last executing test programs:

3m47.988800963s ago: executing program 3 (id=2235):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000080000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000040008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
close(0x3)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002300000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000d40)={0x44, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x44}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r4, &(0x7f0000000000)={0x0, 0xeff9, &(0x7f0000000240)={&(0x7f0000000040)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast1=0xe0004001}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x10000047}, 0x0)

3m47.919221003s ago: executing program 3 (id=2238):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
setresuid(0x0, 0xee01, 0xee00)
r2 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r2, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

3m47.856784393s ago: executing program 3 (id=2239):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r1}, 0x10)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r2, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x4, 0x4, 0x3c8, 0x1f8, 0x110, 0x0, 0x2e0, 0x2e0, 0x2e0, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0x0, 0x0, 0x0, 0x0, {@mac=@link_local={0x2}}, {@mac=@random="3c192477987a"}, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 'bridge0\x00', 'erspan0\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac, @empty, @dev={0xac, 0x14, 0x14, 0x22}, @broadcast, 0x4}}}, {{@arp={@loopback, @private=0xa010102, 0xff, 0xffffff00, 0xd, 0x10, {@mac=@multicast, {[0xff, 0xff, 0x0, 0x0, 0xff]}}, {@empty, {[0x0, 0xff, 0x0, 0x0, 0xff]}}, 0x8, 0x0, 0x0, 0x8, 0x1, 0x5a, 'macvlan0\x00', 'ipvlan0\x00', {0xff}, {}, 0x0, 0x100}, 0xc0, 0xe8}, @unspec=@AUDIT={0x28, 'AUDIT\x00', 0x0, {0x2}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0xff, 0x0, 0x0, 0x0, {@mac=@link_local, {[0xff]}}, {@mac=@multicast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0xe8}, @unspec=@CLASSIFY={0x28, 'CLASSIFY\x00', 0x0, {0x3}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x418)

3m47.783770692s ago: executing program 3 (id=2241):
r0 = getpid()
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r1 = socket$inet(0x2, 0x5, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x8001000000000000, 0x40, &(0x7f0000000500)=@raw={'raw\x00', 0x8, 0x3, 0x1f8, 0x0, 0x3f1, 0x148, 0x0, 0x5, 0x160, 0x2a8, 0x2a8, 0x160, 0x2a8, 0x3, 0x0, {[{{@uncond, 0xffffe000, 0x70, 0xd0, 0x0, {0x0, 0x1c030000}}, @common=@SET={0x60, 'SET\x00', 0x0, {{0xffffffffffffffff, [0x7, 0x2, 0x7fffffe, 0x4, 0x6]}, {0xffffffffffffffff}}}}, {{@ip={@empty, @loopback, 0x0, 0x0, 'nicvf0\x00', 'rose0\x00'}, 0x0, 0x70, 0x90}, @unspec=@NOTRACK={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x258)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r5}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000003c0)='./file0\x00', 0x808d, &(0x7f00000000c0), 0xfe, 0x50d, &(0x7f00000012c0)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r4}, 0x10)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$netlink(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000009940)=ANY=[], 0x290}], 0x1, 0x0, 0x0, 0x4000080}, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000f1ffffff0000000000100000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000780)='mm_page_free\x00', r6}, 0x18)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events.local\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r7, 0x0)

3m46.648714968s ago: executing program 3 (id=2252):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0xe6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x2, @perf_bp={&(0x7f0000000080)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f0000000400)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x82, 0xf20e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x0, 0x0, 0x63db, 0x6, 0x0, 0x0, 0x0, 0x0, 0x80}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

3m46.376672088s ago: executing program 3 (id=2258):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[], 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syslog(0x2, 0x0, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000480)={'tunl0\x00', &(0x7f0000000400)={'tunl0\x00', 0x0, 0x80, 0x40, 0x1, 0xc, {{0x8, 0x4, 0x1, 0x7, 0x20, 0x64, 0x0, 0x3, 0x29, 0x0, @dev={0xac, 0x14, 0x14, 0xf}, @initdev={0xac, 0x1e, 0x1, 0x0}, {[@end, @lsrr={0x83, 0x3, 0x56}, @ssrr={0x89, 0x7, 0x3b, [@local]}]}}}}})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
process_mrelease(0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="9402000021000100fcffffff00000000ac1414aae5fffff8b49ed9825133a900fc0100000000000000000000000000000000add500200000000000801aeaaec1", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000070000400706362632874776f666973682900000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040010000dc06216ef2c68e9f6da05d886dbc3273ef99796b36698e2bd5179c3eea5474fc78c9720bfc4f90a708001f0001000000cc01"], 0x294}}, 0x0)

3m46.334089237s ago: executing program 32 (id=2258):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[], 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syslog(0x2, 0x0, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000480)={'tunl0\x00', &(0x7f0000000400)={'tunl0\x00', 0x0, 0x80, 0x40, 0x1, 0xc, {{0x8, 0x4, 0x1, 0x7, 0x20, 0x64, 0x0, 0x3, 0x29, 0x0, @dev={0xac, 0x14, 0x14, 0xf}, @initdev={0xac, 0x1e, 0x1, 0x0}, {[@end, @lsrr={0x83, 0x3, 0x56}, @ssrr={0x89, 0x7, 0x3b, [@local]}]}}}}})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
process_mrelease(0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="9402000021000100fcffffff00000000ac1414aae5fffff8b49ed9825133a900fc0100000000000000000000000000000000add500200000000000801aeaaec1", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000070000400706362632874776f666973682900000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040010000dc06216ef2c68e9f6da05d886dbc3273ef99796b36698e2bd5179c3eea5474fc78c9720bfc4f90a708001f0001000000cc01"], 0x294}}, 0x0)

2.677443839s ago: executing program 2 (id=5359):
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000), 0x0}, 0x50)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000027b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
syz_io_uring_setup(0x2c0c, &(0x7f0000000400)={0x0, 0x0, 0x4002}, 0x0, 0x0)

2.645624949s ago: executing program 2 (id=5361):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
setxattr$incfs_metadata(0x0, 0x0, 0x0, 0x0, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
openat$selinux_avc_cache_threshold(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r5 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r5)
ptrace$setregs(0xd, r5, 0x0, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb")
ptrace$getregset(0x4204, r5, 0x200, &(0x7f0000000040)={0x0})
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000040)=0x2)
readv(r4, &(0x7f0000000000)=[{&(0x7f0000001300)=""/241, 0xf1}], 0x1)
ioctl$TIOCVHANGUP(r4, 0x5437, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000400)='locks_get_lock_context\x00', r1}, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000400)='locks_get_lock_context\x00', r6}, 0x10)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000600)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
fcntl$lock(r7, 0x26, &(0x7f0000000000))

1.752316296s ago: executing program 2 (id=5379):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
select(0x20000088, &(0x7f0000000080), 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x300}, &(0x7f0000000200)={0x0, 0x2710})
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000240)='GPL\x00', 0xc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001880)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x46f03)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r2, 0xc0a85320, &(0x7f00000003c0)={{0x80}, 'port0\x00', 0x511e36599023629, 0x100000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r2, 0x40a85321, &(0x7f00000004c0)={{0x80}, 'port1\x00', 0x0, 0x120000})
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f00000700000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000050000000000000000000000000000000100000000000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=0x0, @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000280)={{r4}, &(0x7f0000000080), &(0x7f0000000180)='%-010d \x00'}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000500)=0x100000001, 0x4)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback, 0x3}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f00000001c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x1, &(0x7f0000000440)=@gcm_128={{0x304}, "e453f079dff9d540", "1ec2d524d78682576ec2d9e13dad1018", "993161e3", "be06929b0b429ee8"}, 0x28)
write$binfmt_script(r3, &(0x7f0000000040)={'#! ', './file0'}, 0xb)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r3, 0x6, 0x23, &(0x7f0000000100)={&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x1e, 0x1, 0x0}, &(0x7f0000000240)=0x40)
writev(r3, &(0x7f00000030c0)=[{&(0x7f0000000a40)="fb", 0x1}], 0x1)
close(r3)

1.708019056s ago: executing program 4 (id=5380):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000"], 0x48)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, &(0x7f0000000040)})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x18)
ioctl$BTRFS_IOC_SET_FEATURES(r1, 0x40309439, &(0x7f0000000400)={0x1, 0x0, 0x9})
futimesat(0xffffffffffffffff, &(0x7f0000000580)='./cgroup.cpu/cgroup.procs\x00', &(0x7f00000005c0)={{0x77359400}})
socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000fc0)={[{@jqfmt_vfsold}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@jqfmt_vfsv0}, {@nombcache}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV")
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0a000000020000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000040)={{}, &(0x7f0000000300), 0x0}, 0x20)
syz_emit_ethernet(0x7a, &(0x7f00000009c0)={@random="856b1200ffff", @local, @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "381f34", 0x44, 0x2f, 0x0, @private0, @mcast2, {[], {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x88a8, 0xf5ff}}}}}}}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r4 = socket$kcm(0x2, 0x5, 0x84)
sendmsg$inet(r4, &(0x7f0000002980)={&(0x7f0000000180)={0x2, 0x0, @dev}, 0x10, &(0x7f0000001400)=[{&(0x7f0000001800)='_', 0x1}], 0x1}, 0x4000000)
setsockopt$sock_attach_bpf(r4, 0x84, 0x1e, &(0x7f0000000000), 0x10)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
r6 = syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r5, 0x0, &(0x7f0000000200)=<r7=>0x0)
connect$nfc_raw(r6, &(0x7f0000000280)={0x27, r7, 0x0, 0x4}, 0x10)
ioctl$sock_inet_SIOCSIFADDR(r5, 0x8916, &(0x7f0000000080)={'batadv_slave_1\x00', {0x2, 0x0, @remote}})
ioctl$sock_inet_SIOCSIFADDR(r5, 0x891c, &(0x7f0000000540)={'batadv_slave_1\x00', {0x2, 0x0, @private=0xfffffffe}})

1.707584436s ago: executing program 2 (id=5381):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000000e00)=ANY=[@ANYBLOB="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"], &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = socket$kcm(0x29, 0x2, 0x0)
r2 = socket$inet6(0xa, 0x803, 0x6)
connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r4}, 0x10)
ioctl$sock_kcm_SIOCKCMATTACH(r1, 0x89e0, &(0x7f0000000180)={r2, r0})
sendmmsg$inet(r1, &(0x7f0000002b80)=[{{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000001740)="378bada872a6825e4d74dfcef6429c77", 0x10}], 0x1, &(0x7f00000007c0)=ANY=[], 0x140}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x3, 0x20000043)

1.663160746s ago: executing program 2 (id=5382):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11ff, &(0x7f0000001280)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r2, &(0x7f0000004200)='t', 0x1)
sendfile(r2, r1, 0x0, 0x3ffff)

1.496517005s ago: executing program 1 (id=5387):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socket$key(0xf, 0x3, 0x2)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002ec0)=ANY=[@ANYBLOB="b702000007000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd0cdfa146ec561750379585e5a076d839240d29c034055b67dafe6c8dc3d5d78c07fa1f7e655ce34e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab7ea0c34f17e3946ef3bb622003b538dfd8e01f3440cee51bc53099e90f4580d760551b5b341a29f31e3106d1ddd6152f7cbdb9cd38bdb2209c67deca8eeb9c15ab3a14817ac61e4dd11183a13477bf7e860e3670ef0e789f65f1328d6704902cbe7bc04b82d2789cad32b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c581e7be6ba0dc001c4110555850915148ba532e6ea09c346dfebd38608b3280080005d9a9500000000000000334d83239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd7130856f756436303767d2e24f29e5dad9796edb697aeea0182babd18cac1bd4f4390af9a9ceafd0002cab154ad029a1090000002780870014f51c3c975d5aec84222fd3a0ec4be3e563112f0b39501aafe234870072858dc06e7c337602d3e5a815232f5e16c1b30c3a6abc85018e5ff2c91018afc9ffc2cc788bee1b47683db012469398685211dfbbae3e2ed0a50e7393bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd36e7487afa447e2edfae4f390a8337841cef386e22cc22ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d300006aca54183fb01c73f979ca9857399537f5dc2a2d0e0000000000000578673f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c96a088a22e8b15c3e233db7af22e30d46a9d26d37cef099ece729aa218f9f44a3210223fdae7ed04935c3c90d3add8eebc8619d73415cda2130f5011e48455b5a8b90dfae158b94f50adab988dd8e12baf5cc9398fff00404d5d99f82e20ee6a8c88e18c2977fb536a9caab37d9ac4cfc1c7b400000000000007ffc826b956ba859ac8e3c177b91bd7d5e41ff83ced846891180604b6dd2499d16d7d9158ffffffff00000000ef069dc42749a89f854797f29d000069a16203a967c1bbe09315c29877a308bcc87dc3addb08142bdee5d27874b2f663ddeef0005b3d96c7aabf4df517d90bdc01e73835d5a3e1a90800c66ee2b1ad76dff9f9000071414c99d4894ee7f8240000e3428d2129369ee1b85af9ffffff0d0df414b315f651c8412392191fa83ee830548f11be359454a3f2239cfe35f81b7a490f167e6d5c1109000000000000000042b8ff8c21ad702ccacad5b39eef213d1ca296d2a27798c8ce2a305c0c7d35cf4b22549a4bd92000000000f285f653b621491dc6aaee0200e2ff08644fb94c06006eff1be2f633c1d987591ec3db58a7bb74d4ec3f771f7a1338a5c3dd35e926049fe86e09c58e273cd905de328c13c1ed1c0d9cae846bcbfa8cce7b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4eda0545c00f576b2b5cc7f819abd0f885cc4806f40300966fcf1e54f5a2d38708294cd6f496e5dee734fe7da3770845cf442d488afdc0e17000000000000000000000000000000000000000000000000000005205000000dc1c56d59f35d367632952a978ee56c83a3466ae595c6a8cda690d192a070886df42b27098773b45198b4a34ac977ebd4450e121d01342e0eaf6f330e935878a6d169c80aa4252d4ea6b8f6216ff202b5b5a182cb5e838b307632d03a7ca6f6d0339f9953c3093c3690d10ecb65dc5b47481edbf1f000000000000004d16d29c28eb5167e9936ed327fb237a56224e49d9ea95ec1b3ccd35364600000000000000000000000000000000000000000000000000000000000026ded4dd6fe1518cc7802043ecfe69f743f1213bf81700cd9e5a225d67521dc728eac7d80a5656ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be3827fcd95cf107753cb0a6a979d3db0c407081c6281e2d8429a863903ca75f4c7df3ea8fc2018d07af1491ef060cd4403a099f32468f65bd06b4082d43e121861b5cc03f1a1561f0589e0d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea20bdac0000000000000000ca06f256c8028e0f9b65f037b21f3289f86a6826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bb37b61fa0a2d8974e69115d33394e86e4b838297ba20f969369de47422604e2fc5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab9000000000000000000000000b5ace293b6c833c13e3229432ad71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b612272d40f522d8c98c879aca11033ec14bb9cc16bd83a00840e31d828ec78e116ae46c4897e2795b6ff92e9a1e24b0b855c02f2b7add58ffb25f339297729a7a51810134d3dfbe71f6516737be55c06d9cdcfb1e2bb10b50000eb4acff90756dba1ecf9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8d03fe28bc358684492aa771dbfe80745fe89ad349ffaad76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a59b53f2fb0e16d8262c080c159ce40c14089c82759106f422582b42e3e8484ea5a6ad9aa52106eafe0e0caea1ad4cb23f3c2b8a0f455ba69ea284c268d54b43158a8b1d128d02af263b3dc1cab794c9ac57a2a7332f4d8764c302ccd5aac114482b619fc575aa0dd2777e881e29a854380e2f1e49db5a1517ec40bb3fa44f9959bad67ccaba76408da35c9f1534c8bd46dbd61627a2e0a74b5e6aefb7eee403502734137ff47a57f164391c673b6079e65d7295eed164ca63e4ea26dce0fb3ce0f6591d80dfb8f386bb74b5589829b6b0679b5d65a125e3af1130d66a7b66837ae7e7123dde7404a067ad0a6a2d6bec9411b61cad4121be3c72ff3a04713042253d438e7becf8120de3895b8ce974958bde39cb8da3427a2e9e2de936431e67fed5ab5684db07de39083d8948cc4c8a2608100000000000000000000aecb8b0b7941088f971ce17427eec32a012295cc0cdd32955176b6ad5a4bb953e58ccfa9428f452cfb5a48a9fda26db3985c8be3c2f99827da074825b01c4a3a71fb59d5798100000000000000c76b05a45d2dd8c20d971e2f3e4369168f5cb83d6ff3a18733fec726034fbfa95624135bee374414b2c8c61f52357a520efd6a10aff244bc8a62ed367981fb4d5d77f7bc093958ff46527499957da4934cd4b370cf76f72dd05fa80cdfb68c836fd81be7a58532e041a87f9222f157610a4bcdc05b2a55308c8e7568b90f7a338557e816a16972aea79dff5becefa6f9c5ce6c58fb38da9e7532dc53cfdc2e789b76f7d32aca1bfea2aa62621b78dded30fc07171866bf3d552900000000a32dda61eeda1750e157c2d569b9d08f583c0ee28daec2e8bb85f3c8e91c4448096ee953def18dc73e55cb30f9cd069d8780b00eaba382f0c3ae391c30a5f1b0f36dd0c2193b791995d2890327a10d7abac76d1202f72e97f0105184d7aaaab8d3e29c9a8d263f076b55cf53c5bb9c0662a3d19a6722d7f83ae4331d3256f90af0857788b380ccc3b266c418e66d1d756d5df6423dd0cea67bc235d3776d22270fc19301ead09f156893e9"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r1}, 0x10)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={0xffffffffffffffff, 0x20, &(0x7f0000000200)={0x0, 0x0, <r2=>0x0, 0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYRES8=0x0, @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
openat2$dir(0xffffffffffffff9c, &(0x7f0000000600)='./file0\x00', &(0x7f0000000640)={0x202000}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000080)='kfree\x00', r5}, 0x18)
futex(0x0, 0xd, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000)=0x2000000, 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, &(0x7f0000048000)=0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x1c, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r6}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0x24, 0x60000000}, 0x2c)

1.447255525s ago: executing program 1 (id=5388):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file3\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="160000000000000004000000ff000000000000000930b3b0781c9014f9c956e7a1f375eca07f75176288806f4f69d642d492294d23d0644b3973c8e7491e6e8a7824d1f55c0f0b8f63f729897f37b52c065fe5a1bdfd2c44cfc0444e369fd39a7c56abf738a58b0409e36f9b59f109e6773b0e60ca9431256a56644d77d9738c3a991c", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r2}, 0x10)
r3 = syz_open_dev$usbfs(0x0, 0x77, 0x141341)
ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600600, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil)

1.186937634s ago: executing program 0 (id=5390):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x0, &(0x7f0000000080), 0x64, 0x52a, &(0x7f0000000a40)="$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")
llistxattr(&(0x7f0000000140)='./file1\x00', 0x0, 0x0)

1.099232464s ago: executing program 0 (id=5391):
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f00000003c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
execve(0x0, 0x0, 0x0)

1.051994524s ago: executing program 0 (id=5392):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000000e00)=ANY=[@ANYBLOB="18000000030000000000000026d0000095002b000000000093adffa87d2255f674412d020000000000005ab527ee3697f1ec4436dd1164aa93cc5800075557165397000a63f6b9b3f427f6ba6b34f98125f30e697fffffffffffffffa30b273683626e0003254d570dca6b78ad833488cfe4109eaf009edd3e69613d3cd6aaa300006eee8501000000520a0000151d010000000100bf00000000cc587424363dc6ad7f3bbd424c6e6cafbe9309aba218a52001a3cd000041f0db74596fd72c002a60c1bc7dc8c38b7d2e13c50424b9dd1145d03ff45f70685c6bd9ff41c69b7de4758c1096a1dc52f29e470a000517ebc406e89dcbb7677e6528b0856e31ed9474ac24cf609068f645ce971fc0480737a55ebb0bd701f7ff21e88b3cfc22df01e4bac9d97328fa2a82b5e8741e02056d933bed759ff232cebc68b91af50479387467824262852c7939db5672d07cdbe8e14abf56497e5d56d06c759da324a39f7f51b870b2851c3f0a1aab71587a21c8f1b3369ebfcba105a6ccdd01b0f04edb256c604f068773f6ff000000000000006ffbfe5ca32142b0195531458b7d1e341c6f864f983d745f5865aad41d2915aae7602a2d6cd415e8351ebc4223f54d6bec664709ff03f1aa3dc7f1580ace9bf2afd28d7157e67fb98d121ad6eb372713255012e028cb2654d493a0b4b35faae176c89b745eda2967199cc936859a537e8e4871d4acf3e3dc10e13ef227f627a40000ad1fa253d33fa74f172d3407ae4e1e347c0cff28235a3cbb5d33b09bc30cf2880c586272c3f4d79bc36305745cb1cb385e6add14652003c7cdd3324f07d134d3ed07f1c10900000009dd872ec66ea6c718bbd1aa59114000f0be4c6f8df084c5e9734ae30aa9afdc719bf01ab03a9b1074407136b4506000f0916a39d3057d50183612b39e73aeeb6eaf14652dda68e98ef938e6515a94a71836469e2051d9b7eb85f3f2d5ae2c51944da8d7391d6d6b97419a3b7660df4c5124ca425d374b371867a79b31c6617fc3327191fbf514573f0e30d1d60be2168fe6c2f3dccd599a2cb77f124e22f87673675805494db821f39b50d938d5fd8c6b2a3a324c257b84000000b749ccd74089ed6b86f81ca3d247d8f71d290ed1b1a11f7a67125170c88c3b6a50696332226401b110da9c786eeca22debc99335583b54c13c3130978fa069af8223b38ced735c2d905f51ca85ffa4add5647489b3960127696cf2f16625c0c102000000000000009ef52134842e64171f3963841086e3797a4825d081f2d987f05c5341877386ec55d7dc958fd235d6071619a65d4b82d9c162f3556076b80550d961ca74f1ffdaccf0ea5f02e0fca8b27ff3983ab74fd3d560700a1fbb44e77e312b3b129e000302d613916c9bcf9f0000fac73adb6bfb27f88dba816020be760f7b45e001efada800000000000000fdaf4660402f7b3b79a433e08074ea2462974ab2cbd247eb1cfa2638f56daee57ed14bc74de0fd87a9ce638190f3570e0b4c80ef682df22237270955afb6008846557ee3bc09fda6dbb6542e597300eb82a184c96ffde5a30e5433d86666cb045bdd02c804c22ff2635c7bfbf5c0d586cda5e1e88a4d41dee7cc74f822278d124638fec58faeb48afe324369cc51204158bb440df2a694f4cdcaa4f65c22f000000000000000000000000000d503d79906958102000000000000000000001ffff0ef89b2a635edb2dd163e863315e84498dfb52b7f54da6398cbedaa42cc17c4563c859656a357770289a61faa95a82bf1cfb7f2fd7252e9322abe282c3344fc6738b4467893b9bf0d1c8130ae6b226900110635376413c29f7c6f7b7e29b9f4bddd5e328661f4046e01f7d7dc22174e5e627a6f608ad53a4168d4d8f7fbc71104512efe8e5d7d934aa289b4db2b870000000000000000000000000000000000000000009b777883a0f9cf4ad155110cd3ace2b322ac31bfa27847dc99c8a69a1ea5b98e525e6393ad7fd9795170e7b11e4fa990b9386910a6a1a66a70eaff01247603c2ff49d3979676bffb3049166ab84a0f061991bd57c2566c10c282352a5105b6164e3f2491e4793e590dcc71de10da96fdff40dd44a2c9882d3aa0f8a797b8fea6efcfb5046b7679f15559cdaa977504c40b2f777acb907ebf5fc14add71d0bca37405ded69b77ab4a3d7487fd50c5e22ade17556abb722d9c085b189b5fd1f30e8dc813f60400fde1f88d830b11002135e8e7262f299ed7923bfbe00ad88be179e56b41ff3792cee2fc37eee739c3e3af923e8738d93d583a9cf00b946960fc38cf85aae7cf708f9a9d166f2e352a06d99b8be476d1cc2a53a859ae4fdab2a987925d12422474ac044ffe9fe2bf9bf9bbdf36c4ca89c516647542ac45545337829fa7039d155ebda42d4c14f4ca7f8b5d5842658c62d0a03092b94fa1b19f190000000000000000000000000000009e75a32b9fafeffd890f2759b0fe3add33fa43a4c3995458f86a926ad56b23571c46728c039cd3b4bb7d69dfa27782b953a7b81cc161912b3e5716360686e126311a7e21bfa2efd0f57b90c203528c8f620d3c7b31c7abcffae382f53500f7cd5d00159e5f741d3e2d2cbd1a04b3f39b50a4683daa7d117b7f4a149c954d69d8ab001339e464c8eb5f0c63899010757c9a3b69f4920531b83f71d5a34ef9405819afee15b77c015ea755c95127ff2274bb9a8463ce4b8c08ad70596ad2b2b044e660ed144b9dce372450ea69d25da2b6deed67fac26e765aa7d5532ba1044f62db049486acde2294127cb767c23da7d8f9844d3be5b6aa83ee4ce1876af5130efe1b64ccb6bbd349bcc0e8deec8ab3bd1b35bbc8ab8a152771744baa576b9223d26b5603a7f091be1264cabaf661fe2d"], &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = socket$kcm(0x29, 0x2, 0x0)
r2 = socket$inet6(0xa, 0x803, 0x6)
connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r4}, 0x10)
ioctl$sock_kcm_SIOCKCMATTACH(r1, 0x89e0, &(0x7f0000000180)={r2, r0})
sendmmsg$inet(r1, &(0x7f0000002b80)=[{{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000001740)="378bada872a6825e4d74dfcef6429c77", 0x10}], 0x1, &(0x7f00000007c0)=ANY=[], 0x140}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x3, 0x20000043)

1.051336694s ago: executing program 0 (id=5394):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
rseq(&(0x7f0000000240)={0x0, 0x0, 0x0, 0x4}, 0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x20000000000002ea, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = syz_clone(0x80, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$setopts(0x4206, r1, 0x0, 0x0)
waitid(0x0, 0x0, 0x0, 0x2, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r0, <r2=>0xffffffffffffffff}, 0x0, &(0x7f0000000040)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b70800004e9d00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000e40)=@base={0x2, 0x4, 0x6, 0x5, 0x1000, r2, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000400)={0x200, <r5=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0xd, 0x11, &(0x7f0000000840)=ANY=[@ANYBLOB="185a00000f000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000000018650000040000000000000003000000186300000d0000000000000006000000183300000300000000000000000000008520000004000000183a00000200ffff0000000000000000db0700000100000039cb8106f00f6b90878f78f11a976d11650dc26f37ef16199ccd158710fa6c8bc417cf5c8a62a72c28"], &(0x7f0000000040)='syzkaller\x00', 0xb, 0xd6, &(0x7f00000005c0)=""/214, 0x40f00, 0x63, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000380)={0x5, 0x7, 0x3, 0xb}, 0x10, r5, r3, 0x6, &(0x7f00000006c0)=[r4, r4, r4, r4, r4], &(0x7f0000000700)=[{0x1, 0x4, 0xa}, {0x3, 0x4, 0x5}, {0x3, 0x2, 0x1, 0x8}, {0x2, 0x1, 0x4, 0xc}, {0x1, 0x1, 0xf, 0x5}, {0x0, 0x3, 0x8, 0x4}], 0x10, 0xffffffbb, @void, @value}, 0x94)
sync()
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000680)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x18)
syz_mount_image$ext4(&(0x7f0000000540)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x88, &(0x7f00000005c0)={[{@nogrpid}, {@min_batch_time}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@nobarrier}, {@nodiscard}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
unlink(&(0x7f0000000180)='./file1\x00')

1.025100404s ago: executing program 5 (id=5395):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000001600008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r2, 0x0, 0x6)
symlinkat(0x0, r3, &(0x7f00000003c0)='./file0\x00')
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r5}, 0x10)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$PIO_UNIMAPCLR(r6, 0x4b68, 0x0)

999.567284ms ago: executing program 5 (id=5396):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
select(0x20000088, &(0x7f0000000080), 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x300}, &(0x7f0000000200)={0x0, 0x2710})
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000240)='GPL\x00', 0xc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001880)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x46f03)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r2, 0xc0a85320, &(0x7f00000003c0)={{0x80}, 'port0\x00', 0x511e36599023629, 0x100000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r2, 0x40a85321, &(0x7f00000004c0)={{0x80}, 'port1\x00', 0x0, 0x120000})
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f00000700000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000050000000000000000000000000000000100000000000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=0x0, @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000280)={{r4}, &(0x7f0000000080), &(0x7f0000000180)='%-010d \x00'}, 0x20)
setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000500)=0x100000001, 0x4)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback, 0x3}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f00000001c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x1, &(0x7f0000000440)=@gcm_128={{0x304}, "e453f079dff9d540", "1ec2d524d78682576ec2d9e13dad1018", "993161e3", "be06929b0b429ee8"}, 0x28)
write$binfmt_script(r3, &(0x7f0000000040)={'#! ', './file0'}, 0xb)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r3, 0x6, 0x23, &(0x7f0000000100)={&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x1e, 0x1, 0x0}, &(0x7f0000000240)=0x40)
writev(r3, &(0x7f00000030c0)=[{&(0x7f0000000a40)="fb", 0x1}], 0x1)
close(r3)

964.838123ms ago: executing program 5 (id=5397):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
select(0x20000088, &(0x7f0000000080), 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x300}, &(0x7f0000000200)={0x0, 0x2710})
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000240)='GPL\x00', 0xc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001880)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x46f03)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r2, 0xc0a85320, &(0x7f00000003c0)={{0x80}, 'port0\x00', 0x511e36599023629, 0x100000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r2, 0x40a85321, &(0x7f00000004c0)={{0x80}, 'port1\x00', 0x0, 0x120000})
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f00000700000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000050000000000000000000000000000000100000000000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=0x0, @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000280)={{r4}, &(0x7f0000000080), &(0x7f0000000180)='%-010d \x00'}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback, 0x3}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f00000001c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x1, &(0x7f0000000440)=@gcm_128={{0x304}, "e453f079dff9d540", "1ec2d524d78682576ec2d9e13dad1018", "993161e3", "be06929b0b429ee8"}, 0x28)
write$binfmt_script(r3, &(0x7f0000000040)={'#! ', './file0'}, 0xb)
close(r3)

928.323544ms ago: executing program 5 (id=5398):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x51}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x1, 0x24000001, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000140)=@sack_info={0x0, 0x2, 0x2}, &(0x7f0000000180)=0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000c80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
syz_emit_ethernet(0xfffffffffffffecc, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
socket$inet6(0xa, 0x80002, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x99, 0x0, 0x0, 0x0, 0x30, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r7}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000500)='sched_switch\x00'}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
unshare(0x64000600)

809.892673ms ago: executing program 4 (id=5399):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), r2)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000540)={{r4}, &(0x7f00000004c0), &(0x7f0000000500)='%-5lx  \x00'}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000d80)={'lo\x00', <r6=>0x0})
r7 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'ip6gre0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0x58, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r9, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x62, 0x2, @TCA_SFB_PARMS={0x28}}}]}, 0x58}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r2, 0x8933, &(0x7f0000000dc0)={'wg2\x00', <r10=>0x0})
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000e00)={'team0\x00', <r11=>0x0})
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000f00)={'syztnl0\x00', &(0x7f0000000e40)={'syztnl0\x00', <r12=>0x0, 0x40, 0x700, 0x5fc3, 0x1, {{0x24, 0x4, 0x1, 0x8, 0x90, 0x67, 0x0, 0x8, 0x29, 0x0, @dev={0xac, 0x14, 0x14, 0x1f}, @dev={0xac, 0x14, 0x14, 0x23}, {[@ssrr={0x89, 0x7, 0x83, [@rand_addr=0x64010101]}, @ra={0x94, 0x4}, @generic={0x86, 0x10, "6e696dcea4bdf9dd989a51cf23b0"}, @noop, @cipso={0x86, 0xf, 0x2, [{0x6, 0x9, "0a27ba301c1ea0"}]}, @ssrr={0x89, 0xb, 0x6e, [@private=0xa010102, @local]}, @cipso={0x86, 0x31, 0x0, [{0x7, 0xf, "1324377c9e4d2bec73ba36e684"}, {0x7, 0x6, "a9c069b2"}, {0x7, 0x10, "aead5c97adaa892811a5b150f8e5"}, {0x2, 0x6, "c5fb91bc"}]}, @ssrr={0x89, 0x13, 0xba, [@local, @remote, @dev={0xac, 0x14, 0x14, 0x40}, @rand_addr=0x64010101]}, @noop]}}}}})
r13 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r13, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r14=>0x0})
bind$packet(r13, &(0x7f00000000c0)={0x11, 0x6, r14, 0x1, 0x0, 0x6, @broadcast}, 0x14)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000f40)={<r15=>0x0, @multicast1, @broadcast}, &(0x7f0000000f80)=0xc)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000fc0)={'team0\x00', <r16=>0x0})
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000001000)={'batadv_slave_0\x00', <r17=>0x0})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000010c0)={'ip6tnl0\x00', &(0x7f0000001040)={'ip6tnl0\x00', <r18=>0x0, 0x29, 0x9, 0x4, 0x5, 0x40, @dev={0xfe, 0x80, '\x00', 0x24}, @mcast2, 0x700, 0x7, 0x2, 0xffffffff}})
sendmsg$TEAM_CMD_NOOP(r2, &(0x7f0000001b80)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000001b40)={&(0x7f0000001100)={0xa24, 0x0, 0x1, 0x70bd2a, 0x25dfdbfe, {}, [{{0x8}, {0x78, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8}}}]}}, {{0x8}, {0x7c, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}]}}, {{0x8}, {0x80, 0x2, 0x0, 0x1, [{0x44, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x14, 0x4, [{0x100, 0x4, 0x6}, {0x6, 0x1, 0x5e, 0xffff74a7}]}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8}}}]}}, {{0x8}, {0xc4, 0x2, 0x0, 0x1, [{0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x83}}, {0x8}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0xe, 0x4, 'broadcast\x00'}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0xc}}, {0x8}}}]}}, {{0x8}, {0x200, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x3}}, {0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x5}}, {0x8}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x24}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xa}}}, {0x44, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x14, 0x4, [{0x6, 0x17, 0x5, 0x2}, {0x9, 0x0, 0x5, 0x4}]}}}]}}, {{0x8}, {0x184, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x3}}, {0x8}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x2}}, {0x8}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x7}}, {0x8}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0xfffffff7}}, {0x8, 0x6, r6}}}]}}, {{0x8}, {0xbc, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0xb}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x1ae1acd0}}, {0x8, 0x6, r9}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8, 0x4, r10}}, {0x8}}}]}}, {{0x8, 0x1, r11}, {0x1a8, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x9}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r12}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r14}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0xfffffffc}}, {0x8}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8}}, {0x8, 0x6, r15}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x400}}}]}}, {{0x8, 0x1, r16}, {0x1a8, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x101}}}, {0x3c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0xc, 0x4, [{0x1, 0x2, 0x3, 0xe0000}]}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x8001}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0xf, 0x4, 'roundrobin\x00'}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0xd}}, {0x8, 0x6, r17}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x599c23b8}}, {0x8, 0x6, r18}}}]}}]}, 0xa24}, 0x1, 0x0, 0x0, 0x44}, 0x40000)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)={0x38, r3, 0x1, 0x0, 0x0, {{}, {}, {0x1c, 0x17, {0x7, 0x0, @l2={'eth', 0x3a, 'syzkaller0\x00'}}}}}, 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8923, &(0x7f0000002280)={'syzkaller0\x00', @local})

777.315023ms ago: executing program 2 (id=5400):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1}, 0x10)
syz_mount_image$iso9660(&(0x7f00000000c0), &(0x7f0000000040)='./file2\x00', 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="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", @ANYRES8, @ANYBLOB="93da033e08c15491f0d8b62ad603fe50073e562c555b839e9fdaa55a4a8c49da5a7356a101c856cbcfed75462f56bf5590b4c1df0487dd089672c20624686b869d934ab69fd3c2358c326bb6eb26b711af6221114706f8934cf86fbd69b00c4dff23d1404169057bb5672da5b6c8d54105b034f065394a8e4fa6d5d4bb9798a6b047db86b85922d3571b0773b52be379e37c338237d7a5bb20357867e33752ca4d15ae06f54569fc9fe3ba1a3e099684e117a43844bc46e72b458ad08de32e80a235a252090da47d6b8cceb1275c2aec3c4217aa5908ab433d110713ffb200fc1d84ff3d2b472ea3cf4b7ab70c80bede90eef752dc"], 0x1, 0x67e, &(0x7f0000000980)="$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")
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b000000000000"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r3}, 0x10)
syz_usbip_server_init(0x4)
r4 = open(&(0x7f0000000240)='./file2\x00', 0x145142, 0x143)
ftruncate(r4, 0x2007ffc)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000ac0)={&(0x7f0000000b00)='kfree\x00', r5, 0x0, 0x6}, 0x18)
r6 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet_sctp(r6, &(0x7f00000032c0)=[{&(0x7f0000002e40)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000100)="03", 0x1}], 0x1}], 0x1, 0x0)
sendmmsg$inet_sctp(r6, &(0x7f00000032c0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000300)="c5", 0x1}], 0x1, &(0x7f0000000000)=ANY=[@ANYBLOB="30000000000000008400000001000000000000000c"], 0x30}], 0x1, 0x0)
ioctl$PIO_UNIMAP(r4, 0x4b67, &(0x7f0000000180)={0x2, &(0x7f0000000000)=[{0xfff2, 0x8}, {0x1000, 0x9}]})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)

689.162833ms ago: executing program 0 (id=5401):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bf"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
timerfd_create(0x9, 0x800)

368.661801ms ago: executing program 4 (id=5402):
syz_emit_ethernet(0x16, &(0x7f00000000c0)=ANY=[@ANYBLOB="aaaaaaaa000004dc7b9950739c0000"], 0x0)
syz_io_uring_setup(0x6a7b, &(0x7f0000000000)={0x0, 0xbdd6, 0x1, 0x2, 0x3a5}, &(0x7f0000000080), &(0x7f0000000100))
r0 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
symlinkat(&(0x7f0000000400)='./file0/../file0\x00', 0xffffffffffffffff, &(0x7f00000003c0)='./file0\x00')
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
statx(0xffffffffffffffff, &(0x7f0000001d80)='./file0/../file0\x00', 0x4000, 0x0, 0x0)

368.189151ms ago: executing program 1 (id=5403):
mkdir(&(0x7f00000003c0)='./file0\x00', 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000280)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f0000000080)={0x0, 0x0, 0x800, 0x7}, 0x20)
pipe2$9p(&(0x7f0000000240)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1500000065ffff"], 0x15)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r4}, 0x18)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])

310.359381ms ago: executing program 1 (id=5404):
bpf$MAP_CREATE(0x0, &(0x7f00000015c0)=ANY=[@ANYBLOB="0d00000002000000040000000240000005000000", @ANYRES32, @ANYBLOB='\x00'/17, @ANYRES32], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000a9000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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")
r1 = open(&(0x7f0000000000)='./file1\x00', 0x1c927e, 0xb4)
fallocate(r1, 0x1, 0x0, 0x1001f0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0)
pwritev2(r2, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x13d)
pwrite64(r3, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r4, 0x5453, 0x0)

302.599421ms ago: executing program 4 (id=5405):
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000), 0x0}, 0x50)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0b0000000700000005"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000027b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
syz_io_uring_setup(0x2c0c, &(0x7f0000000400)={0x0, 0x0, 0x4002}, 0x0, 0x0)

272.653501ms ago: executing program 0 (id=5406):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, 0x0, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='ext4_nfs_commit_metadata\x00', r1}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x5c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}, @NFTA_SET_EXPR={0x20, 0x11, 0x0, 0x1, @quota={{0xa}, @val={0x10, 0x2, 0x0, 0x1, [@NFTA_QUOTA_BYTES={0xc}]}}}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xa4}}, 0x20008844)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r3, &(0x7f0000000180)={0xa, 0x0, 0x0, @remote, 0x12}, 0x1c)
r4 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r4, &(0x7f0000000280)=[{&(0x7f0000000040)="580000001400192340834b80040d8c560a067fbc45ff810500000200000058000b480400945f64009400050038925a01000000000000008004000000ffe809000000fff5dd0000000800030006010000418e01400004fcff", 0x58}], 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r5}, 0x10)
r6 = openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$selinux_user(r6, &(0x7f0000000540)=ANY=[@ANYBLOB="73797374656d5f753a99cd1bdc6f626a6563745f723a696e697463746c5f743a73302075"], 0x2c)
r7 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r8 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x4002, 0x0)
ioctl$PPPIOCSDEBUG(r8, 0x40047440, &(0x7f0000000140)=0x4)
ioctl$TCFLSH(r7, 0x5608, 0x0)

258.247871ms ago: executing program 4 (id=5407):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000840)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
connect$pppl2tp(r1, &(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x0, r2, {0x2, 0x4e21, @remote}, 0x3, 0x0, 0x2}}, 0x2e)

241.783031ms ago: executing program 4 (id=5408):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f00000005c0)='io_uring_submit_sqe\x00', r1}, 0x18)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11ff, &(0x7f0000001280)="$eJzs3E+LHEUYB+B315iNG/ePGqMJiIVe9NJk9+BFL4tsQDKgJFkhEYSO26vDtDPD9LAwIkZPXv0cIojgTRBvetmL30DwthePEcSWndEko5PDSEiH5Xku80LVb6jqphuq6erD1774sLNXZXv5MBYXFmKxH5FupUixGP/4NF5+9cefnrty7fqlrVZr+3JKF7eubrySUlp9/vt3Pv7qhR+Gp9/+dvW7pThYf/fwt81fD84enDv88+oH7Sq1q9TtDVOebvR6w/xGWaTddtXJUnqrLPKqSO1uVQym2vfKXr8/Snl3d2W5PyiqKuXdUeoUozTspeFglPL383Y3ZVmWVpaD+Z24Xe18eauu64i6fjRORl3X9WOxHKfj8ViJ1ViL9Xginoyn4kw8HWfjmXg2vvnl69FRAgAAAAAAAAAAAAAAAAAAALh/5t3/f27cq+lRAwAAAAAAAAAAAAAAAAAAwPFy5dr1S1ut1vbllE5FlJ/v7+zvTH4n7Vt70Y4yirgQa/FHjHf/T0zqi2+0ti+ksfX4rLz5d/7m/s4j0/mN8ecEZuY3Jvk0nV+K5bvzm7EWZ2bnN2fmT8VLL96Vz2Itfn4velHGbhxl7+Q/2Ujp9Tdb/8qfH/cDAACA4yBLt81cv2fZvdon+TmeD0ytr4+y5080OnUiohp91MnLshgoHvriZLPD+L2u6+YPQkPFva+UpYj43/+8EBEPxwT/UzR9Z+JBuHPSmx4JAAAAAAAAAAAA83gQrxM2PUcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD+YgeOBQAAAACE+Vun0bEBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHwVAAD//+pd0x0=")
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r3 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r4, &(0x7f0000004200)='t', 0x1)
sendfile(r4, r3, 0x0, 0x3ffff)
sendfile(r4, r3, 0x0, 0x7ffff000)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000f0000007b8af8ff00000000bfa2ce499eec7a0f456b8b61b59bec9dddfe0fcc3a66df95b1c09b57bff190d50000000000002802000083167bf3f8feffff312b2677156345ff471d09dd8b8079c4268b02a04d87acf6deebb1f38575c586c3ee78b46f8bce5a2f1005876fda5232063f683b8895d87b335bae78ab"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_serviced_recursive\x00', 0x275a, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x3, 0x7, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r6], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, r5, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xc8b, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$binfmt_script(r5, &(0x7f0000000000), 0x6db6e559)

123.026411ms ago: executing program 1 (id=5409):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000"], 0x48)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, &(0x7f0000000040)})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x18)
ioctl$BTRFS_IOC_SET_FEATURES(r1, 0x40309439, &(0x7f0000000400)={0x1, 0x0, 0x9})
futimesat(0xffffffffffffffff, &(0x7f0000000580)='./cgroup.cpu/cgroup.procs\x00', &(0x7f00000005c0)={{0x77359400}})
socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000fc0)={[{@jqfmt_vfsold}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@jqfmt_vfsv0}, {@nombcache}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0a000000020000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000040)={{}, &(0x7f0000000300), 0x0}, 0x20)
syz_emit_ethernet(0x7a, &(0x7f00000009c0)={@random="856b1200ffff", @local, @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "381f34", 0x44, 0x2f, 0x0, @private0, @mcast2, {[], {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x88a8, 0xf5ff}}}}}}}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r4 = socket$kcm(0x2, 0x5, 0x84)
sendmsg$inet(r4, &(0x7f0000002980)={&(0x7f0000000180)={0x2, 0x0, @dev}, 0x10, &(0x7f0000001400)=[{&(0x7f0000001800)='_', 0x1}], 0x1}, 0x4000000)
setsockopt$sock_attach_bpf(r4, 0x84, 0x1e, &(0x7f0000000000), 0x10)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
r6 = syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r5, 0x0, &(0x7f0000000200)=<r7=>0x0)
connect$nfc_raw(r6, &(0x7f0000000280)={0x27, r7, 0x0, 0x4}, 0x10)
ioctl$sock_inet_SIOCSIFADDR(r5, 0x8916, &(0x7f0000000080)={'batadv_slave_1\x00', {0x2, 0x0, @remote}})
ioctl$sock_inet_SIOCSIFADDR(r5, 0x891c, &(0x7f0000000540)={'batadv_slave_1\x00', {0x2, 0x0, @private=0xfffffffe}})

49.15389ms ago: executing program 1 (id=5410):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11ff, &(0x7f0000001280)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r2, &(0x7f0000004200)='t', 0x1)
sendfile(r2, r1, 0x0, 0x3ffff)

27.01444ms ago: executing program 5 (id=5411):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0900000004000000ff0f000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r0}, &(0x7f00000001c0), &(0x7f0000000300)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r2}, 0x18)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000840)={[{@bsdgroups}, {@init_itable}, {@noblock_validity}, {@grpjquota}, {@grpjquota}, {@noquota}, {@abort}, {@noload}, {@nodiscard}]}, 0x64, 0x50a, &(0x7f0000000200)="$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")

0s ago: executing program 5 (id=5412):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_serviced_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000000), 0x6db6e559)

kernel console output (not intermixed with test programs):

_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  356.233461][T17722] vhci_hcd vhci_hcd.0: Device attached
[  356.265331][T17725] iso9660: Corrupted directory entry in block 4 of inode 1792
[  356.281327][T17722] iso9660: Corrupted directory entry in block 4 of inode 1792
[  356.319084][T17723] vhci_hcd: connection closed
[  356.319384][   T50] vhci_hcd: stop threads
[  356.328476][   T50] vhci_hcd: release socket
[  356.332922][   T50] vhci_hcd: disconnect device
[  356.360479][T17716] loop2: detected capacity change from 0 to 1764
[  356.370852][T17727] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4574'.
[  356.395959][T17716] iso9660: Unknown parameter '@'
[  356.439057][T17735] loop1: detected capacity change from 0 to 2048
[  356.449758][T17735] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  356.463119][T17716] netlink: 76 bytes leftover after parsing attributes in process `syz.2.4571'.
[  356.482724][T17716] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4571'.
[  356.574122][T13277] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  356.622434][T17740] loop5: detected capacity change from 0 to 256
[  356.656110][T17740] FAT-fs (loop5): IO charset iso8859 not found
[  356.696379][T17716] loop2: detected capacity change from 0 to 1024
[  356.758963][T17743] loop1: detected capacity change from 0 to 8192
[  356.863617][T17716] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  357.028649][T12482] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  357.274300][T17757] loop2: detected capacity change from 0 to 512
[  357.314215][T17757] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  357.350350][T17757] EXT4-fs (loop2): 1 truncate cleaned up
[  357.361441][T17757] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  357.505563][T17763] loop4: detected capacity change from 0 to 512
[  357.534070][T17763] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  357.547678][T12482] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  357.586821][T17763] EXT4-fs (loop4): 1 truncate cleaned up
[  357.597683][T17763] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  357.755362][   T29] kauditd_printk_skb: 255 callbacks suppressed
[  357.755378][   T29] audit: type=1326 audit(1735874628.452:14950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17771 comm="syz.0.4588" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb987115d29 code=0x7ffc0000
[  357.794902][   T29] audit: type=1326 audit(1735874628.482:14951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17771 comm="syz.0.4588" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb987115d29 code=0x7ffc0000
[  357.818751][   T29] audit: type=1326 audit(1735874628.482:14952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17771 comm="syz.0.4588" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7fb987115d29 code=0x7ffc0000
[  357.842705][   T29] audit: type=1326 audit(1735874628.482:14953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17771 comm="syz.0.4588" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb987115d29 code=0x7ffc0000
[  357.866317][   T29] audit: type=1326 audit(1735874628.482:14954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17771 comm="syz.0.4588" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb987115d29 code=0x7ffc0000
[  357.890030][   T29] audit: type=1326 audit(1735874628.482:14955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17771 comm="syz.0.4588" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb987115d29 code=0x7ffc0000
[  357.900000][T17777] lo speed is unknown, defaulting to 1000
[  357.913713][   T29] audit: type=1326 audit(1735874628.482:14956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17771 comm="syz.0.4588" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb987115d29 code=0x7ffc0000
[  357.943183][   T29] audit: type=1326 audit(1735874628.482:14957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17771 comm="syz.0.4588" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb987115d29 code=0x7ffc0000
[  357.966778][   T29] audit: type=1326 audit(1735874628.492:14958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17771 comm="syz.0.4588" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb987115d29 code=0x7ffc0000
[  357.978046][T17777] lo speed is unknown, defaulting to 1000
[  357.990447][   T29] audit: type=1326 audit(1735874628.492:14959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17771 comm="syz.0.4588" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb987115d29 code=0x7ffc0000
[  358.048638][T17780] loop2: detected capacity change from 0 to 164
[  358.062049][T17780] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  358.068756][T17780] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  358.076216][T17780] vhci_hcd vhci_hcd.0: Device attached
[  358.085450][T17780] iso9660: Corrupted directory entry in block 4 of inode 1792
[  358.101533][T17785] loop0: detected capacity change from 0 to 512
[  358.109014][T17785] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  358.121951][T17785] EXT4-fs (loop0): 1 truncate cleaned up
[  358.129876][T17780] iso9660: Corrupted directory entry in block 4 of inode 1792
[  358.139821][T17785] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  358.156211][T17781] vhci_hcd: connection closed
[  358.156547][  T121] vhci_hcd: stop threads
[  358.165615][  T121] vhci_hcd: release socket
[  358.170152][  T121] vhci_hcd: disconnect device
[  358.204866][T12892] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  358.333431][T17792] hub 9-0:1.0: USB hub found
[  358.338207][T17792] hub 9-0:1.0: 8 ports detected
[  358.392296][T13134] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  358.451788][T17802] loop0: detected capacity change from 0 to 512
[  358.479775][T17802] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.4598: bg 0: block 248: padding at end of block bitmap is not set
[  358.495424][T17802] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.4598: Failed to acquire dquot type 1
[  358.508279][T17802] EXT4-fs (loop0): 1 truncate cleaned up
[  358.514343][T17802] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  358.528485][T17802] ext4 filesystem being mounted at /343/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  358.569694][T12892] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  358.739246][T17817] SELinux: syz.0.4604 (17817) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  358.824020][T17818] lo speed is unknown, defaulting to 1000
[  358.950339][T17818] lo speed is unknown, defaulting to 1000
[  359.335773][T17834] loop2: detected capacity change from 0 to 164
[  359.377036][T17834] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  359.380922][T17837] loop5: detected capacity change from 0 to 2048
[  359.383593][T17834] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  359.397442][T17834] vhci_hcd vhci_hcd.0: Device attached
[  359.400161][T17840] iso9660: Corrupted directory entry in block 4 of inode 1792
[  359.448973][T17840] iso9660: Corrupted directory entry in block 4 of inode 1792
[  359.459265][T17835] vhci_hcd: connection closed
[  359.459553][  T121] vhci_hcd: stop threads
[  359.468571][  T121] vhci_hcd: release socket
[  359.473001][  T121] vhci_hcd: disconnect device
[  359.491727][T17837] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  359.564950][T17846] hub 9-0:1.0: USB hub found
[  359.570035][T17846] hub 9-0:1.0: 8 ports detected
[  359.594575][T10979] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  359.700115][T17853] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4617'.
[  359.804939][T17876] loop5: detected capacity change from 0 to 2048
[  359.820620][T17876] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  359.848628][T10979] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  359.900120][T17888] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4631'.
[  359.909325][T17894] FAULT_INJECTION: forcing a failure.
[  359.909325][T17894] name failslab, interval 1, probability 0, space 0, times 0
[  359.922045][T17894] CPU: 0 UID: 0 PID: 17894 Comm: syz.5.4633 Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[  359.932860][T17894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  359.942922][T17894] Call Trace:
[  359.946202][T17894]  <TASK>
[  359.949136][T17894]  dump_stack_lvl+0xf2/0x150
[  359.953750][T17894]  dump_stack+0x15/0x1a
[  359.957924][T17894]  should_fail_ex+0x223/0x230
[  359.962672][T17894]  should_failslab+0x8f/0xb0
[  359.967331][T17894]  kmem_cache_alloc_noprof+0x52/0x320
[  359.972791][T17894]  ? security_file_alloc+0x32/0x100
[  359.977999][T17894]  security_file_alloc+0x32/0x100
[  359.983066][T17894]  init_file+0x5b/0x1b0
[  359.987255][T17894]  alloc_file_pseudo_noaccount+0xf2/0x1d0
[  359.992995][T17894]  bdev_file_open_by_dev+0x185/0x220
[  359.998468][T17894]  ? __pfx_resume_store+0x10/0x10
[  360.003629][T17894]  swsusp_check+0x3f/0x240
[  360.008053][T17894]  software_resume+0x43/0x2e0
[  360.012788][T17894]  resume_store+0x34e/0x3a0
[  360.017310][T17894]  kobj_attr_store+0x47/0x70
[  360.021987][T17894]  ? __pfx_kobj_attr_store+0x10/0x10
[  360.027349][T17894]  sysfs_kf_write+0xae/0xd0
[  360.031861][T17894]  ? __pfx_sysfs_kf_write+0x10/0x10
[  360.037180][T17894]  kernfs_fop_write_iter+0x1c8/0x2c0
[  360.042610][T17894]  vfs_write+0x77f/0x920
[  360.046865][T17894]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  360.052774][T17894]  ksys_write+0xe8/0x1b0
[  360.057034][T17894]  __x64_sys_write+0x42/0x50
[  360.061645][T17894]  x64_sys_call+0x287e/0x2dc0
[  360.066354][T17894]  do_syscall_64+0xc9/0x1c0
[  360.070933][T17894]  ? clear_bhb_loop+0x55/0xb0
[  360.075618][T17894]  ? clear_bhb_loop+0x55/0xb0
[  360.080305][T17894]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  360.086313][T17894] RIP: 0033:0x7ff98c675d29
[  360.090735][T17894] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  360.110352][T17894] RSP: 002b:00007ff98ace1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  360.118863][T17894] RAX: ffffffffffffffda RBX: 00007ff98c865fa0 RCX: 00007ff98c675d29
[  360.126886][T17894] RDX: 0000000000000012 RSI: 00000000200001c0 RDI: 0000000000000003
[  360.134948][T17894] RBP: 00007ff98ace1090 R08: 0000000000000000 R09: 0000000000000000
[  360.142931][T17894] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  360.150908][T17894] R13: 0000000000000000 R14: 00007ff98c865fa0 R15: 00007ffec9fe7288
[  360.158971][T17894]  </TASK>
[  360.315133][T17902] loop1: detected capacity change from 0 to 8192
[  360.321767][T17904] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  360.330378][T17904] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  360.362504][T17908] loop2: detected capacity change from 0 to 2048
[  360.378417][T17908] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  360.455796][T12482] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  360.832717][T17931] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4647'.
[  361.050443][T17942] hub 9-0:1.0: USB hub found
[  361.055584][T17942] hub 9-0:1.0: 8 ports detected
[  361.116081][T17943] lo speed is unknown, defaulting to 1000
[  361.236295][T17943] lo speed is unknown, defaulting to 1000
[  361.793616][T17969] loop5: detected capacity change from 0 to 512
[  361.812444][T17969] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  361.842504][T17962] loop2: detected capacity change from 0 to 8192
[  361.849144][T17969] EXT4-fs (loop5): orphan cleanup on readonly fs
[  361.864584][T17973] loop4: detected capacity change from 0 to 8192
[  361.874627][T17969] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.4662: bg 0: block 248: padding at end of block bitmap is not set
[  361.890437][T17969] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.4662: Failed to acquire dquot type 1
[  361.917310][T17969] EXT4-fs (loop5): 1 truncate cleaned up
[  361.928622][T17976] loop1: detected capacity change from 0 to 512
[  361.939591][T17969] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  361.944063][T17976] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  362.006045][T17976] EXT4-fs (loop1): 1 truncate cleaned up
[  362.029738][T17976] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  362.042808][T10979] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  362.103872][T17983] loop5: detected capacity change from 0 to 512
[  362.122322][T17983] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.4664: bg 0: block 248: padding at end of block bitmap is not set
[  362.145642][T17983] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.4664: Failed to acquire dquot type 1
[  362.158603][T13277] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  362.158968][T17983] EXT4-fs (loop5): 1 truncate cleaned up
[  362.174349][T17983] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  362.196809][T17983] ext4 filesystem being mounted at /439/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  362.284055][T10979] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  362.387303][T17999] loop5: detected capacity change from 0 to 512
[  362.396470][T17999] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  362.424533][T17999] EXT4-fs (loop5): 1 truncate cleaned up
[  362.436265][T17999] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  362.489246][T18000] loop1: detected capacity change from 0 to 256
[  362.500441][T10979] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  362.511968][T18000] /dev/loop1: Can't open blockdev
[  362.789131][T18011] hub 9-0:1.0: USB hub found
[  362.811410][T18014] loop4: detected capacity change from 0 to 512
[  362.817839][T18011] hub 9-0:1.0: 8 ports detected
[  362.836368][T18014] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  362.870103][T18014] EXT4-fs (loop4): orphan cleanup on readonly fs
[  362.888238][T18014] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.4674: bg 0: block 248: padding at end of block bitmap is not set
[  362.910619][   T29] kauditd_printk_skb: 368 callbacks suppressed
[  362.910637][   T29] audit: type=1326 audit(1735874633.612:15322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18016 comm="syz.5.4675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff98c675d29 code=0x7ffc0000
[  362.940419][   T29] audit: type=1326 audit(1735874633.612:15323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18016 comm="syz.5.4675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff98c675d29 code=0x7ffc0000
[  362.964078][   T29] audit: type=1326 audit(1735874633.612:15324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18016 comm="syz.5.4675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff98c675d29 code=0x7ffc0000
[  362.987869][   T29] audit: type=1326 audit(1735874633.612:15325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18016 comm="syz.5.4675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff98c675d29 code=0x7ffc0000
[  363.011542][   T29] audit: type=1326 audit(1735874633.612:15326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18016 comm="syz.5.4675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff98c675d29 code=0x7ffc0000
[  363.035179][   T29] audit: type=1326 audit(1735874633.612:15327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18016 comm="syz.5.4675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff98c675d29 code=0x7ffc0000
[  363.041134][T18014] Quota error (device loop4): write_blk: dquota write failed
[  363.058852][   T29] audit: type=1326 audit(1735874633.612:15328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18016 comm="syz.5.4675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff98c675d29 code=0x7ffc0000
[  363.066199][T18014] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  363.089789][   T29] audit: type=1326 audit(1735874633.612:15329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18016 comm="syz.5.4675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff98c675d29 code=0x7ffc0000
[  363.099782][T18014] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.4674: Failed to acquire dquot type 1
[  363.135552][T18014] EXT4-fs (loop4): 1 truncate cleaned up
[  363.144998][T18017] netlink: 'syz.5.4675': attribute type 10 has an invalid length.
[  363.152878][T18017] netlink: 40 bytes leftover after parsing attributes in process `syz.5.4675'.
[  363.165537][T18017] team0: Port device geneve1 added
[  363.171599][T18014] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  363.228378][T13134] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  363.334530][T18027] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4680'.
[  363.509165][T18034] loop4: detected capacity change from 0 to 8192
[  363.672794][T18043] hub 9-0:1.0: USB hub found
[  363.677640][T18043] hub 9-0:1.0: 8 ports detected
[  363.853920][T18052] loop1: detected capacity change from 0 to 512
[  363.863148][T18052] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  363.882574][T18052] EXT4-fs (loop1): orphan cleanup on readonly fs
[  363.890821][T18052] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.4688: bg 0: block 248: padding at end of block bitmap is not set
[  363.922913][T18052] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.4688: Failed to acquire dquot type 1
[  363.940068][T18052] EXT4-fs (loop1): 1 truncate cleaned up
[  363.946753][T18059] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4691'.
[  363.959216][T18052] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  363.986634][T13277] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  364.051694][T18063] loop2: detected capacity change from 0 to 8192
[  364.356278][T18073] lo speed is unknown, defaulting to 1000
[  364.475085][T18073] lo speed is unknown, defaulting to 1000
[  364.734743][T18079] loop5: detected capacity change from 0 to 512
[  364.748062][T18079] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  364.764774][T18079] EXT4-fs (loop5): 1 truncate cleaned up
[  364.772533][T18079] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  364.820047][T18084] loop0: detected capacity change from 0 to 256
[  364.826799][T18084] /dev/loop0: Can't open blockdev
[  364.891542][T18089] loop5: detected capacity change from 0 to 512
[  364.914275][T18089] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  364.923554][T18089] EXT4-fs (loop5): orphan cleanup on readonly fs
[  364.994108][T18089] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.4699: bg 0: block 248: padding at end of block bitmap is not set
[  365.003040][T18094] loop1: detected capacity change from 0 to 512
[  365.015745][T18094] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  365.025426][T18094] EXT4-fs (loop1): orphan cleanup on readonly fs
[  365.025874][T18089] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.4699: Failed to acquire dquot type 1
[  365.043753][T18094] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.4703: bg 0: block 248: padding at end of block bitmap is not set
[  365.046434][T18089] EXT4-fs (loop5): 1 truncate cleaned up
[  365.074256][T18094] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.4703: Failed to acquire dquot type 1
[  365.096682][T18094] EXT4-fs (loop1): 1 truncate cleaned up
[  365.112944][T18097] loop4: detected capacity change from 0 to 512
[  365.133455][T18101] loop5: detected capacity change from 0 to 512
[  365.161462][T18097] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.4702: bg 0: block 248: padding at end of block bitmap is not set
[  365.189602][T18101] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  365.212306][T18113] loop1: detected capacity change from 0 to 512
[  365.219941][T18097] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.4702: Failed to acquire dquot type 1
[  365.235754][T18111] loop0: detected capacity change from 0 to 256
[  365.244290][T18113] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  365.247862][T18111] /dev/loop0: Can't open blockdev
[  365.255389][T18101] EXT4-fs (loop5): orphan cleanup on readonly fs
[  365.264858][T18113] EXT4-fs (loop1): orphan cleanup on readonly fs
[  365.265056][T18101] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.4706: bg 0: block 248: padding at end of block bitmap is not set
[  365.271475][T18097] EXT4-fs (loop4): 1 truncate cleaned up
[  365.292811][T18097] ext4 filesystem being mounted at /317/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  365.298822][T18101] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.4706: Failed to acquire dquot type 1
[  365.303895][T18113] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.4709: bg 0: block 248: padding at end of block bitmap is not set
[  365.329697][T18113] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.4709: Failed to acquire dquot type 1
[  365.345376][T18101] EXT4-fs (loop5): 1 truncate cleaned up
[  365.347818][T18113] EXT4-fs (loop1): 1 truncate cleaned up
[  365.482381][T18131] loop5: detected capacity change from 0 to 512
[  365.484401][T18132] SELinux:  Context Ü is not valid (left unmapped).
[  365.507785][T18131] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  365.520927][T18131] EXT4-fs (loop5): orphan cleanup on readonly fs
[  365.525677][T18132] SELinux:  Context Ü is not valid (left unmapped).
[  365.530770][T18136] loop2: detected capacity change from 0 to 512
[  365.555111][T18131] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.4717: bg 0: block 248: padding at end of block bitmap is not set
[  365.557872][T18132] SELinux:  Context ÿÿÿÿ is not valid (left unmapped).
[  365.579561][T18131] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.4717: Failed to acquire dquot type 1
[  365.591079][T18136] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  365.620867][T18136] EXT4-fs (loop2): orphan cleanup on readonly fs
[  365.625855][T18143] loop4: detected capacity change from 0 to 256
[  365.630022][T18131] EXT4-fs (loop5): 1 truncate cleaned up
[  365.634109][T18143] /dev/loop4: Can't open blockdev
[  365.664341][T18136] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.4720: bg 0: block 248: padding at end of block bitmap is not set
[  365.681423][T18136] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.4720: Failed to acquire dquot type 1
[  365.698369][T18136] EXT4-fs (loop2): 1 truncate cleaned up
[  365.703929][T18148] loop1: detected capacity change from 0 to 512
[  365.725676][T18148] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[  365.729061][T18152] loop4: detected capacity change from 0 to 164
[  365.759685][T18148] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -2
[  365.769998][T18152] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  365.776589][T18152] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  365.784038][T18152] vhci_hcd vhci_hcd.0: Device attached
[  365.810878][T18148] EXT4-fs (loop1): 1 truncate cleaned up
[  365.817118][T18152] iso9660: Corrupted directory entry in block 4 of inode 1792
[  365.850990][T18162] FAULT_INJECTION: forcing a failure.
[  365.850990][T18162] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  365.851614][T18156] loop5: detected capacity change from 0 to 8192
[  365.864080][T18162] CPU: 0 UID: 0 PID: 18162 Comm: syz.2.4729 Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[  365.870772][T18152] iso9660: Corrupted directory entry in block 4 of inode 1792
[  365.881137][T18162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  365.881156][T18162] Call Trace:
[  365.881165][T18162]  <TASK>
[  365.881208][T18162]  dump_stack_lvl+0xf2/0x150
[  365.909669][T18162]  dump_stack+0x15/0x1a
[  365.913854][T18162]  should_fail_ex+0x223/0x230
[  365.918585][T18162]  should_fail+0xb/0x10
[  365.922789][T18162]  should_fail_usercopy+0x1a/0x20
[  365.927830][T18162]  strncpy_from_user+0x25/0x210
[  365.932774][T18162]  ? kmem_cache_alloc_noprof+0x18e/0x320
[  365.938482][T18162]  ? getname_flags+0x81/0x3b0
[  365.943183][T18162]  getname_flags+0xb0/0x3b0
[  365.947796][T18162]  getname+0x17/0x20
[  365.951699][T18162]  do_sys_openat2+0x67/0x120
[  365.956323][T18162]  __x64_sys_openat+0xf3/0x120
[  365.961119][T18162]  x64_sys_call+0x2b30/0x2dc0
[  365.965810][T18162]  do_syscall_64+0xc9/0x1c0
[  365.970434][T18162]  ? clear_bhb_loop+0x55/0xb0
[  365.975166][T18162]  ? clear_bhb_loop+0x55/0xb0
[  365.979903][T18162]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  365.985821][T18162] RIP: 0033:0x7fb0b67c5d29
[  365.990238][T18162] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  366.009857][T18162] RSP: 002b:00007fb0b4e37038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  366.018277][T18162] RAX: ffffffffffffffda RBX: 00007fb0b69b5fa0 RCX: 00007fb0b67c5d29
[  366.026256][T18162] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffffffffffffff9c
[  366.034234][T18162] RBP: 00007fb0b4e37090 R08: 0000000000000000 R09: 0000000000000000
[  366.042213][T18162] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  366.050191][T18162] R13: 0000000000000000 R14: 00007fb0b69b5fa0 R15: 00007ffc08b8b3d8
[  366.058175][T18162]  </TASK>
[  366.061411][   T24] vhci_hcd: vhci_device speed not set
[  366.069914][T18159] vhci_hcd: connection closed
[  366.070430][   T50] vhci_hcd: stop threads
[  366.079500][   T50] vhci_hcd: release socket
[  366.082123][T18164] netlink: 'syz.0.4728': attribute type 10 has an invalid length.
[  366.083992][   T50] vhci_hcd: disconnect device
[  366.091754][T18164] netlink: 40 bytes leftover after parsing attributes in process `syz.0.4728'.
[  366.118929][T18164] team0: Failed to send port change of device geneve1 via netlink (err -105)
[  366.122989][   T24] usb 9-1: new full-speed USB device number 4 using vhci_hcd
[  366.128691][T18164] team0: Failed to send options change via netlink (err -105)
[  366.141342][   T24] usb 9-1: enqueue for inactive port 0
[  366.142802][T18164] team0: Port device geneve1 added
[  366.148327][   T24] usb 9-1: enqueue for inactive port 0
[  366.159370][   T24] usb 9-1: enqueue for inactive port 0
[  366.201396][T18171] loop2: detected capacity change from 0 to 512
[  366.212199][T18171] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  366.228584][   T24] vhci_hcd: vhci_device speed not set
[  366.251534][T18171] EXT4-fs (loop2): 1 truncate cleaned up
[  366.275351][T18177] loop1: detected capacity change from 0 to 256
[  366.282292][T18177] /dev/loop1: Can't open blockdev
[  366.317436][T18183] loop1: detected capacity change from 0 to 512
[  366.324598][T18183] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  366.346503][T18183] EXT4-fs (loop1): orphan cleanup on readonly fs
[  366.357077][T18183] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.4737: bg 0: block 248: padding at end of block bitmap is not set
[  366.378621][T18186] SELinux: syz.2.4736 (18186) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  366.418183][T18187] loop0: detected capacity change from 0 to 8192
[  366.425346][T18183] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.4737: Failed to acquire dquot type 1
[  366.438524][T18183] EXT4-fs (loop1): 1 truncate cleaned up
[  366.682450][T18204] loop4: detected capacity change from 0 to 512
[  366.690898][T18204] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  366.705106][T18204] EXT4-fs (loop4): 1 truncate cleaned up
[  366.751118][T18212] loop5: detected capacity change from 0 to 1024
[  366.758021][T18212] EXT4-fs: Ignoring removed nobh option
[  366.763628][T18212] EXT4-fs: Ignoring removed bh option
[  366.766316][T18213] SELinux: syz.1.4747 (18213) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  367.354565][T18235] loop2: detected capacity change from 0 to 8192
[  367.538038][T18244] loop5: detected capacity change from 0 to 8192
[  367.632644][T18249] loop1: detected capacity change from 0 to 512
[  367.634217][T18247] netlink: 'syz.4.4763': attribute type 10 has an invalid length.
[  367.646898][T18247] netlink: 40 bytes leftover after parsing attributes in process `syz.4.4763'.
[  367.660062][T18252] loop0: detected capacity change from 0 to 512
[  367.667247][T18249] EXT4-fs: Ignoring removed mblk_io_submit option
[  367.674260][T18247] team0: Failed to send port change of device geneve1 via netlink (err -105)
[  367.686686][T18249] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  367.707750][T18249] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[  367.715826][T18249] System zones: 1-12
[  367.720183][T18249] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.4764: corrupted in-inode xattr: e_value size too large
[  367.721870][T18252] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.4762: bg 0: block 248: padding at end of block bitmap is not set
[  367.736417][T18249] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.4764: couldn't read orphan inode 15 (err -117)
[  367.770845][T18252] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.4762: Failed to acquire dquot type 1
[  367.784067][T18249] netlink: 104 bytes leftover after parsing attributes in process `syz.1.4764'.
[  367.793495][T18249] EXT4-fs (loop1): shut down requested (0)
[  367.818866][T18252] EXT4-fs (loop0): 1 truncate cleaned up
[  367.830821][T18252] ext4 filesystem being mounted at /362/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  367.953389][   T29] kauditd_printk_skb: 402 callbacks suppressed
[  367.953407][   T29] audit: type=1326 audit(1735874638.652:15712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18266 comm="syz.0.4769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb987115d29 code=0x7ffc0000
[  368.067083][   T29] audit: type=1326 audit(1735874638.652:15713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18266 comm="syz.0.4769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb987115d29 code=0x7ffc0000
[  368.090829][   T29] audit: type=1326 audit(1735874638.652:15714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18266 comm="syz.0.4769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb987115d29 code=0x7ffc0000
[  368.114532][   T29] audit: type=1326 audit(1735874638.652:15715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18266 comm="syz.0.4769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb987115d29 code=0x7ffc0000
[  368.138129][   T29] audit: type=1326 audit(1735874638.652:15716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18266 comm="syz.0.4769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb987115d29 code=0x7ffc0000
[  368.161825][   T29] audit: type=1326 audit(1735874638.662:15717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18266 comm="syz.0.4769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb987115d29 code=0x7ffc0000
[  368.185486][   T29] audit: type=1326 audit(1735874638.662:15718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18266 comm="syz.0.4769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb987115d29 code=0x7ffc0000
[  368.209551][   T29] audit: type=1326 audit(1735874638.662:15719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18266 comm="syz.0.4769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb987115d29 code=0x7ffc0000
[  368.233167][   T29] audit: type=1326 audit(1735874638.662:15720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18266 comm="syz.0.4769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb987115d29 code=0x7ffc0000
[  368.256941][   T29] audit: type=1326 audit(1735874638.662:15721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18266 comm="syz.0.4769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7fb987115d29 code=0x7ffc0000
[  368.409271][T18279] 9p: Unknown access argument ¨: -22
[  368.441170][T18277] loop0: detected capacity change from 0 to 512
[  368.458692][T18277] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  368.471922][T18277] EXT4-fs (loop0): 1 truncate cleaned up
[  368.598872][T18287] netlink: 'syz.1.4775': attribute type 10 has an invalid length.
[  368.606747][T18287] netlink: 40 bytes leftover after parsing attributes in process `syz.1.4775'.
[  368.632680][T18287] team0: Failed to send port change of device geneve1 via netlink (err -105)
[  368.651548][T18287] team0: Failed to send options change via netlink (err -105)
[  368.659172][T18287] team0: Port device geneve1 added
[  368.689450][T18301] loop2: detected capacity change from 0 to 512
[  368.697934][T18301] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  368.714278][T18301] EXT4-fs (loop2): orphan cleanup on readonly fs
[  368.729311][T18301] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.4781: bg 0: block 248: padding at end of block bitmap is not set
[  368.748897][T18301] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.4781: Failed to acquire dquot type 1
[  368.758913][T18307] loop5: detected capacity change from 0 to 8192
[  368.768047][T18301] EXT4-fs (loop2): 1 truncate cleaned up
[  369.053855][T18319] lo speed is unknown, defaulting to 1000
[  369.170719][T18319] lo speed is unknown, defaulting to 1000
[  369.591324][T18321] loop0: detected capacity change from 0 to 256
[  369.607557][T18321] /dev/loop0: Can't open blockdev
[  369.754445][T18333] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4793'.
[  369.921723][T18341] syz.4.4797: attempt to access beyond end of device
[  369.921723][T18341] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  370.025568][T18352] loop1: detected capacity change from 0 to 256
[  370.032577][T18352] /dev/loop1: Can't open blockdev
[  370.146539][T18363] netlink: 7 bytes leftover after parsing attributes in process `syz.1.4805'.
[  370.159800][T18363] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4805'.
[  370.282058][T18373] loop2: detected capacity change from 0 to 2048
[  370.439502][T18384] loop2: detected capacity change from 0 to 8192
[  370.606259][T18389] loop1: detected capacity change from 0 to 164
[  370.615567][T18389] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  370.622179][T18389] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  370.629679][T18389] vhci_hcd vhci_hcd.0: Device attached
[  370.637850][T18389] iso9660: Corrupted directory entry in block 4 of inode 1792
[  370.648044][T18389] iso9660: Corrupted directory entry in block 4 of inode 1792
[  370.656086][T18390] vhci_hcd: connection closed
[  370.656747][ T8773] vhci_hcd: stop threads
[  370.666277][ T8773] vhci_hcd: release socket
[  370.670725][ T8773] vhci_hcd: disconnect device
[  370.900379][T18407] loop4: detected capacity change from 0 to 512
[  370.918561][T18407] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  370.931055][T18405] loop5: detected capacity change from 0 to 8192
[  370.939230][T18407] EXT4-fs (loop4): orphan cleanup on readonly fs
[  370.946745][T18407] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.4823: bg 0: block 248: padding at end of block bitmap is not set
[  370.962570][T18407] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.4823: Failed to acquire dquot type 1
[  370.976376][T18407] EXT4-fs (loop4): 1 truncate cleaned up
[  371.042371][T18413] loop4: detected capacity change from 0 to 512
[  371.049974][T18413] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  371.059768][T18413] EXT4-fs (loop4): orphan cleanup on readonly fs
[  371.066912][T18413] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.4825: bg 0: block 248: padding at end of block bitmap is not set
[  371.082595][T18413] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.4825: Failed to acquire dquot type 1
[  371.095140][T18413] EXT4-fs (loop4): 1 truncate cleaned up
[  371.223660][T18417] loop4: detected capacity change from 0 to 8192
[  371.357643][T18421] lo speed is unknown, defaulting to 1000
[  371.419819][T18421] lo speed is unknown, defaulting to 1000
[  371.582521][T18431] SELinux: syz.2.4828 (18431) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  371.990412][T18438] loop5: detected capacity change from 0 to 2048
[  372.080008][T18445] loop5: detected capacity change from 0 to 512
[  372.086909][T18445] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  372.106467][T18445] EXT4-fs (loop5): orphan cleanup on readonly fs
[  372.122133][T18445] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.4835: bg 0: block 248: padding at end of block bitmap is not set
[  372.152540][T18445] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.4835: Failed to acquire dquot type 1
[  372.181676][T18445] EXT4-fs (loop5): 1 truncate cleaned up
[  372.216774][T18450] loop5: detected capacity change from 0 to 164
[  372.227763][T18450] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(6)
[  372.234357][T18450] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  372.241854][T18450] vhci_hcd vhci_hcd.0: Device attached
[  372.249798][T18450] iso9660: Corrupted directory entry in block 4 of inode 1792
[  372.259960][T18450] iso9660: Corrupted directory entry in block 4 of inode 1792
[  372.267778][T18451] vhci_hcd: connection closed
[  372.268935][ T8752] vhci_hcd: stop threads
[  372.277937][ T8752] vhci_hcd: release socket
[  372.282378][ T8752] vhci_hcd: disconnect device
[  372.291791][T18456] loop1: detected capacity change from 0 to 512
[  372.329832][T18456] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.4839: bg 0: block 248: padding at end of block bitmap is not set
[  372.344402][T18456] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.4839: Failed to acquire dquot type 1
[  372.356438][T18456] EXT4-fs (loop1): 1 truncate cleaned up
[  372.363866][T18456] ext4 filesystem being mounted at /377/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  372.462074][T18467] loop1: detected capacity change from 0 to 8192
[  372.524634][T18475] loop2: detected capacity change from 0 to 512
[  372.531884][T18475] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  372.640525][T18475] EXT4-fs (loop2): 1 truncate cleaned up
[  372.699528][T18480] lo speed is unknown, defaulting to 1000
[  372.763433][T18480] lo speed is unknown, defaulting to 1000
[  372.940885][T18491] SELinux: syz.0.4850 (18491) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  372.972124][   T29] kauditd_printk_skb: 485 callbacks suppressed
[  372.972143][   T29] audit: type=1326 audit(1735875156.673:16197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18492 comm="syz.2.4851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0b67c5d29 code=0x7ffc0000
[  373.007569][   T29] audit: type=1326 audit(1735875156.673:16198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18492 comm="syz.2.4851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb0b67c5d29 code=0x7ffc0000
[  373.031253][   T29] audit: type=1326 audit(1735875156.673:16199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18492 comm="syz.2.4851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0b67c5d29 code=0x7ffc0000
[  373.054854][   T29] audit: type=1326 audit(1735875156.673:16200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18492 comm="syz.2.4851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0b67c5d29 code=0x7ffc0000
[  373.078587][   T29] audit: type=1326 audit(1735875156.673:16201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18492 comm="syz.2.4851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb0b67c5d29 code=0x7ffc0000
[  373.102289][   T29] audit: type=1326 audit(1735875156.673:16202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18492 comm="syz.2.4851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0b67c5d29 code=0x7ffc0000
[  373.125924][   T29] audit: type=1326 audit(1735875156.673:16203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18492 comm="syz.2.4851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fb0b67c5d29 code=0x7ffc0000
[  373.149562][   T29] audit: type=1326 audit(1735875156.673:16204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18492 comm="syz.2.4851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0b67c5d29 code=0x7ffc0000
[  373.173396][   T29] audit: type=1326 audit(1735875156.673:16205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18492 comm="syz.2.4851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb0b67c5d29 code=0x7ffc0000
[  373.197001][   T29] audit: type=1326 audit(1735875156.673:16206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18492 comm="syz.2.4851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0b67c5d29 code=0x7ffc0000
[  373.474924][T18510] loop4: detected capacity change from 0 to 512
[  373.482846][T18510] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  373.500749][T18510] EXT4-fs (loop4): orphan cleanup on readonly fs
[  373.507710][T18510] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.4858: bg 0: block 248: padding at end of block bitmap is not set
[  373.522547][T18510] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.4858: Failed to acquire dquot type 1
[  373.524220][T18513] loop1: detected capacity change from 0 to 164
[  373.536563][T18510] EXT4-fs (loop4): 1 truncate cleaned up
[  373.547798][T18513] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  373.554335][T18513] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  373.561871][T18513] vhci_hcd vhci_hcd.0: Device attached
[  373.568517][T18513] iso9660: Corrupted directory entry in block 4 of inode 1792
[  373.577747][T18517] FAULT_INJECTION: forcing a failure.
[  373.577747][T18517] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  373.580448][T18513] iso9660: Corrupted directory entry in block 4 of inode 1792
[  373.591075][T18517] CPU: 1 UID: 0 PID: 18517 Comm: syz.4.4860 Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[  373.601785][T18514] vhci_hcd: connection closed
[  373.609252][T18517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  373.609319][T18517] Call Trace:
[  373.614532][  T121] vhci_hcd: stop threads
[  373.624017][T18517]  <TASK>
[  373.624030][T18517]  dump_stack_lvl+0xf2/0x150
[  373.627333][  T121] vhci_hcd: release socket
[  373.631564][T18517]  dump_stack+0x15/0x1a
[  373.634508][  T121] vhci_hcd: disconnect device
[  373.652409][T18517]  should_fail_ex+0x223/0x230
[  373.657114][T18517]  should_fail_alloc_page+0xfd/0x110
[  373.662461][T18517]  __alloc_pages_noprof+0x109/0x340
[  373.667723][T18517]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  373.673129][T18517]  folio_alloc_mpol_noprof+0x36/0x70
[  373.678481][T18517]  shmem_get_folio_gfp+0x3d1/0xd90
[  373.683634][T18517]  shmem_write_begin+0xa2/0x180
[  373.688529][T18517]  generic_perform_write+0x1a8/0x4a0
[  373.693894][T18517]  shmem_file_write_iter+0xc2/0xe0
[  373.699066][T18517]  vfs_write+0x77f/0x920
[  373.703537][T18517]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  373.709404][T18517]  __x64_sys_pwrite64+0xf6/0x150
[  373.714408][T18517]  x64_sys_call+0xab0/0x2dc0
[  373.719038][T18517]  do_syscall_64+0xc9/0x1c0
[  373.723647][T18517]  ? clear_bhb_loop+0x55/0xb0
[  373.728377][T18517]  ? clear_bhb_loop+0x55/0xb0
[  373.733134][T18517]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  373.739200][T18517] RIP: 0033:0x7f5d7d915d29
[  373.743627][T18517] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  373.763247][T18517] RSP: 002b:00007f5d7bf87038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[  373.771726][T18517] RAX: ffffffffffffffda RBX: 00007f5d7db05fa0 RCX: 00007f5d7d915d29
[  373.779775][T18517] RDX: 000000000000fdef RSI: 0000000020000140 RDI: 0000000000000005
[  373.787757][T18517] RBP: 00007f5d7bf87090 R08: 0000000000000000 R09: 0000000000000000
[  373.795812][T18517] R10: 000000000000fecc R11: 0000000000000246 R12: 0000000000000001
[  373.803860][T18517] R13: 0000000000000000 R14: 00007f5d7db05fa0 R15: 00007ffcb054fad8
[  373.811855][T18517]  </TASK>
[  374.061381][T18535] lo speed is unknown, defaulting to 1000
[  374.121712][T18535] lo speed is unknown, defaulting to 1000
[  374.256968][T18551] lo speed is unknown, defaulting to 1000
[  374.381151][T18551] lo speed is unknown, defaulting to 1000
[  374.457172][T18552] SELinux: syz.4.4873 (18552) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  374.523124][T18554] loop2: detected capacity change from 0 to 512
[  374.533100][T18554] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  374.549529][T18554] EXT4-fs (loop2): 1 truncate cleaned up
[  374.661456][T18561] loop2: detected capacity change from 0 to 512
[  374.670306][T18561] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  374.679938][T18561] EXT4-fs (loop2): orphan cleanup on readonly fs
[  374.686859][T18561] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.4877: bg 0: block 248: padding at end of block bitmap is not set
[  374.701681][T18561] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.4877: Failed to acquire dquot type 1
[  374.713482][T18561] EXT4-fs (loop2): 1 truncate cleaned up
[  374.828192][T18570] dvmrp0: entered allmulticast mode
[  374.868549][T18570] loop0: detected capacity change from 0 to 128
[  374.988156][T18570] dvmrp0: left allmulticast mode
[  374.996536][T18575] loop5: detected capacity change from 0 to 164
[  375.024751][T18575] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(6)
[  375.031315][T18575] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  375.031409][T18575] vhci_hcd vhci_hcd.0: Device attached
[  375.072092][T18575] iso9660: Corrupted directory entry in block 4 of inode 1792
[  375.085433][T18575] iso9660: Corrupted directory entry in block 4 of inode 1792
[  375.115713][T18576] vhci_hcd: connection closed
[  375.123593][   T50] vhci_hcd: stop threads
[  375.132596][   T50] vhci_hcd: release socket
[  375.137023][   T50] vhci_hcd: disconnect device
[  375.139317][T18582] loop4: detected capacity change from 0 to 8192
[  375.167827][T18584] loop1: detected capacity change from 0 to 512
[  375.185042][T18584] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  375.205608][T18584] EXT4-fs (loop1): 1 truncate cleaned up
[  375.275250][T18590] lo speed is unknown, defaulting to 1000
[  375.338581][T18590] lo speed is unknown, defaulting to 1000
[  375.644869][T18608] loop0: detected capacity change from 0 to 2048
[  375.657760][T18610] loop2: detected capacity change from 0 to 512
[  375.669284][T18610] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  375.748324][T18617] lo speed is unknown, defaulting to 1000
[  375.870777][T18617] lo speed is unknown, defaulting to 1000
[  375.981044][T18610] EXT4-fs (loop2): orphan cleanup on readonly fs
[  376.006262][T18610] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.4894: bg 0: block 248: padding at end of block bitmap is not set
[  376.065416][T18610] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.4894: Failed to acquire dquot type 1
[  376.093745][T18620] IPVS: Unknown mcast interface: vcan0
[  376.105561][T18610] EXT4-fs (loop2): 1 truncate cleaned up
[  376.113869][T18622] FAULT_INJECTION: forcing a failure.
[  376.113869][T18622] name failslab, interval 1, probability 0, space 0, times 0
[  376.126551][T18622] CPU: 0 UID: 0 PID: 18622 Comm: syz.0.4897 Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[  376.137405][T18622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  376.147537][T18622] Call Trace:
[  376.150827][T18622]  <TASK>
[  376.153791][T18622]  dump_stack_lvl+0xf2/0x150
[  376.158565][T18622]  dump_stack+0x15/0x1a
[  376.162814][T18622]  should_fail_ex+0x223/0x230
[  376.167591][T18622]  should_failslab+0x8f/0xb0
[  376.172210][T18622]  kmem_cache_alloc_noprof+0x52/0x320
[  376.177603][T18622]  ? getname_flags+0x81/0x3b0
[  376.182293][T18622]  getname_flags+0x81/0x3b0
[  376.186850][T18622]  getname+0x17/0x20
[  376.190777][T18622]  do_sys_openat2+0x67/0x120
[  376.195399][T18622]  __x64_sys_openat+0xf3/0x120
[  376.200188][T18622]  x64_sys_call+0x2b30/0x2dc0
[  376.204874][T18622]  do_syscall_64+0xc9/0x1c0
[  376.209434][T18622]  ? clear_bhb_loop+0x55/0xb0
[  376.214212][T18622]  ? clear_bhb_loop+0x55/0xb0
[  376.218949][T18622]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  376.224892][T18622] RIP: 0033:0x7fb987115d29
[  376.229338][T18622] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  376.249024][T18622] RSP: 002b:00007fb985787038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  376.257519][T18622] RAX: ffffffffffffffda RBX: 00007fb987305fa0 RCX: 00007fb987115d29
[  376.265495][T18622] RDX: 0000000000000401 RSI: 00000000200000c0 RDI: ffffffffffffff9c
[  376.273473][T18622] RBP: 00007fb985787090 R08: 0000000000000000 R09: 0000000000000000
[  376.281451][T18622] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  376.289439][T18622] R13: 0000000000000000 R14: 00007fb987305fa0 R15: 00007ffd4f9cd528
[  376.297439][T18622]  </TASK>
[  376.304097][T18624] IPv6: NLM_F_CREATE should be specified when creating new route
[  376.369864][T18640] loop0: detected capacity change from 0 to 164
[  376.410887][T18637] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4899'.
[  376.420284][T18640] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  376.426831][T18640] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  376.434486][T18640] vhci_hcd vhci_hcd.0: Device attached
[  376.453250][T18637] hsr_slave_1 (unregistering): left promiscuous mode
[  376.459285][T18648] iso9660: Corrupted directory entry in block 4 of inode 1792
[  376.473807][T18644] loop1: detected capacity change from 0 to 512
[  376.500393][T18644] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  376.530810][T18653] loop2: detected capacity change from 0 to 2048
[  376.536600][T18640] iso9660: Corrupted directory entry in block 4 of inode 1792
[  376.552155][T18641] vhci_hcd: connection closed
[  376.553529][T18644] EXT4-fs (loop1): 1 truncate cleaned up
[  376.553568][ T3402] vhci_hcd: stop threads
[  376.553578][ T3402] vhci_hcd: release socket
[  376.553589][ T3402] vhci_hcd: disconnect device
[  376.616158][T18663] delete_channel: no stack
[  376.620861][T18663] delete_channel: no stack
[  376.644936][T18668] delete_channel: no stack
[  376.649544][T18668] delete_channel: no stack
[  376.656506][T18668] FAULT_INJECTION: forcing a failure.
[  376.656506][T18668] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  376.669656][T18668] CPU: 1 UID: 0 PID: 18668 Comm: syz.1.4914 Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[  376.680446][T18668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  376.690551][T18668] Call Trace:
[  376.693842][T18668]  <TASK>
[  376.696790][T18668]  dump_stack_lvl+0xf2/0x150
[  376.701489][T18668]  dump_stack+0x15/0x1a
[  376.705688][T18668]  should_fail_ex+0x223/0x230
[  376.710420][T18668]  should_fail+0xb/0x10
[  376.714673][T18668]  should_fail_usercopy+0x1a/0x20
[  376.719776][T18668]  _copy_from_user+0x1e/0xb0
[  376.724429][T18668]  ucma_write+0xd4/0x240
[  376.728807][T18668]  ? __pfx_ucma_write+0x10/0x10
[  376.733752][T18668]  vfs_write+0x281/0x920
[  376.738070][T18668]  ? __fget_files+0x17c/0x1c0
[  376.742830][T18668]  ksys_write+0xe8/0x1b0
[  376.747195][T18668]  __x64_sys_write+0x42/0x50
[  376.751898][T18668]  x64_sys_call+0x287e/0x2dc0
[  376.756608][T18668]  do_syscall_64+0xc9/0x1c0
[  376.761144][T18668]  ? clear_bhb_loop+0x55/0xb0
[  376.765837][T18668]  ? clear_bhb_loop+0x55/0xb0
[  376.770533][T18668]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  376.776459][T18668] RIP: 0033:0x7efe00b75d29
[  376.780888][T18668] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  376.800523][T18668] RSP: 002b:00007efdff1e7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  376.808975][T18668] RAX: ffffffffffffffda RBX: 00007efe00d65fa0 RCX: 00007efe00b75d29
[  376.817057][T18668] RDX: 0000000000000010 RSI: 0000000020000380 RDI: 0000000000000003
[  376.825156][T18668] RBP: 00007efdff1e7090 R08: 0000000000000000 R09: 0000000000000000
[  376.833140][T18668] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  376.841141][T18668] R13: 0000000000000000 R14: 00007efe00d65fa0 R15: 00007ffcdeeb97c8
[  376.849131][T18668]  </TASK>
[  376.947571][T18683] loop2: detected capacity change from 0 to 256
[  376.968396][T18683] FAT-fs (loop2): IO charset iso8859 not found
[  377.075797][T18686] lo speed is unknown, defaulting to 1000
[  377.194443][T18686] lo speed is unknown, defaulting to 1000
[  377.523744][T18690] delete_channel: no stack
[  377.553449][T18692] FAULT_INJECTION: forcing a failure.
[  377.553449][T18692] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  377.566551][T18692] CPU: 0 UID: 0 PID: 18692 Comm: syz.0.4922 Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[  377.577336][T18692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  377.587420][T18692] Call Trace:
[  377.589299][T18690] delete_channel: no stack
[  377.590786][T18692]  <TASK>
[  377.590797][T18692]  dump_stack_lvl+0xf2/0x150
[  377.602805][T18692]  dump_stack+0x15/0x1a
[  377.607097][T18692]  should_fail_ex+0x223/0x230
[  377.611851][T18692]  should_fail+0xb/0x10
[  377.616023][T18692]  should_fail_usercopy+0x1a/0x20
[  377.621070][T18692]  _copy_from_iter+0xd5/0xd00
[  377.625767][T18692]  ? kmalloc_reserve+0x16e/0x190
[  377.630806][T18692]  ? __build_skb_around+0x196/0x1f0
[  377.636149][T18692]  ? __alloc_skb+0x21f/0x310
[  377.640756][T18692]  ? __virt_addr_valid+0x1ed/0x250
[  377.645970][T18692]  ? __check_object_size+0x364/0x520
[  377.651346][T18692]  netlink_sendmsg+0x460/0x6e0
[  377.656565][T18692]  ? __pfx_netlink_sendmsg+0x10/0x10
[  377.661863][T18692]  __sock_sendmsg+0x140/0x180
[  377.666700][T18692]  ____sys_sendmsg+0x312/0x410
[  377.671511][T18692]  __sys_sendmsg+0x19d/0x230
[  377.676213][T18692]  __x64_sys_sendmsg+0x46/0x50
[  377.680998][T18692]  x64_sys_call+0x2734/0x2dc0
[  377.685775][T18692]  do_syscall_64+0xc9/0x1c0
[  377.690333][T18692]  ? clear_bhb_loop+0x55/0xb0
[  377.695021][T18692]  ? clear_bhb_loop+0x55/0xb0
[  377.699717][T18692]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  377.705635][T18692] RIP: 0033:0x7fb987115d29
[  377.710124][T18692] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  377.729807][T18692] RSP: 002b:00007fb985787038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  377.738253][T18692] RAX: ffffffffffffffda RBX: 00007fb987305fa0 RCX: 00007fb987115d29
[  377.746344][T18692] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003
[  377.754374][T18692] RBP: 00007fb985787090 R08: 0000000000000000 R09: 0000000000000000
[  377.762352][T18692] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  377.770340][T18692] R13: 0000000000000000 R14: 00007fb987305fa0 R15: 00007ffd4f9cd528
[  377.778406][T18692]  </TASK>
[  377.821457][T18690] SELinux:  Context system_u:object_r:hald_sonypic_exec_t:s0 is not valid (left unmapped).
[  377.862911][T18694] syz.4.4923[18694] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  377.863071][T18694] syz.4.4923[18694] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  377.886491][T18694] syz.4.4923[18694] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  377.900709][T18694] loop7: detected capacity change from 0 to 16384
[  378.016224][   T29] kauditd_printk_skb: 625 callbacks suppressed
[  378.016241][   T29] audit: type=1326 audit(1735875161.678:16826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18701 comm="syz.0.4927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb987115d29 code=0x7ffc0000
[  378.094455][T18707] loop2: detected capacity change from 0 to 512
[  378.103640][   T29] audit: type=1326 audit(1735875161.717:16827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18701 comm="syz.0.4927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=273 compat=0 ip=0x7fb987115d29 code=0x7ffc0000
[  378.127322][   T29] audit: type=1326 audit(1735875161.717:16828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18701 comm="syz.0.4927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb987115d29 code=0x7ffc0000
[  378.150975][   T29] audit: type=1326 audit(1735875161.717:16829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18701 comm="syz.0.4927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb987115d29 code=0x7ffc0000
[  378.150997][T18707] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  378.151839][T18707] EXT4-fs (loop2): orphan cleanup on readonly fs
[  378.174697][   T29] audit: type=1326 audit(1735875161.717:16830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18693 comm="syz.4.4923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d7d915d29 code=0x7ffc0000
[  378.213525][   T29] audit: type=1326 audit(1735875161.717:16831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18693 comm="syz.4.4923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d7d915d29 code=0x7ffc0000
[  378.266365][T18707] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.4928: bg 0: block 248: padding at end of block bitmap is not set
[  378.315496][T18707] Quota error (device loop2): write_blk: dquota write failed
[  378.322983][T18707] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  378.332988][T18707] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.4928: Failed to acquire dquot type 1
[  378.344284][   T29] audit: type=1326 audit(1735875161.976:16832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18711 comm="syz.4.4930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d7d915d29 code=0x7ffc0000
[  378.344330][   T29] audit: type=1326 audit(1735875161.976:16833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18711 comm="syz.4.4930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5d7d915d29 code=0x7ffc0000
[  378.353926][T18714] loop1: detected capacity change from 0 to 512
[  378.398576][T18707] EXT4-fs (loop2): 1 truncate cleaned up
[  378.409921][T18714] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  378.421575][T18707] EXT4-fs mount: 63 callbacks suppressed
[  378.421592][T18707] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  378.447439][T18719] loop4: detected capacity change from 0 to 164
[  378.458031][T12482] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  378.473940][T18714] EXT4-fs (loop1): 1 truncate cleaned up
[  378.484573][T18714] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  378.536204][T13277] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  378.568738][T18719] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  378.575293][T18719] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  378.582854][T18719] vhci_hcd vhci_hcd.0: Device attached
[  378.604478][T18719] iso9660: Corrupted directory entry in block 4 of inode 1792
[  378.615197][T18719] iso9660: Corrupted directory entry in block 4 of inode 1792
[  378.626601][T18725] vhci_hcd: connection closed
[  378.626940][   T50] vhci_hcd: stop threads
[  378.635927][   T50] vhci_hcd: release socket
[  378.640419][   T50] vhci_hcd: disconnect device
[  378.657062][T18728] lo speed is unknown, defaulting to 1000
[  378.718554][T18728] lo speed is unknown, defaulting to 1000
[  378.902227][T18741] hub 9-0:1.0: USB hub found
[  378.912296][T18741] hub 9-0:1.0: 8 ports detected
[  379.086985][T18746] IPv6: NLM_F_CREATE should be specified when creating new route
[  379.240390][T18751] loop0: detected capacity change from 0 to 512
[  379.243095][T18749] loop4: detected capacity change from 0 to 512
[  379.255660][T18751] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  379.274530][T18751] EXT4-fs (loop0): orphan cleanup on readonly fs
[  379.291678][T18751] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.4942: bg 0: block 248: padding at end of block bitmap is not set
[  379.307592][T18751] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.4942: Failed to acquire dquot type 1
[  379.320044][T18749] EXT4-fs warning (device loop4): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  379.335472][T18751] EXT4-fs (loop0): 1 truncate cleaned up
[  379.407974][T18749] EXT4-fs (loop4): mount failed
[  379.413453][T18751] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  379.441421][T12892] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  379.544880][T18760] loop0: detected capacity change from 0 to 512
[  379.554375][T18760] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  379.610760][T18760] EXT4-fs (loop0): 1 truncate cleaned up
[  379.617357][T18760] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  379.740141][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::ffff:0.0.0.0]:20002. Sending cookies.
[  379.828695][T18778] loop4: detected capacity change from 0 to 164
[  379.838274][T18778] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  379.844847][T18778] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  379.852390][T18778] vhci_hcd vhci_hcd.0: Device attached
[  379.860865][T18778] iso9660: Corrupted directory entry in block 4 of inode 1792
[  379.877331][T18778] iso9660: Corrupted directory entry in block 4 of inode 1792
[  379.885143][T18779] vhci_hcd: connection closed
[  379.885338][ T8773] vhci_hcd: stop threads
[  379.894390][ T8773] vhci_hcd: release socket
[  379.898855][ T8773] vhci_hcd: disconnect device
[  379.912195][T18786] loop2: detected capacity change from 0 to 512
[  379.919499][T18786] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  379.929421][T18786] EXT4-fs (loop2): orphan cleanup on readonly fs
[  379.936362][T18786] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.4954: bg 0: block 248: padding at end of block bitmap is not set
[  379.951057][T18786] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.4954: Failed to acquire dquot type 1
[  379.963099][T18786] EXT4-fs (loop2): 1 truncate cleaned up
[  379.969322][T18786] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  379.994122][T12482] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  380.168224][T18797] hub 9-0:1.0: USB hub found
[  380.174437][T18797] hub 9-0:1.0: 8 ports detected
[  380.321290][T12892] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  380.751054][T18817] loop1: detected capacity change from 0 to 512
[  380.759517][T18817] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  380.770003][T18817] EXT4-fs (loop1): orphan cleanup on readonly fs
[  380.776994][T18817] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.4965: bg 0: block 248: padding at end of block bitmap is not set
[  380.791725][T18817] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.4965: Failed to acquire dquot type 1
[  380.803776][T18817] EXT4-fs (loop1): 1 truncate cleaned up
[  380.810281][T18817] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  380.837520][T13277] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  380.916963][T18830] loop0: detected capacity change from 0 to 164
[  380.938482][T18830] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  380.945041][T18830] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  380.952535][T18830] vhci_hcd vhci_hcd.0: Device attached
[  380.982646][T18830] iso9660: Corrupted directory entry in block 4 of inode 1792
[  380.997283][T18830] iso9660: Corrupted directory entry in block 4 of inode 1792
[  381.009362][T18834] vhci_hcd: connection closed
[  381.009652][   T50] vhci_hcd: stop threads
[  381.018718][   T50] vhci_hcd: release socket
[  381.023188][   T50] vhci_hcd: disconnect device
[  381.030454][T18835] loop2: detected capacity change from 0 to 8192
[  381.034152][T18842] loop1: detected capacity change from 0 to 164
[  381.060996][T18842] +}[@: attempt to access beyond end of device
[  381.060996][T18842] loop1: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  381.074454][T18842] +}[@: attempt to access beyond end of device
[  381.074454][T18842] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[  381.550496][T18859] hub 9-0:1.0: USB hub found
[  381.555646][T18859] hub 9-0:1.0: 8 ports detected
[  381.855403][T18868] hub 9-0:1.0: USB hub found
[  381.880177][T18868] hub 9-0:1.0: 8 ports detected
[  382.153582][T18883] loop2: detected capacity change from 0 to 512
[  382.160440][T18883] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  382.171949][T18883] EXT4-fs (loop2): 1 truncate cleaned up
[  382.178736][T18883] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  382.300729][T18891] loop4: detected capacity change from 0 to 164
[  382.309487][T18891] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  382.316041][T18891] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  382.317590][T18889] loop5: detected capacity change from 0 to 8192
[  382.323515][T18891] vhci_hcd vhci_hcd.0: Device attached
[  382.340572][T18891] iso9660: Corrupted directory entry in block 4 of inode 1792
[  382.354665][T18891] iso9660: Corrupted directory entry in block 4 of inode 1792
[  382.363157][T18892] vhci_hcd: connection closed
[  382.363917][T12482] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  382.377960][ T8797] vhci_hcd: stop threads
[  382.382239][ T8797] vhci_hcd: release socket
[  382.386809][ T8797] vhci_hcd: disconnect device
[  382.990991][T18906] loop4: detected capacity change from 0 to 256
[  382.994523][T18912] loop2: detected capacity change from 0 to 512
[  383.005517][T18912] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  383.013959][T18906] FAT-fs (loop4): IO charset iso8859 not found
[  383.026780][T18912] EXT4-fs (loop2): 1 truncate cleaned up
[  383.060391][T18912] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  383.118691][T12482] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  383.153744][T18916] loop4: detected capacity change from 0 to 8192
[  383.444404][T18922] loop2: detected capacity change from 0 to 2048
[  383.465519][T18922] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  383.527466][T18926] loop1: detected capacity change from 0 to 8192
[  383.633330][T12482] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  383.832291][   T29] kauditd_printk_skb: 384 callbacks suppressed
[  383.832308][   T29] audit: type=1326 audit(1735875167.447:17211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18934 comm="syz.2.5004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0b67c5d29 code=0x7ffc0000
[  383.868011][   T29] audit: type=1326 audit(1735875167.477:17212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18934 comm="syz.2.5004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0b67c5d29 code=0x7ffc0000
[  383.891744][   T29] audit: type=1326 audit(1735875167.477:17213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18934 comm="syz.2.5004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb0b67c5d29 code=0x7ffc0000
[  383.915545][   T29] audit: type=1326 audit(1735875167.477:17214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18934 comm="syz.2.5004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0b67c5d29 code=0x7ffc0000
[  383.939305][   T29] audit: type=1326 audit(1735875167.477:17215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18934 comm="syz.2.5004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0b67c5d29 code=0x7ffc0000
[  383.962958][   T29] audit: type=1326 audit(1735875167.487:17216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18934 comm="syz.2.5004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb0b67c5d29 code=0x7ffc0000
[  383.986685][   T29] audit: type=1326 audit(1735875167.487:17217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18934 comm="syz.2.5004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0b67c5d29 code=0x7ffc0000
[  384.010329][   T29] audit: type=1326 audit(1735875167.487:17218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18934 comm="syz.2.5004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7fb0b67c5d29 code=0x7ffc0000
[  384.034033][   T29] audit: type=1326 audit(1735875167.487:17219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18934 comm="syz.2.5004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0b67c5d29 code=0x7ffc0000
[  384.057767][   T29] audit: type=1326 audit(1735875167.487:17220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18934 comm="syz.2.5004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=242 compat=0 ip=0x7fb0b67c5d29 code=0x7ffc0000
[  384.402980][T18946] lo speed is unknown, defaulting to 1000
[  384.522491][T18946] lo speed is unknown, defaulting to 1000
[  384.801657][T18948] loop5: detected capacity change from 0 to 512
[  384.932851][T18948] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.5010: bg 0: block 248: padding at end of block bitmap is not set
[  384.948166][T18948] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.5010: Failed to acquire dquot type 1
[  384.960851][T18948] EXT4-fs (loop5): 1 truncate cleaned up
[  384.967231][T18948] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  384.988902][T18948] ext4 filesystem being mounted at /500/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  385.003553][T18962] loop1: detected capacity change from 0 to 2048
[  385.016908][T18962] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  385.054226][T10979] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  385.122373][T13277] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  385.149041][T18975] IPv6: NLM_F_CREATE should be specified when creating new route
[  385.301568][T18982] loop5: detected capacity change from 0 to 8192
[  385.393172][T18985] lo speed is unknown, defaulting to 1000
[  385.524810][T18985] lo speed is unknown, defaulting to 1000
[  385.915557][T18990] loop0: detected capacity change from 0 to 512
[  385.926946][T18990] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  385.937313][T18990] EXT4-fs (loop0): orphan cleanup on readonly fs
[  385.944507][T18990] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.5023: bg 0: block 248: padding at end of block bitmap is not set
[  385.965523][T18990] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.5023: Failed to acquire dquot type 1
[  385.977479][T18990] EXT4-fs (loop0): 1 truncate cleaned up
[  386.027795][T18990] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  386.040692][T18994] Cannot find add_set index 3 as target
[  386.113766][T12892] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  386.128537][T18996] loop4: detected capacity change from 0 to 512
[  386.186757][T18996] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5026: bg 0: block 248: padding at end of block bitmap is not set
[  386.230689][T18996] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.5026: Failed to acquire dquot type 1
[  386.242574][T18996] EXT4-fs (loop4): 1 truncate cleaned up
[  386.248636][T18996] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  386.263360][T18996] ext4 filesystem being mounted at /381/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  386.293700][T13134] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  386.346191][T19014] loop0: detected capacity change from 0 to 512
[  386.354676][T19014] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  386.376959][T19014] EXT4-fs (loop0): orphan cleanup on readonly fs
[  386.384548][T19014] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.5033: bg 0: block 248: padding at end of block bitmap is not set
[  386.399259][T19014] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.5033: Failed to acquire dquot type 1
[  386.411269][T19014] EXT4-fs (loop0): 1 truncate cleaned up
[  386.417473][T19014] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  386.446980][T12892] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  386.466736][T19023] loop0: detected capacity change from 0 to 512
[  386.473936][T19023] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  386.484239][T19023] EXT4-fs (loop0): orphan cleanup on readonly fs
[  386.492085][T19023] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.5035: bg 0: block 248: padding at end of block bitmap is not set
[  386.494807][T19025] loop4: detected capacity change from 0 to 512
[  386.506758][T19023] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.5035: Failed to acquire dquot type 1
[  386.515758][T19025] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  386.524575][T19023] EXT4-fs (loop0): 1 truncate cleaned up
[  386.540386][T19023] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  386.541197][T19025] EXT4-fs (loop4): 1 truncate cleaned up
[  386.565379][T19025] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  386.580457][T12892] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  386.601827][T19028] loop0: detected capacity change from 0 to 512
[  386.608754][T13134] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  386.618870][T19028] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  386.638479][T19028] EXT4-fs (loop0): orphan cleanup on readonly fs
[  386.645671][T19028] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.5036: bg 0: block 248: padding at end of block bitmap is not set
[  386.661324][T19028] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.5036: Failed to acquire dquot type 1
[  386.665508][T19033] loop4: detected capacity change from 0 to 512
[  386.674833][T19028] EXT4-fs (loop0): 1 truncate cleaned up
[  386.684751][T19033] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  386.685373][T19028] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  386.705564][T19033] EXT4-fs (loop4): orphan cleanup on readonly fs
[  386.715427][T19033] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5038: bg 0: block 248: padding at end of block bitmap is not set
[  386.730123][T19033] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.5038: Failed to acquire dquot type 1
[  386.730212][T12892] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  386.743264][T19033] EXT4-fs (loop4): 1 truncate cleaned up
[  386.757636][T19033] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  386.785089][T13134] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  386.867060][T19046] loop4: detected capacity change from 0 to 512
[  386.890637][T19046] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5044: bg 0: block 248: padding at end of block bitmap is not set
[  386.906900][T19046] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.5044: Failed to acquire dquot type 1
[  386.918931][T19046] EXT4-fs (loop4): 1 truncate cleaned up
[  386.926388][T19046] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  386.941270][T19046] ext4 filesystem being mounted at /387/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  386.966483][T13134] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  387.052681][T19061] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5049'.
[  387.245959][T19072] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5053'.
[  387.553534][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::ffff:0.0.0.0]:20002. Sending cookies.
[  387.936922][T19095] IPv6: NLM_F_CREATE should be specified when creating new route
[  388.036580][T19099] loop4: detected capacity change from 0 to 164
[  388.045769][T19099] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7)
[  388.052322][T19099] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  388.059808][T19099] vhci_hcd vhci_hcd.0: Device attached
[  388.067611][T19099] iso9660: Corrupted directory entry in block 4 of inode 1792
[  388.078968][T19099] iso9660: Corrupted directory entry in block 4 of inode 1792
[  388.087815][T19100] vhci_hcd: connection closed
[  388.088759][ T8752] vhci_hcd: stop threads
[  388.097915][ T8752] vhci_hcd: release socket
[  388.102445][ T8752] vhci_hcd: disconnect device
[  388.401795][T19117] lo speed is unknown, defaulting to 1000
[  388.519471][T19117] lo speed is unknown, defaulting to 1000
[  388.739681][T19121] loop2: detected capacity change from 0 to 512
[  388.756933][T19121] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.5071: bg 0: block 248: padding at end of block bitmap is not set
[  388.773620][T19121] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.5071: Failed to acquire dquot type 1
[  388.792591][T19121] EXT4-fs (loop2): 1 truncate cleaned up
[  388.799028][T19121] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  388.812219][T19121] ext4 filesystem being mounted at /518/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  388.852603][T12482] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  388.951575][T19136] loop4: detected capacity change from 0 to 512
[  388.978831][T19136] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5076: bg 0: block 248: padding at end of block bitmap is not set
[  388.980054][T19141] loop0: detected capacity change from 0 to 2048
[  388.993886][T19136] __quota_error: 220 callbacks suppressed
[  388.993900][T19136] Quota error (device loop4): write_blk: dquota write failed
[  389.013082][T19136] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  389.023064][T19136] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.5076: Failed to acquire dquot type 1
[  389.072382][T19136] EXT4-fs (loop4): 1 truncate cleaned up
[  389.080548][T19136] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  389.096223][T19136] ext4 filesystem being mounted at /393/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  389.101523][T19141] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  389.162727][T13134] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  389.178136][T12892] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  389.216039][   T29] audit: type=1326 audit(1735875172.803:17423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19150 comm="syz.4.5081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d7d915d29 code=0x7ffc0000
[  389.239812][   T29] audit: type=1326 audit(1735875172.803:17424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19150 comm="syz.4.5081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d7d915d29 code=0x7ffc0000
[  389.275691][   T29] audit: type=1326 audit(1735875172.813:17425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19150 comm="syz.4.5081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5d7d915d29 code=0x7ffc0000
[  389.299511][   T29] audit: type=1326 audit(1735875172.813:17426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19150 comm="syz.4.5081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d7d915d29 code=0x7ffc0000
[  389.323485][   T29] audit: type=1326 audit(1735875172.813:17427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19150 comm="syz.4.5081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d7d915d29 code=0x7ffc0000
[  389.347406][   T29] audit: type=1326 audit(1735875172.813:17428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19150 comm="syz.4.5081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5d7d915d29 code=0x7ffc0000
[  389.372093][   T29] audit: type=1326 audit(1735875172.892:17429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19152 comm="syz.0.5082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb987115d29 code=0x7ffc0000
[  389.395872][   T29] audit: type=1326 audit(1735875172.892:17430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19152 comm="syz.0.5082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb987115d29 code=0x7ffc0000
[  389.426363][T19162] netlink: 68 bytes leftover after parsing attributes in process `syz.5.5086'.
[  389.441823][T19162] loop5: detected capacity change from 0 to 512
[  389.449676][T19162] EXT4-fs (loop5): orphan cleanup on readonly fs
[  389.456805][T19162] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.5086: bg 0: block 248: padding at end of block bitmap is not set
[  389.473132][T19162] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.5086: Failed to acquire dquot type 1
[  389.485548][T19162] EXT4-fs (loop5): 1 truncate cleaned up
[  389.492118][T19162] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  389.505626][T19162] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  389.520818][T19162] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  389.525051][T19171] loop1: detected capacity change from 0 to 256
[  389.539947][T19171] /dev/loop1: Can't open blockdev
[  389.558264][T10979] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  389.733789][T19184] loop5: detected capacity change from 0 to 512
[  389.740862][T19184] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  389.767601][T19184] EXT4-fs (loop5): 1 truncate cleaned up
[  389.775045][T19184] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  389.804528][T10979] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  389.963825][T19195] loop5: detected capacity change from 0 to 512
[  389.971226][T19195] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  389.983945][T19195] EXT4-fs (loop5): 1 truncate cleaned up
[  389.990035][T19195] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  390.056171][T10979] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  390.117741][T19208] loop1: detected capacity change from 0 to 256
[  390.125441][T19208] /dev/loop1: Can't open blockdev
[  390.155508][T19213] loop0: detected capacity change from 0 to 256
[  390.162764][T19213] /dev/loop0: Can't open blockdev
[  390.663593][T19246] loop0: detected capacity change from 0 to 256
[  390.670585][T19246] /dev/loop0: Can't open blockdev
[  390.972072][T19267] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5127'.
[  391.056048][T19269] loop5: detected capacity change from 0 to 512
[  391.082782][T19269] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.5128: bg 0: block 248: padding at end of block bitmap is not set
[  391.113146][T19269] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.5128: Failed to acquire dquot type 1
[  391.137786][T19269] EXT4-fs (loop5): 1 truncate cleaned up
[  391.154049][T19269] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  391.183733][T19269] ext4 filesystem being mounted at /522/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  391.236445][T10979] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  391.356638][T19280] loop4: detected capacity change from 0 to 512
[  391.364086][T19280] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  391.388589][T19280] EXT4-fs (loop4): 1 truncate cleaned up
[  391.412522][T19280] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  391.618742][T19298] loop1: detected capacity change from 0 to 512
[  391.626203][T19298] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  391.637286][T19298] EXT4-fs (loop1): orphan cleanup on readonly fs
[  391.644483][T19298] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.5138: bg 0: block 248: padding at end of block bitmap is not set
[  391.660340][T19298] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.5138: Failed to acquire dquot type 1
[  391.674106][T19298] EXT4-fs (loop1): 1 truncate cleaned up
[  391.680638][T19298] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  391.706730][T13277] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  391.731644][T19311] loop5: detected capacity change from 0 to 512
[  391.745090][T19311] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.5144: bg 0: block 248: padding at end of block bitmap is not set
[  391.759670][T19311] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.5144: Failed to acquire dquot type 1
[  391.771744][T19311] EXT4-fs (loop5): 1 truncate cleaned up
[  391.778227][T19311] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  391.790982][T19311] ext4 filesystem being mounted at /530/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  391.814458][T10979] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  391.950697][T19326] loop5: detected capacity change from 0 to 512
[  391.969394][T19326] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.5150: bg 0: block 248: padding at end of block bitmap is not set
[  391.989329][T19326] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.5150: Failed to acquire dquot type 1
[  392.003431][T19326] EXT4-fs (loop5): 1 truncate cleaned up
[  392.011000][T19326] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  392.024663][T19326] ext4 filesystem being mounted at /534/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  392.052874][T10979] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  392.110131][T19335] loop5: detected capacity change from 0 to 256
[  392.117057][T19335] /dev/loop5: Can't open blockdev
[  392.144852][T19337] loop5: detected capacity change from 0 to 512
[  392.154919][T19337] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  392.169384][T19337] EXT4-fs (loop5): orphan cleanup on readonly fs
[  392.176712][T19337] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.5154: bg 0: block 248: padding at end of block bitmap is not set
[  392.179836][T19342] loop2: detected capacity change from 0 to 512
[  392.212023][T19337] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.5154: Failed to acquire dquot type 1
[  392.227655][T13134] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  392.239615][T19337] EXT4-fs (loop5): 1 truncate cleaned up
[  392.245964][T19337] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  392.272851][T10979] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  392.302410][T19342] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.5156: bg 0: block 248: padding at end of block bitmap is not set
[  392.331910][T19342] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.5156: Failed to acquire dquot type 1
[  392.414373][T19351] lo speed is unknown, defaulting to 1000
[  392.533472][T19351] lo speed is unknown, defaulting to 1000
[  392.630052][T19342] EXT4-fs (loop2): 1 truncate cleaned up
[  392.672212][T19342] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  392.811823][T19342] ext4 filesystem being mounted at /522/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  392.930432][T12482] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  392.973200][T19363] loop2: detected capacity change from 0 to 2048
[  392.982513][T19361] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5163'.
[  393.416583][T19388] loop2: detected capacity change from 0 to 164
[  393.444032][T19388] rdma_op ffff888112e27d80 conn xmit_rdma 0000000000000000
[  393.475928][T19391] 9pnet_fd: Insufficient options for proto=fd
[  393.504723][T19393] loop2: detected capacity change from 0 to 512
[  393.512816][T19393] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  393.537628][T19393] EXT4-fs (loop2): orphan cleanup on readonly fs
[  393.549160][T19393] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.5173: bg 0: block 248: padding at end of block bitmap is not set
[  393.576746][T19393] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.5173: Failed to acquire dquot type 1
[  393.595059][T19400] 9pnet_fd: Insufficient options for proto=fd
[  393.598317][T19393] EXT4-fs (loop2): 1 truncate cleaned up
[  393.800036][T19421] 9pnet_fd: Insufficient options for proto=fd
[  393.888327][T19430] 9pnet_fd: Insufficient options for proto=fd
[  393.927441][T19433] loop1: detected capacity change from 0 to 512
[  393.934628][T19433] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  393.945391][T19433] EXT4-fs (loop1): orphan cleanup on readonly fs
[  393.952686][T19433] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.5189: bg 0: block 248: padding at end of block bitmap is not set
[  393.969161][T19433] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.5189: Failed to acquire dquot type 1
[  393.981292][T19433] EXT4-fs (loop1): 1 truncate cleaned up
[  394.125706][   T29] kauditd_printk_skb: 388 callbacks suppressed
[  394.125723][   T29] audit: type=1326 audit(1735875177.684:17800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19451 comm="syz.2.5197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0b67c5d29 code=0x7ffc0000
[  394.159421][   T29] audit: type=1326 audit(1735875177.723:17801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19451 comm="syz.2.5197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0b67c5d29 code=0x7ffc0000
[  394.183110][   T29] audit: type=1326 audit(1735875177.723:17802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19451 comm="syz.2.5197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fb0b67c5d29 code=0x7ffc0000
[  394.206815][   T29] audit: type=1326 audit(1735875177.723:17803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19451 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0b67c5d29 code=0x7ffc0000
[  394.230226][   T29] audit: type=1326 audit(1735875177.723:17804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19451 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0b67c5d29 code=0x7ffc0000
[  394.253395][   T29] audit: type=1326 audit(1735875177.723:17805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19451 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb0b67c5d29 code=0x7ffc0000
[  394.276413][   T29] audit: type=1326 audit(1735875177.723:17806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19451 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0b67c5d29 code=0x7ffc0000
[  394.299701][   T29] audit: type=1326 audit(1735875177.723:17807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19451 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0b67c5d29 code=0x7ffc0000
[  394.322992][   T29] audit: type=1326 audit(1735875177.723:17808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19451 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb0b67c5d29 code=0x7ffc0000
[  394.346125][   T29] audit: type=1326 audit(1735875177.723:17809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19451 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0b67c5d29 code=0x7ffc0000
[  394.614407][T19472] loop1: detected capacity change from 0 to 1024
[  394.622731][T19472] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  394.632720][T19472] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  394.646628][T19472] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  394.665365][T19481] loop4: detected capacity change from 0 to 512
[  394.673576][T19472] EXT4-fs (loop1): orphan cleanup on readonly fs
[  394.681202][T19472] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  394.692377][T19472] EXT4-fs (loop1): Remounting filesystem read-only
[  394.699159][T19472] EXT4-fs (loop1): 1 orphan inode deleted
[  394.707898][T19481] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.5211: couldn't read orphan inode 26 (err -116)
[  394.723771][T19481] ext4 filesystem being mounted at /415/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  394.758470][T19472] SELinux: (dev loop1, type ext4) getxattr errno 5
[  394.911765][T19496] lo speed is unknown, defaulting to 1000
[  395.033308][T19496] lo speed is unknown, defaulting to 1000
[  395.526005][T19503] loop2: detected capacity change from 0 to 512
[  395.548307][T19492] loop1: detected capacity change from 0 to 8192
[  395.591584][T19507] loop0: detected capacity change from 0 to 512
[  395.611031][T19507] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  395.631850][T19507] EXT4-fs (loop0): orphan cleanup on readonly fs
[  395.634447][T19503] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.5216: bg 0: block 248: padding at end of block bitmap is not set
[  395.658448][T19507] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.5219: bg 0: block 248: padding at end of block bitmap is not set
[  395.673514][T19503] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.5216: Failed to acquire dquot type 1
[  395.673718][T19507] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.5219: Failed to acquire dquot type 1
[  395.701009][T19507] EXT4-fs (loop0): 1 truncate cleaned up
[  395.729614][T19503] EXT4-fs (loop2): 1 truncate cleaned up
[  395.736129][T19503] ext4 filesystem being mounted at /537/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  395.750354][T19517] 9pnet_fd: Insufficient options for proto=fd
[  395.839478][T19525] FAULT_INJECTION: forcing a failure.
[  395.839478][T19525] name failslab, interval 1, probability 0, space 0, times 0
[  395.852728][T19525] CPU: 0 UID: 0 PID: 19525 Comm: syz.2.5224 Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[  395.863532][T19525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  395.873676][T19525] Call Trace:
[  395.877030][T19525]  <TASK>
[  395.879971][T19525]  dump_stack_lvl+0xf2/0x150
[  395.884599][T19525]  dump_stack+0x15/0x1a
[  395.888786][T19525]  should_fail_ex+0x223/0x230
[  395.893670][T19525]  should_failslab+0x8f/0xb0
[  395.898284][T19525]  kmem_cache_alloc_noprof+0x52/0x320
[  395.903743][T19525]  ? audit_log_start+0x34c/0x6b0
[  395.908786][T19525]  audit_log_start+0x34c/0x6b0
[  395.913599][T19525]  ? kmem_cache_free+0xdc/0x2d0
[  395.918539][T19525]  audit_seccomp+0x4b/0x130
[  395.923107][T19525]  __seccomp_filter+0x6fa/0x1180
[  395.928110][T19525]  ? __perf_event_task_sched_out+0x138/0x1010
[  395.934230][T19525]  ? __dequeue_entity+0x2c3/0x310
[  395.939315][T19525]  ? tracing_record_taskinfo_sched_switch+0x6f/0x270
[  395.946061][T19525]  __secure_computing+0x9f/0x1c0
[  395.951020][T19525]  syscall_trace_enter+0xd1/0x1f0
[  395.956201][T19525]  do_syscall_64+0xaa/0x1c0
[  395.960716][T19525]  ? clear_bhb_loop+0x55/0xb0
[  395.965415][T19525]  ? clear_bhb_loop+0x55/0xb0
[  395.970103][T19525]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  395.976033][T19525] RIP: 0033:0x7fb0b67c473c
[  395.980476][T19525] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  396.000166][T19525] RSP: 002b:00007fb0b4e37030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  396.008635][T19525] RAX: ffffffffffffffda RBX: 00007fb0b69b5fa0 RCX: 00007fb0b67c473c
[  396.016614][T19525] RDX: 000000000000000f RSI: 00007fb0b4e370a0 RDI: 0000000000000003
[  396.024664][T19525] RBP: 00007fb0b4e37090 R08: 0000000000000000 R09: 0000000000000000
[  396.032640][T19525] R10: 000000000000fecc R11: 0000000000000246 R12: 0000000000000001
[  396.040690][T19525] R13: 0000000000000000 R14: 00007fb0b69b5fa0 R15: 00007ffc08b8b3d8
[  396.048707][T19525]  </TASK>
[  396.116270][T19526] loop4: detected capacity change from 0 to 8192
[  396.248344][T19534] bond1: entered promiscuous mode
[  396.253529][T19534] bond1: entered allmulticast mode
[  396.258987][T19534] 8021q: adding VLAN 0 to HW filter on device bond1
[  396.270575][T19534] bond1 (unregistering): Released all slaves
[  396.552319][T19553] 9pnet_fd: Insufficient options for proto=fd
[  396.974859][T19583] 9pnet_fd: Insufficient options for proto=fd
[  397.028821][T19589] loop4: detected capacity change from 0 to 512
[  397.037945][T19589] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  397.050657][T19589] EXT4-fs (loop4): orphan cleanup on readonly fs
[  397.106944][T19589] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5249: bg 0: block 248: padding at end of block bitmap is not set
[  397.139410][T19589] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.5249: Failed to acquire dquot type 1
[  397.163052][T19589] EXT4-fs (loop4): 1 truncate cleaned up
[  397.413303][T19609] hub 9-0:1.0: USB hub found
[  397.418177][T19609] hub 9-0:1.0: 8 ports detected
[  397.490028][T19614] loop5: detected capacity change from 0 to 512
[  397.497524][T19614] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  397.518237][T19616] loop4: detected capacity change from 0 to 512
[  397.518436][T19614] EXT4-fs (loop5): orphan cleanup on readonly fs
[  397.531862][T19616] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  397.542506][T19614] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.5258: bg 0: block 248: padding at end of block bitmap is not set
[  397.566355][T19614] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.5258: Failed to acquire dquot type 1
[  397.580392][T19616] EXT4-fs (loop4): 1 truncate cleaned up
[  397.588600][T19614] EXT4-fs (loop5): 1 truncate cleaned up
[  397.624434][T19623] 9pnet_fd: Insufficient options for proto=fd
[  397.748399][T19632] loop4: detected capacity change from 0 to 8192
[  397.829867][T19639] lo speed is unknown, defaulting to 1000
[  397.934609][T19639] lo speed is unknown, defaulting to 1000
[  397.992696][T19636] loop5: detected capacity change from 0 to 512
[  398.149695][T19636] EXT4-fs error (device loop5): ext4_orphan_get:1389: inode #15: comm syz.5.5267: casefold flag without casefold feature
[  398.162714][T19636] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.5267: couldn't read orphan inode 15 (err -117)
[  398.421235][T19656] loop5: detected capacity change from 0 to 512
[  398.462007][T19656] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  398.539244][T19656] EXT4-fs (loop5): 1 truncate cleaned up
[  398.650137][T19666] loop5: detected capacity change from 0 to 1024
[  398.657276][T19666] EXT4-fs: Ignoring removed oldalloc option
[  398.674317][T19666] EXT4-fs (loop5): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  398.847880][T19672] loop1: detected capacity change from 0 to 8192
[  399.059535][T19681] loop0: detected capacity change from 0 to 8192
[  399.456880][T19694] lo speed is unknown, defaulting to 1000
[  399.559263][T19694] lo speed is unknown, defaulting to 1000
[  399.683641][T19693] hub 9-0:1.0: USB hub found
[  399.789323][T19693] hub 9-0:1.0: 8 ports detected
[  400.025612][   T29] kauditd_printk_skb: 310 callbacks suppressed
[  400.025630][   T29] audit: type=1326 audit(1735875183.552:18106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19704 comm="syz.1.5288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe00b75d29 code=0x7ffc0000
[  400.060360][   T29] audit: type=1326 audit(1735875183.591:18107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19704 comm="syz.1.5288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7efe00b75d29 code=0x7ffc0000
[  400.084331][   T29] audit: type=1326 audit(1735875183.591:18108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19704 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe00b75d29 code=0x7ffc0000
[  400.107504][   T29] audit: type=1326 audit(1735875183.591:18109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19704 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe00b75d29 code=0x7ffc0000
[  400.193373][   T29] audit: type=1326 audit(1735875183.691:18110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19704 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7efe00b75d29 code=0x7ffc0000
[  400.216498][   T29] audit: type=1326 audit(1735875183.691:18111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19704 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe00b75d29 code=0x7ffc0000
[  400.226897][T19710] loop5: detected capacity change from 0 to 512
[  400.239556][   T29] audit: type=1326 audit(1735875183.691:18112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19704 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe00b75d29 code=0x7ffc0000
[  400.239593][   T29] audit: type=1326 audit(1735875183.691:18113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19704 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efe00b75d29 code=0x7ffc0000
[  400.292258][   T29] audit: type=1326 audit(1735875183.691:18114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19704 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe00b75d29 code=0x7ffc0000
[  400.315361][   T29] audit: type=1326 audit(1735875183.691:18115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19704 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe00b75d29 code=0x7ffc0000
[  400.363268][T19710] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  400.422553][T19710] EXT4-fs (loop5): orphan cleanup on readonly fs
[  400.462341][T19722] 9pnet_fd: Insufficient options for proto=fd
[  400.479681][T19710] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.5290: bg 0: block 248: padding at end of block bitmap is not set
[  400.543115][T19710] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.5290: Failed to acquire dquot type 1
[  400.620679][T19710] EXT4-fs (loop5): 1 truncate cleaned up
[  400.693756][T19732] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5298'.
[  400.710012][T19729] loop4: detected capacity change from 0 to 8192
[  400.864633][T19733] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5294'.
[  401.190032][T19750] lo speed is unknown, defaulting to 1000
[  401.293269][T19750] lo speed is unknown, defaulting to 1000
[  401.788486][T19760] 9pnet_fd: Insufficient options for proto=fd
[  401.875496][T19764] loop0: detected capacity change from 0 to 164
[  401.892990][T19766] loop5: detected capacity change from 0 to 164
[  401.920871][T19764] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  401.927491][T19764] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  401.935091][T19764] vhci_hcd vhci_hcd.0: Device attached
[  401.948241][T19764] iso9660: Corrupted directory entry in block 4 of inode 1792
[  401.960765][T19764] iso9660: Corrupted directory entry in block 4 of inode 1792
[  401.968646][T19769] vhci_hcd: connection closed
[  401.968763][T19766] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(7)
[  401.979972][T19766] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  401.987524][T19766] vhci_hcd vhci_hcd.0: Device attached
[  401.996283][ T3402] vhci_hcd: stop threads
[  402.000686][ T3402] vhci_hcd: release socket
[  402.005133][ T3402] vhci_hcd: disconnect device
[  402.011659][T19766] iso9660: Corrupted directory entry in block 4 of inode 1792
[  402.021614][T19766] iso9660: Corrupted directory entry in block 4 of inode 1792
[  402.029641][T19773] vhci_hcd: connection closed
[  402.032121][  T121] vhci_hcd: stop threads
[  402.041101][  T121] vhci_hcd: release socket
[  402.045536][  T121] vhci_hcd: disconnect device
[  402.298782][T19778] hub 9-0:1.0: USB hub found
[  402.303845][T19778] hub 9-0:1.0: 8 ports detected
[  402.814957][T19793] hub 9-0:1.0: USB hub found
[  402.819757][T19793] hub 9-0:1.0: 8 ports detected
[  402.912705][T19796] 9pnet_fd: Insufficient options for proto=fd
[  402.962239][T19798] loop0: detected capacity change from 0 to 512
[  402.969549][T19798] EXT4-fs: Ignoring removed nomblk_io_submit option
[  403.019355][T19798] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  403.027390][T19798] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=3842c01c, mo2=0002]
[  403.038601][T19798] System zones: 1-12
[  403.044803][T19798] EXT4-fs (loop0): couldn't mount RDWR because of unsupported optional features (80)
[  403.054451][T19798] EXT4-fs (loop0): Skipping orphan cleanup due to unknown ROCOMPAT features
[  403.065750][T19805] loop2: detected capacity change from 0 to 164
[  403.099911][T19805] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  403.106475][T19805] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  403.113975][T19805] vhci_hcd vhci_hcd.0: Device attached
[  403.120618][T19805] iso9660: Corrupted directory entry in block 4 of inode 1792
[  403.130802][T19805] iso9660: Corrupted directory entry in block 4 of inode 1792
[  403.138628][T19806] vhci_hcd: connection closed
[  403.138805][  T121] vhci_hcd: stop threads
[  403.147838][  T121] vhci_hcd: release socket
[  403.152280][  T121] vhci_hcd: disconnect device
[  403.204473][T19815] loop1: detected capacity change from 0 to 512
[  403.211895][T19815] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  403.231386][T19815] EXT4-fs (loop1): orphan cleanup on readonly fs
[  403.238574][T19815] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.5329: bg 0: block 248: padding at end of block bitmap is not set
[  403.253314][T19815] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.5329: Failed to acquire dquot type 1
[  403.265665][T19815] EXT4-fs (loop1): 1 truncate cleaned up
[  403.318597][T19822] 9pnet_fd: Insufficient options for proto=fd
[  403.409056][T19828] loop1: detected capacity change from 0 to 512
[  403.427853][T19830] loop0: detected capacity change from 0 to 2048
[  403.437413][T19828] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  403.450470][T19828] EXT4-fs (loop1): 1 truncate cleaned up
[  403.478911][T19830] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 18 with error 28
[  403.491485][T19830] EXT4-fs (loop0): This should not happen!! Data will be lost
[  403.491485][T19830] 
[  403.501248][T19830] EXT4-fs (loop0): Total free blocks count 0
[  403.507362][T19830] EXT4-fs (loop0): Free/Dirty block details
[  403.513379][T19830] EXT4-fs (loop0): free_blocks=0
[  403.518521][T19830] EXT4-fs (loop0): dirty_blocks=0
[  403.523657][T19830] EXT4-fs (loop0): Block reservation details
[  403.529709][T19830] EXT4-fs (loop0): i_reserved_data_blocks=0
[  403.537548][T19837] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 31 with max blocks 33 with error 28
[  403.550047][T19837] EXT4-fs (loop0): This should not happen!! Data will be lost
[  403.550047][T19837] 
[  403.565132][T19830] SELinux:  policydb version 0 does not match my version range 15-33
[  403.573761][T19830] SELinux: failed to load policy
[  403.604868][T19841] bond0: up delay (5) is not a multiple of miimon (4), value rounded to 4 ms
[  403.608761][T19839] loop5: detected capacity change from 0 to 8192
[  403.615825][T19841] netlink: 'syz.1.5337': attribute type 10 has an invalid length.
[  403.669095][T19847] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5340'.
[  403.748518][T19852] hub 9-0:1.0: USB hub found
[  403.757388][T19852] hub 9-0:1.0: 8 ports detected
[  404.154828][T19865] hub 9-0:1.0: USB hub found
[  404.159970][T19865] hub 9-0:1.0: 8 ports detected
[  404.532001][T19876] loop0: detected capacity change from 0 to 512
[  404.574433][T19876] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.5349: bg 0: block 248: padding at end of block bitmap is not set
[  404.599246][T19876] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.5349: Failed to acquire dquot type 1
[  404.624574][T19876] EXT4-fs (loop0): 1 truncate cleaned up
[  404.630750][T19876] ext4 filesystem being mounted at /475/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  404.657463][T19886] loop5: detected capacity change from 0 to 164
[  404.667511][T19886] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(7)
[  404.674052][T19886] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  404.681636][T19886] vhci_hcd vhci_hcd.0: Device attached
[  404.689487][T19886] iso9660: Corrupted directory entry in block 4 of inode 1792
[  404.699498][T19886] iso9660: Corrupted directory entry in block 4 of inode 1792
[  404.707273][T19890] vhci_hcd: connection closed
[  404.707855][ T8773] vhci_hcd: stop threads
[  404.716966][ T8773] vhci_hcd: release socket
[  404.721437][ T8773] vhci_hcd: disconnect device
[  404.848847][T19902] loop2: detected capacity change from 0 to 2048
[  404.881957][T19902] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 18 with error 28
[  404.894442][T19902] EXT4-fs (loop2): This should not happen!! Data will be lost
[  404.894442][T19902] 
[  404.904163][T19902] EXT4-fs (loop2): Total free blocks count 0
[  404.910188][T19902] EXT4-fs (loop2): Free/Dirty block details
[  404.916137][T19902] EXT4-fs (loop2): free_blocks=0
[  404.921090][T19902] EXT4-fs (loop2): dirty_blocks=0
[  404.926141][T19902] EXT4-fs (loop2): Block reservation details
[  404.932145][T19902] EXT4-fs (loop2): i_reserved_data_blocks=0
[  404.955525][T19906] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 31 with max blocks 33 with error 28
[  404.967962][T19906] EXT4-fs (loop2): This should not happen!! Data will be lost
[  404.967962][T19906] 
[  404.985543][T19902] SELinux:  policydb version 0 does not match my version range 15-33
[  404.994914][T19902] SELinux: failed to load policy
[  405.090485][T19914] netlink: 256 bytes leftover after parsing attributes in process `syz.0.5362'.
[  405.246816][T19921] serio: Serial port ptm0
[  405.256145][T19925] loop0: detected capacity change from 0 to 512
[  405.272104][T19928] loop5: detected capacity change from 0 to 2048
[  405.282311][T19925] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.5366: bg 0: block 248: padding at end of block bitmap is not set
[  405.291536][T19928] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 18 with error 28
[  405.299260][T19925] __quota_error: 239 callbacks suppressed
[  405.299279][T19925] Quota error (device loop0): write_blk: dquota write failed
[  405.309033][T19928] EXT4-fs (loop5): This should not happen!! Data will be lost
[  405.309033][T19928] 
[  405.314702][T19925] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  405.322129][T19928] EXT4-fs (loop5): Total free blocks count 0
[  405.331792][T19925] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.5366: Failed to acquire dquot type 1
[  405.341776][T19928] EXT4-fs (loop5): Free/Dirty block details
[  405.349460][T19925] EXT4-fs (loop0): 1 truncate cleaned up
[  405.358979][T19928] EXT4-fs (loop5): free_blocks=0
[  405.359000][T19928] EXT4-fs (loop5): dirty_blocks=0
[  405.359016][T19928] EXT4-fs (loop5): Block reservation details
[  405.359028][T19928] EXT4-fs (loop5): i_reserved_data_blocks=0
[  405.362080][T19934] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 31 with max blocks 33 with error 28
[  405.381486][T19925] ext4 filesystem being mounted at /483/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  405.386675][T19934] EXT4-fs (loop5): This should not happen!! Data will be lost
[  405.386675][T19934] 
[  405.425333][T19937] SELinux:  policydb version 0 does not match my version range 15-33
[  405.433947][   T29] audit: type=1326 audit(1735875188.915:18349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19935 comm="syz.4.5368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d7d915d29 code=0x7ffc0000
[  405.445785][T19937] SELinux: failed to load policy
[  405.457720][   T29] audit: type=1326 audit(1735875188.915:18350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19935 comm="syz.4.5368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d7d915d29 code=0x7ffc0000
[  405.486393][   T29] audit: type=1326 audit(1735875188.915:18351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19935 comm="syz.4.5368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5d7d915d29 code=0x7ffc0000
[  405.495106][T19939] loop4: detected capacity change from 0 to 512
[  405.510048][   T29] audit: type=1326 audit(1735875188.915:18352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19935 comm="syz.4.5368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d7d915d29 code=0x7ffc0000
[  405.540014][   T29] audit: type=1326 audit(1735875188.915:18353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19935 comm="syz.4.5368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d7d915d29 code=0x7ffc0000
[  405.563797][   T29] audit: type=1326 audit(1735875188.915:18354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19935 comm="syz.4.5368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5d7d915d29 code=0x7ffc0000
[  405.587730][   T29] audit: type=1326 audit(1735875188.915:18355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19935 comm="syz.4.5368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d7d915d29 code=0x7ffc0000
[  405.611586][   T29] audit: type=1326 audit(1735875188.915:18356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19935 comm="syz.4.5368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d7d915d29 code=0x7ffc0000
[  405.653131][T19939] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5369: bg 0: block 248: padding at end of block bitmap is not set
[  405.671210][T19939] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.5369: Failed to acquire dquot type 1
[  405.705353][T19939] EXT4-fs (loop4): 1 truncate cleaned up
[  405.736971][T19939] ext4 filesystem being mounted at /447/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  405.858164][T19961] loop0: detected capacity change from 0 to 164
[  405.875595][T19961] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  405.882157][T19961] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  405.889703][T19961] vhci_hcd vhci_hcd.0: Device attached
[  405.910452][T19961] iso9660: Corrupted directory entry in block 4 of inode 1792
[  405.930224][T19961] iso9660: Corrupted directory entry in block 4 of inode 1792
[  405.948743][T19963] vhci_hcd: connection closed
[  405.948932][ T8790] vhci_hcd: stop threads
[  405.957905][ T8790] vhci_hcd: release socket
[  405.962495][ T8790] vhci_hcd: disconnect device
[  405.998261][T19969] loop4: detected capacity change from 0 to 512
[  406.015657][T19969] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  406.045172][T19969] EXT4-fs (loop4): 1 truncate cleaned up
[  406.076813][T19974] loop2: detected capacity change from 0 to 8192
[  406.516602][T19995] loop0: detected capacity change from 0 to 512
[  406.533120][T19995] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.5390: bg 0: block 248: padding at end of block bitmap is not set
[  406.548090][T19995] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.5390: Failed to acquire dquot type 1
[  406.561202][T19995] EXT4-fs (loop0): 1 truncate cleaned up
[  406.567510][T19995] ext4 filesystem being mounted at /489/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  406.887496][T20005] loop0: detected capacity change from 0 to 512
[  406.896841][T20005] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  406.915246][T20005] EXT4-fs (loop0): 1 truncate cleaned up
[  406.922567][T20020] netlink: 44 bytes leftover after parsing attributes in process `syz.4.5399'.
[  406.944637][T20020] tipc: Started in network mode
[  406.949537][T20020] tipc: Node identity 6a997a4e98d6, cluster identity 4711
[  406.956745][T20020] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[  406.971275][T20020] ªªªªªª: renamed from syzkaller0
[  406.991632][T20020] tipc: Disabling bearer <eth:syzkaller0>
[  407.028677][T20023] loop2: detected capacity change from 0 to 164
[  407.044093][T20021] lo speed is unknown, defaulting to 1000
[  407.146043][T20021] lo speed is unknown, defaulting to 1000
[  407.206516][T20023] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  407.213194][T20023] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  407.220705][T20023] vhci_hcd vhci_hcd.0: Device attached
[  407.230512][T20026] iso9660: Corrupted directory entry in block 4 of inode 1792
[  407.311668][T20026] iso9660: Corrupted directory entry in block 4 of inode 1792
[  407.379997][T20024] vhci_hcd: connection closed
[  407.380310][  T121] vhci_hcd: stop threads
[  407.389310][  T121] vhci_hcd: release socket
[  407.393746][  T121] vhci_hcd: disconnect device
[  407.417859][T20032] loop1: detected capacity change from 0 to 2048
[  407.451693][T20032] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 18 with error 28
[  407.464174][T20032] EXT4-fs (loop1): This should not happen!! Data will be lost
[  407.464174][T20032] 
[  407.473918][T20032] EXT4-fs (loop1): Total free blocks count 0
[  407.479970][T20032] EXT4-fs (loop1): Free/Dirty block details
[  407.485949][T20032] EXT4-fs (loop1): free_blocks=0
[  407.490996][T20032] EXT4-fs (loop1): dirty_blocks=0
[  407.492481][T20045] SELinux: syz.0.5406 (20045) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  407.496104][T20032] EXT4-fs (loop1): Block reservation details
[  407.515805][T20032] EXT4-fs (loop1): i_reserved_data_blocks=0
[  407.524669][T20046] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 31 with max blocks 33 with error 28
[  407.537181][T20046] EXT4-fs (loop1): This should not happen!! Data will be lost
[  407.537181][T20046] 
[  407.547315][T20044] loop4: detected capacity change from 0 to 8192
[  407.585645][T20048] loop1: detected capacity change from 0 to 512
[  407.592776][T20048] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  407.604432][T20048] EXT4-fs (loop1): 1 truncate cleaned up
[  407.711578][T20053] ==================================================================
[  407.719721][T20053] BUG: KCSAN: data-race in mark_buffer_dirty_inode / sync_mapping_buffers
[  407.728298][T20053] 
[  407.730654][T20053] write to 0xffff88812c572a80 of 8 bytes by task 20050 on cpu 0:
[  407.738390][T20053]  sync_mapping_buffers+0x159/0x7c0
[  407.743629][T20053]  fat_file_fsync+0xa7/0x100
[  407.748258][T20053]  vfs_fsync_range+0x116/0x130
[  407.753066][T20053]  generic_file_write_iter+0x185/0x1c0
[  407.758575][T20053]  iter_file_splice_write+0x5f1/0x980
[  407.763985][T20053]  direct_splice_actor+0x160/0x2c0
[  407.769126][T20053]  splice_direct_to_actor+0x302/0x670
[  407.774537][T20053]  do_splice_direct+0xd7/0x150
[  407.779329][T20053]  do_sendfile+0x398/0x660
[  407.783762][T20053]  __x64_sys_sendfile64+0x110/0x150
[  407.789008][T20053]  x64_sys_call+0xfbd/0x2dc0
[  407.793626][T20053]  do_syscall_64+0xc9/0x1c0
[  407.798146][T20053]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  407.804087][T20053] 
[  407.806426][T20053] read to 0xffff88812c572a80 of 8 bytes by task 20053 on cpu 1:
[  407.814084][T20053]  mark_buffer_dirty_inode+0x96/0x1c0
[  407.819586][T20053]  fat16_ent_put+0x4f/0x60
[  407.824044][T20053]  fat_alloc_clusters+0x4c9/0xa80
[  407.829190][T20053]  fat_get_block+0x25c/0x5e0
[  407.833814][T20053]  __block_write_begin_int+0x417/0xfa0
[  407.839295][T20053]  cont_write_begin+0x546/0x860
[  407.844187][T20053]  fat_write_begin+0x51/0xe0
[  407.848797][T20053]  generic_perform_write+0x1a8/0x4a0
[  407.854125][T20053]  __generic_file_write_iter+0xa1/0x120
[  407.859715][T20053]  generic_file_write_iter+0x77/0x1c0
[  407.865125][T20053]  vfs_write+0x77f/0x920
[  407.869405][T20053]  ksys_write+0xe8/0x1b0
[  407.873674][T20053]  __x64_sys_write+0x42/0x50
[  407.878296][T20053]  x64_sys_call+0x287e/0x2dc0
[  407.883077][T20053]  do_syscall_64+0xc9/0x1c0
[  407.887595][T20053]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  407.893521][T20053] 
[  407.895866][T20053] value changed: 0xffff8881065ff508 -> 0x0000000000000000
[  407.902993][T20053] 
[  407.905331][T20053] Reported by Kernel Concurrency Sanitizer on:
[  407.906968][T20057] loop1: detected capacity change from 0 to 8192
[  407.911512][T20053] CPU: 1 UID: 0 PID: 20053 Comm: syz.4.5408 Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[  407.911545][T20053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  407.911562][T20053] ==================================================================