last executing test programs:

2.004863058s ago: executing program 4 (id=2240):
add_key(&(0x7f0000000040)='dns_resolver\x00', 0x0, &(0x7f0000000080)="001801020200", 0x6, 0xfffffffffffffffb)

1.956289388s ago: executing program 4 (id=2244):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mount(&(0x7f0000000640)=@filename='./file0\x00', 0x0, &(0x7f00000006c0)='devtmpfs\x00', 0x8, &(0x7f0000000700)='(!.-%\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={0x0, r0}, 0x18)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xa, 0x3, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, 0x0, 0x0, 0x189)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r6 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000180), 0x100, 0x0)
ioctl$SNAPSHOT_FREE(r6, 0x3305)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000080)={0x0, r0}, 0x8)
r7 = perf_event_open(&(0x7f00000004c0)={0x2, 0x80, 0xfe, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext={0x18a}, 0x401a, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
ioctl$PERF_EVENT_IOC_SET_FILTER(r7, 0x40082406, &(0x7f0000000000)='cpu<=0||!')
r8 = syz_open_dev$rtc(&(0x7f0000000040), 0x7, 0x280100)
ioctl$RTC_IRQP_SET(r8, 0x4008700c, 0x1eb9)

1.484441215s ago: executing program 3 (id=2257):
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x3b, 0x1, 0x0, 0x0, 0x0, 0x89, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x2, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x2, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454da, &(0x7f00000001c0)={'bond_slave_0\x00'})
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1})
r1 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454da, &(0x7f0000000140)={'bond0\x00'})
r4 = syz_usb_connect$cdc_ecm(0x6, 0x5b, &(0x7f0000000240)={{0x12, 0x1, 0x300, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x49, 0x1, 0x1, 0x2, 0x60, 0x40, [{{0x9, 0x4, 0x0, 0x8, 0x3, 0x2, 0x6, 0x0, 0xcd, {{0x5}, {0x5, 0x24, 0x0, 0x8}, {0xd, 0x24, 0xf, 0x1, 0x100, 0x7, 0x10, 0xe}, [@obex={0x5, 0x24, 0x15, 0x4}]}, {[{{0x9, 0x5, 0x81, 0x3, 0x8, 0x4, 0x9, 0x10}}], {{0x9, 0x5, 0x82, 0x2, 0x200, 0x4, 0x0, 0xb}}, {{0x9, 0x5, 0x3, 0x2, 0x200, 0x10, 0x1, 0x3d}}}}}]}}]}}, &(0x7f0000000800)={0xa, &(0x7f00000002c0)={0xa, 0x6, 0x100, 0xc8, 0xc5, 0x0, 0x8, 0xcb}, 0xc4, &(0x7f0000000700)={0x5, 0xf, 0xc4, 0x2, [@ssp_cap={0x10, 0x10, 0xa, 0x1, 0x1, 0xdb99, 0xf000, 0x6, [0xc000]}, @generic={0xaf, 0x10, 0x2, "2d18444242a7c4bf156002cab0da902acf1ddb83b3a80137ba34e990380bd886c711e26807068431032aebc1b700faefb63ff8b4d14fc7ce0122fbd173aef367ad84c386ed9cb3e0080ce4734fd3409fe573c7a8a1d7066de06531bf8ce526a66f36ab88c9206917dc9925bc6bfec2a9bab6886d0bb5eee5de1567574dffbb4ff325ecbbf48425675faa2630f20c78905d51dcc7e4c869db182c5d40de5b21e732243a1fb2c6503dff6d575a"}]}, 0x2, [{0xa8, &(0x7f0000000300)=@string={0xa8, 0x3, "93ff7e26e33bb47e5a2ea8c9a9f6072b2070edf0477463caa4a8233e0135f8c26a00bed0bbe42ffd846efd6e90fa4f48362f11726e8922ed18cb744327ea98c6f8f695df89e449865f1d2b67a4943e8d599f7272e3ceab677daafd70375ed842182e6f7b39c7de46e119f41f3eab9bc90a114a4f619982d97f591559f80e3a81749198c05ea9bf6850980f985e3262089337333eed053b4a931e966f08905a94124285447970"}}, {0x4, &(0x7f0000000680)=@lang_id={0x4, 0x3, 0x180a}}]})
syz_usb_control_io(r4, &(0x7f0000000a80)={0x2c, &(0x7f0000000880)={0x40, 0x8, 0x5b, {0x5b, 0x8, "4c5aaa6aa3dc45f1a2f657a46ed5ef87b05b1c4a064cdbd3c2fe7afa0a03f78d124bad27a7636fc8453268456f4862b8033d01ef42491dcc8a3c3d6af4de234a0aa51b9c6ce3fa7fa6ac1f909943f2b2282db79e724ed6666e"}}, &(0x7f0000000900)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x1001}}, &(0x7f0000000940)={0x0, 0xf, 0x21, {0x5, 0xf, 0x21, 0x1, [@ssp_cap={0x1c, 0x10, 0xa, 0x5, 0x4, 0x9, 0xf00f, 0x2, [0x3f00, 0x3f00, 0xc000, 0x3f00]}]}}, &(0x7f0000000980)={0x20, 0x29, 0xf, {0xf, 0x29, 0x7, 0x2, 0x4, 0x6, "5128fb62", "3fd1a576"}}, &(0x7f0000000a40)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0xb1, 0xe, 0x1, 0xcc, 0x40, 0x4, 0x4}}}, &(0x7f0000000fc0)={0x84, &(0x7f0000000ac0)={0x0, 0x17, 0xc5, "9f6a136b8dd3abe2c922a621426525d6e976669b15fed89ca2a2c42076cc7eb1eaf4c0cf70ae95ff23a84d3f4db8be1ca258e9b0c997e421233a6ba16f2981c449f17adbc625350363968246444d0541b55be3e4400b7d03c54c4c97b87461777087a17d817c736815881bf79bdba354bb8a6dde19441f3b2925799d9761c3c6c739b19ef6022cd6dab20bdfed208fd1f350e0fadefd838b8d0e75ffdc82b2610ea2bd6499b7086139db8b9e73897a2e03a5f64b51e6cb1ee050f6c33fa2e47890e6a832ca"}, &(0x7f0000000c00)={0x0, 0xa, 0x1, 0x5c}, &(0x7f0000000c40)={0x0, 0x8, 0x1, 0xff}, &(0x7f0000000c80)={0x20, 0x0, 0x4, {0x1, 0x2}}, &(0x7f0000000cc0)={0x20, 0x0, 0x4, {0x60, 0x8}}, &(0x7f0000000d00)={0x40, 0x7, 0x2, 0x4b}, &(0x7f0000000d40)={0x40, 0x9, 0x1, 0x6}, &(0x7f0000000d80)={0x40, 0xb, 0x2, 'uJ'}, &(0x7f0000000dc0)={0x40, 0xf, 0x2, 0x2}, &(0x7f0000000e00)={0x40, 0x13, 0x6, @broadcast}, &(0x7f0000000e40)={0x40, 0x17, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x28}}, &(0x7f0000000e80)={0x40, 0x19, 0x2, "fd83"}, &(0x7f0000000ec0)={0x40, 0x1a, 0x2, 0x57}, &(0x7f0000000f00)={0x40, 0x1c, 0x1, 0xf6}, &(0x7f0000000f40)={0x40, 0x1e, 0x1, 0x3}, &(0x7f0000000f80)={0x40, 0x21, 0x1, 0x9}})
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000100)={'nicvf0\x00', 0x1432})
ioctl$EXT4_IOC_GET_ES_CACHE(0xffffffffffffffff, 0xc020662a, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f0000000840)=[{{&(0x7f00000000c0)=@llc={0x1a, 0x0, 0x4, 0x2, 0x1a, 0xf1, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x26}}, 0x80, &(0x7f00000006c0)=[{&(0x7f0000000440)="8fbef2909acd7134f47b3ca33b1ae52c250eeb297ea84482bb516da30d1c8da1b779e89cb65724b2dd9758a5c8beb9f0b3347e57eff07ae5a5814cab30d389e5639d70bf56c42e629c0c3d634f6033e0362754a040c89ce9636d2a518f85376ee9bb103fe89ebaeb7a6aa7549f254a678595569819657c976b11e89d33d460d20b9cfc9e4c54ee99deaf4ff12da0a5317bc75ad3c13e8b80c2cc2d46dfd27de7692d149319a724e91ecab2ba3ec91e7fd1fa8af87f383d76b979fa63c53a20345f31221b5ecf", 0xc6}, {0x0}, {&(0x7f0000000540)="74c7f51c60d4e85c3b41578a7849007955a2cb955a3958222a8de727d3fab4c0bd95e2de7e05be723dcf5650cf6d6b4c1b6e174823e22bcbc34b03ac798fb9e6413fee08c9122c621b7d526c7bc8dae1c305752f3557eeea1812b107929b8f28e1da862f101afc4f12264b6efe1c0afd484dfcd5e11d5bf5a751dbfc76fcd1367539de9e2a790b3c59737b20d04e1fc8146afc78c296", 0x96}, {&(0x7f0000000600)="1eac5fea8b7a4dc91a95f1f294e0de6e08881fb67b6b9eb9b917726d08617cf65631fe54cdccab9bf97c9e3e2f460ba09399e50eb097472cb27c2208f6fc701a31e57b6370761c9b875baf322fb1ed3e5d47941e19f4427c830833d23dd1534b6b2e00e1b2e3b198", 0x68}], 0x4}}], 0x1, 0x1)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x1370a}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x22023500, 0x0, 0x0, 0x0, 0x0, 0x0)

1.444994166s ago: executing program 4 (id=2258):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='mm_page_free\x00', r0, 0x0, 0x1000}, 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r3}, 0x10)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='setgroups\x00')
r5 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_rx_ring(r5, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c)
close_range(r4, 0xffffffffffffffff, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6, 0x0, 0x9}, 0x18)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f00000008c0)={[{@bsdgroups}, {@bsdgroups}, {@noload}, {@grpjquota}, {@grpjquota}, {@orlov}, {@abort}, {@nombcache}, {@stripe={'stripe', 0x3d, 0x10}}]}, 0x64, 0x50a, &(0x7f0000000200)="$eJzs3VFrHFsdAPD/bHZr06Y3ueqDXvB6tZW0aHeTxrbBh1pB9Kmg1vcak00I2WRDdtM2oWiKH0AQUcEnffFF8AMIUvDFRxEK+qyoKKKtPvigncvuTtI03U227TabZn8/mMw5Z2b2f86GmZ0zc5gJYGC9FxHXI+JJmqYXImI0K89lU2y1psZ6jx/dm21MSaTpzX8mkWRl25+VZPPT2WYnI+JrX474ZvJ83NrG5tJMpVJey/Kl+vJqqbaxeXFxeWahvFBemZqavDJ9dfry9ERP2nkmIq598a8/+O7PvnTtV5+586dbfz//rUa1RrLlu9vxgvL7LWw1vdD8LnZvsPaSwY6ifLOFmeF2aww9V3L/NdcJAID2Guf4H4yIT0bEhRiNof1PZwEAAIA3UPr5kfhfEpG2d6JDOQAAAPAGyTXHwCa5YjYWYCRyuWKxNYb3w3EqV6nW6p+er66vzLXGyo5FITe/WClPZGOFx6KQNPKTzfTT/KU9+amIeDsivj863MwXZ6uVuX5f/AAAAIABcXpP//8/o63+PwAAAHDMjPW7AgAAAMBrp/8PAAAAx5/+PwAAABxrX7lxozGl2++/nru9sb5UvX1xrlxbKi6vzxZnq2urxYVqdaH5zL7lgz6vUq2ufjZW1u+W6uVavVTb2Ly1XF1fqd9afOYV2AAAAMAhevvjD/6QRMTW54abU8OJ7jbtcjXgqMrvpJJs3ma3/uNbrflfDqlSwKEY6ncFgL7J97sCQN8U+l0BoO+SA5Z3HLzz22z+id7WBwAA6L3xj3a+/5/bd8ut/RcDR56dGAaX+/8wuJr3/7sdyetkAY6VgjMAGHivfP//QGn6QhUCAAB6bqQ5JblidnlvJHK5YjHiTPO1AIVkfrFSnoiItyLi96OFDzTyk80tkwP7DAAAAAAAAAAAAAAAAAAAAAAAAABAS5omkQIAAADHWkTub8mvW8/yHx89N7L3+sCJ5L+jkb0i9M6Pb/7w7ky9vjbZKP/XTnn9R1n5pX5cwQAAAICB8EIv8N/up2/34wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACglx4/uje7PR1m3H98ISLG2sXPx8nm/GQUIuLUv5PI79ouiYihHsQfbvz5SLv4SaNaOyHbxR/uQfyt+/vGj7HsW2gX/3QP4sMge9A4/lxvt//l4r3mvP3+l494Jv+yOh//Yuf4N9Rh/z/TZYx3Hv6i1DH+/Yh38u2PP9vxkw7xz3YZ/xtf39zstCz9ScR429+f5JlYpfryaqm2sXlxcXlmobxQXpmamrwyfXX68vREaX6xUs7+to3xvY/98sl+7T/VIf7YAe0/12X7///w7qMPtZKFdvHPn20T/zc/zdZ4Pn4u++37VJZuLB/fTm+10ru9+/Pfvbtf++c6tP+g///5Ltt/4avf+XOXqwIAh6C2sbk0U6mU145totFLPwLVkDiCiW/39APTNE0b+9QrfE4SR+FraSb6fWQCAAB67elJf79rAgAAAAAAAAAAAAAAAAAAAIPrMB4ntjfm1k4q6cUjtAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeuL9AAAA//+GAdlV")
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1a4a438, &(0x7f0000000740)=ANY=[], 0xb, 0x0, &(0x7f0000000000))

1.285222535s ago: executing program 0 (id=2263):
socket$packet(0x11, 0x3, 0x300)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000d8d60b007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0500000004000000032000000c00000000000000", @ANYRES32], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b702000014"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="05000000000000007111ae00000000008510000002000000850000000500000095000000000000009500a50500000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x8a, &(0x7f0000000000)={[{@jqfmt_vfsold}, {@usrjquota, 0x22}, {@oldalloc}, {@noload}, {@data_err_ignore}, {@grpjquota, 0x22}, {@errors_continue}, {@errors_remount}, {@jqfmt_vfsv1}]}, 0xff, 0x464, &(0x7f00000004c0)="$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")
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000340)={r5, 0xe0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
write$selinux_load(r2, &(0x7f0000000180)=ANY=[@ANYBLOB="8cff7cf9080000005345204c696e7578"], 0x2000)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r7}, 0x18)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x4b0}}, 0x0)

1.264190595s ago: executing program 2 (id=2264):
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
r1 = socket$inet6(0xa, 0x3, 0x8000000003c)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f00000014c0)=@raw={'raw\x00', 0x8, 0x3, 0x528, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x458, 0xffffffff, 0xffffffff, 0x458, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@empty, @ipv4={'\x00', '\xff\xff', @dev}, [], [0xffffff00, 0xff000000], 'wg1\x00', 'gre0\x00', {}, {}, 0x62}, 0x0, 0x358, 0x388, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'veth0_to_hsr\x00', {0x4, 0x8, 0x20, 0x5e1b2d47, 0xf91, 0x5, 0x4, 0x9f7, 0x18}, {0x8}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30, 'CONNMARK\x00', 0x1, {0x0, 0xfffffffd}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x588)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x2000040, &(0x7f0000000340)={[{@errors_remount}, {@nodiscard}, {@noquota}, {@init_itable}, {@stripe={'stripe', 0x3d, 0x79}}, {@resgid}, {@sysvgroups}, {@delalloc}, {@usrquota}]}, 0x10, 0x4dc, &(0x7f0000000d80)="$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")
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x4000000000000, 0x40, &(0x7f00000006c0)=@raw={'raw\x00', 0x4001, 0x3, 0x3e8, 0x0, 0x0, 0x148, 0x0, 0x148, 0x350, 0x240, 0x240, 0x350, 0x240, 0x7fffffe, 0x0, {[{{@ip={@private=0xa010102, @local, 0x0, 0x0, 'ip6gretap0\x00', 'nicvf0\x00', {}, {}, 0x88, 0x3, 0x10}, 0x0, 0xf8, 0x158, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'wg1\x00', {0x0, 0x0, 0x1ff, 0x100000, 0x0, 0xed, 0x7}}}, @common=@unspec=@connmark={{0x30}, {0xfffffff9, 0x8}}]}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, 0x85d, 0xf, [0x10, 0x32, 0x1e, 0x32, 0x2b, 0x25, 0x3f, 0x17, 0x19, 0x22, 0x2c, 0x3d, 0x7, 0x3f, 0x1e, 0x31], 0x0, 0x2, 0x2}}}, {{@ip={@rand_addr=0x64010101, @local, 0xff, 0x0, 'wg0\x00', 'lo\x00', {0xff}, {}, 0x2e, 0x3, 0x4}, 0x0, 0x190, 0x1f8, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x8, 0x9, 0x1, 0x1, 'syz1\x00', 0x2}}, @inet=@rpfilter={{0x28}, {0x8}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0xfff, 0x7e, 0x1c, 'netbios-ns\x00', 'syz0\x00', {0x3}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x448)
close(r0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
setsockopt$inet6_tcp_int(r3, 0x6, 0x22, &(0x7f0000356000)=0x1, 0x4)
fcntl$setlease(r3, 0x400, 0x0)
connect$inet6(r3, &(0x7f0000000340)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, 0x0, 0x4, 0x0, 0x0, 0x0)

1.192738545s ago: executing program 4 (id=2265):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000500)='./file0\x00', 0x2022830, &(0x7f0000000600)=ANY=[], 0x4, 0x2db, &(0x7f0000000b00)="$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")
r0 = socket$xdp(0x2c, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00'}, 0x18)
r2 = add_key$keyring(&(0x7f0000000340), &(0x7f0000000380)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='svc_xprt_enqueue\x00', 0xffffffffffffffff, 0x0, 0x5}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='kfree\x00', r3, 0x0, 0x6}, 0x18)
add_key(&(0x7f0000000580)='big_key\x00', 0x0, &(0x7f0000000840)='\x00\x00\x00\x00\x00\x00\x00\x00\x00*\x00\x00', 0xc, r2)
r4 = syz_genetlink_get_family_id$smc(&(0x7f00000005c0), 0xffffffffffffffff)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r1, &(0x7f00000001c0)={0x0, 0xfffffd3e, &(0x7f0000000180)={&(0x7f0000000700)=ANY=[@ANYBLOB="03002200d9957ebe8b672b45a31871befcdb7840e97882323669be3690872d21a79ae2486465", @ANYRES16=r4, @ANYBLOB="00032cfd700000000000020000001400020070696d367265673000000000000000000900010073797a3000000000"], 0x34}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="db758280a2837e538f94738341afab934e6bb671210ab06fc1cbaa0afe4a2c8bf1bb529740510d6aee18194b6e24b059d6079bd0f0c98e3e9835aba7b04890c0b043478b75c6160c0d766c366ece2979d6f93d5eef3e", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x800)
close_range(r0, 0xffffffffffffffff, 0x0)

1.135569484s ago: executing program 0 (id=2266):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
mount$9p_fd(0x20000000, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='trans=fd'])

969.085684ms ago: executing program 0 (id=2269):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e00000085"], &(0x7f0000000100)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x20000000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0xa8}, 0x18)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x18, 0x4, &(0x7f0000000800)=ANY=[@ANYBLOB="18010000001400010000000000000004850000006d0000009570c548452a4b1655df1094136630a00d41b0dcde0a210c62bf31364b4656dc1f94304cddbda92d8afcfa2d9c7c77b0afe1d518ab1da11d1377e01b7a45f8ab2a04f60e019bf34d00a9d42a267b601058e109c07bc3d2e6d2bce224c3a35aaf1c31380ff8edb1494389d8d6583a3fd100fad536c0169d046dc6f07cb8edda91b4220176e680dc072917db9cb0057f1fdae09e3ad68a7e5c5f6e0c597f515700"/202], &(0x7f0000000400)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kmem_cache_free\x00', r1, 0x0, 0xfffffffffffff001}, 0x18)
r2 = syz_io_uring_setup(0x5c26, &(0x7f0000000240)={0x0, 0x0, 0x13290}, &(0x7f0000000440)=<r3=>0x0, &(0x7f0000000700)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000140)=@IORING_OP_RENAMEAT={0x23, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0})
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000100)=ANY=[@ANYBLOB="dc01c6ba1cdcc12519250000000000007f007101001300"/46, @ANYBLOB="200100000000000000000000000000020000000032000000fe8000000000000000000000000000bb000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080"], 0x1dc}}, 0x0)
r5 = syz_io_uring_setup(0x24fa, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000240)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
r8 = socket$inet6(0xa, 0x800000000000002, 0x0)
connect$inet6(r8, &(0x7f0000000040)={0xa, 0x4e26, 0xb030, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x20006}, 0x1c)
connect$inet6(r8, &(0x7f0000000080)={0xa, 0x4e25, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}, 0x1c)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r9, &(0x7f0000000040)=ANY=[@ANYRESDEC=r1], 0x118)
r10 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000000000000000000000b35dd736cbe30e792102f6eaa2606677cb61c8615b4563b834d1f7f7e8ff57c9125d60a2207b0388523d45c6e0567a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r10}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
getpid()
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r11}, 0x10)
r12 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r12, &(0x7f00000001c0)={0xa, 0x4000, 0x0, @loopback}, 0x1c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000180)='sys_enter\x00'}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000a40)='GPL\x00')
mkdir(&(0x7f0000000100)='./file0\x00', 0x10)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0)
umount2(&(0x7f0000000000)='./file0\x00', 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r9, 0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r5, 0x2d3e, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r2, 0x1, 0x0, 0x1, 0x0, 0x1000000)
lsm_get_self_attr(0x66, 0x0, &(0x7f0000000000), 0x0)

909.616863ms ago: executing program 0 (id=2270):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a000000050000000200000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000818110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1}, 0x10)
poll(&(0x7f0000001280), 0xa4, 0x3)

906.901983ms ago: executing program 4 (id=2271):
r0 = socket(0x40000000015, 0x5, 0x2)
r1 = socket(0x15, 0x5, 0x0)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
pread64(r4, &(0x7f0000000300)=""/150, 0x96, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_RINGS_SET(r5, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="100029bd7000ffdbdf251000000008000800ffffff52fd0009fd0000008008000700af07d347f77606000000000008000700010000000800090006000000"], 0x44}, 0x1, 0x0, 0x0, 0x4004804}, 0x4090)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)=@delqdisc={0x14c, 0x25, 0x400, 0x70bd28, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xfff1, 0x1}, {0x5, 0x8}, {0x6, 0x3}}, [@TCA_STAB={0xb8, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x3, 0x3, 0x2243, 0x8, 0x0, 0x9, 0x9, 0x5}}, {0xe, 0x2, [0xfcac, 0x0, 0x7, 0x3, 0x7d]}}, {{0x1c, 0x1, {0xd2, 0x7, 0x9, 0x40000000, 0x0, 0x8000, 0x9a7, 0x9}}, {0x16, 0x2, [0x401, 0x7a5a, 0xf, 0x1ff, 0x3, 0x0, 0xd, 0x22, 0x10]}}, {{0x1c, 0x1, {0x0, 0x8, 0x3, 0xa, 0x2, 0x40, 0xffff0000, 0x2}}, {0x8, 0x2, [0x8, 0xffff]}}, {{0x1c, 0x1, {0x4, 0x8, 0x2, 0xffffffdd, 0x0, 0x9, 0x1, 0x7}}, {0x12, 0x2, [0x1000, 0x8, 0x4, 0x0, 0x400, 0x0, 0x0]}}]}, @TCA_STAB={0x30, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x4, 0xa, 0x1ff, 0x6, 0x0, 0x1, 0x7, 0x5}}, {0xe, 0x2, [0x9, 0x7, 0x2, 0x4f54, 0xf8e]}}]}, @TCA_RATE={0x6, 0x5, {0x10, 0x40}}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x5}, @TCA_EGRESS_BLOCK={0x8}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x9}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x7}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x9}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x6}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x3}]}, 0x14c}}, 0x0)
r6 = socket$qrtr(0x2a, 0x2, 0x0)
sendmsg$qrtr(r6, &(0x7f0000000900)={&(0x7f00000001c0)={0x2a, 0x2, 0x6003}, 0xc, &(0x7f0000000880)=[{&(0x7f00000003c0)="2c2fe728ea245f32fae4595b650ee5daed4f7c85f6cf2594fbc0acbf2df72129413eb6fcde76cdf875632325a0d45ed33173", 0x32}, {&(0x7f00000006c0)="068352ea2633b9d1a47b4790cbd7d9227b7a5350c41388dd5991ac75805ed7276de3af038fd09bbaa3ceff6c0b9ad3d5bade6b113999acec419b0706c388c3e73cd33149474384d046c2d776e55113eacada026b875882f62d34a6acb7d4981598980dc99d913a4c045586b1238242977682b1b15feb6802c55f21a139473cc86659bf85caba0f99521c92ec4f120921cd452a41005c2a591c55e259fb779f475ab0ba49fc", 0xa5}, {0x0}, {&(0x7f0000000800)="05d0cf4cb616ed18adcb32fa5e7257e01eb1dbb18481efe9f4d937c27e50c9f0fde1dc9e9873688a01dd8f7feca715771ac20882393ed9e75a0723edef6bb79055874be60e2f", 0x46}, {&(0x7f0000000440)}], 0x5}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000280)={{r2}, &(0x7f0000000080), &(0x7f0000000180)='%-010d \x00'}, 0x20)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r7}, 0x10)
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
getsockopt(r0, 0x200000000114, 0x2715, 0x0, &(0x7f0000000240))

866.842373ms ago: executing program 3 (id=2273):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32=<r0=>0xffffffffffffffff, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000005c0)=ANY=[@ANYRESHEX=r0, @ANYRES32, @ANYRES32], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000001600008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = socket(0x1e, 0x4, 0x0)
r3 = dup3(0xffffffffffffffff, r2, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$NFC_CMD_SE_IO(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000600)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="01002bbd7000ffdbdf251b00000005001900dc00000008001500c000000008000100", @ANYRES32=0x0, @ANYBLOB="e46ef0be3a1256547f16afed00e53b09d14d"], 0x2c}, 0x1, 0x0, 0x0, 0x4000001}, 0x4000)
ioctl$IOCTL_GET_NCIDEV_IDX(r3, 0x0, &(0x7f00000006c0)=<r4=>0x0)
sendmsg$NFC_CMD_LLC_SDREQ(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000700)={&(0x7f0000000d80)=ANY=[@ANYBLOB="a8020000", @ANYRES16=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="840013801c0000800400010013000100646174615f6572723d69676e6f726500380000800f0001006a6f75726e616c5f646576000400010005000100240000000c00010067656e657665310009000100aaaaaaaaaa0000002c0000800a0001006b667265650000000c0001006e6c383032313100070001007d29a500070001002d2a5e0008000100", @ANYRES32=0x0, @ANYBLOB="ec00138020000080090001006578743400000000050001000000000005000100c40000003c0000800900010065787434000000000f0001002d652127242d402e5c5b28000c00010067656e65766531000e0001006772706a71756f74613d0000340000800c00010067656e657665310004000100090001006578743400000000060001003a400000090001006578743400000000580000800b0001002b3ad05c242826001100010073636865645f73776974636800000000150001006572726f72733d72656d6f756e742d726f0000000400010013000100646174615f6572723d69676e6f7265000400010008000100", @ANYRES32=0x0, @ANYBLOB="93126062", @ANYRES32=r4, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB], 0x2a8}, 0x1, 0x0, 0x0, 0x800}, 0x2004)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000500)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="8b33000001000000000015"], 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x8000, &(0x7f0000001040)={[{@grpid}, {@dax_never, 0x22}, {@errors_continue}, {@journal_dev={'journal_dev', 0x3d, 0xb7f}}, {@data_err_ignore}, {@grpjquota, 0x22}, {@errors_continue}, {@resuid}, {@noblock_validity}]}, 0xfe, 0x44e, &(0x7f0000000900)="$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")

847.594923ms ago: executing program 0 (id=2274):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xe, 0x0, &(0x7f0000000000)="259a53f271a76d2608064c6588a8", 0x0, 0xd04, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x80}, 0x50)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x8, 0x8, 0x8, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

728.864393ms ago: executing program 2 (id=2275):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='sched_switch\x00'}, 0x10)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000005c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000020000000900010073797a300000000048000000030a01010000000000000000020000000900010073797a30000000000900030073797a3200000000080007006e617400140004800800014000000001"], 0xa4}}, 0x0)
sigaltstack(0x0, 0x0)
dup(0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200010, &(0x7f0000000300)={[{@jqfmt_vfsold}]}, 0xfe, 0x55d, &(0x7f0000000980)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000b80)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f00000002c0)='GPL\x00', 0xf, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000600)='kfree\x00', r2}, 0x10)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="e80000006c00010029bd7000fcdbdf2500000000", @ANYRES32, @ANYBLOB="001000008000000008000f002000000014003500726f7365300000000000000000000000a40034801400350870696d367265673000000020000000001400350076657468305f6d614176746170000000140035006d61637674617030020000000000000014003500677265300000000000000000000000001400350076657468305f746f5f626174616476001400350001657468315f6d6163767461700000001400350067726530000000000000000000000000140035006261746164765f736c6176655f31000008000f"], 0xe8}}, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000002180)={0x1, &(0x7f0000000380)=[{0x6, 0xd, 0x0, 0x7fffffff}]})
write$binfmt_script(r1, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800006, 0x11, r1, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000340), 0x321082, 0x0)
ioctl$TUNSETOFFLOAD(r5, 0xc004743e, 0x20001400)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x2, [@var={0x4, 0x0, 0x0, 0xe, 0x4}, @func_proto, @ptr, @volatile={0x0, 0x0, 0x0, 0xa, 0x1}]}}, 0x0, 0x4e, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='mm_page_alloc\x00', r6}, 0x10)
ioctl$TUNSETOFFLOAD(r5, 0x40047451, 0x2000000c)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x17)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)

715.941852ms ago: executing program 0 (id=2277):
r0 = open(&(0x7f00009e1000)='./file0\x00', 0x60940, 0x0)
fcntl$setlease(r0, 0x400, 0x0)
exit(0x9)
syz_extract_tcp_res$synack(0x0, 0x1, 0x0)
write$tun(r0, &(0x7f00000002c0)={@val={0x0, 0xa00}, @val={0x2, 0x0, 0xa, 0x200, 0x8}, @eth={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @remote, @void, {@canfd={0xd, {{0x3, 0x1, 0x1}, 0x7, 0x1, 0x0, 0x0, "92e3cdf62374b7bfa10986c27e93f32efcec706d1dc7e5a40892c2a9e23144d3487677f1b5a08db27e7255f1d9a7979ccdf6931a0a90a26b66985cf11f13c761"}}}}}, 0x64)
write$tun(r0, &(0x7f0000000680)={@val={0x0, 0x6003}, @val={0x0, 0x4, 0x3, 0x8, 0x9, 0x3}, @llc={@snap={0x0, 0x55, 'D', "ff2faf", 0x600, "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"}}}, 0x1016)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a0ef010095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000640)='kmem_cache_free\x00', r1, 0x0, 0x9}, 0x18)
socket(0x2, 0x2, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r4, &(0x7f0000000440), 0x10)
listen(r4, 0xa)
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r5, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
r6 = accept4$unix(r4, 0x0, 0x0, 0x0)
recvmsg(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)=""/68, 0x44}], 0x1}, 0x4c2103a0)

684.050922ms ago: executing program 3 (id=2279):
socket$packet(0x11, 0x2, 0x300)
socket$packet(0x11, 0xa, 0x300)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0x0, 0x0, 0x0, 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
r1 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000040), 0x500, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=@base={0x1, 0x2, 0xfff, 0x7, 0x14082, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @value=r1}, 0x50)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = socket$can_j1939(0x1d, 0x2, 0x7)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000180)={@private1={0xfc, 0x1, '\x00', 0xfd}, 0x8000000, 0x0, 0x3, 0x1, 0xfffc}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000000)={@loopback={0xfec0ffff00000000}, 0x8000000, 0x0, 0x3, 0x0, 0x0, 0x600}, 0x20)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000040)={'vxcan0\x00', <r6=>0x0})
r7 = dup(r4)
bind$can_j1939(r4, &(0x7f0000000080)={0x1d, r6}, 0x18)
sendmsg$can_j1939(r7, &(0x7f0000001380)={&(0x7f0000000300)={0x1d, r6, 0x0, {0x0, 0xf0, 0x4}, 0xfe}, 0x18, &(0x7f0000001340)={&(0x7f0000000340)="f2a26795c591569cf8", 0x9}, 0x1, 0x0, 0x0, 0x20000000}, 0x4011)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000009c0)=@newlink={0x28, 0x10, 0xc362e63b3f31ba5f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x20080, 0x80e1}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@newtfilter={0x24, 0x11, 0x1, 0x74bd2b, 0x0, {0x0, 0x0, 0x74, 0x0, {0x6, 0x4}, {0x0, 0x4}, {0xa}}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)

663.270842ms ago: executing program 1 (id=2280):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$nl_route(0x10, 0x3, 0x0) (async)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
connect(r1, &(0x7f0000000700)=@generic={0x8, "95546e449b1293cda3c788ea65c7cdb71f9929eab0fc8e093eb5541fa216bb37cf329ee9bd1f371555da3507bc407d479997074e6a9e4c18e81069681bbc7488bf53ff789ee7bd996eb103aa54d9441b3c30db883877a5380481e874d03e0a1e9caed874a7fbb414d5db2c299ea1421443900b287aec52338e988b7c1f7a"}, 0x80) (async)
write$binfmt_script(r2, 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
fdatasync(r2) (async)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r2, 0x404c534a, &(0x7f0000000680)={0x7, 0x8, 0x80000000}) (async)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000040000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000180)='sys_enter\x00', r4}, 0x10) (async)
prctl$PR_SET_NAME(0xf, &(0x7f0000000a40)='GPL\x00')
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10, &(0x7f0000000640)={[{@prjquota}, {@delalloc}]}, 0xfe, 0x480, &(0x7f0000000180)="$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") (async)
sendmsg$nl_route_sched(r3, &(0x7f0000006280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=@newtaction={0x68, 0x30, 0x1, 0x0, 0x0, {0x0, 0x0, 0x6a00}, [{0x54, 0x1, [@m_mirred={0x1f, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x0, 0x6}, 0x2}}]}, {0x4, 0xa}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x0) (async)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000004c0)={r0, 0xe0, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f00000000c0)=[0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x5, 0x2, &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000140)=[0x0, 0x0], 0x0, 0x80, &(0x7f0000000180)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}], 0x50, 0x10, &(0x7f0000000200), &(0x7f0000000240), 0x8, 0x9c, 0x8, 0x8, &(0x7f0000000380)}}, 0x10) (async)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00', <r5=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="500000001000010000000000ecffffff00000000", @ANYRES32=r5, @ANYBLOB="0000000000000000300012800e0001006970366772657461700000001c00028006000f000000000006000e"], 0x50}}, 0x0) (async)
socket$inet_dccp(0x2, 0x6, 0x0)

592.113602ms ago: executing program 1 (id=2281):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000500)='./file0\x00', 0x2022830, &(0x7f0000000600)=ANY=[], 0x4, 0x2db, &(0x7f0000000b00)="$eJzs3MtrE0EcwPFfYx9JSpscRFGQDnrRy9JEz2KQFsSApTbiA4Rtu9GQNSm7oRIRa09exT/CQ+mxt4L2H+jFm168eOtF8GAP4kr20Ue6pWkSkz6+Hyg7zcxvdyY7Cb9Zsrvx8P2LYt7W8npFIlElPSIimyJJiUigx99G3HK/7PRWrg3++nrp/qPHdzPZ7NikUuOZqetppdTwyKeXr2N+s9UBWU8+3fiZ/rF+bv3Cxt+p5wVbFWxVKleUrqbL3yv6tGmo2YJd1JSaMA3dNlShZBuWV1/26vNmeW6uqvTS7FB8zjJsW+mlqioaVVUpq4pVVfozvVBSmqapobjgILmlyUk902TwjMiZNvcH/4NlZfTamYrtqcktdaVDAACgq+rz/0gtpW9f/r98ea0y+GBl2M//V/vD8v8b37x97cr/oyLSdP5f21sj+f/ejOh0aSn/xzFRy//j/ufXtfhkedQtkP8DAAAAAAAAAAAAAAAAAAAAAHAcbDpOwnGcRLAN/gZEJCoiwf/h0alOdxdt1tr5x3G3feNe77CI+W4+N5/ztn6DNRExxZBRScgfdz74auXgXkBVk5TP5oIfvzCf854NkclLwY1PSUKS9fGOM34nO5ZSnt3xfe4dfFvxaUnI2fD4dGh8v1y9siNek4R8mZGymDLrzuvt+DcppW7fy9bFx9x2AAAAAACcBJraErp+17T96r34rfV16PUBb309Gro+75WLvd0dOwAAAAAAp4VdfVXUTdOwTlwhGGGjUcFvGVo4aLzp8ODgjTRelCPw9kYa6mp9YURETNXq0YPLRvu1kYk2jTRyiCnRIyLW+Q8ff4e1CU7v4bpxcyV6wEgbKMSami19nfn2AQAAANBJ20l/8Mqt7nYIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIBTqBPPiuv2GAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAICj4l8AAAD//3IxBtE=")
r0 = socket$xdp(0x2c, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00'}, 0x18)
r2 = add_key$keyring(&(0x7f0000000340), &(0x7f0000000380)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='svc_xprt_enqueue\x00', 0xffffffffffffffff, 0x0, 0x5}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='kfree\x00', r3, 0x0, 0x6}, 0x18)
add_key(&(0x7f0000000580)='big_key\x00', 0x0, &(0x7f0000000840)='\x00\x00\x00\x00\x00\x00\x00\x00\x00*\x00\x00', 0xc, r2)
r4 = syz_genetlink_get_family_id$smc(&(0x7f00000005c0), 0xffffffffffffffff)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r1, &(0x7f00000001c0)={0x0, 0xfffffd3e, &(0x7f0000000180)={&(0x7f0000000700)=ANY=[@ANYBLOB="03002200d9957ebe8b672b45a31871befcdb7840e97882323669be3690872d21a79ae2486465", @ANYRES16=r4, @ANYBLOB="00032cfd700000000000020000001400020070696d367265673000000000000000000900010073797a3000000000"], 0x34}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="db758280a2837e538f94738341afab934e6bb671210ab06fc1cbaa0afe4a2c8bf1bb529740510d6aee18194b6e24b059d6079bd0f0c98e3e9835aba7b04890c0b043478b75c6160c0d766c366ece2979d6f93d5eef3e", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x800)
close_range(r0, 0xffffffffffffffff, 0x0)

577.983582ms ago: executing program 1 (id=2282):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r1, 0x0, 0x2}, 0x18)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r2, 0x24, &(0x7f00000002c0)={0x0, 0x4, 0x7, 0xfffffffffffffffe})

532.247422ms ago: executing program 1 (id=2283):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)={0x48, 0x2, 0x6, 0x201, 0x7000000, 0x0, {0x0, 0x0, 0xfffe}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:net\x00'}]}, 0x48}, 0x1, 0x0, 0x0, 0x4000}, 0x4000)

511.487022ms ago: executing program 1 (id=2284):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a000000050000000200000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000818110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1}, 0x10)
poll(&(0x7f0000001280), 0xa4, 0x3)

510.901742ms ago: executing program 3 (id=2285):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0xfff, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffff30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x18)
utimes(0x0, 0x0) (fail_nth: 3)

495.211102ms ago: executing program 2 (id=2286):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x4000811}, 0x0)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)={0x14, r1, 0x7}, 0x14}}, 0x0)
syz_open_dev$loop(&(0x7f0000000000), 0x7fdfffffffffffff, 0x8080)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x200000000000011, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'bridge0\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000003c0)=ANY=[@ANYBLOB="480000001000010400"/20, @ANYRES32=r4, @ANYBLOB="ea02000000000000280012800b00010062726964676500001800028005001900800000"], 0x48}}, 0x0) (fail_nth: 5)

480.591652ms ago: executing program 1 (id=2287):
socket$packet(0x11, 0x2, 0x300)
socket$packet(0x11, 0xa, 0x300)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0x0, 0x0, 0x0, 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
r1 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000040), 0x500, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=@base={0x1, 0x2, 0xfff, 0x7, 0x14082, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @value=r1}, 0x50)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = socket$can_j1939(0x1d, 0x2, 0x7)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000180)={@private1={0xfc, 0x1, '\x00', 0xfd}, 0x8000000, 0x0, 0x3, 0x1, 0xfffc}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000000)={@loopback={0xfec0ffff00000000}, 0x8000000, 0x0, 0x3, 0x0, 0x0, 0x600}, 0x20)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000040)={'vxcan0\x00', <r6=>0x0})
r7 = dup(r4)
bind$can_j1939(r4, &(0x7f0000000080)={0x1d, r6}, 0x18)
sendmsg$can_j1939(r7, &(0x7f0000001380)={&(0x7f0000000300)={0x1d, r6, 0x0, {0x0, 0xf0, 0x4}, 0xfe}, 0x18, &(0x7f0000001340)={&(0x7f0000000340)="f2a26795c591569cf8", 0x9}, 0x1, 0x0, 0x0, 0x20000000}, 0x4011)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000009c0)=@newlink={0x28, 0x10, 0xc362e63b3f31ba5f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x20080, 0x80e1}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@newtfilter={0x24, 0x11, 0x1, 0x74bd2b, 0x0, {0x0, 0x0, 0x74, 0x0, {0x6, 0x4}, {0x0, 0x4}, {0xa}}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)

160.3829ms ago: executing program 3 (id=2288):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xe, 0x0, &(0x7f0000000000)="259a53f271a76d2608064c6588a8", 0x0, 0xd04, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x80}, 0x50)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x8, 0x8, 0x8, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

144.9005ms ago: executing program 2 (id=2289):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32=<r0=>0xffffffffffffffff, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000005c0)=ANY=[@ANYRESHEX=r0, @ANYRES32, @ANYRES32], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000001600008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = socket(0x1e, 0x4, 0x0)
r3 = dup3(0xffffffffffffffff, r2, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$NFC_CMD_SE_IO(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000600)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="01002bbd7000ffdbdf251b00000005001900dc00000008001500c000000008000100", @ANYRES32=0x0, @ANYBLOB="e46ef0be3a1256547f16afed00e53b09d14d"], 0x2c}, 0x1, 0x0, 0x0, 0x4000001}, 0x4000)
ioctl$IOCTL_GET_NCIDEV_IDX(r3, 0x0, &(0x7f00000006c0)=<r4=>0x0)
sendmsg$NFC_CMD_LLC_SDREQ(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000700)={&(0x7f0000000d80)=ANY=[@ANYBLOB="a8020000", @ANYRES16=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="840013801c0000800400010013000100646174615f6572723d69676e6f726500380000800f0001006a6f75726e616c5f646576000400010005000100240000000c00010067656e657665310009000100aaaaaaaaaa0000002c0000800a0001006b667265650000000c0001006e6c383032313100070001007d29a500070001002d2a5e0008000100", @ANYRES32=0x0, @ANYBLOB="ec00138020000080090001006578743400000000050001000000000005000100c40000003c0000800900010065787434000000000f0001002d652127242d402e5c5b28000c00010067656e65766531000e0001006772706a71756f74613d0000340000800c00010067656e657665310004000100090001006578743400000000060001003a400000090001006578743400000000580000800b0001002b3ad05c242826001100010073636865645f73776974636800000000150001006572726f72733d72656d6f756e742d726f0000000400010013000100646174615f6572723d69676e6f7265000400010008000100", @ANYRES32=0x0, @ANYBLOB="93126062", @ANYRES32=r4, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB], 0x2a8}, 0x1, 0x0, 0x0, 0x800}, 0x2004)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000500)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="8b33000001000000000015"], 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x8000, &(0x7f0000001040)={[{@grpid}, {@dax_never, 0x22}, {@errors_continue}, {@journal_dev={'journal_dev', 0x3d, 0xb7f}}, {@data_err_ignore}, {@grpjquota, 0x22}, {@errors_continue}, {@resuid}, {@noblock_validity}]}, 0xfe, 0x44e, &(0x7f0000000900)="$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")

53.484879ms ago: executing program 2 (id=2290):
r0 = socket$xdp(0x2c, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x6}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="db758280a2837e538f94738341afab934e6bb671210ab06fc1cbaa0afe4a2c8bf1bb529740510d6aee18194b6e24b059d6079bd0f0c98e3e9835aba7b04890c0b043478b75c6160c0d766c366ece2979d6f93d5eef3e", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x800)
close_range(r0, 0xffffffffffffffff, 0x0)

50.66322ms ago: executing program 4 (id=2291):
bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00'}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', 0xffffffffffffffff, 0x0, 0x9}, 0x18)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f00000008c0)={[{@bsdgroups}, {@bsdgroups}, {@noload}, {@grpjquota}, {@grpjquota}, {@orlov}, {@abort}, {@nombcache}, {@stripe={'stripe', 0x3d, 0x10}}]}, 0x64, 0x50a, &(0x7f0000000200)="$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")
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1a4a438, &(0x7f0000000740)=ANY=[], 0xb, 0x0, &(0x7f0000000000))

517.77µs ago: executing program 2 (id=2292):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000500)='./file0\x00', 0x2022830, &(0x7f0000000600)=ANY=[], 0x4, 0x2db, &(0x7f0000000b00)="$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")
r0 = socket$xdp(0x2c, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00'}, 0x18)
r2 = add_key$keyring(&(0x7f0000000340), &(0x7f0000000380)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='svc_xprt_enqueue\x00', 0xffffffffffffffff, 0x0, 0x5}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='kfree\x00', r3, 0x0, 0x6}, 0x18)
add_key(&(0x7f0000000580)='big_key\x00', 0x0, &(0x7f0000000840)='\x00\x00\x00\x00\x00\x00\x00\x00\x00*\x00\x00', 0xc, r2)
r4 = syz_genetlink_get_family_id$smc(&(0x7f00000005c0), 0xffffffffffffffff)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r1, &(0x7f00000001c0)={0x0, 0xfffffd3e, &(0x7f0000000180)={&(0x7f0000000700)=ANY=[@ANYBLOB="03002200d9957ebe8b672b45a31871befcdb7840e97882323669be3690872d21a79ae2486465", @ANYRES16=r4, @ANYBLOB="00032cfd700000000000020000001400020070696d367265673000000000000000000900010073797a3000000000"], 0x34}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="db758280a2837e538f94738341afab934e6bb671210ab06fc1cbaa0afe4a2c8bf1bb529740510d6aee18194b6e24b059d6079bd0f0c98e3e9835aba7b04890c0b043478b75c6160c0d766c366ece2979d6f93d5eef3e", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x800)
close_range(r0, 0xffffffffffffffff, 0x0)

0s ago: executing program 3 (id=2293):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1, 0x0, 0x2}, 0x18)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
fcntl$lock(r2, 0x24, &(0x7f00000002c0)={0x0, 0x4, 0x7, 0xfffffffffffffffe})

kernel console output (not intermixed with test programs):

ounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.293251][ T6541] __nla_validate_parse: 10 callbacks suppressed
[   85.293264][ T6541] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1126'.
[   85.308629][ T6541] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1126'.
[   85.319321][ T6543] netlink: 'syz.3.1127': attribute type 1 has an invalid length.
[   85.320708][ T6541] bridge4: the hash_elasticity option has been deprecated and is always 16
[   85.327062][ T6543] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1127'.
[   85.549585][ T6564] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1137'.
[   85.558575][ T6564] netem: unknown loss type 13
[   85.563251][ T6564] netem: change failed
[   85.600673][ T6567] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1138'.
[   85.609612][ T6567] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1138'.
[   85.623597][ T6567] bridge5: the hash_elasticity option has been deprecated and is always 16
[   85.675797][ T6570] loop3: detected capacity change from 0 to 512
[   85.744900][ T6573] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1140'.
[   85.797054][ T6570] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.809664][ T6570] ext4 filesystem being mounted at /221/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   85.829159][ T6570] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[   85.890208][ T6575] netlink: 'syz.1.1141': attribute type 1 has an invalid length.
[   85.898320][ T6575] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1141'.
[   86.140325][ T6586] loop1: detected capacity change from 0 to 512
[   86.147011][ T6586] EXT4-fs: Ignoring removed orlov option
[   86.152991][ T6586] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   86.172310][ T6586] EXT4-fs (loop1): orphan cleanup on readonly fs
[   86.179404][ T6586] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1146: bg 0: block 248: padding at end of block bitmap is not set
[   86.200626][ T6586] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.1146: Failed to acquire dquot type 1
[   86.214614][ T6586] EXT4-fs (loop1): 1 truncate cleaned up
[   86.220769][ T6586] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   86.236059][ T6594] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1149'.
[   86.245054][ T6594] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1149'.
[   86.254893][ T6586] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[   86.256938][ T6594] bridge6: the hash_elasticity option has been deprecated and is always 16
[   86.293235][ T6586] EXT4-fs error (device loop1): __ext4_remount:6749: comm syz.1.1146: Abort forced by user
[   86.321745][ T6586] EXT4-fs (loop1): Remounting filesystem read-only
[   86.328336][ T6586] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[   86.340020][ T6586] ext4 filesystem being remounted at /250/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   86.360937][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.409866][ T6606] netem: unknown loss type 13
[   86.414715][ T6606] netem: change failed
[   86.419889][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.442773][   T29] kauditd_printk_skb: 746 callbacks suppressed
[   86.442787][   T29] audit: type=1326 audit(2000000049.259:5958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6608 comm="syz.3.1156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26bdbe5d29 code=0x7ffc0000
[   86.479288][   T29] audit: type=1326 audit(2000000049.299:5959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6608 comm="syz.3.1156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f26bdbe5d29 code=0x7ffc0000
[   86.502766][   T29] audit: type=1326 audit(2000000049.299:5960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6608 comm="syz.3.1156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26bdbe5d29 code=0x7ffc0000
[   86.526183][   T29] audit: type=1326 audit(2000000049.299:5961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6608 comm="syz.3.1156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26bdbe5d29 code=0x7ffc0000
[   86.555563][   T29] audit: type=1326 audit(2000000049.369:5962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6608 comm="syz.3.1156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f26bdbe5d29 code=0x7ffc0000
[   86.579042][   T29] audit: type=1326 audit(2000000049.369:5963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6608 comm="syz.3.1156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26bdbe5d29 code=0x7ffc0000
[   86.602436][   T29] audit: type=1326 audit(2000000049.369:5964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6608 comm="syz.3.1156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26bdbe5d29 code=0x7ffc0000
[   86.625875][   T29] audit: type=1326 audit(2000000049.369:5965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6608 comm="syz.3.1156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f26bdbe5d29 code=0x7ffc0000
[   86.649330][   T29] audit: type=1326 audit(2000000049.369:5966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6608 comm="syz.3.1156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26bdbe5d29 code=0x7ffc0000
[   86.672757][   T29] audit: type=1326 audit(2000000049.369:5967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6608 comm="syz.3.1156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26bdbe5d29 code=0x7ffc0000
[   86.737056][ T6617] netlink: 'syz.2.1158': attribute type 1 has an invalid length.
[   86.949204][ T6634] new mount options do not match the existing superblock, will be ignored
[   87.137113][ T6649] loop2: detected capacity change from 0 to 128
[   87.275477][ T6663] new mount options do not match the existing superblock, will be ignored
[   87.290246][ T6668] netlink: 'syz.2.1182': attribute type 1 has an invalid length.
[   87.416245][ T6684] loop4: detected capacity change from 0 to 1024
[   87.492416][ T6684] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   87.568369][ T6695] loop2: detected capacity change from 0 to 128
[   87.595789][ T6698] netem: unknown loss type 13
[   87.600502][ T6698] netem: change failed
[   87.623748][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.938756][ T6724] loop2: detected capacity change from 0 to 1024
[   87.986171][ T6724] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   88.146202][ T6754] new mount options do not match the existing superblock, will be ignored
[   88.241854][ T6760] loop2: detected capacity change from 0 to 1024
[   88.313861][ T6772] loop4: detected capacity change from 0 to 128
[   88.448716][ T6788] loop2: detected capacity change from 0 to 1024
[   88.589533][ T6796] netem: unknown loss type 13
[   88.594344][ T6796] netem: change failed
[   88.669268][ T6805] bpf_get_probe_write_proto: 5 callbacks suppressed
[   88.669281][ T6805] syz.2.1239[6805] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   88.686259][ T6805] syz.2.1239[6805] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   88.714148][ T6805] syz.2.1239[6805] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   88.731038][ T6809] loop3: detected capacity change from 0 to 128
[   88.759599][ T6805] loop2: detected capacity change from 0 to 512
[   88.781487][ T6805] ext4: Bad value for 'dax'
[   88.806376][ T6812] new mount options do not match the existing superblock, will be ignored
[   88.834393][ T6814] loop2: detected capacity change from 0 to 512
[   88.847595][ T6814] EXT4-fs: Ignoring removed orlov option
[   88.857214][ T6814] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   88.869982][ T6814] EXT4-fs (loop2): orphan cleanup on readonly fs
[   88.887617][ T6814] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1243: bg 0: block 248: padding at end of block bitmap is not set
[   88.907607][ T6814] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.1243: Failed to acquire dquot type 1
[   88.919950][ T6814] EXT4-fs (loop2): 1 truncate cleaned up
[   88.932014][ T6814] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[   88.954486][ T6814] EXT4-fs error (device loop2): __ext4_remount:6749: comm syz.2.1243: Abort forced by user
[   88.970684][ T6814] EXT4-fs (loop2): Remounting filesystem read-only
[   88.977235][ T6814] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[   88.988568][ T6814] ext4 filesystem being remounted at /210/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   89.106394][ T6836] bridge5: the hash_elasticity option has been deprecated and is always 16
[   89.188107][ T6848] loop1: detected capacity change from 0 to 512
[   89.195899][ T6848] EXT4-fs: Ignoring removed orlov option
[   89.209397][ T6848] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   89.219722][ T6848] EXT4-fs (loop1): orphan cleanup on readonly fs
[   89.226931][ T6848] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1258: bg 0: block 248: padding at end of block bitmap is not set
[   89.247864][ T6848] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.1258: Failed to acquire dquot type 1
[   89.275167][ T6848] EXT4-fs (loop1): 1 truncate cleaned up
[   89.282812][ T6848] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[   89.294409][ T6848] EXT4-fs error (device loop1): __ext4_remount:6749: comm syz.1.1258: Abort forced by user
[   89.305115][ T6848] EXT4-fs (loop1): Remounting filesystem read-only
[   89.311683][ T6848] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[   89.325840][ T6848] ext4 filesystem being remounted at /265/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   89.379902][ T6856] loop3: detected capacity change from 0 to 512
[   89.526326][ T6856] ext4 filesystem being mounted at /249/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.541223][ T6856] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[   89.717302][ T6873] bridge7: the hash_elasticity option has been deprecated and is always 16
[   89.773599][ T6882] loop4: detected capacity change from 0 to 1024
[   89.776011][ T6884] bridge2: the hash_elasticity option has been deprecated and is always 16
[   89.830533][ T6891] syz.0.1272[6891] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   89.830616][ T6891] syz.0.1272[6891] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   89.842176][ T6891] syz.0.1272[6891] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   89.914082][ T6898] loop2: detected capacity change from 0 to 128
[   89.993367][ T6904] bridge3: the hash_elasticity option has been deprecated and is always 16
[   90.122637][ T6920] syz.3.1284[6920] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   90.122785][ T6920] syz.3.1284[6920] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   90.136466][ T6920] syz.3.1284[6920] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   90.161758][ T6920] loop3: detected capacity change from 0 to 512
[   90.187653][ T6920] ext4: Bad value for 'dax'
[   90.209106][ T6925] loop4: detected capacity change from 0 to 512
[   90.219928][ T6925] EXT4-fs: Ignoring removed orlov option
[   90.231217][ T6925] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   90.240918][ T6925] EXT4-fs (loop4): orphan cleanup on readonly fs
[   90.248115][ T6925] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1288: bg 0: block 248: padding at end of block bitmap is not set
[   90.263313][ T6925] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.1288: Failed to acquire dquot type 1
[   90.281331][ T6925] EXT4-fs (loop4): 1 truncate cleaned up
[   90.297895][ T6925] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[   90.338707][ T6925] EXT4-fs error (device loop4): __ext4_remount:6749: comm syz.4.1288: Abort forced by user
[   90.356021][ T6925] EXT4-fs (loop4): Remounting filesystem read-only
[   90.362572][ T6925] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[   90.373058][ T6925] ext4 filesystem being remounted at /293/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   90.469801][ T6944] loop3: detected capacity change from 0 to 1024
[   90.575837][ T6951] loop1: detected capacity change from 0 to 512
[   90.630446][ T6954] syz.4.1299[6954] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   90.683401][ T6954] __nla_validate_parse: 23 callbacks suppressed
[   90.683416][ T6954] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1299'.
[   90.769178][ T6951] ext4 filesystem being mounted at /270/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   90.880301][ T6954] loop4: detected capacity change from 0 to 512
[   90.886910][ T6954] ext4: Bad value for 'dax'
[   90.956404][ T6967] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1303'.
[   91.099819][ T6982] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1309'.
[   91.160318][ T6989] new mount options do not match the existing superblock, will be ignored
[   91.260292][ T6996] loop4: detected capacity change from 0 to 512
[   91.337784][ T6996] ext4 filesystem being mounted at /298/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   91.366898][ T6996] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[   91.636803][   T29] kauditd_printk_skb: 450 callbacks suppressed
[   91.636820][   T29] audit: type=1326 audit(2000000054.439:6412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7004 comm="syz.2.1317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f773d3b5d29 code=0x7ffc0000
[   91.666544][   T29] audit: type=1326 audit(2000000054.439:6413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7004 comm="syz.2.1317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=325 compat=0 ip=0x7f773d3b5d29 code=0x7ffc0000
[   91.689948][   T29] audit: type=1326 audit(2000000054.439:6414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7004 comm="syz.2.1317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f773d3b5d29 code=0x7ffc0000
[   91.780437][   T29] audit: type=1326 audit(2000000054.599:6415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7016 comm="syz.3.1322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26bdbe5d29 code=0x7ffc0000
[   91.799142][ T7019] new mount options do not match the existing superblock, will be ignored
[   91.819382][   T29] audit: type=1326 audit(2000000054.599:6416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7016 comm="syz.3.1322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26bdbe5d29 code=0x7ffc0000
[   91.823243][ T7015] loop2: detected capacity change from 0 to 512
[   91.842836][   T29] audit: type=1326 audit(2000000054.599:6417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7016 comm="syz.3.1322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f26bdbe5d29 code=0x7ffc0000
[   91.850838][ T7015] EXT4-fs: Ignoring removed orlov option
[   91.872425][   T29] audit: type=1326 audit(2000000054.599:6418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7016 comm="syz.3.1322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26bdbe5d29 code=0x7ffc0000
[   91.872453][   T29] audit: type=1326 audit(2000000054.599:6419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7016 comm="syz.3.1322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f26bdbe5d29 code=0x7ffc0000
[   91.902857][ T7015] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   91.924895][   T29] audit: type=1326 audit(2000000054.599:6420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7016 comm="syz.3.1322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26bdbe5d29 code=0x7ffc0000
[   91.956758][   T29] audit: type=1326 audit(2000000054.599:6421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7016 comm="syz.3.1322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7f26bdbe5d29 code=0x7ffc0000
[   92.023180][ T7025] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1326'.
[   92.042639][ T7027] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1324'.
[   92.052206][ T7015] EXT4-fs (loop2): orphan cleanup on readonly fs
[   92.060028][ T7015] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1320: bg 0: block 248: padding at end of block bitmap is not set
[   92.076682][ T7015] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.1320: Failed to acquire dquot type 1
[   92.089546][ T7027] loop3: detected capacity change from 0 to 512
[   92.100317][ T7027] ext4: Bad value for 'dax'
[   92.133907][ T7031] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1328'.
[   92.159786][ T7015] EXT4-fs (loop2): 1 truncate cleaned up
[   92.179394][ T7015] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[   92.195080][ T7035] netlink: 200 bytes leftover after parsing attributes in process `syz.3.1329'.
[   92.203464][ T7015] EXT4-fs error (device loop2): __ext4_remount:6749: comm syz.2.1320: Abort forced by user
[   92.223153][ T7037] loop4: detected capacity change from 0 to 128
[   92.234220][ T7015] EXT4-fs (loop2): Remounting filesystem read-only
[   92.240861][ T7015] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[   92.308040][ T7041] loop1: detected capacity change from 0 to 512
[   92.414121][ T7015] ext4 filesystem being remounted at /232/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   92.456422][ T7041] ext4 filesystem being mounted at /273/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   92.798370][ T7052] new mount options do not match the existing superblock, will be ignored
[   92.935668][ T7063] loop2: detected capacity change from 0 to 128
[   93.053776][ T7078] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1344'.
[   93.243069][ T7109] loop2: detected capacity change from 0 to 512
[   93.253656][ T7109] EXT4-fs: Ignoring removed orlov option
[   93.264055][ T7109] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   93.273450][ T7109] EXT4-fs (loop2): orphan cleanup on readonly fs
[   93.317035][ T7109] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1361: bg 0: block 248: padding at end of block bitmap is not set
[   93.347286][ T7109] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.1361: Failed to acquire dquot type 1
[   93.364880][ T7109] EXT4-fs (loop2): 1 truncate cleaned up
[   93.377197][ T7109] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[   93.419151][ T7109] EXT4-fs error (device loop2): __ext4_remount:6749: comm syz.2.1361: Abort forced by user
[   93.438035][ T7109] EXT4-fs (loop2): Remounting filesystem read-only
[   93.444688][ T7109] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[   93.456344][ T7109] ext4 filesystem being remounted at /241/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   93.516448][ T7131] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1367'.
[   93.525410][ T7131] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1367'.
[   93.535673][ T7127] loop2: detected capacity change from 0 to 1024
[   93.539209][ T7131] bridge6: the hash_elasticity option has been deprecated and is always 16
[   93.583442][ T7134] loop1: detected capacity change from 0 to 1024
[   93.838887][ T7156] bridge6: the hash_elasticity option has been deprecated and is always 16
[   93.847364][ T7162] bpf_get_probe_write_proto: 5 callbacks suppressed
[   93.847453][ T7162] syz.1.1381[7162] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   93.863126][ T7162] syz.1.1381[7162] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   93.884218][ T7162] syz.1.1381[7162] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   93.914513][ T7162] loop1: detected capacity change from 0 to 512
[   93.943002][ T7162] ext4: Bad value for 'dax'
[   94.007500][ T7178] loop2: detected capacity change from 0 to 1024
[   94.050514][ T7186] bridge6: the hash_elasticity option has been deprecated and is always 16
[   94.216399][ T7216] bridge7: the hash_elasticity option has been deprecated and is always 16
[   94.355441][ T7235] loop2: detected capacity change from 0 to 512
[   94.368644][ T7235] EXT4-fs: Ignoring removed orlov option
[   94.393099][ T7235] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   94.409564][ T7235] EXT4-fs (loop2): orphan cleanup on readonly fs
[   94.423091][ T7235] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1413: bg 0: block 248: padding at end of block bitmap is not set
[   94.446283][ T7235] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.1413: Failed to acquire dquot type 1
[   94.464523][ T7235] EXT4-fs (loop2): 1 truncate cleaned up
[   94.476830][ T7235] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[   94.516990][ T7235] EXT4-fs error (device loop2): __ext4_remount:6749: comm syz.2.1413: Abort forced by user
[   94.555201][ T7235] EXT4-fs (loop2): Remounting filesystem read-only
[   94.561790][ T7235] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[   94.573242][ T7235] ext4 filesystem being remounted at /249/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   94.657497][ T7261] loop4: detected capacity change from 0 to 1024
[   94.701757][ T7265] loop2: detected capacity change from 0 to 1024
[   94.962788][ T7282] loop2: detected capacity change from 0 to 128
[   95.068496][ T7298] loop4: detected capacity change from 0 to 1024
[   95.134459][ T7307] loop3: detected capacity change from 0 to 128
[   95.266026][ T7321] loop2: detected capacity change from 0 to 512
[   95.281104][ T7321] EXT4-fs: Ignoring removed orlov option
[   95.289440][ T7321] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   95.299217][ T7321] EXT4-fs (loop2): orphan cleanup on readonly fs
[   95.309887][ T7321] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1449: bg 0: block 248: padding at end of block bitmap is not set
[   95.326285][ T7321] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.1449: Failed to acquire dquot type 1
[   95.338172][ T7321] EXT4-fs (loop2): 1 truncate cleaned up
[   95.350832][ T7321] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[   95.365202][ T7321] EXT4-fs error (device loop2): __ext4_remount:6749: comm syz.2.1449: Abort forced by user
[   95.384212][ T7321] EXT4-fs (loop2): Remounting filesystem read-only
[   95.390900][ T7321] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[   95.401433][ T7321] ext4 filesystem being remounted at /259/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   95.435212][ T7335] loop3: detected capacity change from 0 to 128
[   95.585041][ T7353] loop4: detected capacity change from 0 to 1024
[   95.613455][ T7356] loop1: detected capacity change from 0 to 512
[   95.628751][ T7356] EXT4-fs: Ignoring removed orlov option
[   95.647988][ T7356] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   95.668947][ T7356] EXT4-fs (loop1): orphan cleanup on readonly fs
[   95.698964][ T7356] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1465: bg 0: block 248: padding at end of block bitmap is not set
[   95.724316][ T7356] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.1465: Failed to acquire dquot type 1
[   95.738025][ T7356] EXT4-fs (loop1): 1 truncate cleaned up
[   95.740116][ T7368] loop2: detected capacity change from 0 to 128
[   95.744264][ T7356] EXT4-fs mount: 44 callbacks suppressed
[   95.744277][ T7356] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   95.786036][ T7356] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[   95.813656][ T7373] __nla_validate_parse: 9 callbacks suppressed
[   95.813711][ T7373] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1472'.
[   95.828821][ T7373] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1472'.
[   95.838230][ T7356] EXT4-fs error (device loop1): __ext4_remount:6749: comm syz.1.1465: Abort forced by user
[   95.853570][ T7356] EXT4-fs (loop1): Remounting filesystem read-only
[   95.860133][ T7356] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[   95.870764][ T7356] ext4 filesystem being remounted at /301/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   95.896629][ T7373] bridge4: the hash_elasticity option has been deprecated and is always 16
[   95.906743][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.978630][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.989748][ T7389] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1479'.
[   96.003289][ T7389] loop3: detected capacity change from 0 to 512
[   96.010734][ T7389] ext4: Bad value for 'dax'
[   96.039517][ T7397] new mount options do not match the existing superblock, will be ignored
[   96.165027][ T7410] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1487'.
[   96.173940][ T7410] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1487'.
[   96.201787][ T7410] bridge8: the hash_elasticity option has been deprecated and is always 16
[   96.367279][ T7428] new mount options do not match the existing superblock, will be ignored
[   96.435601][ T7433] loop1: detected capacity change from 0 to 128
[   96.645497][ T7446] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1491'.
[   96.654521][ T7446] netem: unknown loss type 13
[   96.659201][ T7446] netem: change failed
[   96.732385][ T7454] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1502'.
[   96.845912][   T29] kauditd_printk_skb: 325 callbacks suppressed
[   96.845928][   T29] audit: type=1326 audit(2000000059.669:6737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7457 comm="syz.1.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac597b5d29 code=0x7ffc0000
[   96.893868][   T29] audit: type=1326 audit(2000000059.669:6738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7457 comm="syz.1.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac597b5d29 code=0x7ffc0000
[   96.917401][   T29] audit: type=1326 audit(2000000059.699:6739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7457 comm="syz.1.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7fac597b5d29 code=0x7ffc0000
[   96.940716][   T29] audit: type=1326 audit(2000000059.699:6740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7457 comm="syz.1.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac597b5d29 code=0x7ffc0000
[   96.964123][   T29] audit: type=1326 audit(2000000059.699:6741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7457 comm="syz.1.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac597b5d29 code=0x7ffc0000
[   96.987497][   T29] audit: type=1326 audit(2000000059.699:6742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7457 comm="syz.1.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fac597b5d29 code=0x7ffc0000
[   96.995396][ T7464] loop1: detected capacity change from 0 to 128
[   97.010931][   T29] audit: type=1326 audit(2000000059.699:6743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7457 comm="syz.1.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac597b5d29 code=0x7ffc0000
[   97.010963][   T29] audit: type=1326 audit(2000000059.699:6744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7457 comm="syz.1.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fac597b5d29 code=0x7ffc0000
[   97.010991][   T29] audit: type=1326 audit(2000000059.699:6745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7457 comm="syz.1.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac597b5d29 code=0x7ffc0000
[   97.087583][   T29] audit: type=1326 audit(2000000059.699:6746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7457 comm="syz.1.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=439 compat=0 ip=0x7fac597b5d29 code=0x7ffc0000
[   97.399773][ T7473] loop1: detected capacity change from 0 to 1024
[   97.414662][ T7475] new mount options do not match the existing superblock, will be ignored
[   97.456493][ T7473] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   97.746960][ T7486] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1516'.
[   97.760175][ T7486] loop4: detected capacity change from 0 to 512
[   97.766923][ T7486] ext4: Bad value for 'dax'
[   97.850488][ T7489] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1517'.
[   97.909078][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.933324][ T7497] loop2: detected capacity change from 0 to 128
[   98.045009][ T7509] netlink: 200 bytes leftover after parsing attributes in process `syz.2.1527'.
[   98.100889][ T7516] 9pnet_fd: Insufficient options for proto=fd
[   98.150172][ T7523] loop4: detected capacity change from 0 to 1024
[   98.179635][ T7523] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   98.245986][ T7529] loop1: detected capacity change from 0 to 128
[   98.590367][ T7545] loop2: detected capacity change from 0 to 512
[   98.705027][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.736933][ T7545] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   98.749635][ T7545] ext4 filesystem being mounted at /285/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   99.088318][ T7563] loop3: detected capacity change from 0 to 512
[   99.097132][ T7563] ext4: Bad value for 'dax'
[   99.298395][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.321289][ T7589] loop3: detected capacity change from 0 to 512
[   99.327926][ T7589] ext4: Bad value for 'dax'
[   99.698927][ T7615] pim6reg: entered allmulticast mode
[   99.800326][ T7626] loop1: detected capacity change from 0 to 512
[  100.014179][ T7626] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.026858][ T7626] ext4 filesystem being mounted at /329/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  100.390084][ T7662] loop2: detected capacity change from 0 to 1024
[  100.460701][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.471161][ T7662] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.756565][ T7685] new mount options do not match the existing superblock, will be ignored
[  100.787641][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.016568][ T7702] loop4: detected capacity change from 0 to 512
[  101.169349][ T7702] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.181955][ T7702] ext4 filesystem being mounted at /341/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  101.500032][ T7727] new mount options do not match the existing superblock, will be ignored
[  101.553414][ T7731] __nla_validate_parse: 3 callbacks suppressed
[  101.553427][ T7731] netlink: 200 bytes leftover after parsing attributes in process `syz.0.1614'.
[  101.698721][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.893705][ T7748] loop2: detected capacity change from 0 to 1024
[  101.976788][ T7752] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1622'.
[  102.063471][ T7760] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1624'.
[  102.087135][ T7748] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.116610][ T7756] loop1: detected capacity change from 0 to 512
[  102.158427][ T7759] loop4: detected capacity change from 0 to 1024
[  102.174563][ T7756] ext4: Bad value for 'dax'
[  102.211714][ T7759] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.366236][ T7771] netlink: 200 bytes leftover after parsing attributes in process `syz.0.1628'.
[  102.504051][   T29] kauditd_printk_skb: 246 callbacks suppressed
[  102.504068][   T29] audit: type=1326 audit(2000000065.299:6993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7775 comm="syz.0.1630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca5bae5d29 code=0x7ffc0000
[  102.533817][   T29] audit: type=1326 audit(2000000065.299:6994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7775 comm="syz.0.1630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7fca5bae5d29 code=0x7ffc0000
[  102.557184][   T29] audit: type=1326 audit(2000000065.299:6995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7775 comm="syz.0.1630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca5bae5d29 code=0x7ffc0000
[  102.580633][   T29] audit: type=1326 audit(2000000065.299:6996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7775 comm="syz.0.1630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca5bae5d29 code=0x7ffc0000
[  102.604142][   T29] audit: type=1326 audit(2000000065.299:6997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7775 comm="syz.0.1630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fca5bae5d29 code=0x7ffc0000
[  102.627681][   T29] audit: type=1326 audit(2000000065.299:6998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7775 comm="syz.0.1630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca5bae5d29 code=0x7ffc0000
[  102.651194][   T29] audit: type=1326 audit(2000000065.299:6999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7775 comm="syz.0.1630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca5bae5d29 code=0x7ffc0000
[  102.674660][   T29] audit: type=1326 audit(2000000065.299:7000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7775 comm="syz.0.1630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fca5bae5d29 code=0x7ffc0000
[  102.698059][   T29] audit: type=1326 audit(2000000065.299:7001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7775 comm="syz.0.1630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca5bae5d29 code=0x7ffc0000
[  102.721471][   T29] audit: type=1326 audit(2000000065.299:7002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7775 comm="syz.0.1630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=439 compat=0 ip=0x7fca5bae5d29 code=0x7ffc0000
[  102.849726][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.055820][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.067196][ T7790] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1635'.
[  103.466703][ T7805] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1638'.
[  103.485957][ T7809] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1644'.
[  103.496854][ T7806] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1641'.
[  103.505885][ T7806] netem: unknown loss type 13
[  103.506843][ T7805] loop4: detected capacity change from 0 to 512
[  103.510559][ T7806] netem: change failed
[  103.518077][ T7805] ext4: Bad value for 'dax'
[  103.594293][ T7817] netlink: 4 bytes leftover after parsing attributes in process `#ØSMø%·b+'.
[  103.603777][ T7817] batman_adv: batadv0: Removing interface: batadv_slave_0
[  103.612043][ T7817] batman_adv: batadv0: Removing interface: batadv_slave_1
[  104.050279][ T7828] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1651'.
[  104.145097][ T7839] new mount options do not match the existing superblock, will be ignored
[  104.180932][ T7841] loop4: detected capacity change from 0 to 1024
[  104.432978][ T7844] Process accounting resumed
[  104.467430][ T7841] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.618817][ T7875] new mount options do not match the existing superblock, will be ignored
[  104.670656][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.679781][ T7877] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7877 comm=syz.1.1669
[  104.763712][ T7887] Driver unsupported XDP return value 0 on prog  (id 1120) dev N/A, expect packet loss!
[  104.845877][ T7896] loop4: detected capacity change from 0 to 512
[  104.907234][ T7898] FAULT_INJECTION: forcing a failure.
[  104.907234][ T7898] name failslab, interval 1, probability 0, space 0, times 0
[  104.920000][ T7898] CPU: 1 UID: 0 PID: 7898 Comm: syz.4.1678 Tainted: G        W          6.13.0-rc6-syzkaller #0
[  104.930420][ T7898] Tainted: [W]=WARN
[  104.934222][ T7898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  104.944288][ T7898] Call Trace:
[  104.947571][ T7898]  <TASK>
[  104.950502][ T7898]  dump_stack_lvl+0xf2/0x150
[  104.955109][ T7898]  dump_stack+0x15/0x1a
[  104.959276][ T7898]  should_fail_ex+0x223/0x230
[  104.963961][ T7898]  should_failslab+0x8f/0xb0
[  104.968618][ T7898]  __kmalloc_node_noprof+0xad/0x410
[  104.973812][ T7898]  ? __vmalloc_node_range_noprof+0x3dc/0xe80
[  104.979879][ T7898]  __vmalloc_node_range_noprof+0x3dc/0xe80
[  104.985732][ T7898]  ? mntput_no_expire+0x70/0x3c0
[  104.990784][ T7898]  ? selinux_capable+0x1f2/0x260
[  104.995719][ T7898]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  105.001311][ T7898]  __vmalloc_noprof+0x5e/0x70
[  105.005985][ T7898]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  105.011519][ T7898]  bpf_prog_alloc_no_stats+0x49/0x380
[  105.016949][ T7898]  ? bpf_prog_alloc+0x28/0x150
[  105.021712][ T7898]  bpf_prog_alloc+0x3a/0x150
[  105.026292][ T7898]  bpf_prog_load+0x4d1/0x1070
[  105.031000][ T7898]  ? __rcu_read_unlock+0x4e/0x70
[  105.035939][ T7898]  __sys_bpf+0x463/0x7a0
[  105.040177][ T7898]  __x64_sys_bpf+0x43/0x50
[  105.044608][ T7898]  x64_sys_call+0x2914/0x2dc0
[  105.049287][ T7898]  do_syscall_64+0xc9/0x1c0
[  105.053793][ T7898]  ? clear_bhb_loop+0x55/0xb0
[  105.058480][ T7898]  ? clear_bhb_loop+0x55/0xb0
[  105.063145][ T7898]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.069101][ T7898] RIP: 0033:0x7f1b0abd5d29
[  105.073510][ T7898] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.093167][ T7898] RSP: 002b:00007f1b09247038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  105.101632][ T7898] RAX: ffffffffffffffda RBX: 00007f1b0adc5fa0 RCX: 00007f1b0abd5d29
[  105.109592][ T7898] RDX: 0000000000000094 RSI: 0000000020000400 RDI: 0000000000000005
[  105.117551][ T7898] RBP: 00007f1b09247090 R08: 0000000000000000 R09: 0000000000000000
[  105.125529][ T7898] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  105.133491][ T7898] R13: 0000000000000001 R14: 00007f1b0adc5fa0 R15: 00007fff9e5f9d58
[  105.141456][ T7898]  </TASK>
[  105.144543][ T7898] syz.4.1678: vmalloc error: size 4096, failed to allocated page array size 8, mode:0x500dc2(GFP_HIGHUSER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0
[  105.162096][ T7898] CPU: 1 UID: 0 PID: 7898 Comm: syz.4.1678 Tainted: G        W          6.13.0-rc6-syzkaller #0
[  105.165054][ T7901] FAULT_INJECTION: forcing a failure.
[  105.165054][ T7901] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  105.172595][ T7898] Tainted: [W]=WARN
[  105.172603][ T7898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  105.172615][ T7898] Call Trace:
[  105.172622][ T7898]  <TASK>
[  105.205622][ T7898]  dump_stack_lvl+0xf2/0x150
[  105.210284][ T7898]  dump_stack+0x15/0x1a
[  105.214550][ T7898]  warn_alloc+0x145/0x1b0
[  105.218933][ T7898]  __vmalloc_node_range_noprof+0x473/0xe80
[  105.224817][ T7898]  ? selinux_capable+0x1f2/0x260
[  105.229797][ T7898]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  105.235359][ T7898]  __vmalloc_noprof+0x5e/0x70
[  105.240059][ T7898]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  105.245601][ T7898]  bpf_prog_alloc_no_stats+0x49/0x380
[  105.250999][ T7898]  ? bpf_prog_alloc+0x28/0x150
[  105.255754][ T7898]  bpf_prog_alloc+0x3a/0x150
[  105.260389][ T7898]  bpf_prog_load+0x4d1/0x1070
[  105.265131][ T7898]  ? __rcu_read_unlock+0x4e/0x70
[  105.270312][ T7898]  __sys_bpf+0x463/0x7a0
[  105.274663][ T7898]  __x64_sys_bpf+0x43/0x50
[  105.279101][ T7898]  x64_sys_call+0x2914/0x2dc0
[  105.283849][ T7898]  do_syscall_64+0xc9/0x1c0
[  105.288350][ T7898]  ? clear_bhb_loop+0x55/0xb0
[  105.293023][ T7898]  ? clear_bhb_loop+0x55/0xb0
[  105.297757][ T7898]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.303691][ T7898] RIP: 0033:0x7f1b0abd5d29
[  105.308097][ T7898] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.327772][ T7898] RSP: 002b:00007f1b09247038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  105.336176][ T7898] RAX: ffffffffffffffda RBX: 00007f1b0adc5fa0 RCX: 00007f1b0abd5d29
[  105.344211][ T7898] RDX: 0000000000000094 RSI: 0000000020000400 RDI: 0000000000000005
[  105.352183][ T7898] RBP: 00007f1b09247090 R08: 0000000000000000 R09: 0000000000000000
[  105.360148][ T7898] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  105.368161][ T7898] R13: 0000000000000001 R14: 00007f1b0adc5fa0 R15: 00007fff9e5f9d58
[  105.376136][ T7898]  </TASK>
[  105.379150][ T7901] CPU: 0 UID: 0 PID: 7901 Comm: syz.3.1680 Tainted: G        W          6.13.0-rc6-syzkaller #0
[  105.379247][ T7898] Mem-Info:
[  105.389624][ T7901] Tainted: [W]=WARN
[  105.389632][ T7901] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  105.389643][ T7901] Call Trace:
[  105.389650][ T7901]  <TASK>
[  105.389657][ T7901]  dump_stack_lvl+0xf2/0x150
[  105.392753][ T7898] active_anon:21462 inactive_anon:22 isolated_anon:0
[  105.392753][ T7898]  active_file:15047 inactive_file:2038 isolated_file:0
[  105.392753][ T7898]  unevictable:0 dirty:176 writeback:0
[  105.392753][ T7898]  slab_reclaimable:2817 slab_unreclaimable:13778
[  105.392753][ T7898]  mapped:29009 shmem:17365 pagetables:809
[  105.392753][ T7898]  sec_pagetables:0 bounce:0
[  105.392753][ T7898]  kernel_misc_reclaimable:0
[  105.392753][ T7898]  free:1860697 free_pcp:25226 free_cma:0
[  105.396534][ T7901]  dump_stack+0x15/0x1a
[  105.406627][ T7898] Node 0 active_anon:85848kB inactive_anon:88kB active_file:60188kB inactive_file:8152kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:116036kB dirty:704kB writeback:0kB shmem:69460kB writeback_tmp:0kB kernel_stack:2832kB pagetables:3236kB sec_pagetables:0kB all_unreclaimable? no
[  105.409860][ T7901]  should_fail_ex+0x223/0x230
[  105.412777][ T7898] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  105.417407][ T7901]  should_fail+0xb/0x10
[  105.417432][ T7901]  should_fail_usercopy+0x1a/0x20
[  105.417452][ T7901]  _copy_to_user+0x20/0xa0
[  105.417474][ T7901]  simple_read_from_buffer+0xa0/0x110
[  105.417504][ T7901]  proc_fail_nth_read+0xf9/0x140
[  105.462589][ T7898] lowmem_reserve[]:
[  105.466680][ T7901]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  105.494472][ T7898]  0 2866 7844 0
[  105.494493][ T7898] Node 0 DMA32 free:2950380kB boost:0kB min:4136kB low:7068kB high:10000kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2953912kB mlocked:0kB bounce:0kB free_pcp:3532kB local_pcp:0kB free_cma:0kB
[  105.499147][ T7901]  vfs_read+0x1a2/0x700
[  105.499172][ T7901]  ? __rcu_read_unlock+0x4e/0x70
[  105.499195][ T7901]  ? __fget_files+0x17c/0x1c0
[  105.525947][ T7898] lowmem_reserve[]:
[  105.530053][ T7901]  ksys_read+0xe8/0x1b0
[  105.535152][ T7898]  0
[  105.539522][ T7901]  __x64_sys_read+0x42/0x50
[  105.544875][ T7898]  0
[  105.549763][ T7901]  x64_sys_call+0x2874/0x2dc0
[  105.553539][ T7898]  4978 0
[  105.553553][ T7898] Node 0 Normal free:4477048kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:85848kB inactive_anon:88kB active_file:60188kB inactive_file:8152kB unevictable:0kB writepending:704kB present:5242880kB managed:5098208kB mlocked:0kB bounce:0kB free_pcp:97372kB local_pcp:72140kB free_cma:0kB
[  105.559096][ T7901]  do_syscall_64+0xc9/0x1c0
[  105.562641][ T7898] lowmem_reserve[]: 0 0
[  105.590902][ T7901]  ? clear_bhb_loop+0x55/0xb0
[  105.590960][ T7901]  ? clear_bhb_loop+0x55/0xb0
[  105.595088][ T7898]  0
[  105.599982][ T7901]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.604672][ T7898]  0
[  105.608407][ T7901] RIP: 0033:0x7f26bdbe473c
[  105.612530][ T7898] 
[  105.612536][ T7898] Node 0 
[  105.615007][ T7901] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  105.615027][ T7901] RSP: 002b:00007f26bc257030 EFLAGS: 00000246
[  105.619502][ T7898] DMA: 0*4kB 
[  105.621978][ T7901]  ORIG_RAX: 0000000000000000
[  105.626658][ T7898] 0*8kB 
[  105.629539][ T7901] RAX: ffffffffffffffda RBX: 00007f26bddd5fa0 RCX: 00007f26bdbe473c
[  105.629554][ T7901] RDX: 000000000000000f RSI: 00007f26bc2570a0 RDI: 0000000000000004
[  105.629565][ T7901] RBP: 00007f26bc257090 R08: 0000000000000000 R09: 0000000000000000
[  105.659700][ T7898] 0*16kB 
[  105.664124][ T7901] R10: 000000000000004e R11: 0000000000000246 R12: 0000000000000001
[  105.664139][ T7901] R13: 0000000000000000 R14: 00007f26bddd5fa0 R15: 00007ffda033ab38
[  105.668263][ T7898] 0*32kB 0*64kB 
[  105.672917][ T7901]  </TASK>
[  105.728538][ T7907] new mount options do not match the existing superblock, will be ignored
[  105.732194][ T7898] 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  105.802362][ T7898] Node 0 DMA32: 3*4kB (M) 4*8kB (M) 4*16kB (M) 6*32kB (M) 3*64kB (M) 2*128kB (M) 2*256kB (M) 2*512kB (M) 3*1024kB (M) 2*2048kB (M) 718*4096kB (M) = 2950380kB
[  105.818572][ T7898] Node 0 Normal: 587*4kB (UME) 182*8kB (U) 191*16kB (UME) 284*32kB (UME) 274*64kB (UME) 96*128kB (UME) 28*256kB (UME) 18*512kB (UM) 54*1024kB (UM) 62*2048kB (UM) 1034*4096kB (UM) = 4479692kB
[  105.837581][ T7898] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  105.846930][ T7898] 34469 total pagecache pages
[  105.852100][ T7898] 26 pages in swap cache
[  105.856086][ T7906] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7906 comm=syz.3.1682
[  105.856430][ T7898] Free swap  = 124188kB
[  105.872922][ T7898] Total swap = 124996kB
[  105.877094][ T7898] 2097051 pages RAM
[  105.880926][ T7898] 0 pages HighMem/MovableOnly
[  105.885640][ T7898] 80181 pages reserved
[  105.991508][ T7925] loop2: detected capacity change from 0 to 512
[  106.000636][ T7925] EXT4-fs: Ignoring removed orlov option
[  106.015707][ T7927] loop3: detected capacity change from 0 to 1024
[  106.031779][ T7925] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  106.054746][ T7925] EXT4-fs (loop2): orphan cleanup on readonly fs
[  106.061647][ T7925] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1690: bg 0: block 248: padding at end of block bitmap is not set
[  106.084131][ T7925] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.1690: Failed to acquire dquot type 1
[  106.096280][ T7927] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  106.110069][ T7925] EXT4-fs (loop2): 1 truncate cleaned up
[  106.122955][ T7925] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  106.136694][ T7925] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  106.257561][ T7940] new mount options do not match the existing superblock, will be ignored
[  106.268561][ T7925] EXT4-fs error (device loop2): __ext4_remount:6749: comm syz.2.1690: Abort forced by user
[  106.278891][ T7925] EXT4-fs (loop2): Remounting filesystem read-only
[  106.285432][ T7925] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  106.295943][ T7925] ext4 filesystem being remounted at /314/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  106.319744][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.355882][ T7944] rdma_op ffff888117b73180 conn xmit_rdma 0000000000000000
[  106.366959][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.379293][ T7945] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7945 comm=syz.0.1695
[  106.399713][ T7946] netem: unknown loss type 13
[  106.404544][ T7946] netem: change failed
[  106.452576][ T7950] loop2: detected capacity change from 0 to 1024
[  106.460075][ T7950] EXT4-fs: Ignoring removed i_version option
[  106.475879][ T7950] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  106.820089][ T7971] __nla_validate_parse: 1 callbacks suppressed
[  106.820104][ T7971] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1697'.
[  106.835429][ T7971] netem: unknown loss type 13
[  106.840104][ T7971] netem: change failed
[  106.858055][ T7973] new mount options do not match the existing superblock, will be ignored
[  106.902581][ T7975] loop4: detected capacity change from 0 to 512
[  106.913630][ T7975] EXT4-fs: Ignoring removed orlov option
[  106.924727][ T7975] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  106.942623][ T7975] EXT4-fs (loop4): orphan cleanup on readonly fs
[  106.949868][ T7975] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1707: bg 0: block 248: padding at end of block bitmap is not set
[  106.965487][ T7975] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.1707: Failed to acquire dquot type 1
[  107.014810][ T7975] EXT4-fs (loop4): 1 truncate cleaned up
[  107.088675][ T7975] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  107.106761][ T7975] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  107.125184][ T7975] EXT4-fs error (device loop4): __ext4_remount:6749: comm syz.4.1707: Abort forced by user
[  107.135800][ T7975] EXT4-fs (loop4): Remounting filesystem read-only
[  107.137142][ T7982] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7982 comm=syz.0.1709
[  107.142318][ T7975] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  107.142353][ T7975] ext4 filesystem being remounted at /363/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  107.185534][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.241061][ T7993] loop4: detected capacity change from 0 to 1024
[  107.274988][ T7995] loop1: detected capacity change from 0 to 1024
[  107.291909][ T7995] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.308038][ T7993] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.322820][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.648685][ T8016] loop2: detected capacity change from 0 to 512
[  107.675873][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.697324][ T8016] EXT4-fs: Ignoring removed orlov option
[  107.716689][   T29] kauditd_printk_skb: 231 callbacks suppressed
[  107.716704][   T29] audit: type=1326 audit(2000000070.539:7230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8021 comm="syz.3.1726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26bdbe5d29 code=0x7ffc0000
[  107.746634][   T29] audit: type=1326 audit(2000000070.539:7231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8021 comm="syz.3.1726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26bdbe5d29 code=0x7ffc0000
[  107.770131][   T29] audit: type=1326 audit(2000000070.539:7232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8021 comm="syz.3.1726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=43 compat=0 ip=0x7f26bdbe5d29 code=0x7ffc0000
[  107.793574][   T29] audit: type=1326 audit(2000000070.539:7233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8021 comm="syz.3.1726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26bdbe5d29 code=0x7ffc0000
[  107.816971][   T29] audit: type=1326 audit(2000000070.539:7234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8021 comm="syz.3.1726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26bdbe5d29 code=0x7ffc0000
[  107.840389][   T29] audit: type=1326 audit(2000000070.569:7235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8023 comm="syz.3.1727" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26bdbe5d29 code=0x7ffc0000
[  107.863918][   T29] audit: type=1326 audit(2000000070.569:7236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8023 comm="syz.3.1727" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26bdbe5d29 code=0x7ffc0000
[  107.887336][   T29] audit: type=1326 audit(2000000070.579:7237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8023 comm="syz.3.1727" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f26bdbe5d29 code=0x7ffc0000
[  107.910829][   T29] audit: type=1326 audit(2000000070.579:7238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8023 comm="syz.3.1727" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26bdbe5d29 code=0x7ffc0000
[  107.934275][   T29] audit: type=1326 audit(2000000070.579:7239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8023 comm="syz.3.1727" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26bdbe5d29 code=0x7ffc0000
[  107.955220][ T8016] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  107.995212][ T8016] EXT4-fs (loop2): orphan cleanup on readonly fs
[  108.002502][ T8016] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1722: bg 0: block 248: padding at end of block bitmap is not set
[  108.002705][ T8028] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8028 comm=syz.4.1723
[  108.017523][ T8016] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.1722: Failed to acquire dquot type 1
[  108.041878][ T8016] EXT4-fs (loop2): 1 truncate cleaned up
[  108.048192][ T8016] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  108.069131][ T8016] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  108.097952][ T8016] EXT4-fs error (device loop2): __ext4_remount:6749: comm syz.2.1722: Abort forced by user
[  108.109304][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.118864][ T8016] EXT4-fs (loop2): Remounting filesystem read-only
[  108.125451][ T8016] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  108.131114][ T8035] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1728'.
[  108.141802][ T8016] ext4 filesystem being remounted at /320/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  108.144727][ T8035] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1728'.
[  108.173198][ T8035] bridge7: the hash_elasticity option has been deprecated and is always 16
[  108.182316][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.244169][ T8045] loop1: detected capacity change from 0 to 1024
[  108.267160][ T8045] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  108.313479][ T8059] loop2: detected capacity change from 0 to 1024
[  108.343633][ T8058] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8058 comm=syz.0.1739
[  108.371097][ T8059] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  108.443030][ T8068] new mount options do not match the existing superblock, will be ignored
[  108.545569][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.583960][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.626174][ T8090] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1751'.
[  108.643169][ T8094] new mount options do not match the existing superblock, will be ignored
[  108.691565][ T8101] loop3: detected capacity change from 0 to 512
[  108.699193][ T8101] EXT4-fs: Ignoring removed orlov option
[  108.716770][ T8101] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  108.733059][ T8101] EXT4-fs (loop3): orphan cleanup on readonly fs
[  108.750184][ T8101] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1757: bg 0: block 248: padding at end of block bitmap is not set
[  108.771016][ T8101] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.1757: Failed to acquire dquot type 1
[  108.774974][ T8103] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1767'.
[  108.783513][ T8101] EXT4-fs (loop3): 1 truncate cleaned up
[  108.798456][ T8101] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  108.830548][ T8101] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  108.935062][ T8101] EXT4-fs error (device loop3): __ext4_remount:6749: comm syz.3.1757: Abort forced by user
[  108.955648][ T8117] loop2: detected capacity change from 0 to 1024
[  108.966771][ T8101] EXT4-fs (loop3): Remounting filesystem read-only
[  108.973431][ T8101] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  108.984158][ T8101] ext4 filesystem being remounted at /335/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  109.027024][ T8117] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.039545][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.111428][ T8125] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1765'.
[  109.280959][ T8146] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1774'.
[  109.330028][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.397302][ T8157] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1778'.
[  109.431160][ T8165] loop4: detected capacity change from 0 to 1024
[  109.463194][ T8165] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.481991][ T8175] FAULT_INJECTION: forcing a failure.
[  109.481991][ T8175] name failslab, interval 1, probability 0, space 0, times 0
[  109.494781][ T8175] CPU: 1 UID: 0 PID: 8175 Comm: syz.2.1787 Tainted: G        W          6.13.0-rc6-syzkaller #0
[  109.505348][ T8175] Tainted: [W]=WARN
[  109.509193][ T8175] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  109.519343][ T8175] Call Trace:
[  109.522667][ T8175]  <TASK>
[  109.525596][ T8175]  dump_stack_lvl+0xf2/0x150
[  109.530263][ T8175]  dump_stack+0x15/0x1a
[  109.534499][ T8175]  should_fail_ex+0x223/0x230
[  109.539191][ T8175]  ? __pfx_ipgre_tunnel_setup+0x10/0x10
[  109.544837][ T8175]  should_failslab+0x8f/0xb0
[  109.549458][ T8175]  __kmalloc_node_noprof+0xad/0x410
[  109.554650][ T8175]  ? __kvmalloc_node_noprof+0x72/0x170
[  109.560106][ T8175]  ? __pfx_ipgre_tunnel_setup+0x10/0x10
[  109.565708][ T8175]  __kvmalloc_node_noprof+0x72/0x170
[  109.571016][ T8175]  alloc_netdev_mqs+0xa8/0x9c0
[  109.575770][ T8175]  ? __pfx_ipgre_tunnel_setup+0x10/0x10
[  109.581318][ T8175]  __ip_tunnel_create+0x165/0x270
[  109.586466][ T8175]  ip_tunnel_ctl+0x420/0x7b0
[  109.591052][ T8175]  ipgre_tunnel_ctl+0x20e/0x550
[  109.595966][ T8175]  ip_tunnel_siocdevprivate+0x7e/0x220
[  109.601470][ T8175]  ? full_name_hash+0x93/0xe0
[  109.606182][ T8175]  ? strcmp+0x21/0x50
[  109.610205][ T8175]  ? __pfx_ip_tunnel_siocdevprivate+0x10/0x10
[  109.616265][ T8175]  dev_ifsioc+0x84e/0xa10
[  109.620625][ T8175]  dev_ioctl+0x8e9/0xab0
[  109.624863][ T8175]  sock_ioctl+0x57d/0x600
[  109.629190][ T8175]  ? __pfx_sock_ioctl+0x10/0x10
[  109.634109][ T8175]  __se_sys_ioctl+0xc9/0x140
[  109.638693][ T8175]  __x64_sys_ioctl+0x43/0x50
[  109.643322][ T8175]  x64_sys_call+0x1690/0x2dc0
[  109.647989][ T8175]  do_syscall_64+0xc9/0x1c0
[  109.652481][ T8175]  ? clear_bhb_loop+0x55/0xb0
[  109.657150][ T8175]  ? clear_bhb_loop+0x55/0xb0
[  109.661816][ T8175]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.667734][ T8175] RIP: 0033:0x7f773d3b5d29
[  109.672221][ T8175] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.691820][ T8175] RSP: 002b:00007f773ba27038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  109.700282][ T8175] RAX: ffffffffffffffda RBX: 00007f773d5a5fa0 RCX: 00007f773d3b5d29
[  109.708280][ T8175] RDX: 0000000020001040 RSI: 00000000000089f1 RDI: 0000000000000003
[  109.716301][ T8175] RBP: 00007f773ba27090 R08: 0000000000000000 R09: 0000000000000000
[  109.724263][ T8175] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.732233][ T8175] R13: 0000000000000000 R14: 00007f773d5a5fa0 R15: 00007ffda27c23a8
[  109.740202][ T8175]  </TASK>
[  109.898378][ T8197] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1797'.
[  109.942186][ T8197] loop1: detected capacity change from 0 to 512
[  109.948996][ T8200] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1796'.
[  109.958427][ T8197] ext4: Bad value for 'dax'
[  110.009381][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.038955][ T8206] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  110.193590][ T8230] loop2: detected capacity change from 0 to 512
[  110.200261][ T8230] ext4: Bad value for 'dax'
[  110.669295][ T8267] loop2: detected capacity change from 0 to 512
[  110.684616][ T8267] EXT4-fs: Ignoring removed orlov option
[  110.695033][ T8267] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  110.703971][ T8267] EXT4-fs (loop2): orphan cleanup on readonly fs
[  110.711226][ T8267] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1824: bg 0: block 248: padding at end of block bitmap is not set
[  110.726509][ T8267] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.1824: Failed to acquire dquot type 1
[  110.738212][ T8267] EXT4-fs (loop2): 1 truncate cleaned up
[  110.745189][ T8267] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  110.761614][ T8267] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  110.766676][ T8271] loop3: detected capacity change from 0 to 1024
[  110.778770][ T8271] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  110.789808][ T8271] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869)
[  110.789899][ T8267] EXT4-fs error (device loop2): __ext4_remount:6749: comm syz.2.1824: Abort forced by user
[  110.799887][ T8271] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  110.819698][ T8267] EXT4-fs (loop2): Remounting filesystem read-only
[  110.820031][ T8271] EXT4-fs (loop3): invalid journal inode
[  110.826274][ T8267] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  110.831892][ T8271] EXT4-fs (loop3): can't get journal size
[  110.844636][ T8267] ext4 filesystem being remounted at /341/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  110.859251][ T8271] EXT4-fs error (device loop3): ext4_protect_reserved_inode:182: inode #3: comm +}[@: blocks 2-2 from inode overlap system zone
[  110.874701][ T8271] EXT4-fs (loop3): failed to initialize system zone (-117)
[  110.886486][ T8271] EXT4-fs (loop3): mount failed
[  110.894687][ T8278] IPVS: Error joining to the multicast group
[  110.917893][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.078770][ T8298] loop2: detected capacity change from 0 to 512
[  111.088093][ T8298] EXT4-fs: Ignoring removed orlov option
[  111.094633][ T8298] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  111.103798][ T8298] EXT4-fs (loop2): orphan cleanup on readonly fs
[  111.111183][ T8298] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1833: bg 0: block 248: padding at end of block bitmap is not set
[  111.126083][ T8298] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.1833: Failed to acquire dquot type 1
[  111.137843][ T8298] EXT4-fs (loop2): 1 truncate cleaned up
[  111.148619][ T8298] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  111.162466][ T8298] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  111.174347][ T8298] EXT4-fs error (device loop2): __ext4_remount:6749: comm syz.2.1833: Abort forced by user
[  111.185836][ T8298] EXT4-fs (loop2): Remounting filesystem read-only
[  111.192363][ T8298] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  111.203360][ T8298] ext4 filesystem being remounted at /344/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  111.224726][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.373476][ T8324] loop2: detected capacity change from 0 to 512
[  111.382678][ T8324] ext4: Bad value for 'dax'
[  111.837486][ T8335] loop4: detected capacity change from 0 to 128
[  111.965147][ T8345] new mount options do not match the existing superblock, will be ignored
[  111.988547][ T8348] netlink: 'syz.3.1855': attribute type 1 has an invalid length.
[  111.996351][ T8348] __nla_validate_parse: 8 callbacks suppressed
[  111.996424][ T8348] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1855'.
[  112.004574][ T8350] loop4: detected capacity change from 0 to 1024
[  112.038498][ T8350] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  112.221976][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.259172][ T8361] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1860'.
[  112.289383][ T8364] loop2: detected capacity change from 0 to 1024
[  112.305096][ T8364] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  112.453628][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.659742][ T8389] loop2: detected capacity change from 0 to 1024
[  112.675871][ T8389] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  112.913367][   T29] kauditd_printk_skb: 206 callbacks suppressed
[  112.913383][   T29] audit: type=1326 audit(2000000075.729:7438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8405 comm="syz.4.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b0abd5d29 code=0x7ffc0000
[  112.982806][   T29] audit: type=1326 audit(2000000075.729:7439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8405 comm="syz.4.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b0abd5d29 code=0x7ffc0000
[  113.006269][   T29] audit: type=1326 audit(2000000075.729:7440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8405 comm="syz.4.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1b0abd5d29 code=0x7ffc0000
[  113.029728][   T29] audit: type=1326 audit(2000000075.729:7441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8405 comm="syz.4.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b0abd5d29 code=0x7ffc0000
[  113.053123][   T29] audit: type=1326 audit(2000000075.729:7442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8405 comm="syz.4.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b0abd5d29 code=0x7ffc0000
[  113.076575][   T29] audit: type=1326 audit(2000000075.729:7443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8405 comm="syz.4.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=221 compat=0 ip=0x7f1b0abd5d29 code=0x7ffc0000
[  113.100049][   T29] audit: type=1326 audit(2000000075.729:7444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8405 comm="syz.4.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b0abd5d29 code=0x7ffc0000
[  113.123493][   T29] audit: type=1326 audit(2000000075.749:7445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8405 comm="syz.4.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b0abd5d29 code=0x7ffc0000
[  113.146887][   T29] audit: type=1326 audit(2000000075.779:7446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8409 comm="syz.1.1880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac597b5d29 code=0x7ffc0000
[  113.170353][   T29] audit: type=1326 audit(2000000075.779:7447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8409 comm="syz.1.1880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fac597b5d29 code=0x7ffc0000
[  113.202202][ T8422] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1885'.
[  113.278780][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.343009][ T8408] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1879'.
[  113.352085][ T8408] netem: unknown loss type 13
[  113.356802][ T8408] netem: change failed
[  113.379442][ T8437] loop2: detected capacity change from 0 to 1024
[  113.406310][ T8437] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  113.646660][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.899436][ T8483] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1907'.
[  113.911496][ T8483] loop2: detected capacity change from 0 to 512
[  113.925531][ T8483] ext4: Bad value for 'dax'
[  114.113720][ T8502] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1915'.
[  114.200462][ T8505] loop3: detected capacity change from 0 to 512
[  114.227919][ T8505] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  114.240673][ T8505] ext4 filesystem being mounted at /366/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  114.267167][ T8505] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  114.683010][ T8527] loop2: detected capacity change from 0 to 1024
[  114.734654][ T8527] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  114.885007][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.944496][ T8546] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1927'.
[  114.968515][ T8548] loop1: detected capacity change from 0 to 512
[  114.977296][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.986900][ T8548] EXT4-fs: Ignoring removed orlov option
[  115.006981][ T8548] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  115.030757][ T8548] EXT4-fs (loop1): orphan cleanup on readonly fs
[  115.054594][ T8548] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1930: bg 0: block 248: padding at end of block bitmap is not set
[  115.069733][ T8548] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.1930: Failed to acquire dquot type 1
[  115.082470][ T8548] EXT4-fs (loop1): 1 truncate cleaned up
[  115.097472][ T8558] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1934'.
[  115.103345][ T8548] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  115.132288][ T8548] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[  115.154899][ T8548] EXT4-fs error (device loop1): __ext4_remount:6749: comm syz.1.1930: Abort forced by user
[  115.165774][ T8548] EXT4-fs (loop1): Remounting filesystem read-only
[  115.172291][ T8548] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  115.185114][ T8548] ext4 filesystem being remounted at /380/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  115.211171][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.513466][ T8583] loop1: detected capacity change from 0 to 1024
[  115.543942][ T8583] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.574687][ T8587] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1941'.
[  115.583736][ T8587] netem: unknown loss type 13
[  115.588446][ T8587] netem: change failed
[  115.691788][ T8591] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1943'.
[  115.820755][ T8605] loop1: detected capacity change from 0 to 512
[  115.840813][ T8607] loop3: detected capacity change from 0 to 128
[  115.847381][ T8605] EXT4-fs: Ignoring removed orlov option
[  115.867602][ T8605] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  115.890360][ T8605] EXT4-fs (loop1): orphan cleanup on readonly fs
[  115.907567][ T8605] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1950: bg 0: block 248: padding at end of block bitmap is not set
[  115.924847][ T8605] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.1950: Failed to acquire dquot type 1
[  115.968293][ T8605] EXT4-fs (loop1): 1 truncate cleaned up
[  116.142067][ T8631] loop4: detected capacity change from 0 to 1024
[  116.162753][ T8634] loop1: detected capacity change from 0 to 512
[  116.176327][ T8634] EXT4-fs: Ignoring removed orlov option
[  116.205208][ T8634] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  116.275324][ T8634] EXT4-fs (loop1): orphan cleanup on readonly fs
[  116.304706][ T8634] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1963: bg 0: block 248: padding at end of block bitmap is not set
[  116.332651][ T8648] loop2: detected capacity change from 0 to 1024
[  116.343732][ T8634] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.1963: Failed to acquire dquot type 1
[  116.361259][ T8634] EXT4-fs (loop1): 1 truncate cleaned up
[  116.407989][ T8634] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[  116.466756][ T8634] EXT4-fs error (device loop1): __ext4_remount:6749: comm syz.1.1963: Abort forced by user
[  116.502696][ T8634] EXT4-fs (loop1): Remounting filesystem read-only
[  116.509305][ T8634] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  116.525976][ T8634] ext4 filesystem being remounted at /387/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  116.659691][ T8679] loop2: detected capacity change from 0 to 1024
[  116.884716][ T8697] netem: unknown loss type 13
[  116.889411][ T8697] netem: change failed
[  117.246560][ T8721] __nla_validate_parse: 2 callbacks suppressed
[  117.246574][ T8721] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1999'.
[  117.302777][ T8732] loop2: detected capacity change from 0 to 512
[  117.303564][ T8729] loop3: detected capacity change from 0 to 1024
[  117.321379][ T8732] ext4: Bad value for 'dax'
[  117.548185][ T8749] loop4: detected capacity change from 0 to 1024
[  117.883837][ T8774] loop1: detected capacity change from 0 to 512
[  117.890687][ T8780] loop4: detected capacity change from 0 to 128
[  117.901888][ T8774] EXT4-fs: Ignoring removed orlov option
[  117.922265][ T8776] loop2: detected capacity change from 0 to 512
[  117.929127][ T8776] EXT4-fs: Ignoring removed orlov option
[  117.934225][ T8774] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  117.947458][ T8776] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  117.953898][ T8774] EXT4-fs (loop1): orphan cleanup on readonly fs
[  117.962821][ T8774] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2019: bg 0: block 248: padding at end of block bitmap is not set
[  117.978186][ T8774] __quota_error: 227 callbacks suppressed
[  117.978198][ T8774] Quota error (device loop1): write_blk: dquota write failed
[  117.991348][ T8774] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  118.001379][ T8774] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.2019: Failed to acquire dquot type 1
[  118.014060][ T8774] EXT4-fs (loop1): 1 truncate cleaned up
[  118.091516][   T29] audit: type=1326 audit(2000000080.909:7669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8791 comm="syz.4.2023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b0abd5d29 code=0x7ffc0000
[  118.093711][ T8776] EXT4-fs (loop2): orphan cleanup on readonly fs
[  118.123447][   T29] audit: type=1326 audit(2000000080.939:7670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8791 comm="syz.4.2023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=117 compat=0 ip=0x7f1b0abd5d29 code=0x7ffc0000
[  118.146945][   T29] audit: type=1326 audit(2000000080.939:7671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8791 comm="syz.4.2023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b0abd5d29 code=0x7ffc0000
[  118.170401][   T29] audit: type=1326 audit(2000000080.939:7672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8791 comm="syz.4.2023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b0abd5d29 code=0x7ffc0000
[  118.195717][ T8776] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2017: bg 0: block 248: padding at end of block bitmap is not set
[  118.210136][   T29] audit: type=1326 audit(2000000081.019:7673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8791 comm="syz.4.2023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f1b0abd47df code=0x7ffc0000
[  118.234582][   T29] audit: type=1400 audit(2000000081.039:7674): avc:  denied  { setopt } for  pid=8791 comm="syz.4.2023" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  118.254484][ T8776] Quota error (device loop2): write_blk: dquota write failed
[  118.261922][ T8776] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  118.267505][ T8795] netlink: 52 bytes leftover after parsing attributes in process `syz.3.2024'.
[  118.271882][ T8776] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.2017: Failed to acquire dquot type 1
[  118.303528][ T8795] loop3: detected capacity change from 0 to 1024
[  118.317464][ T8776] EXT4-fs (loop2): 1 truncate cleaned up
[  118.337562][ T8776] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  118.373793][ T8812] loop1: detected capacity change from 0 to 1024
[  118.400894][ T8813] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2031'.
[  118.412430][ T8776] EXT4-fs error (device loop2): __ext4_remount:6749: comm syz.2.2017: Abort forced by user
[  118.413511][ T8813] loop4: detected capacity change from 0 to 512
[  118.434680][ T8776] EXT4-fs (loop2): Remounting filesystem read-only
[  118.439895][ T8813] ext4: Bad value for 'dax'
[  118.441205][ T8776] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  118.468553][ T8776] ext4 filesystem being remounted at /389/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  118.565595][ T8827] syz.0.2036[8827] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  118.565690][ T8827] syz.0.2036[8827] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  118.585873][ T8824] loop2: detected capacity change from 0 to 512
[  118.609199][ T8824] EXT4-fs: Ignoring removed orlov option
[  118.623101][ T8824] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  118.648956][ T8824] EXT4-fs (loop2): orphan cleanup on readonly fs
[  118.671984][ T8824] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2035: bg 0: block 248: padding at end of block bitmap is not set
[  118.687403][ T8824] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.2035: Failed to acquire dquot type 1
[  118.701146][ T8824] EXT4-fs (loop2): 1 truncate cleaned up
[  118.782022][ T8843] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2051'.
[  118.808204][ T8843] loop2: detected capacity change from 0 to 1024
[  118.823158][ T8846] new mount options do not match the existing superblock, will be ignored
[  119.026888][ T8862] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2045'.
[  119.047254][ T8862] loop1: detected capacity change from 0 to 512
[  119.061664][ T8862] ext4: Bad value for 'dax'
[  119.094337][ T8864] loop3: detected capacity change from 0 to 512
[  119.153378][ T8864] ext4 filesystem being mounted at /386/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  119.279684][ T8868] loop1: detected capacity change from 0 to 512
[  119.297006][ T8868] EXT4-fs: Ignoring removed orlov option
[  119.309738][ T8868] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  119.399690][ T8868] EXT4-fs (loop1): orphan cleanup on readonly fs
[  119.406933][ T8868] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2046: bg 0: block 248: padding at end of block bitmap is not set
[  119.422590][ T8868] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.2046: Failed to acquire dquot type 1
[  119.443557][ T8868] EXT4-fs (loop1): 1 truncate cleaned up
[  119.451207][ T8868] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[  119.464440][ T8868] EXT4-fs error (device loop1): __ext4_remount:6749: comm syz.1.2046: Abort forced by user
[  119.487193][ T8868] EXT4-fs (loop1): Remounting filesystem read-only
[  119.493734][ T8868] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  119.506272][ T8868] ext4 filesystem being remounted at /399/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  119.894083][ T8903] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  120.586389][ T8951] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2075'.
[  120.595478][ T8951] netem: unknown loss type 13
[  120.600150][ T8951] netem: change failed
[  120.691063][ T8959] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2083'.
[  120.716248][ T8959] loop4: detected capacity change from 0 to 512
[  120.730441][ T8959] ext4: Bad value for 'dax'
[  120.834380][ T8969] loop4: detected capacity change from 0 to 512
[  120.847218][ T8969] EXT4-fs: Ignoring removed orlov option
[  120.870917][ T8969] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  120.895464][ T8969] EXT4-fs (loop4): orphan cleanup on readonly fs
[  120.911963][ T8969] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2087: bg 0: block 248: padding at end of block bitmap is not set
[  120.941647][ T8969] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.2087: Failed to acquire dquot type 1
[  120.997189][ T8969] EXT4-fs (loop4): 1 truncate cleaned up
[  121.020028][ T8969] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  121.054026][ T8975] loop3: detected capacity change from 0 to 512
[  121.062432][ T8975] EXT4-fs: Ignoring removed orlov option
[  121.068557][ T8969] EXT4-fs error (device loop4): __ext4_remount:6749: comm syz.4.2087: Abort forced by user
[  121.086401][ T8969] EXT4-fs (loop4): Remounting filesystem read-only
[  121.093009][ T8969] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  121.104238][ T8969] ext4 filesystem being remounted at /442/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  121.112480][ T8975] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  121.137766][ T8975] EXT4-fs (loop3): orphan cleanup on readonly fs
[  121.144651][ T8975] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2089: bg 0: block 248: padding at end of block bitmap is not set
[  121.160026][ T8975] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.2089: Failed to acquire dquot type 1
[  121.174989][ T8975] EXT4-fs (loop3): 1 truncate cleaned up
[  121.198055][ T8975] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  121.227139][ T8975] EXT4-fs error (device loop3): __ext4_remount:6749: comm syz.3.2089: Abort forced by user
[  121.248823][ T8975] EXT4-fs (loop3): Remounting filesystem read-only
[  121.255427][ T8975] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  121.271866][ T8975] ext4 filesystem being remounted at /392/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  121.402390][ T8994] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2096'.
[  121.415647][ T8994] loop4: detected capacity change from 0 to 512
[  121.419510][ T8998] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2097'.
[  121.422258][ T8994] ext4: Bad value for 'dax'
[  121.464049][ T8998] loop2: detected capacity change from 0 to 512
[  121.479260][ T9004] loop4: detected capacity change from 0 to 128
[  121.480195][ T8998] ext4: Bad value for 'dax'
[  121.726093][ T9021] SELinux:  policydb magic number 0xfd7cff8c does not match expected magic number 0xf97cff8c
[  121.736419][ T9021] SELinux: failed to load policy
[  121.743288][ T9021] Invalid ELF header magic: != ELF
[  121.743497][ T9027] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2092'.
[  121.757548][ T9027] netem: unknown loss type 13
[  121.762233][ T9027] netem: change failed
[  121.874951][ T9033] netem: unknown loss type 13
[  121.879756][ T9033] netem: change failed
[  122.399024][ T9042] loop1: detected capacity change from 0 to 1024
[  122.565198][ T9058] __nla_validate_parse: 1 callbacks suppressed
[  122.565213][ T9058] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2120'.
[  122.585611][ T9058] loop2: detected capacity change from 0 to 1024
[  122.676357][ T9068] netlink: 52 bytes leftover after parsing attributes in process `syz.3.2124'.
[  122.698495][ T9068] loop3: detected capacity change from 0 to 1024
[  122.751725][ T9072] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2126'.
[  122.767151][ T9077] loop1: detected capacity change from 0 to 512
[  122.786605][ T9077] EXT4-fs: Ignoring removed orlov option
[  122.804920][ T9077] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  122.862374][ T9077] EXT4-fs (loop1): orphan cleanup on readonly fs
[  122.881948][ T9077] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2127: bg 0: block 248: padding at end of block bitmap is not set
[  122.904713][ T9077] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.2127: Failed to acquire dquot type 1
[  122.916591][ T9077] EXT4-fs (loop1): 1 truncate cleaned up
[  122.925647][ T9077] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[  122.950695][ T9089] loop2: detected capacity change from 0 to 512
[  122.973345][ T9089] EXT4-fs: Ignoring removed orlov option
[  123.000306][ T9089] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  123.004250][ T9077] EXT4-fs error (device loop1): __ext4_remount:6749: comm syz.1.2127: Abort forced by user
[  123.026867][ T9077] EXT4-fs (loop1): Remounting filesystem read-only
[  123.027357][ T9089] EXT4-fs (loop2): orphan cleanup on readonly fs
[  123.033453][ T9077] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  123.033492][ T9077] ext4 filesystem being remounted at /416/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  123.061313][ T9089] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2131: bg 0: block 248: padding at end of block bitmap is not set
[  123.076641][ T9089] __quota_error: 147 callbacks suppressed
[  123.076655][ T9089] Quota error (device loop2): write_blk: dquota write failed
[  123.089780][ T9089] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  123.099787][ T9089] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.2131: Failed to acquire dquot type 1
[  123.112413][ T9089] EXT4-fs (loop2): 1 truncate cleaned up
[  123.133366][ T9089] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  123.155165][ T9089] EXT4-fs error (device loop2): __ext4_remount:6749: comm syz.2.2131: Abort forced by user
[  123.165721][ T9089] EXT4-fs (loop2): Remounting filesystem read-only
[  123.172228][ T9089] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  123.235048][ T9089] ext4 filesystem being remounted at /404/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  123.480234][ T9109] loop2: detected capacity change from 0 to 128
[  123.590953][ T9113] loop2: detected capacity change from 0 to 1024
[  123.774576][ T9121] loop3: detected capacity change from 0 to 512
[  123.785826][ T9121] EXT4-fs error (device loop3): ext4_get_journal_inode:5809: inode #32: comm syz.3.2140: iget: special inode unallocated
[  123.801464][ T9121] EXT4-fs (loop3): Remounting filesystem read-only
[  123.808055][ T9121] EXT4-fs (loop3): no journal found
[  123.813254][ T9121] EXT4-fs (loop3): can't get journal size
[  123.820284][ T9121] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  123.839191][ T9121] EXT4-fs (loop3): failed to initialize system zone (-117)
[  123.847690][ T9121] EXT4-fs (loop3): mount failed
[  123.856198][ T9121] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  123.863930][ T9121] SELinux: failed to load policy
[  123.899459][ T9124] loop2: detected capacity change from 0 to 512
[  123.915055][ T9124] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  123.952153][ T9124] EXT4-fs (loop2): 1 truncate cleaned up
[  124.007171][ T9131] loop4: detected capacity change from 0 to 512
[  124.040711][ T9131] EXT4-fs: Ignoring removed orlov option
[  124.072881][ T9131] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  124.089061][ T9131] EXT4-fs (loop4): orphan cleanup on readonly fs
[  124.102747][ T9131] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2144: bg 0: block 248: padding at end of block bitmap is not set
[  124.118589][ T9131] Quota error (device loop4): write_blk: dquota write failed
[  124.126031][ T9131] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  124.135981][ T9131] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.2144: Failed to acquire dquot type 1
[  124.169862][ T9131] EXT4-fs (loop4): 1 truncate cleaned up
[  124.179339][ T9142] loop3: detected capacity change from 0 to 512
[  124.185974][ T9142] EXT4-fs: Ignoring removed orlov option
[  124.197439][ T9131] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  124.207312][ T9142] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  124.224600][ T9131] EXT4-fs error (device loop4): __ext4_remount:6749: comm syz.4.2144: Abort forced by user
[  124.234961][ T9142] EXT4-fs (loop3): orphan cleanup on readonly fs
[  124.235922][ T9146] loop1: detected capacity change from 0 to 128
[  124.241971][ T9142] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2148: bg 0: block 248: padding at end of block bitmap is not set
[  124.271860][ T9131] EXT4-fs (loop4): Remounting filesystem read-only
[  124.278412][ T9131] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  124.297907][ T9131] ext4 filesystem being remounted at /454/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  124.318977][ T9142] Quota error (device loop3): write_blk: dquota write failed
[  124.326575][ T9142] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  124.336564][ T9142] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.2148: Failed to acquire dquot type 1
[  124.403586][ T9150] loop4: detected capacity change from 0 to 1024
[  124.405116][ T9142] EXT4-fs (loop3): 1 truncate cleaned up
[  124.455285][ T9151] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2150'.
[  124.503650][ T9142] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  124.535676][ T9142] EXT4-fs error (device loop3): __ext4_remount:6749: comm syz.3.2148: Abort forced by user
[  124.546074][ T9142] EXT4-fs (loop3): Remounting filesystem read-only
[  124.552599][ T9142] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  124.563789][ T9142] ext4 filesystem being remounted at /403/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  124.652910][ T9158] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2154'.
[  124.665149][ T9158] loop1: detected capacity change from 0 to 512
[  124.671594][ T9158] ext4: Bad value for 'dax'
[  124.671837][   T29] audit: type=1326 audit(2000000087.489:7812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9162 comm="syz.3.2156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26bdbe5d29 code=0x7ffc0000
[  124.712085][ T9166] loop1: detected capacity change from 0 to 512
[  124.722985][ T9166] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  124.741592][   T29] audit: type=1326 audit(2000000087.519:7813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9162 comm="syz.3.2156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f26bdbe5d29 code=0x7ffc0000
[  124.765119][   T29] audit: type=1326 audit(2000000087.519:7814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9162 comm="syz.3.2156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26bdbe5d29 code=0x7ffc0000
[  124.788564][   T29] audit: type=1326 audit(2000000087.519:7815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9162 comm="syz.3.2156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f26bdbe5d29 code=0x7ffc0000
[  124.805008][ T9170] new mount options do not match the existing superblock, will be ignored
[  124.824842][ T9166] EXT4-fs (loop1): 1 truncate cleaned up
[  124.894995][ T9177] syz.0.2153[9177] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  124.895119][ T9177] syz.0.2153[9177] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  124.906697][ T9177] syz.0.2153[9177] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  124.957994][ T9180] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2161'.
[  125.599346][ T9196] loop1: detected capacity change from 0 to 512
[  125.615404][ T9198] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2168'.
[  125.630360][ T9196] EXT4-fs: Ignoring removed orlov option
[  125.655208][ T9196] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  125.686195][ T9196] EXT4-fs (loop1): orphan cleanup on readonly fs
[  125.693254][ T9196] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2175: bg 0: block 248: padding at end of block bitmap is not set
[  125.696598][ T9205] loop2: detected capacity change from 0 to 512
[  125.709890][ T9196] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.2175: Failed to acquire dquot type 1
[  125.730586][ T9205] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  125.749132][ T9196] EXT4-fs (loop1): 1 truncate cleaned up
[  125.759133][ T9196] EXT4-fs mount: 57 callbacks suppressed
[  125.759147][ T9196] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  125.779419][ T9205] EXT4-fs (loop2): 1 truncate cleaned up
[  125.804982][ T9205] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  125.846141][ T9196] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[  125.847846][ T9208] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2165'.
[  125.878027][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  125.895297][ T9196] EXT4-fs error (device loop1): __ext4_remount:6749: comm syz.1.2175: Abort forced by user
[  125.925406][ T9196] EXT4-fs (loop1): Remounting filesystem read-only
[  125.931975][ T9196] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  125.952455][ T9196] ext4 filesystem being remounted at /426/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  125.952735][ T9219] loop2: detected capacity change from 0 to 512
[  125.996523][ T9219] EXT4-fs: Ignoring removed orlov option
[  126.011086][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.022676][ T9219] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  126.042319][ T9219] EXT4-fs (loop2): orphan cleanup on readonly fs
[  126.056203][ T9219] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2173: bg 0: block 248: padding at end of block bitmap is not set
[  126.110693][ T9219] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.2173: Failed to acquire dquot type 1
[  126.134973][ T9230] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2179'.
[  126.147988][ T9219] EXT4-fs (loop2): 1 truncate cleaned up
[  126.154596][ T9219] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  126.168773][ T9219] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  126.185052][ T9219] EXT4-fs error (device loop2): __ext4_remount:6749: comm syz.2.2173: Abort forced by user
[  126.195844][ T9219] EXT4-fs (loop2): Remounting filesystem read-only
[  126.202375][ T9219] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  126.213873][ T9219] ext4 filesystem being remounted at /412/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  126.228111][ T9238] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2181'.
[  126.239330][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.264130][ T9240] FAULT_INJECTION: forcing a failure.
[  126.264130][ T9240] name failslab, interval 1, probability 0, space 0, times 0
[  126.276802][ T9240] CPU: 0 UID: 0 PID: 9240 Comm: syz.0.2183 Tainted: G        W          6.13.0-rc6-syzkaller #0
[  126.287282][ T9240] Tainted: [W]=WARN
[  126.291158][ T9240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  126.301259][ T9240] Call Trace:
[  126.304529][ T9240]  <TASK>
[  126.307463][ T9240]  dump_stack_lvl+0xf2/0x150
[  126.312125][ T9240]  dump_stack+0x15/0x1a
[  126.316280][ T9240]  should_fail_ex+0x223/0x230
[  126.320966][ T9240]  ? rtnl_newlink+0x5d/0x1250
[  126.325634][ T9240]  should_failslab+0x8f/0xb0
[  126.330221][ T9240]  __kmalloc_cache_noprof+0x4e/0x320
[  126.335508][ T9240]  ? __pfx_rtnl_newlink+0x10/0x10
[  126.340531][ T9240]  rtnl_newlink+0x5d/0x1250
[  126.345030][ T9240]  ? xas_load+0x3ae/0x3d0
[  126.349348][ T9240]  ? xas_load+0x3ae/0x3d0
[  126.353679][ T9240]  ? __rcu_read_unlock+0x4e/0x70
[  126.358616][ T9240]  ? xa_load+0xb9/0xe0
[  126.362753][ T9240]  ? memcg_list_lru_alloc+0xce/0x4e0
[  126.368062][ T9240]  ? mod_objcg_state+0x3b1/0x4f0
[  126.372995][ T9240]  ? mod_objcg_state+0x2ea/0x4f0
[  126.378053][ T9240]  ? __rcu_read_unlock+0x4e/0x70
[  126.382989][ T9240]  ? avc_has_perm_noaudit+0x1cc/0x210
[  126.388358][ T9240]  ? selinux_capable+0x1f2/0x260
[  126.393329][ T9240]  ? security_capable+0x81/0x90
[  126.398177][ T9240]  ? ns_capable+0x7d/0xb0
[  126.402506][ T9240]  ? __pfx_rtnl_newlink+0x10/0x10
[  126.407526][ T9240]  rtnetlink_rcv_msg+0x651/0x710
[  126.412457][ T9240]  ? avc_has_perm_noaudit+0x1cc/0x210
[  126.417893][ T9240]  netlink_rcv_skb+0x12c/0x230
[  126.422736][ T9240]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  126.428289][ T9240]  rtnetlink_rcv+0x1c/0x30
[  126.432697][ T9240]  netlink_unicast+0x599/0x670
[  126.437466][ T9240]  netlink_sendmsg+0x5cc/0x6e0
[  126.442305][ T9240]  ? __pfx_netlink_sendmsg+0x10/0x10
[  126.447594][ T9240]  __sock_sendmsg+0x140/0x180
[  126.452410][ T9240]  ____sys_sendmsg+0x312/0x410
[  126.457243][ T9240]  __sys_sendmsg+0x19d/0x230
[  126.461833][ T9240]  __x64_sys_sendmsg+0x46/0x50
[  126.466646][ T9240]  x64_sys_call+0x2734/0x2dc0
[  126.471352][ T9240]  do_syscall_64+0xc9/0x1c0
[  126.475866][ T9240]  ? clear_bhb_loop+0x55/0xb0
[  126.480534][ T9240]  ? clear_bhb_loop+0x55/0xb0
[  126.485217][ T9240]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.491186][ T9240] RIP: 0033:0x7fca5bae5d29
[  126.495612][ T9240] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.515214][ T9240] RSP: 002b:00007fca5a157038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  126.523624][ T9240] RAX: ffffffffffffffda RBX: 00007fca5bcd5fa0 RCX: 00007fca5bae5d29
[  126.531585][ T9240] RDX: 0000000020004090 RSI: 0000000020000280 RDI: 0000000000000003
[  126.539562][ T9240] RBP: 00007fca5a157090 R08: 0000000000000000 R09: 0000000000000000
[  126.547527][ T9240] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  126.555589][ T9240] R13: 0000000000000000 R14: 00007fca5bcd5fa0 R15: 00007ffefb1b1f08
[  126.563593][ T9240]  </TASK>
[  126.627542][ T9247] loop4: detected capacity change from 0 to 512
[  126.646713][ T9247] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  126.668150][ T9247] EXT4-fs (loop4): 1 truncate cleaned up
[  126.674326][ T9247] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  126.703389][ T9255] loop3: detected capacity change from 0 to 512
[  126.711201][ T9255] EXT4-fs error (device loop3): ext4_get_journal_inode:5809: inode #32: comm syz.3.2188: iget: special inode unallocated
[  126.724418][ T9255] EXT4-fs (loop3): Remounting filesystem read-only
[  126.730998][ T9255] EXT4-fs (loop3): no journal found
[  126.736293][ T9255] EXT4-fs (loop3): can't get journal size
[  126.746031][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.755095][ T9255] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  126.765359][ T9255] EXT4-fs (loop3): failed to initialize system zone (-117)
[  126.772625][ T9255] EXT4-fs (loop3): mount failed
[  126.900422][ T9268] loop4: detected capacity change from 0 to 512
[  126.907050][ T9268] EXT4-fs: Ignoring removed orlov option
[  126.913737][ T9268] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  126.934936][ T9268] EXT4-fs (loop4): orphan cleanup on readonly fs
[  126.942166][ T9268] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2192: bg 0: block 248: padding at end of block bitmap is not set
[  126.959682][ T9268] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.2192: Failed to acquire dquot type 1
[  126.974218][ T9268] EXT4-fs (loop4): 1 truncate cleaned up
[  127.043863][ T9276] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  127.076417][ T9275] loop1: detected capacity change from 0 to 1024
[  127.132894][ T9275] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  127.387741][ T9268] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  127.416888][ T9268] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  127.434918][ T9268] EXT4-fs error (device loop4): __ext4_remount:6749: comm syz.4.2192: Abort forced by user
[  127.450945][ T9268] EXT4-fs (loop4): Remounting filesystem read-only
[  127.457535][ T9268] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  127.468073][ T9268] ext4 filesystem being remounted at /463/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  127.474942][ T9288] loop3: detected capacity change from 0 to 128
[  127.495526][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.531841][ T9290] loop4: detected capacity change from 0 to 512
[  127.556847][ T9290] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  127.575502][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.586490][ T9290] EXT4-fs (loop4): 1 truncate cleaned up
[  127.592481][ T9290] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  127.629221][ T9299] loop1: detected capacity change from 0 to 512
[  127.672008][ T9299] EXT4-fs error (device loop1): ext4_get_journal_inode:5809: inode #32: comm syz.1.2203: iget: special inode unallocated
[  127.691814][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.705163][ T9299] EXT4-fs (loop1): Remounting filesystem read-only
[  127.711719][ T9299] EXT4-fs (loop1): no journal found
[  127.716099][ T9303] loop3: detected capacity change from 0 to 512
[  127.716946][ T9299] EXT4-fs (loop1): can't get journal size
[  127.729618][ T9303] EXT4-fs: Ignoring removed orlov option
[  127.741168][ T9303] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  127.801731][ T9299] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[  127.814127][ T9299] EXT4-fs (loop1): failed to initialize system zone (-117)
[  127.821587][ T9299] EXT4-fs (loop1): mount failed
[  127.822773][ T9303] EXT4-fs (loop3): orphan cleanup on readonly fs
[  127.836043][ T9303] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2207: bg 0: block 248: padding at end of block bitmap is not set
[  127.851729][ T9303] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.2207: Failed to acquire dquot type 1
[  127.864372][ T9303] EXT4-fs (loop3): 1 truncate cleaned up
[  127.872500][ T9303] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  127.899941][ T9303] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  127.914543][ T9303] EXT4-fs error (device loop3): __ext4_remount:6749: comm syz.3.2207: Abort forced by user
[  127.930117][ T9303] EXT4-fs (loop3): Remounting filesystem read-only
[  127.936654][ T9303] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  127.951330][ T9303] ext4 filesystem being remounted at /420/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  127.967185][ T9319] loop1: detected capacity change from 0 to 512
[  127.973960][ T9319] EXT4-fs: Ignoring removed orlov option
[  128.004237][ T9319] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  128.045896][ T9319] EXT4-fs (loop1): orphan cleanup on readonly fs
[  128.047746][ T9322] loop2: detected capacity change from 0 to 128
[  128.053696][ T9319] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2211: bg 0: block 248: padding at end of block bitmap is not set
[  128.079967][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.094498][ T9319] __quota_error: 55 callbacks suppressed
[  128.094510][ T9319] Quota error (device loop1): write_blk: dquota write failed
[  128.107666][ T9319] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  128.117722][ T9319] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.2211: Failed to acquire dquot type 1
[  128.167031][ T9324] loop2: detected capacity change from 0 to 1024
[  128.180322][ T9319] EXT4-fs (loop1): 1 truncate cleaned up
[  128.187491][ T9324] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  128.207381][ T9319] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  128.251873][ T9319] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[  128.303237][ T9319] EXT4-fs error (device loop1): __ext4_remount:6749: comm syz.1.2211: Abort forced by user
[  128.344917][ T9319] EXT4-fs (loop1): Remounting filesystem read-only
[  128.351506][ T9319] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  128.408587][ T9319] ext4 filesystem being remounted at /432/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  128.459413][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.540762][ T9338] netlink: '+}[@': attribute type 8 has an invalid length.
[  128.548040][ T9338] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[  128.785911][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.855658][ T3374] page_pool_release_retry() stalled pool shutdown: id 66, 1 inflight 60 sec
[  128.874915][ T9354] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2221'.
[  128.893759][ T9352] loop2: detected capacity change from 0 to 512
[  128.918161][ T9352] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  128.930857][ T9352] EXT4-fs (loop2): 1 truncate cleaned up
[  128.942953][ T9352] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  128.986739][ T9358] loop4: detected capacity change from 0 to 512
[  129.014433][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.024231][ T9358] EXT4-fs error (device loop4): ext4_get_journal_inode:5809: inode #32: comm syz.4.2222: iget: special inode unallocated
[  129.044874][ T9360] loop3: detected capacity change from 0 to 128
[  129.087422][ T9358] EXT4-fs (loop4): Remounting filesystem read-only
[  129.093966][ T9358] EXT4-fs (loop4): no journal found
[  129.099286][ T9358] EXT4-fs (loop4): can't get journal size
[  129.133166][ T9358] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  129.169717][ T9358] EXT4-fs (loop4): failed to initialize system zone (-117)
[  129.184227][ T9358] EXT4-fs (loop4): mount failed
[  129.330621][ T9358] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  129.338389][ T9358] SELinux: failed to load policy
[  129.386692][ T9370] syz.2.2227[9370] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  129.386816][ T9370] syz.2.2227[9370] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  129.399991][ T9370] syz.2.2227[9370] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  129.430614][ T9374] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2228'.
[  129.450950][ T9374] netlink: 2 bytes leftover after parsing attributes in process `syz.4.2228'.
[  129.486143][   T29] audit: type=1400 audit(2000000092.309:7863): avc:  denied  { ioctl } for  pid=9364 comm="syz.3.2225" path="/dev/snapshot" dev="devtmpfs" ino=90 ioctlcmd=0x3305 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  129.511222][ T9365] Restarting kernel threads ... done.
[  129.592146][ T9376] loop1: detected capacity change from 0 to 512
[  129.739631][ T9385] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2232'.
[  129.879052][ T9401] loop3: detected capacity change from 0 to 512
[  129.890715][ T9400] loop1: detected capacity change from 0 to 512
[  129.913561][ T9400] EXT4-fs error (device loop1): ext4_get_journal_inode:5809: inode #32: comm syz.1.2237: iget: special inode unallocated
[  129.939583][ T9400] EXT4-fs (loop1): no journal found
[  129.950680][ T9405] loop3: detected capacity change from 0 to 128
[  129.982185][ T9407] dns_resolver: Unsupported content type (24)
[  130.013393][ T9409] loop3: detected capacity change from 0 to 512
[  130.026565][ T9412] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:20001
[  130.033184][ T3374] IPVS: starting estimator thread 0...
[  130.124035][ T9417] IPVS: using max 2784 ests per chain, 139200 per kthread
[  130.162818][ T9432] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2249'.
[  130.180550][ T9432] loop3: detected capacity change from 0 to 512
[  130.186696][ T9436] loop2: detected capacity change from 0 to 512
[  130.191570][ T9432] ext4: Bad value for 'dax'
[  130.203551][ T9436] EXT4-fs: Ignoring removed orlov option
[  130.228825][ T9436] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  130.248385][ T9436] EXT4-fs (loop2): orphan cleanup on readonly fs
[  130.260940][ T9436] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2250: bg 0: block 248: padding at end of block bitmap is not set
[  130.278662][   T29] audit: type=1400 audit(2000000093.099:7864): avc:  denied  { write } for  pid=9441 comm="syz.3.2252" name="ptp0" dev="devtmpfs" ino=245 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  130.286252][ T9436] Quota error (device loop2): write_blk: dquota write failed
[  130.309239][ T9436] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  130.319158][ T9436] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.2250: Failed to acquire dquot type 1
[  130.331716][ T9436] EXT4-fs (loop2): 1 truncate cleaned up
[  130.343117][ T9444] loop3: detected capacity change from 0 to 128
[  130.344794][ T9436] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  130.379463][ T9436] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  130.390898][ T9415] Restarting kernel threads ... done.
[  130.408503][ T9450] netlink: 240 bytes leftover after parsing attributes in process `syz.3.2255'.
[  130.417892][   T29] audit: type=1400 audit(2000000093.239:7865): avc:  denied  { read } for  pid=9447 comm="syz.3.2255" path="socket:[24782]" dev="sockfs" ino=24782 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  130.442706][ T9436] EXT4-fs error (device loop2): __ext4_remount:6749: comm syz.2.2250: Abort forced by user
[  130.453456][ T9436] EXT4-fs (loop2): Remounting filesystem read-only
[  130.460083][ T9436] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  130.471774][ T9436] ext4 filesystem being remounted at /421/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  130.528864][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.543637][ T9459] loop4: detected capacity change from 0 to 512
[  130.550879][ T9459] EXT4-fs: Ignoring removed orlov option
[  130.560720][ T9459] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  130.570160][ T9459] EXT4-fs (loop4): orphan cleanup on readonly fs
[  130.577967][ T9459] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2258: bg 0: block 248: padding at end of block bitmap is not set
[  130.603406][ T9459] Quota error (device loop4): write_blk: dquota write failed
[  130.610969][ T9459] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  130.620985][ T9459] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.2258: Failed to acquire dquot type 1
[  130.633343][ T9464] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2260'.
[  130.643137][ T9459] EXT4-fs (loop4): 1 truncate cleaned up
[  130.645223][ T9471] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2262'.
[  130.657931][ T9464] netlink: 76 bytes leftover after parsing attributes in process `syz.2.2260'.
[  130.669672][ T9459] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  130.688086][ T9477] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  130.695802][ T9459] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  130.701072][ T9477] SELinux: failed to load policy
[  130.709208][ T9479] xt_hashlimit: size too large, truncated to 1048576
[  130.717156][ T9459] EXT4-fs error (device loop4): __ext4_remount:6749: comm syz.4.2258: Abort forced by user
[  130.728266][ T9459] EXT4-fs (loop4): Remounting filesystem read-only
[  130.734820][ T9459] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  130.745624][ T9459] ext4 filesystem being remounted at /474/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  130.764636][ T9481] loop2: detected capacity change from 0 to 512
[  130.784644][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.803735][ T9481] EXT4-fs (loop2): blocks per group (71) and clusters per group (20800) inconsistent
[  130.967329][ T9485] 9pnet_fd: Insufficient options for proto=fd
[  130.981621][ T9490] loop4: detected capacity change from 0 to 128
[  131.031309][ T9492] xt_CT: No such helper "snmp"
[  131.034049][   T29] audit: type=1400 audit(2000000093.849:7866): avc:  denied  { mount } for  pid=9494 comm="GPL" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  131.109544][ T9502] syz.3.2273[9502] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  131.109604][ T9502] syz.3.2273[9502] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  131.129455][ T9502] syz.3.2273[9502] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  131.185760][ T9502] loop3: detected capacity change from 0 to 512
[  131.219226][ T9502] ext4: Bad value for 'dax'
[  131.232967][ T9511] loop2: detected capacity change from 0 to 1024
[  131.257786][ T9511] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  131.352075][ T9529] loop1: detected capacity change from 0 to 128
[  131.475361][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.505929][ T9542] FAULT_INJECTION: forcing a failure.
[  131.505929][ T9542] name failslab, interval 1, probability 0, space 0, times 0
[  131.518910][ T9542] CPU: 1 UID: 0 PID: 9542 Comm: syz.2.2286 Tainted: G        W          6.13.0-rc6-syzkaller #0
[  131.529388][ T9542] Tainted: [W]=WARN
[  131.533180][ T9542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  131.543285][ T9542] Call Trace:
[  131.546552][ T9542]  <TASK>
[  131.549471][ T9542]  dump_stack_lvl+0xf2/0x150
[  131.554107][ T9542]  dump_stack+0x15/0x1a
[  131.558258][ T9542]  should_fail_ex+0x223/0x230
[  131.562928][ T9542]  ? rtnl_newlink+0x5d/0x1250
[  131.567597][ T9542]  should_failslab+0x8f/0xb0
[  131.572201][ T9542]  __kmalloc_cache_noprof+0x4e/0x320
[  131.577576][ T9542]  ? __pfx_rtnl_newlink+0x10/0x10
[  131.582686][ T9542]  rtnl_newlink+0x5d/0x1250
[  131.587181][ T9542]  ? xas_load+0x3ae/0x3d0
[  131.591498][ T9542]  ? xas_load+0x3ae/0x3d0
[  131.595814][ T9542]  ? __rcu_read_unlock+0x4e/0x70
[  131.600746][ T9542]  ? xa_load+0xb9/0xe0
[  131.604809][ T9542]  ? memcg_list_lru_alloc+0xce/0x4e0
[  131.610160][ T9542]  ? mod_objcg_state+0x2ea/0x4f0
[  131.615090][ T9542]  ? mod_objcg_state+0x2ea/0x4f0
[  131.620078][ T9542]  ? __rcu_read_unlock+0x4e/0x70
[  131.625097][ T9542]  ? avc_has_perm_noaudit+0x1cc/0x210
[  131.630528][ T9542]  ? selinux_capable+0x1f2/0x260
[  131.635510][ T9542]  ? security_capable+0x81/0x90
[  131.640396][ T9542]  ? ns_capable+0x7d/0xb0
[  131.644721][ T9542]  ? __pfx_rtnl_newlink+0x10/0x10
[  131.649780][ T9542]  rtnetlink_rcv_msg+0x651/0x710
[  131.654781][ T9542]  ? avc_has_perm_noaudit+0x1cc/0x210
[  131.660227][ T9542]  netlink_rcv_skb+0x12c/0x230
[  131.664983][ T9542]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  131.670440][ T9542]  rtnetlink_rcv+0x1c/0x30
[  131.674892][ T9542]  netlink_unicast+0x599/0x670
[  131.679751][ T9542]  netlink_sendmsg+0x5cc/0x6e0
[  131.684513][ T9542]  ? __pfx_netlink_sendmsg+0x10/0x10
[  131.689898][ T9542]  __sock_sendmsg+0x140/0x180
[  131.694659][ T9542]  ____sys_sendmsg+0x312/0x410
[  131.699414][ T9542]  __sys_sendmsg+0x19d/0x230
[  131.704014][ T9542]  __x64_sys_sendmsg+0x46/0x50
[  131.708831][ T9542]  x64_sys_call+0x2734/0x2dc0
[  131.713495][ T9542]  do_syscall_64+0xc9/0x1c0
[  131.718073][ T9542]  ? clear_bhb_loop+0x55/0xb0
[  131.722740][ T9542]  ? clear_bhb_loop+0x55/0xb0
[  131.727414][ T9542]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.733305][ T9542] RIP: 0033:0x7f773d3b5d29
[  131.737709][ T9542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  131.757347][ T9542] RSP: 002b:00007f773ba27038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  131.765767][ T9542] RAX: ffffffffffffffda RBX: 00007f773d5a5fa0 RCX: 00007f773d3b5d29
[  131.773726][ T9542] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000006
[  131.781764][ T9542] RBP: 00007f773ba27090 R08: 0000000000000000 R09: 0000000000000000
[  131.789720][ T9542] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  131.797699][ T9542] R13: 0000000000000000 R14: 00007f773d5a5fa0 R15: 00007ffda27c23a8
[  131.805696][ T9542]  </TASK>
[  131.836929][ T9548] syz.2.2289[9548] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  131.837072][ T9548] syz.2.2289[9548] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  131.848766][ T9548] syz.2.2289[9548] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  131.869093][ T9548] loop2: detected capacity change from 0 to 512
[  131.892715][ T9548] ext4: Bad value for 'dax'
[  131.926816][ T9553] loop4: detected capacity change from 0 to 512
[  131.933719][ T9553] EXT4-fs: Ignoring removed orlov option
[  131.940806][ T9553] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  131.954541][ T9553] EXT4-fs (loop4): orphan cleanup on readonly fs
[  131.964037][ T3308] ==================================================================
[  131.972135][ T3308] BUG: KCSAN: data-race in fsnotify_detach_mark / inotify_handle_inode_event
[  131.980921][ T3308] 
[  131.983243][ T3308] write to 0xffff8881044a7904 of 4 bytes by task 3288 on cpu 1:
[  131.986671][ T9553] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2291: bg 0: block 248: padding at end of block bitmap is not set
[  131.990862][ T3308]  fsnotify_detach_mark+0xba/0x160
[  132.010170][ T3308]  fsnotify_destroy_mark+0x6e/0x140
[  132.015455][ T3308]  __se_sys_inotify_rm_watch+0xea/0x170
[  132.021010][ T3308]  __x64_sys_inotify_rm_watch+0x31/0x40
[  132.026555][ T3308]  x64_sys_call+0x25e0/0x2dc0
[  132.031221][ T3308]  do_syscall_64+0xc9/0x1c0
[  132.035714][ T3308]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.041605][ T3308] 
[  132.043922][ T3308] read to 0xffff8881044a7904 of 4 bytes by task 3308 on cpu 0:
[  132.051450][ T3308]  inotify_handle_inode_event+0x2c2/0x310
[  132.057163][ T3308]  fsnotify_handle_inode_event+0x18e/0x1f0
[  132.062971][ T3308]  fsnotify+0x10ae/0x1190
[  132.067292][ T3308]  __fsnotify_parent+0x285/0x380
[  132.072218][ T3308]  __fput+0x5a5/0x6d0
[  132.076188][ T3308]  __fput_sync+0x96/0xc0
[  132.080418][ T3308]  __se_sys_close+0x109/0x1b0
[  132.085101][ T3308]  __x64_sys_close+0x1f/0x30
[  132.089677][ T3308]  x64_sys_call+0x266c/0x2dc0
[  132.094341][ T3308]  do_syscall_64+0xc9/0x1c0
[  132.098835][ T3308]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.104724][ T3308] 
[  132.107034][ T3308] value changed: 0x00000003 -> 0x00000000
[  132.112733][ T3308] 
[  132.115043][ T3308] Reported by Kernel Concurrency Sanitizer on:
[  132.121177][ T3308] CPU: 0 UID: 0 PID: 3308 Comm: syz-executor Tainted: G        W          6.13.0-rc6-syzkaller #0
[  132.131754][ T3308] Tainted: [W]=WARN
[  132.135539][ T3308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  132.145582][ T3308] ==================================================================
[  132.154679][ T9553] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.2291: Failed to acquire dquot type 1
[  132.166961][ T9560] loop2: detected capacity change from 0 to 128
[  132.194888][ T9553] EXT4-fs (loop4): 1 truncate cleaned up
[  132.201076][ T9553] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  132.218056][ T9553] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  132.244664][ T9553] EXT4-fs error (device loop4): __ext4_remount:6749: comm syz.4.2291: Abort forced by user
[  132.254920][ T9553] EXT4-fs (loop4): Remounting filesystem read-only
[  132.261420][ T9553] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  132.272042][ T9553] ext4 filesystem being remounted at /477/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  132.290215][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.