last executing test programs:

4m5.520416814s ago: executing program 0 (id=1571):
sendmsg$TIPC_CMD_GET_LINKS(0xffffffffffffffff, 0x0, 0xc0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000050000000200"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r1}, 0x10)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd2da, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000, 0x0, @perf_bp={0x0}, 0x4, 0xc8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7498, 0x0, 0x1000000000000}, 0x0, 0x7fc, 0xffffffffffffffff, 0x0)
close(0xffffffffffffffff)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r2=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000000)=ANY=[], 0xfdef)

4m5.496166884s ago: executing program 0 (id=1572):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x8000000003, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0x5, 0x800000000003}, 0x115d2, 0xff, 0x10000005, 0x3, 0x3c, 0x8, 0xfffe, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x418484, &(0x7f0000000440), 0x1, 0x775, &(0x7f0000001180)="$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")
open(&(0x7f0000000580)='./file2\x00', 0x6cc42, 0x35)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0x8200e, &(0x7f0000000640)={[{@max_batch_time={'max_batch_time', 0x3d, 0x358}}, {@dax_always}, {@stripe={'stripe', 0x3d, 0x9}}], [{@dont_hash}, {@permit_directio}, {@pcr={'pcr', 0x3d, 0x1e}}, {@dont_measure}, {@subj_type={'subj_type', 0x3d, '*^'}}]}, 0x3, 0x458, &(0x7f0000000940)="$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")
r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r0, 0x2007ffc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0}, 0x18)
gettid()
ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(0xffffffffffffffff, 0x408c5333, &(0x7f0000000580)={0x0, 0x0, 0x0, 'queue0\x00'})
r1 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={<r3=>0xffffffffffffffff})
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
sendmsg$nl_route_sched(r2, &(0x7f0000006280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=@newtaction={0x68, 0x30, 0x1, 0x0, 0x0, {0x0, 0x0, 0x6a00}, [{0x54, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x2}, 0x2, r4}}]}, {0x4, 0xa}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=@newtaction={0x88, 0x30, 0xffff, 0x0, 0x0, {0x0, 0x0, 0x1300}, [{0x74, 0x1, [@m_mirred={0x70, 0x1, 0x0, 0x0, {{0xb}, {0x44, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x4, {{0xffdff7e8}}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x1, 0x0, 0x1, 0x400, 0xfffffff7}, 0x2}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x88}, 0x1, 0x0, 0x0, 0x8000}, 0x0)

4m5.229521816s ago: executing program 0 (id=1576):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000002e80)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r1}, 0x18)
openat(0xffffffffffffff9c, 0x0, 0x141042, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc4042, 0x1d7)
sendfile(r2, r2, 0x0, 0xfffe80)

4m5.042146818s ago: executing program 0 (id=1577):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/power/pm_debug_messages', 0x141b82, 0x0)
write$cgroup_int(r0, &(0x7f0000000000)=0x700, 0x12)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040), 0x80, 0x0)
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000200)=0x4)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000001c0)=ANY=[@ANYRES16=r1, @ANYRESHEX=r3], &(0x7f0000000380)='syzkaller\x00', 0x4, 0x97, &(0x7f0000000480)=""/151, 0x40f00, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff})
syz_open_dev$tty1(0xc, 0x4, 0x2)
sendmsg$inet(r5, &(0x7f0000000d40)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000b40)='?', 0x1}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9, 0x0, 0x0, 0x1000000}, 0x20001)
ioctl$SNAPSHOT_CREATE_IMAGE(r2, 0x40043311, &(0x7f0000000080))
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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")
r6 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r6)
ptrace(0x11, r6)
syz_clone(0xa49a4400, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc)
r7 = open(&(0x7f00000005c0)='./bus\x00', 0x66842, 0x19)
pwritev2(r7, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0xffffffe4}], 0x1, 0x1400, 0x0, 0x0)

4m4.80755875s ago: executing program 0 (id=1582):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a500000008000000"], &(0x7f0000000180)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
r2 = syz_open_procfs(0x0, &(0x7f0000000400)='stack\x00')
pread64(r2, &(0x7f000001a240)=""/102386, 0x18ff2, 0x5)

4m4.284416773s ago: executing program 0 (id=1593):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = gettid()
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff})
r3 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000000340)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x3, 0x0}, &(0x7f00000000c0)="3e5abc6b15f3", 0x0, 0x0, 0x32, 0x2, 0x0})
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000000, @void, @value}, 0x94)
r5 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000003c0), 0x80002, 0x0)
write$vga_arbiter(r5, &(0x7f0000000000)=@other={'trylock', ' ', 'io'}, 0xb)
write$vga_arbiter(r5, 0x0, 0xf)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r6, 0x0, 0x0)
r7 = socket$inet6(0xa, 0x2, 0x0)
r8 = socket$inet_dccp(0x2, 0x6, 0x0)
getsockopt$inet_int(r8, 0x10d, 0xf4, &(0x7f0000010140), &(0x7f00000001c0)=0x4)
sendto$inet6(r7, 0x0, 0x0, 0x810, &(0x7f0000000000)={0xa, 0x5e20, 0x0, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}}, 0x1c)
sendmsg$unix(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000640)='Q', 0x1}], 0x1, &(0x7f0000000080)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r2, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r1, @ANYRESDEC=r1, @ANYRES16=r4, @ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="1c000000000000000100000402000000", @ANYRES16=r2, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r0, @ANYBLOB="0000000018"], 0xa0}, 0x4004881)

4m3.255326571s ago: executing program 32 (id=1593):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = gettid()
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff})
r3 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000000340)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x3, 0x0}, &(0x7f00000000c0)="3e5abc6b15f3", 0x0, 0x0, 0x32, 0x2, 0x0})
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000000, @void, @value}, 0x94)
r5 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000003c0), 0x80002, 0x0)
write$vga_arbiter(r5, &(0x7f0000000000)=@other={'trylock', ' ', 'io'}, 0xb)
write$vga_arbiter(r5, 0x0, 0xf)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r6, 0x0, 0x0)
r7 = socket$inet6(0xa, 0x2, 0x0)
r8 = socket$inet_dccp(0x2, 0x6, 0x0)
getsockopt$inet_int(r8, 0x10d, 0xf4, &(0x7f0000010140), &(0x7f00000001c0)=0x4)
sendto$inet6(r7, 0x0, 0x0, 0x810, &(0x7f0000000000)={0xa, 0x5e20, 0x0, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}}, 0x1c)
sendmsg$unix(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000640)='Q', 0x1}], 0x1, &(0x7f0000000080)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r2, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r1, @ANYRESDEC=r1, @ANYRES16=r4, @ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="1c000000000000000100000402000000", @ANYRES16=r2, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r0, @ANYBLOB="0000000018"], 0xa0}, 0x4004881)

3m44.243426054s ago: executing program 3 (id=1886):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x1)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x3a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
acct(&(0x7f00000001c0)='./file0\x00')
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x1}, 0x8)
sendto$inet6(r0, &(0x7f00000005c0)="f5", 0x1, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0xfffffffc, @rand_addr=' \x01\x00'}, 0x1c)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f00000002c0)={0x0, 0x0, 0x5}, 0x8)
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r4 = socket$can_raw(0x1d, 0x3, 0x1)
getsockopt$CAN_RAW_FD_FRAMES(r4, 0x65, 0x5, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_COMPAT_GET(r5, &(0x7f0000002840)={0x0, 0x0, &(0x7f0000002800)={&(0x7f0000002780)={0x24, 0x0, 0xb, 0x401, 0x0, 0x0, {0x2, 0x0, 0xa}, [@NFTA_COMPAT_NAME={0xd, 0x1, 'rpfilter\x00'}]}, 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x4040010)
sendmsg$inet(r3, &(0x7f0000000780)={&(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10, &(0x7f00000001c0)=[{&(0x7f0000000140)="be", 0x1}], 0x1, &(0x7f0000000080)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac1414aaac14140000000b0014000000000000000000000007"], 0x38}, 0x0)

3m44.149297895s ago: executing program 3 (id=1888):
sendmsg$TIPC_CMD_GET_LINKS(0xffffffffffffffff, 0x0, 0xc0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r1}, 0x10)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd2da, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000, 0x0, @perf_bp={0x0}, 0x4, 0xc8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7498, 0x0, 0x1000000000000}, 0x0, 0x7fc, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
close(r3)
recvmsg$unix(r2, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r4=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000000)=ANY=[], 0xfdef)

3m44.091026225s ago: executing program 3 (id=1889):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r1}, 0x18)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff)

3m43.986532815s ago: executing program 3 (id=1891):
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f00000001c0)={{0x2, 0x4e24, @multicast2}, {0x6, @remote}, 0x8, {0x2, 0x4e20, @private=0xa010100}, 'wlan1\x00'})
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000380)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
munmap(&(0x7f0000002000/0x2000)=nil, 0x2000)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
pwrite64(r2, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0x1)
ioctl$TCSETS(r1, 0x8926, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "bb40af00008000"})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000080)={[{@quota}, {@oldalloc}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@block_validity}, {@noload}], [{@measure}, {@audit}, {@flag='nolazytime'}, {@audit}]}, 0x3, 0x434, &(0x7f0000000940)="$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")
r3 = creat(&(0x7f0000000340)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r4 = open(&(0x7f0000000500)='./bus\x00', 0x0, 0x42)
ioctl$LOOP_SET_STATUS64(r4, 0x4c04, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x13, 0x0, "ef359f41a4ae6dddfbd1ce5d29c2ee5e5c9d000ff8ee09e737ff0edf110ff4eb4b78c66ee677df701905b9aafab4ffffffff00", "cba3d625780820d1cbf7db71038259ca171ce1a311ef97e4298d1e14ef01060000e9009600fdff00000000000000000000000000000000000400", "d300e6d6ae9ef30bea2a004000"})
mkdirat(r3, &(0x7f0000000180)='./file1\x00', 0x2)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r5, &(0x7f00000003c0)='\x00', 0x1, 0x9000)

3m43.606210849s ago: executing program 3 (id=1898):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'lo\x00'}) (async)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r1, 0x0, 0x60, &(0x7f0000000f40)={'filter\x00', 0x10, 0x4, 0x3f0, 0x110, 0x0, 0x0, 0x308, 0x308, 0x308, 0x4, 0x0, {[{{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@random="e5fce0c960bc", @private=0xa010102, @dev={0xac, 0x14, 0x14, 0x1e}, 0xf, 0xffffffff}}}, {{@uncond, 0xc0, 0xe8}, @unspec=@CLASSIFY={0x28, 'CLASSIFY\x00', 0x0, {0x2}}}, {{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@remote, @broadcast, @loopback, 0x1, 0x1}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x440) (async)
syz_io_uring_setup(0x329e, &(0x7f0000000040)={0x0, 0xfd03, 0xc0b}, 0x0, &(0x7f00000002c0)) (async, rerun: 32)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (rerun: 32)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x3c, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0xffff, 0x0, 0x0, 0xfffffffa}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dc9c) (async)
lsetxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='system.posix_acl_access\x00', &(0x7f0000000140)=ANY=[@ANYBLOB="020000001f2d253fe20ce5ba785501193c0801000600000000080004000000000000001097f385255730"], 0x24, 0x2)
lchown(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) (async)
openat$selinux_context(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe80000000000000875a65969ff57b00000000000000000000000000ac1414aa2c"], 0xfdef) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001e80)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94) (async)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000100)=ANY=[@ANYRESDEC=r2, @ANYRESDEC=r3], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x5, 0xb68, 0x1300, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

3m42.882156254s ago: executing program 3 (id=1905):
sendmsg(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="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"], 0x208}, 0x0)
socketpair(0x1, 0x5, 0x0, &(0x7f0000000240)={<r0=>0xffffffffffffffff})
sendmsg(r0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[], 0x208}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, 0x0, &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
request_key(&(0x7f0000000340)='user\x00', &(0x7f0000000380)={'syz', 0x3}, 0x0, 0x0)
socket$inet6(0xa, 0x6, 0x1ff)
socket$nl_generic(0x10, 0x3, 0x10)
mount_setattr(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0x68, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={0x0}, 0x0, 0x0, 0x800000, 0x0, 0x1000, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000180)={0x0, 0x2000000, 0x0, 0x0, 0xa, "ff00f7000000000000070000003a9d00"})
r2 = syz_open_pts(r1, 0x141601)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
write(r2, &(0x7f0000000400)="d55a415d16ee75bd2389916c1e54261c0794e33e90870d67d0fbb5f86f58895b5a911b708be710d773a248382165999578d3f3fb1ba62f0b782b1c37a1adcbb241fb0e47b7241c87d13e8925fd062a092fe895087a82c5161b8fadd56a47971b7012e5dde952851dd9a188ac24476be6442fd70c2552050ae12f956b581fe388", 0xefe6584e)
syz_mount_image$msdos(&(0x7f00000003c0), &(0x7f0000000340)='.\x00', 0x126a4b5, &(0x7f0000001280)=ANY=[], 0x6, 0x0, &(0x7f0000000000))

3m42.851748114s ago: executing program 33 (id=1905):
sendmsg(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="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"], 0x208}, 0x0)
socketpair(0x1, 0x5, 0x0, &(0x7f0000000240)={<r0=>0xffffffffffffffff})
sendmsg(r0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[], 0x208}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, 0x0, &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
request_key(&(0x7f0000000340)='user\x00', &(0x7f0000000380)={'syz', 0x3}, 0x0, 0x0)
socket$inet6(0xa, 0x6, 0x1ff)
socket$nl_generic(0x10, 0x3, 0x10)
mount_setattr(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0x68, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={0x0}, 0x0, 0x0, 0x800000, 0x0, 0x1000, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000180)={0x0, 0x2000000, 0x0, 0x0, 0xa, "ff00f7000000000000070000003a9d00"})
r2 = syz_open_pts(r1, 0x141601)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
write(r2, &(0x7f0000000400)="d55a415d16ee75bd2389916c1e54261c0794e33e90870d67d0fbb5f86f58895b5a911b708be710d773a248382165999578d3f3fb1ba62f0b782b1c37a1adcbb241fb0e47b7241c87d13e8925fd062a092fe895087a82c5161b8fadd56a47971b7012e5dde952851dd9a188ac24476be6442fd70c2552050ae12f956b581fe388", 0xefe6584e)
syz_mount_image$msdos(&(0x7f00000003c0), &(0x7f0000000340)='.\x00', 0x126a4b5, &(0x7f0000001280)=ANY=[], 0x6, 0x0, &(0x7f0000000000))

17.17803882s ago: executing program 6 (id=4909):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f00000003c0)=ANY=[@ANYRESOCT], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x4b, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r0}, 0x10)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff"], 0x15)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r2, &(0x7f0000000100)={0xa, 0x0, 0x4, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000080008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4, 0x0, 0xfffffffffffffffe}, 0x18)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000001480)=ANY=[@ANYBLOB="3801000010001307000000000000000020010000000000000000000000000000ff01000000000000000000000000000100000000000000000a00000067000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000000004d032000000ac141400000000000000000000000000fdffffffffffffff000000000000000000000000000000000000000000000000000000000000005e650000000000000000000000000000000000000000000000040000000000000000000000020000000000000000000000000010000000000000000000000000000000000026bd70000000000002000400000000000000000048000200656362286369706865725f6e756c6c2900"/240], 0x138}, 0x1, 0x0, 0x0, 0x20000011}, 0x0)
socket$inet6_sctp(0xa, 0x801, 0x84)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clock_adjtime(0x0, &(0x7f0000000000)={0x66b9, 0x80000002, 0x0, 0x2, 0x2, 0x20800, 0x3, 0x3, 0x0, 0x0, 0x2, 0x248a, 0xa, 0x0, 0xfffffffffffffffe, 0x0, 0x1, 0xf, 0x0, 0x9, 0x5999, 0x1, 0x0, 0x0, 0x2be})
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r6}, &(0x7f0000000580), &(0x7f00000005c0)=r7}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
r8 = socket$netlink(0x10, 0x3, 0xc)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r8, 0x10e, 0x1, &(0x7f0000000040)=0x7, 0x4)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a30000000002c000000030a01020000000000000000010000000900010073797a30000000000900030073797a310000000038000000030a01040000000000000000010000010900030073797a32000000000c00024000000000000000010900010073797a300000000014000000110001"], 0xac}, 0x1, 0x0, 0x0, 0x8040}, 0x0)

17.13903394s ago: executing program 6 (id=4912):
ioctl$TUNSETVNETBE(0xffffffffffffffff, 0x400454de, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
syz_emit_ethernet(0x2a, &(0x7f0000000100)=ANY=[@ANYBLOB="0180c20000000180c2000000080045aa098a53611b00001c00660000001190780800001ce0000001000017c100089078"], 0x0)

17.08498821s ago: executing program 6 (id=4913):
pipe(0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={0x0, r0}, 0x18)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000002140)={0x0, &(0x7f00000000c0)})
syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r1}, &(0x7f0000000380), &(0x7f00000003c0)=r2}, 0x20)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
syz_mount_image$iso9660(&(0x7f0000000180), &(0x7f0000000100)='./file0\x00', 0x14c0e, &(0x7f0000000b40)=ANY=[@ANYBLOB="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"], 0xfd, 0x6b1, &(0x7f0000001f80)="$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")
open_by_handle_at(0xffffffffffffff9c, &(0x7f0000000080)=ANY=[@ANYBLOB="1600000002000000"], 0x0)

17.043981991s ago: executing program 6 (id=4914):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000020000000c"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000200)='tlb_flush\x00', r1}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x30dd3000)
mremap(&(0x7f0000378000/0x3000)=nil, 0x3000, 0x2000, 0x0, &(0x7f0000616000/0x2000)=nil)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000008c0)={0x18, 0x2, &(0x7f0000000380)=ANY=[@ANYBLOB="911042000000000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x48, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200001, @void, @value}, 0x94) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000008c0)={0x18, 0x2, &(0x7f0000000380)=ANY=[@ANYBLOB="911042000000000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x48, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200001, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000240)={[{@grpquota}, {@auto_da_alloc}, {@minixdf}]}, 0x1, 0x50c, &(0x7f0000000ac0)="$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")
truncate(0x0, 0xf0ffff) (async)
truncate(0x0, 0xf0ffff)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./bus\x00', 0x441, 0x14a)
fallocate(r2, 0x10, 0x3, 0x7c27)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94) (async)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3, 0x0, 0x7}, 0x18)
memfd_create(&(0x7f00000000c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x2) (async)
r4 = memfd_create(&(0x7f00000000c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x2)
write$binfmt_script(r4, &(0x7f0000000300)={'#! ', './file0'}, 0xb)
execveat(r4, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
open(&(0x7f0000000080)='./file1\x00', 0x64842, 0x86)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000400b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
fsopen(&(0x7f0000000300)='nsfs\x00', 0x1) (async)
fsopen(&(0x7f0000000300)='nsfs\x00', 0x1)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
creat(&(0x7f0000000240)='./bus\x00', 0xc2)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0) (async)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000000001c000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78) (async)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000000001c000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000680)={[{@nolazytime}, {@lazytime}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@bsdgroups}, {@lazytime}, {@noload}]}, 0x3, 0x45c, &(0x7f0000002400)="$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") (async)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000680)={[{@nolazytime}, {@lazytime}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@bsdgroups}, {@lazytime}, {@noload}]}, 0x3, 0x45c, &(0x7f0000002400)="$eJzs3MtvG8UfAPDv+pG+m/yq/oA+gCBAlAJJk5bSAxcQSBxAQoJDOYYkrUrdBjVBIlUFBaFyRJU4cUEckfgLOMEFASckLhzgjipVqJcWTkYb76a2a+dVP0j9+UjrzuyuO/P1ztizM7EDGFij6UMSsTMifo+I4Vq28YTR2j+3blya/vvGpekkqtU3/kpK6eGbNy5N56fmz9uRZ0oRhU+SONCi3PnFi2enKpXZC1l+fOHcu+PzixefOXNu6vTs6dnzkydOHDs68dzxyWc7Emca1839H8wd3PfKW1dfmz559e2fvkny+Jvi6JDRlQ4+Xq12uLj+2lWXrrUMNoNirZtGean/D0cxbl+84Xj5475WDuiqarVava/94ctV4B6WRL9rAPRH/kGf3v/mW4+GHv8J11+o3QClcd/KttqRUhSyc8pN97edNBoRJy//82W6RXfmIQAAGnyXjn+ebjX+K0T9vNDubA1lJCL+FxF7IuJ4ROyNiP9HLJ17f0Q8sM7ymxdJ7hz/FK5tKLA1Ssd/z2drW43jv3z0FyPFLLdrKf5ycupMZfZI9pocivKWND+xQhnfv/TrZ+2O1Y//0i0tPx8LZvW4VtrS+JyZqYWpu4m53vWPIvaXWsWfLK8EJBGxLyL2b7CMM4e/Ptju2Orxr6AD60zVryKeqF3/y9EUfy5ZeX1yfGtUZo+M563iTj//cuX1duXfVfwdkF7/7S3b/3L8I0n9eu38ev73L55MH6/88Wnbe5qNtv+h5M2Gfe9PLSxcmIgYSl6tVbp+/2TTeZO3z0/jP/Ro6/6/J26/EgciIm3ED0bEQxHxcFb3R37bveqr8OOLj72z8fi7K41/Zu3XvzockTeExaHIEst7WieKZ3/4tqHQkdbx7257/Y8tpQ5le9by/reWeq23NQMAAMBmVYiInZEUxpbThcLYWO1v+PfG9kJlbn7hqVNz752fqX1HYCTKhXyma7huPnQiu63P85NN+aPZvPHnxW1L+bHpucpMv4OHAbejTf9P/Vnsd+2ArvN9LRhc+j8MLv0fBted/X9rX+oB9F6Lz/9t/agH0Hutxv8fruWJOztfF6C3mvq/ZT8YIOb/YHBtpP97z4B7Q2mln2we6mlVgN6Z3xarf0leYjMl8l+u6UYR5bS1HI6IxYtR6HukEl1M9PudCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoDP+DQAA//+CSeFs")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000003c0)='kmem_cache_free\x00', r6}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
execveat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1000)
r8 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x0)
ioctl$EVIOCGRAB(r8, 0x40044590, &(0x7f0000000200)) (async)
ioctl$EVIOCGRAB(r8, 0x40044590, &(0x7f0000000200))

16.502075455s ago: executing program 6 (id=4923):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000040000000030a01020000000000000000010000000900030073797a320000000014000480080002400000000008000140000000050900010073797a31000000004c000000050a01020000100000000000010020000c00024000000000000000010900010073797a310000000020000480140003006e657464657673696d300000000000000800014000000005"], 0xd4}, 0x1, 0x0, 0x0, 0x20000041}, 0x0)

1.928286016s ago: executing program 4 (id=5146):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], 0x1, 0x120b, &(0x7f0000002300)="$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")
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000004000000850000002300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r0}, 0x10)
linkat(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x1000)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r2}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

1.488682089s ago: executing program 4 (id=5157):
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x1008002, &(0x7f0000000100)={[{@grpquota}, {@delalloc}, {@resuid}, {@debug}, {@dioread_nolock}, {@jqfmt_vfsold}, {@nomblk_io_submit}, {@noauto_da_alloc}]}, 0x1, 0x5d8, &(0x7f00000005c0)="$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")
r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x201, 0x2)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r0, 0x0)
process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
open(&(0x7f00000005c0)='./bus\x00', 0x66842, 0x19)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x145142, 0x0)
r2 = fsopen(&(0x7f0000000080)='proc\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000180)='rootcontext', &(0x7f0000000040)='E\xe1\x85\x00', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0100000005000000e27f00000100000000000000", @ANYRES32, @ANYBLOB="000001000000d22bd9", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{}, &(0x7f0000000400), 0x0}, 0x20)
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
bpf$MAP_CREATE(0x1900000000000000, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000020000000000000", @ANYRES32, @ANYBLOB="000400"/18, @ANYRES32], 0x50)
pipe2$9p(&(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r4, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r5 = dup(r4)
write$P9_RLERRORu(r5, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r5, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r5, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f00000002c0)='kfree\x00', r7}, 0x18)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r5])
creat(&(0x7f0000000380)='./file0\x00', 0x80)
sendfile(r1, r1, 0x0, 0x800000009)

1.31381231s ago: executing program 5 (id=5161):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{}, &(0x7f0000000400), 0x0}, 0x20)
bpf$MAP_CREATE(0x1900000000000000, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000020000000000000", @ANYRES32, @ANYBLOB="000400"/17], 0x50)
pipe2$9p(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r3 = dup(r2)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
creat(&(0x7f0000000380)='./file0\x00', 0x80)

1.235615361s ago: executing program 5 (id=5164):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000080000000600"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xd, &(0x7f0000000780)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x2, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x18, 0x7, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000e50003000000000085100000fcffffff250000001000000006000000faffffff95"], &(0x7f0000000140)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000, @void, @value}, 0x94)

1.174552201s ago: executing program 2 (id=5165):
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
keyctl$unlink(0x9, 0x0, 0xffffffffffffffff)
socket$netlink(0x10, 0x3, 0x10)
memfd_create(0x0, 0x7)
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r2, 0x1, 0x70bd25, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x4040)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r3, &(0x7f0000000140)={0x0, 0x2, &(0x7f0000000100)=[{&(0x7f0000000180)="5c00000013006bcd9e3fe3dc4e48aa31086b8703410000004000000000000000040014000d000a00100000009ee517d34460bc08eab556a705251e6182949a3651f60a84c9f5d1938837e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)

1.144440631s ago: executing program 4 (id=5166):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xb1082b, &(0x7f0000000140)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@block_validity}], [{@dont_measure}]}, 0x1, 0x506, &(0x7f0000000fc0)="$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")
setreuid(0xffffffffffffffff, 0xee00)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000100)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000011c0)={0x11, 0x10, &(0x7f0000000600)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}]}, &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000000c0)='kmem_cache_free\x00', r1, 0x0, 0x8}, 0x18)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000040), r2)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)={0x14, r6, 0xf0b, 0x0, 0x0, {0x22}}, 0x14}}, 0x0)
sendmsg$ETHTOOL_MSG_WOL_SET(r4, &(0x7f00000004c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000480)={&(0x7f0000000280)={0x88, r6, 0x800, 0x70bd27, 0x25dfdbfc, {}, [@ETHTOOL_A_WOL_SOPASS={0x72, 0x3, "6d9dee543c4050e47a751e894c564d57e182e4249451f016daa589f7dcc4186f1f9d3865239a17ce184033869ea4f48af98728a72adcc49cfe2c3c5498b6beba549775f9d02fb25b8b38c53f6fcaa1a696626f116073c700bace75615ac5ee36db00a918e44fdb5961ca9687532f"}]}, 0x88}, 0x1, 0x0, 0x0, 0x800}, 0x10)
sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r3], 0x68}}, 0x0)
write$binfmt_register(0xffffffffffffffff, &(0x7f0000000000)={0x3a, 'syz0', 0x3a, 'E', 0x3a, 0x7, 0x3a, 'M', 0x3a, '4', 0x3a, './file2', 0x3a, [0x46]}, 0x2a)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000380)={{{@in, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0}}, {{@in=@loopback}, 0x0, @in=@broadcast}}, 0x0)
setfsuid(r7)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x107042, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000240)={0x3920e, r8, 0x0, 0x0, 0x2})
utimensat(0xffffffffffffffff, &(0x7f0000000040)='./bus\x00', &(0x7f00000000c0)={{}, {0x0, 0xea60}}, 0x100)
lchown(&(0x7f00000006c0)='./file0\x00', 0x0, 0xee01)
lchown(&(0x7f0000000340)='./file0\x00', 0x0, 0x0)

1.106324121s ago: executing program 5 (id=5167):
bpf$MAP_CREATE(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0100000004000000e27f00000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000000000000000000000b455ce80f07da7aadee8f675e9e99e60d36679fa74ff7285bf98619154c25cebd9baf8cb97e057d7b3b55c4e44c958e05b5b6f442b0f3dbadf4b64b23a18b5aa5396093c9ebee948fdb79cf736c9f408654133ff36b39391564daf5e8f27c8a6a10b4dd5d5eb312553a5b0badb4e3819792cbec39a21d862308ccdef0086c065ad12754587c93208ecfc95cce3386d6f29d553490cef463f1098b34d055b64a52d58d6df8a4e484a6e97a3cb509a11f4ae864d2c96fe5e2611dee1f9b40160035bdcd33eaaa76793dfbe6093fb92041dfbbad70f081f562a510b9be7f6f24d5b5b0da0e92dfe07577293b252d1c97b51a1de1b25"], 0x48)
r0 = getpgrp(0x0)
r1 = syz_pidfd_open(r0, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
unshare(0x8040600)
process_madvise(r1, 0x0, 0x0, 0x1, 0x0)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
syz_usb_connect$uac1(0x1, 0xe6, &(0x7f00000005c0)=ANY=[@ANYBLOB="12011001000000106b1d01014000010203010902d40a030109f0010904000000010100000a24010f0004020102092430680e7908050004ea167e0924030100010504330f2406060006000700070033082405040887c57b0b240504093d897ea586da09040100000102000009040101010102000007240106ff04000924020106010600f809050109000402010b072501820d010009040200000102000009040201010102000009240202cc00200006112402020f0000020fd5d06bf30f1855240c24020108020900205b5c1f0b24020180010003669408090582090800fe0703072501000303008c0bc0606f4f9fab52b07de6f051b6c5e6af0000008f26588e40aa415cae03a77ddc6b52046c1d99596c1ff1c4d6a69df376b32d667e6ed4c001a824234231977d61de9b66cb912bdf93da9f57ceff954ed54ece2ce117802bff4d2c5ab6c48a5c52d748d137448ec0297f9ff8557505bef29a219399cb6384e06eccddaad4d320abb0fc1c85494cd456e5e94f5dbbca26583fefcadfe029bef8672685345764b140dc82d3fc85b4ce417797c64491f79f92c645da594e9a12483788370024b448e1e5817947e79c"], &(0x7f00000003c0)={0xa, &(0x7f0000000080)={0xa, 0x6, 0x310, 0xa, 0x7b, 0x1, 0xff, 0xd}, 0x19, &(0x7f0000000180)={0x5, 0xf, 0x19, 0x1, [@ss_container_id={0x14, 0x10, 0x4, 0x8, "2d9c9bebacd70553feaaf07d642f952c"}]}, 0x3, [{0x4, &(0x7f00000001c0)=@lang_id={0x4, 0x3, 0x41f}}, {0x4, &(0x7f0000000200)=@lang_id={0x4, 0x3, 0x80a}}, {0x4, &(0x7f0000000380)=@lang_id={0x4, 0x3, 0x405}}]})
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
pipe(&(0x7f0000000200)={<r7=>0xffffffffffffffff})
splice(r7, 0x0, r6, 0x0, 0x7f, 0xe)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0b000000070000000100010009"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000008c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000740)='scsi_dispatch_cmd_start\x00', r9}, 0x10)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
kcmp$KCMP_EPOLL_TFD(r0, r0, 0x7, r4, &(0x7f0000000580)={r7, r5, 0xf88})
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
accept4$nfc_llcp(0xffffffffffffffff, &(0x7f00000004c0), &(0x7f0000000400)=0x60, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000900)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0xfffffffc, 0x0, 0x0, 0x40f00, 0x42, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6, @void, @value}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000002e40)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r10, 0x0, 0xffffffffffffffff}, 0x13)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})

1.031680212s ago: executing program 6 (id=5169):
bpf$MAP_CREATE(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0100000004000000e27f00000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="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"], 0x48)
r0 = getpgrp(0x0)
r1 = syz_pidfd_open(r0, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
unshare(0x8040600)
process_madvise(r1, 0x0, 0x0, 0x1, 0x0)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
syz_usb_connect$uac1(0x1, 0xe6, &(0x7f00000005c0)=ANY=[@ANYBLOB="12011001000000106b1d01014000010203010902d40a030109f0010904000000010100000a24010f0004020102092430680e7908050004ea167e0924030100010504330f2406060006000700070033082405040887c57b0b240504093d897ea586da09040100000102000009040101010102000007240106ff04000924020106010600f809050109000402010b072501820d010009040200000102000009040201010102000009240202cc00200006112402020f0000020fd5d06bf30f1855240c24020108020900205b5c1f0b24020180010003669408090582090800fe0703072501000303008c0bc0606f4f9fab52b07de6f051b6c5e6af0000008f26588e40aa415cae03a77ddc6b52046c1d99596c1ff1c4d6a69df376b32d667e6ed4c001a824234231977d61de9b66cb912bdf93da9f57ceff954ed54ece2ce117802bff4d2c5ab6c48a5c52d748d137448ec0297f9ff8557505bef29a219399cb6384e06eccddaad4d320abb0fc1c85494cd456e5e94f5dbbca26583fefcadfe029bef8672685345764b140dc82d3fc85b4ce417797c64491f79f92c645da594e9a12483788370024b448e1e5817947e79c"], &(0x7f00000003c0)={0xa, &(0x7f0000000080)={0xa, 0x6, 0x310, 0xa, 0x7b, 0x1, 0xff, 0xd}, 0x19, &(0x7f0000000180)={0x5, 0xf, 0x19, 0x1, [@ss_container_id={0x14, 0x10, 0x4, 0x8, "2d9c9bebacd70553feaaf07d642f952c"}]}, 0x3, [{0x4, &(0x7f00000001c0)=@lang_id={0x4, 0x3, 0x41f}}, {0x4, &(0x7f0000000200)=@lang_id={0x4, 0x3, 0x80a}}, {0x4, &(0x7f0000000380)=@lang_id={0x4, 0x3, 0x405}}]})
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
pipe(&(0x7f0000000200)={<r7=>0xffffffffffffffff})
splice(r7, 0x0, r6, 0x0, 0x7f, 0xe)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0b000000070000000100010009000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000008c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000740)='scsi_dispatch_cmd_start\x00', r9}, 0x10)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
kcmp$KCMP_EPOLL_TFD(r0, r0, 0x7, r4, &(0x7f0000000580)={r7, r5, 0xf88})
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
accept4$nfc_llcp(0xffffffffffffffff, &(0x7f00000004c0), &(0x7f0000000400)=0x60, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000900)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0xfffffffc, 0x0, 0x0, 0x40f00, 0x42, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6, @void, @value}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000002e40)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r10, 0x0, 0xffffffffffffffff}, 0x13)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})

1.031187852s ago: executing program 4 (id=5170):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e0000000400000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000007000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r1, 0x0, 0xffffffffffffffff}, 0x18)
r2 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r2, 0x11b, 0x4, &(0x7f00000000c0)={0x0, 0x232000, 0x1000}, 0x20)

992.760182ms ago: executing program 34 (id=5169):
bpf$MAP_CREATE(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0100000004000000e27f00000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000000000000000000000b455ce80f07da7aadee8f675e9e99e60d36679fa74ff7285bf98619154c25cebd9baf8cb97e057d7b3b55c4e44c958e05b5b6f442b0f3dbadf4b64b23a18b5aa5396093c9ebee948fdb79cf736c9f408654133ff36b39391564daf5e8f27c8a6a10b4dd5d5eb312553a5b0badb4e3819792cbec39a21d862308ccdef0086c065ad12754587c93208ecfc95cce3386d6f29d553490cef463f1098b34d055b64a52d58d6df8a4e484a6e97a3cb509a11f4ae864d2c96fe5e2611dee1f9b40160035bdcd33eaaa76793dfbe6093fb92041dfbbad70f081f562a510b9be7f6f24d5b5b0da0e92dfe07577293b252d1c97b51a1de1b25"], 0x48)
r0 = getpgrp(0x0)
r1 = syz_pidfd_open(r0, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
unshare(0x8040600)
process_madvise(r1, 0x0, 0x0, 0x1, 0x0)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
syz_usb_connect$uac1(0x1, 0xe6, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], &(0x7f00000003c0)={0xa, &(0x7f0000000080)={0xa, 0x6, 0x310, 0xa, 0x7b, 0x1, 0xff, 0xd}, 0x19, &(0x7f0000000180)={0x5, 0xf, 0x19, 0x1, [@ss_container_id={0x14, 0x10, 0x4, 0x8, "2d9c9bebacd70553feaaf07d642f952c"}]}, 0x3, [{0x4, &(0x7f00000001c0)=@lang_id={0x4, 0x3, 0x41f}}, {0x4, &(0x7f0000000200)=@lang_id={0x4, 0x3, 0x80a}}, {0x4, &(0x7f0000000380)=@lang_id={0x4, 0x3, 0x405}}]})
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
pipe(&(0x7f0000000200)={<r7=>0xffffffffffffffff})
splice(r7, 0x0, r6, 0x0, 0x7f, 0xe)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0b000000070000000100010009000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000008c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000740)='scsi_dispatch_cmd_start\x00', r9}, 0x10)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
kcmp$KCMP_EPOLL_TFD(r0, r0, 0x7, r4, &(0x7f0000000580)={r7, r5, 0xf88})
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
accept4$nfc_llcp(0xffffffffffffffff, &(0x7f00000004c0), &(0x7f0000000400)=0x60, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000900)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0xfffffffc, 0x0, 0x0, 0x40f00, 0x42, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6, @void, @value}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000002e40)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r10, 0x0, 0xffffffffffffffff}, 0x13)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})

990.473363ms ago: executing program 4 (id=5172):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x59, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r0}, 0x18)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1817c1, 0x0)
mount(0x0, &(0x7f00000006c0)='./file0\x00', 0x0, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x80}}, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='sys_enter\x00', r2, 0x0, 0x10001}, 0x18)
shmdt(0x0)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r3, &(0x7f0000000140)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r3, &(0x7f0000000340)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x1f}}, 0x10)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a000000020000000110000007"], 0x50)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000700000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0xb, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r5}, 0x10)
r6 = openat$selinux_context(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$selinux_context(r6, &(0x7f0000000340)='system_u:object_r:hugetlbfs_t:s0\x00', 0x1d)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r4}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r7 = socket$netlink(0x10, 0x3, 0x0)
r8 = socket$netlink(0x10, 0x3, 0x0)
r9 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r9, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r9, &(0x7f0000000100)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r10, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0)
sendmsg$nl_route(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)=ANY=[@ANYBLOB="4000000010001ffffcffffff0000000000000000", @ANYRES32=0x0, @ANYBLOB="0000000010240000180012800e0001007769726567756172640000000400028008000a00", @ANYRES32=r10], 0x40}}, 0x4000)

934.044593ms ago: executing program 1 (id=5173):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000940)}], 0x1}, 0x0)

890.391283ms ago: executing program 1 (id=5174):
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800"], 0x64}}, 0x0)
dup(0xffffffffffffffff)
perf_event_open(&(0x7f0000000140)={0x2, 0xfffffffffffffe84, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x6, 0x8b, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x2, 0x800000000003}, 0x1321, 0xffffffff, 0x8, 0x3, 0x4, 0x1088f109, 0xfffb, 0x0, 0x0, 0x0, 0x96}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
unshare(0x44040200)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x8031, 0xffffffffffffffff, 0xc6ed4000)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = dup(r1)
write$UHID_INPUT(r2, &(0x7f0000000a00)={0xf, {"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", 0xfffffffffffffd6a}}, 0x1006)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000700002c0000000000000004850000002a00000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x18)
socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x100020, 0x0, 0x0, 0x6, 0x3, 0x0, 0xa, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r4, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000540)='./file0\x00', 0x8000, &(0x7f0000000080)=ANY=[], 0x0, 0x321, &(0x7f0000000580)="$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")
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x7, 0x590, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x9, 0xa5d4}, 0x4c58, 0x0, 0x0, 0x1, 0x8, 0x2, 0xb, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000003, 0x13, r6, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x207, &(0x7f0000000000), 0x1, 0x469, &(0x7f0000000100)="$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")
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000000c80)=@raw={'raw\x00', 0x3c1, 0x3, 0x4c0, 0x2e0, 0x940c, 0x3002, 0x2e0, 0x2c0, 0x3f0, 0x3d8, 0x3d8, 0x3f0, 0x3d8, 0x3, 0x0, {[{{@uncond, 0x0, 0x298, 0x2e0, 0x4001, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x4001, 0x1, 0x3, 'syz0\x00'}}, @common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x2, 0x0, 'syz0\x00'}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@loopback, 'virt_wifi0\x00'}}}, {{@uncond, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x1, 0xbe, {0x565159d7}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x520)

714.957255ms ago: executing program 2 (id=5175):
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{}, &(0x7f0000000400), 0x0}, 0x20)
bpf$MAP_CREATE(0x1900000000000000, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000020000000000000", @ANYRES32, @ANYBLOB="000400"/18, @ANYRES32], 0x50)
pipe2$9p(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r3 = dup(r2)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
creat(&(0x7f0000000380)='./file0\x00', 0x80)

604.023765ms ago: executing program 2 (id=5176):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{}, &(0x7f0000000400), 0x0}, 0x20)
bpf$MAP_CREATE(0x1900000000000000, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000020000000000000", @ANYBLOB="000400"/17], 0x50)
pipe2$9p(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r3 = dup(r2)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
creat(&(0x7f0000000380)='./file0\x00', 0x80)

566.957805ms ago: executing program 2 (id=5177):
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x0)
pipe2$9p(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004"], 0x15)
r3 = dup(r2)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])

482.823826ms ago: executing program 5 (id=5178):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f00000003c0)=ANY=[@ANYRESOCT], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x4b, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r0}, 0x10)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff"], 0x15)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r2, &(0x7f0000000100)={0xa, 0x0, 0x4, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000080008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4, 0x0, 0xfffffffffffffffe}, 0x18)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000001480)=ANY=[@ANYBLOB="3801000010001307000000000000000020010000000000000000000000000000ff01000000000000000000000000000100000000000000000a00000067000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000000004d032000000ac141400000000000000000000000000fdffffffffffffff000000000000000000000000000000000000000000000000000000000000005e650000000000000000000000000000000000000000000000040000000000000000000000020000000000000000000000000010000000000000000000000000000000000026bd70000000000002000400000000000000000048000200656362286369706865725f6e756c6c2900"/240], 0x138}, 0x1, 0x0, 0x0, 0x20000011}, 0x0)
socket$inet6_sctp(0xa, 0x801, 0x84)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clock_adjtime(0x0, &(0x7f0000000000)={0x66b9, 0x80000002, 0x0, 0x2, 0x2, 0x20800, 0x3, 0x3, 0x0, 0x0, 0x2, 0x248a, 0xa, 0x0, 0xfffffffffffffffe, 0x0, 0x1, 0xf, 0x0, 0x9, 0x5999, 0x1, 0x0, 0x0, 0x2be})
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r6}, &(0x7f0000000580), &(0x7f00000005c0)=r7}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
r8 = socket$netlink(0x10, 0x3, 0xc)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r8, 0x10e, 0x1, &(0x7f0000000040)=0x7, 0x4)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a30000000002c000000030a01020000000000000000010000000900010073797a30000000000900030073797a310000000038000000030a01040000000000000000010000010900030073797a32000000000c00024000000000000000010900010073797a300000000014000000110001"], 0xac}, 0x1, 0x0, 0x0, 0x8040}, 0x0)

435.368476ms ago: executing program 1 (id=5179):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000080000000600"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xd, &(0x7f0000000780)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x2, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x18, 0x7, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000e50003000000000085100000fcffffff250000001000000006000000faffffff95"], &(0x7f0000000140)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000, @void, @value}, 0x94)

434.654296ms ago: executing program 2 (id=5180):
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x1008002, &(0x7f0000000100)={[{@grpquota}, {@delalloc}, {@resuid}, {@debug}, {@dioread_nolock}, {@jqfmt_vfsold}, {@nomblk_io_submit}, {@noauto_da_alloc}]}, 0x1, 0x5d8, &(0x7f00000005c0)="$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")
r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x201, 0x2)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r0, 0x0)
process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
open(&(0x7f00000005c0)='./bus\x00', 0x66842, 0x19)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x145142, 0x0)
r2 = fsopen(&(0x7f0000000080)='proc\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000180)='rootcontext', &(0x7f0000000040)='E\xe1\x85\x00', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0100000005000000e27f00000100000000000000", @ANYRES32, @ANYBLOB="000001000000d22bd9", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{}, &(0x7f0000000400), 0x0}, 0x20)
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
bpf$MAP_CREATE(0x1900000000000000, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000020000000000000", @ANYRES32, @ANYBLOB="000400"/18, @ANYRES32], 0x50)
pipe2$9p(&(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r4, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r5 = dup(r4)
write$P9_RLERRORu(r5, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r5, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r5, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f00000002c0)='kfree\x00', r7}, 0x18)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r5])
creat(&(0x7f0000000380)='./file0\x00', 0x80)
sendfile(r1, r1, 0x0, 0x800000009)

310.185267ms ago: executing program 5 (id=5181):
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r0}, 0x18)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{}, &(0x7f0000000400), 0x0}, 0x20)
bpf$MAP_CREATE(0x1900000000000000, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000020000000000000", @ANYRES32, @ANYBLOB="000400"/18, @ANYRES32], 0x50)
pipe2$9p(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff01800400080039503230"], 0x15)
r3 = dup(r2)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
r4 = creat(&(0x7f0000000380)='./file0\x00', 0x80)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='kfree\x00', r5, 0x0, 0xfffffffffffffffd}, 0x18)
write$qrtrtun(r4, &(0x7f0000000780)="fb", 0x1)

249.654028ms ago: executing program 5 (id=5182):
r0 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_INIT(r0, 0x29, 0xc8, &(0x7f00000001c0), 0x4)
r1 = io_uring_setup(0x35ab, &(0x7f00000000c0)={0x0, 0x4f9e, 0x40, 0x1, 0x32e})
r2 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @rand_addr, 0x1}, 0x1c)
bpf$MAP_CREATE(0x0, &(0x7f0000000d40)=ANY=[@ANYBLOB="049963bca08495ff92703dd0631bd002e1a536900ca9344f84969b6ab0e71bfb3941d348af51ea9db22b80e2c94bbbe5f84a4d255cb8a661d97a54eb19bb7dc5c7a56919aaff7ddfd7462d408cb727011c10422a6e93a18c085d9aaf9974a0b1f35da2dfbf9b39243422197d098089803d55199ba2c23956983a4391a14b0ea1ee07d57c028af0b93155d563034b4b719687ded142d02b73141b0461e02cdf7ab5a41d77e553ced2d49d92f59ec3642eb632715c2644", @ANYRESOCT=r1, @ANYRESDEC=r2, @ANYRESOCT, @ANYRES8, @ANYRESHEX=r0, @ANYRES32=r1, @ANYRESOCT=r1, @ANYRES32], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x0, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
listen(r2, 0x8957)
r4 = getpid()
process_vm_readv(r4, &(0x7f0000008400)=[{0x0}], 0x1, 0x0, 0x0, 0x0)
capset(0x0, 0x0)
r5 = socket$inet_dccp(0x2, 0x6, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
connect$inet(r5, 0x0, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_dccp(0x2, 0x6, 0x0)
r6 = syz_io_uring_setup(0x10d2, &(0x7f0000000480)={0x0, 0x7734, 0x80, 0x0, 0x34f}, &(0x7f00000000c0)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2e, 0x0, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0x50, 0x0, 0x0, 0x0, 0x1})
io_uring_enter(r6, 0x47bd, 0x1cfb, 0x2f, 0x0, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)
setsockopt$MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd1, 0x0, 0x0)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1000000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r9}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x22000406, &(0x7f0000000500)={[{@data_err_abort}, {@noblock_validity}, {@dioread_lock}, {@init_itable}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@noload}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x1, 0x4bf, &(0x7f0000000740)="$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")

248.588948ms ago: executing program 1 (id=5183):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000940)}], 0x1}, 0x0)

190.087128ms ago: executing program 1 (id=5184):
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x1008002, &(0x7f0000000100)={[{@grpquota}, {@delalloc}, {@resuid}, {@debug}, {@dioread_nolock}, {@jqfmt_vfsold}, {@nomblk_io_submit}, {@noauto_da_alloc}]}, 0x1, 0x5d8, &(0x7f00000005c0)="$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")
r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x201, 0x2)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r0, 0x0)
process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x66842, 0x19)
open(&(0x7f0000000040)='./bus\x00', 0x145142, 0x0)
r2 = fsopen(&(0x7f0000000080)='proc\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000180)='rootcontext', &(0x7f0000000040)='E\xe1\x85\x00', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0100000005000000e27f00000100000000000000", @ANYRES32, @ANYBLOB="000001000000d22bd9", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{}, &(0x7f0000000400), 0x0}, 0x20)
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
bpf$MAP_CREATE(0x1900000000000000, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000020000000000000", @ANYRES32, @ANYBLOB="000400"/18, @ANYRES32], 0x50)
pipe2$9p(&(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r4, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r5 = dup(r4)
write$P9_RLERRORu(r5, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r5, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r5, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f00000002c0)='kfree\x00', r7}, 0x18)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r5])
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0xffffffe4}], 0x1, 0x1400, 0x0, 0x0)

159.311029ms ago: executing program 2 (id=5185):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, @void, @value}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1, 0x0, 0x178}, 0x18)
kexec_load(0x0, 0x1, &(0x7f0000000140)=[{0x0, 0x3e00, 0x116094000, 0x41000000}], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYRES64=r2], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000001c0), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x8001, @void, @value}, 0x94)
socket(0xa, 0x3, 0x3a)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000040)={0x4}, 0x8)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xa, 0x2, 0x1001, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r4 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r4, 0x89f0, &(0x7f0000001440)={'bridge0\x00', &(0x7f0000000100)=@ethtool_ringparam={0xe, 0x0, 0x0, 0xfffffffe}})
r5 = add_key$keyring(&(0x7f0000000080), &(0x7f0000001100)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
add_key(&(0x7f0000000040)='asymmetric\x00', 0x0, &(0x7f0000000300)="300e308002", 0x1001, r5)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
r6 = inotify_init()
inotify_add_watch(r6, &(0x7f0000000240)='./file0\x00', 0x8c7)
close(0xffffffffffffffff)
execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r3}, 0x0, 0x0}, 0x20)
r7 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r7}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f0000000180)={'veth0_to_bridge\x00', 0xde02})
preadv(r8, &(0x7f0000000400)=[{&(0x7f00000005c0)=""/257, 0x101}], 0x1, 0x8000, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xc, 0x16, &(0x7f0000000240)=ANY=[@ANYBLOB="61124c00000000006113500000000000bf2000000000000007000000080000003d0301000000000095000000000000006926000000000000bf67000000000000570600000fff07006706000002000000070600000ee60000bf150000000000003d6500000000000065070000020000000707"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)

45.852639ms ago: executing program 4 (id=5186):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f00000003c0)=ANY=[@ANYRESOCT], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x4b, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r0}, 0x10)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff"], 0x15)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r2, &(0x7f0000000100)={0xa, 0x0, 0x4, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000080008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4, 0x0, 0xfffffffffffffffe}, 0x18)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000001480)=ANY=[@ANYBLOB="3801000010001307000000000000000020010000000000000000000000000000ff01000000000000000000000000000100000000000000000a00000067000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000000004d032000000ac141400000000000000000000000000fdffffffffffffff000000000000000000000000000000000000000000000000000000000000005e650000000000000000000000000000000000000000000000040000000000000000000000020000000000000000000000000010000000000000000000000000000000000026bd70000000000002000400000000000000000048000200656362286369706865725f6e756c6c2900"/240], 0x138}, 0x1, 0x0, 0x0, 0x20000011}, 0x0)
socket$inet6_sctp(0xa, 0x801, 0x84)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clock_adjtime(0x0, &(0x7f0000000000)={0x66b9, 0x80000002, 0x0, 0x2, 0x2, 0x20800, 0x3, 0x3, 0x0, 0x0, 0x2, 0x248a, 0xa, 0x0, 0xfffffffffffffffe, 0x0, 0x1, 0xf, 0x0, 0x9, 0x5999, 0x1, 0x0, 0x0, 0x2be})
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r6}, &(0x7f0000000580), &(0x7f00000005c0)=r7}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
r8 = socket$netlink(0x10, 0x3, 0xc)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r8, 0x10e, 0x1, &(0x7f0000000040)=0x7, 0x4)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a30000000002c000000030a01020000000000000000010000000900010073797a30000000000900030073797a310000000038000000030a01040000000000000000010000010900030073797a32000000000c00024000000000000000010900010073797a300000000014000000110001"], 0xac}, 0x1, 0x0, 0x0, 0x8040}, 0x0)

0s ago: executing program 1 (id=5187):
mknod$loop(&(0x7f0000000280)='./file0\x00', 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = fsopen(&(0x7f0000000000)='devpts\x00', 0x0)
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000440)={r0}, 0x8)
setsockopt$inet_sctp_SCTP_NODELAY(r2, 0x84, 0x3, &(0x7f0000000480)=0x7ff, 0x4)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r3 = socket$rxrpc(0x21, 0x2, 0xa)
bind$rxrpc(r3, &(0x7f0000000000)=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x0, @empty}}, 0x24)
r4 = socket$rxrpc(0x21, 0x2, 0xa)
bind$rxrpc(r4, &(0x7f0000000040)=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x4e23, @remote}}, 0x24)

kernel console output (not intermixed with test programs):

][T16393] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  327.774526][T16393] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  327.786346][T16393] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  327.812010][T12517] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  327.884266][T16424] SELinux: syz.4.4542 (16424) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  327.916115][T16427] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  328.042235][T16439] loop5: detected capacity change from 0 to 512
[  328.081313][T16437] loop1: detected capacity change from 0 to 512
[  328.089836][T16437] EXT4-fs warning (device loop1): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  328.101481][T16437] EXT4-fs warning (device loop1): dx_probe:881: Enable large directory feature to access it
[  328.111596][T16437] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.4547: Corrupt directory, running e2fsck is recommended
[  328.127686][T16437] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117
[  328.153759][T16437] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.4547: corrupted in-inode xattr: invalid ea_ino
[  328.167463][T16437] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.4547: couldn't read orphan inode 15 (err -117)
[  328.205377][T16452] SELinux: syz.4.4554 (16452) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  328.313607][T16459] loop4: detected capacity change from 0 to 2048
[  328.428581][T16475] loop4: detected capacity change from 0 to 512
[  328.531668][T16479] netem: change failed
[  328.550926][T16481] SELinux: syz.1.4566 (16481) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  328.592695][   T30] kauditd_printk_skb: 105 callbacks suppressed
[  328.592712][   T30] audit: type=1326 audit(1741928950.099:17350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16485 comm="syz.1.4568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d9264d169 code=0x7ffc0000
[  328.628632][   T30] audit: type=1326 audit(1741928950.127:17351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16485 comm="syz.1.4568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f8d9264d169 code=0x7ffc0000
[  328.652439][   T30] audit: type=1326 audit(1741928950.127:17352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16485 comm="syz.1.4568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d9264d169 code=0x7ffc0000
[  328.676066][   T30] audit: type=1326 audit(1741928950.127:17353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16485 comm="syz.1.4568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f8d9264d169 code=0x7ffc0000
[  328.699688][   T30] audit: type=1326 audit(1741928950.127:17354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16485 comm="syz.1.4568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d9264d169 code=0x7ffc0000
[  328.723308][   T30] audit: type=1326 audit(1741928950.127:17355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16485 comm="syz.1.4568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f8d9264d169 code=0x7ffc0000
[  328.746849][   T30] audit: type=1326 audit(1741928950.127:17356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16485 comm="syz.1.4568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d9264d169 code=0x7ffc0000
[  328.770509][   T30] audit: type=1326 audit(1741928950.127:17357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16485 comm="syz.1.4568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f8d9264d169 code=0x7ffc0000
[  328.794141][   T30] audit: type=1326 audit(1741928950.127:17358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16485 comm="syz.1.4568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d9264d169 code=0x7ffc0000
[  328.817748][   T30] audit: type=1326 audit(1741928950.127:17359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16485 comm="syz.1.4568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f8d9264d169 code=0x7ffc0000
[  328.850492][T16218] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  328.863624][T16218] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  328.892158][T16492] loop6: detected capacity change from 0 to 2048
[  328.893459][T16218] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  328.928625][T16218] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  328.961531][T16492] Alternate GPT is invalid, using primary GPT.
[  328.967934][T16492]  loop6: p1 p2 p3
[  329.067303][T16500] netem: change failed
[  329.098152][T16504] loop2: detected capacity change from 0 to 512
[  329.177393][T16512] SELinux: syz.2.4578 (16512) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  329.241572][T16508] loop1: detected capacity change from 0 to 2048
[  329.286862][T16508]  loop1: p1 < > p4
[  329.292289][T16508] loop1: p4 size 8388608 extends beyond EOD, truncated
[  329.394761][T16523] loop1: detected capacity change from 0 to 164
[  329.444745][T16527] netem: change failed
[  329.472109][T16529] loop1: detected capacity change from 0 to 164
[  329.517358][T16532] loop5: detected capacity change from 0 to 512
[  329.752769][T16541] SELinux: syz.1.4592 (16541) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  329.942610][T16551] 9pnet_fd: Insufficient options for proto=fd
[  330.823626][T16577] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4605'.
[  330.897826][T16574] loop1: detected capacity change from 0 to 2048
[  331.238591][T16582] loop4: detected capacity change from 0 to 512
[  331.385896][T16586] loop6: detected capacity change from 0 to 2048
[  331.490508][T16574] EXT4-fs mount: 4 callbacks suppressed
[  331.490527][T16574] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  331.510997][T16582] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.4606: bg 0: block 248: padding at end of block bitmap is not set
[  331.529467][T16586] Alternate GPT is invalid, using primary GPT.
[  331.535793][T16586]  loop6: p1 p2 p3
[  331.572640][T16582] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm syz.4.4606: Failed to acquire dquot type 1
[  331.592823][T16582] EXT4-fs (loop4): 1 truncate cleaned up
[  331.611146][T16582] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  331.641476][T16582] ext4 filesystem being mounted at /403/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  331.667052][T16595] 9pnet_fd: Insufficient options for proto=fd
[  331.889971][T16599] loop2: detected capacity change from 0 to 512
[  332.255874][T11388] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  332.265775][ T9548] EXT4-fs error (device loop4): ext4_release_dquot:6950: comm kworker/u8:10: Failed to release dquot type 1
[  332.292131][T12517] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  333.353894][T16621] netdevsim netdevsim6 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  333.505192][T16622] netlink: 'syz.6.4618': attribute type 10 has an invalid length.
[  333.513346][T16622] netlink: 40 bytes leftover after parsing attributes in process `syz.6.4618'.
[  333.885077][T16621] netdevsim netdevsim6 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  334.407452][T16621] netdevsim netdevsim6 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  334.762013][T16621] netdevsim netdevsim6 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  335.105537][T16621] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  335.131120][T16644] loop1: detected capacity change from 0 to 164
[  335.158756][T16621] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  335.222180][T16621] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  335.261484][T16621] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  335.465517][T16659] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  335.515433][T16661] netlink: 'syz.4.4634': attribute type 10 has an invalid length.
[  335.523637][T16661] netlink: 40 bytes leftover after parsing attributes in process `syz.4.4634'.
[  335.612069][T16659] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  335.625532][T16667] SELinux: syz.6.4636 (16667) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  335.640936][T16664] loop5: detected capacity change from 0 to 2048
[  335.682017][T16664] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  335.713769][T16659] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  335.819295][T16659] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  335.839193][T16182] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  335.906366][T16675] loop5: detected capacity change from 0 to 164
[  335.913010][T16659] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  335.957118][T16659] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  335.984186][T16659] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  336.002191][T16659] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  336.256972][T16700] SELinux: syz.2.4647 (16700) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  336.486243][T16701] Process accounting resumed
[  336.495362][T16705] loop2: detected capacity change from 0 to 512
[  336.651943][T16705] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.4651: bg 0: block 248: padding at end of block bitmap is not set
[  336.685355][T16705] __quota_error: 94 callbacks suppressed
[  336.685377][T16705] Quota error (device loop2): write_blk: dquota write failed
[  336.698505][T16705] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  336.708512][T16705] EXT4-fs error (device loop2): ext4_acquire_dquot:6927: comm syz.2.4651: Failed to acquire dquot type 1
[  336.721823][T16705] EXT4-fs (loop2): 1 truncate cleaned up
[  336.728003][T16705] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  336.729702][   T30] audit: type=1400 audit(1741928957.704:17451): avc:  denied  { append } for  pid=16716 comm="syz.6.4655" name="virtual_nci" dev="devtmpfs" ino=132 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  336.743489][T16705] ext4 filesystem being mounted at /384/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  336.797981][T10868] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  336.808616][ T5957] Quota error (device loop2): do_check_range: Getting block 0 out of range 1-5
[  336.817693][ T5957] EXT4-fs error (device loop2): ext4_release_dquot:6950: comm kworker/u8:9: Failed to release dquot type 1
[  336.896518][T16731] 9pnet_fd: Insufficient options for proto=fd
[  336.920587][T16733] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4662'.
[  336.949488][T16736] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4663'.
[  336.958617][T16736] netlink: 'syz.1.4663': attribute type 1 has an invalid length.
[  336.966548][T16736] netlink: 44 bytes leftover after parsing attributes in process `syz.1.4663'.
[  337.046503][T16740] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4664'.
[  337.072813][T16740] netlink: 'syz.5.4664': attribute type 1 has an invalid length.
[  337.080678][T16740] netlink: 44 bytes leftover after parsing attributes in process `syz.5.4664'.
[  337.098965][T16741] xt_CT: No such helper "pptp"
[  337.127531][T16741] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4663'.
[  337.148065][T16741] netlink: 96 bytes leftover after parsing attributes in process `syz.1.4663'.
[  337.271302][T16744] xt_CT: No such helper "pptp"
[  337.312695][T16750] loop6: detected capacity change from 0 to 512
[  337.327914][T16740] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4664'.
[  337.337448][T16740] netlink: 96 bytes leftover after parsing attributes in process `syz.5.4664'.
[  337.346115][T16752] SELinux: syz.1.4667 (16752) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  337.582572][   T30] audit: type=1326 audit(1741928958.480:17452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16753 comm="syz.6.4668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cd851d169 code=0x7ffc0000
[  337.606394][   T30] audit: type=1326 audit(1741928958.480:17453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16753 comm="syz.6.4668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cd851d169 code=0x7ffc0000
[  337.630092][   T30] audit: type=1326 audit(1741928958.480:17454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16753 comm="syz.6.4668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9cd851d169 code=0x7ffc0000
[  337.653680][   T30] audit: type=1326 audit(1741928958.480:17455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16753 comm="syz.6.4668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cd851d169 code=0x7ffc0000
[  337.677375][   T30] audit: type=1326 audit(1741928958.480:17456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16753 comm="syz.6.4668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cd851d169 code=0x7ffc0000
[  337.701011][   T30] audit: type=1326 audit(1741928958.480:17457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16753 comm="syz.6.4668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f9cd851d169 code=0x7ffc0000
[  337.752255][T16762] SELinux: syz.1.4670 (16762) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  337.770807][T16765] 9pnet_fd: Insufficient options for proto=fd
[  337.794753][T16767] loop4: detected capacity change from 0 to 2048
[  337.811345][T16767] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  337.843959][T16775] netlink: 72 bytes leftover after parsing attributes in process `syz.5.4678'.
[  337.926168][T11388] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  338.026628][T16786] SELinux: syz.5.4683 (16786) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  338.086913][T16799] 9pnet_fd: Insufficient options for proto=fd
[  338.305542][T16818] SELinux: syz.2.4694 (16818) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  338.335978][T16813] Process accounting resumed
[  338.362150][T16821] loop5: detected capacity change from 0 to 2048
[  338.397101][T16821] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  338.484367][T16835] netem: change failed
[  338.534052][T16838] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  338.551952][T16182] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  338.594879][T16838] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  338.658560][T16850] xt_CT: No such helper "syz1"
[  338.706128][T16838] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  338.792582][T16856] Process accounting resumed
[  338.796723][T16838] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  338.865691][T16838] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  338.889790][T16838] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  338.921705][T16838] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  338.933538][T16838] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  339.059375][T16871] netem: change failed
[  339.262416][T16890] loop2: detected capacity change from 0 to 512
[  339.275182][T16894] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  339.301812][T16890] EXT4-fs warning (device loop2): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  339.313403][T16890] EXT4-fs warning (device loop2): dx_probe:881: Enable large directory feature to access it
[  339.323550][T16890] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.4722: Corrupt directory, running e2fsck is recommended
[  339.338647][T16890] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -117
[  339.347095][T16903] netlink: 'syz.4.4723': attribute type 10 has an invalid length.
[  339.358346][T16894] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  339.368381][T16890] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.4722: corrupted in-inode xattr: invalid ea_ino
[  339.404424][T16904] Process accounting resumed
[  339.412425][T16890] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.4722: couldn't read orphan inode 15 (err -117)
[  339.432404][T16890] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  339.466505][T16894] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  339.479925][T16915] netem: change failed
[  339.484803][T10868] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  339.507280][T16919] loop5: detected capacity change from 0 to 164
[  339.586650][T16894] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  340.097084][T16894] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  340.227799][T16935] Process accounting resumed
[  340.244004][T16894] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  340.274742][T16944] SELinux: syz.1.4738 (16944) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  340.385189][T16894] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  340.479093][T16948] loop5: detected capacity change from 0 to 512
[  340.499360][T16894] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  340.582373][T16948] EXT4-fs warning (device loop5): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  340.594615][T16948] EXT4-fs warning (device loop5): dx_probe:881: Enable large directory feature to access it
[  340.604986][T16948] EXT4-fs warning (device loop5): dx_probe:966: inode #2: comm syz.5.4739: Corrupt directory, running e2fsck is recommended
[  340.646896][T16960] loop6: detected capacity change from 0 to 512
[  340.657029][T16957] Process accounting resumed
[  340.665194][T16959] loop4: detected capacity change from 0 to 512
[  340.688045][T16960] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  340.728784][T16960] ext4 filesystem being mounted at /507/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  340.747301][T16948] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -117
[  340.762660][T16948] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2240: inode #15: comm syz.5.4739: corrupted in-inode xattr: invalid ea_ino
[  340.779384][T16960] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  340.825803][T16948] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.4739: couldn't read orphan inode 15 (err -117)
[  340.908545][T16948] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  341.006468][T16182] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  341.159545][T16982] SELinux: syz.4.4752 (16982) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  341.205001][T16985] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  341.256023][T16991] netlink: 'syz.2.4753': attribute type 10 has an invalid length.
[  341.265726][T16985] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  341.304784][T16985] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  341.325492][T16995] loop4: detected capacity change from 0 to 512
[  341.332661][T16995] EXT4-fs (loop4): couldn't mount as ext3 due to feature incompatibilities
[  341.380517][T16985] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  341.411569][T17004] FAULT_INJECTION: forcing a failure.
[  341.411569][T17004] name failslab, interval 1, probability 0, space 0, times 0
[  341.424293][T17004] CPU: 0 UID: 0 PID: 17004 Comm: syz.4.4761 Not tainted 6.14.0-rc6-syzkaller-00103-g4003c9e78778 #0
[  341.424393][T17004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  341.424406][T17004] Call Trace:
[  341.424413][T17004]  <TASK>
[  341.424421][T17004]  dump_stack_lvl+0xf2/0x150
[  341.424455][T17004]  dump_stack+0x15/0x1a
[  341.424482][T17004]  should_fail_ex+0x24a/0x260
[  341.424593][T17004]  should_failslab+0x8f/0xb0
[  341.424632][T17004]  kmem_cache_alloc_noprof+0x52/0x320
[  341.424659][T17004]  ? audit_log_start+0x34c/0x6b0
[  341.424700][T17004]  audit_log_start+0x34c/0x6b0
[  341.424778][T17004]  audit_seccomp+0x4b/0x130
[  341.424816][T17004]  __seccomp_filter+0x6fa/0x1180
[  341.424847][T17004]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  341.424882][T17004]  ? vfs_write+0x644/0x920
[  341.424947][T17004]  __secure_computing+0x9f/0x1c0
[  341.425020][T17004]  syscall_trace_enter+0xd1/0x1f0
[  341.425065][T17004]  do_syscall_64+0xaa/0x1c0
[  341.425103][T17004]  ? clear_bhb_loop+0x55/0xb0
[  341.425211][T17004]  ? clear_bhb_loop+0x55/0xb0
[  341.425241][T17004]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  341.425274][T17004] RIP: 0033:0x7ff8c3c2d169
[  341.425383][T17004] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  341.425405][T17004] RSP: 002b:00007ff8c2291038 EFLAGS: 00000246 ORIG_RAX: 0000000000000043
[  341.425427][T17004] RAX: ffffffffffffffda RBX: 00007ff8c3e45fa0 RCX: 00007ff8c3c2d169
[  341.425443][T17004] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  341.425519][T17004] RBP: 00007ff8c2291090 R08: 0000000000000000 R09: 0000000000000000
[  341.425534][T17004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  341.425549][T17004] R13: 0000000000000000 R14: 00007ff8c3e45fa0 R15: 00007ffcd9405148
[  341.425573][T17004]  </TASK>
[  341.625709][T17005] loop1: detected capacity change from 0 to 512
[  341.641592][T17007] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  341.650842][T17005] EXT4-fs warning (device loop1): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  341.662403][T17005] EXT4-fs warning (device loop1): dx_probe:881: Enable large directory feature to access it
[  341.672565][T17005] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.4760: Corrupt directory, running e2fsck is recommended
[  341.686020][T17005] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117
[  341.694787][T17005] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.4760: corrupted in-inode xattr: invalid ea_ino
[  341.716644][T16985] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  341.725513][T17005] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.4760: couldn't read orphan inode 15 (err -117)
[  341.734189][T16985] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  341.741485][T17005] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  341.750107][T16985] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  341.770720][T16985] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  341.795816][T12517] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  341.819748][T17015] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  341.860893][T17015] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  342.074703][T17015] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  342.309818][T17028] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  342.365423][T17015] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  343.189553][T17037] loop6: detected capacity change from 0 to 512
[  343.196162][T17037] EXT4-fs: Ignoring removed orlov option
[  343.226625][T17037] EXT4-fs (loop6): couldn't mount as ext3 due to feature incompatibilities
[  343.337739][   T30] kauditd_printk_skb: 65 callbacks suppressed
[  343.337756][   T30] audit: type=1400 audit(1741928963.887:17521): avc:  denied  { connect } for  pid=17041 comm="syz.2.4775" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  343.415705][   T30] audit: type=1400 audit(1741928963.915:17522): avc:  denied  { write } for  pid=17041 comm="syz.2.4775" lport=1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  343.447357][T17047] FAULT_INJECTION: forcing a failure.
[  343.447357][T17047] name failslab, interval 1, probability 0, space 0, times 0
[  343.460134][T17047] CPU: 0 UID: 0 PID: 17047 Comm: syz.5.4776 Not tainted 6.14.0-rc6-syzkaller-00103-g4003c9e78778 #0
[  343.460165][T17047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  343.460179][T17047] Call Trace:
[  343.460186][T17047]  <TASK>
[  343.460205][T17047]  dump_stack_lvl+0xf2/0x150
[  343.460233][T17047]  dump_stack+0x15/0x1a
[  343.460297][T17047]  should_fail_ex+0x24a/0x260
[  343.460336][T17047]  should_failslab+0x8f/0xb0
[  343.460373][T17047]  kmem_cache_alloc_noprof+0x52/0x320
[  343.460395][T17047]  ? skb_clone+0x154/0x1f0
[  343.460498][T17047]  skb_clone+0x154/0x1f0
[  343.460528][T17047]  pfkey_sendmsg+0x2de/0x970
[  343.460559][T17047]  ? selinux_socket_sendmsg+0x185/0x1c0
[  343.460596][T17047]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  343.460627][T17047]  __sock_sendmsg+0x140/0x180
[  343.460668][T17047]  ____sys_sendmsg+0x326/0x4b0
[  343.460699][T17047]  __sys_sendmsg+0x19d/0x230
[  343.460765][T17047]  __x64_sys_sendmsg+0x46/0x50
[  343.460795][T17047]  x64_sys_call+0x2734/0x2dc0
[  343.460826][T17047]  do_syscall_64+0xc9/0x1c0
[  343.460930][T17047]  ? clear_bhb_loop+0x55/0xb0
[  343.460957][T17047]  ? clear_bhb_loop+0x55/0xb0
[  343.461001][T17047]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.461034][T17047] RIP: 0033:0x7f898a14d169
[  343.461053][T17047] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  343.461071][T17047] RSP: 002b:00007f89887b7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  343.461091][T17047] RAX: ffffffffffffffda RBX: 00007f898a365fa0 RCX: 00007f898a14d169
[  343.461107][T17047] RDX: 0000000000000002 RSI: 0000400000000400 RDI: 0000000000000003
[  343.461122][T17047] RBP: 00007f89887b7090 R08: 0000000000000000 R09: 0000000000000000
[  343.461213][T17047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  343.461226][T17047] R13: 0000000000000000 R14: 00007f898a365fa0 R15: 00007ffe730ebd68
[  343.461248][T17047]  </TASK>
[  343.656997][T17046] __nla_validate_parse: 8 callbacks suppressed
[  343.657017][T17046] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4777'.
[  343.714906][   T30] audit: type=1400 audit(1741928964.233:17523): avc:  denied  { create } for  pid=17031 comm="syz.6.4771" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[  343.764199][T17052] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4779'.
[  343.785291][T17054] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4780'.
[  343.807570][T17054] netlink: 'syz.2.4780': attribute type 1 has an invalid length.
[  343.815462][T17054] netlink: 44 bytes leftover after parsing attributes in process `syz.2.4780'.
[  343.928827][T17059] netem: change failed
[  343.977601][T17062] SELinux: syz.4.4783 (17062) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  344.001978][T17063] xt_CT: No such helper "pptp"
[  344.020870][T17054] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4780'.
[  344.030283][T17054] netlink: 96 bytes leftover after parsing attributes in process `syz.2.4780'.
[  344.443026][T17015] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  344.456058][T17015] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  344.469609][T17015] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  344.482461][T17015] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  344.515753][T17077] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4789'.
[  344.731685][T17085] loop6: detected capacity change from 0 to 512
[  345.000388][T17089] loop2: detected capacity change from 0 to 2048
[  345.229977][T17089] Alternate GPT is invalid, using primary GPT.
[  345.236335][T17089]  loop2: p1 p2 p3
[  345.398435][T17092] loop6: detected capacity change from 0 to 1024
[  345.476068][T17092] EXT4-fs: Ignoring removed orlov option
[  345.481840][T17092] EXT4-fs: Ignoring removed nomblk_io_submit option
[  345.576970][T17093] loop1: detected capacity change from 0 to 2048
[  345.747502][T17092] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  345.894158][ T8757] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  345.928839][T17093] Alternate GPT is invalid, using primary GPT.
[  345.935300][T17093]  loop1: p1 p2 p3
[  346.554127][T17099] loop6: detected capacity change from 0 to 128
[  346.671978][T17102] syz.6.4794: attempt to access beyond end of device
[  346.671978][T17102] loop6: rw=2049, sector=145, nr_sectors = 896 limit=128
[  346.759608][T17098] syz.6.4794: attempt to access beyond end of device
[  346.759608][T17098] loop6: rw=524288, sector=145, nr_sectors = 224 limit=128
[  346.804116][T17099] syz.6.4794: attempt to access beyond end of device
[  346.804116][T17099] loop6: rw=524288, sector=369, nr_sectors = 672 limit=128
[  346.897095][T17122] loop1: detected capacity change from 0 to 512
[  346.905164][T17120] Process accounting resumed
[  346.936769][T17122] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.4804: bg 0: block 248: padding at end of block bitmap is not set
[  346.986793][T17122] Quota error (device loop1): write_blk: dquota write failed
[  346.994272][T17122] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  347.004266][T17122] EXT4-fs error (device loop1): ext4_acquire_dquot:6927: comm syz.1.4804: Failed to acquire dquot type 1
[  347.050080][T17122] EXT4-fs (loop1): 1 truncate cleaned up
[  347.078352][T17122] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  347.102058][T17122] ext4 filesystem being mounted at /308/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  347.139302][T12517] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  347.151405][ T4468] Quota error (device loop1): do_check_range: Getting block 0 out of range 1-5
[  347.160498][ T4468] EXT4-fs error (device loop1): ext4_release_dquot:6950: comm kworker/u8:7: Failed to release dquot type 1
[  347.198717][T17135] Process accounting resumed
[  347.228788][   T30] audit: type=1400 audit(1741928967.525:17524): avc:  denied  { create } for  pid=17138 comm="syz.1.4810" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  347.275286][   T30] audit: type=1400 audit(1741928967.553:17525): avc:  denied  { mounton } for  pid=17138 comm="syz.1.4810" path="/309/file0" dev="tmpfs" ino=1676 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  347.298638][   T30] audit: type=1400 audit(1741928967.553:17526): avc:  denied  { setattr } for  pid=17138 comm="syz.1.4810" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  347.336020][T17143] netem: change failed
[  347.379887][   T30] audit: type=1400 audit(1741928967.666:17527): avc:  denied  { unlink } for  pid=12517 comm="syz-executor" name="file0" dev="tmpfs" ino=1676 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  347.409821][T17147] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  347.419223][T17147] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  347.906657][T17155] ip6erspan0: entered promiscuous mode
[  348.045108][T17160] FAULT_INJECTION: forcing a failure.
[  348.045108][T17160] name failslab, interval 1, probability 0, space 0, times 0
[  348.057912][T17160] CPU: 0 UID: 0 PID: 17160 Comm: syz.6.4819 Not tainted 6.14.0-rc6-syzkaller-00103-g4003c9e78778 #0
[  348.057986][T17160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  348.057999][T17160] Call Trace:
[  348.058006][T17160]  <TASK>
[  348.058014][T17160]  dump_stack_lvl+0xf2/0x150
[  348.058049][T17160]  dump_stack+0x15/0x1a
[  348.058071][T17160]  should_fail_ex+0x24a/0x260
[  348.058160][T17160]  should_failslab+0x8f/0xb0
[  348.058197][T17160]  __kmalloc_cache_node_noprof+0x56/0x320
[  348.058227][T17160]  ? __get_vm_area_node+0xfb/0x1c0
[  348.058284][T17160]  __get_vm_area_node+0xfb/0x1c0
[  348.058312][T17160]  __vmalloc_node_range_noprof+0x280/0xe70
[  348.058342][T17160]  ? copy_process+0x3a9/0x1f50
[  348.058445][T17160]  ? mod_objcg_state+0x3a7/0x4f0
[  348.058549][T17160]  ? __memcg_slab_post_alloc_hook+0x510/0x660
[  348.058583][T17160]  ? kmem_cache_alloc_node_noprof+0x22e/0x320
[  348.058611][T17160]  dup_task_struct+0x4a2/0x710
[  348.058638][T17160]  ? copy_process+0x3a9/0x1f50
[  348.058728][T17160]  ? kstrtoull+0x110/0x140
[  348.058757][T17160]  copy_process+0x3a9/0x1f50
[  348.058858][T17160]  ? 0xffffffff81000000
[  348.058883][T17160]  ? selinux_file_permission+0x22a/0x360
[  348.058926][T17160]  kernel_clone+0x167/0x5e0
[  348.058955][T17160]  ? vfs_write+0x644/0x920
[  348.058988][T17160]  __x64_sys_clone+0xe7/0x120
[  348.059027][T17160]  x64_sys_call+0x2d7e/0x2dc0
[  348.059104][T17160]  do_syscall_64+0xc9/0x1c0
[  348.059137][T17160]  ? clear_bhb_loop+0x55/0xb0
[  348.059170][T17160]  ? clear_bhb_loop+0x55/0xb0
[  348.059197][T17160]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.059227][T17160] RIP: 0033:0x7f9cd851d169
[  348.059319][T17160] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  348.059337][T17160] RSP: 002b:00007f9cd6b86fe8 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
[  348.059363][T17160] RAX: ffffffffffffffda RBX: 00007f9cd8735fa0 RCX: 00007f9cd851d169
[  348.059377][T17160] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000008d002240
[  348.059389][T17160] RBP: 00007f9cd6b87090 R08: 0000000000000000 R09: 0000000000000000
[  348.059400][T17160] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000001
[  348.059412][T17160] R13: 0000000000000000 R14: 00007f9cd8735fa0 R15: 00007ffcf2c53ba8
[  348.059430][T17160]  </TASK>
[  348.180983][T17162] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4820'.
[  348.185273][T17160] syz.6.4819: vmalloc error: size 16384, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  348.285568][T17166] sd 0:0:1:0: device reset
[  348.286904][T17160] ,cpuset=/,mems_allowed=0
[  348.320444][T17160] CPU: 0 UID: 0 PID: 17160 Comm: syz.6.4819 Not tainted 6.14.0-rc6-syzkaller-00103-g4003c9e78778 #0
[  348.320475][T17160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  348.320499][T17160] Call Trace:
[  348.320538][T17160]  <TASK>
[  348.320548][T17160]  dump_stack_lvl+0xf2/0x150
[  348.320581][T17160]  dump_stack+0x15/0x1a
[  348.320607][T17160]  warn_alloc+0x145/0x1b0
[  348.320637][T17160]  ? __get_vm_area_node+0xfb/0x1c0
[  348.320672][T17160]  __vmalloc_node_range_noprof+0x2a5/0xe70
[  348.320760][T17160]  ? mod_objcg_state+0x3a7/0x4f0
[  348.320789][T17160]  ? __memcg_slab_post_alloc_hook+0x510/0x660
[  348.320899][T17160]  ? kmem_cache_alloc_node_noprof+0x22e/0x320
[  348.320926][T17160]  dup_task_struct+0x4a2/0x710
[  348.320955][T17160]  ? copy_process+0x3a9/0x1f50
[  348.321034][T17160]  ? kstrtoull+0x110/0x140
[  348.321060][T17160]  copy_process+0x3a9/0x1f50
[  348.321133][T17160]  ? 0xffffffff81000000
[  348.321147][T17160]  ? selinux_file_permission+0x22a/0x360
[  348.321185][T17160]  kernel_clone+0x167/0x5e0
[  348.321262][T17160]  ? vfs_write+0x644/0x920
[  348.321332][T17160]  __x64_sys_clone+0xe7/0x120
[  348.321372][T17160]  x64_sys_call+0x2d7e/0x2dc0
[  348.321400][T17160]  do_syscall_64+0xc9/0x1c0
[  348.321458][T17160]  ? clear_bhb_loop+0x55/0xb0
[  348.321487][T17160]  ? clear_bhb_loop+0x55/0xb0
[  348.321516][T17160]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.321624][T17160] RIP: 0033:0x7f9cd851d169
[  348.321642][T17160] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  348.321663][T17160] RSP: 002b:00007f9cd6b86fe8 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
[  348.321684][T17160] RAX: ffffffffffffffda RBX: 00007f9cd8735fa0 RCX: 00007f9cd851d169
[  348.321698][T17160] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000008d002240
[  348.321711][T17160] RBP: 00007f9cd6b87090 R08: 0000000000000000 R09: 0000000000000000
[  348.321802][T17160] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000001
[  348.321816][T17160] R13: 0000000000000000 R14: 00007f9cd8735fa0 R15: 00007ffcf2c53ba8
[  348.321837][T17160]  </TASK>
[  348.321905][T17160] Mem-Info:
[  348.535594][T17160] active_anon:49221 inactive_anon:9 isolated_anon:0
[  348.535594][T17160]  active_file:11018 inactive_file:10552 isolated_file:0
[  348.535594][T17160]  unevictable:0 dirty:509 writeback:0
[  348.535594][T17160]  slab_reclaimable:3399 slab_unreclaimable:16084
[  348.535594][T17160]  mapped:28773 shmem:41609 pagetables:1137
[  348.535594][T17160]  sec_pagetables:0 bounce:0
[  348.535594][T17160]  kernel_misc_reclaimable:0
[  348.535594][T17160]  free:1834902 free_pcp:10018 free_cma:0
[  348.580915][T17160] Node 0 active_anon:196884kB inactive_anon:36kB active_file:44072kB inactive_file:42208kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:115092kB dirty:2036kB writeback:0kB shmem:166436kB writeback_tmp:0kB kernel_stack:3280kB pagetables:4548kB sec_pagetables:0kB all_unreclaimable? no
[  348.609216][T17160] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  348.636083][T17160] lowmem_reserve[]: 0 2885 7863 7863
[  348.641439][T17160] Node 0 DMA32 free:2950828kB boost:0kB min:4136kB low:7068kB high:10000kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2954360kB mlocked:0kB bounce:0kB free_pcp:3532kB local_pcp:3532kB free_cma:0kB
[  348.670159][T17160] lowmem_reserve[]: 0 0 4978 4978
[  348.675223][T17160] Node 0 Normal free:4373036kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:196884kB inactive_anon:36kB active_file:44072kB inactive_file:42208kB unevictable:0kB writepending:2036kB present:5242880kB managed:5098208kB mlocked:0kB bounce:0kB free_pcp:36716kB local_pcp:35880kB free_cma:0kB
[  348.705733][T17160] lowmem_reserve[]: 0 0 0 0
[  348.710305][T17160] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  348.723162][T17160] Node 0 DMA32: 3*4kB (M) 2*8kB (M) 1*16kB (M) 4*32kB (M) 4*64kB (M) 2*128kB (M) 2*256kB (M) 3*512kB (M) 3*1024kB (M) 2*2048kB (M) 718*4096kB (M) = 2950828kB
[  348.739655][T17160] Node 0 Normal: 1265*4kB (UME) 943*8kB (UME) 186*16kB (UM) 97*32kB (UME) 177*64kB (UME) 373*128kB (UME) 333*256kB (UM) 152*512kB (UM) 205*1024kB (UM) 81*2048kB (UME) 917*4096kB (UM) = 4372668kB
[  348.759043][T17160] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  348.768345][T17160] 63174 total pagecache pages
[  348.773042][T17160] 9 pages in swap cache
[  348.777244][T17160] Free swap  = 45636kB
[  348.781313][T17160] Total swap = 124996kB
[  348.785569][T17160] 2097051 pages RAM
[  348.789428][T17160] 0 pages HighMem/MovableOnly
[  348.794125][T17160] 80069 pages reserved
[  348.836822][T17174] loop6: detected capacity change from 0 to 512
[  348.901109][T17172] Process accounting resumed
[  348.918853][T17178] loop5: detected capacity change from 0 to 512
[  348.961310][T17181] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4826'.
[  348.976775][T17184] SELinux: syz.6.4827 (17184) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  349.000488][T17178] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.4825: bg 0: block 248: padding at end of block bitmap is not set
[  349.021412][T17181] netlink: 'syz.4.4826': attribute type 1 has an invalid length.
[  349.029165][T17181] netlink: 44 bytes leftover after parsing attributes in process `syz.4.4826'.
[  349.058598][T17178] __quota_error: 55 callbacks suppressed
[  349.058618][T17178] Quota error (device loop5): write_blk: dquota write failed
[  349.071722][T17178] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  349.081694][T17178] EXT4-fs error (device loop5): ext4_acquire_dquot:6927: comm syz.5.4825: Failed to acquire dquot type 1
[  349.164511][T17178] EXT4-fs (loop5): 1 truncate cleaned up
[  349.182047][T17178] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  349.231144][T17178] ext4 filesystem being mounted at /75/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  349.245805][T17181] xt_CT: No such helper "pptp"
[  349.261335][T17191] netlink: 'syz.1.4829': attribute type 1 has an invalid length.
[  349.266302][T17181] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4826'.
[  349.269129][T17191] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4829'.
[  349.288796][T17181] netlink: 96 bytes leftover after parsing attributes in process `syz.4.4826'.
[  349.362999][T16182] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  349.380203][ T4468] Quota error (device loop5): do_check_range: Getting block 0 out of range 1-5
[  349.389239][ T4468] EXT4-fs error (device loop5): ext4_release_dquot:6950: comm kworker/u8:7: Failed to release dquot type 1
[  349.465712][   T30] audit: type=1326 audit(1741928969.621:17583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17195 comm="syz.5.4830" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898a14d169 code=0x7ffc0000
[  349.489574][   T30] audit: type=1326 audit(1741928969.621:17584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17195 comm="syz.5.4830" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f898a14d169 code=0x7ffc0000
[  349.513189][   T30] audit: type=1326 audit(1741928969.621:17585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17195 comm="syz.5.4830" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898a14d169 code=0x7ffc0000
[  349.536839][   T30] audit: type=1326 audit(1741928969.621:17586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17195 comm="syz.5.4830" exe="/root/syz-executor" sig=0 arch=c000003e syscall=440 compat=0 ip=0x7f898a14d169 code=0x7ffc0000
[  349.560492][   T30] audit: type=1326 audit(1741928969.621:17587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17195 comm="syz.5.4830" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898a14d169 code=0x7ffc0000
[  349.584137][   T30] audit: type=1326 audit(1741928969.621:17588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17195 comm="syz.5.4830" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f898a14d169 code=0x7ffc0000
[  349.607990][   T30] audit: type=1326 audit(1741928969.621:17589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17195 comm="syz.5.4830" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898a14d169 code=0x7ffc0000
[  349.634764][T17196] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  349.659415][T17196] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  349.691019][T17198] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4831'.
[  349.725813][T17200] loop4: detected capacity change from 0 to 2048
[  349.927169][T17200] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  350.951438][T17199] Process accounting resumed
[  350.970960][T11388] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  351.773997][T17222] loop2: detected capacity change from 0 to 128
[  351.781841][T17222] EXT4-fs: Ignoring removed nobh option
[  351.808238][T17222] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  351.831459][T17224] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4838'.
[  351.844759][T17218] Process accounting resumed
[  351.849857][T17222] ext4 filesystem being mounted at /415/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  351.876578][T17228] loop6: detected capacity change from 0 to 512
[  351.931581][T17228] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.4840: bg 0: block 248: padding at end of block bitmap is not set
[  351.964554][T17228] EXT4-fs error (device loop6): ext4_acquire_dquot:6927: comm syz.6.4840: Failed to acquire dquot type 1
[  351.980943][T17228] EXT4-fs (loop6): 1 truncate cleaned up
[  351.987832][T17228] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  352.000437][T17228] ext4 filesystem being mounted at /526/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  352.034543][ T8757] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  352.061977][   T41] EXT4-fs error (device loop6): ext4_release_dquot:6950: comm kworker/u8:2: Failed to release dquot type 1
[  352.090350][T10868] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  352.100503][T17239] Process accounting resumed
[  352.111817][T17241] loop1: detected capacity change from 0 to 512
[  352.144568][T17247] netem: change failed
[  352.422242][T17267] loop6: detected capacity change from 0 to 2048
[  352.462506][T17266] 9pnet_fd: Insufficient options for proto=fd
[  352.479501][T17266] loop5: detected capacity change from 0 to 2048
[  352.499099][T17267] Alternate GPT is invalid, using primary GPT.
[  352.505411][T17267]  loop6: p1 p2 p3
[  352.550411][T17266] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  352.567047][T17266] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  352.599250][T17275] netlink: 'syz.2.4859': attribute type 1 has an invalid length.
[  352.616744][T17275] 8021q: adding VLAN 0 to HW filter on device bond1
[  352.641270][T17275] 8021q: adding VLAN 0 to HW filter on device bond1
[  352.650282][T17275] bond1: (slave wireguard0): The slave device specified does not support setting the MAC address
[  352.662191][T17275] bond1: (slave wireguard0): Error -95 calling set_mac_address
[  353.430838][T17287] loop2: detected capacity change from 0 to 512
[  353.695880][T17289] xt_CT: You must specify a L4 protocol and not use inversions on it
[  353.736628][T17266] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4856'.
[  354.092217][T17313] netlink: 'syz.5.4872': attribute type 10 has an invalid length.
[  354.140108][T17313] team0: Device hsr_slave_0 failed to register rx_handler
[  354.194512][T17310] Process accounting resumed
[  354.268599][T17316] netem: change failed
[  354.361180][T17322] selection: kmalloc() failed
[  354.479957][   T30] kauditd_printk_skb: 142 callbacks suppressed
[  354.479972][   T30] audit: type=1400 audit(1741928974.307:17729): avc:  denied  { write } for  pid=17332 comm="syz.4.4882" name="nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  354.535722][T17320] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  354.561084][T17339] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4884'.
[  354.570309][T17339] netlink: 'syz.4.4884': attribute type 1 has an invalid length.
[  354.578088][T17339] netlink: 44 bytes leftover after parsing attributes in process `syz.4.4884'.
[  354.620968][T17320] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  354.663149][T17343] xt_CT: No such helper "pptp"
[  354.688697][T17320] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  354.720698][T17342] Process accounting resumed
[  354.765106][T17348] loop6: detected capacity change from 0 to 2048
[  354.795098][T17348] Alternate GPT is invalid, using primary GPT.
[  354.801454][T17348]  loop6: p1 p2 p3
[  354.839741][T17320] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  354.883498][T17339] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4884'.
[  354.893503][T17339] netlink: 96 bytes leftover after parsing attributes in process `syz.4.4884'.
[  354.944418][T17352] loop2: detected capacity change from 0 to 2048
[  354.959405][T17320] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  354.972708][T17320] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  354.987865][T17320] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  355.000897][T17320] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  355.026576][T17356] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4890'.
[  355.035880][T17356] netlink: 'syz.1.4890': attribute type 1 has an invalid length.
[  355.043789][T17356] netlink: 44 bytes leftover after parsing attributes in process `syz.1.4890'.
[  355.165839][T17364] loop5: detected capacity change from 0 to 512
[  355.186538][T17364] EXT4-fs: Ignoring removed nobh option
[  355.220849][T17370] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4890'.
[  355.240864][T17370] netlink: 96 bytes leftover after parsing attributes in process `syz.1.4890'.
[  355.242781][T17352] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0002]
[  355.260115][T17364] EXT4-fs error (device loop5): ext4_do_update_inode:5154: inode #3: comm syz.5.4893: corrupted inode contents
[  355.279339][T17364] EXT4-fs (loop5): Remounting filesystem read-only
[  355.279825][T17356] xt_CT: No such helper "pptp"
[  355.286020][T17352] System zones: 0-4
[  355.295364][T17364] Quota error (device loop5): write_blk: dquota write failed
[  355.304688][T17352] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  355.317258][T17364] Quota error (device loop5): qtree_write_dquot: Error -5 occurred while creating quota
[  355.327321][T17352] ext4 filesystem being mounted at /428/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  355.338139][T17364] EXT4-fs (loop5): 1 truncate cleaned up
[  355.344315][T17364] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  355.357017][T17364] SELinux: (dev loop5, type ext4) getxattr errno 5
[  355.364370][T17373] Process accounting resumed
[  355.369893][T17364] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  355.407352][T17352] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4888'.
[  355.416394][T17352] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4888'.
[  355.438707][   T30] audit: type=1326 audit(1741928975.205:17730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17380 comm="syz.1.4897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d9264d169 code=0x7ffc0000
[  355.462459][   T30] audit: type=1326 audit(1741928975.205:17731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17380 comm="syz.1.4897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f8d9264d169 code=0x7ffc0000
[  355.474576][T17381] loop1: detected capacity change from 0 to 164
[  355.486098][   T30] audit: type=1326 audit(1741928975.205:17732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17380 comm="syz.1.4897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f8d9264d1a3 code=0x7ffc0000
[  355.516224][   T30] audit: type=1326 audit(1741928975.205:17733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17380 comm="syz.1.4897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f8d9264bc1f code=0x7ffc0000
[  355.557728][   T30] audit: type=1326 audit(1741928975.205:17734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17380 comm="syz.1.4897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f8d9264d1f7 code=0x7ffc0000
[  355.575126][T17385] netlink: 'syz.4.4899': attribute type 10 has an invalid length.
[  355.581292][   T30] audit: type=1326 audit(1741928975.233:17735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17380 comm="syz.1.4897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8d9264bad0 code=0x7ffc0000
[  355.612684][   T30] audit: type=1326 audit(1741928975.233:17736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17380 comm="syz.1.4897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f8d9264cd6b code=0x7ffc0000
[  355.642860][T17385] team0: Device hsr_slave_0 failed to register rx_handler
[  355.664655][T17381] ISOFS: unable to read i-node block
[  355.698072][T17392] SELinux: syz.6.4901 (17392) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  355.776881][T17403] netem: change failed
[  355.798041][T17404] loop4: detected capacity change from 0 to 512
[  355.835154][T17404] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.4905: bg 0: block 248: padding at end of block bitmap is not set
[  355.853938][T17404] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm syz.4.4905: Failed to acquire dquot type 1
[  355.855402][T17410] loop1: detected capacity change from 0 to 128
[  355.872265][T17410] EXT4-fs: Ignoring removed nobh option
[  355.879945][T17404] EXT4-fs (loop4): 1 truncate cleaned up
[  355.886312][T17410] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  355.896317][T17404] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  355.912568][T17410] ext4 filesystem being mounted at /332/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  355.923163][T17404] ext4 filesystem being mounted at /458/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  355.946146][T12517] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  355.957752][T11388] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  355.972039][ T4468] EXT4-fs error (device loop4): ext4_release_dquot:6950: comm kworker/u8:7: Failed to release dquot type 1
[  356.004282][T17416] netlink: 'syz.1.4908': attribute type 1 has an invalid length.
[  356.017299][ T4646] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm kworker/u8:8: bg 0: block 345: padding at end of block bitmap is not set
[  356.034352][ T4646] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2048 with error 117
[  356.047083][ T4646] EXT4-fs (loop2): This should not happen!! Data will be lost
[  356.047083][ T4646] 
[  356.063928][T17422] loop6: detected capacity change from 0 to 164
[  356.072521][T17422] ISOFS: unable to read i-node block
[  356.080270][T17420] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  356.118893][T17427] netlink: 'syz.4.4910': attribute type 10 has an invalid length.
[  356.131297][T17424] xt_CT: No such helper "pptp"
[  356.152400][ T4646] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 2065 with max blocks 2040 with error 28
[  356.165249][ T4646] EXT4-fs (loop2): This should not happen!! Data will be lost
[  356.165249][ T4646] 
[  356.175017][ T4646] EXT4-fs (loop2): Total free blocks count 0
[  356.181013][ T4646] EXT4-fs (loop2): Free/Dirty block details
[  356.187034][ T4646] EXT4-fs (loop2): free_blocks=0
[  356.192032][ T4646] EXT4-fs (loop2): dirty_blocks=2048
[  356.197419][ T4646] EXT4-fs (loop2): Block reservation details
[  356.206265][T17420] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  356.281560][T17420] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  356.314360][T17420] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  356.325918][T17425] loop6: detected capacity change from 0 to 512
[  356.338022][T17431] loop2: detected capacity change from 0 to 128
[  356.350249][T17425] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  356.352819][T17434] netlink: 'syz.1.4916': attribute type 2 has an invalid length.
[  356.370878][T17431] EXT4-fs: Ignoring removed nobh option
[  356.377125][T17425] ext4 filesystem being mounted at /539/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  356.390769][T17437] SELinux: syz.5.4917 (17437) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  356.405493][T17431] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  356.429300][T17420] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  356.437720][T17431] ext4 filesystem being mounted at /429/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  356.462138][T17420] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  356.481900][T17443] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  356.497012][T17420] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  356.499018][T17443] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  356.509828][T17420] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  356.522485][T10868] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  356.592712][ T8757] EXT4-fs error (device loop6): ext4_readdir:261: inode #12: block 32: comm syz-executor: path /539/bus/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  356.620960][T17452] dccp_close: ABORT with 60 bytes unread
[  356.671759][T17458] SELinux: syz.2.4925 (17458) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  356.749800][T17462] 9pnet_fd: Insufficient options for proto=fd
[  356.758452][T17460] loop1: detected capacity change from 0 to 512
[  356.770037][ T8757] EXT4-fs error (device loop6): ext4_empty_dir:3103: inode #12: block 32: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  356.791346][ T8757] EXT4-fs warning (device loop6): ext4_empty_dir:3105: inode #12: comm syz-executor: directory missing '.'
[  356.791869][T17460] EXT4-fs warning (device loop1): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  356.803146][ T8757] EXT4-fs error (device loop6): ext4_readdir:261: inode #12: block 32: comm syz-executor: path /539/bus/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  356.814366][T17460] EXT4-fs warning (device loop1): dx_probe:881: Enable large directory feature to access it
[  356.814393][T17460] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.4924: Corrupt directory, running e2fsck is recommended
[  356.889395][T17470] SELinux: syz.2.4928 (17470) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  356.918908][ T8757] EXT4-fs error (device loop6): ext4_empty_dir:3103: inode #12: block 32: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  356.923085][T17460] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117
[  356.948436][ T8757] EXT4-fs warning (device loop6): ext4_empty_dir:3105: inode #12: comm syz-executor: directory missing '.'
[  356.961782][T17460] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.4924: corrupted in-inode xattr: invalid ea_ino
[  356.976952][ T8757] EXT4-fs error (device loop6): ext4_readdir:261: inode #12: block 32: comm syz-executor: path /539/bus/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  356.981351][T17472] loop2: detected capacity change from 0 to 512
[  356.999398][T17460] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.4924: couldn't read orphan inode 15 (err -117)
[  357.019636][T17460] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  357.077833][T17472] EXT4-fs: Ignoring removed i_version option
[  357.083916][ T8757] EXT4-fs error (device loop6): ext4_empty_dir:3103: inode #12: block 32: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  357.116796][ T8757] EXT4-fs warning (device loop6): ext4_empty_dir:3105: inode #12: comm syz-executor: directory missing '.'
[  357.130747][T12517] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  357.139815][T17472] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  357.141173][ T8757] EXT4-fs error (device loop6): ext4_readdir:261: inode #12: block 32: comm syz-executor: path /539/bus/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  357.182720][T17475] netlink: 'syz.5.4931': attribute type 1 has an invalid length.
[  357.182966][T17472] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e028, mo2=0002]
[  357.201582][T17472] System zones: 1-12
[  357.206284][T17472] EXT4-fs (loop2): orphan cleanup on readonly fs
[  357.213605][T17472] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.4929: invalid indirect mapped block 12 (level 1)
[  357.228457][T17472] EXT4-fs (loop2): Remounting filesystem read-only
[  357.235229][T17472] EXT4-fs (loop2): 1 truncate cleaned up
[  357.241676][T17472] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  357.278550][T17477] loop1: detected capacity change from 0 to 164
[  357.285338][T17472] SELinux: (dev loop2, type ext4) getxattr errno 5
[  357.296779][T17472] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  357.298615][T17477] ISOFS: unable to read i-node block
[  357.344873][ T8757] EXT4-fs error (device loop6): ext4_empty_dir:3103: inode #12: block 32: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  357.377627][ T8757] EXT4-fs warning (device loop6): ext4_empty_dir:3105: inode #12: comm syz-executor: directory missing '.'
[  357.390718][ T8757] EXT4-fs error (device loop6): ext4_readdir:261: inode #12: block 32: comm syz-executor: path /539/bus/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  357.612992][ T8757] EXT4-fs error (device loop6): ext4_empty_dir:3103: inode #12: block 32: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  357.640325][ T8757] EXT4-fs warning (device loop6): ext4_empty_dir:3105: inode #12: comm syz-executor: directory missing '.'
[  357.984916][ T8757] EXT4-fs warning (device loop6): ext4_empty_dir:3105: inode #12: comm syz-executor: directory missing '.'
[  358.190620][ T8757] EXT4-fs warning (device loop6): ext4_empty_dir:3105: inode #12: comm syz-executor: directory missing '.'
[  358.254299][T17504] SELinux: syz.5.4939 (17504) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  358.299816][ T8757] EXT4-fs warning (device loop6): ext4_empty_dir:3105: inode #12: comm syz-executor: directory missing '.'
[  358.454645][ T8757] EXT4-fs warning (device loop6): ext4_empty_dir:3105: inode #12: comm syz-executor: directory missing '.'
[  358.468638][T17509] loop2: detected capacity change from 0 to 512
[  358.498818][T17509] EXT4-fs warning (device loop2): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  358.510451][T17509] EXT4-fs warning (device loop2): dx_probe:881: Enable large directory feature to access it
[  358.520668][T17509] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.4941: Corrupt directory, running e2fsck is recommended
[  358.553757][T17509] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -117
[  358.599659][ T8757] EXT4-fs warning (device loop6): ext4_empty_dir:3105: inode #12: comm syz-executor: directory missing '.'
[  358.613025][T17509] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.4941: corrupted in-inode xattr: invalid ea_ino
[  358.649965][T17509] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.4941: couldn't read orphan inode 15 (err -117)
[  358.689071][T17509] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  358.736214][T10868] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  358.758567][T17527] loop2: detected capacity change from 0 to 512
[  358.810264][T17527] EXT4-fs: Ignoring removed i_version option
[  358.821252][T17532] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=17532 comm=syz.5.4951
[  358.841654][T17527] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  358.856766][T17527] ext4 filesystem being mounted at /439/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  358.886460][T17527] EXT4-fs error (device loop2): ext4_do_update_inode:5154: inode #4: comm syz.2.4950: corrupted inode contents
[  358.912305][T17527] EXT4-fs error (device loop2): ext4_dirty_inode:6042: inode #4: comm syz.2.4950: mark_inode_dirty error
[  358.950471][T17527] EXT4-fs error (device loop2): ext4_do_update_inode:5154: inode #4: comm syz.2.4950: corrupted inode contents
[  358.977942][T17527] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #4: comm syz.2.4950: mark_inode_dirty error
[  359.000228][T17527] EXT4-fs error (device loop2): ext4_acquire_dquot:6927: comm syz.2.4950: Failed to acquire dquot type 1
[  359.049111][T10868] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  359.093485][T17541] FAULT_INJECTION: forcing a failure.
[  359.093485][T17541] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  359.106637][T17541] CPU: 0 UID: 0 PID: 17541 Comm: syz.2.4953 Not tainted 6.14.0-rc6-syzkaller-00103-g4003c9e78778 #0
[  359.106667][T17541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  359.106682][T17541] Call Trace:
[  359.106688][T17541]  <TASK>
[  359.106696][T17541]  dump_stack_lvl+0xf2/0x150
[  359.106838][T17541]  dump_stack+0x15/0x1a
[  359.106864][T17541]  should_fail_ex+0x24a/0x260
[  359.106962][T17541]  should_fail+0xb/0x10
[  359.106989][T17541]  should_fail_usercopy+0x1a/0x20
[  359.107081][T17541]  _copy_to_user+0x20/0xa0
[  359.107104][T17541]  simple_read_from_buffer+0xa0/0x110
[  359.107133][T17541]  proc_fail_nth_read+0xf9/0x140
[  359.107195][T17541]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  359.107249][T17541]  vfs_read+0x19b/0x6f0
[  359.107279][T17541]  ? __rcu_read_unlock+0x4e/0x70
[  359.107302][T17541]  ? __fget_files+0x17c/0x1c0
[  359.107341][T17541]  ksys_read+0xe8/0x1b0
[  359.107369][T17541]  __x64_sys_read+0x42/0x50
[  359.107439][T17541]  x64_sys_call+0x2874/0x2dc0
[  359.107472][T17541]  do_syscall_64+0xc9/0x1c0
[  359.107589][T17541]  ? clear_bhb_loop+0x55/0xb0
[  359.107623][T17541]  ? clear_bhb_loop+0x55/0xb0
[  359.107712][T17541]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.107773][T17541] RIP: 0033:0x7f2ae7e3bb7c
[  359.107792][T17541] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  359.107851][T17541] RSP: 002b:00007f2ae64a7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  359.107869][T17541] RAX: ffffffffffffffda RBX: 00007f2ae8055fa0 RCX: 00007f2ae7e3bb7c
[  359.107884][T17541] RDX: 000000000000000f RSI: 00007f2ae64a70a0 RDI: 0000000000000003
[  359.107897][T17541] RBP: 00007f2ae64a7090 R08: 0000000000000000 R09: 0000000000000000
[  359.107908][T17541] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  359.107931][T17541] R13: 0000000000000001 R14: 00007f2ae8055fa0 R15: 00007fff9c161ee8
[  359.107950][T17541]  </TASK>
[  359.453335][T17548] loop2: detected capacity change from 0 to 128
[  359.488315][T17548] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  359.509080][T17548] ext4 filesystem being mounted at /443/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  359.559193][T17548] netlink: 'syz.2.4956': attribute type 15 has an invalid length.
[  359.702131][T10868] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  359.712900][T17559] delete_channel: no stack
[  359.717536][T17559] delete_channel: no stack
[  359.835504][T17571] loop5: detected capacity change from 0 to 512
[  359.872566][T17571] EXT4-fs: Ignoring removed nomblk_io_submit option
[  359.936334][T17571] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  359.946171][T17571] EXT4-fs (loop5): group descriptors corrupted!
[  359.959297][T17568] FAULT_INJECTION: forcing a failure.
[  359.959297][T17568] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  359.972564][T17568] CPU: 0 UID: 0 PID: 17568 Comm: syz.1.4960 Not tainted 6.14.0-rc6-syzkaller-00103-g4003c9e78778 #0
[  359.972663][T17568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  359.972679][T17568] Call Trace:
[  359.972688][T17568]  <TASK>
[  359.972696][T17568]  dump_stack_lvl+0xf2/0x150
[  359.972725][T17568]  dump_stack+0x15/0x1a
[  359.972753][T17568]  should_fail_ex+0x24a/0x260
[  359.972856][T17568]  should_fail+0xb/0x10
[  359.972887][T17568]  should_fail_usercopy+0x1a/0x20
[  359.972940][T17568]  _copy_from_iter+0xd5/0xd00
[  359.972970][T17568]  ? mntput_no_expire+0x70/0x3d0
[  359.973017][T17568]  ? mntput+0x49/0x70
[  359.973045][T17568]  tun_get_user+0x153/0x25c0
[  359.973075][T17568]  ? path_openat+0x1a78/0x1fc0
[  359.973177][T17568]  ? _parse_integer_limit+0x167/0x180
[  359.973206][T17568]  ? _parse_integer+0x27/0x30
[  359.973243][T17568]  ? strnchr+0x1f/0x40
[  359.973285][T17568]  ? ref_tracker_alloc+0x1f5/0x2f0
[  359.973328][T17568]  tun_chr_write_iter+0x188/0x240
[  359.973352][T17568]  vfs_write+0x77b/0x920
[  359.973380][T17568]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  359.973480][T17568]  ksys_write+0xe8/0x1b0
[  359.973516][T17568]  __x64_sys_write+0x42/0x50
[  359.973616][T17568]  x64_sys_call+0x287e/0x2dc0
[  359.973675][T17568]  do_syscall_64+0xc9/0x1c0
[  359.973714][T17568]  ? clear_bhb_loop+0x55/0xb0
[  359.973776][T17568]  ? clear_bhb_loop+0x55/0xb0
[  359.973816][T17568]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.973845][T17568] RIP: 0033:0x7f8d9264d169
[  359.973863][T17568] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  359.973886][T17568] RSP: 002b:00007f8d90c90038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  359.973979][T17568] RAX: ffffffffffffffda RBX: 00007f8d92866080 RCX: 00007f8d9264d169
[  359.973992][T17568] RDX: 000000000000002e RSI: 0000400000000300 RDI: 000000000000000b
[  359.974007][T17568] RBP: 00007f8d90c90090 R08: 0000000000000000 R09: 0000000000000000
[  359.974022][T17568] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  359.974036][T17568] R13: 0000000000000000 R14: 00007f8d92866080 R15: 00007ffe27a97c28
[  359.974064][T17568]  </TASK>
[  360.302070][T17583] netem: change failed
[  360.323450][T17585] FAULT_INJECTION: forcing a failure.
[  360.323450][T17585] name failslab, interval 1, probability 0, space 0, times 0
[  360.336140][T17585] CPU: 0 UID: 0 PID: 17585 Comm: syz.5.4972 Not tainted 6.14.0-rc6-syzkaller-00103-g4003c9e78778 #0
[  360.336171][T17585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  360.336186][T17585] Call Trace:
[  360.336194][T17585]  <TASK>
[  360.336260][T17585]  dump_stack_lvl+0xf2/0x150
[  360.336289][T17585]  dump_stack+0x15/0x1a
[  360.336312][T17585]  should_fail_ex+0x24a/0x260
[  360.336350][T17585]  should_failslab+0x8f/0xb0
[  360.336427][T17585]  __kmalloc_node_noprof+0xad/0x410
[  360.336458][T17585]  ? __vmalloc_node_range_noprof+0x3dc/0xe70
[  360.336571][T17585]  __vmalloc_node_range_noprof+0x3dc/0xe70
[  360.336600][T17585]  ? __rcu_read_unlock+0x4e/0x70
[  360.336632][T17585]  ? selinux_capable+0x1f2/0x260
[  360.336659][T17585]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  360.336724][T17585]  __vmalloc_noprof+0x5e/0x70
[  360.336770][T17585]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  360.336807][T17585]  bpf_prog_alloc_no_stats+0x49/0x380
[  360.336842][T17585]  ? bpf_prog_alloc+0x28/0x150
[  360.336871][T17585]  bpf_prog_alloc+0x3a/0x150
[  360.336915][T17585]  bpf_prog_load+0x4d0/0x1050
[  360.336961][T17585]  __sys_bpf+0x463/0x7a0
[  360.337061][T17585]  __x64_sys_bpf+0x43/0x50
[  360.337149][T17585]  x64_sys_call+0x2914/0x2dc0
[  360.337181][T17585]  do_syscall_64+0xc9/0x1c0
[  360.337240][T17585]  ? clear_bhb_loop+0x55/0xb0
[  360.337287][T17585]  ? clear_bhb_loop+0x55/0xb0
[  360.337317][T17585]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  360.337355][T17585] RIP: 0033:0x7f898a14d169
[  360.337374][T17585] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  360.337396][T17585] RSP: 002b:00007f89887b7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  360.337463][T17585] RAX: ffffffffffffffda RBX: 00007f898a365fa0 RCX: 00007f898a14d169
[  360.337475][T17585] RDX: 0000000000000094 RSI: 0000400000000380 RDI: 0000000000000005
[  360.337487][T17585] RBP: 00007f89887b7090 R08: 0000000000000000 R09: 0000000000000000
[  360.337499][T17585] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  360.337511][T17585] R13: 0000000000000000 R14: 00007f898a365fa0 R15: 00007ffe730ebd68
[  360.337532][T17585]  </TASK>
[  360.337541][T17585] syz.5.4972: vmalloc error: size 4096, failed to allocated page array size 8, mode:0x500dc2(GFP_HIGHUSER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0
[  360.571677][T17585] CPU: 0 UID: 0 PID: 17585 Comm: syz.5.4972 Not tainted 6.14.0-rc6-syzkaller-00103-g4003c9e78778 #0
[  360.571724][T17585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  360.571739][T17585] Call Trace:
[  360.571747][T17585]  <TASK>
[  360.571757][T17585]  dump_stack_lvl+0xf2/0x150
[  360.571790][T17585]  dump_stack+0x15/0x1a
[  360.571815][T17585]  warn_alloc+0x145/0x1b0
[  360.571929][T17585]  __vmalloc_node_range_noprof+0x473/0xe70
[  360.572034][T17585]  ? __rcu_read_unlock+0x4e/0x70
[  360.572067][T17585]  ? selinux_capable+0x1f2/0x260
[  360.572153][T17585]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  360.572187][T17585]  __vmalloc_noprof+0x5e/0x70
[  360.572218][T17585]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  360.572253][T17585]  bpf_prog_alloc_no_stats+0x49/0x380
[  360.572362][T17585]  ? bpf_prog_alloc+0x28/0x150
[  360.572394][T17585]  bpf_prog_alloc+0x3a/0x150
[  360.572426][T17585]  bpf_prog_load+0x4d0/0x1050
[  360.572471][T17585]  __sys_bpf+0x463/0x7a0
[  360.572545][T17585]  __x64_sys_bpf+0x43/0x50
[  360.572656][T17585]  x64_sys_call+0x2914/0x2dc0
[  360.572687][T17585]  do_syscall_64+0xc9/0x1c0
[  360.572769][T17585]  ? clear_bhb_loop+0x55/0xb0
[  360.572862][T17585]  ? clear_bhb_loop+0x55/0xb0
[  360.572894][T17585]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  360.572925][T17585] RIP: 0033:0x7f898a14d169
[  360.572953][T17585] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  360.572975][T17585] RSP: 002b:00007f89887b7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  360.572998][T17585] RAX: ffffffffffffffda RBX: 00007f898a365fa0 RCX: 00007f898a14d169
[  360.573013][T17585] RDX: 0000000000000094 RSI: 0000400000000380 RDI: 0000000000000005
[  360.573027][T17585] RBP: 00007f89887b7090 R08: 0000000000000000 R09: 0000000000000000
[  360.573042][T17585] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  360.573056][T17585] R13: 0000000000000000 R14: 00007f898a365fa0 R15: 00007ffe730ebd68
[  360.573078][T17585]  </TASK>
[  360.573085][T17585] Mem-Info:
[  360.682218][T17590] loop2: detected capacity change from 0 to 8192
[  360.682383][T17585] active_anon:50172 inactive_anon:8 isolated_anon:0
[  360.682383][T17585]  active_file:11033 inactive_file:10557 isolated_file:0
[  360.682383][T17585]  unevictable:0 dirty:371 writeback:0
[  360.682383][T17585]  slab_reclaimable:3408 slab_unreclaimable:16176
[  360.682383][T17585]  mapped:28826 shmem:42676 pagetables:1062
[  360.682383][T17585]  sec_pagetables:0 bounce:0
[  360.682383][T17585]  kernel_misc_reclaimable:0
[  360.682383][T17585]  free:1806382 free_pcp:8519 free_cma:0
[  360.828029][T17585] Node 0 active_anon:200804kB inactive_anon:32kB active_file:44132kB inactive_file:42228kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:115304kB dirty:1484kB writeback:0kB shmem:170704kB writeback_tmp:0kB kernel_stack:3280kB pagetables:4248kB sec_pagetables:0kB all_unreclaimable? no
[  360.856314][T17585] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  360.883219][T17585] lowmem_reserve[]: 0 2885 7863 7863
[  360.888595][T17585] Node 0 DMA32 free:2950828kB boost:0kB min:4136kB low:7068kB high:10000kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2954360kB mlocked:0kB bounce:0kB free_pcp:3532kB local_pcp:3532kB free_cma:0kB
[  360.917334][T17585] lowmem_reserve[]: 0 0 4978 4978
[  360.922476][T17585] Node 0 Normal free:4223728kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:200804kB inactive_anon:32kB active_file:44132kB inactive_file:42228kB unevictable:0kB writepending:1484kB present:5242880kB managed:5098208kB mlocked:0kB bounce:0kB free_pcp:32740kB local_pcp:25100kB free_cma:0kB
[  360.953051][T17585] lowmem_reserve[]: 0 0 0 0
[  360.957636][T17585] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  360.970517][T17585] Node 0 DMA32: 3*4kB (M) 2*8kB (M) 1*16kB (M) 4*32kB (M) 4*64kB (M) 2*128kB (M) 2*256kB (M) 3*512kB (M) 3*1024kB (M) 2*2048kB (M) 718*4096kB (M) = 2950828kB
[  360.986758][T17585] Node 0 Normal: 2*4kB (E) 5*8kB (ME) 123*16kB (UME) 72*32kB (UME) 36*64kB (ME) 35*128kB (ME) 26*256kB (M) 129*512kB (UME) 207*1024kB (UME) 80*2048kB (UM) 917*4096kB (UM) = 4215648kB
[  361.005176][T17585] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  361.014508][T17585] 64274 total pagecache pages
[  361.019304][T17585] 9 pages in swap cache
[  361.023483][T17585] Free swap  = 46060kB
[  361.027583][T17585] Total swap = 124996kB
[  361.031751][T17585] 2097051 pages RAM
[  361.035589][T17585] 0 pages HighMem/MovableOnly
[  361.040321][T17585] 80069 pages reserved
[  361.107380][   T30] kauditd_printk_skb: 215 callbacks suppressed
[  361.107397][   T30] audit: type=1326 audit(1741928980.509:17946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17591 comm="syz.5.4975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898a14d169 code=0x7ffc0000
[  361.174415][   T30] audit: type=1326 audit(1741928980.537:17947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17591 comm="syz.5.4975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f898a14d169 code=0x7ffc0000
[  361.198291][   T30] audit: type=1326 audit(1741928980.537:17948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17591 comm="syz.5.4975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898a14d169 code=0x7ffc0000
[  361.222113][   T30] audit: type=1326 audit(1741928980.537:17949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17591 comm="syz.5.4975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898a14d169 code=0x7ffc0000
[  361.245822][   T30] audit: type=1326 audit(1741928980.537:17950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17591 comm="syz.5.4975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f898a14d169 code=0x7ffc0000
[  361.269637][   T30] audit: type=1326 audit(1741928980.537:17951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17591 comm="syz.5.4975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898a14d169 code=0x7ffc0000
[  361.293345][   T30] audit: type=1326 audit(1741928980.546:17952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17591 comm="syz.5.4975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f898a14d169 code=0x7ffc0000
[  361.317077][   T30] audit: type=1326 audit(1741928980.546:17953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17591 comm="syz.5.4975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898a14d169 code=0x7ffc0000
[  361.340802][   T30] audit: type=1326 audit(1741928980.546:17954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17591 comm="syz.5.4975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=198 compat=0 ip=0x7f898a14d169 code=0x7ffc0000
[  361.364465][   T30] audit: type=1326 audit(1741928980.546:17955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17591 comm="syz.5.4975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898a14d169 code=0x7ffc0000
[  361.390215][T17597] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  361.403966][T17598] netlink: 'syz.4.4977': attribute type 10 has an invalid length.
[  361.411980][T17598] __nla_validate_parse: 8 callbacks suppressed
[  361.412002][T17598] netlink: 40 bytes leftover after parsing attributes in process `syz.4.4977'.
[  361.489254][T17597] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  361.596304][T17597] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  361.648164][T17597] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  361.771205][T17597] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  361.789221][T17597] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  361.820467][T17597] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  361.842411][T17597] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  361.901028][T17613] SELinux: syz.2.4982 (17613) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  361.984591][ T8757] EXT4-fs error: 57 callbacks suppressed
[  361.984609][ T8757] EXT4-fs error (device loop6): ext4_empty_dir:3103: inode #12: block 32: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  362.022325][ T8757] EXT4-fs error (device loop6): ext4_readdir:261: inode #12: block 32: comm syz-executor: path /539/bus/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  362.119364][T17605] loop5: detected capacity change from 0 to 128
[  362.132050][T17605] loop5: detected capacity change from 0 to 512
[  362.139398][T17605] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  362.161237][T17605] EXT4-fs (loop5): orphan cleanup on readonly fs
[  362.167890][T17605] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:517: comm syz.5.4979: Block bitmap for bg 0 marked uninitialized
[  362.183943][T17605] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  362.205339][ T8757] EXT4-fs error (device loop6): ext4_empty_dir:3103: inode #12: block 32: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  362.205883][T17605] EXT4-fs (loop5): 1 orphan inode deleted
[  362.233302][ T8757] EXT4-fs warning: 24 callbacks suppressed
[  362.233320][ T8757] EXT4-fs warning (device loop6): ext4_empty_dir:3105: inode #12: comm syz-executor: directory missing '.'
[  362.250856][ T8757] EXT4-fs error (device loop6): ext4_readdir:261: inode #12: block 32: comm syz-executor: path /539/bus/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  362.272467][T17605] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  362.353552][ T8757] EXT4-fs error (device loop6): ext4_empty_dir:3103: inode #12: block 32: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  362.384669][ T8757] EXT4-fs warning (device loop6): ext4_empty_dir:3105: inode #12: comm syz-executor: directory missing '.'
[  362.409279][ T8757] EXT4-fs error (device loop6): ext4_readdir:261: inode #12: block 32: comm syz-executor: path /539/bus/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  362.436869][T17632] netlink: 'syz.2.4986': attribute type 10 has an invalid length.
[  362.446807][T17632] team0: Device hsr_slave_0 failed to register rx_handler
[  362.503804][T16182] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  362.526839][ T8757] EXT4-fs error (device loop6): ext4_empty_dir:3103: inode #12: block 32: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  362.563349][ T8757] EXT4-fs warning (device loop6): ext4_empty_dir:3105: inode #12: comm syz-executor: directory missing '.'
[  362.581766][ T8757] EXT4-fs error (device loop6): ext4_readdir:261: inode #12: block 32: comm syz-executor: path /539/bus/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  362.643820][T17640] netem: change failed
[  362.655168][T17638] netlink: 'syz.5.4992': attribute type 10 has an invalid length.
[  362.669817][T17638] team0: Device hsr_slave_0 failed to register rx_handler
[  362.725116][T17644] SELinux: syz.2.4994 (17644) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  362.754756][ T8757] EXT4-fs error (device loop6): ext4_empty_dir:3103: inode #12: block 32: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  362.778036][ T8757] EXT4-fs warning (device loop6): ext4_empty_dir:3105: inode #12: comm syz-executor: directory missing '.'
[  362.793176][ T8757] EXT4-fs error (device loop6): ext4_readdir:261: inode #12: block 32: comm syz-executor: path /539/bus/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  362.817563][T17650] 9pnet_fd: Insufficient options for proto=fd
[  362.846225][T17652] netlink: 'syz.2.5000': attribute type 1 has an invalid length.
[  362.877606][T17652] 8021q: adding VLAN 0 to HW filter on device bond2
[  362.880429][T17657] loop1: detected capacity change from 0 to 512
[  362.891156][T17657] EXT4-fs: Ignoring removed i_version option
[  362.912441][ T8757] EXT4-fs warning (device loop6): ext4_empty_dir:3105: inode #12: comm syz-executor: directory missing '.'
[  362.938295][T17657] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  362.951636][T17657] ext4 filesystem being mounted at /348/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  362.994907][T17657] EXT4-fs error (device loop1): ext4_do_update_inode:5154: inode #4: comm syz.1.5001: corrupted inode contents
[  363.014000][ T8757] EXT4-fs warning (device loop6): ext4_empty_dir:3105: inode #12: comm syz-executor: directory missing '.'
[  363.017523][T17657] EXT4-fs error (device loop1): ext4_dirty_inode:6042: inode #4: comm syz.1.5001: mark_inode_dirty error
[  363.043741][T17675] loop2: detected capacity change from 0 to 512
[  363.050580][T17675] EXT4-fs: Ignoring removed i_version option
[  363.059996][T17677] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5006'.
[  363.090462][T17675] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  363.114754][ T8757] EXT4-fs warning (device loop6): ext4_empty_dir:3105: inode #12: comm syz-executor: directory missing '.'
[  363.126767][T17675] ext4 filesystem being mounted at /460/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  363.137990][T17657] EXT4-fs error (device loop1): ext4_do_update_inode:5154: inode #4: comm syz.1.5001: corrupted inode contents
[  363.171654][T17687] loop5: detected capacity change from 0 to 512
[  363.178731][T17675] FAULT_INJECTION: forcing a failure.
[  363.178731][T17675] name failslab, interval 1, probability 0, space 0, times 0
[  363.191550][T17675] CPU: 1 UID: 0 PID: 17675 Comm: syz.2.5005 Not tainted 6.14.0-rc6-syzkaller-00103-g4003c9e78778 #0
[  363.191578][T17675] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  363.191591][T17675] Call Trace:
[  363.191598][T17675]  <TASK>
[  363.191606][T17675]  dump_stack_lvl+0xf2/0x150
[  363.191640][T17675]  dump_stack+0x15/0x1a
[  363.191662][T17675]  should_fail_ex+0x24a/0x260
[  363.191693][T17675]  should_failslab+0x8f/0xb0
[  363.191767][T17675]  kmem_cache_alloc_noprof+0x52/0x320
[  363.191789][T17675]  ? getname_flags+0x81/0x3b0
[  363.191898][T17675]  getname_flags+0x81/0x3b0
[  363.191955][T17675]  getname+0x17/0x20
[  363.191972][T17675]  do_sys_openat2+0x67/0x120
[  363.191993][T17675]  __x64_sys_openat+0xf3/0x120
[  363.192015][T17675]  x64_sys_call+0x2b30/0x2dc0
[  363.192041][T17675]  do_syscall_64+0xc9/0x1c0
[  363.192087][T17675]  ? clear_bhb_loop+0x55/0xb0
[  363.192114][T17675]  ? clear_bhb_loop+0x55/0xb0
[  363.192141][T17675]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  363.192167][T17675] RIP: 0033:0x7f2ae7e3d169
[  363.192182][T17675] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  363.192220][T17675] RSP: 002b:00007f2ae64a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  363.192238][T17675] RAX: ffffffffffffffda RBX: 00007f2ae8055fa0 RCX: 00007f2ae7e3d169
[  363.192251][T17675] RDX: 0000000000000042 RSI: 0000400000000040 RDI: ffffffffffffff9c
[  363.192263][T17675] RBP: 00007f2ae64a7090 R08: 0000000000000000 R09: 0000000000000000
[  363.192275][T17675] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  363.192296][T17675] R13: 0000000000000000 R14: 00007f2ae8055fa0 R15: 00007fff9c161ee8
[  363.192313][T17675]  </TASK>
[  363.372180][T17657] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #4: comm syz.1.5001: mark_inode_dirty error
[  363.372191][T17687] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  363.393806][T17657] EXT4-fs error (device loop1): ext4_acquire_dquot:6927: comm syz.1.5001: Failed to acquire dquot type 1
[  363.405691][T17678] EXT4-fs error (device loop1): ext4_do_update_inode:5154: inode #4: comm syz.1.5001: corrupted inode contents
[  363.418463][T17688] EXT4-fs error (device loop2): ext4_do_update_inode:5154: inode #4: comm syz.2.5005: corrupted inode contents
[  363.420896][ T8757] EXT4-fs warning (device loop6): ext4_empty_dir:3105: inode #12: comm syz-executor: directory missing '.'
[  363.430706][T17678] EXT4-fs error (device loop1): ext4_dirty_inode:6042: inode #4: comm syz.1.5001: mark_inode_dirty error
[  363.453232][T17678] EXT4-fs error (device loop1): ext4_do_update_inode:5154: inode #4: comm syz.1.5001: corrupted inode contents
[  363.454387][T17688] EXT4-fs error (device loop2): ext4_dirty_inode:6042: inode #4: comm syz.2.5005: mark_inode_dirty error
[  363.479724][T17688] EXT4-fs error (device loop2): ext4_do_update_inode:5154: inode #4: comm syz.2.5005: corrupted inode contents
[  363.486143][T17678] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #4: comm syz.1.5001: mark_inode_dirty error
[  363.493314][T17687] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  363.516367][T17688] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #4: comm syz.2.5005: mark_inode_dirty error
[  363.528592][T17678] EXT4-fs error (device loop1): ext4_acquire_dquot:6927: comm syz.1.5001: Failed to acquire dquot type 1
[  363.549950][T17688] EXT4-fs error (device loop2): ext4_acquire_dquot:6927: comm syz.2.5005: Failed to acquire dquot type 1
[  363.582558][T17687] EXT4-fs error (device loop5): ext4_do_update_inode:5154: inode #2: comm syz.5.5008: corrupted inode contents
[  363.594718][T17687] EXT4-fs error (device loop5): ext4_dirty_inode:6042: inode #2: comm syz.5.5008: mark_inode_dirty error
[  363.616668][T12517] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  363.626130][ T8757] EXT4-fs warning (device loop6): ext4_empty_dir:3105: inode #12: comm syz-executor: directory missing '.'
[  363.626171][T17687] EXT4-fs error (device loop5): ext4_do_update_inode:5154: inode #2: comm syz.5.5008: corrupted inode contents
[  363.660151][T10868] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  363.719859][T17702] 9pnet_fd: Insufficient options for proto=fd
[  363.729001][   T25] hid-generic 0000:0004:0000.0004: unknown main item tag 0x0
[  363.736613][   T25] hid-generic 0000:0004:0000.0004: unknown main item tag 0x0
[  363.744136][   T25] hid-generic 0000:0004:0000.0004: unknown main item tag 0x0
[  363.763628][   T25] hid-generic 0000:0004:0000.0004: hidraw0: <UNKNOWN> HID v8000.00 Device [syz0] on syz1
[  363.780395][ T8757] EXT4-fs warning (device loop6): ext4_empty_dir:3105: inode #12: comm syz-executor: directory missing '.'
[  363.800022][T17710] loop4: detected capacity change from 0 to 1024
[  363.807291][T16182] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  363.831301][T17710] EXT4-fs: Ignoring removed nomblk_io_submit option
[  363.842012][T17710] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  363.863351][T17714] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5018'.
[  363.872601][T17714] netlink: 'syz.2.5018': attribute type 1 has an invalid length.
[  363.880371][T17714] netlink: 44 bytes leftover after parsing attributes in process `syz.2.5018'.
[  363.884292][T17710] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  363.902506][T17710] System zones: 0-1, 3-36
[  363.910651][T17710] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  363.925330][T17719] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5019'.
[  363.968184][T17710] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22
[  364.039600][T17725] xt_CT: No such helper "pptp"
[  364.087205][T11388] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  364.128006][T17714] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5018'.
[  364.150037][T17731] program syz.4.5024 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  364.161447][T17714] netlink: 96 bytes leftover after parsing attributes in process `syz.2.5018'.
[  364.171451][T17735] 9pnet_fd: Insufficient options for proto=fd
[  364.205429][T17737] loop2: detected capacity change from 0 to 512
[  364.214766][T17737] EXT4-fs: Ignoring removed i_version option
[  364.235034][T17737] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  364.262824][T17737] ext4 filesystem being mounted at /464/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  364.323891][T17754] netlink: 'syz.1.5032': attribute type 10 has an invalid length.
[  364.343771][T17754] team0: Device hsr_slave_0 failed to register rx_handler
[  364.414986][T17737] EXT4-fs error (device loop2): ext4_do_update_inode:5154: inode #4: comm syz.2.5027: corrupted inode contents
[  364.430895][T17753] loop5: detected capacity change from 0 to 8192
[  364.438628][T17737] EXT4-fs error (device loop2): ext4_dirty_inode:6042: inode #4: comm syz.2.5027: mark_inode_dirty error
[  364.453348][T17737] EXT4-fs error (device loop2): ext4_do_update_inode:5154: inode #4: comm syz.2.5027: corrupted inode contents
[  364.479108][T17759] netlink: 'syz.4.5035': attribute type 1 has an invalid length.
[  364.508908][T17737] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #4: comm syz.2.5027: mark_inode_dirty error
[  364.535292][T17737] EXT4-fs error (device loop2): ext4_acquire_dquot:6927: comm syz.2.5027: Failed to acquire dquot type 1
[  364.548075][T17762] netlink: 'syz.1.5036': attribute type 1 has an invalid length.
[  364.589269][T10868] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  364.734309][T17771] 9pnet_fd: Insufficient options for proto=fd
[  364.775505][T17774] loop2: detected capacity change from 0 to 512
[  364.800058][T17774] EXT4-fs warning (device loop2): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  364.811658][T17774] EXT4-fs warning (device loop2): dx_probe:881: Enable large directory feature to access it
[  364.821826][T17774] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.5038: Corrupt directory, running e2fsck is recommended
[  364.864639][T17774] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -117
[  364.871168][T17783] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5045'.
[  364.879915][T17774] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.5038: corrupted in-inode xattr: invalid ea_ino
[  364.906507][T17774] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.5038: couldn't read orphan inode 15 (err -117)
[  364.943332][T17790] SELinux: syz.5.5048 (17790) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  364.950940][T17774] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  365.005945][T17794] netlink: 'syz.5.5050': attribute type 10 has an invalid length.
[  365.027082][T17794] team0: Device hsr_slave_0 failed to register rx_handler
[  365.038835][T10868] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  365.097227][T17798] 9pnet_fd: Insufficient options for proto=fd
[  365.139990][T17802] loop1: detected capacity change from 0 to 8192
[  365.208661][T17808] sd 0:0:1:0: device reset
[  365.261843][T17815] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5060'.
[  365.318824][T17815] netlink: 'syz.5.5060': attribute type 1 has an invalid length.
[  365.326663][T17815] netlink: 44 bytes leftover after parsing attributes in process `syz.5.5060'.
[  365.341823][T17822] loop2: detected capacity change from 0 to 512
[  365.381117][T17822] EXT4-fs warning (device loop2): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  365.392689][T17822] EXT4-fs warning (device loop2): dx_probe:881: Enable large directory feature to access it
[  365.402975][T17822] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.5061: Corrupt directory, running e2fsck is recommended
[  365.476724][T17815] xt_CT: No such helper "pptp"
[  365.539261][T17822] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -117
[  365.613159][T17822] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.5061: corrupted in-inode xattr: invalid ea_ino
[  365.645268][T17822] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.5061: couldn't read orphan inode 15 (err -117)
[  365.694269][T17822] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  365.779467][T17831] xt_CT: No such helper "pptp"
[  365.796444][T10868] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  365.820146][T17834] loop1: detected capacity change from 0 to 512
[  365.907545][T17842] 9pnet_fd: Insufficient options for proto=fd
[  366.040686][T17846] SELinux: syz.2.5069 (17846) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  366.228954][T17857] loop2: detected capacity change from 0 to 512
[  366.276081][T17857] EXT4-fs warning (device loop2): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  366.287676][T17857] EXT4-fs warning (device loop2): dx_probe:881: Enable large directory feature to access it
[  366.297808][T17857] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.5075: Corrupt directory, running e2fsck is recommended
[  366.311072][T17857] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -117
[  366.330386][T17857] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.5075: corrupted in-inode xattr: invalid ea_ino
[  366.372207][T17857] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.5075: couldn't read orphan inode 15 (err -117)
[  366.395971][T17857] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  366.438305][T10868] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  366.475613][T17871] SELinux: syz.2.5079 (17871) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  366.501672][T17873] delete_channel: no stack
[  366.511701][T17873] delete_channel: no stack
[  366.672451][T17875] syzkaller0: entered promiscuous mode
[  366.677986][T17875] syzkaller0: entered allmulticast mode
[  366.705321][T17879] netem: change failed
[  367.098550][T17887] SELinux: syz.2.5083 (17887) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  367.375715][ T8757] EXT4-fs error: 74 callbacks suppressed
[  367.375736][ T8757] EXT4-fs error (device loop6): ext4_empty_dir:3103: inode #12: block 32: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  367.440182][ T8757] EXT4-fs error (device loop6): ext4_readdir:261: inode #12: block 32: comm syz-executor: path /539/bus/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  367.531018][T17909] loop1: detected capacity change from 0 to 512
[  367.549608][T17909] EXT4-fs: Ignoring removed i_version option
[  367.601896][ T8757] EXT4-fs error (device loop6): ext4_empty_dir:3103: inode #12: block 32: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  367.603388][T17909] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  367.650114][ T8757] EXT4-fs warning: 32 callbacks suppressed
[  367.650133][ T8757] EXT4-fs warning (device loop6): ext4_empty_dir:3105: inode #12: comm syz-executor: directory missing '.'
[  367.676412][T17909] ext4 filesystem being mounted at /381/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  367.713817][T17909] EXT4-fs error (device loop1): ext4_do_update_inode:5154: inode #4: comm syz.1.5092: corrupted inode contents
[  367.740591][ T8757] EXT4-fs error (device loop6): ext4_readdir:261: inode #12: block 32: comm syz-executor: path /539/bus/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  367.785778][T17909] EXT4-fs error (device loop1): ext4_dirty_inode:6042: inode #4: comm syz.1.5092: mark_inode_dirty error
[  367.816942][T17909] EXT4-fs error (device loop1): ext4_do_update_inode:5154: inode #4: comm syz.1.5092: corrupted inode contents
[  367.838036][T17909] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #4: comm syz.1.5092: mark_inode_dirty error
[  367.880931][T17909] __quota_error: 114 callbacks suppressed
[  367.880952][T17909] Quota error (device loop1): write_blk: dquota write failed
[  367.894211][T17909] Quota error (device loop1): find_free_dqentry: Can't write quota data block 5
[  367.903305][T17909] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  367.913332][T17909] EXT4-fs error (device loop1): ext4_acquire_dquot:6927: comm syz.1.5092: Failed to acquire dquot type 1
[  368.010778][ T8757] EXT4-fs error (device loop6): ext4_empty_dir:3103: inode #12: block 32: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  368.041384][T12517] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  368.073976][ T8757] EXT4-fs warning (device loop6): ext4_empty_dir:3105: inode #12: comm syz-executor: directory missing '.'
[  368.099926][ T8757] EXT4-fs error (device loop6): ext4_readdir:261: inode #12: block 32: comm syz-executor: path /539/bus/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  368.294134][ T8757] EXT4-fs error (device loop6): ext4_empty_dir:3103: inode #12: block 32: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  368.320150][ T8757] EXT4-fs warning (device loop6): ext4_empty_dir:3105: inode #12: comm syz-executor: directory missing '.'
[  368.345676][ T8757] EXT4-fs error (device loop6): ext4_readdir:261: inode #12: block 32: comm syz-executor: path /539/bus/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  368.679138][ T8757] EXT4-fs error (device loop6): ext4_empty_dir:3103: inode #12: block 32: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  368.905311][ T8757] EXT4-fs warning (device loop6): ext4_empty_dir:3105: inode #12: comm syz-executor: directory missing '.'
[  369.002728][ T8757] EXT4-fs error (device loop6): ext4_readdir:261: inode #12: block 32: comm syz-executor: path /539/bus/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  369.132396][ T8757] EXT4-fs warning (device loop6): ext4_empty_dir:3105: inode #12: comm syz-executor: directory missing '.'
[  369.251170][T17928] loop2: detected capacity change from 0 to 512
[  369.280209][ T8757] EXT4-fs warning (device loop6): ext4_empty_dir:3105: inode #12: comm syz-executor: directory missing '.'
[  369.329687][T17928] loop2: detected capacity change from 0 to 256
[  369.397744][T17928] msdos: Bad value for 'gid'
[  369.402431][T17928] msdos: Bad value for 'gid'
[  369.411388][T17928] __nla_validate_parse: 7 callbacks suppressed
[  369.411407][T17928] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5099'.
[  369.485334][ T8757] EXT4-fs warning (device loop6): ext4_empty_dir:3105: inode #12: comm syz-executor: directory missing '.'
[  369.603865][ T8757] EXT4-fs warning (device loop6): ext4_empty_dir:3105: inode #12: comm syz-executor: directory missing '.'
[  369.638853][   T30] audit: type=1326 audit(1741928988.488:18059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17938 comm="syz.1.5104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d9264d169 code=0x7ffc0000
[  369.662599][   T30] audit: type=1326 audit(1741928988.488:18060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17938 comm="syz.1.5104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d9264d169 code=0x7ffc0000
[  369.752349][   T30] audit: type=1326 audit(1741928988.534:18061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17938 comm="syz.1.5104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8d9264d169 code=0x7ffc0000
[  369.776003][   T30] audit: type=1326 audit(1741928988.544:18062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17938 comm="syz.1.5104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d9264d169 code=0x7ffc0000
[  369.799602][   T30] audit: type=1326 audit(1741928988.544:18063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17938 comm="syz.1.5104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d9264d169 code=0x7ffc0000
[  369.823315][   T30] audit: type=1326 audit(1741928988.544:18064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17938 comm="syz.1.5104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8d9264d169 code=0x7ffc0000
[  369.846972][   T30] audit: type=1326 audit(1741928988.553:18065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17938 comm="syz.1.5104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d9264d169 code=0x7ffc0000
[  369.887031][ T8757] EXT4-fs warning (device loop6): ext4_empty_dir:3105: inode #12: comm syz-executor: directory missing '.'
[  369.978682][ T8757] EXT4-fs warning (device loop6): ext4_empty_dir:3105: inode #12: comm syz-executor: directory missing '.'
[  370.009916][T17957] Process accounting resumed
[  370.066899][T17959] Process accounting resumed
[  370.134594][T17966] loop5: detected capacity change from 0 to 8192
[  370.146892][T17971] validate_nla: 1 callbacks suppressed
[  370.146910][T17971] netlink: 'syz.4.5118': attribute type 1 has an invalid length.
[  370.152626][T17973] loop2: detected capacity change from 0 to 1024
[  370.168832][T17973] EXT4-fs: Ignoring removed nomblk_io_submit option
[  370.175762][T17973] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  370.201007][T17973] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  370.215488][T17971] 8021q: adding VLAN 0 to HW filter on device bond1
[  370.216876][T17973] System zones: 0-1, 3-36
[  370.243031][T17973] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  370.272016][T17983] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5123'.
[  370.284243][T17973] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22
[  370.379087][T10868] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  370.432978][T17994] loop2: detected capacity change from 0 to 512
[  370.523073][T18002] loop2: detected capacity change from 0 to 512
[  370.529762][T18002] EXT4-fs: Ignoring removed i_version option
[  370.554755][T18002] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  370.578956][T18002] ext4 filesystem being mounted at /487/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  370.604513][T18002] EXT4-fs error (device loop2): ext4_do_update_inode:5154: inode #4: comm syz.2.5131: corrupted inode contents
[  370.627672][T18002] EXT4-fs error (device loop2): ext4_dirty_inode:6042: inode #4: comm syz.2.5131: mark_inode_dirty error
[  370.651977][T18002] EXT4-fs error (device loop2): ext4_do_update_inode:5154: inode #4: comm syz.2.5131: corrupted inode contents
[  370.661460][T18011] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5134'.
[  370.673739][T18002] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #4: comm syz.2.5131: mark_inode_dirty error
[  370.690522][T18002] EXT4-fs error (device loop2): ext4_acquire_dquot:6927: comm syz.2.5131: Failed to acquire dquot type 1
[  370.718993][T10868] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  370.742819][T18017] SELinux: syz.1.5136 (18017) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  370.758054][T18016] loop5: detected capacity change from 0 to 512
[  370.764806][T18016] EXT4-fs: Ignoring removed i_version option
[  370.791416][T18021] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5139'.
[  370.805444][T18021] netlink: 'syz.1.5139': attribute type 1 has an invalid length.
[  370.813325][T18021] netlink: 44 bytes leftover after parsing attributes in process `syz.1.5139'.
[  370.816935][T18023] loop2: detected capacity change from 0 to 512
[  370.833073][T18016] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  370.846682][T18016] ext4 filesystem being mounted at /156/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  370.873302][T18016] EXT4-fs error (device loop5): ext4_do_update_inode:5154: inode #4: comm syz.5.5138: corrupted inode contents
[  370.908440][T18028] loop2: detected capacity change from 0 to 512
[  370.915006][T18016] EXT4-fs error (device loop5): ext4_dirty_inode:6042: inode #4: comm syz.5.5138: mark_inode_dirty error
[  370.939353][T18016] EXT4-fs error (device loop5): ext4_do_update_inode:5154: inode #4: comm syz.5.5138: corrupted inode contents
[  370.949084][T18026] xt_CT: No such helper "pptp"
[  370.962148][T18026] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5139'.
[  370.972964][T18026] netlink: 96 bytes leftover after parsing attributes in process `syz.1.5139'.
[  370.993176][T18016] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #4: comm syz.5.5138: mark_inode_dirty error
[  371.007338][T18028] EXT4-fs error (device loop2): ext4_acquire_dquot:6927: comm syz.2.5141: Failed to acquire dquot type 1
[  371.036779][T18034] netlink: 'syz.4.5142': attribute type 10 has an invalid length.
[  371.047951][T18028] EXT4-fs (loop2): 1 truncate cleaned up
[  371.054164][T18028] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  371.067159][T18034] team0: Device hsr_slave_0 failed to register rx_handler
[  371.067782][T18028] ext4 filesystem being mounted at /490/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  371.099186][T18016] EXT4-fs error (device loop5): ext4_acquire_dquot:6927: comm syz.5.5138: Failed to acquire dquot type 1
[  371.113307][T10868] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  371.149155][T16182] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  371.274940][T18050] loop2: detected capacity change from 0 to 512
[  371.315323][T18045] loop4: detected capacity change from 0 to 8192
[  371.358593][T18058] loop5: detected capacity change from 0 to 1024
[  371.383112][T18060] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5155'.
[  371.394363][T18058] EXT4-fs: Ignoring removed nomblk_io_submit option
[  371.414737][T18063] loop1: detected capacity change from 0 to 512
[  371.418258][T18060] netlink: 'syz.2.5155': attribute type 1 has an invalid length.
[  371.428940][T18060] netlink: 44 bytes leftover after parsing attributes in process `syz.2.5155'.
[  371.438236][T18058] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  371.515778][T18058] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  371.524271][T18058] System zones: 0-1, 3-36
[  371.541906][T18058] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  371.566373][T18063] EXT4-fs error (device loop1): ext4_acquire_dquot:6927: comm syz.1.5156: Failed to acquire dquot type 1
[  371.582376][T18063] EXT4-fs (loop1): 1 truncate cleaned up
[  371.608246][T18063] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  371.609470][T18058] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22
[  371.620826][T18063] ext4 filesystem being mounted at /412/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  371.640109][T18064] xt_CT: No such helper "pptp"
[  371.658220][T18060] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5155'.
[  371.669835][T12517] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  371.716963][T18072] loop4: detected capacity change from 0 to 1024
[  371.725743][T18072] EXT4-fs: Ignoring removed nomblk_io_submit option
[  371.734546][T18072] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  371.749250][T18072] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  371.772902][T18072] System zones: 0-1, 3-36
[  371.805284][T18072] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  371.819956][T16182] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  371.844946][T18072] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22
[  371.866382][T18079] loop1: detected capacity change from 0 to 1024
[  371.898905][T18079] EXT4-fs: Ignoring removed nomblk_io_submit option
[  371.906219][T18079] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  371.917974][T18079] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  371.929531][T18079] System zones: 0-1, 3-36
[  371.935800][T18079] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  371.950202][T16939] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  371.960758][T18087] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  371.980530][T18079] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22
[  371.991206][T11388] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  372.018003][T18090] netlink: 'syz.2.5165': attribute type 10 has an invalid length.
[  372.031234][T18087] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.047794][T18092] loop4: detected capacity change from 0 to 512
[  372.051132][T18094] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  372.062708][T18094] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  372.086092][T12517] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  372.103278][   T54] netdevsim netdevsim6 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.147000][T18087] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.200270][   T54] netdevsim netdevsim6 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.212699][T18109] netlink: 'syz.4.5172': attribute type 1 has an invalid length.
[  372.227768][T18109] 8021q: adding VLAN 0 to HW filter on device bond2
[  372.238221][T18087] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.281044][T18109] 8021q: adding VLAN 0 to HW filter on device bond2
[  372.288586][T18109] bond2: (slave wireguard0): The slave device specified does not support setting the MAC address
[  372.300833][T18109] bond2: (slave wireguard0): Error -95 calling set_mac_address
[  372.328540][   T54] netdevsim netdevsim6 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.352999][T18087] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  372.366490][T18087] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  372.378184][T18087] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  372.382043][T18087] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  372.436896][   T54] netdevsim netdevsim6 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.458235][T18105] loop1: detected capacity change from 0 to 128
[  372.471549][T18105] loop1: detected capacity change from 0 to 523
[  372.478772][T18105] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  372.489958][T18105] EXT4-fs (loop1): orphan cleanup on readonly fs
[  372.499097][T18105] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:517: comm syz.1.5174: Block bitmap for bg 0 marked uninitialized
[  372.513065][T18105] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  372.534676][T18105] EXT4-fs (loop1): 1 orphan inode deleted
[  372.543328][T18105] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  372.566328][   T54] bridge_slave_1: left allmulticast mode
[  372.572095][   T54] bridge_slave_1: left promiscuous mode
[  372.578053][   T54] bridge0: port 2(bridge_slave_1) entered disabled state
[  372.586346][   T54] bridge_slave_0: left allmulticast mode
[  372.592040][   T54] bridge_slave_0: left promiscuous mode
[  372.597756][   T54] bridge0: port 1(bridge_slave_0) entered disabled state
[  372.700234][   T54] team0: Port device geneve1 removed
[  372.708003][T12517] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  372.708370][T18133] loop2: detected capacity change from 0 to 1024
[  372.760799][T18133] EXT4-fs: Ignoring removed nomblk_io_submit option
[  372.768117][T18133] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  372.811720][T18133] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  372.826596][T18133] System zones: 0-1, 3-36
[  372.833075][T18133] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  372.855079][T18133] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22
[  372.863315][   T54] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  372.876068][   T54] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  372.912337][T18146] loop1: detected capacity change from 0 to 1024
[  372.921919][T18146] EXT4-fs: Ignoring removed nomblk_io_submit option
[  372.930647][T18146] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  372.931094][   T54] bond0 (unregistering): Released all slaves
[  372.949362][T18106] chnl_net:caif_netlink_parms(): no params data found
[  372.958830][T18146] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  372.969890][T18146] System zones: 0-1, 3-36
[  372.973739][T10868] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  372.976021][T18146] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  373.004327][T18146] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22
[  373.014197][   T54] tipc: Disabling bearer <udp:syz2>
[  373.019482][   T54] tipc: Left network mode
[  373.067552][   T54] hsr_slave_0: left promiscuous mode
[  373.073815][   T54] hsr_slave_1: left promiscuous mode
[  373.080563][   T54] batman_adv: batadv0: Removing interface: batadv_slave_0
[  373.089721][   T54] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  373.097296][   T54] batman_adv: batadv0: Removing interface: batadv_slave_1
[  373.109148][   T54] veth1_macvtap: left promiscuous mode
[  373.114669][   T54] veth0_macvtap: left promiscuous mode
[  373.121881][   T54] veth1_vlan: left promiscuous mode
[  373.127245][   T54] veth0_vlan: left promiscuous mode
[  373.134169][T12517] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  373.144260][T12517] ==================================================================
[  373.152389][T12517] BUG: KCSAN: data-race in __find_get_block / has_bh_in_lru
[  373.159689][T12517] 
[  373.162026][T12517] read-write to 0xffff888237d2ba28 of 8 bytes by task 18155 on cpu 1:
[  373.170178][T12517]  __find_get_block+0x42e/0x890
[  373.175036][T12517]  bdev_getblk+0x30/0x3b0
[  373.179375][T12517]  __ext4_get_inode_loc+0x2f7/0x940
[  373.184587][T12517]  ext4_reserve_inode_write+0xb0/0x200
[  373.190052][T12517]  __ext4_mark_inode_dirty+0x8e/0x440
[  373.195435][T12517]  ext4_dirty_inode+0x91/0xb0
[  373.200123][T12517]  __mark_inode_dirty+0x166/0x7e0
[  373.205200][T12517]  file_update_time+0x285/0x2b0
[  373.210110][T12517]  ext4_page_mkwrite+0x19e/0xb70
[  373.215068][T12517]  handle_mm_fault+0x12f7/0x2ac0
[  373.220012][T12517]  exc_page_fault+0x3b9/0x650
[  373.224703][T12517]  asm_exc_page_fault+0x26/0x30
[  373.229571][T12517] 
[  373.231905][T12517] read to 0xffff888237d2ba28 of 8 bytes by task 12517 on cpu 0:
[  373.239564][T12517]  has_bh_in_lru+0x35/0x1f0
[  373.244091][T12517]  smp_call_function_many_cond+0x305/0xbb0
[  373.249907][T12517]  on_each_cpu_cond_mask+0x3c/0x90
[  373.255051][T12517]  invalidate_bh_lrus+0x2a/0x30
[  373.259922][T12517]  blkdev_flush_mapping+0x9b/0x1a0
[  373.265071][T12517]  bdev_release+0x2f9/0x420
[  373.269610][T12517]  blkdev_release+0x15/0x20
[  373.274141][T12517]  __fput+0x2ac/0x640
[  373.278160][T12517]  ____fput+0x1c/0x30
[  373.282151][T12517]  task_work_run+0x13a/0x1a0
[  373.286754][T12517]  syscall_exit_to_user_mode+0xa8/0x120
[  373.292404][T12517]  do_syscall_64+0xd6/0x1c0
[  373.296941][T12517]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  373.302842][T12517] 
[  373.305168][T12517] value changed: 0x0000000000000000 -> 0xffff8881069d4820
[  373.312317][T12517] 
[  373.314640][T12517] Reported by Kernel Concurrency Sanitizer on:
[  373.320787][T12517] CPU: 0 UID: 0 PID: 12517 Comm: syz-executor Not tainted 6.14.0-rc6-syzkaller-00103-g4003c9e78778 #0
[  373.331739][T12517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  373.341797][T12517] ==================================================================
[  373.391152][   T54] pim6reg (unregistering): left allmulticast mode
[  373.429976][   T54] team0 (unregistering): Port device team_slave_1 removed
[  373.440286][   T54] team0 (unregistering): Port device team_slave_0 removed
[  373.449082][ T4468] smc: removing ib device syz!
[  373.488864][T18106] bridge0: port 1(bridge_slave_0) entered blocking state
[  373.496104][T18106] bridge0: port 1(bridge_slave_0) entered disabled state
[  373.503983][T18106] bridge_slave_0: entered allmulticast mode
[  373.510635][T18106] bridge_slave_0: entered promiscuous mode
[  373.519091][T18106] bridge0: port 2(bridge_slave_1) entered blocking state
[  373.526767][T18106] bridge0: port 2(bridge_slave_1) entered disabled state
[  373.534123][T18106] bridge_slave_1: entered allmulticast mode
[  373.541684][T18106] bridge_slave_1: entered promiscuous mode
[  373.574669][T18106] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  373.585794][T18106] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  373.620007][T18106] team0: Port device team_slave_0 added
[  373.626753][T18106] team0: Port device team_slave_1 added
[  373.654267][T18106] batman_adv: batadv0: Adding interface: batadv_slave_0
[  373.661341][T18106] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  373.687307][T18106] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  373.698839][T18106] batman_adv: batadv0: Adding interface: batadv_slave_1
[  373.705914][T18106] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  373.731894][T18106] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  373.760227][T18106] hsr_slave_0: entered promiscuous mode
[  373.766267][T18106] hsr_slave_1: entered promiscuous mode
[  373.772448][T18106] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  373.780056][T18106] Cannot create hsr debugfs directory
[  373.846153][T18106] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  373.855227][T18106] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  373.864568][T18106] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  373.873864][T18106] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  373.890594][T18106] bridge0: port 2(bridge_slave_1) entered blocking state
[  373.897716][T18106] bridge0: port 2(bridge_slave_1) entered forwarding state
[  373.905043][T18106] bridge0: port 1(bridge_slave_0) entered blocking state
[  373.912122][T18106] bridge0: port 1(bridge_slave_0) entered forwarding state
[  373.938005][T18106] 8021q: adding VLAN 0 to HW filter on device bond0
[  373.957370][   T41] bridge0: port 1(bridge_slave_0) entered disabled state
[  373.966062][   T41] bridge0: port 2(bridge_slave_1) entered disabled state
[  373.978310][T18106] 8021q: adding VLAN 0 to HW filter on device team0
[  373.988313][ T4468] bridge0: port 1(bridge_slave_0) entered blocking state
[  373.995427][ T4468] bridge0: port 1(bridge_slave_0) entered forwarding state
[  374.006277][   T41] bridge0: port 2(bridge_slave_1) entered blocking state
[  374.013404][   T41] bridge0: port 2(bridge_slave_1) entered forwarding state
[  374.080693][T18106] 8021q: adding VLAN 0 to HW filter on device batadv0
[  374.172330][T18106] veth0_vlan: entered promiscuous mode
[  374.179975][T18106] veth1_vlan: entered promiscuous mode
[  374.193700][T18106] veth0_macvtap: entered promiscuous mode
[  374.201212][T18106] veth1_macvtap: entered promiscuous mode
[  374.211057][T18106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  374.221743][T18106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  374.231708][T18106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  374.242216][T18106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  374.252050][T18106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  374.262631][T18106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  374.273278][T18106] batman_adv: batadv0: Interface activated: batadv_slave_0
[  374.283680][T18106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  374.294169][T18106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  374.303990][T18106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  374.314483][T18106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  374.324334][T18106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  374.334867][T18106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  374.345401][T18106] batman_adv: batadv0: Interface activated: batadv_slave_1
[  374.356029][T18106] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  374.364856][T18106] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  374.373699][T18106] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  374.383079][T18106] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0