last executing test programs:

1m23.032969414s ago: executing program 4 (id=822):
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
remap_file_pages(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000000, 0x9, 0x40)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x80801c, &(0x7f0000000f40), 0x1, 0x51e, &(0x7f0000001040)="$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")
bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x1, 0x0, &(0x7f0000000500), 0x0, 0x7, 0x0, 0x0, 0x41000, 0x40, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000007c0), 0x0, 0x10, 0x6, @void, @value}, 0x94)
lsetxattr$security_capability(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000000), 0x0, 0x0, 0x0)

1m22.985710584s ago: executing program 4 (id=823):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x40)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1a, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x30, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=ANY=[@ANYBLOB="240000001900dd8d00000000000000000280"], 0x24}, 0x1, 0x0, 0x0, 0x80840}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
sendmsg$TIPC_CMD_SHOW_LINK_STATS(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x40, &(0x7f0000000340), 0x1, 0x58c, &(0x7f00000005c0)="$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")
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x13}}, 0x10)

1m22.912275133s ago: executing program 4 (id=824):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000400)='./file0\x00', 0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB='\x00'], 0xfe, 0x2ae, &(0x7f0000000a40)="$eJzs3c9qY1UYAPDvpkka7SJZuBLBu5iFG8tkti7MIBXErpQs/AM6ODMwNGGggcCoGGblE7hw4Xu4cy+48Q0EH8CdgxSO3NzbJLZp2rSmlfr7bXo45/vu+U7uabO43NPPXxsePHw6evz869+i1cqi1otevMiiE7U4lioBANwKL1KKPy71/V6vbaomAGCzFr7/G2eEbJ/uenvTZQEAG/ThRx+/f39/f++DPG9FDL8d97Mof5bj9x/HkxjEo7gb7TiaPwtIqWy/+97+XtTzQifuDCfjfpE5/OyXxccGRX432tFZnt/NSwv5k3G/ES9HZFnEk15RyL1oxyun8ovxvXtL8qPfjDda1SKL+XejHb9+EU9jEA+nzzTm83/TzfN30nd/fvVJEVzkZ5Nxf3saN5e2rvveAAAAAAAAAAAAAAAAAAAAAABwe+3mM524Myy6qvN3to6m47v/GJ+er1Objpf5WURz2jhxPtAkxQ/H5+vczfM8ZWX8/Hyferxaj/qNLRwAAAAAAAAAAAAAAAAAAAD+Q0bPvjx4MBg8OvxXGtVL/rPX+i97nd5Cz+uxOnh7rbliqwovaj0Z0/350+Gsp1jEZYofN/KIVTU3TvW8VNRz/pX/SimlLIu42m1qXGSucxo7q2OKD/in73fePHiQnfcZto5v3I+LQ804HD07cU8jW6fCtNb2a66IaVY75kLX2bniL9Fbv5eTVT3ZGqtoVI04a/u11trP1/c3CAAAAAAAAAAAAAAAAAAAKM1f+l0y+Hxlam1jRQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADANZv///81GpMqeXlMSmky62nG4eiGlwgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMD/wN8BAAD//7DYbww=")
truncate(&(0x7f0000000000)='./file1\x00', 0x5)
r0 = syz_create_resource$binfmt(&(0x7f0000000380)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
r1 = openat$binfmt(0xffffffffffffff9c, r0, 0x42, 0x1ff)
close(r1)
r2 = openat$binfmt(0xffffffffffffff9c, r0, 0x2, 0x0)
write(r2, &(0x7f0000000180)="0101", 0x2)
close(r2)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2002, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r6}, 0x10)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r8=>0xffffffffffffffff})
splice(r8, 0x0, r7, 0x0, 0x1, 0x0)

1m22.042724347s ago: executing program 4 (id=844):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x804, &(0x7f0000000140)={[{@norecovery}]}, 0xee, 0x469, &(0x7f0000000ac0)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000020000000900010073797a300000000040000000030a09020000000000000000020000000900010073797a30000000000900030073797a3200000000140004800800014000000000080002400000000014000000110001"], 0x88}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a30000000050a05000000000000000000020000080900010073797a30000000000900030073797a320000000004000480140000001100000000000000000a000070bf816830cd6535b602376a2f38466bbd853dfcdd36cfaca2760084d21e06be60e005936db929d54f6abaa922d41018431da9940865f80e4c596c1617384b3c2eb782a4a76e6b0c0fb3eaa5e453258987155d65b1d3dc2f9bf282cb3fe2207bbcbec255e56c039f566045431fa93b3793368003fb4f7d56aeb3a3d2992801078f8f650f2ab6cbcba207e541f8e156b2d8e8e9e6fd"], 0x58}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r2=>r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = creat(&(0x7f0000003280)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0x64)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000280)='ext4_error\x00', r3, 0x0, 0xfffffffffffffff7}, 0x18)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='hugetlb.2MB.usage_in_bytes\x00', 0x26e1, 0x0)
r5 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYRES16=r2], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e00000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r7}, 0x10)
mount$nfs4(&(0x7f00000001c0)='\x00', &(0x7f0000000240)='.\x00', &(0x7f00000003c0), 0x200000, 0x0)
r8 = getpgrp(0x0)
ioctl$TIOCSPGRP(r3, 0x5410, &(0x7f0000000240)=r8)
r9 = fsmount(r5, 0x0, 0x0)
fchdir(r9)
r10 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f00000000c0), 0xc, 0x0)
mmap(&(0x7f0000d36000/0x1000)=nil, 0x1000, 0x1000002, 0x80010, r6, 0xe488a000)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x1, 0x100010, 0xffffffffffffffff, 0x2000)
mremap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
getdents64(r10, &(0x7f0000001280)=""/4089, 0xff9)
ioctl$TUNSETOFFLOAD(r4, 0x40086607, 0x8c152aef8de2cd1c)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

1m21.858673036s ago: executing program 4 (id=847):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b702000014000000b7030000000080008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0xfffffffffffffffe}, 0x18)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x4e20, 0x0, @loopback}]}, &(0x7f00000002c0)=0x10)

1m21.536165064s ago: executing program 4 (id=855):
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bind$llc(r0, &(0x7f0000000040)={0x1a, 0xfffe, 0x2, 0x7, 0xa, 0x10, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x13}}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000001fc0)=@delchain={0x244, 0x65, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x2, 0x2}, {0x0, 0x9}, {0x0, 0xb}}, [@TCA_CHAIN={0x8, 0xb, 0xfffffffe}, @TCA_RATE={0x6, 0x5, {0x0, 0xfd}}, @TCA_CHAIN={0x8}, @filter_kind_options=@f_flower={{0xb}, {0x4c, 0x2, [@TCA_FLOWER_KEY_ENC_IPV6_DST_MASK={0x14, 0x22, [0x0, 0xff, 0xff, 0xffffff00]}, @TCA_FLOWER_KEY_ICMPV6_CODE={0x5}, @TCA_FLOWER_KEY_PORT_SRC_MAX={0x6, 0x58, 0x4e21}, @TCA_FLOWER_KEY_ETH_SRC={0xa, 0x6, @multicast}, @TCA_FLOWER_KEY_ICMPV6_TYPE={0x5}, @TCA_FLOWER_KEY_ICMPV6_TYPE_MASK={0x5}, @TCA_FLOWER_KEY_SCTP_DST_MASK={0x6}]}}, @filter_kind_options=@f_route={{0xa}, {0x1a4, 0x2, [@TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_CLASSID={0x8, 0x1, {0xc, 0x7}}, @TCA_ROUTE4_ACT={0x188, 0x6, [@m_nat={0xfc, 0x0, 0x0, 0x0, {{0x8}, {0x4}, {0xd1, 0x6, "3eaed48f5023f5c36bc9d8619f3e2af20800000000000000a40bc384135c74eb813bf1cf69dbeaddd76b564e92dc41f8de6392fb42903838dda4a8bcd9ea2a7ef200b02fb961cc3dddbb717e88bb314bbce94391f87d06a838a9957ccce7feaaf32e9d14398b60f4b34967f32f57c2d3d6939ab4bb4f2ac96daa3247403e773d7b7b15514a5fdc891227676c981222abfb6fffff71541e4446e5f84c25e6f1726ead4d745a9f2873238be9c01f079bd0570908230594952760f061e6a9b1d33407bf97206ff710133b30ea75d7"}, {0xc}, {0xc}}}, @m_connmark={0x40, 0x0, 0x0, 0x0, {{0xd}, {0x4}, {0xd, 0x6, "66396e732cf67237ec"}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}, @m_bpf={0x48, 0x13, 0x0, 0x0, {{0x8}, {0x4}, {0x1d, 0x6, "ca8fd735f4c425bd44291fa86781920ab90ff95c64e3d33704"}, {0xc}, {0xc}}}]}]}}]}, 0x244}, 0x1, 0x0, 0x0, 0x81}, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendto(r3, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f00000003c0)='./file0\x00', 0x0, &(0x7f0000000280)={[{@errors_remount}, {@grpjquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x100000}}, {@block_validity}, {@quota}]}, 0x3, 0x44d, &(0x7f0000000a40)="$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")
syz_clone(0x1004400, &(0x7f0000000140), 0x0, 0x0, 0x0, 0x0)
lchown(&(0x7f00000006c0)='./file0\x00', 0x0, 0xee01)
recvmmsg(r3, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})

1m21.514296134s ago: executing program 32 (id=855):
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bind$llc(r0, &(0x7f0000000040)={0x1a, 0xfffe, 0x2, 0x7, 0xa, 0x10, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x13}}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000001fc0)=@delchain={0x244, 0x65, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x2, 0x2}, {0x0, 0x9}, {0x0, 0xb}}, [@TCA_CHAIN={0x8, 0xb, 0xfffffffe}, @TCA_RATE={0x6, 0x5, {0x0, 0xfd}}, @TCA_CHAIN={0x8}, @filter_kind_options=@f_flower={{0xb}, {0x4c, 0x2, [@TCA_FLOWER_KEY_ENC_IPV6_DST_MASK={0x14, 0x22, [0x0, 0xff, 0xff, 0xffffff00]}, @TCA_FLOWER_KEY_ICMPV6_CODE={0x5}, @TCA_FLOWER_KEY_PORT_SRC_MAX={0x6, 0x58, 0x4e21}, @TCA_FLOWER_KEY_ETH_SRC={0xa, 0x6, @multicast}, @TCA_FLOWER_KEY_ICMPV6_TYPE={0x5}, @TCA_FLOWER_KEY_ICMPV6_TYPE_MASK={0x5}, @TCA_FLOWER_KEY_SCTP_DST_MASK={0x6}]}}, @filter_kind_options=@f_route={{0xa}, {0x1a4, 0x2, [@TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_CLASSID={0x8, 0x1, {0xc, 0x7}}, @TCA_ROUTE4_ACT={0x188, 0x6, [@m_nat={0xfc, 0x0, 0x0, 0x0, {{0x8}, {0x4}, {0xd1, 0x6, "3eaed48f5023f5c36bc9d8619f3e2af20800000000000000a40bc384135c74eb813bf1cf69dbeaddd76b564e92dc41f8de6392fb42903838dda4a8bcd9ea2a7ef200b02fb961cc3dddbb717e88bb314bbce94391f87d06a838a9957ccce7feaaf32e9d14398b60f4b34967f32f57c2d3d6939ab4bb4f2ac96daa3247403e773d7b7b15514a5fdc891227676c981222abfb6fffff71541e4446e5f84c25e6f1726ead4d745a9f2873238be9c01f079bd0570908230594952760f061e6a9b1d33407bf97206ff710133b30ea75d7"}, {0xc}, {0xc}}}, @m_connmark={0x40, 0x0, 0x0, 0x0, {{0xd}, {0x4}, {0xd, 0x6, "66396e732cf67237ec"}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}, @m_bpf={0x48, 0x13, 0x0, 0x0, {{0x8}, {0x4}, {0x1d, 0x6, "ca8fd735f4c425bd44291fa86781920ab90ff95c64e3d33704"}, {0xc}, {0xc}}}]}]}}]}, 0x244}, 0x1, 0x0, 0x0, 0x81}, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendto(r3, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f00000003c0)='./file0\x00', 0x0, &(0x7f0000000280)={[{@errors_remount}, {@grpjquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x100000}}, {@block_validity}, {@quota}]}, 0x3, 0x44d, &(0x7f0000000a40)="$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")
syz_clone(0x1004400, &(0x7f0000000140), 0x0, 0x0, 0x0, 0x0)
lchown(&(0x7f00000006c0)='./file0\x00', 0x0, 0xee01)
recvmmsg(r3, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})

1m3.332857611s ago: executing program 5 (id=1161):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x40)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1a, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYBLOB="0000000000008da4b70800148acb18cf2231f9820000001c3ded53a3e86d183b396f7b8af8ff00000000bfa2000000000000070200074000c858d627e56371bfd1d500b7040000000000008500000024000000f8e7b2befd1597950000000000000000008d2e927ddfebf19912e8a853d0dd1d4079372fa794fc01b04815"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x30, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=ANY=[@ANYBLOB="240000001900dd8d00000000000000000280"], 0x24}, 0x1, 0x0, 0x0, 0x80840}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
sendmsg$TIPC_CMD_SHOW_LINK_STATS(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x40, &(0x7f0000000340), 0x1, 0x58c, &(0x7f00000005c0)="$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")
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x13}}, 0x10)

1m3.153173989s ago: executing program 5 (id=1173):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000002300ff003801000000ae00004044511621cf4a"], &(0x7f0000001b80)='GPL\x00', 0xffffffff, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f00000004c0)=@base={0x1b, 0x0, 0x0, 0x2000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0xa9)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x15, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000030000000000000007000000b7080000000000007b8af8ff00000000b7080000050000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000a5000000182b00006ea0fed9c554af388142328ccf9950caff2e91d78f19bbe878c1c5613ab6777c135b2ce8b7ba5e6b21276d4891", @ANYRES32=0x1, @ANYBLOB="000000000800000018", @ANYRES32=r1, @ANYBLOB="000000000000000085200000050000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x56, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r2}, 0x10)
r3 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5)
ioctl$SG_IO(r3, 0x2285, 0x0)
writev(r3, &(0x7f0000000400)=[{&(0x7f0000000000)="aefdda9d240300005a90f57f07703aeff0f64ebbee07962c22772e11b44e65d76641cb010052f436dd2a", 0x2a}, {&(0x7f0000000040)="aa1d484e243103000000f7c08bfcd111fbdf23ea32db0e8f21d5bc27bd8063067a0689fff2a41cfbf0e9d85e447511703d", 0x31}], 0x2)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000640), r4)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'\x00', <r6=>0x0})
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000002c0)='./file0\x00', 0x4044, &(0x7f0000000c00)={[{@auto_da_alloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x5}}]}, 0x1, 0x513, &(0x7f0000001380)="$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")
renameat2(0xffffffffffffff9c, &(0x7f0000000580)='./file1\x00', 0xffffffffffffff9c, &(0x7f00000005c0)='./file5\x00', 0x4)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000680)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r8, 0x1, 0x4c, &(0x7f0000000000), 0x4)
sendmsg$inet(r7, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000300)=@raw={'raw\x00', 0x3c1, 0x3, 0x2a0, 0x0, 0x4c, 0x1a, 0x0, 0x75, 0x320, 0x258, 0x258, 0x320, 0x258, 0x3, 0x0, {[{{@ipv6={@empty, @private2, [0xffffffff, 0xffffff00, 0xff, 0xffffff00], [0xff000000, 0xff, 0xff, 0xffffffff], 'syz_tun\x00', 'macvtap0\x00', {0x101}, {0xff}, 0x0, 0x3, 0x4, 0x20}, 0x0, 0xa8, 0xc8}, @unspec=@TRACE={0x20}}, {{@uncond, 0x0, 0xa8, 0x108}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv4=@initdev={0xac, 0x1e, 0x1, 0x0}, [0xffffffff, 0x0, 0xff000000, 0xff], 0x4e20, 0x4e23, 0x4e21, 0x4e22, 0x1ff, 0x9, 0x1, 0xc7ec, 0x1000}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x300)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r9, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r9, 0x0)
recvmsg$unix(r8, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x2022)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff})
getpeername$packet(r11, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000001c0)=0x14)
setsockopt$inet6_mreq(r10, 0x29, 0x1c, &(0x7f0000000140)={@dev={0xfe, 0x80, '\x00', 0x24}, r6}, 0x14)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010300000000030000f11c000000180001801400020076657468305f766c616e"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x4000)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000004c0)={@ifindex=r6, 0xb, 0x0, 0x0, &(0x7f00000003c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x8, 0x0, &(0x7f0000000400)=[0x0], &(0x7f0000000440)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000600)=[0x0, 0x0, 0x0, 0x0]}, 0x40)
r12 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$MPTCP_PM_CMD_REMOVE(r12, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000280)={&(0x7f00000006c0)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000427bd7000fedbdf250900000005000500a40000000500050000000000080003000100000005000500b500000008000200050000000500050006000000080004000e00000097662031350f5a6c19fa478120f0f199d90585961736b7a00b005fe17d5df48da4a311db015282597a1eb1ba9d3f60bb2276"], 0x4c}}, 0x18044)

1m2.210074173s ago: executing program 5 (id=1200):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = socket$inet6(0xa, 0x3, 0xff)
setsockopt$inet6_IPV6_RTHDR(r1, 0x29, 0x39, &(0x7f0000000140)=ANY=[@ANYBLOB="00020201"], 0x18)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
write$binfmt_elf64(r1, &(0x7f0000000180)=ANY=[@ANYBLOB="7f454c46000000000000000000000000000000000000000001"], 0x40)
ioctl$TCFLSH(r0, 0x5410, 0xffffffffffffffff)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r3}, 0x10)
gettid()
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
readv(r4, &(0x7f0000000980)=[{&(0x7f0000000740)=""/193, 0xc1}], 0x1)

1m1.298551077s ago: executing program 5 (id=1214):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x20081)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port0\x00', 0x72, 0x11cfa, 0xfc, 0x8000008, 0xffff8001, 0x4, 0x1, 0x0, 0x7cce8c743ee810df})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x40505330, &(0x7f0000000bc0)={0x800100, 0x0, 0x1bf, 0x724f, 0x0, 0x558})
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800714, &(0x7f0000000500), 0xff, 0x485, &(0x7f0000001040)="$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")
r2 = open(&(0x7f0000000000)='./file1\x00', 0x189042, 0x0)
setresuid(0xee00, 0xee00, 0x0)
chmod(&(0x7f0000000300)='./file1\x00', 0x22)
setns(r2, 0x20000080)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="1801000000001f00000000000000ea1f850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xec, @void, @value}, 0x94)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000180), r4)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000002c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c00000004000000010000000000000800000000002e08"], 0x0, 0x28, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f00000002c0)='sys_enter\x00'}, 0x10)
io_setup(0x8, &(0x7f00000008c0))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r3, 0x0, 0xfffffffffffffffc}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r5 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x200c840, &(0x7f0000000040), 0x64, 0x537, &(0x7f0000000f80)="$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")
get_robust_list(r5, 0x0, 0x0)

1m1.007809615s ago: executing program 5 (id=1215):
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x41, &(0x7f0000000240)=0x1fc9, 0x4)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000", @ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat$cgroup_subtree(0xffffffffffffffff, 0x0, 0x2, 0x0)
add_key$fscrypt_v1(0x0, &(0x7f0000000180)={'fscrypt:', @desc2}, &(0x7f00000001c0)={0x0, "2f01c4fd8eab3f09b5611b25b06bab7c64b45713d278a1fc4a8d718eb430fb655e5f65991c3e1e6f89550928b713582f37d43e4b35a9daa5b12d01438c9c4199"}, 0x48, 0x0)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, &(0x7f0000000240)='asymmetric\x00', &(0x7f00000000c0)=@chain)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_emit_ethernet(0x12, &(0x7f0000000040)={@random="f60db9be9ce2", @multicast, @val={@void}, {@generic={0x88a8}}}, 0x0)

1m0.773906073s ago: executing program 5 (id=1222):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000900c0000000000000000000018010000646c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000f9ffffff84000000060000009500000000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r6}, 0x10)
r7 = socket$netlink(0x10, 0x3, 0x0)
r8 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00000000000000000000000020000000000000", @ANYRES32, @ANYBLOB="0000000000000000000010c6ca7b2461c5297cb0e4ebd77200"/34, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r8}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r10 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$nfc(&(0x7f0000000500), r10)
sendmsg$NFC_CMD_GET_SE(r10, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000540)={0x14, r11, 0xf15}, 0x14}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000440)='kmem_cache_free\x00', r9}, 0x10)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
sendmsg$nl_generic(r7, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
setns(r1, 0x24020000)
setuid(0x0)
syz_clone(0xd5ba2180, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00'}, 0x10)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
mount_setattr(r2, &(0x7f0000000000)='./file0\x00', 0x8800, &(0x7f0000000240)={0x1, 0x4, 0xa0000}, 0x20)

1m0.746735933s ago: executing program 33 (id=1222):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000900c0000000000000000000018010000646c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000f9ffffff84000000060000009500000000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r6}, 0x10)
r7 = socket$netlink(0x10, 0x3, 0x0)
r8 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00000000000000000000000020000000000000", @ANYRES32, @ANYBLOB="0000000000000000000010c6ca7b2461c5297cb0e4ebd77200"/34, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r8}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r10 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$nfc(&(0x7f0000000500), r10)
sendmsg$NFC_CMD_GET_SE(r10, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000540)={0x14, r11, 0xf15}, 0x14}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000440)='kmem_cache_free\x00', r9}, 0x10)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
sendmsg$nl_generic(r7, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
setns(r1, 0x24020000)
setuid(0x0)
syz_clone(0xd5ba2180, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00'}, 0x10)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
mount_setattr(r2, &(0x7f0000000000)='./file0\x00', 0x8800, &(0x7f0000000240)={0x1, 0x4, 0xa0000}, 0x20)

49.336849775s ago: executing program 0 (id=1413):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000002300ff003801000000ae00004044511621cf4a"], &(0x7f0000001b80)='GPL\x00', 0xffffffff, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f00000004c0)=@base={0x1b, 0x0, 0x0, 0x2000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0xa9)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x15, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000030000000000000007000000b7080000000000007b8af8ff00000000b7080000050000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB, @ANYRES32=0x1, @ANYBLOB="000000000800000018170000", @ANYRES32=r1, @ANYBLOB="000000000000000085200000050000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x56, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r2}, 0x10)
r3 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5)
ioctl$SG_IO(r3, 0x2285, 0x0)
writev(r3, &(0x7f0000000400)=[{&(0x7f0000000000)="aefdda9d240300005a90f57f07703aeff0f64ebbee07962c22772e11b44e65d76641cb010052f436dd2a", 0x2a}, {&(0x7f0000000040)="aa1d484e243103000000f7c08bfcd111fbdf23ea32db0e8f21d5bc27bd8063067a0689fff2a41cfbf0e9d85e447511703d", 0x31}], 0x2)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000640), r4)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'\x00', <r6=>0x0})
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000002c0)='./file0\x00', 0x4044, &(0x7f0000000c00)={[{@auto_da_alloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x5}}]}, 0x1, 0x513, &(0x7f0000001380)="$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")
renameat2(0xffffffffffffff9c, &(0x7f0000000580)='./file1\x00', 0xffffffffffffff9c, &(0x7f00000005c0)='./file5\x00', 0x4)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000680)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r8, 0x1, 0x4c, &(0x7f0000000000), 0x4)
sendmsg$inet(r7, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000300)=@raw={'raw\x00', 0x3c1, 0x3, 0x2a0, 0x0, 0x4c, 0x1a, 0x0, 0x75, 0x320, 0x258, 0x258, 0x320, 0x258, 0x3, 0x0, {[{{@ipv6={@empty, @private2, [0xffffffff, 0xffffff00, 0xff, 0xffffff00], [0xff000000, 0xff, 0xff, 0xffffffff], 'syz_tun\x00', 'macvtap0\x00', {0x101}, {0xff}, 0x0, 0x3, 0x4, 0x20}, 0x0, 0xa8, 0xc8}, @unspec=@TRACE={0x20}}, {{@uncond, 0x0, 0xa8, 0x108}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv4=@initdev={0xac, 0x1e, 0x1, 0x0}, [0xffffffff, 0x0, 0xff000000, 0xff], 0x4e20, 0x4e23, 0x4e21, 0x4e22, 0x1ff, 0x9, 0x1, 0xc7ec, 0x1000}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x300)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r9, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r9, 0x0)
recvmsg$unix(r8, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x2022)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff})
getpeername$packet(r11, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000001c0)=0x14)
setsockopt$inet6_mreq(r10, 0x29, 0x1c, &(0x7f0000000140)={@dev={0xfe, 0x80, '\x00', 0x24}, r6}, 0x14)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010300000000030000f11c000000180001801400020076657468305f766c616e"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x4000)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000004c0)={@ifindex=r6, 0xb, 0x0, 0x0, &(0x7f00000003c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x8, 0x0, &(0x7f0000000400)=[0x0], &(0x7f0000000440)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000600)=[0x0, 0x0, 0x0, 0x0]}, 0x40)
r12 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$MPTCP_PM_CMD_REMOVE(r12, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000280)={&(0x7f00000006c0)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000427bd7000fedbdf250900000005000500a40000000500050000000000080003000100000005000500b500000008000200050000000500050006000000080004000e00000097662031350f5a6c19fa478120f0f199d90585961736b7a00b005fe17d5df48da4a311db015282597a1eb1ba9d3f60bb2276"], 0x4c}}, 0x18044)

48.405630679s ago: executing program 0 (id=1420):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000a40)={{0x14}, [@NFT_MSG_NEWRULE={0x60, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x34, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @last={{0x9}, @void}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x88}}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$NLBL_MGMT_C_ADD(r5, &(0x7f00000004c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x34, r6, 0x2, 0x70bd26, 0x25dfdbfe, {}, [@NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @rand_addr=0x64010101}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @dev={0xac, 0x14, 0x14, 0x18}}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @broadcast}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x22}]}, 0x34}, 0x1, 0x0, 0x0, 0x800}, 0x20000800)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r4)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x14, r7, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@void, @void}}}, 0x14}}, 0x4000054)
sendmsg$NL80211_CMD_STOP_NAN(r3, &(0x7f0000000140)={&(0x7f0000000000), 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, r7, 0x8, 0x70bd2c, 0x25dfdbfc, {{}, {@void, @void}}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0xc040891}, 0x0)
r8 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r8, 0x84, 0x16, &(0x7f0000000180)={0x5, [0x4, 0x8, 0x1000, 0x8, 0xffff]}, &(0x7f00000001c0)=0xe)
close(r2)

48.262363199s ago: executing program 0 (id=1422):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000080008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0xfffffffffffffffe}, 0x18)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x0, 0x0}, &(0x7f00000002c0)=0x10)

48.150669738s ago: executing program 0 (id=1423):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000640)={{0x14}, [@NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x101, 0x0, 0x0, {0x2, 0x0, 0x5}}, @NFT_MSG_DELCHAIN={0x20, 0x5, 0xa, 0x3, 0x0, 0x0, {0x2}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x5c}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x318140b, &(0x7f0000000180), 0x0, 0x542, &(0x7f00000006c0)="$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")
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r3}, 0x10)
mount$bind(&(0x7f0000000c40)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2901090, 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
mount(0x0, &(0x7f0000000d40)='./file0/../file0/../file0\x00', &(0x7f00000002c0)='sysfs\x00', 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r4 = socket$key(0xf, 0x3, 0x2)
getdents(0xffffffffffffffff, &(0x7f00000001c0)=""/43, 0x2b)
getdents(0xffffffffffffffff, 0xfffffffffffffffd, 0x58)
sendmsg$key(r4, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="0203000910000000000000000000000005000600000000000a00000000000000000000000000000000000000000000000000000000000000020001000000000000000702000000ff05000500000000000a00000000000000ff01000000000000000000000000000100000000000000000200080008"], 0x80}}, 0x0)

47.984659356s ago: executing program 0 (id=1427):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="020900000700000000000000000000000500", @ANYRES32], 0x38}}, 0x0)

47.795609216s ago: executing program 0 (id=1431):
iopl(0x3)
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='netlink_extack\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="170000005500e507000000000000000007"], 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x0)
unlinkat(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x57, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0xfffffffdffff18d6, 0x96ef}, 0x1206c, 0x80, 0x7, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0xad980500, 0x0, 0x0, &(0x7f00000011c0), 0x0, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
connect$pppl2tp(r0, &(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x0, r3, {0x2, 0x4e21, @remote}, 0x3, 0x0, 0x2}}, 0x2e)
rt_tgsigqueueinfo(0x0, 0x0, 0x9, &(0x7f0000000180)={0x36, 0x400, 0x5})

47.731606226s ago: executing program 34 (id=1431):
iopl(0x3)
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='netlink_extack\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="170000005500e507000000000000000007"], 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x0)
unlinkat(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x57, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0xfffffffdffff18d6, 0x96ef}, 0x1206c, 0x80, 0x7, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0xad980500, 0x0, 0x0, &(0x7f00000011c0), 0x0, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
connect$pppl2tp(r0, &(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x0, r3, {0x2, 0x4e21, @remote}, 0x3, 0x0, 0x2}}, 0x2e)
rt_tgsigqueueinfo(0x0, 0x0, 0x9, &(0x7f0000000180)={0x36, 0x400, 0x5})

4.574992562s ago: executing program 6 (id=2281):
setsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x2c, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x114}}, './file0\x00'})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000", @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1, 0x0, 0x6}, 0x18)
r2 = openat(0xffffffffffffff9c, 0x0, 0x42, 0x1ff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f00000004c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={0x0, 0xa0}}, 0x0)
r3 = socket(0x10, 0x3, 0x0)
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[], 0x6c}}, 0x0)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)={0x0, 0x54}, 0x1, 0x0, 0x0, 0x800}, 0x80)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000000c0)='Y', 0x1}], 0x1}, 0x5003)
sendmmsg(r3, &(0x7f0000000000), 0x4000000000001f2, 0x0)
r5 = open(&(0x7f0000000280)='.\x00', 0x400, 0x0)
fcntl$notify(r5, 0x402, 0x5)
openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
write$binfmt_elf64(r2, &(0x7f0000000680)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x4, 0x0, 0x0, 0x7fff, 0x3, 0x3e, 0xffffffec, 0x294, 0x40, 0x0, 0x0, 0x0, 0x38, 0x1, 0x3, 0x2}, [{0x3, 0xf97, 0x4, 0xd, 0x1c8, 0xe2, 0x4, 0x2}], "", ['\x00']}, 0x178)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x1000)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r6 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r7, &(0x7f0000004200)='t', 0x1)
sendfile(r7, r6, 0x0, 0x3ffff)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)

3.87448569s ago: executing program 2 (id=2297):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x8, 0x0, 0x0, 0x7ffc1ffb}]})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x6)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc)=0x4, 0x10b, 0x4, 0x0, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000000), &(0x7f0000048000), 0x0)

3.71573599s ago: executing program 6 (id=2298):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x42002, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc)=<r3=>0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000940)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r4, 0x0, r5, 0x0, 0xf3a, 0x0)
write$binfmt_misc(r5, &(0x7f0000000980), 0xfdef)
splice(0xffffffffffffffff, 0x0, r5, 0x0, 0x80, 0x7)
timer_settime(r3, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000040), 0x208e24b)

3.009967218s ago: executing program 2 (id=2303):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f00000500000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000004c4c800000000000"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0500000003000000040000000200000000000000", @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000007f175ec6d4898f5af0f67f915b65a574800a0a912f4351a3f6a3719bbc1939356ea6f4608354c2557037301f765e5398dc7cc9b918bb7384dbcf7b1a873dd09949e21199e8a037795c990ba01bbdb84725da5554e0fb4561257026dfa78733a901e309", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x20000000000000fe, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r1}, &(0x7f00000001c0), &(0x7f0000000340)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000c00)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000040000000000000000000100000a20000000000a05000000000000000000070000010900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021800000000c0a01030000000000000000070000080900020073797a31000000000900010073797a30000000005400038050000080080003400000000244000b802c0001800a0001006c696d69740000001c0002800c00014000000000000000030c000240000000000000001014000180090001"], 0x104}}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
setsockopt$IP6T_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x29, 0x1e, 0x0, 0x48)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x56, 0x1, 0x0, 0x0, 0x0, 0x210e, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x407fff, 0xaea}, 0x1a51d, 0x5c6, 0x200, 0x3, 0x2, 0x8010000, 0x1, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095f10a2d4d6366dfa67c5ae9f4309c"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000000c0)='mmap_lock_acquire_returned\x00', r5}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000001300)=@newtfilter={0x54, 0x2c, 0xd27, 0x70bd25, 0x5, {0x0, 0x0, 0x0, 0x0, {0x0, 0x1}, {}, {0x6}}, [@filter_kind_options=@f_fw={{0x7}, {0x28, 0x2, [@TCA_FW_MASK={0x8, 0x5, 0xfff}, @TCA_FW_CLASSID={0xfffffffffffffe4b, 0x1, {0x1}}, @TCA_FW_INDEV={0x14, 0x3, 'batadv_slave_0\x00'}]}}]}, 0x54}}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000800)={'erspan0\x00', &(0x7f00000007c0)={'tunl0\x00', <r6=>0x0, 0x80, 0x1, 0x9, 0x3c, {{0x7, 0x4, 0x0, 0x4, 0x1c, 0x64, 0x0, 0x2, 0x2f, 0x0, @private=0xa010101, @empty, {[@noop, @generic={0x83, 0x7, "4be81ff3c8"}]}}}}})
sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(0xffffffffffffffff, &(0x7f0000000b00)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000940)={&(0x7f0000000640)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000429bd7000fddbdf250e000000280001801400020062617461647630000000000000000000080003000300000008000100", @ANYRES32=0x0, @ANYBLOB="2400018008000100", @ANYRES32=0x0, @ANYBLOB="08000300020000000000000079ecc3927048edc40b731adb975bcfe80d3532c5f83f95d9bd77212ef96fc2268525f5f47868dc56d5ccf9a59f4373a243854ea90e59a309a8c3f25930aaeb42bb7775172549137a4bc936d2494b90193a6abe0a86d0adf8e8a2772542cdc37753f2f9610389389b3aa5d172ba74a1db8119ab7aa7dec06b92f36ecd09573028de72799a33c467541b550e49367deb2c7559952dce66161ad7527b6b66a334efe5de9a5e75b609ac277a0d1fc871336e2ae4353caf848f97fcdef5030a526310631638861337ef24a5acd456ba6a6ee25ce8ef84b127d2859e74159f6f5e931cfb12534b", @ANYRES32=0x0, @ANYBLOB="08000300000000001c00018008000100", @ANYRES32=0x0, @ANYBLOB="080003000200000008000100", @ANYRES32=r6, @ANYBLOB], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x5)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
set_mempolicy_home_node(&(0x7f0000349000/0xa000)=nil, 0xa000, 0x0, 0x0)

2.841590347s ago: executing program 2 (id=2306):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$NLBL_MGMT_C_ADD(r5, &(0x7f00000004c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x34, r6, 0x2, 0x70bd26, 0x25dfdbfe, {}, [@NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @rand_addr=0x64010101}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @dev={0xac, 0x14, 0x14, 0x18}}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @broadcast}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x22}]}, 0x34}, 0x1, 0x0, 0x0, 0x800}, 0x20000800)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r4)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x14, r7, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@void, @void}}}, 0x14}}, 0x4000054)
sendmsg$NL80211_CMD_STOP_NAN(r3, &(0x7f0000000140)={&(0x7f0000000000), 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, r7, 0x8, 0x70bd2c, 0x25dfdbfc, {{}, {@void, @void}}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0xc040891}, 0x0)
r8 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r8, 0x84, 0x16, &(0x7f0000000180)={0x5, [0x4, 0x8, 0x1000, 0x8, 0xffff]}, &(0x7f00000001c0)=0xe)
close(r2)

2.825207907s ago: executing program 6 (id=2307):
openat(0xffffffffffffff9c, 0x0, 0x1c1002, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$inet6(0xa, 0x80002, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000b80)=ANY=[@ANYBLOB="0100000004000000e27f00000100000000000000", @ANYRES32, @ANYBLOB="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", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r0}, 0x10)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r1 = gettid()
process_vm_writev(r1, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)

2.719249747s ago: executing program 6 (id=2308):
setsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x2c, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x114}}, './file0\x00'})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000", @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1, 0x0, 0x6}, 0x18)
r2 = openat(0xffffffffffffff9c, 0x0, 0x42, 0x1ff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f00000004c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={0x0, 0xa0}}, 0x0)
r3 = socket(0x10, 0x3, 0x0)
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[], 0x6c}}, 0x0)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)={0x0, 0x54}, 0x1, 0x0, 0x0, 0x800}, 0x80)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000000c0)='Y', 0x1}], 0x1}, 0x5003)
sendmmsg(r3, &(0x7f0000000000), 0x4000000000001f2, 0x0)
r5 = open(&(0x7f0000000280)='.\x00', 0x400, 0x0)
fcntl$notify(r5, 0x402, 0x5)
openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
write$binfmt_elf64(r2, &(0x7f0000000680)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x4, 0x0, 0x0, 0x7fff, 0x3, 0x3e, 0xffffffec, 0x294, 0x40, 0x0, 0x0, 0x0, 0x38, 0x1, 0x3, 0x2}, [{0x3, 0xf97, 0x4, 0xd, 0x1c8, 0xe2, 0x4, 0x2}], "", ['\x00']}, 0x178)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x1000)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r6 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r7, &(0x7f0000004200)='t', 0x1)
sendfile(r7, r6, 0x0, 0x3ffff)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)

2.592622657s ago: executing program 2 (id=2310):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x8, 0x0, 0x0, 0x7ffc1ffb}]})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x6)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=@updsa={0x138, 0x1a, 0x1, 0x0, 0x0, {{@in6=@ipv4={'\x00', '\xff\xff', @loopback}, @in6=@loopback, 0x0, 0x10, 0x4e20, 0x0, 0x0, 0x0, 0x0, 0x2}, {@in=@local, 0x0, 0x6c}, @in6=@private1, {0x100000000, 0x0, 0x0, 0x0, 0x970}, {}, {}, 0x0, 0x3503, 0xa, 0x0, 0x0, 0xe}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}}, 0x0)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000000), &(0x7f0000048000), 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000001c0)={0x1, &(0x7f00000000c0)=[{0x16}]})
syz_genetlink_get_family_id$devlink(&(0x7f0000000180), r2)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
syz_emit_ethernet(0xad, 0x0, 0x0)

1.853315225s ago: executing program 6 (id=2324):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="160000000000000004000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x80801c, &(0x7f0000000f40), 0x1, 0x51e, &(0x7f0000001040)="$eJzs3c9vI1cdAPDveDeJs02bbekBENClFBa0WmfjbaOqB1hOCKFKiB5B2gbHG0Wx4yh2ShNySP8HJCpxgiN/AOeeOMMFwY1LOSDxIwI1lTgMmvEk8XrjbtrEdhR/PtJo3pvn5PveWvNe/M1mXgAT61ZE7EfEdES8HRHzxfWkOOJB98he99HBXu3wYK+WRJq+9a8kb8+uRc/XZJ4pvmc5In70vYifJk/Gbe/sri83GvWtbnV2odPcXGjv7N5day6v1lfrG9Xq0uLSvdfvv1a9sLG+1JwuSl/+8I/73/p51q254krvOC5Sd+hTx3Ey1yPiB8MINgbXivFMj7sjfCaliHghIl7O7//5uJa/m2f1hyH2DAAYljSdj3S+tw4AXHWlPAeWlCpFLmAuSqVKpZvDezFulBqtdufOo9b2xko3V3YzpkqP1hr1e0Wu8GZMJVl9MS+f1Kt99fsR8XxE/GJmNq9Xaq3Gyjh/8AGACfZM3/r/35nu+g8AXHHlcXcAABg56z8ATB7rPwBMnoHr//xo+wEAjM7J+v9grP0AAEZH/h8AJo/1HwAmyg/ffDM70sPi+dcr7+xsr7feubtSb69Xmtu1Sq21tVlZbbVW82f2NKN45vMgjVZrc/HV2H735rc3252F9s7uw2Zre6PzMH+u98P61MhGBgAM8vxLH/wliYj9N2bzI3r2crBWw9VWGncHgLH5pM/ywNX2aXb7Aq6Wc3zGlx6AK+KULXofU46I2f6LaZqmw+sSMGS3vyD/D5OqJ//vfwHDhJH/h8kl/w+TK02Tvj3/T1rS/oaR7UoMAAyTHD8w4Pf/LxTn3xa/HPjJSv8r3h9mrwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOByO9r/t1LsBT4XpVKlEvFsRNyMqeTRWqN+LyKei4g/z0zNZPXFMfcZADiv0t+TYv+v2/OvzPW3Ticfz+TniPjZr9765bvLnc7Wn7Lr/z6+3nm/uF4dR/8BgKc5Wqfzc88H+Y8O9mr5kQzaCnQ4/vHdiCh34x8eTMfhwV6t23I9rufnckxFxI3/JEW9K+nJXZzH/nsR8fme8R/HT2Iuz4F0dz7tj5/Ffnak8UuPxS/lbd1z9m/xuQvoC0yaD7L558Fp918pbuXn0+//cj5DnV8x/2XfqnaYz4En8Y/mv2sD5r9bZ43x6u+/3y3NPtn2XsQXr0ccxT7smX+O4icD4r9yxvh//dJXXh7Ulv464nacHr831kKnubnQ3tm9u9ZcXq2v1jeq1aXFpXuv33+tupDnqBcGrwb/fOPOc3nhlJdk478xIH75KeP/+hnH/5v/vf3jrw5oy+J/82unxS/Fi58QP1sTv3HG+Ms3flce1JbFXxkw/qe9/3fOGP/Dv+0+sW04ADA+7Z3d9eVGo741ysLRDxIjDapwtsJM8eZclv48Vri0HVtfbnxnVLGm41N9VZp+pliDZoyLyLoBl8HxTR8RH4+7MwAAAAAAAAAAAAAAwKmG+odKSbcw7jECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABwdf0/AAD//6kowlY=")
lsetxattr$trusted_overlay_upper(&(0x7f0000000200)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)

1.705868664s ago: executing program 2 (id=2326):
iopl(0x3)
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='netlink_extack\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="170000005500e507000000000000000007"], 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x0)
unlinkat(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x57, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0xfffffffdffff18d6, 0x96ef}, 0x1206c, 0x80, 0x7, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0xad980500, 0x0, 0x0, &(0x7f00000011c0), 0x0, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
connect$pppl2tp(r0, &(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x0, r3, {0x2, 0x4e21, @remote}, 0x3, 0x0, 0x2}}, 0x2e)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000080000000c"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x7, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r5}, 0x10)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r6, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x1c, 0x3, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000080)={0x1b, 0x0, 0x0, 0x8001, 0x0, 0xffffffffffffffff, 0x2, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x3, 0x3, 0x0, @void, @value, @void, @value}, 0x50)

1.328748363s ago: executing program 1 (id=2331):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000000)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="020900000700000000", @ANYRES32], 0x38}}, 0x0)

1.299043613s ago: executing program 1 (id=2332):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
readlink(0x0, 0x0, 0x0)

1.280501003s ago: executing program 1 (id=2333):
openat(0xffffffffffffff9c, 0x0, 0x1c1002, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$inet6(0xa, 0x80002, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000007b8af8ff00000000bfa2000000000000b70400000000000085000000030000009500000000002efd"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r0}, 0x10)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r1 = gettid()
process_vm_writev(r1, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)

989.137152ms ago: executing program 1 (id=2335):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
readlink(0x0, 0x0, 0x0)

919.099202ms ago: executing program 1 (id=2336):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x8, 0x0, 0x0, 0x7ffc1ffb}]})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x6)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=@updsa={0x138, 0x1a, 0x1, 0x0, 0x0, {{@in6=@ipv4={'\x00', '\xff\xff', @loopback}, @in6=@loopback, 0x0, 0x10, 0x4e20, 0x0, 0x0, 0x0, 0x0, 0x2}, {@in=@local, 0x0, 0x6c}, @in6=@private1, {0x100000000, 0x0, 0x0, 0x0, 0x970}, {}, {}, 0x0, 0x3503, 0xa, 0x0, 0x0, 0xe}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}}, 0x0)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000000), &(0x7f0000048000), 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000001c0)={0x1, &(0x7f00000000c0)=[{0x16}]})
syz_genetlink_get_family_id$devlink(&(0x7f0000000180), r2)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
syz_emit_ethernet(0xad, 0x0, 0x0)

789.988322ms ago: executing program 7 (id=2337):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f00000500000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000004c4c800000000000"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0500000003000000040000000200000000000000", @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000007f175ec6d4898f5af0f67f915b65a574800a0a912f4351a3f6a3719bbc1939356ea6f4608354c2557037301f765e5398dc7cc9b918bb7384dbcf7b1a873dd09949e21199e8a037795c990ba01bbdb84725da5554e0fb4561257026dfa78733a901e309", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x20000000000000fe, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r1}, &(0x7f00000001c0), &(0x7f0000000340)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000c00)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000040000000000000000000100000a20000000000a05000000000000000000070000010900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021800000000c0a01030000000000000000070000080900020073797a31000000000900010073797a30000000005400038050000080080003400000000244000b802c0001800a0001006c696d69740000001c0002800c00014000000000000000030c000240000000000000001014000180090001"], 0x104}}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
setsockopt$IP6T_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x29, 0x1e, 0x0, 0x48)
r5 = socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x56, 0x1, 0x0, 0x0, 0x0, 0x210e, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x407fff, 0xaea}, 0x1a51d, 0x5c6, 0x200, 0x3, 0x2, 0x8010000, 0x1, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095f10a2d4d6366dfa67c5ae9f4309c"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000000c0)='mmap_lock_acquire_returned\x00', r6}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000001300)=@newtfilter={0x54, 0x2c, 0xd27, 0x70bd25, 0x5, {0x0, 0x0, 0x0, 0x0, {0x0, 0x1}, {}, {0x6}}, [@filter_kind_options=@f_fw={{0x7}, {0x28, 0x2, [@TCA_FW_MASK={0x8, 0x5, 0xfff}, @TCA_FW_CLASSID={0xfffffffffffffe4b, 0x1, {0x1}}, @TCA_FW_INDEV={0x14, 0x3, 'batadv_slave_0\x00'}]}}]}, 0x54}}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000800)={'erspan0\x00', &(0x7f00000007c0)={'tunl0\x00', <r7=>0x0, 0x80, 0x1, 0x9, 0x3c, {{0x7, 0x4, 0x0, 0x4, 0x1c, 0x64, 0x0, 0x2, 0x2f, 0x0, @private=0xa010101, @empty, {[@noop, @generic={0x83, 0x7, "4be81ff3c8"}]}}}}})
sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(0xffffffffffffffff, &(0x7f0000000b00)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000940)={&(0x7f0000000640)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000429bd7000fddbdf250e000000280001801400020062617461647630000000000000000000080003000300000008000100", @ANYRES32=0x0, @ANYBLOB="2400018008000100", @ANYRES32=0x0, @ANYBLOB="08000300020000000000000079ecc3927048edc40b731adb975bcfe80d3532c5f83f95d9bd77212ef96fc2268525f5f47868dc56d5ccf9a59f4373a243854ea90e59a309a8c3f25930aaeb42bb7775172549137a4bc936d2494b90193a6abe0a86d0adf8e8a2772542cdc37753f2f9610389389b3aa5d172ba74a1db8119ab7aa7dec06b92f36ecd09573028de72799a33c467541b550e49367deb2c7559952dce66161ad7527b6b66a334efe5de9a5e75b609ac277a0d1fc871336e2ae4353caf848f97fcdef5030a526310631638861337ef24a5acd456ba6a6ee25ce8ef84b127d2859e74159f6f5e931cfb12534b", @ANYRES32=0x0, @ANYBLOB="08000300000000001c00018008000100", @ANYRES32=0x0, @ANYBLOB="080003000200000008000100", @ANYRES32=r7, @ANYBLOB], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x5)
ftruncate(0xffffffffffffffff, 0xc17a)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
set_mempolicy_home_node(&(0x7f0000349000/0xa000)=nil, 0xa000, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@delchain={0x24, 0x11, 0x1, 0x1f}, 0x24}}, 0x0)

638.044111ms ago: executing program 6 (id=2339):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x8, 0x0, 0x0, 0x7ffc1ffb}]})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
getpid()
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc)=0x4, 0x10b, 0x4, 0x0, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000000), &(0x7f0000048000), 0x0)

608.779351ms ago: executing program 2 (id=2340):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x42002, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc)=<r3=>0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000940)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r4, 0x0, r5, 0x0, 0xf3a, 0x0)
write$binfmt_misc(r5, &(0x7f0000000980), 0xfdef)
splice(0xffffffffffffffff, 0x0, r5, 0x0, 0x80, 0x7)
timer_settime(r3, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000040), 0x208e24b)

570.669391ms ago: executing program 7 (id=2342):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000000)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r1}, 0x18)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="020900000700000000", @ANYRES32], 0x38}}, 0x0)

486.948051ms ago: executing program 7 (id=2343):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
readlink(0x0, 0x0, 0x0)

470.839801ms ago: executing program 7 (id=2345):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='netlink_extack\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="170000005500e507000000000000000007"], 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x0)
unlinkat(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x57, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0xfffffffdffff18d6, 0x96ef}, 0x1206c, 0x80, 0x7, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0xad980500, 0x0, 0x0, &(0x7f00000011c0), 0x0, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
connect$pppl2tp(r0, &(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x0, r3, {0x2, 0x4e21, @remote}, 0x3, 0x0, 0x2}}, 0x2e)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000080000000c"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x7, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r5}, 0x10)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r6, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x1c, 0x3, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000080)={0x1b, 0x0, 0x0, 0x8001, 0x0, 0xffffffffffffffff, 0x2, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x3, 0x3, 0x0, @void, @value, @void, @value}, 0x50)

350.97002ms ago: executing program 7 (id=2346):
openat(0xffffffffffffff9c, 0x0, 0x1c1002, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000007b8af8ff00000000bfa2000000000000b70400000000000085000000030000009500000000002efd"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r0}, 0x10)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r1 = gettid()
process_vm_writev(r1, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)

270.48588ms ago: executing program 3 (id=2347):
r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x47, 0x1, 0x1, 0x0, 0x0, 0x80000000000, 0x10004, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x4, @perf_config_ext={0x0, 0x6}, 0x1206c, 0x80, 0x7, 0x0, 0xdf, 0xe, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000c47000/0x5000)=nil, 0x5000, 0x0, 0x12, r0, 0x34ea0000)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.swap.current\x00', 0x275a, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000850000005000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x21, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2000000, @void, @value}, 0x94)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
ptrace(0x10, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000500)={0x1, &(0x7f00000004c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
clock_getres(0x0, 0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x40000, 0x42)
read(r3, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r1, 0x0)
syz_emit_ethernet(0x3a, &(0x7f0000000500)=ANY=[@ANYBLOB="0180c2000000aaaaaaaaaaaa810000000800450000283868ab190032907800000000ffffffff1100907800000000000000000000000000000009"], 0x0)
socket(0x10, 0x3, 0x6)
acct(&(0x7f00000001c0)='./file0\x00')
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x3, 0xc, &(0x7f0000000680)=ANY=[@ANYBLOB="18020000000000000000000000000000850000002200000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000500000095", @ANYRES64=r2], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r4, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
clock_adjtime(0x0, &(0x7f0000000340)={0xfff, 0x0, 0x4, 0x8, 0x10001, 0xfffffffffffff22b, 0x7, 0x5, 0x5, 0x1, 0x8, 0x1ff, 0x2, 0x34, 0x7fffffff, 0x9, 0x205d61e1, 0xc5d, 0x101, 0x2, 0x7f, 0x8, 0xfffffffffffffff9, 0x1, 0xd46, 0x2c0000000})

148.3895ms ago: executing program 3 (id=2348):
inotify_init()
syz_mount_image$ext4(0x0, &(0x7f00000001c0)='./file0\x00', 0x1809049, 0x0, 0xff, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="1801000000001f00000000000000ea1f850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r1, &(0x7f0000000ac0)=ANY=[@ANYBLOB="7f454c4600000006010000000000000003003e000000000003000000000000004000000000000000980100000000000002000000000038000200000002000000000000600300000008000000000000000d00000000000000ed08000000000000f0ffffffffffffff0000000000000000080000000000000003000000cff5ffff800300000000000001000000000000000500000000000000ff"], 0x5b0)
close(r1)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)

129.02769ms ago: executing program 3 (id=2349):
socket$unix(0x1, 0x3, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000180), 0x1, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000180), 0xfea7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r5, @ANYBLOB="ff830500000700ffffff", @ANYRES32=r2], 0x4}}, 0x0)
sendfile(r4, r3, 0x0, 0x100000002)

126.49881ms ago: executing program 7 (id=2350):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x40)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1a, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800148acb18cf2231f9820000001c3ded53a3e86d183b396f7b8af8ff00000000bfa2000000000000070200074000c858d627e56371bfd1d500b7040000000000008500000024000000f8e7b2befd1597950000000000000000008d2e927ddfebf19912e8a853d0dd1d4079372fa794fc01b04815a0a3a9a0c2f545bb"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x30, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=ANY=[@ANYBLOB="240000001900dd8d00000000000000000280"], 0x24}, 0x1, 0x0, 0x0, 0x80840}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
sendmsg$TIPC_CMD_SHOW_LINK_STATS(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x40, &(0x7f0000000340), 0x1, 0x58c, &(0x7f00000005c0)="$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")
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x13}}, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendto$inet(r2, &(0x7f0000000700)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff959bcecc7a95425a3a07e758044ab4ea6f7c555d88fecf90b037511bf746bec66ba", 0x994b6e03113064ae, 0x0, 0x0, 0x0)
recvmsg(r2, &(0x7f0000001500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x407006}, 0x104)
ioctl$TCSETA(0xffffffffffffffff, 0x5406, &(0x7f0000000340)={0x7fff, 0x0, 0x101, 0x2131, 0xd, "deb7b14a7991a04a"})
socket(0x10, 0x803, 0x0)
lgetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000280)=ANY=[], 0x0, 0x11)

89.37771ms ago: executing program 3 (id=2351):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="16000000000000000400000003"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1, 0x0, 0xcbe}, 0x18)
msync(&(0x7f0000952000/0x1000)=nil, 0x1000, 0x4)

52.79817ms ago: executing program 1 (id=2352):
iopl(0x3)
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='netlink_extack\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="170000005500e507000000000000000007"], 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x0)
unlinkat(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x57, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0xfffffffdffff18d6, 0x96ef}, 0x1206c, 0x80, 0x7, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0xad980500, 0x0, 0x0, &(0x7f00000011c0), 0x0, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
connect$pppl2tp(r0, &(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x0, r3, {0x2, 0x4e21, @remote}, 0x3, 0x0, 0x2}}, 0x2e)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000080000000c"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x7, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r5}, 0x10)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r6, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x1c, 0x3, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000080)={0x1b, 0x0, 0x0, 0x8001, 0x0, 0xffffffffffffffff, 0x2, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x3, 0x3, 0x0, @void, @value, @void, @value}, 0x50)

6.154209ms ago: executing program 3 (id=2353):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b000000000000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r2, &(0x7f0000000ac0)=ANY=[@ANYBLOB="7f454c4600000006010000000000000003003e000000000003000000000000004000000000000000980100000000000002000000000038000200000002000000000000600300000008000000000000000d00000000000000ed08000000000000f0ffffffffffffff0000000000000000080000000000000003000000cff5ffff800300000000000001000000000000000500000000000000ff"], 0x5b0)
close(r2)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)

0s ago: executing program 3 (id=2354):
r0 = socket$xdp(0x2c, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
io_setup(0x7, &(0x7f0000000280)=<r1=>0x0)
io_submit(r1, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

kernel console output (not intermixed with test programs):

it(1737417346.431:14301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7739 comm="syz.1.1454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  121.379864][   T29] audit: type=1326 audit(1737417346.461:14302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7739 comm="syz.1.1454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  121.397392][ T7748] loop6: detected capacity change from 0 to 1024
[  121.403380][   T29] audit: type=1326 audit(1737417346.461:14303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7739 comm="syz.1.1454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  121.433224][   T29] audit: type=1326 audit(1737417346.461:14304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7739 comm="syz.1.1454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  121.444222][ T7750] loop3: detected capacity change from 0 to 512
[  121.457310][ T7748] ext4: Unknown parameter 'smackfsfloor'
[  121.472664][ T7673] batman_adv: batadv0: Adding interface: batadv_slave_0
[  121.479659][ T7673] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  121.505584][ T7673] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  121.520681][ T7673] batman_adv: batadv0: Adding interface: batadv_slave_1
[  121.527822][ T7673] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  121.554353][ T7673] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  121.569580][   T29] audit: type=1326 audit(1737417346.661:14305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7747 comm="syz.6.1457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6a235d29 code=0x7ffc0000
[  121.570095][ T7750] ext4 filesystem being mounted at /314/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  121.593164][   T29] audit: type=1326 audit(1737417346.661:14306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7747 comm="syz.6.1457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fab6a235d29 code=0x7ffc0000
[  121.627133][   T29] audit: type=1326 audit(1737417346.661:14307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7747 comm="syz.6.1457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6a235d29 code=0x7ffc0000
[  121.650855][   T29] audit: type=1326 audit(1737417346.661:14308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7747 comm="syz.6.1457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6a235d29 code=0x7ffc0000
[  121.755005][ T7673] hsr_slave_0: entered promiscuous mode
[  121.761522][ T7673] hsr_slave_1: entered promiscuous mode
[  121.766522][   T29] audit: type=1326 audit(1737417346.781:14309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7747 comm="syz.6.1457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=459 compat=0 ip=0x7fab6a235d29 code=0x7ffc0000
[  121.790753][   T29] audit: type=1326 audit(1737417346.781:14310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7747 comm="syz.6.1457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6a235d29 code=0x7ffc0000
[  121.814342][ T7673] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  121.838084][ T7673] Cannot create hsr debugfs directory
[  121.991713][ T7758] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1459'.
[  122.083382][ T7758] loop2: detected capacity change from 0 to 1024
[  122.102113][ T7673] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  122.109290][ T7758] EXT4-fs: Ignoring removed orlov option
[  122.128415][ T7673] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  122.159446][ T7673] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  122.263983][ T7673] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  122.330367][ T7764] loop1: detected capacity change from 0 to 512
[  122.390786][ T7673] 8021q: adding VLAN 0 to HW filter on device bond0
[  122.410569][ T7766] loop6: detected capacity change from 0 to 512
[  122.428179][ T7673] 8021q: adding VLAN 0 to HW filter on device team0
[  122.434912][ T7766] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  122.442971][ T5552] bridge0: port 1(bridge_slave_0) entered blocking state
[  122.451896][ T5552] bridge0: port 1(bridge_slave_0) entered forwarding state
[  122.517420][ T1728] bridge0: port 2(bridge_slave_1) entered blocking state
[  122.524539][ T1728] bridge0: port 2(bridge_slave_1) entered forwarding state
[  122.591989][ T7766] EXT4-fs (loop6): 1 truncate cleaned up
[  122.613244][ T7673] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  122.623666][ T7673] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  122.840197][ T7673] 8021q: adding VLAN 0 to HW filter on device batadv0
[  122.869749][ T7778] loop6: detected capacity change from 0 to 1024
[  122.886779][ T7778] ext4: Unknown parameter 'smackfsfloor'
[  122.979325][ T7797] loop2: detected capacity change from 0 to 1024
[  122.986070][ T7797] ext4: Unknown parameter 'smackfsfloor'
[  123.020384][ T7673] veth0_vlan: entered promiscuous mode
[  123.028230][ T7673] veth1_vlan: entered promiscuous mode
[  123.043653][ T7673] veth0_macvtap: entered promiscuous mode
[  123.052505][ T7673] veth1_macvtap: entered promiscuous mode
[  123.062733][ T7673] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  123.073215][ T7673] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  123.083077][ T7673] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  123.093575][ T7673] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  123.103537][ T7673] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  123.114054][ T7673] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  123.124760][ T7673] batman_adv: batadv0: Interface activated: batadv_slave_0
[  123.135792][ T7673] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  123.146373][ T7673] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  123.156288][ T7673] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  123.166825][ T7673] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  123.176785][ T7673] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  123.187341][ T7673] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  123.198441][ T7673] batman_adv: batadv0: Interface activated: batadv_slave_1
[  123.209043][ T7673] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  123.217873][ T7673] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  123.226732][ T7673] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  123.235536][ T7673] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  123.326981][ T7812] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1472'.
[  123.342037][ T7812] loop1: detected capacity change from 0 to 1024
[  123.358923][ T7812] ext4 filesystem being mounted at /338/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  123.401445][ T7816] loop1: detected capacity change from 0 to 2048
[  123.735048][ T7843] loop6: detected capacity change from 0 to 128
[  123.744201][ T7843] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1482'.
[  124.001833][ T7853] netlink: zone id is out of range
[  124.011908][ T7853] netlink: del zone limit has 4 unknown bytes
[  124.250533][ T7860] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1488'.
[  124.289183][ T7860] loop7: detected capacity change from 0 to 1024
[  124.319452][ T7860] ext4 filesystem being mounted at /2/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  124.360833][ T7869] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  124.360833][ T7869]    program syz.2.1490 not setting count and/or reply_len properly
[  124.453998][ T7873] loop2: detected capacity change from 0 to 512
[  124.507394][ T7873] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.1490: Failed to acquire dquot type 1
[  124.544919][ T7873] EXT4-fs (loop2): 1 truncate cleaned up
[  124.556883][ T7873] ext4 filesystem being mounted at /267/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  124.609643][ T7878] program +}[@ is using a deprecated SCSI ioctl, please convert it to SG_IO
[  124.696160][ T7885] loop1: detected capacity change from 0 to 1024
[  124.703056][ T7885] ext4: Unknown parameter 'smackfsfloor'
[  124.705617][ T7887] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  124.705617][ T7887]    program syz.6.1495 not setting count and/or reply_len properly
[  124.760860][ T7887] loop6: detected capacity change from 0 to 512
[  124.778207][ T7887] EXT4-fs error (device loop6): ext4_acquire_dquot:6938: comm syz.6.1495: Failed to acquire dquot type 1
[  124.792727][ T7887] EXT4-fs (loop6): 1 truncate cleaned up
[  124.798997][ T7887] ext4 filesystem being mounted at /62/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  125.202160][   T36] EXT4-fs error (device loop2): ext4_release_dquot:6961: comm kworker/u8:2: Failed to release dquot type 1
[  125.226679][ T7900] loop2: detected capacity change from 0 to 512
[  125.352012][ T7907] loop2: detected capacity change from 0 to 512
[  125.382523][ T7909] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1502'.
[  125.391901][ T7909] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1502'.
[  125.406358][ T7909] loop2: detected capacity change from 0 to 1024
[  125.413203][ T7909] EXT4-fs: Ignoring removed orlov option
[  125.554374][  T356] EXT4-fs error (device loop6): ext4_release_dquot:6961: comm kworker/u8:5: Failed to release dquot type 1
[  125.601965][ T7922] program +}[@ is using a deprecated SCSI ioctl, please convert it to SG_IO
[  125.644425][ T7925] loop3: detected capacity change from 0 to 512
[  125.703262][ T7925] ext4 filesystem being mounted at /322/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  125.739204][ T7937] loop1: detected capacity change from 0 to 512
[  125.818954][ T7943] loop1: detected capacity change from 0 to 1024
[  125.828722][ T7944] netlink: zone id is out of range
[  125.835100][ T7946] loop7: detected capacity change from 0 to 128
[  125.854010][ T7944] netlink: del zone limit has 4 unknown bytes
[  125.862086][ T7943] ext4: Unknown parameter 'smackfsfloor'
[  125.882839][ T7946] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1516'.
[  126.084950][ T7953] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1518'.
[  126.101605][ T7953] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1518'.
[  126.133006][ T7953] loop6: detected capacity change from 0 to 1024
[  126.145962][ T7953] EXT4-fs: Ignoring removed orlov option
[  126.433587][ T7961] program +}[@ is using a deprecated SCSI ioctl, please convert it to SG_IO
[  126.665236][ T7968] loop1: detected capacity change from 0 to 512
[  126.795745][ T7980] loop7: detected capacity change from 0 to 1024
[  126.804921][ T7980] ext4: Unknown parameter 'smackfsfloor'
[  127.075536][ T7995] loop6: detected capacity change from 0 to 512
[  127.102892][ T7997] loop6: detected capacity change from 0 to 7
[  127.109410][ T7997] Buffer I/O error on dev loop6, logical block 0, async page read
[  127.117329][ T7997] Buffer I/O error on dev loop6, logical block 0, async page read
[  127.125283][ T7997]  loop6: unable to read partition table
[  127.130968][ T7997] loop_reread_partitions: partition scan of loop6 (þ被xüŸÑø éÚ¬§½dƤ´à–ƒÝ¡¯¨�â·û
[  127.130968][ T7997] 
) failed (rc=-5)
[  127.212099][ T8001] loop6: detected capacity change from 0 to 512
[  127.228737][ T8001] EXT4-fs mount: 78 callbacks suppressed
[  127.228752][ T8001] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  127.247892][ T8001] ext4 filesystem being mounted at /76/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  127.271976][ T7047] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  127.376875][ T8008] loop6: detected capacity change from 0 to 512
[  127.482723][ T8017] xt_addrtype: input interface limitation not valid in POSTROUTING and OUTPUT
[  127.530524][ T8021] loop6: detected capacity change from 0 to 512
[  127.548434][ T8021] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  127.561232][ T8021] ext4 filesystem being mounted at /82/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  127.574276][ T8027] program +}[@ is using a deprecated SCSI ioctl, please convert it to SG_IO
[  127.595044][ T7047] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  127.602569][ T8030] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  127.602569][ T8030]    program syz.2.1549 not setting count and/or reply_len properly
[  127.673793][ T8030] loop2: detected capacity change from 0 to 512
[  127.687805][ T8038] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  127.698548][ T8030] __quota_error: 144 callbacks suppressed
[  127.698567][ T8030] Quota error (device loop2): write_blk: dquota write failed
[  127.711778][ T8030] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota
[  127.721679][ T8030] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.1549: Failed to acquire dquot type 1
[  127.741836][ T8030] EXT4-fs (loop2): 1 truncate cleaned up
[  127.748610][ T8030] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  127.761890][ T8030] ext4 filesystem being mounted at /279/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  127.774327][   T29] audit: type=1326 audit(1737417352.861:14449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8031 comm="syz.7.1550" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7278c05d29 code=0x0
[  127.797983][ T8049] wg2: entered promiscuous mode
[  127.802896][ T8049] wg2: entered allmulticast mode
[  127.821515][ T8055] netlink: zone id is out of range
[  127.831879][ T8055] netlink: del zone limit has 4 unknown bytes
[  127.864813][   T29] audit: type=1400 audit(1737417352.941:14450): avc:  denied  { write } for  pid=8061 comm="syz.7.1560" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  127.894508][   T29] audit: type=1326 audit(1737417352.951:14451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8063 comm="syz.6.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6a235d29 code=0x7ffc0000
[  127.918196][   T29] audit: type=1326 audit(1737417352.951:14452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8063 comm="syz.6.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=89 compat=0 ip=0x7fab6a235d29 code=0x7ffc0000
[  127.941661][   T29] audit: type=1326 audit(1737417352.951:14453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8063 comm="syz.6.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6a235d29 code=0x7ffc0000
[  127.977150][ T8071] netlink: 'syz.1.1564': attribute type 1 has an invalid length.
[  127.987273][ T8071] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1564'.
[  127.996337][ T8069] loop6: detected capacity change from 0 to 1024
[  127.998399][ T8071] netlink: 'syz.1.1564': attribute type 7 has an invalid length.
[  128.006585][   T29] audit: type=1326 audit(1737417353.001:14454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8068 comm="syz.6.1563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6a235d29 code=0x7ffc0000
[  128.034339][   T29] audit: type=1326 audit(1737417353.001:14455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8068 comm="syz.6.1563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6a235d29 code=0x7ffc0000
[  128.058193][   T29] audit: type=1326 audit(1737417353.061:14456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8068 comm="syz.6.1563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fab6a235d29 code=0x7ffc0000
[  128.082737][ T8071] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=8071 comm=syz.1.1564
[  128.084408][ T8074] netlink: 20 bytes leftover after parsing attributes in process `syz.7.1566'.
[  128.095414][ T8071] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=8071 comm=syz.1.1564
[  128.104596][ T8074] netlink: 20 bytes leftover after parsing attributes in process `syz.7.1566'.
[  128.135405][ T8069] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  128.181154][ T8069] ext4 filesystem being mounted at /88/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  128.222633][ T8086] loop3: detected capacity change from 0 to 512
[  128.230479][ T8086] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  128.257781][ T7047] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.258053][ T8086] EXT4-fs (loop3): 1 truncate cleaned up
[  128.279657][ T8086] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  128.282833][ T8097] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1575'.
[  128.302430][ T8098] loop7: detected capacity change from 0 to 512
[  128.309764][ T8098] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  128.310060][ T8097] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1575'.
[  128.346779][ T8097] loop1: detected capacity change from 0 to 1024
[  128.353507][ T8097] EXT4-fs: Ignoring removed orlov option
[  128.383729][ T8097] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  128.421696][ T8104] loop6: detected capacity change from 0 to 512
[  128.475108][ T8098] EXT4-fs (loop7): 1 truncate cleaned up
[  128.488327][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.506855][ T1728] EXT4-fs error (device loop2): ext4_release_dquot:6961: comm kworker/u8:7: Failed to release dquot type 1
[  128.627115][ T8098] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  128.807956][ T7673] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.849189][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.859756][ T8104] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  128.874491][ T8104] ext4 filesystem being mounted at /90/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  128.894369][ T8116] loop2: detected capacity change from 0 to 128
[  129.016338][ T7047] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  129.177029][ T8130] loop7: detected capacity change from 0 to 1024
[  129.238840][ T8133] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  129.238840][ T8133]    program syz.6.1586 not setting count and/or reply_len properly
[  129.274548][ T8130] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  129.307407][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.338707][ T8137] loop6: detected capacity change from 0 to 512
[  129.367278][ T8130] ext4 filesystem being mounted at /19/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  129.390721][ T8140] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  129.390721][ T8140]    program syz.1.1587 not setting count and/or reply_len properly
[  129.411875][ T8137] EXT4-fs error (device loop6): ext4_acquire_dquot:6938: comm syz.6.1586: Failed to acquire dquot type 1
[  129.458845][ T8137] EXT4-fs (loop6): 1 truncate cleaned up
[  129.488034][ T8137] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.517091][ T7673] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.518130][ T8145] loop1: detected capacity change from 0 to 512
[  129.548954][ T8137] ext4 filesystem being mounted at /92/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  129.589084][ T8145] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.1587: Failed to acquire dquot type 1
[  129.665525][ T8145] EXT4-fs (loop1): 1 truncate cleaned up
[  129.730515][ T8145] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.743382][ T8145] ext4 filesystem being mounted at /363/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  129.865969][ T8148] loop7: detected capacity change from 0 to 8192
[  129.979608][ T8161] loop3: detected capacity change from 0 to 512
[  130.008438][ T8161] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.021319][ T8161] ext4 filesystem being mounted at /336/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  130.093743][ T7047] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.106675][   T11] EXT4-fs error (device loop6): ext4_release_dquot:6961: comm kworker/u8:0: Failed to release dquot type 1
[  130.250508][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.269936][   T36] EXT4-fs error (device loop1): ext4_release_dquot:6961: comm kworker/u8:2: Failed to release dquot type 1
[  130.341640][ T8169] loop6: detected capacity change from 0 to 512
[  130.448373][ T8169] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  130.461938][ T8169] ext4 filesystem being mounted at /94/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  130.492622][ T7047] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  130.571695][ T8179] loop6: detected capacity change from 0 to 512
[  130.672619][ T8185] loop6: detected capacity change from 0 to 128
[  130.688060][ T8185] __nla_validate_parse: 4 callbacks suppressed
[  130.688081][ T8185] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1601'.
[  130.871338][ T8196] loop7: detected capacity change from 0 to 1024
[  130.878115][ T8196] ext4: Unknown parameter 'smackfsfloor'
[  130.894692][ T8198] loop2: detected capacity change from 0 to 512
[  130.918696][ T8198] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  130.934731][ T8198] ext4 filesystem being mounted at /285/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  130.981104][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  131.025878][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.101419][ T8212] loop3: detected capacity change from 0 to 512
[  131.173099][ T8220] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1615'.
[  131.183447][ T8220] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1615'.
[  131.206122][ T8220] loop3: detected capacity change from 0 to 1024
[  131.212885][ T8220] EXT4-fs: Ignoring removed orlov option
[  131.222397][ T8220] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.368806][ T8229] netlink: zone id is out of range
[  131.374225][ T8229] netlink: del zone limit has 4 unknown bytes
[  131.450647][ T8233] loop2: detected capacity change from 0 to 512
[  131.489344][ T8233] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.546573][ T8233] ext4 filesystem being mounted at /293/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  131.563273][ T8241] loop6: detected capacity change from 0 to 512
[  131.681129][ T8247] loop6: detected capacity change from 0 to 1024
[  131.688061][ T8247] ext4: Unknown parameter 'smackfsfloor'
[  131.724487][ T8249] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  131.724487][ T8249]    program syz.7.1626 not setting count and/or reply_len properly
[  131.813308][ T8249] loop7: detected capacity change from 0 to 512
[  131.829720][ T8249] EXT4-fs error (device loop7): ext4_acquire_dquot:6938: comm syz.7.1626: Failed to acquire dquot type 1
[  131.846725][ T8249] EXT4-fs (loop7): 1 truncate cleaned up
[  131.860885][ T8249] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.886056][ T8249] ext4 filesystem being mounted at /27/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  132.029839][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.067039][ T8258] netlink: zone id is out of range
[  132.075538][ T8258] netlink: del zone limit has 4 unknown bytes
[  132.235093][ T8260] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  132.469486][ T8269] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1632'.
[  132.479185][ T8269] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1632'.
[  132.503449][ T8269] loop1: detected capacity change from 0 to 1024
[  132.530561][ T8269] EXT4-fs: Ignoring removed orlov option
[  132.547355][ T8269] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.579361][ T7673] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.590896][ T8272] loop6: detected capacity change from 0 to 512
[  132.598314][ T1728] EXT4-fs error (device loop7): ext4_release_dquot:6961: comm kworker/u8:7: Failed to release dquot type 1
[  132.648083][ T8272] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  132.660899][ T8272] ext4 filesystem being mounted at /99/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  132.872559][ T7047] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  132.886948][ T8277] loop7: detected capacity change from 0 to 128
[  132.897309][ T8277] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1633'.
[  132.926573][ T8233] syz.2.1620 (8233) used greatest stack depth: 5184 bytes left
[  132.938357][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.957322][ T8281] loop6: detected capacity change from 0 to 512
[  133.036726][ T8281] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  133.061085][ T8281] EXT4-fs (loop6): 1 truncate cleaned up
[  133.067266][ T8281] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  133.082364][ T8281] FAULT_INJECTION: forcing a failure.
[  133.082364][ T8281] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  133.095468][ T8281] CPU: 1 UID: 0 PID: 8281 Comm: syz.6.1637 Not tainted 6.13.0-syzkaller-00164-g100ceb4817a2 #0
[  133.105888][ T8281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  133.115971][ T8281] Call Trace:
[  133.119271][ T8281]  <TASK>
[  133.122218][ T8281]  dump_stack_lvl+0xf2/0x150
[  133.126942][ T8281]  dump_stack+0x15/0x1a
[  133.131148][ T8281]  should_fail_ex+0x223/0x230
[  133.135863][ T8281]  should_fail+0xb/0x10
[  133.140061][ T8281]  should_fail_usercopy+0x1a/0x20
[  133.145171][ T8281]  _copy_to_user+0x20/0xa0
[  133.149620][ T8281]  simple_read_from_buffer+0xa0/0x110
[  133.155122][ T8281]  proc_fail_nth_read+0xf9/0x140
[  133.160132][ T8281]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  133.165834][ T8281]  vfs_read+0x1a2/0x700
[  133.170041][ T8281]  ? __rcu_read_unlock+0x4e/0x70
[  133.175186][ T8281]  ? __fget_files+0x17c/0x1c0
[  133.179933][ T8281]  ksys_read+0xe8/0x1b0
[  133.184176][ T8281]  __x64_sys_read+0x42/0x50
[  133.189043][ T8281]  x64_sys_call+0x2874/0x2dc0
[  133.193776][ T8281]  do_syscall_64+0xc9/0x1c0
[  133.198421][ T8281]  ? clear_bhb_loop+0x55/0xb0
[  133.203218][ T8281]  ? clear_bhb_loop+0x55/0xb0
[  133.207955][ T8281]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.213893][ T8281] RIP: 0033:0x7fab6a23473c
[  133.218333][ T8281] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  133.238184][ T8281] RSP: 002b:00007fab688a1030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  133.246648][ T8281] RAX: ffffffffffffffda RBX: 00007fab6a425fa0 RCX: 00007fab6a23473c
[  133.254789][ T8281] RDX: 000000000000000f RSI: 00007fab688a10a0 RDI: 0000000000000005
[  133.263667][ T8281] RBP: 00007fab688a1090 R08: 0000000000000000 R09: 0000000000000000
[  133.271729][ T8281] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  133.279882][ T8281] R13: 0000000000000000 R14: 00007fab6a425fa0 R15: 00007fff7848b808
[  133.287888][ T8281]  </TASK>
[  133.327455][ T8287] program +}[@ is using a deprecated SCSI ioctl, please convert it to SG_IO
[  133.341059][ T7047] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.440964][ T8299] netlink: zone id is out of range
[  133.446564][ T8299] netlink: del zone limit has 4 unknown bytes
[  133.454563][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.480744][ T8301] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  133.480744][ T8301]    program syz.1.1644 not setting count and/or reply_len properly
[  133.521134][ T8301] loop1: detected capacity change from 0 to 512
[  133.531972][ T8307] loop3: detected capacity change from 0 to 512
[  133.560941][ T8301] __quota_error: 137 callbacks suppressed
[  133.560959][ T8301] Quota error (device loop1): write_blk: dquota write failed
[  133.561677][ T8315] loop3: detected capacity change from 0 to 128
[  133.566900][ T8301] Quota error (device loop1): qtree_write_dquot: Error -28 occurred while creating quota
[  133.590387][ T8301] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.1644: Failed to acquire dquot type 1
[  133.602304][ T8301] EXT4-fs (loop1): 1 truncate cleaned up
[  133.608543][ T8301] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.610928][ T8315] macvtap0: entered promiscuous mode
[  133.621766][ T8301] ext4 filesystem being mounted at /374/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  133.630587][ T8315] macvtap0: left promiscuous mode
[  133.718845][ T8326] program +}[@ is using a deprecated SCSI ioctl, please convert it to SG_IO
[  133.733769][ T8327] loop3: detected capacity change from 0 to 512
[  133.823612][ T8333] sctp: [Deprecated]: syz.7.1654 (pid 8333) Use of struct sctp_assoc_value in delayed_ack socket option.
[  133.823612][ T8333] Use struct sctp_sack_info instead
[  133.843436][   T29] audit: type=1400 audit(1737417358.931:14584): avc:  denied  { create } for  pid=8332 comm="syz.7.1654" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  133.865451][   T29] audit: type=1400 audit(1737417358.931:14585): avc:  denied  { setopt } for  pid=8332 comm="syz.7.1654" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  133.868675][ T8342] loop3: detected capacity change from 0 to 512
[  133.891522][ T8342] EXT4-fs: Ignoring removed oldalloc option
[  133.898195][ T8342] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  133.918253][ T8347] netlink: zone id is out of range
[  133.923574][ T8347] netlink: del zone limit has 4 unknown bytes
[  133.924266][ T8342] EXT4-fs (loop3): 1 truncate cleaned up
[  133.935894][ T8342] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.017050][ T8349] loop7: detected capacity change from 0 to 512
[  134.023914][ T8349] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  134.035596][ T8349] EXT4-fs (loop7): 1 truncate cleaned up
[  134.042786][ T8349] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.118743][ T7673] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.150827][ T8353] loop7: detected capacity change from 0 to 512
[  134.231912][ T8356] loop6: detected capacity change from 0 to 128
[  134.243636][ T8357] loop7: detected capacity change from 0 to 512
[  134.244431][ T8342] Set syz1 is full, maxelem 65536 reached
[  134.252412][ T8356] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1661'.
[  134.277320][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.297547][ T8360] loop7: detected capacity change from 0 to 128
[  134.306112][ T8360] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1663'.
[  134.328495][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.337699][ T5552] Quota error (device loop1): do_check_range: Getting block 0 out of range 1-5
[  134.338813][ T8361] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  134.346680][ T5552] EXT4-fs error (device loop1): ext4_release_dquot:6961: comm kworker/u8:9: Failed to release dquot type 1
[  134.366631][ T8361] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  134.378785][ T8364] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  134.378785][ T8364]    program syz.1.1664 not setting count and/or reply_len properly
[  134.417654][ T8364] loop1: detected capacity change from 0 to 512
[  134.438179][ T8364] Quota error (device loop1): write_blk: dquota write failed
[  134.445625][ T8364] Quota error (device loop1): qtree_write_dquot: Error -28 occurred while creating quota
[  134.455615][ T8364] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.1664: Failed to acquire dquot type 1
[  134.467718][ T8364] EXT4-fs (loop1): 1 truncate cleaned up
[  134.473753][ T8364] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.486402][ T8364] ext4 filesystem being mounted at /375/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  134.513600][ T8370] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  134.513600][ T8370]    program syz.2.1665 not setting count and/or reply_len properly
[  134.550104][ T8370] loop2: detected capacity change from 0 to 512
[  134.568124][ T8370] Quota error (device loop2): write_blk: dquota write failed
[  134.575581][ T8370] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota
[  134.585527][ T8370] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.1665: Failed to acquire dquot type 1
[  134.597918][ T8370] EXT4-fs (loop2): 1 truncate cleaned up
[  134.604282][ T8370] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.617006][ T8370] ext4 filesystem being mounted at /301/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  134.934112][ T8380] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  134.943197][ T8380] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  135.165550][ T8389] loop7: detected capacity change from 0 to 512
[  135.220790][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.230189][  T356] Quota error (device loop1): do_check_range: Getting block 0 out of range 1-5
[  135.239219][  T356] EXT4-fs error (device loop1): ext4_release_dquot:6961: comm kworker/u8:5: Failed to release dquot type 1
[  135.263594][ T8395] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1672'.
[  135.360709][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.370129][ T5552] EXT4-fs error (device loop2): ext4_release_dquot:6961: comm kworker/u8:9: Failed to release dquot type 1
[  135.393210][ T8402] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  135.393210][ T8402]    program syz.2.1674 not setting count and/or reply_len properly
[  135.431602][ T8402] loop2: detected capacity change from 0 to 512
[  135.458322][ T8402] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.1674: Failed to acquire dquot type 1
[  135.470566][ T8402] EXT4-fs (loop2): 1 truncate cleaned up
[  135.477713][ T8402] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.479190][ T8409] loop3: detected capacity change from 0 to 1024
[  135.490785][ T8402] ext4 filesystem being mounted at /302/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  135.497077][ T8409] ext4: Unknown parameter 'smackfsfloor'
[  135.933566][ T8413] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  135.960637][ T8415] loop6: detected capacity change from 0 to 128
[  135.969046][ T8415] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1678'.
[  136.049496][ T8418] loop7: detected capacity change from 0 to 512
[  136.056461][ T8418] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  136.068375][ T8418] EXT4-fs (loop7): 1 truncate cleaned up
[  136.074384][ T8418] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.116134][ T7673] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.229484][ T8425] loop1: detected capacity change from 0 to 512
[  136.243204][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.257718][  T356] EXT4-fs error (device loop2): ext4_release_dquot:6961: comm kworker/u8:5: Failed to release dquot type 1
[  136.288292][ T8428] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1683'.
[  136.297791][ T8428] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1683'.
[  136.312588][ T8428] loop1: detected capacity change from 0 to 1024
[  136.319204][ T8428] EXT4-fs: Ignoring removed orlov option
[  136.327604][ T8433] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  136.327604][ T8433]    program syz.2.1684 not setting count and/or reply_len properly
[  136.355343][ T8428] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.408404][ T8439] loop2: detected capacity change from 0 to 512
[  136.438655][ T8439] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.1684: Failed to acquire dquot type 1
[  136.507653][ T8439] EXT4-fs (loop2): 1 truncate cleaned up
[  136.517044][ T8439] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.518333][ T8445] loop7: detected capacity change from 0 to 512
[  136.536579][ T8439] ext4 filesystem being mounted at /304/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  136.677731][ T8448] loop7: detected capacity change from 0 to 1024
[  136.699770][ T8448] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  136.717001][ T8448] ext4 filesystem being mounted at /43/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  136.756671][ T7673] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.929070][ T8454] loop6: detected capacity change from 0 to 164
[  136.936304][ T8454] iso9660: Unknown parameter '01777777777777777777777€þZÓ¬öÐi‡rºÿ'
[  137.128671][ T8463] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  137.128671][ T8463]    program syz.6.1693 not setting count and/or reply_len properly
[  137.167716][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.179268][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.188521][ T5552] EXT4-fs error (device loop2): ext4_release_dquot:6961: comm kworker/u8:9: Failed to release dquot type 1
[  137.236602][ T8463] loop6: detected capacity change from 0 to 512
[  137.261378][ T8471] loop2: detected capacity change from 0 to 512
[  137.270120][ T8463] EXT4-fs error (device loop6): ext4_acquire_dquot:6938: comm syz.6.1693: Failed to acquire dquot type 1
[  137.277120][ T8471] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  137.303240][ T8471] EXT4-fs (loop2): 1 truncate cleaned up
[  137.304372][ T8480] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  137.325568][ T8471] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.341422][ T8463] EXT4-fs (loop6): 1 truncate cleaned up
[  137.354388][ T8463] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.367198][ T8463] ext4 filesystem being mounted at /108/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  137.410626][ T8487] loop7: detected capacity change from 0 to 1024
[  137.431978][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.448472][ T8487] EXT4-fs: Ignoring removed orlov option
[  137.455452][ T8489] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1702'.
[  137.473464][ T8489] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1702'.
[  137.484259][ T8487] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.523618][ T8493] loop2: detected capacity change from 0 to 512
[  137.551334][ T8496] loop3: detected capacity change from 0 to 1024
[  137.560534][ T8497] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1705'.
[  137.571531][ T8497] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1705'.
[  137.592064][ T8496] ext4: Unknown parameter 'smackfsfloor'
[  137.601480][ T8497] loop1: detected capacity change from 0 to 1024
[  137.608182][ T8497] EXT4-fs: Ignoring removed orlov option
[  137.645129][ T8493] ext4 filesystem being mounted at /306/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  137.885734][ T5552] EXT4-fs error (device loop6): ext4_release_dquot:6961: comm kworker/u8:9: Failed to release dquot type 1
[  138.000983][ T8520] syz.6.1711[8520] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  138.001125][ T8520] syz.6.1711[8520] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  138.014091][ T8520] syz.6.1711[8520] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  138.085124][ T8525] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  138.100663][ T8527] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1715'.
[  138.115796][ T8527] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1715'.
[  138.322480][ T8537] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  138.322480][ T8537]    program syz.2.1720 not setting count and/or reply_len properly
[  138.358823][ T8540] loop7: detected capacity change from 0 to 1024
[  138.365710][ T8540] EXT4-fs: Ignoring removed nobh option
[  138.391298][ T8537] loop2: detected capacity change from 0 to 512
[  138.420806][ T8537] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.1720: Failed to acquire dquot type 1
[  138.464727][ T8537] EXT4-fs (loop2): 1 truncate cleaned up
[  138.464979][ T8552] loop3: detected capacity change from 0 to 128
[  138.471092][ T8537] ext4 filesystem being mounted at /316/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  138.590456][   T29] kauditd_printk_skb: 102 callbacks suppressed
[  138.590471][   T29] audit: type=1326 audit(1737417363.681:14676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8553 comm="syz.1.1724" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe6a8d95d29 code=0x0
[  138.608835][ T8570] loop7: detected capacity change from 0 to 128
[  138.630212][ T8570] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1730'.
[  138.671421][ T8572] loop1: detected capacity change from 0 to 512
[  138.704594][ T8574] loop1: detected capacity change from 0 to 512
[  138.728281][ T8574] ext4 filesystem being mounted at /388/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  139.048413][ T8579] FAULT_INJECTION: forcing a failure.
[  139.048413][ T8579] name failslab, interval 1, probability 0, space 0, times 0
[  139.061355][ T8579] CPU: 0 UID: 0 PID: 8579 Comm: syz.1.1733 Not tainted 6.13.0-syzkaller-00164-g100ceb4817a2 #0
[  139.071752][ T8579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  139.081838][ T8579] Call Trace:
[  139.085149][ T8579]  <TASK>
[  139.088096][ T8579]  dump_stack_lvl+0xf2/0x150
[  139.092858][ T8579]  dump_stack+0x15/0x1a
[  139.097067][ T8579]  should_fail_ex+0x223/0x230
[  139.101849][ T8579]  should_failslab+0x8f/0xb0
[  139.106549][ T8579]  __kmalloc_noprof+0xab/0x3f0
[  139.111353][ T8579]  ? sock_kmalloc+0x83/0xc0
[  139.115899][ T8579]  sock_kmalloc+0x83/0xc0
[  139.120309][ T8579]  ____sys_sendmsg+0x127/0x410
[  139.125155][ T8579]  __sys_sendmmsg+0x227/0x4b0
[  139.129891][ T8579]  __x64_sys_sendmmsg+0x57/0x70
[  139.134867][ T8579]  x64_sys_call+0x29aa/0x2dc0
[  139.139585][ T8579]  do_syscall_64+0xc9/0x1c0
[  139.144150][ T8579]  ? clear_bhb_loop+0x55/0xb0
[  139.148869][ T8579]  ? clear_bhb_loop+0x55/0xb0
[  139.153766][ T8579]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.159785][ T8579] RIP: 0033:0x7fe6a8d95d29
[  139.164228][ T8579] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  139.184128][ T8579] RSP: 002b:00007fe6a7407038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  139.192583][ T8579] RAX: ffffffffffffffda RBX: 00007fe6a8f85fa0 RCX: 00007fe6a8d95d29
[  139.200631][ T8579] RDX: 0000000000000001 RSI: 0000000020005e00 RDI: 0000000000000004
[  139.208677][ T8579] RBP: 00007fe6a7407090 R08: 0000000000000000 R09: 0000000000000000
[  139.216797][ T8579] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  139.224796][ T8579] R13: 0000000000000000 R14: 00007fe6a8f85fa0 R15: 00007ffc56e9d1e8
[  139.232968][ T8579]  </TASK>
[  139.256466][  T356] Quota error (device loop2): do_check_range: Getting block 0 out of range 1-5
[  139.265637][  T356] EXT4-fs error (device loop2): ext4_release_dquot:6961: comm kworker/u8:5: Failed to release dquot type 1
[  139.417556][ T8583] capability: warning: `syz.2.1734' uses deprecated v2 capabilities in a way that may be insecure
[  139.495715][ T8601] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  139.495715][ T8601]    program syz.6.1744 not setting count and/or reply_len properly
[  139.518197][ T8604] loop6: detected capacity change from 0 to 7
[  139.554787][ T8601] Buffer I/O error on dev loop6, logical block 0, async page read
[  139.563783][ T8601] Buffer I/O error on dev loop6, logical block 0, async page read
[  139.571726][ T8601]  loop6: unable to read partition table
[  139.579767][ T8611] loop7: detected capacity change from 0 to 128
[  139.588506][ T8604] Buffer I/O error on dev loop6, logical block 0, async page read
[  139.597548][ T8604] Buffer I/O error on dev loop6, logical block 0, async page read
[  139.605958][ T8604]  loop6: unable to read partition table
[  139.612295][ T8604] loop_reread_partitions: partition scan of loop6 (þ被xüŸÑø éÚ¬§½dƤ´à–ƒÝ¡¯¨�â·û
[  139.612295][ T8604] 
) failed (rc=-5)
[  139.641031][   T29] audit: type=1326 audit(1737417364.731:14677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8596 comm="syz.1.1742" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe6a8d95d29 code=0x0
[  139.739395][ T8623] loop2: detected capacity change from 0 to 512
[  139.750383][ T8623] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  139.761811][ T8628] syz.1.1754[8628] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  139.761877][ T8628] syz.1.1754[8628] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  139.762365][ T8623] EXT4-fs (loop2): 1 truncate cleaned up
[  139.773845][ T8628] syz.1.1754[8628] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  139.827686][   T29] audit: type=1326 audit(1737417364.921:14678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8634 comm="syz.3.1756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7effc5d29 code=0x7ffc0000
[  139.862663][   T29] audit: type=1326 audit(1737417364.921:14679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8627 comm="syz.1.1754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  139.865158][ T8635] FAULT_INJECTION: forcing a failure.
[  139.865158][ T8635] name failslab, interval 1, probability 0, space 0, times 0
[  139.886310][   T29] audit: type=1326 audit(1737417364.921:14680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8627 comm="syz.1.1754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  139.898925][ T8635] CPU: 1 UID: 0 PID: 8635 Comm: syz.3.1756 Not tainted 6.13.0-syzkaller-00164-g100ceb4817a2 #0
[  139.922773][   T29] audit: type=1326 audit(1737417364.921:14681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8627 comm="syz.1.1754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  139.933018][ T8635] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  139.933039][ T8635] Call Trace:
[  139.933048][ T8635]  <TASK>
[  139.933065][ T8635]  dump_stack_lvl+0xf2/0x150
[  139.956707][   T29] audit: type=1326 audit(1737417364.921:14682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8627 comm="syz.1.1754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=328 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  139.966721][ T8635]  dump_stack+0x15/0x1a
[  139.970215][   T29] audit: type=1326 audit(1737417364.921:14683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8627 comm="syz.1.1754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  139.973132][ T8635]  should_fail_ex+0x223/0x230
[  139.978121][   T29] audit: type=1326 audit(1737417364.921:14684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8627 comm="syz.1.1754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=89 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  140.001569][ T8635]  ? audit_log_d_path+0x96/0x250
[  140.001685][ T8635]  should_failslab+0x8f/0xb0
[  140.067103][ T8635]  __kmalloc_cache_noprof+0x4e/0x320
[  140.072509][ T8635]  audit_log_d_path+0x96/0x250
[  140.077333][ T8635]  ? __rcu_read_unlock+0x4e/0x70
[  140.082291][ T8635]  audit_log_d_path_exe+0x42/0x70
[  140.087330][ T8635]  audit_log_task+0x192/0x1c0
[  140.092083][ T8635]  audit_seccomp+0x68/0x130
[  140.096662][ T8635]  __seccomp_filter+0x6fa/0x1180
[  140.101627][ T8635]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  140.107396][ T8635]  ? vfs_write+0x596/0x920
[  140.111835][ T8635]  __secure_computing+0x9f/0x1c0
[  140.116792][ T8635]  syscall_trace_enter+0xd1/0x1f0
[  140.121834][ T8635]  ? fpregs_assert_state_consistent+0x83/0xa0
[  140.127918][ T8635]  do_syscall_64+0xaa/0x1c0
[  140.132435][ T8635]  ? clear_bhb_loop+0x55/0xb0
[  140.137370][ T8635]  ? clear_bhb_loop+0x55/0xb0
[  140.142097][ T8635]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.148044][ T8635] RIP: 0033:0x7fb7effc5d29
[  140.152550][ T8635] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  140.172178][ T8635] RSP: 002b:00007fb7ee631038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  140.180599][ T8635] RAX: ffffffffffffffda RBX: 00007fb7f01b5fa0 RCX: 00007fb7effc5d29
[  140.188574][ T8635] RDX: 000000000000006f RSI: 0000000000000084 RDI: 0000000000000009
[  140.196648][ T8635] RBP: 00007fb7ee631090 R08: 0000000020000180 R09: 0000000000000000
[  140.204631][ T8635] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001
[  140.212616][ T8635] R13: 0000000000000000 R14: 00007fb7f01b5fa0 R15: 00007fff26528348
[  140.220631][ T8635]  </TASK>
[  140.235685][ T8635] loop3: detected capacity change from 0 to 2048
[  140.243365][ T8635] EXT4-fs: Ignoring removed bh option
[  140.254592][ T8638] loop1: detected capacity change from 0 to 128
[  140.273924][ T8642] loop2: detected capacity change from 0 to 512
[  140.384930][ T8651] loop6: detected capacity change from 0 to 2048
[  140.392924][ T8651] EXT4-fs: Ignoring removed bh option
[  140.477149][ T8666] loop2: detected capacity change from 0 to 512
[  140.490610][ T8668] syz.6.1767[8668] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  140.490721][ T8668] syz.6.1767[8668] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  140.501227][ T8672] loop7: detected capacity change from 0 to 512
[  140.503584][ T8666] ext4 filesystem being mounted at /324/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  140.530604][ T8668] syz.6.1767[8668] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  140.570048][ T8672] ext4 filesystem being mounted at /58/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  140.671070][ T8680] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  140.671070][ T8680]    program syz.2.1772 not setting count and/or reply_len properly
[  140.828296][ T8680] loop2: detected capacity change from 0 to 512
[  140.940867][ T8689] loop3: detected capacity change from 0 to 128
[  140.950017][ T8680] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.1772: Failed to acquire dquot type 1
[  140.965595][ T8680] EXT4-fs (loop2): 1 truncate cleaned up
[  140.982340][ T8680] ext4 filesystem being mounted at /325/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  141.514369][   T11] EXT4-fs error (device loop2): ext4_release_dquot:6961: comm kworker/u8:0: Failed to release dquot type 1
[  141.609319][ T8709] syz.1.1780[8709] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  141.640139][ T8712] program +}[@ is using a deprecated SCSI ioctl, please convert it to SG_IO
[  141.691320][ T8715] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  141.841886][ T8729] loop3: detected capacity change from 0 to 512
[  141.890442][ T8729] ext4 filesystem being mounted at /379/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  142.161971][ T8750] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  142.187368][ T8749] rdma_op ffff88811ceb3180 conn xmit_rdma 0000000000000000
[  142.211704][ T8745] rdma_op ffff88811ceb0980 conn xmit_rdma 0000000000000000
[  142.215420][ T8756] loop3: detected capacity change from 0 to 512
[  142.368133][ T8767] __nla_validate_parse: 5 callbacks suppressed
[  142.368148][ T8767] netlink: 20 bytes leftover after parsing attributes in process `syz.7.1804'.
[  142.406520][ T8767] netlink: 20 bytes leftover after parsing attributes in process `syz.7.1804'.
[  142.521675][ T8773] loop1: detected capacity change from 0 to 512
[  142.563426][ T8777] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  142.631475][ T8781] loop1: detected capacity change from 0 to 512
[  142.741926][ T8785] loop1: detected capacity change from 0 to 512
[  142.934605][ T8793] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1817'.
[  142.946210][ T8791] loop6: detected capacity change from 0 to 1024
[  142.953113][ T8791] ext4: Unknown parameter 'smackfsfloor'
[  142.959015][ T8793] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1817'.
[  142.996827][ T8797] loop2: detected capacity change from 0 to 512
[  143.031588][ T8799] bpf_get_probe_write_proto: 11 callbacks suppressed
[  143.031605][ T8799] syz.2.1820[8799] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  143.038912][ T8799] syz.2.1820[8799] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  143.050637][ T8799] syz.2.1820[8799] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  143.089468][ T8802] loop2: detected capacity change from 0 to 512
[  143.120114][ T8802] ext4 filesystem being mounted at /336/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  143.177160][ T8804] syz.1.1822[8804] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  143.177231][ T8804] syz.1.1822[8804] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  143.192581][ T8809] loop3: detected capacity change from 0 to 1024
[  143.217145][ T8809] ext4: Unknown parameter 'smackfsfloor'
[  143.235490][ T8804] syz.1.1822[8804] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  143.254623][ T8811] loop2: detected capacity change from 0 to 512
[  143.368004][ T8820] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  143.368004][ T8820]    program syz.2.1828 not setting count and/or reply_len properly
[  143.412688][ T8820] loop2: detected capacity change from 0 to 512
[  143.427979][ T8820] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.1828: Failed to acquire dquot type 1
[  143.440640][ T8820] EXT4-fs (loop2): 1 truncate cleaned up
[  143.447171][ T8820] ext4 filesystem being mounted at /339/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  143.450071][ T8829] syz.1.1830[8829] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  143.458117][ T8829] syz.1.1830[8829] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  143.469684][ T8829] syz.1.1830[8829] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  143.507961][ T8831] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  143.567768][ T8836] loop1: detected capacity change from 0 to 512
[  143.633986][ T8842] loop1: detected capacity change from 0 to 512
[  143.664402][   T29] kauditd_printk_skb: 206 callbacks suppressed
[  143.664421][   T29] audit: type=1326 audit(1737417368.751:14884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8843 comm="syz.1.1836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  143.697467][   T29] audit: type=1326 audit(1737417368.751:14885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8843 comm="syz.1.1836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  143.721131][   T29] audit: type=1326 audit(1737417368.751:14886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8843 comm="syz.1.1836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=89 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  143.744588][   T29] audit: type=1326 audit(1737417368.751:14887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8843 comm="syz.1.1836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  143.778983][ T8849] syz.6.1838[8849] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  143.898283][ T8861] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1844'.
[  143.908314][ T8863] loop6: detected capacity change from 0 to 512
[  143.911315][ T8861] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1844'.
[  143.958992][   T29] audit: type=1326 audit(1737417369.051:14888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8866 comm="syz.6.1847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6a235d29 code=0x7ffc0000
[  143.982715][   T29] audit: type=1326 audit(1737417369.051:14889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8866 comm="syz.6.1847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6a235d29 code=0x7ffc0000
[  144.006358][   T29] audit: type=1326 audit(1737417369.051:14890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8866 comm="syz.6.1847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=89 compat=0 ip=0x7fab6a235d29 code=0x7ffc0000
[  144.029803][   T29] audit: type=1326 audit(1737417369.051:14891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8866 comm="syz.6.1847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6a235d29 code=0x7ffc0000
[  144.058662][   T29] audit: type=1326 audit(1737417369.151:14892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8869 comm="syz.6.1849" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6a235d29 code=0x7ffc0000
[  144.082210][   T29] audit: type=1326 audit(1737417369.151:14893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8869 comm="syz.6.1849" exe="/root/syz-executor" sig=0 arch=c000003e syscall=89 compat=0 ip=0x7fab6a235d29 code=0x7ffc0000
[  144.113275][ T8878] loop1: detected capacity change from 0 to 1024
[  144.119957][ T8878] EXT4-fs: Ignoring removed nobh option
[  144.181100][ T8887] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1857'.
[  144.199102][ T8887] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1857'.
[  144.221361][ T8889] loop7: detected capacity change from 0 to 512
[  144.242667][   T11] EXT4-fs error (device loop2): ext4_release_dquot:6961: comm kworker/u8:0: Failed to release dquot type 1
[  144.271292][ T8889] ext4 filesystem being mounted at /70/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  144.320971][ T8903] loop2: detected capacity change from 0 to 512
[  144.335830][ T8904] loop7: detected capacity change from 0 to 1024
[  144.342533][ T8904] ext4: Unknown parameter 'smackfsfloor'
[  144.403980][ T8905] tmpfs: Bad value for 'mpol'
[  144.421043][ T8921] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1871'.
[  144.430816][ T8921] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1871'.
[  144.496837][ T8930] loop1: detected capacity change from 0 to 512
[  144.511267][ T8930] ext4 filesystem being mounted at /432/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  144.555652][ T8934] loop2: detected capacity change from 0 to 512
[  144.555663][ T8937] loop1: detected capacity change from 0 to 1024
[  144.555930][ T8937] ext4: Unknown parameter 'smackfsfloor'
[  144.562846][ T8934] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  144.596238][ T8934] EXT4-fs (loop2): 1 truncate cleaned up
[  144.634388][ T8943] loop3: detected capacity change from 0 to 1024
[  144.641244][ T8943] EXT4-fs: Ignoring removed nobh option
[  144.719632][ T8952] loop3: detected capacity change from 0 to 512
[  144.754530][ T8957] loop3: detected capacity change from 0 to 512
[  145.241364][ T8980] netlink: zone id is out of range
[  145.256731][ T8980] netlink: del zone limit has 4 unknown bytes
[  145.307550][ T8985] loop6: detected capacity change from 0 to 512
[  145.442739][ T9001] loop6: detected capacity change from 0 to 1024
[  145.449559][ T9001] ext4: Unknown parameter 'smackfsfloor'
[  145.793999][ T9011] loop2: detected capacity change from 0 to 1024
[  145.808741][ T9011] ext4 filesystem being mounted at /351/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  146.022119][ T9027] loop2: detected capacity change from 0 to 512
[  146.147033][ T9033] loop2: detected capacity change from 0 to 2048
[  146.231369][ T9038] netlink: zone id is out of range
[  146.236683][ T9038] netlink: del zone limit has 4 unknown bytes
[  146.255853][ T9039] xt_hashlimit: max too large, truncated to 1048576
[  146.326184][ T9044] loop1: detected capacity change from 0 to 8192
[  147.037213][ T9070] loop6: detected capacity change from 0 to 1024
[  147.043915][ T9070] ext4: Unknown parameter 'smackfsfloor'
[  147.239953][ T9078] FAULT_INJECTION: forcing a failure.
[  147.239953][ T9078] name failslab, interval 1, probability 0, space 0, times 0
[  147.252663][ T9078] CPU: 1 UID: 0 PID: 9078 Comm: syz.1.1926 Not tainted 6.13.0-syzkaller-00164-g100ceb4817a2 #0
[  147.263080][ T9078] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  147.273147][ T9078] Call Trace:
[  147.276513][ T9078]  <TASK>
[  147.279457][ T9078]  dump_stack_lvl+0xf2/0x150
[  147.284108][ T9078]  dump_stack+0x15/0x1a
[  147.288291][ T9078]  should_fail_ex+0x223/0x230
[  147.293031][ T9078]  should_failslab+0x8f/0xb0
[  147.297704][ T9078]  kmem_cache_alloc_noprof+0x52/0x320
[  147.303134][ T9078]  ? __kernfs_new_node+0x6a/0x380
[  147.308184][ T9078]  __kernfs_new_node+0x6a/0x380
[  147.313070][ T9078]  ? mod_objcg_state+0x2ea/0x4f0
[  147.318038][ T9078]  ? down_read+0x171/0x4b0
[  147.322727][ T9078]  kernfs_new_node+0xc8/0x140
[  147.327428][ T9078]  kernfs_create_link+0x6c/0x120
[  147.332395][ T9078]  sysfs_do_create_link_sd+0x6b/0xf0
[  147.337742][ T9078]  sysfs_create_link+0x51/0x70
[  147.342530][ T9078]  driver_sysfs_add+0x54/0x160
[  147.347324][ T9078]  really_probe+0x101/0x5d0
[  147.351837][ T9078]  __driver_probe_device+0x12d/0x200
[  147.357149][ T9078]  driver_probe_device+0x38/0x2f0
[  147.362403][ T9078]  __device_attach_driver+0x216/0x320
[  147.367822][ T9078]  ? __pfx___device_attach_driver+0x10/0x10
[  147.373761][ T9078]  bus_for_each_drv+0x1cd/0x240
[  147.378658][ T9078]  __device_attach+0x1c7/0x290
[  147.383539][ T9078]  device_attach+0x17/0x20
[  147.388025][ T9078]  proc_ioctl+0x339/0x400
[  147.392369][ T9078]  usbdev_ioctl+0x1f01/0x3e00
[  147.397134][ T9078]  ? do_vfs_ioctl+0x96e/0x1530
[  147.401985][ T9078]  ? selinux_file_ioctl+0x2f7/0x380
[  147.407199][ T9078]  ? __fget_files+0x17c/0x1c0
[  147.411897][ T9078]  ? __pfx_usbdev_ioctl+0x10/0x10
[  147.416935][ T9078]  __se_sys_ioctl+0xc9/0x140
[  147.421618][ T9078]  __x64_sys_ioctl+0x43/0x50
[  147.426248][ T9078]  x64_sys_call+0x1690/0x2dc0
[  147.430935][ T9078]  do_syscall_64+0xc9/0x1c0
[  147.435479][ T9078]  ? clear_bhb_loop+0x55/0xb0
[  147.440166][ T9078]  ? clear_bhb_loop+0x55/0xb0
[  147.444900][ T9078]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.451132][ T9078] RIP: 0033:0x7fe6a8d95d29
[  147.455593][ T9078] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.475237][ T9078] RSP: 002b:00007fe6a7407038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  147.483662][ T9078] RAX: ffffffffffffffda RBX: 00007fe6a8f85fa0 RCX: 00007fe6a8d95d29
[  147.491655][ T9078] RDX: 0000000020000040 RSI: 00000000c0105512 RDI: 0000000000000003
[  147.499714][ T9078] RBP: 00007fe6a7407090 R08: 0000000000000000 R09: 0000000000000000
[  147.507691][ T9078] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  147.515740][ T9078] R13: 0000000000000000 R14: 00007fe6a8f85fa0 R15: 00007ffc56e9d1e8
[  147.523724][ T9078]  </TASK>
[  147.526960][ T9078] hub 6-0:1.0: really_probe: driver_sysfs_add failed
[  147.559182][ T9083] 9pnet_fd: Insufficient options for proto=fd
[  147.589520][ T9089] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  147.589520][ T9089]    program syz.7.1931 not setting count and/or reply_len properly
[  147.628473][ T9089] loop7: detected capacity change from 0 to 512
[  147.646857][ T9095] __nla_validate_parse: 2 callbacks suppressed
[  147.646875][ T9095] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1932'.
[  147.646903][ T9096] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1932'.
[  147.657977][ T9089] EXT4-fs error (device loop7): ext4_acquire_dquot:6938: comm syz.7.1931: Failed to acquire dquot type 1
[  147.684513][ T9089] EXT4-fs (loop7): 1 truncate cleaned up
[  147.690897][ T9089] ext4 filesystem being mounted at /83/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  147.704467][ T9101] loop1: detected capacity change from 0 to 512
[  147.733234][ T9103] loop1: detected capacity change from 0 to 512
[  147.768929][ T9103] ext4 filesystem being mounted at /442/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  147.803229][ T9108] loop1: detected capacity change from 0 to 512
[  147.875326][ T9114] loop3: detected capacity change from 0 to 512
[  147.882794][ T9114] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  147.895878][ T9116] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  147.905252][ T9114] EXT4-fs (loop3): 1 truncate cleaned up
[  147.937833][ T9120] loop6: detected capacity change from 0 to 512
[  148.042957][ T9134] loop2: detected capacity change from 0 to 512
[  148.060149][ T9134] ext4 filesystem being mounted at /364/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  148.067465][ T9138] loop6: detected capacity change from 0 to 1024
[  148.078885][ T9138] ext4: Unknown parameter 'smackfsfloor'
[  148.109639][ T9142] loop2: detected capacity change from 0 to 1024
[  148.116365][ T9142] ext4: Unknown parameter 'smackfsfloor'
[  148.431621][  T356] EXT4-fs error (device loop7): ext4_release_dquot:6961: comm kworker/u8:5: Failed to release dquot type 1
[  148.552207][ T9150] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  148.810233][   T29] kauditd_printk_skb: 182 callbacks suppressed
[  148.810252][   T29] audit: type=1326 audit(1737417373.901:15072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9169 comm="syz.1.1960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  148.812872][ T9170] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1960'.
[  148.816616][   T29] audit: type=1326 audit(1737417373.901:15073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9169 comm="syz.1.1960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  148.850948][ T9170] loop1: detected capacity change from 0 to 1024
[  148.872582][   T29] audit: type=1326 audit(1737417373.901:15074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9169 comm="syz.1.1960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  148.888481][ T9170] ext4 filesystem being mounted at /449/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  148.902496][   T29] audit: type=1326 audit(1737417373.901:15075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9169 comm="syz.1.1960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  148.902533][   T29] audit: type=1326 audit(1737417373.901:15076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9169 comm="syz.1.1960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  148.902563][   T29] audit: type=1326 audit(1737417373.901:15077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9169 comm="syz.1.1960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  148.983679][   T29] audit: type=1326 audit(1737417373.901:15078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9169 comm="syz.1.1960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  149.007286][   T29] audit: type=1326 audit(1737417373.901:15079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9169 comm="syz.1.1960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  149.030801][   T29] audit: type=1326 audit(1737417373.901:15080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9169 comm="syz.1.1960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  149.049673][ T9179] loop6: detected capacity change from 0 to 512
[  149.054435][   T29] audit: type=1326 audit(1737417373.901:15081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9169 comm="syz.1.1960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  149.090465][ T9174] loop2: detected capacity change from 0 to 512
[  149.097828][ T9174] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  149.119859][ T9174] EXT4-fs (loop2): 1 truncate cleaned up
[  149.129779][ T9179] ext4 filesystem being mounted at /154/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  149.171129][ T9185] bpf_get_probe_write_proto: 20 callbacks suppressed
[  149.171195][ T9185] syz.6.1964[9185] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  149.179175][ T9185] syz.6.1964[9185] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  149.190756][ T9185] syz.6.1964[9185] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  149.228205][ T9188] loop6: detected capacity change from 0 to 512
[  149.305519][ T9194] loop2: detected capacity change from 0 to 512
[  149.321976][ T9196] loop6: detected capacity change from 0 to 512
[  149.338529][ T9198] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1971'.
[  149.353968][ T9198] loop2: detected capacity change from 0 to 1024
[  149.359684][ T9200] loop6: detected capacity change from 0 to 512
[  149.379160][ T9198] ext4 filesystem being mounted at /369/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  149.457958][ T9213] loop6: detected capacity change from 0 to 512
[  149.511595][ T9217] loop7: detected capacity change from 0 to 1024
[  149.527928][ T9217] ext4 filesystem being mounted at /91/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  149.591859][ T9227] loop7: detected capacity change from 0 to 512
[  149.638923][ T9235] netlink: zone id is out of range
[  149.644328][ T9235] netlink: del zone limit has 4 unknown bytes
[  149.671182][ T9237] loop7: detected capacity change from 0 to 512
[  149.715509][ T9243] FAULT_INJECTION: forcing a failure.
[  149.715509][ T9243] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  149.728690][ T9243] CPU: 0 UID: 0 PID: 9243 Comm: syz.7.1991 Not tainted 6.13.0-syzkaller-00164-g100ceb4817a2 #0
[  149.739137][ T9243] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  149.749254][ T9243] Call Trace:
[  149.749680][ T9248] netlink: 60 bytes leftover after parsing attributes in process `syz.6.1993'.
[  149.752555][ T9243]  <TASK>
[  149.752567][ T9243]  dump_stack_lvl+0xf2/0x150
[  149.769096][ T9243]  dump_stack+0x15/0x1a
[  149.773416][ T9243]  should_fail_ex+0x223/0x230
[  149.778163][ T9243]  should_fail+0xb/0x10
[  149.782510][ T9243]  should_fail_usercopy+0x1a/0x20
[  149.787827][ T9243]  _copy_to_user+0x20/0xa0
[  149.792270][ T9243]  simple_read_from_buffer+0xa0/0x110
[  149.797744][ T9243]  proc_fail_nth_read+0xf9/0x140
[  149.802711][ T9243]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  149.808284][ T9243]  vfs_read+0x1a2/0x700
[  149.812458][ T9243]  ? __rcu_read_unlock+0x4e/0x70
[  149.817427][ T9243]  ? __fget_files+0x17c/0x1c0
[  149.822145][ T9243]  ksys_read+0xe8/0x1b0
[  149.826321][ T9243]  __x64_sys_read+0x42/0x50
[  149.830844][ T9243]  x64_sys_call+0x2874/0x2dc0
[  149.835671][ T9243]  do_syscall_64+0xc9/0x1c0
[  149.840212][ T9243]  ? clear_bhb_loop+0x55/0xb0
[  149.844959][ T9243]  ? clear_bhb_loop+0x55/0xb0
[  149.849660][ T9243]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.855582][ T9243] RIP: 0033:0x7f7278c0473c
[  149.860000][ T9243] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  149.879738][ T9243] RSP: 002b:00007f7277271030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  149.888240][ T9243] RAX: ffffffffffffffda RBX: 00007f7278df5fa0 RCX: 00007f7278c0473c
[  149.896237][ T9243] RDX: 000000000000000f RSI: 00007f72772710a0 RDI: 0000000000000007
[  149.904271][ T9243] RBP: 00007f7277271090 R08: 0000000000000000 R09: 0000000000000000
[  149.912278][ T9243] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  149.920253][ T9243] R13: 0000000000000000 R14: 00007f7278df5fa0 R15: 00007ffe996daba8
[  149.928277][ T9243]  </TASK>
[  149.991147][ T9254] loop6: detected capacity change from 0 to 512
[  150.040322][ T9262] loop6: detected capacity change from 0 to 512
[  150.087825][ T9267] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  150.149425][ T9273] syz.6.2005[9273] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  150.149484][ T9273] syz.6.2005[9273] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  150.161406][ T9273] syz.6.2005[9273] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  150.302097][ T9288] loop2: detected capacity change from 0 to 512
[  150.383822][ T9297] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2016'.
[  150.398278][ T9297] loop6: detected capacity change from 0 to 1024
[  150.409036][ T9297] ext4 filesystem being mounted at /187/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  150.452576][ T9301] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2017'.
[  150.461735][ T9301] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2017'.
[  150.475493][ T9301] loop2: detected capacity change from 0 to 1024
[  150.482110][ T9301] EXT4-fs: Ignoring removed orlov option
[  150.527329][ T9305] syz.1.2018[9305] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  150.527393][ T9305] syz.1.2018[9305] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  150.539050][ T9305] syz.1.2018[9305] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  150.698275][ T9319] loop1: detected capacity change from 0 to 512
[  150.718305][ T9319] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  150.731224][ T9319] EXT4-fs (loop1): 1 truncate cleaned up
[  150.900330][ T9329] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2028'.
[  150.914452][ T9327] loop7: detected capacity change from 0 to 512
[  150.916685][ T9329] loop1: detected capacity change from 0 to 1024
[  150.921939][ T9327] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  150.949945][ T9327] EXT4-fs (loop7): 1 truncate cleaned up
[  150.960718][ T9329] ext4 filesystem being mounted at /460/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  151.122015][ T9345] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  151.122015][ T9345]    program syz.7.2034 not setting count and/or reply_len properly
[  151.139836][ T9342] loop3: detected capacity change from 0 to 1024
[  151.168775][ T9342] ext4 filesystem being mounted at /407/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  151.195091][ T9345] loop7: detected capacity change from 0 to 512
[  151.230103][ T9356] loop3: detected capacity change from 0 to 128
[  151.235402][ T9345] EXT4-fs error (device loop7): ext4_acquire_dquot:6938: comm syz.7.2034: Failed to acquire dquot type 1
[  151.249062][ T9345] EXT4-fs (loop7): 1 truncate cleaned up
[  151.255595][ T9345] ext4 filesystem being mounted at /104/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  151.291680][ T9361] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2039'.
[  151.303769][ T9363] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  151.330041][ T9361] loop1: detected capacity change from 0 to 1024
[  151.361081][ T9361] ext4 filesystem being mounted at /465/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  151.380719][ T9371] loop2: detected capacity change from 0 to 128
[  151.549841][ T9389] loop1: detected capacity change from 0 to 512
[  151.558111][ T9389] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  151.569766][ T9389] EXT4-fs (loop1): 1 truncate cleaned up
[  151.694692][ T9397] loop6: detected capacity change from 0 to 1024
[  151.701555][ T9397] EXT4-fs: Ignoring removed orlov option
[  151.769282][ T9402] loop1: detected capacity change from 0 to 1024
[  151.799026][ T9402] ext4 filesystem being mounted at /471/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  151.981500][ T1728] EXT4-fs error (device loop7): ext4_release_dquot:6961: comm kworker/u8:7: Failed to release dquot type 1
[  152.077032][ T9413] netlink: 'syz.1.2058': attribute type 2 has an invalid length.
[  152.176978][ T9420] loop7: detected capacity change from 0 to 512
[  152.209594][ T9420] ext4 filesystem being mounted at /106/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  152.294613][ T9427] FAULT_INJECTION: forcing a failure.
[  152.294613][ T9427] name failslab, interval 1, probability 0, space 0, times 0
[  152.307654][ T9427] CPU: 0 UID: 0 PID: 9427 Comm: syz.7.2062 Not tainted 6.13.0-syzkaller-00164-g100ceb4817a2 #0
[  152.318107][ T9427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  152.328180][ T9427] Call Trace:
[  152.331472][ T9427]  <TASK>
[  152.334423][ T9427]  dump_stack_lvl+0xf2/0x150
[  152.339068][ T9427]  dump_stack+0x15/0x1a
[  152.343308][ T9427]  should_fail_ex+0x223/0x230
[  152.348017][ T9427]  should_failslab+0x8f/0xb0
[  152.352646][ T9427]  __kmalloc_noprof+0xab/0x3f0
[  152.357440][ T9427]  ? genl_family_rcv_msg_attrs_parse+0x75/0x1a0
[  152.363737][ T9427]  genl_family_rcv_msg_attrs_parse+0x75/0x1a0
[  152.369854][ T9427]  ? ns_capable+0x7d/0xb0
[  152.374232][ T9427]  genl_rcv_msg+0x470/0x6c0
[  152.378800][ T9427]  ? __pfx_ethnl_set_features+0x10/0x10
[  152.384369][ T9427]  ? __dev_queue_xmit+0xb6e/0x2090
[  152.389530][ T9427]  ? ref_tracker_free+0x3a5/0x410
[  152.394604][ T9427]  ? __dev_queue_xmit+0x186/0x2090
[  152.399750][ T9427]  netlink_rcv_skb+0x12c/0x230
[  152.404598][ T9427]  ? __pfx_genl_rcv_msg+0x10/0x10
[  152.409667][ T9427]  genl_rcv+0x28/0x40
[  152.413692][ T9427]  netlink_unicast+0x599/0x670
[  152.418525][ T9427]  netlink_sendmsg+0x5cc/0x6e0
[  152.423425][ T9427]  ? __pfx_netlink_sendmsg+0x10/0x10
[  152.428747][ T9427]  __sock_sendmsg+0x140/0x180
[  152.433576][ T9427]  ____sys_sendmsg+0x312/0x410
[  152.438476][ T9427]  __sys_sendmsg+0x19d/0x230
[  152.443135][ T9427]  __x64_sys_sendmsg+0x46/0x50
[  152.448021][ T9427]  x64_sys_call+0x2734/0x2dc0
[  152.452804][ T9427]  do_syscall_64+0xc9/0x1c0
[  152.457326][ T9427]  ? clear_bhb_loop+0x55/0xb0
[  152.462040][ T9427]  ? clear_bhb_loop+0x55/0xb0
[  152.466740][ T9427]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.472663][ T9427] RIP: 0033:0x7f7278c05d29
[  152.477100][ T9427] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  152.496814][ T9427] RSP: 002b:00007f7277271038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  152.505263][ T9427] RAX: ffffffffffffffda RBX: 00007f7278df5fa0 RCX: 00007f7278c05d29
[  152.513262][ T9427] RDX: 0000000000000000 RSI: 0000000020001980 RDI: 0000000000000008
[  152.521318][ T9427] RBP: 00007f7277271090 R08: 0000000000000000 R09: 0000000000000000
[  152.529349][ T9427] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  152.537353][ T9427] R13: 0000000000000000 R14: 00007f7278df5fa0 R15: 00007ffe996daba8
[  152.545468][ T9427]  </TASK>
[  152.580371][ T9431] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  152.600762][ T9435] loop3: detected capacity change from 0 to 1024
[  152.618942][ T9438] loop6: detected capacity change from 0 to 512
[  152.631170][ T9435] FAULT_INJECTION: forcing a failure.
[  152.631170][ T9435] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  152.644388][ T9435] CPU: 1 UID: 0 PID: 9435 Comm: syz.3.2066 Not tainted 6.13.0-syzkaller-00164-g100ceb4817a2 #0
[  152.654809][ T9435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  152.664960][ T9435] Call Trace:
[  152.668259][ T9435]  <TASK>
[  152.671214][ T9435]  dump_stack_lvl+0xf2/0x150
[  152.676029][ T9435]  dump_stack+0x15/0x1a
[  152.680300][ T9435]  should_fail_ex+0x223/0x230
[  152.685103][ T9435]  should_fail+0xb/0x10
[  152.689285][ T9435]  should_fail_usercopy+0x1a/0x20
[  152.694344][ T9435]  _copy_from_user+0x1c/0xa0
[  152.699037][ T9435]  lo_ioctl+0x31d/0x11c0
[  152.703319][ T9435]  ? avc_has_extended_perms+0x6e9/0x8e0
[  152.708962][ T9435]  ? blkdev_common_ioctl+0xabc/0x1940
[  152.714514][ T9435]  ? do_vfs_ioctl+0x96e/0x1530
[  152.719317][ T9435]  ? selinux_file_ioctl+0x2f7/0x380
[  152.724552][ T9435]  ? __pfx_lo_ioctl+0x10/0x10
[  152.729357][ T9435]  blkdev_ioctl+0x359/0x450
[  152.733900][ T9435]  ? __pfx_blkdev_ioctl+0x10/0x10
[  152.739001][ T9435]  __se_sys_ioctl+0xc9/0x140
[  152.743631][ T9435]  __x64_sys_ioctl+0x43/0x50
[  152.748289][ T9435]  x64_sys_call+0x1690/0x2dc0
[  152.753002][ T9435]  do_syscall_64+0xc9/0x1c0
[  152.757533][ T9435]  ? clear_bhb_loop+0x55/0xb0
[  152.762391][ T9435]  ? clear_bhb_loop+0x55/0xb0
[  152.767124][ T9435]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.773129][ T9435] RIP: 0033:0x7fb7effc5d29
[  152.777628][ T9435] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  152.797272][ T9435] RSP: 002b:00007fb7ee631038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  152.805711][ T9435] RAX: ffffffffffffffda RBX: 00007fb7f01b5fa0 RCX: 00007fb7effc5d29
[  152.813710][ T9435] RDX: 00000000200002c0 RSI: 0000000000004c0a RDI: 0000000000000009
[  152.821750][ T9435] RBP: 00007fb7ee631090 R08: 0000000000000000 R09: 0000000000000000
[  152.829794][ T9435] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  152.837790][ T9435] R13: 0000000000000000 R14: 00007fb7f01b5fa0 R15: 00007fff26528348
[  152.845804][ T9435]  </TASK>
[  152.875847][ T9443] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  152.875847][ T9443]    program syz.7.2068 not setting count and/or reply_len properly
[  152.893644][ T9438] ext4 filesystem being mounted at /196/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  152.956025][ T9446] syz.3.2069[9446] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  152.976618][ T9443] loop7: detected capacity change from 0 to 512
[  153.032497][ T9443] EXT4-fs error (device loop7): ext4_acquire_dquot:6938: comm syz.7.2068: Failed to acquire dquot type 1
[  153.051842][ T9452] loop1: detected capacity change from 0 to 512
[  153.055085][ T9443] EXT4-fs (loop7): 1 truncate cleaned up
[  153.064371][ T9443] ext4 filesystem being mounted at /109/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  153.074541][ T9452] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  153.088063][ T9458] loop6: detected capacity change from 0 to 512
[  153.097807][ T9458] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  153.122507][ T9452] EXT4-fs (loop1): 1 truncate cleaned up
[  153.123004][ T9461] loop3: detected capacity change from 0 to 512
[  153.136219][ T9458] EXT4-fs (loop6): 1 truncate cleaned up
[  153.227630][ T9466] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  153.227630][ T9466]    program syz.1.2076 not setting count and/or reply_len properly
[  153.286165][ T9466] loop1: detected capacity change from 0 to 512
[  153.313765][ T9466] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.2076: Failed to acquire dquot type 1
[  153.344211][ T9466] EXT4-fs (loop1): 1 truncate cleaned up
[  153.351429][ T9466] ext4 filesystem being mounted at /477/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  153.430270][   T36] EXT4-fs error (device loop1): ext4_release_dquot:6961: comm kworker/u8:2: Failed to release dquot type 1
[  153.571492][ T9498] loop3: detected capacity change from 0 to 512
[  153.578470][ T9498] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  153.590359][ T9498] EXT4-fs (loop3): 1 truncate cleaned up
[  153.694124][ T9507] __nla_validate_parse: 3 callbacks suppressed
[  153.694142][ T9507] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2091'.
[  153.694479][ T9509] FAULT_INJECTION: forcing a failure.
[  153.694479][ T9509] name failslab, interval 1, probability 0, space 0, times 0
[  153.700458][ T9507] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2091'.
[  153.709359][ T9509] CPU: 1 UID: 0 PID: 9509 Comm: syz.6.2092 Not tainted 6.13.0-syzkaller-00164-g100ceb4817a2 #0
[  153.741138][ T9509] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  153.751218][ T9509] Call Trace:
[  153.754511][ T9509]  <TASK>
[  153.757458][ T9509]  dump_stack_lvl+0xf2/0x150
[  153.762156][ T9509]  dump_stack+0x15/0x1a
[  153.766355][ T9509]  should_fail_ex+0x223/0x230
[  153.771086][ T9509]  should_failslab+0x8f/0xb0
[  153.775790][ T9509]  kmem_cache_alloc_node_noprof+0x59/0x320
[  153.781656][ T9509]  ? set_task_ioprio+0x16a/0x260
[  153.786724][ T9509]  set_task_ioprio+0x16a/0x260
[  153.791522][ T9509]  __se_sys_ioprio_set+0x422/0x580
[  153.796677][ T9509]  __x64_sys_ioprio_set+0x43/0x50
[  153.801789][ T9509]  x64_sys_call+0x26e4/0x2dc0
[  153.806489][ T9509]  do_syscall_64+0xc9/0x1c0
[  153.811110][ T9509]  ? clear_bhb_loop+0x55/0xb0
[  153.815905][ T9509]  ? clear_bhb_loop+0x55/0xb0
[  153.820630][ T9509]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.826667][ T9509] RIP: 0033:0x7fab6a235d29
[  153.831174][ T9509] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  153.850878][ T9509] RSP: 002b:00007fab688a1038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fb
[  153.859298][ T9509] RAX: ffffffffffffffda RBX: 00007fab6a425fa0 RCX: 00007fab6a235d29
[  153.867322][ T9509] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002
[  153.875341][ T9509] RBP: 00007fab688a1090 R08: 0000000000000000 R09: 0000000000000000
[  153.883316][ T9509] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  153.891391][ T9509] R13: 0000000000000000 R14: 00007fab6a425fa0 R15: 00007fff7848b808
[  153.899370][ T9509]  </TASK>
[  153.925100][ T9507] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2091'.
[  153.932696][   T36] __quota_error: 450 callbacks suppressed
[  153.932714][   T36] Quota error (device loop7): do_check_range: Getting block 0 out of range 1-5
[  153.937441][ T9511] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2091'.
[  153.939779][   T36] EXT4-fs error (device loop7): ext4_release_dquot:6961: comm kworker/u8:2: Failed to release dquot type 1
[  153.952183][ T9511] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2091'.
[  153.983348][ T9507] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2091'.
[  153.992570][ T9507] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2091'.
[  154.001618][ T9507] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2091'.
[  154.031781][ T9507] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2091'.
[  154.040966][ T9507] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2091'.
[  154.209864][   T29] audit: type=1326 audit(1737417379.301:15524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9530 comm="syz.6.2100" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fab6a235d29 code=0x0
[  154.239003][ T9543] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  154.239003][ T9543]    program syz.3.2104 not setting count and/or reply_len properly
[  154.278651][ T9543] loop3: detected capacity change from 0 to 512
[  154.288896][ T9543] Quota error (device loop3): write_blk: dquota write failed
[  154.296564][ T9543] Quota error (device loop3): qtree_write_dquot: Error -28 occurred while creating quota
[  154.306555][ T9543] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.2104: Failed to acquire dquot type 1
[  154.321083][ T9543] EXT4-fs (loop3): 1 truncate cleaned up
[  154.327822][ T9543] ext4 filesystem being mounted at /426/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  154.366939][   T29] audit: type=1326 audit(1737417379.451:15525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9556 comm="syz.1.2109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  154.368682][ T9557] loop1: detected capacity change from 0 to 1024
[  154.391667][   T29] audit: type=1326 audit(1737417379.451:15526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9556 comm="syz.1.2109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  154.418877][ T9557] ext4 filesystem being mounted at /481/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  154.420599][   T29] audit: type=1326 audit(1737417379.451:15527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9556 comm="syz.1.2109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  154.454619][   T29] audit: type=1326 audit(1737417379.451:15528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9556 comm="syz.1.2109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  154.478333][   T29] audit: type=1326 audit(1737417379.451:15529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9556 comm="syz.1.2109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  154.501841][   T29] audit: type=1326 audit(1737417379.451:15530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9556 comm="syz.1.2109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  154.553690][ T9569] loop2: detected capacity change from 0 to 512
[  154.563589][ T9569] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  154.585401][ T9569] EXT4-fs (loop2): 1 truncate cleaned up
[  154.772451][ T9591] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  154.982752][ T9605] bpf_get_probe_write_proto: 8 callbacks suppressed
[  154.982765][ T9605] syz.7.2128[9605] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  154.989620][ T9605] syz.7.2128[9605] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  155.001421][ T9605] syz.7.2128[9605] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  155.083292][  T356] EXT4-fs error (device loop3): ext4_release_dquot:6961: comm kworker/u8:5: Failed to release dquot type 1
[  155.104084][ T9613] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  155.138661][ T9617] loop7: detected capacity change from 0 to 512
[  155.210050][ T9622] loop3: detected capacity change from 0 to 512
[  155.301181][ T9629] loop3: detected capacity change from 0 to 8192
[  155.436287][ T9634] loop6: detected capacity change from 0 to 512
[  155.465528][ T9636] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  155.465528][ T9636]    program syz.6.2142 not setting count and/or reply_len properly
[  155.488316][ T9638] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  155.488316][ T9638]    program syz.2.2143 not setting count and/or reply_len properly
[  155.508708][ T9636] loop6: detected capacity change from 0 to 512
[  155.528702][ T9636] EXT4-fs error (device loop6): ext4_acquire_dquot:6938: comm syz.6.2142: Failed to acquire dquot type 1
[  155.532013][ T9638] loop2: detected capacity change from 0 to 512
[  155.541078][ T9636] EXT4-fs (loop6): 1 truncate cleaned up
[  155.553643][ T9636] ext4 filesystem being mounted at /222/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  155.575920][ T9638] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.2143: Failed to acquire dquot type 1
[  155.588201][ T9638] EXT4-fs (loop2): 1 truncate cleaned up
[  155.594447][ T9638] ext4 filesystem being mounted at /381/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  155.650807][ T9649] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  155.695958][ T9654] loop1: detected capacity change from 0 to 512
[  155.723424][ T9656] loop1: detected capacity change from 0 to 512
[  156.067288][ T9671] loop7: detected capacity change from 0 to 512
[  156.078479][ T9671] ext4 filesystem being mounted at /125/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  156.091683][ T9671] EXT4-fs error (device loop7): ext4_do_update_inode:5154: inode #2: comm syz.7.2154: corrupted inode contents
[  156.103942][ T9671] EXT4-fs error (device loop7): ext4_dirty_inode:6042: inode #2: comm syz.7.2154: mark_inode_dirty error
[  156.115669][ T9671] EXT4-fs error (device loop7): ext4_do_update_inode:5154: inode #2: comm syz.7.2154: corrupted inode contents
[  156.127751][ T9671] EXT4-fs error (device loop7): __ext4_ext_dirty:207: inode #2: comm syz.7.2154: mark_inode_dirty error
[  156.144740][ T9671] netlink: 'syz.7.2154': attribute type 3 has an invalid length.
[  156.211567][ T9679] loop7: detected capacity change from 0 to 512
[  156.239802][ T9682] loop7: detected capacity change from 0 to 512
[  156.311202][   T36] EXT4-fs error (device loop6): ext4_release_dquot:6961: comm kworker/u8:2: Failed to release dquot type 1
[  156.341666][  T356] EXT4-fs error (device loop2): ext4_release_dquot:6961: comm kworker/u8:5: Failed to release dquot type 1
[  156.393468][ T9698] loop7: detected capacity change from 0 to 1024
[  156.409072][ T9698] ext4 filesystem being mounted at /133/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  156.434536][ T9700] loop6: detected capacity change from 0 to 8192
[  156.457731][ T9708] netlink: zone id is out of range
[  156.463247][ T9708] netlink: del zone limit has 4 unknown bytes
[  156.506743][ T9714] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  156.506743][ T9714]    program syz.2.2173 not setting count and/or reply_len properly
[  156.544367][ T9719] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  156.544367][ T9719]    program syz.7.2174 not setting count and/or reply_len properly
[  156.550817][ T9714] loop2: detected capacity change from 0 to 512
[  156.583476][ T9719] loop7: detected capacity change from 0 to 512
[  156.601965][ T9714] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.2173: Failed to acquire dquot type 1
[  156.614067][ T9714] EXT4-fs (loop2): 1 truncate cleaned up
[  156.620267][ T9714] ext4 filesystem being mounted at /387/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  156.633100][ T9719] EXT4-fs error (device loop7): ext4_acquire_dquot:6938: comm syz.7.2174: Failed to acquire dquot type 1
[  156.648149][ T9719] EXT4-fs (loop7): 1 truncate cleaned up
[  156.654334][ T9719] ext4 filesystem being mounted at /135/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  156.737487][ T9735] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  156.800199][ T9739] loop1: detected capacity change from 0 to 1024
[  156.817842][ T9739] ext4 filesystem being mounted at /503/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  156.899528][ T9749] loop1: detected capacity change from 0 to 128
[  157.211376][ T9761] loop3: detected capacity change from 0 to 128
[  157.321697][ T9765] loop6: detected capacity change from 0 to 1024
[  157.352879][ T3306] EXT4-fs unmount: 116 callbacks suppressed
[  157.352899][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.456949][  T356] EXT4-fs error (device loop2): ext4_release_dquot:6961: comm kworker/u8:5: Failed to release dquot type 1
[  157.472214][ T7673] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.482587][ T9765] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  157.495182][ T5554] EXT4-fs error (device loop7): ext4_release_dquot:6961: comm kworker/u8:10: Failed to release dquot type 1
[  157.526222][ T9765] ext4 filesystem being mounted at /226/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  157.601181][ T9773] loop7: detected capacity change from 0 to 1024
[  157.611057][ T9775] netlink: zone id is out of range
[  157.625381][ T7047] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.636173][ T9773] EXT4-fs: Ignoring removed orlov option
[  157.654914][ T9775] netlink: del zone limit has 4 unknown bytes
[  157.663629][ T9773] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  157.760592][ T9789] loop6: detected capacity change from 0 to 128
[  157.846581][ T9792] loop6: detected capacity change from 0 to 512
[  157.913891][ T9796] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  157.913891][ T9796]    program syz.1.2203 not setting count and/or reply_len properly
[  157.957437][ T9800] loop3: detected capacity change from 0 to 512
[  157.980021][ T9800] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  157.996047][ T9796] loop1: detected capacity change from 0 to 512
[  158.008933][ T9796] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.2203: Failed to acquire dquot type 1
[  158.020374][ T9800] EXT4-fs (loop3): 1 truncate cleaned up
[  158.028560][ T9796] EXT4-fs (loop1): 1 truncate cleaned up
[  158.036825][ T9796] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  158.059715][ T9800] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  158.076614][ T9809] loop6: detected capacity change from 0 to 512
[  158.083465][ T9796] ext4 filesystem being mounted at /508/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  158.213383][ T9809] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  158.366596][ T9809] ext4 filesystem being mounted at /231/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  158.438458][ T7673] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.450975][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.461698][ T7047] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  158.549437][ T9821] 9pnet: p9_errstr2errno: server reported unknown error 
[  158.600198][ T9827] syz.3.2210[9827] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  158.600319][ T9827] syz.3.2210[9827] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  158.636950][ T9827] syz.3.2210[9827] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  158.666212][ T9831] loop6: detected capacity change from 0 to 128
[  158.688465][ T9833] syz.7.2215[9833] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  158.688543][ T9833] syz.7.2215[9833] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  158.702264][ T9831] __nla_validate_parse: 21 callbacks suppressed
[  158.702283][ T9831] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2214'.
[  158.738182][ T9833] syz.7.2215[9833] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  158.758283][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.761171][ T9838] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  158.761171][ T9838]    program syz.2.2216 not setting count and/or reply_len properly
[  158.791939][ T9837] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  158.807160][  T356] EXT4-fs error (device loop1): ext4_release_dquot:6961: comm kworker/u8:5: Failed to release dquot type 1
[  158.839197][ T9838] loop2: detected capacity change from 0 to 512
[  158.856623][ T9845] loop1: detected capacity change from 0 to 1024
[  158.863908][ T9845] EXT4-fs: Ignoring removed orlov option
[  158.883163][ T9845] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  158.897765][ T9838] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.2216: Failed to acquire dquot type 1
[  158.929454][ T9850] loop7: detected capacity change from 0 to 512
[  158.983655][ T9853] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2221'.
[  158.996646][ T9853] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2221'.
[  159.027105][ T9838] EXT4-fs (loop2): 1 truncate cleaned up
[  159.033260][ T9838] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  159.136555][ T9838] ext4 filesystem being mounted at /394/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  159.210336][   T29] kauditd_printk_skb: 249 callbacks suppressed
[  159.210421][   T29] audit: type=1326 audit(1737417384.301:15762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9854 comm="syz.3.2222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7effc5d29 code=0x7ffc0000
[  159.267660][   T29] audit: type=1326 audit(1737417384.301:15763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9854 comm="syz.3.2222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7effc5d29 code=0x7ffc0000
[  159.291358][   T29] audit: type=1326 audit(1737417384.301:15764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9854 comm="syz.3.2222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=89 compat=0 ip=0x7fb7effc5d29 code=0x7ffc0000
[  159.300891][ T9850] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  159.315322][   T29] audit: type=1326 audit(1737417384.301:15765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9854 comm="syz.3.2222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7effc5d29 code=0x7ffc0000
[  159.332860][   T29] audit: type=1326 audit(1737417384.421:15766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9858 comm="syz.3.2223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7effc5d29 code=0x7ffc0000
[  159.374930][   T29] audit: type=1326 audit(1737417384.421:15767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9858 comm="syz.3.2223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7effc5d29 code=0x7ffc0000
[  159.383121][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.398413][   T29] audit: type=1326 audit(1737417384.451:15768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9858 comm="syz.3.2223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb7effc5d29 code=0x7ffc0000
[  159.411663][ T5554] Quota error (device loop2): do_check_range: Getting block 0 out of range 1-5
[  159.431473][   T29] audit: type=1326 audit(1737417384.451:15769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9858 comm="syz.3.2223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7effc5d29 code=0x7ffc0000
[  159.431507][   T29] audit: type=1326 audit(1737417384.451:15770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9858 comm="syz.3.2223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7effc5d29 code=0x7ffc0000
[  159.487718][ T5554] EXT4-fs error (device loop2): ext4_release_dquot:6961: comm kworker/u8:10: Failed to release dquot type 1
[  159.509746][ T9850] ext4 filesystem being mounted at /142/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  159.516095][ T9861] syz.2.2224[9861] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  159.613727][ T9868] loop3: detected capacity change from 0 to 512
[  159.633009][ T7673] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  159.699444][ T9874] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  159.699444][ T9874]    program syz.6.2229 not setting count and/or reply_len properly
[  159.727212][ T9873] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2228'.
[  159.750260][ T9868] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  159.765307][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.775138][ T9868] ext4 filesystem being mounted at /447/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  159.797162][ T9873] netlink: 'syz.7.2228': attribute type 2 has an invalid length.
[  159.812420][ T9879] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2230'.
[  159.862171][ T9880] loop6: detected capacity change from 0 to 512
[  159.940749][ T9880] EXT4-fs error (device loop6): ext4_acquire_dquot:6938: comm syz.6.2229: Failed to acquire dquot type 1
[  159.994975][ T9880] EXT4-fs (loop6): 1 truncate cleaned up
[  160.002609][ T9890] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2232'.
[  160.022066][ T9880] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.184044][ T9880] ext4 filesystem being mounted at /236/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  160.227373][ T9890] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2232'.
[  160.259547][ T9892] bpf_get_probe_write_proto: 2 callbacks suppressed
[  160.259568][ T9892] syz.1.2233[9892] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  160.266338][ T9892] syz.1.2233[9892] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  160.279159][ T9892] syz.1.2233[9892] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  160.439770][ T9899] syz.2.2236[9899] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  160.451556][ T9899] syz.2.2236[9899] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  160.463231][ T9899] syz.2.2236[9899] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  160.526245][ T9904] syz.1.2238[9904] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  160.552604][ T7047] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.579826][  T356] EXT4-fs error (device loop6): ext4_release_dquot:6961: comm kworker/u8:5: Failed to release dquot type 1
[  160.592534][ T9904] syz.1.2238[9904] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  160.592658][ T9904] syz.1.2238[9904] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  160.638960][ T9910] loop2: detected capacity change from 0 to 512
[  160.667520][ T9906] loop7: detected capacity change from 0 to 1024
[  160.674924][ T9906] EXT4-fs: Ignoring removed orlov option
[  160.689119][ T9906] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.708487][ T9913] syz.1.2242[9913] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  160.871124][ T9927] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2248'.
[  160.910093][ T9930] loop1: detected capacity change from 0 to 1024
[  160.921408][ T9930] EXT4-fs: Ignoring removed orlov option
[  160.927326][ T9927] netlink: 'syz.6.2248': attribute type 2 has an invalid length.
[  160.938247][ T9930] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.966597][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.996691][ T9935] netlink: zone id is out of range
[  161.002224][ T9935] netlink: del zone limit has 4 unknown bytes
[  161.103765][ T9939] loop3: detected capacity change from 0 to 512
[  161.235932][ T9943] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  161.314516][ T9945] loop3: detected capacity change from 0 to 512
[  161.339687][ T9945] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.353898][ T9945] ext4 filesystem being mounted at /452/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  161.367846][ T9945] EXT4-fs error (device loop3): ext4_do_update_inode:5154: inode #2: comm syz.3.2254: corrupted inode contents
[  161.379846][ T9945] EXT4-fs error (device loop3): ext4_dirty_inode:6042: inode #2: comm syz.3.2254: mark_inode_dirty error
[  161.391338][ T9945] EXT4-fs error (device loop3): ext4_do_update_inode:5154: inode #2: comm syz.3.2254: corrupted inode contents
[  161.403320][ T9945] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #2: comm syz.3.2254: mark_inode_dirty error
[  161.424741][ T9945] netlink: 'syz.3.2254': attribute type 3 has an invalid length.
[  161.459129][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.469601][ T7673] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.562949][ T9959] netlink: 60 bytes leftover after parsing attributes in process `syz.7.2260'.
[  161.572713][ T9959] netlink: 60 bytes leftover after parsing attributes in process `syz.7.2260'.
[  161.599821][ T9961] netlink: zone id is out of range
[  161.605065][ T9961] netlink: del zone limit has 4 unknown bytes
[  161.735383][ T9972] loop6: detected capacity change from 0 to 1024
[  161.750443][ T9972] EXT4-fs: Ignoring removed orlov option
[  161.771706][ T9972] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.786064][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.801713][ T9982] loop7: detected capacity change from 0 to 512
[  161.849375][ T9982] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  161.871332][ T9982] EXT4-fs (loop7): 1 truncate cleaned up
[  161.879986][ T9982] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.988510][ T7673] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.008260][T10001] netlink: 'syz.7.2276': attribute type 2 has an invalid length.
[  162.568298][ T7047] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.638369][T10014] loop6: detected capacity change from 0 to 1024
[  162.645083][T10014] EXT4-fs: Ignoring removed orlov option
[  162.653838][T10014] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  162.729917][T10021] loop2: detected capacity change from 0 to 512
[  162.769727][T10021] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  162.786005][T10021] ext4 filesystem being mounted at /406/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  162.811634][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  163.166176][T10054] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  163.485159][ T7047] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.783927][T10072] __nla_validate_parse: 11 callbacks suppressed
[  163.784023][T10072] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2299'.
[  163.817186][T10072] netlink: 'syz.7.2299': attribute type 2 has an invalid length.
[  163.964403][T10074] loop1: detected capacity change from 0 to 512
[  163.989032][T10074] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.002787][T10074] ext4 filesystem being mounted at /528/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  164.015013][T10074] EXT4-fs error (device loop1): ext4_do_update_inode:5154: inode #2: comm syz.1.2300: corrupted inode contents
[  164.028656][T10074] EXT4-fs error (device loop1): ext4_dirty_inode:6042: inode #2: comm syz.1.2300: mark_inode_dirty error
[  164.040447][T10074] EXT4-fs error (device loop1): ext4_do_update_inode:5154: inode #2: comm syz.1.2300: corrupted inode contents
[  164.053305][T10074] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #2: comm syz.1.2300: mark_inode_dirty error
[  164.068642][T10074] netlink: 'syz.1.2300': attribute type 3 has an invalid length.
[  164.090215][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.109791][T10080] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2301'.
[  164.119055][T10080] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2301'.
[  164.149175][T10082] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2302'.
[  164.158131][T10082] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2302'.
[  164.168939][T10082] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2302'.
[  164.204249][T10082] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2302'.
[  164.213213][T10082] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2302'.
[  164.226555][T10082] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2302'.
[  164.234168][T10045] loop3: detected capacity change from 0 to 8192
[  164.237594][T10085] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2303'.
[  164.314026][   T29] kauditd_printk_skb: 193 callbacks suppressed
[  164.314042][   T29] audit: type=1326 audit(1737417389.401:15961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10092 comm="syz.1.2304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  164.348733][   T29] audit: type=1326 audit(1737417389.401:15962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10092 comm="syz.1.2304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  164.372600][   T29] audit: type=1326 audit(1737417389.401:15963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10092 comm="syz.1.2304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  164.396351][   T29] audit: type=1326 audit(1737417389.401:15964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10092 comm="syz.1.2304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=328 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  164.420168][   T29] audit: type=1326 audit(1737417389.401:15965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10092 comm="syz.1.2304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  164.443774][   T29] audit: type=1326 audit(1737417389.401:15966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10092 comm="syz.1.2304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=89 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  164.467512][   T29] audit: type=1326 audit(1737417389.401:15967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10092 comm="syz.1.2304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  164.491167][   T29] audit: type=1326 audit(1737417389.401:15968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10092 comm="syz.1.2304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  164.497572][T10100] loop6: detected capacity change from 0 to 1024
[  164.514679][   T29] audit: type=1326 audit(1737417389.401:15969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10092 comm="syz.1.2304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  164.514716][   T29] audit: type=1326 audit(1737417389.401:15970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10092 comm="syz.1.2304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe6a8d95d29 code=0x7ffc0000
[  164.549136][T10102] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  164.570037][T10100] EXT4-fs: Ignoring removed orlov option
[  164.629529][T10100] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.944996][T10133] loop3: detected capacity change from 0 to 512
[  165.018006][T10133] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  165.227491][T10133] EXT4-fs (loop3): 1 truncate cleaned up
[  165.234005][T10133] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.322511][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.350757][ T7047] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.371083][T10150] loop3: detected capacity change from 0 to 512
[  165.378988][T10150] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  165.396034][T10150] EXT4-fs (loop3): 1 truncate cleaned up
[  165.398936][T10152] loop6: detected capacity change from 0 to 512
[  165.402293][T10150] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.464219][T10152] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.477308][T10152] ext4 filesystem being mounted at /248/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  165.580173][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.619020][T10165] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  165.619020][T10165]    program syz.3.2327 not setting count and/or reply_len properly
[  165.685615][T10165] loop3: detected capacity change from 0 to 512
[  165.699052][T10165] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.2327: Failed to acquire dquot type 1
[  165.797118][T10165] EXT4-fs (loop3): 1 truncate cleaned up
[  165.803197][T10165] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.888964][T10165] ext4 filesystem being mounted at /467/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  165.951494][T10183] loop7: detected capacity change from 0 to 512
[  166.003951][T10183] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  166.216475][T10183] EXT4-fs (loop7): 1 truncate cleaned up
[  166.266839][T10183] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  166.417086][ T7673] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.459405][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.479629][  T356] EXT4-fs error (device loop3): ext4_release_dquot:6961: comm kworker/u8:5: Failed to release dquot type 1
[  166.563872][ T7047] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.738935][T10214] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  167.192246][T10230] loop7: detected capacity change from 0 to 1024
[  167.200900][ T3299] ==================================================================
[  167.209019][ T3299] BUG: KCSAN: data-race in shmem_getattr / shmem_recalc_inode
[  167.216529][ T3299] 
[  167.218868][ T3299] read-write to 0xffff88811873a2f0 of 8 bytes by task 10236 on cpu 1:
[  167.227132][ T3299]  shmem_recalc_inode+0x36/0x1b0
[  167.232097][ T3299]  shmem_get_folio_gfp+0x7ce/0xd90
[  167.237238][ T3299]  shmem_write_begin+0xa2/0x180
[  167.242109][ T3299]  generic_perform_write+0x1a8/0x4a0
[  167.247413][ T3299]  shmem_file_write_iter+0xc2/0xe0
[  167.252552][ T3299]  __kernel_write_iter+0x24b/0x4e0
[  167.257692][ T3299]  dump_user_range+0x3ac/0x550
[  167.262492][ T3299]  elf_core_dump+0x1bdc/0x1ce0
[  167.267273][ T3299]  do_coredump+0x1895/0x1f30
[  167.271892][ T3299]  get_signal+0xd4f/0x1000
[  167.276352][ T3299]  arch_do_signal_or_restart+0x95/0x4b0
[  167.281949][ T3299]  irqentry_exit_to_user_mode+0xa7/0x120
[  167.287611][ T3299]  irqentry_exit+0x12/0x50
[  167.292058][ T3299]  asm_exc_page_fault+0x26/0x30
[  167.296965][ T3299] 
[  167.299291][ T3299] read to 0xffff88811873a2f0 of 8 bytes by task 3299 on cpu 0:
[  167.306849][ T3299]  shmem_getattr+0x42/0x200
[  167.311400][ T3299]  vfs_statx_path+0x171/0x2d0
[  167.316106][ T3299]  vfs_statx+0xe1/0x170
[  167.320284][ T3299]  __se_sys_newfstatat+0xdc/0x300
[  167.325328][ T3299]  __x64_sys_newfstatat+0x55/0x70
[  167.330381][ T3299]  x64_sys_call+0x236d/0x2dc0
[  167.335070][ T3299]  do_syscall_64+0xc9/0x1c0
[  167.339692][ T3299]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.345693][ T3299] 
[  167.348024][ T3299] value changed: 0x0000000000000278 -> 0x000000000000027b
[  167.355143][ T3299] 
[  167.357474][ T3299] Reported by Kernel Concurrency Sanitizer on:
[  167.363656][ T3299] CPU: 0 UID: 0 PID: 3299 Comm: syz-executor Not tainted 6.13.0-syzkaller-00164-g100ceb4817a2 #0
[  167.374177][ T3299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  167.384253][ T3299] ==================================================================
[  167.489267][T10230] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  167.548909][T10230] ext4 filesystem being mounted at /171/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  168.015506][ T7673] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.