 1000
[  170.473651][T12066] lo speed is unknown, defaulting to 1000
[  170.480841][T12066] lo speed is unknown, defaulting to 1000
[  170.508187][T12068] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1928'.
[  170.537125][T12072] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1929'.
[  170.687725][T12074] loop2: detected capacity change from 0 to 8192
[  170.737015][T12074]  loop2: p2 p3 p4
[  170.741083][T12074] loop2: p2 start 14935 is beyond EOD, truncated
[  170.747461][T12074] loop2: p3 size 196608 extends beyond EOD, truncated
[  170.755114][T12074] loop2: p4 start 4026530307 is beyond EOD, truncated
[  170.768675][ T2998]  loop2: p2 p3 p4
[  170.810698][ T2998] loop2: p2 start 14935 is beyond EOD, truncated
[  170.817175][ T2998] loop2: p3 size 196608 extends beyond EOD, truncated
[  170.922039][T12076] loop3: detected capacity change from 0 to 1024
[  170.942049][ T2998] loop2: p4 start 4026530307 is beyond EOD, truncated
[  170.957103][T12076] EXT4-fs: Ignoring removed nobh option
[  170.962939][T12076] EXT4-fs: Ignoring removed nomblk_io_submit option
[  170.971388][T12076] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  170.988646][T12083] loop5: detected capacity change from 0 to 512
[  171.004219][T12076] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  171.005747][T12086] loop1: detected capacity change from 0 to 1024
[  171.021424][T12086] EXT4-fs: Ignoring removed oldalloc option
[  171.029281][T12086] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  171.029595][T12083] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  171.055604][T12083] System zones: 0-2, 18-18, 34-34
[  171.073109][T12076] lo speed is unknown, defaulting to 1000
[  171.080243][T12086] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1932'.
[  171.095945][T12076] lo speed is unknown, defaulting to 1000
[  171.105162][T12076] lo speed is unknown, defaulting to 1000
[  171.109581][T12083] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1931: bg 0: block 248: padding at end of block bitmap is not set
[  171.136714][T12083] __quota_error: 238 callbacks suppressed
[  171.136731][T12083] Quota error (device loop5): write_blk: dquota write failed
[  171.150146][T12083] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  171.176670][T12083] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.1931: Failed to acquire dquot type 1
[  171.191649][T12083] EXT4-fs (loop5): 1 truncate cleaned up
[  171.199582][T12083] ext4 filesystem being mounted at /327/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  171.214382][T12096] loop1: detected capacity change from 0 to 512
[  171.218540][T12094] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12094 comm=syz.0.1934
[  171.233820][T12083] EXT4-fs error (device loop5): ext4_lookup:1817: inode #2: comm syz.5.1931: deleted inode referenced: 12
[  171.279817][T12083] EXT4-fs error (device loop5): ext4_lookup:1817: inode #2: comm syz.5.1931: deleted inode referenced: 12
[  171.326869][T12096] EXT4-fs (loop1): too many log groups per flexible block group
[  171.334738][T12096] EXT4-fs (loop1): failed to initialize mballoc (-12)
[  171.349724][T12101] loop2: detected capacity change from 0 to 2048
[  171.357922][T12096] EXT4-fs (loop1): mount failed
[  171.400443][   T29] audit: type=1326 audit(1733580789.340:9458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12104 comm="syz.1.1938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e8ebbfed9 code=0x7ffc0000
[  171.424178][   T29] audit: type=1326 audit(1733580789.340:9459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12104 comm="syz.1.1938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e8ebbfed9 code=0x7ffc0000
[  171.451707][   T29] audit: type=1326 audit(1733580789.400:9460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12104 comm="syz.1.1938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e8ebbfed9 code=0x7ffc0000
[  171.475323][   T29] audit: type=1326 audit(1733580789.400:9461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12104 comm="syz.1.1938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e8ebbfed9 code=0x7ffc0000
[  171.498950][   T29] audit: type=1326 audit(1733580789.400:9462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12104 comm="syz.1.1938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e8ebbfed9 code=0x7ffc0000
[  171.522523][   T29] audit: type=1326 audit(1733580789.400:9463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12104 comm="syz.1.1938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e8ebbfed9 code=0x7ffc0000
[  171.546126][   T29] audit: type=1326 audit(1733580789.400:9464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12104 comm="syz.1.1938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e8ebbfed9 code=0x7ffc0000
[  171.569854][   T29] audit: type=1326 audit(1733580789.400:9465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12104 comm="syz.1.1938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e8ebbfed9 code=0x7ffc0000
[  171.660468][T12116] loop3: detected capacity change from 0 to 512
[  171.677729][T12101] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1936'.
[  171.691568][T12116] EXT4-fs (loop3): too many log groups per flexible block group
[  171.699504][T12116] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  171.699785][T12119] netlink: 'syz.1.1941': attribute type 3 has an invalid length.
[  171.708696][T12116] EXT4-fs (loop3): mount failed
[  171.714197][T12119] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1941'.
[  171.738549][T12119] loop1: detected capacity change from 0 to 512
[  171.778347][T12119] ext4 filesystem being mounted at /367/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  171.802550][T12125] loop2: detected capacity change from 0 to 512
[  171.893788][T12129] lo speed is unknown, defaulting to 1000
[  171.902020][T12129] lo speed is unknown, defaulting to 1000
[  171.908347][T12129] lo speed is unknown, defaulting to 1000
[  171.984663][T12131] lo speed is unknown, defaulting to 1000
[  171.990881][T12131] lo speed is unknown, defaulting to 1000
[  171.994239][T12125] ext4 filesystem being mounted at /382/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  172.009144][T12131] lo speed is unknown, defaulting to 1000
[  172.011708][T12125] EXT4-fs error (device loop2): ext4_readdir:261: inode #2: block 3: comm syz.2.1943: path /382/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=514, rec_len=0, size=2048 fake=0
[  172.015334][T12137] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12137 comm=syz.0.1946
[  172.052700][T12125] EXT4-fs (loop2): Remounting filesystem read-only
[  172.117490][T12140] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12140 comm=syz.0.1947
[  172.362928][T12163] loop5: detected capacity change from 0 to 2048
[  172.390782][T12165] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12165 comm=syz.3.1955
[  172.415808][T12165] loop3: detected capacity change from 0 to 1024
[  172.422338][T12163] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1954'.
[  172.532249][T12173] loop3: detected capacity change from 0 to 512
[  172.545329][T12175] loop5: detected capacity change from 0 to 1024
[  172.552141][T12175] EXT4-fs: Ignoring removed oldalloc option
[  172.558812][T12175] EXT4-fs (loop5): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  172.594431][T12175] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1958'.
[  172.600696][T12177] lo speed is unknown, defaulting to 1000
[  172.613632][T12173] EXT4-fs (loop3): too many log groups per flexible block group
[  172.618930][T12177] lo speed is unknown, defaulting to 1000
[  172.621367][T12173] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  172.627768][T12177] lo speed is unknown, defaulting to 1000
[  172.645117][T12175] netlink: 56 bytes leftover after parsing attributes in process `syz.5.1958'.
[  172.658477][T12173] EXT4-fs (loop3): mount failed
[  172.821188][T12186] loop5: detected capacity change from 0 to 8192
[  172.868616][T12196] rdma_rxe: rxe_newlink: failed to add lo
[  172.908945][T12196] lo speed is unknown, defaulting to 1000
[  172.920190][T12196] lo speed is unknown, defaulting to 1000
[  172.931877][T12196] lo speed is unknown, defaulting to 1000
[  173.000896][T12202] loop5: detected capacity change from 0 to 2048
[  173.015489][T12202] EXT4-fs: Invalid want_extra_isize 0
[  173.270850][T12215] loop5: detected capacity change from 0 to 256
[  173.560620][T12219] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  173.902717][T12234] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12234 comm=syz.5.1980
[  174.138163][T12241] rdma_rxe: rxe_newlink: failed to add lo
[  174.144003][T12245] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12245 comm=syz.2.1985
[  174.176243][T12241] lo speed is unknown, defaulting to 1000
[  174.182662][T12241] lo speed is unknown, defaulting to 1000
[  174.193338][T12241] lo speed is unknown, defaulting to 1000
[  174.274016][T12260] loop1: detected capacity change from 0 to 1024
[  174.281050][T12260] EXT4-fs: Ignoring removed nobh option
[  174.286674][T12260] EXT4-fs: Ignoring removed nomblk_io_submit option
[  174.295487][T12260] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  174.311703][T12260] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  174.313957][T12264] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12264 comm=syz.3.1991
[  174.355739][T12260] lo speed is unknown, defaulting to 1000
[  174.364946][T12260] lo speed is unknown, defaulting to 1000
[  174.374671][T12260] lo speed is unknown, defaulting to 1000
[  174.389347][T12267] loop5: detected capacity change from 0 to 8192
[  174.404756][T12264] loop3: detected capacity change from 0 to 1024
[  174.549235][T12277] loop1: detected capacity change from 0 to 1024
[  174.558694][T12279] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  174.559208][T12277] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  174.578089][T12277] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  174.597538][T12277] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  174.610512][T12277] EXT4-fs error (device loop1): ext4_get_journal_inode:5809: inode #5: comm syz.1.1994: unexpected bad inode w/o EXT4_IGET_BAD
[  174.640927][T12277] EXT4-fs (loop1): no journal found
[  174.646192][T12277] EXT4-fs (loop1): can't get journal size
[  174.684325][T12287] loop3: detected capacity change from 0 to 2048
[  174.693639][T12281] lo speed is unknown, defaulting to 1000
[  174.711111][T12281] lo speed is unknown, defaulting to 1000
[  174.717578][T12281] lo speed is unknown, defaulting to 1000
[  174.890719][T12303] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12303 comm=syz.3.2004
[  174.974831][T12303] loop3: detected capacity change from 0 to 1024
[  175.040760][T12307] loop2: detected capacity change from 0 to 1024
[  175.054756][T12307] EXT4-fs: Ignoring removed nobh option
[  175.060508][T12307] EXT4-fs: Ignoring removed nomblk_io_submit option
[  175.073945][T12315] loop5: detected capacity change from 0 to 512
[  175.074215][T12307] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  175.090147][T12315] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  175.122037][T12315] EXT4-fs (loop5): 1 truncate cleaned up
[  175.150681][T12307] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  175.231488][T12307] lo speed is unknown, defaulting to 1000
[  175.271806][T12307] lo speed is unknown, defaulting to 1000
[  175.288932][T12307] lo speed is unknown, defaulting to 1000
[  175.396520][T12335] loop3: detected capacity change from 0 to 1024
[  175.407524][T12334] loop1: detected capacity change from 0 to 512
[  175.423810][T12335] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  175.433690][T12335] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  175.472260][T12335] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  175.490974][T12334] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  175.512670][T12334] System zones: 0-2, 18-18, 34-34
[  175.549634][T12334] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2010: bg 0: block 248: padding at end of block bitmap is not set
[  175.579936][T12335] EXT4-fs error (device loop3): ext4_get_journal_inode:5809: inode #5: comm syz.3.2012: unexpected bad inode w/o EXT4_IGET_BAD
[  175.621588][T12335] EXT4-fs (loop3): no journal found
[  175.626878][T12335] EXT4-fs (loop3): can't get journal size
[  175.634351][T12334] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.2010: Failed to acquire dquot type 1
[  175.677942][T12334] EXT4-fs (loop1): 1 truncate cleaned up
[  175.695016][T12334] ext4 filesystem being mounted at /376/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  175.749796][T12334] EXT4-fs error (device loop1): ext4_lookup:1817: inode #2: comm syz.1.2010: deleted inode referenced: 12
[  175.763321][T12334] EXT4-fs error (device loop1): ext4_lookup:1817: inode #2: comm syz.1.2010: deleted inode referenced: 12
[  175.841115][T12351] loop3: detected capacity change from 0 to 2048
[  175.869603][T12356] syz_tun: entered promiscuous mode
[  175.880460][T12356] syz_tun: left promiscuous mode
[  175.936215][T12362] loop3: detected capacity change from 0 to 1024
[  175.953226][T12362] EXT4-fs: Ignoring removed oldalloc option
[  175.974705][T12362] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  176.002269][T12362] __nla_validate_parse: 3 callbacks suppressed
[  176.002375][T12362] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2017'.
[  176.037742][T12362] netlink: 56 bytes leftover after parsing attributes in process `syz.3.2017'.
[  176.111333][T12387] lo speed is unknown, defaulting to 1000
[  176.138695][T12387] lo speed is unknown, defaulting to 1000
[  176.146212][T12387] lo speed is unknown, defaulting to 1000
[  176.148219][T12394] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12394 comm=syz.3.2019
[  176.222929][T12403] loop1: detected capacity change from 0 to 1024
[  176.238240][T12403] EXT4-fs: Ignoring removed oldalloc option
[  176.245720][T12403] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  176.262704][T12394] loop3: detected capacity change from 0 to 1024
[  176.295776][T12403] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2021'.
[  176.322304][T12403] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2021'.
[  176.348274][   T29] kauditd_printk_skb: 285 callbacks suppressed
[  176.348289][   T29] audit: type=1326 audit(1733580794.290:9749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12423 comm="syz.3.2022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08b5dfed9 code=0x7ffc0000
[  176.385497][   T29] audit: type=1326 audit(1733580794.290:9750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12423 comm="syz.3.2022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08b5dfed9 code=0x7ffc0000
[  176.409101][   T29] audit: type=1326 audit(1733580794.290:9751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12423 comm="syz.3.2022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc08b5dfed9 code=0x7ffc0000
[  176.432685][   T29] audit: type=1400 audit(1733580794.290:9752): avc:  denied  { write } for  pid=12423 comm="syz.3.2022" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  176.455696][   T29] audit: type=1326 audit(1733580794.290:9753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12423 comm="syz.3.2022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08b5dfed9 code=0x7ffc0000
[  176.479439][   T29] audit: type=1326 audit(1733580794.290:9754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12423 comm="syz.3.2022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08b5dfed9 code=0x7ffc0000
[  176.503208][   T29] audit: type=1326 audit(1733580794.290:9755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12423 comm="syz.3.2022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc08b5dfed9 code=0x7ffc0000
[  176.526664][   T29] audit: type=1326 audit(1733580794.290:9756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12423 comm="syz.3.2022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08b5dfed9 code=0x7ffc0000
[  176.550243][   T29] audit: type=1326 audit(1733580794.290:9757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12423 comm="syz.3.2022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08b5dfed9 code=0x7ffc0000
[  176.573794][   T29] audit: type=1326 audit(1733580794.290:9758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12423 comm="syz.3.2022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc08b5dfed9 code=0x7ffc0000
[  176.677161][T12475] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2023'.
[  176.764295][T12481] loop2: detected capacity change from 0 to 1024
[  176.803460][T12481] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  176.813336][T12481] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  176.826965][T12481] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  176.840392][T12481] EXT4-fs error (device loop2): ext4_get_journal_inode:5809: inode #5: comm syz.2.2025: unexpected bad inode w/o EXT4_IGET_BAD
[  176.860948][T12481] EXT4-fs (loop2): no journal found
[  176.866274][T12481] EXT4-fs (loop2): can't get journal size
[  176.872507][T12489] loop5: detected capacity change from 0 to 512
[  176.884735][T12491] loop1: detected capacity change from 0 to 1024
[  176.892011][T12491] EXT4-fs: Ignoring removed oldalloc option
[  176.901158][T12491] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  176.972186][T12489] EXT4-fs (loop5): too many log groups per flexible block group
[  176.980053][T12489] EXT4-fs (loop5): failed to initialize mballoc (-12)
[  176.992254][T12489] EXT4-fs (loop5): mount failed
[  177.000321][T12491] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2029'.
[  177.026454][T12491] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2029'.
[  177.094936][T12505] loop2: detected capacity change from 0 to 1024
[  177.101811][T12507] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12507 comm=syz.5.2032
[  177.102455][T12505] EXT4-fs: Ignoring removed i_version option
[  177.120698][T12505] EXT4-fs: Ignoring removed nomblk_io_submit option
[  177.126667][T12505] ext4: Unknown parameter 'fsmagic'
[  177.130924][T12508] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2033'.
[  177.161392][T12505] loop2: detected capacity change from 0 to 512
[  177.182603][T12505] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  177.212735][T12505] EXT4-fs (loop2): 1 truncate cleaned up
[  177.223781][T12510] loop5: detected capacity change from 0 to 1024
[  177.299897][T12522] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12522 comm=syz.1.2040
[  177.324166][T12526] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2039'.
[  177.336365][T12524] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2038'.
[  177.383961][T12529] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  177.410862][T12531] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  177.452447][T12534] loop5: detected capacity change from 0 to 1024
[  177.470017][T12534] EXT4-fs: Ignoring removed oldalloc option
[  177.476530][T12534] EXT4-fs (loop5): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  177.642998][T12552] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12552 comm=syz.0.2050
[  177.675206][T12554] loop3: detected capacity change from 0 to 1024
[  177.682226][T12554] EXT4-fs: Ignoring removed oldalloc option
[  177.689455][T12554] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  177.819577][T12564] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  178.187002][T12583] loop1: detected capacity change from 0 to 1024
[  178.205828][T12583] EXT4-fs: Ignoring removed oldalloc option
[  178.225202][T12583] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  178.240343][T12587] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12587 comm=syz.3.2064
[  178.303598][T12591] loop5: detected capacity change from 0 to 2048
[  178.338919][T12587] loop3: detected capacity change from 0 to 1024
[  178.391559][T12600] loop1: detected capacity change from 0 to 2048
[  178.398444][T12600] EXT4-fs: Invalid want_extra_isize 0
[  178.483959][T12606] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12606 comm=syz.2.2072
[  178.525593][T12611] loop5: detected capacity change from 0 to 1024
[  178.533721][T12611] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  178.543608][T12611] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  178.569338][T12611] EXT4-fs (loop5): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  178.580990][T12611] EXT4-fs error (device loop5): ext4_get_journal_inode:5809: inode #5: comm syz.5.2068: unexpected bad inode w/o EXT4_IGET_BAD
[  178.594598][T12611] EXT4-fs (loop5): no journal found
[  178.599850][T12611] EXT4-fs (loop5): can't get journal size
[  178.614255][T12616] loop1: detected capacity change from 0 to 256
[  179.292173][T12686] loop1: detected capacity change from 0 to 2048
[  179.375586][T12700] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12700 comm=syz.1.2081
[  179.449703][T12700] loop1: detected capacity change from 0 to 1024
[  179.507803][T12718] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 233: padding at end of block bitmap is not set
[  179.714557][T12766] loop2: detected capacity change from 0 to 1024
[  179.721580][T12766] EXT4-fs: Ignoring removed oldalloc option
[  179.733874][T12766] EXT4-fs (loop2): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  179.736043][T12768] loop5: detected capacity change from 0 to 512
[  179.759214][T12768] ext4 filesystem being mounted at /364/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  179.770612][T12768] EXT4-fs error (device loop5): ext4_readdir:261: inode #2: block 3: comm syz.5.2087: path /364/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=514, rec_len=0, size=2048 fake=0
[  179.791470][T12776] loop3: detected capacity change from 0 to 1024
[  179.799751][T12768] EXT4-fs (loop5): Remounting filesystem read-only
[  179.839568][T12778] loop2: detected capacity change from 0 to 2048
[  179.862471][T12778] EXT4-fs: Invalid want_extra_isize 0
[  180.100225][T12789] loop2: detected capacity change from 0 to 256
[  180.591147][T12793] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12793 comm=syz.5.2092
[  180.778554][T12823] loop2: detected capacity change from 0 to 1024
[  180.800970][T12823] EXT4-fs: Ignoring removed oldalloc option
[  180.810016][T12823] EXT4-fs (loop2): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  180.864798][T12838] loop5: detected capacity change from 0 to 512
[  180.904925][T12838] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  180.931820][T12838] System zones: 0-2, 18-18, 34-34
[  180.944399][T12838] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.2101: bg 0: block 248: padding at end of block bitmap is not set
[  181.003185][T12850] loop2: detected capacity change from 0 to 512
[  181.013295][T12838] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.2101: Failed to acquire dquot type 1
[  181.052117][T12838] EXT4-fs (loop5): 1 truncate cleaned up
[  181.069267][T12850] ext4 filesystem being mounted at /405/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  181.080371][T12838] ext4 filesystem being mounted at /367/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  181.092506][T12850] EXT4-fs error (device loop2): ext4_readdir:261: inode #2: block 3: comm syz.2.2103: path /405/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=514, rec_len=0, size=2048 fake=0
[  181.127349][T12850] EXT4-fs (loop2): Remounting filesystem read-only
[  181.159521][T12838] EXT4-fs error (device loop5): ext4_lookup:1817: inode #2: comm syz.5.2101: deleted inode referenced: 12
[  181.248203][T12838] EXT4-fs error (device loop5): ext4_lookup:1817: inode #2: comm syz.5.2101: deleted inode referenced: 12
[  181.358360][   T29] kauditd_printk_skb: 432 callbacks suppressed
[  181.358378][   T29] audit: type=1400 audit(1733580799.300:10189): avc:  denied  { write } for  pid=12882 comm="syz.3.2107" name="001" dev="devtmpfs" ino=165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  181.387273][T12888] loop3: detected capacity change from 0 to 512
[  181.401111][T12888] EXT4-fs: Ignoring removed i_version option
[  181.407407][T12888] ext4: Unknown parameter 'smackfshat'
[  181.415727][   T29] audit: type=1400 audit(1733580799.340:10190): avc:  denied  { connect } for  pid=12891 comm="syz.0.2108" lport=60 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  181.436661][   T29] audit: type=1400 audit(1733580799.340:10191): avc:  denied  { write } for  pid=12891 comm="syz.0.2108" lport=60 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  181.444941][T12895] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12895 comm=syz.0.2109
[  181.871175][   T29] audit: type=1400 audit(1733580799.810:10192): avc:  denied  { create } for  pid=12952 comm="syz.2.2114" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  181.891102][   T29] audit: type=1400 audit(1733580799.810:10193): avc:  denied  { create } for  pid=12949 comm="syz.5.2113" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  182.001298][   T29] audit: type=1400 audit(1733580799.850:10194): avc:  denied  { append } for  pid=2980 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=10 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  182.024377][   T29] audit: type=1400 audit(1733580799.850:10195): avc:  denied  { create } for  pid=12952 comm="syz.2.2114" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  182.045039][   T29] audit: type=1400 audit(1733580799.850:10196): avc:  denied  { write } for  pid=12952 comm="syz.2.2114" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  182.065612][   T29] audit: type=1400 audit(1733580799.860:10197): avc:  denied  { read } for  pid=12952 comm="syz.2.2114" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  182.086095][   T29] audit: type=1400 audit(1733580799.860:10198): avc:  denied  { create } for  pid=12954 comm="syz.0.2115" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  182.189492][T12959] loop1: detected capacity change from 0 to 512
[  182.270320][T12959] ext4 filesystem being mounted at /392/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  182.314031][T12978] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12978 comm=syz.2.2121
[  183.236330][T13101] __nla_validate_parse: 10 callbacks suppressed
[  183.236376][T13101] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2127'.
[  183.272011][T13103] loop5: detected capacity change from 0 to 512
[  183.291128][T13103] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  183.329050][T13103] EXT4-fs (loop5): 1 truncate cleaned up
[  183.351178][T13111] loop1: detected capacity change from 0 to 2048
[  183.582794][T13126] loop1: detected capacity change from 0 to 2048
[  183.607225][T13126] EXT4-fs: Invalid want_extra_isize 0
[  183.737860][T13129] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  183.845497][T13131] loop1: detected capacity change from 0 to 256
[  184.500397][T13158] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2140'.
[  184.698864][T13168] loop1: detected capacity change from 0 to 2048
[  184.723763][T13180] loop3: detected capacity change from 0 to 512
[  184.752013][T13180] EXT4-fs (loop3): too many log groups per flexible block group
[  184.759771][T13180] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  184.767164][T13180] EXT4-fs (loop3): mount failed
[  185.004157][T13242] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13242 comm=syz.1.2149
[  185.054950][T13237] loop2: detected capacity change from 0 to 1024
[  185.076097][T13242] loop1: detected capacity change from 0 to 1024
[  185.109937][T13258] loop3: detected capacity change from 0 to 1024
[  185.118282][T13258] EXT4-fs: Ignoring removed nobh option
[  185.201405][T13267] FAULT_INJECTION: forcing a failure.
[  185.201405][T13267] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  185.214558][T13267] CPU: 0 UID: 0 PID: 13267 Comm: syz.0.2154 Not tainted 6.13.0-rc1-syzkaller-00316-gb5f217084ab3 #0
[  185.225347][T13267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  185.235438][T13267] Call Trace:
[  185.238741][T13267]  <TASK>
[  185.241712][T13267]  dump_stack_lvl+0xf2/0x150
[  185.246333][T13267]  dump_stack+0x15/0x1a
[  185.250618][T13267]  should_fail_ex+0x223/0x230
[  185.255375][T13267]  should_fail+0xb/0x10
[  185.259623][T13267]  should_fail_usercopy+0x1a/0x20
[  185.264748][T13267]  _copy_from_user+0x1e/0xb0
[  185.269352][T13267]  get_timespec64+0x49/0x140
[  185.273967][T13267]  __se_sys_clock_nanosleep+0xfd/0x240
[  185.279465][T13267]  __x64_sys_clock_nanosleep+0x55/0x70
[  185.284934][T13267]  x64_sys_call+0x25b8/0x2dc0
[  185.289692][T13267]  do_syscall_64+0xc9/0x1c0
[  185.294305][T13267]  ? clear_bhb_loop+0x55/0xb0
[  185.299057][T13267]  ? clear_bhb_loop+0x55/0xb0
[  185.303778][T13267]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.309721][T13267] RIP: 0033:0x7f6feae5fed9
[  185.314140][T13267] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  185.333811][T13267] RSP: 002b:00007f6fe94d7058 EFLAGS: 00000246 ORIG_RAX: 00000000000000e6
[  185.342247][T13267] RAX: ffffffffffffffda RBX: 00007f6feb025fa0 RCX: 00007f6feae5fed9
[  185.350243][T13267] RDX: 0000000020000100 RSI: 0000000000000000 RDI: 0000000000000002
[  185.358252][T13267] RBP: 00007f6fe94d70a0 R08: 0000000000000000 R09: 0000000000000000
[  185.366306][T13267] R10: 0000000020000140 R11: 0000000000000246 R12: 0000000000000001
[  185.374380][T13267] R13: 0000000000000000 R14: 00007f6feb025fa0 R15: 00007ffeeed702d8
[  185.382423][T13267]  </TASK>
[  185.394476][T13271] loop3: detected capacity change from 0 to 1024
[  185.926035][T13351] loop2: detected capacity change from 0 to 1024
[  185.937712][T13351] EXT4-fs: Ignoring removed oldalloc option
[  185.957357][T13351] EXT4-fs (loop2): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  186.009159][T13364] lo speed is unknown, defaulting to 1000
[  186.015698][T13351] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2161'.
[  186.026117][T13364] lo speed is unknown, defaulting to 1000
[  186.041147][T13364] lo speed is unknown, defaulting to 1000
[  186.229687][T13391] lo speed is unknown, defaulting to 1000
[  186.241889][T13391] lo speed is unknown, defaulting to 1000
[  186.248244][T13391] lo speed is unknown, defaulting to 1000
[  186.268292][T13395] loop3: detected capacity change from 0 to 1024
[  186.376426][T13431] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2172'.
[  186.485755][   T29] kauditd_printk_skb: 261 callbacks suppressed
[  186.492068][   T29] audit: type=1326 audit(1733580804.420:10460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13436 comm="syz.1.2176" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0e8ebbfed9 code=0x0
[  186.573646][T13441] loop1: detected capacity change from 0 to 1024
[  186.576252][   T29] audit: type=1400 audit(1733580804.510:10461): avc:  denied  { ioctl } for  pid=13442 comm="syz.5.2178" path="socket:[25179]" dev="sockfs" ino=25179 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  186.587596][T13446] loop3: detected capacity change from 0 to 512
[  186.881687][T13446] EXT4-fs (loop3): too many log groups per flexible block group
[  186.889521][T13446] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  186.960098][T13446] EXT4-fs (loop3): mount failed
[  187.000178][T13451] loop5: detected capacity change from 0 to 2048
[  187.011947][T13451] EXT4-fs: Invalid want_extra_isize 0
[  187.042361][   T29] audit: type=1326 audit(1733580804.970:10462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13436 comm="syz.1.2176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e8ebbfed9 code=0x7ffc0000
[  187.066191][   T29] audit: type=1326 audit(1733580804.970:10463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13436 comm="syz.1.2176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0e8ebbfed9 code=0x7ffc0000
[  187.090126][   T29] audit: type=1326 audit(1733580804.970:10464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13436 comm="syz.1.2176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f0e8ebbff13 code=0x7ffc0000
[  187.113701][   T29] audit: type=1326 audit(1733580804.980:10465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13436 comm="syz.1.2176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f0e8ebbe98f code=0x7ffc0000
[  187.137324][   T29] audit: type=1326 audit(1733580804.980:10466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13436 comm="syz.1.2176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f0e8ebbff67 code=0x7ffc0000
[  187.160877][   T29] audit: type=1326 audit(1733580804.980:10467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13436 comm="syz.1.2176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0e8ebbe840 code=0x7ffc0000
[  187.184976][   T29] audit: type=1326 audit(1733580804.980:10468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13436 comm="syz.1.2176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f0e8ebbeb3a code=0x7ffc0000
[  187.208763][   T29] audit: type=1326 audit(1733580804.980:10469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13436 comm="syz.1.2176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e8ebbfed9 code=0x7ffc0000
[  187.450786][T13455] loop5: detected capacity change from 0 to 256
[  187.513807][T13462] rdma_rxe: rxe_newlink: failed to add lo
[  187.590130][T13462] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2182'.
[  187.862726][T13470] loop3: detected capacity change from 0 to 8192
[  188.108624][T13472] lo speed is unknown, defaulting to 1000
[  188.115142][T13472] lo speed is unknown, defaulting to 1000
[  188.136507][T13472] lo speed is unknown, defaulting to 1000
[  188.143526][T13470]  loop3: p2 p3 p4
[  188.147373][T13470] loop3: p2 start 14935 is beyond EOD, truncated
[  188.153851][T13470] loop3: p3 size 196608 extends beyond EOD, truncated
[  188.162924][T13470] loop3: p4 start 4026530307 is beyond EOD, truncated
[  188.305933][T13477] IPVS: set_ctl: invalid protocol: 135 224.0.0.1:20001
[  188.560377][T13494] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13494 comm=syz.3.2191
[  188.622836][T13500] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2193'.
[  188.676890][T13504] loop1: detected capacity change from 0 to 1024
[  188.690944][T13494] loop3: detected capacity change from 0 to 1024
[  188.698095][T13504] EXT4-fs: Ignoring removed oldalloc option
[  188.719402][T13504] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  188.748022][T13494] EXT4-fs mount: 108 callbacks suppressed
[  188.748041][T13494] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  188.773935][T13508] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2195'.
[  188.804882][T13504] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  188.807781][T13512] siw: device registration error -23
[  188.834397][T13504] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2194'.
[  188.844646][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.870194][T13517] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2198'.
[  188.895150][T13504] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2194'.
[  188.938163][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  189.072717][T13536] loop3: detected capacity change from 0 to 512
[  189.083750][T13536] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  189.119589][T13536] EXT4-fs (loop3): 1 truncate cleaned up
[  189.139968][T13536] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  189.459070][T13555] vlan0: entered allmulticast mode
[  189.615494][T13551] lo speed is unknown, defaulting to 1000
[  189.636685][T13552] loop1: detected capacity change from 0 to 8192
[  189.645170][T13555] syzkaller1: entered promiscuous mode
[  189.650710][T13555] syzkaller1: entered allmulticast mode
[  189.679676][T13552]  loop1: p2 p3 p4
[  189.683552][T13552] loop1: p2 start 14935 is beyond EOD, truncated
[  189.689969][T13552] loop1: p3 size 196608 extends beyond EOD, truncated
[  189.710023][T13551] lo speed is unknown, defaulting to 1000
[  189.723091][T13551] lo speed is unknown, defaulting to 1000
[  189.787193][T13552] loop1: p4 start 4026530307 is beyond EOD, truncated
[  189.921816][T13573] loop2: detected capacity change from 0 to 8192
[  190.026006][T13578] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2220'.
[  190.049448][T13578] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2220'.
[  190.334399][T13590] loop2: detected capacity change from 0 to 512
[  190.398921][T13597] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2229'.
[  190.399404][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.439163][T13590] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  190.467428][T13590] System zones: 0-2, 18-18, 34-34
[  190.500954][T13590] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2224: bg 0: block 248: padding at end of block bitmap is not set
[  190.502086][T13610] loop1: detected capacity change from 0 to 1024
[  190.522005][T13610] EXT4-fs: Ignoring removed oldalloc option
[  190.532366][T13610] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  190.545530][T13608] loop5: detected capacity change from 0 to 2048
[  190.556663][T13590] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.2224: Failed to acquire dquot type 1
[  190.568206][T13608] EXT4-fs: Invalid want_extra_isize 0
[  190.577867][T13590] EXT4-fs (loop2): 1 truncate cleaned up
[  190.621252][T13614] loop3: detected capacity change from 0 to 1024
[  190.636817][T13614] EXT4-fs: Ignoring removed nobh option
[  190.642437][T13614] EXT4-fs: Ignoring removed nomblk_io_submit option
[  190.674254][T13590] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  190.684640][T13614] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  190.687062][T13590] ext4 filesystem being mounted at /430/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  190.702825][T13614] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  190.717660][T13588] EXT4-fs error (device loop2): ext4_lookup:1817: inode #2: comm syz.2.2224: deleted inode referenced: 12
[  190.730549][T13613] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  190.741602][T13610] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  190.747612][T13588] EXT4-fs error (device loop2): ext4_lookup:1817: inode #2: comm syz.2.2224: deleted inode referenced: 12
[  190.796079][T13610] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2232'.
[  190.813031][T13619] loop5: detected capacity change from 0 to 256
[  190.840669][T13613] lo speed is unknown, defaulting to 1000
[  190.861213][T13610] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2232'.
[  190.893217][T13613] lo speed is unknown, defaulting to 1000
[  190.929996][T13613] lo speed is unknown, defaulting to 1000
[  190.988967][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.147687][ T3296] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.206454][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.232917][T13634] s
z1: rxe_newlink: already configured on lo
[  191.271841][T13640] loop3: detected capacity change from 0 to 1024
[  191.385018][T13640] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  191.403349][T13651] loop2: detected capacity change from 0 to 512
[  191.426295][T13651] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  191.470495][T13640] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  191.518190][T13658] loop5: detected capacity change from 0 to 512
[  191.526349][T13651] EXT4-fs (loop2): 1 truncate cleaned up
[  191.547022][T13651] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  191.671817][   T29] kauditd_printk_skb: 304 callbacks suppressed
[  191.671834][   T29] audit: type=1326 audit(1733580809.570:10772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13639 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08b5dfed9 code=0x7ffc0000
[  191.701183][   T29] audit: type=1326 audit(1733580809.570:10773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13639 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fc08b5dfed9 code=0x7ffc0000
[  191.724369][   T29] audit: type=1326 audit(1733580809.570:10774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13639 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08b5dfed9 code=0x7ffc0000
[  191.747550][   T29] audit: type=1326 audit(1733580809.570:10775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13639 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7fc08b5dfed9 code=0x7ffc0000
[  191.770647][   T29] audit: type=1326 audit(1733580809.570:10776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13639 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08b5dfed9 code=0x7ffc0000
[  191.793767][   T29] audit: type=1326 audit(1733580809.570:10777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13639 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=188 compat=0 ip=0x7fc08b5dfed9 code=0x7ffc0000
[  191.816878][   T29] audit: type=1400 audit(1733580809.580:10778): avc:  denied  { setattr } for  pid=13639 comm="+}[@" name="file0" dev="loop3" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  191.838853][   T29] audit: type=1326 audit(1733580809.580:10779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13639 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08b5dfed9 code=0x7ffc0000
[  191.863209][   T29] audit: type=1400 audit(1733580809.790:10780): avc:  denied  { remount } for  pid=13662 comm="syz.0.2249" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  191.876652][T13663] lo speed is unknown, defaulting to 1000
[  191.889417][T13663] lo speed is unknown, defaulting to 1000
[  191.895475][T13663] lo speed is unknown, defaulting to 1000
[  191.967847][T13658] EXT4-fs (loop5): too many log groups per flexible block group
[  191.975582][T13658] EXT4-fs (loop5): failed to initialize mballoc (-12)
[  192.003858][T13658] EXT4-fs (loop5): mount failed
[  192.012120][T13660] loop1: detected capacity change from 0 to 512
[  192.036999][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.057015][   T29] audit: type=1400 audit(1733580809.990:10781): avc:  denied  { mounton } for  pid=13654 comm="syz.1.2246" path="/418/bus" dev="tmpfs" ino=2304 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  192.138029][T13670] lo speed is unknown, defaulting to 1000
[  192.151556][T13660] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  192.169839][T13660] ext4 filesystem being mounted at /418/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  192.181932][T13670] lo speed is unknown, defaulting to 1000
[  192.186829][T13660] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.189855][T13670] lo speed is unknown, defaulting to 1000
[  192.392841][T13685] loop3: detected capacity change from 0 to 512
[  192.441850][T13685] EXT4-fs (loop3): too many log groups per flexible block group
[  192.449611][T13685] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  192.469639][T13685] EXT4-fs (loop3): mount failed
[  192.494499][ T3296] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.511480][T13692] loop1: detected capacity change from 0 to 1024
[  192.525472][T13692] EXT4-fs: Ignoring removed nobh option
[  192.531198][T13692] EXT4-fs: Ignoring removed nomblk_io_submit option
[  192.545397][T13692] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  192.566881][T13692] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  192.588010][T13692] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  192.693955][T13692] lo speed is unknown, defaulting to 1000
[  192.718985][T13692] lo speed is unknown, defaulting to 1000
[  192.725357][T13692] lo speed is unknown, defaulting to 1000
[  192.845654][T13716] lo speed is unknown, defaulting to 1000
[  192.856444][T13725] loop2: detected capacity change from 0 to 512
[  192.865067][T13716] lo speed is unknown, defaulting to 1000
[  192.872836][T13723] loop5: detected capacity change from 0 to 1024
[  192.889621][T13725] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  192.891038][T13723] EXT4-fs: Ignoring removed oldalloc option
[  192.907752][T13725] ext4 filesystem being mounted at /438/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  192.916682][T13716] lo speed is unknown, defaulting to 1000
[  192.925225][T13725] EXT4-fs error (device loop2): ext4_readdir:261: inode #2: block 3: comm syz.2.2273: path /438/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=514, rec_len=0, size=2048 fake=0
[  193.004452][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.014701][T13723] EXT4-fs (loop5): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  193.015076][T13725] EXT4-fs (loop2): Remounting filesystem read-only
[  193.065448][T13723] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  193.154865][ T4900] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.180511][T13746] loop1: detected capacity change from 0 to 512
[  193.278036][T13746] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  193.286176][T13746] System zones: 0-2, 18-18, 34-34
[  193.299051][T13755] netlink: 'syz.0.2277': attribute type 3 has an invalid length.
[  193.310205][T13746] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2275: bg 0: block 248: padding at end of block bitmap is not set
[  193.328154][T13738] loop3: detected capacity change from 0 to 8192
[  193.404296][T13746] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.2275: Failed to acquire dquot type 1
[  193.432111][T13738]  loop3: p2 p3 p4
[  193.450103][T13738] loop3: p2 start 14935 is beyond EOD, truncated
[  193.456562][T13738] loop3: p3 size 196608 extends beyond EOD, truncated
[  193.481495][T13738] loop3: p4 start 4026530307 is beyond EOD, truncated
[  193.489255][T13746] EXT4-fs (loop1): 1 truncate cleaned up
[  193.509430][T13746] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  193.554799][T13746] ext4 filesystem being mounted at /421/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  193.575571][T13746] EXT4-fs error (device loop1): ext4_lookup:1817: inode #2: comm syz.1.2275: deleted inode referenced: 12
[  193.613940][T13746] EXT4-fs error (device loop1): ext4_lookup:1817: inode #2: comm syz.1.2275: deleted inode referenced: 12
[  193.702839][ T3296] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.746305][T13774] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  193.748034][T13772] loop5: detected capacity change from 0 to 8192
[  193.868218][T13780] loop2: detected capacity change from 0 to 512
[  193.889844][T13780] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  193.916177][T13780] System zones: 0-2, 18-18, 34-34
[  193.931579][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.960187][T13780] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2285: bg 0: block 248: padding at end of block bitmap is not set
[  193.980691][T13780] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.2285: Failed to acquire dquot type 1
[  194.024414][T13780] EXT4-fs (loop2): 1 truncate cleaned up
[  194.026125][T13800] loop5: detected capacity change from 0 to 1024
[  194.037366][T13800] EXT4-fs: test_dummy_encryption option not supported
[  194.046833][T13780] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  194.088828][T13780] ext4 filesystem being mounted at /440/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  194.099699][T13804] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13804 comm=syz.1.2294
[  194.129534][T13780] EXT4-fs error (device loop2): ext4_lookup:1817: inode #2: comm syz.2.2285: deleted inode referenced: 12
[  194.146118][T13780] EXT4-fs error (device loop2): ext4_lookup:1817: inode #2: comm syz.2.2285: deleted inode referenced: 12
[  194.155239][T13810] __nla_validate_parse: 7 callbacks suppressed
[  194.155268][T13810] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2296'.
[  194.222234][T13815] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13815 comm=syz.0.2297
[  194.308992][T13828] rdma_rxe: rxe_newlink: failed to add lo
[  194.315768][T13828] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2301'.
[  194.414662][T13837] FAULT_INJECTION: forcing a failure.
[  194.414662][T13837] name failslab, interval 1, probability 0, space 0, times 0
[  194.419661][T13835] FAULT_INJECTION: forcing a failure.
[  194.419661][T13835] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  194.427495][T13837] CPU: 0 UID: 0 PID: 13837 Comm: syz.5.2305 Not tainted 6.13.0-rc1-syzkaller-00316-gb5f217084ab3 #0
[  194.451380][T13837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  194.461443][T13837] Call Trace:
[  194.464726][T13837]  <TASK>
[  194.467669][T13837]  dump_stack_lvl+0xf2/0x150
[  194.472300][T13837]  dump_stack+0x15/0x1a
[  194.476571][T13837]  should_fail_ex+0x223/0x230
[  194.481283][T13837]  ? audit_log_d_path+0x96/0x250
[  194.486307][T13837]  should_failslab+0x8f/0xb0
[  194.490988][T13837]  __kmalloc_cache_noprof+0x4e/0x320
[  194.496285][T13837]  audit_log_d_path+0x96/0x250
[  194.501122][T13837]  ? __rcu_read_unlock+0x4e/0x70
[  194.506085][T13837]  audit_log_d_path_exe+0x42/0x70
[  194.511153][T13837]  audit_log_task+0x192/0x1c0
[  194.515863][T13837]  audit_seccomp+0x68/0x130
[  194.520387][T13837]  __seccomp_filter+0x6fa/0x1180
[  194.525408][T13837]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  194.531165][T13837]  ? vfs_write+0x596/0x920
[  194.535595][T13837]  ? __schedule+0x6fa/0x930
[  194.540118][T13837]  __secure_computing+0x9f/0x1c0
[  194.545143][T13837]  syscall_trace_enter+0xd1/0x1f0
[  194.550194][T13837]  do_syscall_64+0xaa/0x1c0
[  194.554783][T13837]  ? clear_bhb_loop+0x55/0xb0
[  194.559471][T13837]  ? clear_bhb_loop+0x55/0xb0
[  194.564155][T13837]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.570140][T13837] RIP: 0033:0x7f483a87fed9
[  194.574635][T13837] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  194.594315][T13837] RSP: 002b:00007f4838ef7058 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[  194.602742][T13837] RAX: ffffffffffffffda RBX: 00007f483aa45fa0 RCX: 00007f483a87fed9
[  194.610717][T13837] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffffffff9c
[  194.618696][T13837] RBP: 00007f4838ef70a0 R08: 0000000000000000 R09: 0000000000000000
[  194.626684][T13837] R10: 0000000000004000 R11: 0000000000000246 R12: 0000000000000001
[  194.634667][T13837] R13: 0000000000000000 R14: 00007f483aa45fa0 R15: 00007ffd6bb68508
[  194.642748][T13837]  </TASK>
[  194.645771][T13835] CPU: 1 UID: 0 PID: 13835 Comm: syz.3.2304 Not tainted 6.13.0-rc1-syzkaller-00316-gb5f217084ab3 #0
[  194.656604][T13835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  194.666667][T13835] Call Trace:
[  194.669947][T13835]  <TASK>
[  194.672903][T13835]  dump_stack_lvl+0xf2/0x150
[  194.677548][T13835]  dump_stack+0x15/0x1a
[  194.681803][T13835]  should_fail_ex+0x223/0x230
[  194.686493][T13835]  should_fail+0xb/0x10
[  194.690729][T13835]  should_fail_usercopy+0x1a/0x20
[  194.695768][T13835]  _copy_to_user+0x20/0xa0
[  194.700220][T13835]  simple_read_from_buffer+0xa0/0x110
[  194.705630][T13835]  proc_fail_nth_read+0xf9/0x140
[  194.710598][T13835]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  194.716213][T13835]  vfs_read+0x1a2/0x700
[  194.720404][T13835]  ? __rcu_read_unlock+0x4e/0x70
[  194.725475][T13835]  ? __fget_files+0x17c/0x1c0
[  194.730317][T13835]  ksys_read+0xe8/0x1b0
[  194.734540][T13835]  __x64_sys_read+0x42/0x50
[  194.739161][T13835]  x64_sys_call+0x2874/0x2dc0
[  194.743858][T13835]  do_syscall_64+0xc9/0x1c0
[  194.748461][T13835]  ? clear_bhb_loop+0x55/0xb0
[  194.753647][T13835]  ? clear_bhb_loop+0x55/0xb0
[  194.758404][T13835]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.764396][T13835] RIP: 0033:0x7fc08b5de8ec
[  194.768816][T13835] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  194.788444][T13835] RSP: 002b:00007fc089c57050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  194.796875][T13835] RAX: ffffffffffffffda RBX: 00007fc08b7a5fa0 RCX: 00007fc08b5de8ec
[  194.804852][T13835] RDX: 000000000000000f RSI: 00007fc089c570b0 RDI: 0000000000000003
[  194.812910][T13835] RBP: 00007fc089c570a0 R08: 0000000000000000 R09: 0000000000000000
[  194.820949][T13835] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  194.828927][T13835] R13: 0000000000000000 R14: 00007fc08b7a5fa0 R15: 00007ffef8068f48
[  194.836981][T13835]  </TASK>
[  194.877803][ T3296] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.880579][T13841] loop5: detected capacity change from 0 to 1024
[  194.894419][T13841] EXT4-fs: Ignoring removed oldalloc option
[  194.915252][T13841] EXT4-fs (loop5): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  194.928667][T13844] netlink: 'syz.3.2306': attribute type 3 has an invalid length.
[  194.936510][T13844] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2306'.
[  194.943432][T13846] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13846 comm=syz.1.2309
[  194.961690][T13844] loop3: detected capacity change from 0 to 1024
[  194.972752][T13841] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  194.989281][T13841] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2307'.
[  194.999105][T13844] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  194.999197][T13841] netlink: 56 bytes leftover after parsing attributes in process `syz.5.2307'.
[  195.032616][T13854] SELinux:  Context system_u:object_r:system_dbusd_var_run_t:s0 is not valid (left unmapped).
[  195.046203][ T4900] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.050236][T13846] loop1: detected capacity change from 0 to 1024
[  195.082591][T13858] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2311'.
[  195.101031][T13846] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  195.180990][T13869] rdma_rxe: rxe_newlink: failed to add lo
[  195.189255][T13869] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2314'.
[  195.205421][T13873] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  195.226719][T13875] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13875 comm=syz.5.2318
[  195.250521][T13878] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13878 comm=syz.2.2320
[  195.299628][T13875] loop5: detected capacity change from 0 to 1024
[  195.332269][T13875] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  195.360750][ T4900] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.670176][T13939] loop5: detected capacity change from 0 to 8192
[  195.739191][T13844] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.796070][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.954331][T13984] loop1: detected capacity change from 0 to 512
[  196.004788][T13984] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  196.022578][T13981] loop5: detected capacity change from 0 to 8192
[  196.029200][T13984] System zones: 0-2, 18-18, 34-34
[  196.035088][T13984] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2326: bg 0: block 248: padding at end of block bitmap is not set
[  196.054411][T13984] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.2326: Failed to acquire dquot type 1
[  196.078047][T13984] EXT4-fs (loop1): 1 truncate cleaned up
[  196.232234][T13984] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  196.268022][T14029] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  196.278566][T13984] ext4 filesystem being mounted at /426/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  196.334700][T13984] EXT4-fs error (device loop1): ext4_lookup:1817: inode #2: comm syz.1.2326: deleted inode referenced: 12
[  196.374440][T13984] EXT4-fs error (device loop1): ext4_lookup:1817: inode #2: comm syz.1.2326: deleted inode referenced: 12
[  196.381889][T14037] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=14037 comm=syz.3.2335
[  196.425978][T14045] netlink: 'syz.0.2334': attribute type 3 has an invalid length.
[  196.433848][T14045] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2334'.
[  196.470541][T14037] loop3: detected capacity change from 0 to 1024
[  196.480643][T14044] loop2: detected capacity change from 0 to 8192
[  196.498670][T14037] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  196.546984][T14056] loop5: detected capacity change from 0 to 2048
[  196.553812][T14056] EXT4-fs: Invalid want_extra_isize 0
[  196.598604][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.676589][   T29] kauditd_printk_skb: 201 callbacks suppressed
[  196.676607][   T29] audit: type=1326 audit(1733580814.610:10977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14059 comm="syz.2.2342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=296 compat=0 ip=0x7ff6ae71fed9 code=0x7ffc0000
[  196.715303][   T29] audit: type=1326 audit(1733580814.650:10978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14059 comm="syz.2.2342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6ae71fed9 code=0x7ffc0000
[  196.739152][   T29] audit: type=1326 audit(1733580814.650:10979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14059 comm="syz.2.2342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff6ae71fed9 code=0x7ffc0000
[  196.762834][   T29] audit: type=1326 audit(1733580814.650:10980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14059 comm="syz.2.2342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6ae71fed9 code=0x7ffc0000
[  196.786486][   T29] audit: type=1326 audit(1733580814.650:10981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14059 comm="syz.2.2342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff6ae71fed9 code=0x7ffc0000
[  196.810291][   T29] audit: type=1326 audit(1733580814.650:10982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14059 comm="syz.2.2342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6ae71fed9 code=0x7ffc0000
[  196.834058][   T29] audit: type=1326 audit(1733580814.650:10983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14059 comm="syz.2.2342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff6ae71fed9 code=0x7ffc0000
[  196.857699][   T29] audit: type=1326 audit(1733580814.650:10984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14059 comm="syz.2.2342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6ae71fed9 code=0x7ffc0000
[  196.881450][   T29] audit: type=1326 audit(1733580814.650:10985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14059 comm="syz.2.2342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7ff6ae71fed9 code=0x7ffc0000
[  196.904894][   T29] audit: type=1326 audit(1733580814.650:10986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14059 comm="syz.2.2342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6ae71fed9 code=0x7ffc0000
[  196.934634][T14063] loop5: detected capacity change from 0 to 256
[  197.064677][T14065] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  197.118444][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.396267][T14086] SELinux:  Context Ü is not valid (left unmapped).
[  197.410027][T14086] Illegal XDP return value 4294967274 on prog  (id 1338) dev N/A, expect packet loss!
[  197.437504][T14095] loop3: detected capacity change from 0 to 512
[  197.459912][T14095] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  197.468267][T14095] System zones: 0-2, 18-18, 34-34
[  197.479881][T14095] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2352: bg 0: block 248: padding at end of block bitmap is not set
[  197.496968][T14095] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.2352: Failed to acquire dquot type 1
[  197.514096][T14095] EXT4-fs (loop3): 1 truncate cleaned up
[  197.520384][T14095] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  197.531212][T14109] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2355'.
[  197.533375][T14095] ext4 filesystem being mounted at /471/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  197.552856][T14111] FAULT_INJECTION: forcing a failure.
[  197.552856][T14111] name failslab, interval 1, probability 0, space 0, times 0
[  197.555866][T14109] loop5: detected capacity change from 0 to 512
[  197.565554][T14111] CPU: 1 UID: 0 PID: 14111 Comm: syz.1.2358 Not tainted 6.13.0-rc1-syzkaller-00316-gb5f217084ab3 #0
[  197.582559][T14111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  197.592626][T14111] Call Trace:
[  197.595953][T14111]  <TASK>
[  197.598939][T14111]  dump_stack_lvl+0xf2/0x150
[  197.603761][T14111]  dump_stack+0x15/0x1a
[  197.607939][T14111]  should_fail_ex+0x223/0x230
[  197.612635][T14111]  should_failslab+0x8f/0xb0
[  197.617353][T14111]  __kmalloc_noprof+0xab/0x3f0
[  197.622187][T14111]  ? alloc_pipe_info+0x1cb/0x360
[  197.627201][T14111]  alloc_pipe_info+0x1cb/0x360
[  197.632132][T14111]  splice_direct_to_actor+0x60f/0x670
[  197.637592][T14111]  ? __pfx_direct_splice_actor+0x10/0x10
[  197.643247][T14111]  ? selinux_file_permission+0x327/0x360
[  197.648909][T14111]  do_splice_direct+0xd7/0x150
[  197.653730][T14111]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  197.659655][T14111]  do_sendfile+0x398/0x660
[  197.664280][T14111]  __x64_sys_sendfile64+0x110/0x150
[  197.669552][T14111]  x64_sys_call+0xfbd/0x2dc0
[  197.674230][T14111]  do_syscall_64+0xc9/0x1c0
[  197.678806][T14111]  ? clear_bhb_loop+0x55/0xb0
[  197.683490][T14111]  ? clear_bhb_loop+0x55/0xb0
[  197.688203][T14111]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.694187][T14111] RIP: 0033:0x7f0e8ebbfed9
[  197.698635][T14111] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  197.718333][T14111] RSP: 002b:00007f0e8d237058 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  197.726808][T14111] RAX: ffffffffffffffda RBX: 00007f0e8ed85fa0 RCX: 00007f0e8ebbfed9
[  197.734805][T14111] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000009
[  197.742874][T14111] RBP: 00007f0e8d2370a0 R08: 0000000000000000 R09: 0000000000000000
[  197.750982][T14111] R10: 0000000100000002 R11: 0000000000000246 R12: 0000000000000001
[  197.759041][T14111] R13: 0000000000000000 R14: 00007f0e8ed85fa0 R15: 00007ffebfd25038
[  197.767133][T14111]  </TASK>
[  197.780758][T14090] EXT4-fs error (device loop3): ext4_lookup:1817: inode #2: comm syz.3.2352: deleted inode referenced: 12
[  197.797775][T14113] netlink: 'syz.1.2359': attribute type 3 has an invalid length.
[  197.805607][T14113] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2359'.
[  197.811935][T14090] EXT4-fs error (device loop3): ext4_lookup:1817: inode #2: comm syz.3.2352: deleted inode referenced: 12
[  197.832632][T14113] loop1: detected capacity change from 0 to 1024
[  197.860465][T14109] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  197.860453][T14113] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  197.860602][T14109] ==================================================================
[  197.860639][T14109] BUG: KCSAN: data-race in data_alloc / data_push_tail
[  197.860682][T14109] 
[  197.860692][T14109] write to 0xffffffff88bbb118 of 8 bytes by task 14113 on cpu 1:
[  197.860715][T14109]  data_alloc+0x216/0x2c0
[  197.860740][T14109]  prb_reserve+0x85e/0xb60
[  197.860768][T14109]  vprintk_store+0x558/0x870
[  197.860798][T14109]  vprintk_emit+0x15e/0x680
[  197.860832][T14109]  vprintk_default+0x26/0x30
[  197.860864][T14109]  vprintk+0x75/0x80
[  197.860886][T14109]  _printk+0x7a/0xa0
[  197.860912][T14109]  __ext4_msg+0x18e/0x1a0
[  197.860952][T14109]  ext4_fill_super+0x980/0x3a10
[  197.860990][T14109]  get_tree_bdev_flags+0x29f/0x310
[  197.861027][T14109]  get_tree_bdev+0x1f/0x30
[  197.861062][T14109]  ext4_get_tree+0x1c/0x30
[  197.861099][T14109]  vfs_get_tree+0x56/0x1e0
[  197.861135][T14109]  do_new_mount+0x227/0x690
[  197.861174][T14109]  path_mount+0x49b/0xb30
[  197.861205][T14109]  __se_sys_mount+0x27c/0x2d0
[  197.861242][T14109]  __x64_sys_mount+0x67/0x80
[  197.861284][T14109]  x64_sys_call+0x2c84/0x2dc0
[  197.861314][T14109]  do_syscall_64+0xc9/0x1c0
[  197.861341][T14109]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.861391][T14109] 
[  197.861399][T14109] read to 0xffffffff88bbb118 of 8 bytes by task 14109 on cpu 0:
[  197.861417][T14109]  data_push_tail+0x102/0x430
[  197.861443][T14109]  data_alloc+0xbe/0x2c0
[  197.861471][T14109]  prb_reserve+0x85e/0xb60
[  197.861503][T14109]  vprintk_store+0x558/0x870
[  197.861536][T14109]  vprintk_emit+0x15e/0x680
[  197.861572][T14109]  vprintk_default+0x26/0x30
[  197.861609][T14109]  vprintk+0x75/0x80
[  197.861631][T14109]  _printk+0x7a/0xa0
[  197.861659][T14109]  ext4_setup_super+0x558/0x570
[  197.861697][T14109]  ext4_fill_super+0x30f3/0x3a10
[  197.861736][T14109]  get_tree_bdev_flags+0x29f/0x310
[  197.861773][T14109]  get_tree_bdev+0x1f/0x30
[  197.861808][T14109]  ext4_get_tree+0x1c/0x30
[  197.861844][T14109]  vfs_get_tree+0x56/0x1e0
[  197.861879][T14109]  do_new_mount+0x227/0x690
[  197.861915][T14109]  path_mount+0x49b/0xb30
[  197.861950][T14109]  __se_sys_mount+0x27c/0x2d0
[  197.861987][T14109]  __x64_sys_mount+0x67/0x80
[  197.862022][T14109]  x64_sys_call+0x2c84/0x2dc0
[  197.862049][T14109]  do_syscall_64+0xc9/0x1c0
[  197.862073][T14109]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.862113][T14109] 
[  197.862120][T14109] value changed: 0x00000000fffff3f6 -> 0x0000000100000086
[  197.862138][T14109] 
[  197.862145][T14109] Reported by Kernel Concurrency Sanitizer on:
[  197.862157][T14109] CPU: 0 UID: 0 PID: 14109 Comm: syz.5.2355 Not tainted 6.13.0-rc1-syzkaller-00316-gb5f217084ab3 #0
[  197.862192][T14109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  197.862210][T14109] ==================================================================
[  197.883844][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.893898][T14109] System zones: 
[  197.962227][T14124] FAULT_INJECTION: forcing a failure.
[  197.962227][T14124] name failslab, interval 1, probability 0, space 0, times 0
[  197.966621][T14109] 0-2, 18-18, 34-34
[  197.971161][T14124] CPU: 1 UID: 0 PID: 14124 Comm: syz.2.2364 Not tainted 6.13.0-rc1-syzkaller-00316-gb5f217084ab3 #0
[  197.975471][T14109] 
[  198.196725][T14124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  198.206805][T14124] Call Trace:
[  198.210125][T14124]  <TASK>
[  198.213103][T14124]  dump_stack_lvl+0xf2/0x150
[  198.217814][T14124]  dump_stack+0x15/0x1a
[  198.221998][T14124]  should_fail_ex+0x223/0x230
[  198.226693][T14124]  should_failslab+0x8f/0xb0
[  198.231380][T14124]  __kmalloc_noprof+0xab/0x3f0
[  198.236175][T14124]  ? alloc_pipe_info+0x1cb/0x360
[  198.241149][T14124]  alloc_pipe_info+0x1cb/0x360
[  198.246095][T14124]  splice_direct_to_actor+0x60f/0x670
[  198.251602][T14124]  ? __pfx_direct_splice_actor+0x10/0x10
[  198.257331][T14124]  ? selinux_file_permission+0x327/0x360
[  198.263024][T14124]  do_splice_direct+0xd7/0x150
[  198.267822][T14124]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  198.273752][T14124]  do_sendfile+0x398/0x660
[  198.278185][T14124]  __x64_sys_sendfile64+0x110/0x150
[  198.283399][T14124]  x64_sys_call+0xfbd/0x2dc0
[  198.287999][T14124]  do_syscall_64+0xc9/0x1c0
[  198.292522][T14124]  ? clear_bhb_loop+0x55/0xb0
[  198.297241][T14124]  ? clear_bhb_loop+0x55/0xb0
[  198.301925][T14124]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  198.307873][T14124] RIP: 0033:0x7ff6ae71fed9
[  198.312325][T14124] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  198.331948][T14124] RSP: 002b:00007ff6acd97058 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  198.340613][T14124] RAX: ffffffffffffffda RBX: 00007ff6ae8e5fa0 RCX: 00007ff6ae71fed9
[  198.348599][T14124] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000007
[  198.356580][T14124] RBP: 00007ff6acd970a0 R08: 0000000000000000 R09: 0000000000000000
[  198.364571][T14124] R10: 0000000100000002 R11: 0000000000000246 R12: 0000000000000001
[  198.372558][T14124] R13: 0000000000000000 R14: 00007ff6ae8e5fa0 R15: 00007ffde730d138
[  198.380547][T14124]  </TASK>
[  198.389586][T14109] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.2355: bg 0: block 248: padding at end of block bitmap is not set
[  198.405129][T14109] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.2355: Failed to acquire dquot type 1
[  198.417863][T14109] EXT4-fs (loop5): 1 truncate cleaned up
[  198.423824][T14109] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  198.436826][T14109] ext4 filesystem being mounted at /424/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  198.454191][T14109] EXT4-fs error (device loop5): ext4_lookup:1817: inode #2: comm syz.5.2355: deleted inode referenced: 12
[  198.466025][T14113] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.474756][T14109] EXT4-fs error (device loop5): ext4_lookup:1817: inode #2: comm syz.5.2355: deleted inode referenced: 12
[  198.617500][ T4900] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.