last executing test programs:

33.995642855s ago: executing program 0 (id=677):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000fc850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000640)='fib6_table_lookup\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
syz_io_uring_setup(0x3bc1, &(0x7f0000000780)={0x0, 0x942e, 0x10100, 0x0, 0x285}, &(0x7f0000000100), &(0x7f0000000040))
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
close(r3)

33.852151605s ago: executing program 0 (id=683):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x1}, 0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f00000002c0)={0x0, 0x0, 0x5}, 0x8)
r2 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/sockcreate\x00', 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x3a)
write$selinux_attr(r2, &(0x7f0000000100)='system_u:object_r:hugetlbfs_t:s0\x00', 0x1d)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0xfffffffffffffffc}, 0x18)

33.825772085s ago: executing program 0 (id=685):
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b70300000000000085000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000ab4000000060a01040000000000000000020000280900010073797a30000000000900020073797a320000000088000480100001800c000100636f756e7465720014000180090001006d6173710000000004000280600001800a0001006c696d6974000000500002800c000140000000000000000808000440000000010c00014000000000000080010c00024000000000000000090800034000000fba0c00024000000000000000000c000140000000000000000714000000110001"], 0xdc}}, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r1, 0xffffffffffffffff, 0x0)

33.771795454s ago: executing program 0 (id=687):
set_mempolicy(0x1, 0x0, 0x4)
syz_mount_image$iso9660(&(0x7f00000000c0), &(0x7f0000000080)='./file0\x00', 0x4000, &(0x7f0000000100)=ANY=[@ANYBLOB='check=strict,session=0x0000000000000024,iocharset=ascii,overriderockperm,overriderockperm,gid=', @ANYRESOCT=0x0, @ANYRES16=0x0, @ANYRESHEX=0x0], 0xfe, 0xa15, &(0x7f00000002c0)="$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")
r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x40440, 0xd)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001a80)=ANY=[@ANYBLOB="0e0000000400000008", @ANYBLOB="00000013"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
read$char_usb(0xffffffffffffffff, &(0x7f0000001ac0)=""/4096, 0x1000) (async, rerun: 64)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (rerun: 64)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r3}, 0x10) (async, rerun: 64)
tkill(r1, 0x17) (async, rerun: 64)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000280)={'wg2\x00'})
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r5}, 0x10) (async)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fchmodat(r6, &(0x7f0000003040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xb4) (async)
ioctl$TUNGETDEVNETNS(r6, 0x54e3, 0x0) (async)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000000040)={'wg2\x00', @multicast}) (async)
ptrace(0x10, r1) (async)
ptrace$ARCH_SHSTK_LOCK(0x1e, r1, 0x3, 0x5003) (async, rerun: 32)
mmap(&(0x7f0000268000/0x4000)=nil, 0x4000, 0x1000002, 0x4016012, r0, 0x0) (rerun: 32)

33.638767484s ago: executing program 0 (id=689):
r0 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000"], 0x18}, 0x0)

33.425761544s ago: executing program 0 (id=691):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00f7ffffffffffff130012800b00010062617461647600000400028008000a00", @ANYRES32], 0x3c}}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000340)={'ip6_vti0\x00', &(0x7f00000002c0)={'syztnl2\x00', <r1=>0x0, 0x29, 0xf, 0x3, 0xdb, 0x70, @mcast2, @mcast2, 0x80, 0x40, 0x80000, 0x7}})
r2 = socket(0x10, 0x3, 0x0)
r3 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000004640)={&(0x7f0000000380)=@newqdisc={0x6c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}, {0xe}}, [@TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}}, {0x4}}]}, @qdisc_kind_options=@q_prio={{0x9}, {0x18, 0x2, {0x8, "bebf9e8b4e1a87f902d5831ef83c5c66"}}}]}, 0x6c}}, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000380)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f00000003c0)=0x14)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000004c0)={'syztnl0\x00', &(0x7f0000000440)={'ip6gre0\x00', <r6=>0x0, 0x2d, 0x9, 0x7, 0x3, 0x8, @ipv4={'\x00', '\xff\xff', @remote}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x1, 0x7800, 0x3, 0x3}})
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'batadv_slave_1\x00', <r7=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000640)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000600)={&(0x7f0000000680)=ANY=[@ANYBLOB="980000005400020029bd7000fddbdf2507000000", @ANYRES32=r1, @ANYBLOB="20000100", @ANYRES32=r4, @ANYBLOB="01000200fe8000000000000000000000000000bb0000000020000100", @ANYRES32=r5, @ANYBLOB="4c862e0fb8b80601c5ca0c55010000000000000000000000000020000100000000000000", @ANYRES32=r6, @ANYBLOB="00010200e000000100000000000000000000000086dd000020000100", @ANYRES32=r7, @ANYBLOB="00020400ff02000000000000000000000000000100000000"], 0x98}, 0x1, 0x0, 0x0, 0x4}, 0x5)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0500000007000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r10 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r10, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @private}}, 0x80, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000040)={'lo\x00'})
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r11, 0x0, 0x9135}, 0x18)

33.306498384s ago: executing program 32 (id=691):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00f7ffffffffffff130012800b00010062617461647600000400028008000a00", @ANYRES32], 0x3c}}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000340)={'ip6_vti0\x00', &(0x7f00000002c0)={'syztnl2\x00', <r1=>0x0, 0x29, 0xf, 0x3, 0xdb, 0x70, @mcast2, @mcast2, 0x80, 0x40, 0x80000, 0x7}})
r2 = socket(0x10, 0x3, 0x0)
r3 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000004640)={&(0x7f0000000380)=@newqdisc={0x6c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}, {0xe}}, [@TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}}, {0x4}}]}, @qdisc_kind_options=@q_prio={{0x9}, {0x18, 0x2, {0x8, "bebf9e8b4e1a87f902d5831ef83c5c66"}}}]}, 0x6c}}, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000380)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f00000003c0)=0x14)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000004c0)={'syztnl0\x00', &(0x7f0000000440)={'ip6gre0\x00', <r6=>0x0, 0x2d, 0x9, 0x7, 0x3, 0x8, @ipv4={'\x00', '\xff\xff', @remote}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x1, 0x7800, 0x3, 0x3}})
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'batadv_slave_1\x00', <r7=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000640)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000600)={&(0x7f0000000680)=ANY=[@ANYBLOB="980000005400020029bd7000fddbdf2507000000", @ANYRES32=r1, @ANYBLOB="20000100", @ANYRES32=r4, @ANYBLOB="01000200fe8000000000000000000000000000bb0000000020000100", @ANYRES32=r5, @ANYBLOB="4c862e0fb8b80601c5ca0c55010000000000000000000000000020000100000000000000", @ANYRES32=r6, @ANYBLOB="00010200e000000100000000000000000000000086dd000020000100", @ANYRES32=r7, @ANYBLOB="00020400ff02000000000000000000000000000100000000"], 0x98}, 0x1, 0x0, 0x0, 0x4}, 0x5)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0500000007000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r10 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r10, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @private}}, 0x80, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000040)={'lo\x00'})
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r11, 0x0, 0x9135}, 0x18)

2.076806513s ago: executing program 2 (id=1246):
socket$xdp(0x2c, 0x3, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xa, 0x2, 0x2, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
socket$igmp(0x2, 0x3, 0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$can_j1939(0x1d, 0x2, 0x7)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f00000000c0)={'vxcan0\x00', <r4=>0x0})
bind$can_j1939(r2, &(0x7f0000000100)={0x1d, r4, 0x1, {}, 0xff}, 0x18)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180500000000c800000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000700)=@base={0x16, 0x0, 0x4, 0xff, 0x30010, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @value}, 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000001400)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r6}, 0x10)
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r7, 0xc0a85320, &(0x7f00000003c0)={{0x80, 0x8}, 'port1\x00', 0x22, 0x0, 0xffff, 0x7, 0x598, 0x4000036e, 0x0, 0x0, 0x2, 0x46})
r8 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x1a0682)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r8, 0xc08c5332, &(0x7f0000000340)={0x8000000, 0x0, 0x0, 'queue1\x00'})
read(r7, &(0x7f00000001c0)=""/176, 0xb0)
write$sndseq(r8, &(0x7f0000000000)=[{0x0, 0x0, 0x0, 0x0, @time={0x3}, {0x0, 0xfd}, {0x80}, @raw8={"a357b6b140cbb6215dd33459"}}], 0x1c)
setsockopt$sock_int(r2, 0x1, 0x6, &(0x7f0000000040)=0x1, 0x4)
sendmsg$can_j1939(r2, &(0x7f0000000140)={&(0x7f0000000180)={0x1d, 0x0, 0x0, {0x2, 0xfe, 0x4}, 0xff}, 0x18, &(0x7f0000000080)={0x0}, 0x4, 0x0, 0x0, 0x40805}, 0x8001)
syz_emit_ethernet(0x82, &(0x7f0000000140)={@broadcast, @random="1704b45adbde", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x74, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x5, 0x0, 0x0, 0xe0, 0x0, 0xe000, {0x16, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @multicast2, @rand_addr, {[@lsrr={0x83, 0x3}, @rr={0x7, 0x3}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x0, [{@rand_addr=0x64010101, 0x10000}, {@private}, {@local}, {@remote}, {@private}, {@dev}, {@private}]}]}}}}}}}, 0x0)
r9 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0)
writev(r9, &(0x7f00000025c0)=[{&(0x7f0000000240)='4', 0x1}, {0x0, 0x900}], 0x2)
write$binfmt_aout(r9, &(0x7f00000003c0)={{0x107, 0x4, 0x0, 0x390, 0x222, 0x3, 0x189, 0xf0b}, "2743a07ff2c93107dfe541dd11801cdfe264e4b5c7b8db0afda1ea9eb51016fde0edc264583c6549e1b8299b4e5e1cceb547f7fdf69ccdd7579ccf51ca8fe8bd90fb84cc53ff8915e4fba7b2e039e3f8cb841e80aff9a4bc36d0f918302c43539619c8d39f8fb627121b897442b628b0c9d4dcd7", ['\x00']}, 0x194)

1.614013192s ago: executing program 5 (id=1248):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[@ANYBLOB], 0xe0}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x4b0}}, 0x0)

1.515649512s ago: executing program 5 (id=1250):
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000000c0)="010001000000000000001000015b", 0xe, 0xfffffffffffffffd)

1.484802012s ago: executing program 5 (id=1251):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000200), 0x111480, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
r1 = socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bond_slave_1\x00'})
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r2, &(0x7f0000000080), &(0x7f0000000300)=""/180}, 0x20)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
r6 = io_uring_setup(0x6c7e, &(0x7f0000000000)={0x0, 0xa29, 0x8000, 0x0, 0x328})
io_uring_register$IORING_UNREGISTER_PBUF_RING(r6, 0x17, &(0x7f0000002080)={0x0}, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r8 = io_uring_setup(0x177d, &(0x7f00000002c0)={0x0, 0x572e, 0x2, 0x2, 0x0, 0x0, r7})
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYRESOCT], 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRESDEC=r6, @ANYRES32=r9, @ANYBLOB], &(0x7f0000000180)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r7, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r10}, 0x10)
r11 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r11, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
bind$inet(r11, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r11, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r11, &(0x7f0000000200)={0x0, 0xfffffffffffffdb2, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[], 0x30}, 0x1, 0x0, 0x0, 0x2404a880}, 0x0)
close_range(r8, 0xffffffffffffffff, 0x200000000000000)
close(0xffffffffffffffff)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000ac0)={0x0, 0x0}, 0x10)

1.211575822s ago: executing program 4 (id=1253):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffff"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x3ff, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
close(r2)

1.210875712s ago: executing program 1 (id=1254):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f00000003c0)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
r2 = dup2(r1, r1)
write$tun(r2, 0x0, 0x46)

1.157310852s ago: executing program 2 (id=1255):
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000001180)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000580)={[{@nolazytime}]}, 0xfe, 0x507, &(0x7f0000000f40)="$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")
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001300)=@newtfilter={0x40, 0x2c, 0xd27, 0x70bd25, 0x5, {0x0, 0x0, 0x0, r3, {0x0, 0x1}, {}, {0x6}}, [@filter_kind_options=@f_flow={{0x9}, {0x10, 0x2, [@TCA_FLOW_EMATCHES={0xc, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x6}}]}]}}]}, 0x40}}, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000202300800000000025ad9835850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mount(0x0, 0x0, &(0x7f0000000080)='configfs\x00', 0x0, 0x0)
chroot(&(0x7f0000000000)='./file0/../file0\x00')
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000300)='mm_page_alloc\x00', r5}, 0x10)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000680)='./file0\x00', 0x0, 0x101091, 0x0)
r6 = socket(0xa, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYRES32, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000008c0)={&(0x7f0000000000)='kmem_cache_free\x00', r7}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r8=>0xffffffffffffffff})
syz_open_procfs(0x0, &(0x7f0000000180)='net/if_inet6\x00')
close_range(r8, 0xffffffffffffffff, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r6, 0x0, 0x482, &(0x7f0000000000)={0x11, @multicast1, 0x4e20, 0x1000001, 'lblc\x00'}, 0x2c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x18)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000540)='./file2\x00', &(0x7f0000000340)=ANY=[@ANYBLOB='\b'], &(0x7f00000001c0), 0x0)

1.132453512s ago: executing program 1 (id=1256):
prctl$PR_SET_NAME(0xf, &(0x7f00000002c0)='4\xb9\xdfs\x7f')
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000031c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a00000000000000000000000000000900010073797a30000000002c000000030a00000000000000000000000000000900010073797a30000000000900030073797a30000000006c000000060a00000000"], 0xe0}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000d40000000000000000000000000a20000000000a03000000000000000000010000000900010073797a3000000000bc000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000009000038008000240000000007c00038014000100626f6e64300000000000000000000000140001006970766c616e31000000000000000000140001006970766c616e300000000000000000001400010073697430000000000000fbffffffffffffff0100776c616e300000000000000000000000140001006772653000000000000000000000040008000140000000005c000000180a01010000000000000000010000000900020073797a30000000000900010073797a30"], 0x4b0}}, 0x0)

1.124002591s ago: executing program 4 (id=1257):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000480)={0x1, &(0x7f0000000b00)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ff5}]})
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000001000)={0x2, 0x4e21, @loopback}, 0x10)
sendmsg$rds(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="0b00000007000000010001004900000001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32], 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r1, <r6=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYRESDEC=r4, @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
accept4(0xffffffffffffffff, &(0x7f0000000340)=@nfc, &(0x7f00000003c0)=0x80, 0x800)
kexec_load(0x0, 0x2, &(0x7f00000002c0)=[{0x0, 0x0, 0x0, 0x10000}, {0x0, 0x0, 0x3e0000}], 0x0)

1.078510991s ago: executing program 5 (id=1258):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x50)
r1 = socket(0x1e, 0x4, 0x0)
r2 = socket(0x1e, 0x2, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x3c, 0x0, 0x0, 0x0, 0x0, 0x4, 0x1400, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x1, @perf_config_ext={0xfffffffffffffffb, 0xfff}, 0x10044, 0x4, 0x200, 0x4, 0x0, 0xfffffffa, 0x0, 0x0, 0x0, 0x0, 0xfffffbfffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000004850000006d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$inet6(0xa, 0x3, 0x7)
setsockopt$inet6_IPV6_RTHDR(r4, 0x29, 0x39, &(0x7f0000000140)=ANY=[@ANYBLOB="00020201"], 0x18)
connect$inet6(r4, &(0x7f0000000500)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
write$binfmt_elf64(r4, 0x0, 0x78)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/notes', 0x0, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000280)=@req3={0x7, 0x0, 0x6, 0x1000, 0xb, 0x3, 0x3}, 0xffffffffffffffac)
sendmmsg(r1, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)
socket(0x5, 0x809, 0xe5)
r6 = dup3(r2, r1, 0x80000)
ioctl$BTRFS_IOC_SEND(r5, 0x40489426, &(0x7f0000000380)={{r0}, 0x2, &(0x7f0000000180)=[0x100000001, 0x7], 0x101, 0x3})
recvmmsg(r6, &(0x7f0000008840)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000040)=""/8, 0x8}], 0x1}, 0xffffffff}], 0x1, 0x40000001, 0x0)
ioctl$BTRFS_IOC_QUOTA_CTL(r6, 0xc0109428, &(0x7f0000000240)={0x2, 0xfff})
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYRES8=r1], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x58, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r7}, 0x10)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0xb, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r9}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
membarrier(0x10, 0x0)
membarrier(0x8, 0x0)

994.864032ms ago: executing program 1 (id=1259):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b70300000000000085000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xdc}}, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

975.860761ms ago: executing program 3 (id=1260):
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0x3, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000780)=@newsa={0x138, 0x10, 0x713, 0x0, 0x0, {{@in=@broadcast, @in6=@remote}, {@in6=@remote, 0x0, 0x32}, @in6=@mcast1, {}, {}, {}, 0x0, 0x0, 0x2}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x20000015}, 0x0)

765.416901ms ago: executing program 1 (id=1261):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', <r2=>0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0xfff, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r3, 0x0, 0x9135}, 0x18)
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001740)=@newqdisc={0x50, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x20, 0x2, {{0x0, 0x200000, 0x0, 0x0, 0xffffffff, 0x8003}, [@TCA_NETEM_LOSS={0x4}]}}}]}, 0x50}}, 0x8880)

757.061841ms ago: executing program 3 (id=1262):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0x3, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000000c0)="010001000000000000001000015b", 0xe, 0xfffffffffffffffd)

723.087541ms ago: executing program 1 (id=1263):
syz_open_dev$tty1(0xc, 0x4, 0x4)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', 0xffffffffffffffff, 0x0, 0x80000000000}, 0x18)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)=ANY=[@ANYBLOB="580000001000390429bd7000e2ffffff000003e4", @ANYRES32=0x0, @ANYBLOB="43020000c0010200380012807000000024a000028006000f00060011004e21000008000100"/52, @ANYRES32], 0x58}, 0x1, 0x0, 0x0, 0x4040}, 0x40000c0)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'macvlan0\x00', <r4=>0x0})
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41e5d65e1453724)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x48, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6}, 0x10)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x50032, 0xffffffffffffffff, 0x0)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x14, 0x0, &(0x7f0000e5f000)=0x4)
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'ipvlan0\x00', <r8=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000080)=ANY=[@ANYBLOB="400000001000030500000000fddbdf2500000000", @ANYRES32=0x0, @ANYBLOB="00000000000000002000128008000100687372001400028008000100", @ANYRES32=r4, @ANYBLOB='\x00\x00\x00\x00', @ANYRES32=r8, @ANYBLOB], 0x40}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
epoll_create1(0x0)

718.899971ms ago: executing program 3 (id=1264):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000030000000100000080"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kfree\x00', r2, 0x0, 0xfffffffffffffffe}, 0x18)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000000000180003801400010076657468305f746f5f687372000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c0003801400010076657468305f746f5f68737200000000"], 0xfc}}, 0x0)

500.951281ms ago: executing program 3 (id=1265):
getpid()
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

431.40694ms ago: executing program 1 (id=1266):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$xdp(0x2c, 0x3, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xa, 0x2, 0x2, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
socket$igmp(0x2, 0x3, 0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$can_j1939(0x1d, 0x2, 0x7)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f00000000c0)={'vxcan0\x00', <r4=>0x0})
bind$can_j1939(r2, &(0x7f0000000100)={0x1d, r4, 0x1, {}, 0xff}, 0x18)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180500000000c800000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000700)=@base={0x16, 0x0, 0x4, 0xff, 0x30010, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @value}, 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000001400)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r6}, 0x10)
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r7, 0xc0a85320, &(0x7f00000003c0)={{0x80, 0x8}, 'port1\x00', 0x22, 0x0, 0xffff, 0x7, 0x598, 0x4000036e, 0x0, 0x0, 0x2, 0x46})
r8 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x1a0682)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r8, 0xc08c5332, &(0x7f0000000340)={0x8000000, 0x0, 0x0, 'queue1\x00'})
read(r7, &(0x7f00000001c0)=""/176, 0xb0)
write$sndseq(r8, &(0x7f0000000000)=[{0x0, 0x0, 0x0, 0x0, @time={0x3}, {0x0, 0xfd}, {0x80}, @raw8={"a357b6b140cbb6215dd33459"}}], 0x1c)
setsockopt$sock_int(r2, 0x1, 0x6, &(0x7f0000000040)=0x1, 0x4)
sendmsg$can_j1939(r2, &(0x7f0000000140)={&(0x7f0000000180)={0x1d, 0x0, 0x0, {0x2, 0xfe, 0x4}, 0xff}, 0x18, &(0x7f0000000080)={0x0}, 0x4, 0x0, 0x0, 0x40805}, 0x8001)
syz_emit_ethernet(0x82, &(0x7f0000000140)={@broadcast, @random="1704b45adbde", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x74, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x5, 0x0, 0x0, 0xe0, 0x0, 0xe000, {0x16, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @multicast2, @rand_addr, {[@lsrr={0x83, 0x3}, @rr={0x7, 0x3}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x0, [{@rand_addr=0x64010101, 0x10000}, {@private}, {@local}, {@remote}, {@private}, {@dev}, {@private}]}]}}}}}}}, 0x0)
r9 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0)
writev(r9, &(0x7f00000025c0)=[{&(0x7f0000000240)='4', 0x1}, {0x0, 0x900}], 0x2)
write$binfmt_aout(r9, &(0x7f00000003c0)={{0x107, 0x4, 0x0, 0x390, 0x222, 0x3, 0x189, 0xf0b}, "2743a07ff2c93107dfe541dd11801cdfe264e4b5c7b8db0afda1ea9eb51016fde0edc264583c6549e1b8299b4e5e1cceb547f7fdf69ccdd7579ccf51ca8fe8bd90fb84cc53ff8915e4fba7b2e039e3f8cb841e80aff9a4bc36d0f918302c43539619c8d39f8fb627121b897442b628b0c9d4dcd7", ['\x00']}, 0x194)

430.39598ms ago: executing program 3 (id=1267):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000600)=ANY=[@ANYBLOB="180000000000140000000000000000009500000000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000000c0)='kmem_cache_free\x00', r0, 0x0, 0x8}, 0x18)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x2}, 0x8)
sendto$inet6(r1, &(0x7f0000001240)='>', 0x1, 0x0, &(0x7f00000012c0)={0xa, 0x0, 0x0, @local, 0x1}, 0x1c)
shutdown(r1, 0x1)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x5, &(0x7f0000006680))
r2 = socket$packet(0x11, 0x3, 0x300)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r4=>0x0})
bind(r2, &(0x7f0000000000)=@ll={0x11, 0x1, r4, 0x1, 0x0, 0x6, @random="c900"}, 0x80)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@getchain={0x24, 0x11, 0x839, 0x70bd2b, 0x25dfdbfe, {0x0, 0x0, 0x0, r4, {0xfff3}}}, 0x24}}, 0x0)
faccessat(0xffffffffffffffff, 0x0, 0x5)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000002c0000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r7}, 0x10)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000200)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0xe7}}, {}]}, 0x0, 0x4ee, &(0x7f0000000c40)="$eJzs3c9vVF0ZAOD3Tju0XxkoKAs1KogoGsL0B9AQXAgbjSEkRuLKBdR2aJrOME2nRVpZlKV7E0lc6Z/gzoUJKxfu3OnODS5MUImGmrgYc+9c2qHt0PrRdmDmeZLbe885w7znzHDOmXtgegLoW+ciYj0ijkXE/YgYzfOT/IibrSN93OtXT2Y2Xj2ZSaLZvPuPJCtP86Ltz6SO5885HBE/+G7Ej5OdcRurawvT1WplKU+PLdcWxxqra5fnC3nO5NTE1Pj1K9cmD6ytZ2u/efmd+ds//N1vv/Tij+vf/GlardLPTmRl7e04SK2mF6PUljcYEbcPI1iXDOZ/f/j4pL3tMxFxPuv/ozGQvZsAQC9rNkejOdqeBgB6XXr/X4qkUM7XAkpRKJTLrTW8MzFSqNYby5dG6ysPZyNbwzoVxcKD+WplPF8rPBXFJE1PZNdb6clt6SsRcToifj70SZYuz9Srs9384AMAfez4tvn/30Ot+R8A6HHD3a4AAHDkzP8A0H/M/wDQf/6P+d+3AwGgR7j/B4D+Y/4HgP6z5/z/9GjqAQAcie/fuZMezY3891/PPlpd+Vbp0eXZSmOhXFuZKc/UlxbLc/X6XLVSnmk293q+ar2+OHF1M9lYXbtXq688XL43X5ueq9yrFA+5PQDA3k6fff7nJCLWb3ySHdG2l4O5GnpbodsVALpmoNsVALrG93mgf+3jHt8yAPS4XbbofUvH/yL0zOav8LG6+Pld1v/zzm7ih95m/R/616db///2gdcDOHrW/6F/NZuJPf8BoM9Y4wfe69//AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoE+VsiMplLO9wNfTn4VyOeJERJyKYvJgvloZj4iTEfGnoeJQmp7odqUBgPdU+FuS7/91cfRCaXvpseQ/Q9k5In7yy7u/eDy9vLw0keb/czN/+VmeP3msGw0AANrd3JnVmqfzc9uN/OtXT2beHEdZxZe3WpuLpnE38qNVMhiD2Xk4ihEx8q8kT7ekn1cGDiD++tOI+NxW+x+3RShlayCtnU+3x09jnziE+Fuv//b4hbfiF7Ky9FzMXovPHkBdoN88v9UaJ/O+l3axvP8V4lx23r3/D2cj1Pt7M/5t7Bj/Cpvj38CO+EnW589tpt9dk5dXf/+9HZnN0VbZ04gvDO4WP9mMn3QYfy/ss41/+eKXz3cqa/4q4mLsHr+llg2zY8u1xbHG6trl+dr0XGWu8nBycmpiavz6lWuTY9kadevnH3aL8fcbl052ip+2f6RD/OE92v+1fbb/1/+9/6OvvCP+N766+/t/5h3x0znx6/uMPz1ys+P23Wn82Q7t3+v9v7TP+C/+uja7z4cCAEegsbq2MF2tVpb2uEg/a+71GBcf50WsR3wA1XDxQV10e2QCDttWp+92TQAAAAAAAAAAAAAAgE4aq2sLQ3G4XyfqdhsBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADoXf8LAAD//xDLzvs=")
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000000c0), 0x4)
ustat(0x6, &(0x7f0000000040))
bpf$PROG_LOAD(0x5, 0x0, 0x0)
unshare(0x68040200)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x8205, &(0x7f0000000480)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0xd}}, {@data_err_abort}, {@minixdf}, {@errors_remount}, {@abort}, {@noblock_validity}, {@barrier}, {@journal_dev={'journal_dev', 0x3d, 0xf35}}]}, 0x1, 0x618, &(0x7f0000000640)="$eJzs3c9rHG0dAPDvzCYxed9oWpFii2LAQwvS/KjFqqe2F3soWLAHEQ8NTVJDN21oUrC1YAoeFBREvIr04j/gXYpXbyKoN89CFYl4UOnKzM60a3Y32ebN7mwznw/M9plnZvd5vjv7dJ5nNs9OALU1nz2kEWcj4k4SMdexbTbaG+eL/fb+8exutiTRan3j70kkRV65/+vi3w+zhyRiOiJ+fz3ik43ucrefPL2/0my1fT9icWdza3H7ydOLG5sr99burT1YvvTly1eWvrJ8eflY4izjunHz65/5yQ++86X1PzQvJnE1bk9+bzX2xXFc5mM+XhchduZPRMSVLNHjfXnflCEkFdeDo2kUn8fJiDgTc9HI19rmYuPHlVYOGKpWI6IF1FSi/UNNlf2Acmw/jHHwOHt1rT0A6o5/on1tJKbzsdEHe0nHyKg93j11DOVnZfz32blfZEv0uQ4xcQzl9LP7PCI+3Sv+JK/bqfwqThZ/GmnH87L0UkRMFe/FYOP/ya6c+X3ro/78vUv8ncchi/9q8W+Wf/2I5VcdPwD19PJacSLfzdbenv+ynmHZ/4ke/Z/ZHueuo6j6/Ne//1ee76fza+Tpvn5Y1t+51fsluzo5f/nRjZ/1K7+z/5ctWfllX3AUXj2POLcv/h/mHb3kzfFPehz/bJc7A5bxtT/+7Ua/bVXH33oRcb7n+OdtjzZLLe5sbpV5+76fXFzfaK4ttR97lvGb3337V/3Krzr+7PhHn/HfQcc/y9sasIxf33qx2W/b7KHxp3+dSm7nqaki57srOzuPliOmkpvFLh35lw6uS7lP+RpZ/Bc+37v994q/KCo/0Lv/9270t/XN+3v99hv4+HcPnTKvWweHe6gs/tU+n//Djv9PByzjX996/Nl9WTNl4qD4Z7pfKtl95wgBAAAAAACgPtL8O9gkXXiTTtOFhfYc3k/FB2nz4fbOF9YfPn6wGnEh/3vIybT8pnuuvZ5k68vF38OW65f2rX8xIk5HxM8bM/n6wt2HzdWqgwcAAAAAAAAAAAAAAAAAAIAx8WEx/7+8T/U/G+35/wPZOTPk2gFDN8wbzAHjTfuH+srbf1p1LYAqOP9DfWn/UF/aP9SX9g/1pf1DfWn/UF/aP9SX9g8AAAAAJ9Lpz738cxIRu1+dyZfMVLFtstKaAcP27m18fij1AEavMdKnAePkzVf/pv9D7QzU//938eOAw68OUIGkV2beOWgd3Phf9nwmAAAAAAAAAAAAADAE58+a/w91lcZvq64CUJHuifxn9wac6Oc3AOA956f/ob4+0hjfBQI4EQ6bxT/db4P5/wAAAAAAAAAAAAAwMrP5kqQLxS1AZyNNFxYiPh4Rp2IyWd9ori1FxCci4k+NyY9l68tVVxoAAAAAAAAAAAAAAAAAAABOmO0nT++vNJtrjzoT/+nKOdmJ8i6o41KfzkQkoy90JiLGIfbhJCY6cpKI3ezIj0XFHm3HWFQjzatR8X9MAAAAAAAAAAAAAAAAAABQQx1zj3s798sR1wgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAARu/t/f+PnkgOeZ2qYwQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA3k//CwAA//9vNjw9")

397.71434ms ago: executing program 2 (id=1268):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000020000807b8af8ff00000000bfa200000000000007"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x4ffe0, 0x0)

360.809511ms ago: executing program 2 (id=1269):
prctl$PR_SET_NAME(0xf, &(0x7f00000002c0)='4\xb9\xdfs\x7f')
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000031c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a00000000000000000000000000000900010073797a30000000002c000000030a00000000000000000000000000000900010073797a30000000000900030073797a30000000006c000000060a00000000"], 0xe0}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000d40000000000000000000000000a20000000000a03000000000000000000010000000900010073797a3000000000bc000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000009000038008000240000000007c00038014000100626f6e64300000000000000000000000140001006970766c616e31000000000000000000140001006970766c616e300000000000000000001400010073697430000000000000fbffffffffffffff0100776c616e300000000000000000000000140001006772653000000000000000000000040008000140000000005c000000180a01010000000000000000010000000900020073797a30000000000900010073797a30"], 0x4b0}}, 0x0)

315.48992ms ago: executing program 2 (id=1270):
getpid()
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000880)={[{@errors_remount}, {@bsdgroups}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5e}}, {@noauto_da_alloc}, {@bsdgroups}, {@oldalloc}, {@stripe={'stripe', 0x3d, 0x2}}]}, 0x2, 0x44a, &(0x7f0000000400)="$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")

232.36669ms ago: executing program 4 (id=1271):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000000)=0x2)
ioctl$PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000140)={0x1, &(0x7f0000001500)=[{0x48, 0x8, 0xe4, 0x2}]})

196.02374ms ago: executing program 5 (id=1272):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b70300000000000085000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xdc}}, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

125.74108ms ago: executing program 5 (id=1273):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
close(r0)
syz_read_part_table(0x60d, &(0x7f0000002240)="$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")
creat(&(0x7f0000000040)='./bus\x00', 0x176)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000006000000000084e27fa40000000f000000c5000000a000020095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7, @void, @value}, 0x94)
r1 = io_uring_setup(0x7bda, &(0x7f0000000080)={0x0, 0x6cdf, 0x2, 0x3, 0x5})
lchown(&(0x7f0000000000)='./cgroup/cgroup.procs\x00', 0x0, 0x0)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r1, 0x18, 0x20000000, r2)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7030000010100008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x2d)
bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000100)=@base={0x18, 0x4, 0x41, 0x0, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x4002, 0x5, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bind$inet(r3, &(0x7f0000000000)={0x2, 0x4e20, @multicast1}, 0x10)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b00)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r7 = open(&(0x7f0000000080)='./bus\x00', 0x147842, 0x49)
preadv2(r7, &(0x7f0000000040)=[{&(0x7f0000001200)=""/4096, 0xfffffdef}], 0x1, 0x0, 0x0, 0x0)

125.35571ms ago: executing program 4 (id=1274):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', <r2=>0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0xfff, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r3, 0x0, 0x9135}, 0x18)
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001740)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x28, 0x2, {{0x0, 0x200000, 0x0, 0x0, 0xffffffff, 0x8003}, [@TCA_NETEM_CORRUPT={0xc, 0x4, {0x16d70000, 0x10000}}]}}}]}, 0x58}}, 0x8880)

68.044759ms ago: executing program 4 (id=1275):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000002900000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0xc, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x660}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffd}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='GPL\x00', 0xc, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, 0x0, 0x0)

7.04745ms ago: executing program 4 (id=1276):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='yeah\x00', 0x3c)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1c}}, 0x10)
sendmsg$inet(r0, &(0x7f00000015c0)={0x0, 0x14, &(0x7f0000001600)=[{&(0x7f0000000240)=' ', 0xffffff1f}], 0x1}, 0x0)
recvmsg(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000cc0)=[{&(0x7f0000002740)=""/4120, 0x1018}, {&(0x7f0000000d00)=""/37, 0x25}, {&(0x7f0000000a80)=""/70, 0x46}, {&(0x7f0000000b00)=""/64, 0x40}], 0x4}, 0x700)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x1}, 0x0, 0x9, 0xffffffffffffffff, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x40003, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
shmget$private(0x0, 0x1000, 0x800, &(0x7f0000ffc000/0x1000)=nil) (fail_nth: 1)

5.83512ms ago: executing program 2 (id=1277):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x3ff, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
close(r2)

0s ago: executing program 3 (id=1278):
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000001180)=ANY=[@ANYBLOB="61154c000000000061138c0000000000bfa00000000000001503000008004e002d35010000000000950041000000000069163e0000000000bf67000000000000350605000fff07206706000005000000160302000ee60060bf500000000000000f650000000000006507f9ff0100000007070000cddfffff1e75000000000000bf54000000000000070400000400f9ff3d4301000000000095000000000000001500000000000000950000000000000032ed3c12dc8c27df8ecf264e0f84f9f17d3c30e32f1754558f2278af6d71d79a5e12814cb1d8a5d4601d295c45a6a0b9bdb7dd3997f9c9c4f6f3be4b369289aa6812b8e007e733a9a4f1b0af3dda82ee45a010fb94fe9de57b9d8a814261bdb94a05000000c6c60bf70d742a81762bab8395fa64810b5b40d893ea8fe01c5473d51b546cad3f1d5ab2af27546e7c955ccefa1f6ab689b555202da2e0ec2871b4a7e65836429a527dc47ebe84a423b6c8d345dc8da3085b0ab71ca1b901627b562ed04ae76002d4519af619e3cca4d69e88158f0200000000c8fb730a5c1bf2b2bb71a629361997a75fd552bdc2300000008ac86d8a297dff0445a15f21dce4de9f29eff65aadc841848c9b562a31e56723888fb126a163f16f920ae2fb494059bba8e3b680324a188076ebae3f55c4e9b2ad9bc1172ba7cbebe174aba210d739a018f9bbec63222d20cecac4d03723f1c932c9a6aa57f1ad2e99e0e67ab93716d20000009fbb0f53acbb40b4f8e2739670b31562ed834f2af97787f696649a462e7ee4bcf8b07a10d6735154beb4000000000000000000000000004000bc00f679629709e7e78f4ddc211bc3ebe6bd9d42ca0140a7afaab43176e65ec1118d50d1e827f3472f4445d253880800000000000000690884f800031e03a651bb96589a7e2e509bcc1d161347623cb5e7ac4629c8ab04871bc401000000cc43010000207b40407d000000210000000000000000005f37d83f84e98a523d80bd970d703f37ca364a601ae899a56715a0a62a34c6c94cce6994521629ab028acfc1d926a0f6a5489af8dc2f17923f3c40dfd1970a55c22fe3a5ac000000f4000000000000000000000000c1eb2d91fb79ea00000000000000bb0d00000000000000000000e4007be511fe32fbc90e2364a55e9bb66ac64423d2d00fea2594e190deae46e26c596f84eba9000000000000003cc3aa39ee4b1386bab561cda886fa642994cacd473b543ccb5f0d7b63924f17c67b13631d22a11dc3c6939628950000000000000001c7205a6b068fff496d2da7d632bd1f61b007e1ff5f1be19637302f3b41eae50509fd05d12f6186f117b062df67d3a63f3265dd1410eea68208a3f26b2989b832d8b34a34a4f08b34b30410856e858d27adee7daf32903d3fc78700d429a2d4c8b6d803eb83eecfe4c7ff9e6ab5a52e83d089dad7a8710e0254f1b11cced7bc3c8da0c44d2ebf9f6f3ff3be4d1458077c2253b0c7c7a0a9fdd63bf910dc20e5cb2a88e59febc47f1212a21f631dbaa74f22bad050e9856b48ae3a03a497c37758537650fe6db88aa3c41fdc3d78e046f6160e1741299e8dc29906870e6431ed1eab5d067a183f064b060a8ec12725d42e3a74863d66bee966b1574f8e01b3f34a267ff0afa1e1c758a0079b747067312e9815a21cb3f1f8150d999d788535a4d3114dbc7e2bf2402a75fd7a55733360040855ed5d1c0d634fb9fb38f84d9d87b27f8a5d91217b728f13e3ee20e69e0ffb2780b1a7af137ff7b4ff010404faf0a4da65396174b4563d54b52f06c870edf0c5d744b5272b44c23488b2bdbff947c4dfa108cbb88202ee1192b81f428a5b3c299848649e1a6bff52f657a67463d7dbf85ae9321fc2b517dc4a29b9b5a8ded5de8206c812439ab129ae818837ee1562078fc524a3baf49a0be9bb7d958d5e87c6c09bf71a894bad62934782cc308e936d7637e07c4a2a3bc87b0da23c00d9ef418cf19e7a8c4c328be0ce95798adc2dca871073f6bd61dc18402cde8b0100010000000000abc86b94f8cbde4d470667bee722a6a2af483ad0d3415ed0f9db059acaba9eaea93f811d434e00000000000000000000d154ba10a8e51489a614e69722bac30000000000000000000000000000c5dfd188ff555285b9743d3aac000583f42d168613151d681a2f71373f20d92c9048407c91fabecfe8b3f2d545ffffffff00000000a1cfc4336324c86f3dcb43e9a58208077e90f6ec1c7ac756f61dcc372cdd30b82507489f0bbfbd3c3f21752e81319c0161e154ceb16e00bc7f5a6962dff317f4d014786e432817064874d69a39cb0da31bcc5f81894d8a80756447322207b4007dff12eb95066cc6bc256f0a12282224d718b06ca80b57aa183dd0c3eee45891441f2b89b4c67aa9882281393954972046974f18df232cd7fca610e33f51c2d062020f403d85ff36c26e2f6bd1d82f4d3ceb3472d9a77e0057a3bfe697d9ab7585f4a1b381343d2cf857689232f4fc5135790662dc1419a374be9d7b3e5be2886d23add90d862f1a682ff11c798e338af3e5bb0f9d3952b15bf3e0c618c89d20ca1e18a031397693bf3cfbd8417e5b55e641c898c280356f2da222d5d68919d98158578dcf18efa404e508bcbbb8cfcf70086821ebdf34c9a1dff45af873df904c2bdbef81f246d26f4b40df949e12bdac18533d4e11c608cc31d60cb591c40a7b386fa1c753336d7220a35118d4919b45eff32aab684ee54c0a263c806aabac2f66cb052f847c62c6691de14e97aa7e9dc8ecf0cd50540246d2b746e41e5b4e2c095039dfe0f71db6265f7580d098be40ef36faee5d1695830d4242a23e541e6ce9fa1998d8961ef4fe3c8e8fbb566f148c8befc229614a4b7f80d237b8abc6fc0407de31d6e5532f360d379f20f054692b47207922fe6c14eba96c9a7ae906abc1ae1ae8c4fae92883cfa1978a04bb000000000000000000000000000000884efcecca45ea4ab2ec097668456a6ff12854997f5aed737d5205ace5c0b64f87ef10784d0479cb44ca077e0c4ce6ff880e2ce3de63853a9740e9233683bfc8636bee293aeeb680b399a296e6f44c07b5fc5d9d359af007f23004a7acb6df23664ea209620b4fe0f4df81c33bd8ca2335cb4b50881937379b45a301175c3e8eb32970564ec8e25c46ee3bae079faedaad94276cfa251be8256c4c37fc84a25c3a2feb39e94a5266a10716d4a3cef499fa176018054e9149a1c9d20a809ce3"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000580)={[{@nolazytime}]}, 0xfe, 0x507, &(0x7f0000000f40)="$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")
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001300)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd25, 0x5, {0x0, 0x0, 0x0, r3, {0x0, 0x1}, {}, {0x6}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_EMATCHES={0x10, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x6}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}}, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000202300800000000025ad9835850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mount(0x0, 0x0, &(0x7f0000000080)='configfs\x00', 0x0, 0x0)
chroot(&(0x7f0000000000)='./file0/../file0\x00')
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000300)='mm_page_alloc\x00', r5}, 0x10)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000680)='./file0\x00', 0x0, 0x101091, 0x0)
socket(0xa, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYRES32, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000008c0)={&(0x7f0000000000)='kmem_cache_free\x00', r6}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r7=>0xffffffffffffffff})
syz_open_procfs(0x0, &(0x7f0000000180)='net/if_inet6\x00')
close_range(r7, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x18)

kernel console output (not intermixed with test programs):

00-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.021067][ T5323] SELinux: (dev loop4, type ext4) getxattr errno 5
[   78.028133][ T5323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.045515][ T5341] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   78.104828][   T36] team0 (unregistering): Port device team_slave_1 removed
[   78.114431][   T36] team0 (unregistering): Port device team_slave_0 removed
[   78.231444][ T5291] chnl_net:caif_netlink_parms(): no params data found
[   78.370664][ T5291] bridge0: port 1(bridge_slave_0) entered blocking state
[   78.377776][ T5291] bridge0: port 1(bridge_slave_0) entered disabled state
[   78.385714][ T5291] bridge_slave_0: entered allmulticast mode
[   78.396788][ T5291] bridge_slave_0: entered promiscuous mode
[   78.404369][ T5291] bridge0: port 2(bridge_slave_1) entered blocking state
[   78.411487][ T5291] bridge0: port 2(bridge_slave_1) entered disabled state
[   78.443823][ T5365] netlink: 116 bytes leftover after parsing attributes in process `syz.3.710'.
[   78.523581][ T5291] bridge_slave_1: entered allmulticast mode
[   78.594506][ T5291] bridge_slave_1: entered promiscuous mode
[   78.774368][ T5291] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   78.817213][ T5291] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   78.835222][ T5382] netlink: 48 bytes leftover after parsing attributes in process `syz.3.713'.
[   78.861593][ T5291] team0: Port device team_slave_0 added
[   78.868954][ T5291] team0: Port device team_slave_1 added
[   78.919020][ T5291] batman_adv: batadv0: Adding interface: batadv_slave_0
[   78.925998][ T5291] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   78.951977][ T5291] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   78.976805][ T5291] batman_adv: batadv0: Adding interface: batadv_slave_1
[   78.983932][ T5291] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   79.009938][ T5291] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   79.022211][ T5403] loop3: detected capacity change from 0 to 256
[   79.040022][ T5403] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   79.067463][   T36] IPVS: stop unused estimator thread 0...
[   79.082547][ T5403] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   79.106068][ T5407] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   79.123221][ T5291] hsr_slave_0: entered promiscuous mode
[   79.133066][ T5291] hsr_slave_1: entered promiscuous mode
[   79.139300][ T5291] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   79.146927][ T5291] Cannot create hsr debugfs directory
[   79.240796][ T5421] loop1: detected capacity change from 0 to 512
[   79.256995][ T5421] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   79.280998][ T5421] EXT4-fs (loop1): can't mount with data=, fs mounted w/o journal
[   79.311310][ T5291] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   79.343226][ T5291] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   79.355787][ T5291] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   79.365182][ T5291] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   79.424246][ T5291] 8021q: adding VLAN 0 to HW filter on device bond0
[   79.462583][ T5291] 8021q: adding VLAN 0 to HW filter on device team0
[   79.474418][ T3887] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.481560][ T3887] bridge0: port 1(bridge_slave_0) entered forwarding state
[   79.492250][ T3887] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.499436][ T3887] bridge0: port 2(bridge_slave_1) entered forwarding state
[   79.516894][ T5291] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   79.527280][ T5291] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   79.572336][ T5436] loop4: detected capacity change from 0 to 256
[   79.603987][ T5436] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   79.633860][ T5436] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   79.639360][ T5291] 8021q: adding VLAN 0 to HW filter on device batadv0
[   79.845657][ T5469] netlink: 48 bytes leftover after parsing attributes in process `syz.3.725'.
[   79.870484][ T5291] veth0_vlan: entered promiscuous mode
[   79.885974][ T5291] veth1_vlan: entered promiscuous mode
[   79.906852][ T5291] veth0_macvtap: entered promiscuous mode
[   79.915030][ T5477] netlink: 48 bytes leftover after parsing attributes in process `syz.3.726'.
[   79.923289][ T5291] veth1_macvtap: entered promiscuous mode
[   79.941158][ T5291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   79.951690][ T5291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   79.961595][ T5291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   79.972100][ T5291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   79.981980][ T5291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   79.992543][ T5291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.002407][ T5291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   80.012932][ T5291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.068879][ T5291] batman_adv: batadv0: Interface activated: batadv_slave_0
[   80.109356][ T5291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   80.119868][ T5291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.129729][ T5291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   80.140273][ T5291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.150151][ T5291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   80.160671][ T5291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.170494][ T5291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   80.181106][ T5291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.191803][ T5291] batman_adv: batadv0: Interface activated: batadv_slave_1
[   80.206909][ T5291] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   80.215712][ T5291] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   80.224446][ T5291] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   80.233186][ T5291] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   80.284136][ T5490] 9pnet: Could not find request transport:  È†W^Ûfd
[   80.394773][ T5505] loop4: detected capacity change from 0 to 2048
[   80.421445][ T5509] netlink: 48 bytes leftover after parsing attributes in process `syz.2.735'.
[   80.440879][ T5513] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.733'.
[   80.455273][ T5500] netlink: 16402 bytes leftover after parsing attributes in process `4¹ßs'.
[   80.481411][ T5505]  loop4: p1 < > p4
[   80.490149][ T5505] loop4: p4 size 8388608 extends beyond EOD, truncated
[   80.561729][ T5527] netlink: 3 bytes leftover after parsing attributes in process `syz.3.739'.
[   80.586091][ T5530] loop2: detected capacity change from 0 to 256
[   80.587332][ T5527] batadv1: entered promiscuous mode
[   80.597723][ T5527] batadv1: entered allmulticast mode
[   80.634289][ T5530] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   80.650407][ T5530] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   80.734840][   T29] kauditd_printk_skb: 339 callbacks suppressed
[   80.734857][   T29] audit: type=1400 audit(1736927188.261:2672): avc:  denied  { read write } for  pid=5541 comm="syz.4.743" name="rdma_cm" dev="devtmpfs" ino=251 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   80.793092][ T5547] FAULT_INJECTION: forcing a failure.
[   80.793092][ T5547] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   80.806312][ T5547] CPU: 1 UID: 0 PID: 5547 Comm: syz.4.746 Not tainted 6.13.0-rc7-syzkaller-00043-g619f0b6fad52 #0
[   80.817037][ T5547] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   80.827113][ T5547] Call Trace:
[   80.830405][ T5547]  <TASK>
[   80.833448][ T5547]  dump_stack_lvl+0xf2/0x150
[   80.838116][ T5547]  dump_stack+0x15/0x1a
[   80.842431][ T5547]  should_fail_ex+0x223/0x230
[   80.847205][ T5547]  should_fail+0xb/0x10
[   80.851393][ T5547]  should_fail_usercopy+0x1a/0x20
[   80.856460][ T5547]  _copy_from_user+0x1e/0xb0
[   80.861074][ T5547]  copy_msghdr_from_user+0x54/0x2a0
[   80.866378][ T5547]  ? __fget_files+0x17c/0x1c0
[   80.871231][ T5547]  __sys_sendmsg+0x13e/0x230
[   80.875863][ T5547]  __x64_sys_sendmsg+0x46/0x50
[   80.880722][ T5547]  x64_sys_call+0x2734/0x2dc0
[   80.885422][ T5547]  do_syscall_64+0xc9/0x1c0
[   80.890013][ T5547]  ? clear_bhb_loop+0x55/0xb0
[   80.894716][ T5547]  ? clear_bhb_loop+0x55/0xb0
[   80.899510][ T5547]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.905432][ T5547] RIP: 0033:0x7fdd0d175d29
[   80.909952][ T5547] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.929655][ T5547] RSP: 002b:00007fdd0b7e7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   80.938162][ T5547] RAX: ffffffffffffffda RBX: 00007fdd0d365fa0 RCX: 00007fdd0d175d29
[   80.946233][ T5547] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000006
[   80.954224][ T5547] RBP: 00007fdd0b7e7090 R08: 0000000000000000 R09: 0000000000000000
[   80.962263][ T5547] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   80.970294][ T5547] R13: 0000000000000000 R14: 00007fdd0d365fa0 R15: 00007ffcad81ded8
[   80.978292][ T5547]  </TASK>
[   80.984275][   T29] audit: type=1400 audit(1736927188.261:2673): avc:  denied  { open } for  pid=5541 comm="syz.4.743" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=251 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   81.008419][   T29] audit: type=1400 audit(1736927188.301:2674): avc:  denied  { execmem } for  pid=5543 comm="syz.5.744" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   81.027567][   T29] audit: type=1400 audit(1736927188.321:2675): avc:  denied  { create } for  pid=5546 comm="syz.4.746" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   81.047044][   T29] audit: type=1400 audit(1736927188.461:2676): avc:  denied  { write } for  pid=5545 comm="syz.3.745" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   81.140620][   T29] audit: type=1400 audit(1736927188.671:2677): avc:  denied  { mounton } for  pid=5550 comm="syz.3.747" path="/152/bus" dev="tmpfs" ino=816 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   81.195127][   T29] audit: type=1400 audit(1736927188.721:2678): avc:  denied  { unmount } for  pid=3311 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[   81.272961][ T5562] batadv1: entered promiscuous mode
[   81.278252][ T5562] batadv1: entered allmulticast mode
[   81.380681][   T29] audit: type=1326 audit(1736927188.811:2679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5570 comm="syz.4.752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0d175d29 code=0x7ffc0000
[   81.404121][   T29] audit: type=1326 audit(1736927188.811:2680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5570 comm="syz.4.752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0d175d29 code=0x7ffc0000
[   81.427531][   T29] audit: type=1326 audit(1736927188.811:2681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5570 comm="syz.4.752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fdd0d175d29 code=0x7ffc0000
[   81.968362][ T5598] xt_connbytes: Forcing CT accounting to be enabled
[   81.978465][ T5598] Cannot find add_set index 0 as target
[   82.416279][ T5614] loop5: detected capacity change from 0 to 512
[   82.429021][ T5614] EXT4-fs (loop5): revision level too high, forcing read-only mode
[   82.478704][ T5614] EXT4-fs (loop5): orphan cleanup on readonly fs
[   82.486782][ T5614] EXT4-fs warning (device loop5): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   82.503310][ T5614] EXT4-fs (loop5): Cannot turn on quotas: error -117
[   82.540957][ T5622] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   82.550464][ T5614] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.762: bg 0: block 40: padding at end of block bitmap is not set
[   82.566905][ T5614] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   82.577572][ T5614] EXT4-fs (loop5): 1 truncate cleaned up
[   82.583892][ T5614] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   82.625071][ T5614] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   82.634121][ T5614] EXT4-fs (loop5): revision level too high, forcing read-only mode
[   82.772265][ T5630] __nla_validate_parse: 4 callbacks suppressed
[   82.772282][ T5630] netlink: 48 bytes leftover after parsing attributes in process `syz.1.767'.
[   82.780761][ T5627] loop4: detected capacity change from 0 to 512
[   82.830563][ T5614] EXT4-fs error (device loop5): ext4_xattr_block_get:596: inode #16: comm syz.5.762: corrupted xattr block 31: invalid header
[   82.844229][ T5614] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=16
[   82.854762][ T5627] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   82.866087][ T5641] netlink: 48 bytes leftover after parsing attributes in process `4¹ßs'.
[   82.872086][ T5627] EXT4-fs (loop4): orphan cleanup on readonly fs
[   82.887450][ T5627] EXT4-fs warning (device loop4): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   82.906127][ T5627] EXT4-fs (loop4): Cannot turn on quotas: error -117
[   82.914055][ T5627] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.766: bg 0: block 40: padding at end of block bitmap is not set
[   82.929490][ T5627] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   82.930961][ T5644] loop3: detected capacity change from 0 to 512
[   82.941605][ T5645] loop1: detected capacity change from 0 to 256
[   82.951295][ T5645] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   82.959627][ T5627] EXT4-fs (loop4): 1 truncate cleaned up
[   82.969295][ T5627] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   82.970509][ T5645] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   83.007404][ T5644] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   83.016822][ T5644] EXT4-fs (loop3): orphan cleanup on readonly fs
[   83.023724][ T5644] EXT4-fs warning (device loop3): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   83.038845][ T5644] EXT4-fs (loop3): Cannot turn on quotas: error -117
[   83.045984][ T5644] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.772: bg 0: block 40: padding at end of block bitmap is not set
[   83.060798][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.063905][ T5644] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   83.079129][ T5644] EXT4-fs (loop3): 1 truncate cleaned up
[   83.092638][ T5644] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   83.106847][ T5649] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   83.114561][ T5649] vhci_hcd: invalid port number 23
[   83.121645][ T5644] EXT4-fs error (device loop3): ext4_xattr_block_get:596: inode #16: comm syz.3.772: corrupted xattr block 31: invalid header
[   83.136179][ T5644] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=16
[   83.193877][ T5654] loop4: detected capacity change from 0 to 2048
[   83.201220][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.249800][ T5654]  loop4: p1 < > p4
[   83.254243][ T5654] loop4: p4 size 8388608 extends beyond EOD, truncated
[   83.273805][ T5291] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.319929][ T5660] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   83.329648][ T2999]  loop4: p1 < > p4
[   83.337392][ T5661] loop3: detected capacity change from 0 to 512
[   83.344209][ T2999] loop4: p4 size 8388608 extends beyond EOD, truncated
[   83.353692][ T5661] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   83.362442][ T5661] EXT4-fs (loop3): can't mount with data=, fs mounted w/o journal
[   83.396851][ T4541] udevd[4541]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[   83.409101][ T4582] udevd[4582]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[   83.510248][ T5667] netlink: 48 bytes leftover after parsing attributes in process `syz.4.780'.
[   83.523195][ T5669] x_tables: ip_tables: udp match: only valid for protocol 17
[   83.571624][ T5673] netlink: 48 bytes leftover after parsing attributes in process `4¹ßs'.
[   83.604108][ T5675] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   83.618663][ T5675] vhci_hcd: invalid port number 23
[   83.747936][ T5685] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   83.751581][ T5681] loop2: detected capacity change from 0 to 2048
[   83.784453][ T5685] vhci_hcd: invalid port number 23
[   83.880037][ T5681]  loop2: p1 < > p4
[   83.897517][ T5681] loop2: p4 size 8388608 extends beyond EOD, truncated
[   84.141814][ T5695] loop1: detected capacity change from 0 to 512
[   84.148548][ T5695] EXT4-fs: Ignoring removed oldalloc option
[   84.200543][ T3292] udevd[3292]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[   84.230136][ T4582] udevd[4582]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   84.233006][ T5693] loop4: detected capacity change from 0 to 512
[   84.269720][ T4582] udevd[4582]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   84.273119][ T3292] udevd[3292]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[   84.294025][ T5695] EXT4-fs error (device loop1): ext4_xattr_inode_iget:436: comm syz.1.791: Parent and EA inode have the same ino 15
[   84.379307][ T5693] EXT4-fs: Ignoring removed oldalloc option
[   84.388114][ T5704] loop2: detected capacity change from 0 to 512
[   84.409733][ T5695] EXT4-fs (loop1): Remounting filesystem read-only
[   84.416298][ T5695] EXT4-fs warning (device loop1): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[   84.439494][ T5695] EXT4-fs (loop1): 1 orphan inode deleted
[   84.445796][ T5695] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   84.446472][ T5693] EXT4-fs error (device loop4): ext4_xattr_inode_iget:436: comm syz.4.785: Parent and EA inode have the same ino 15
[   84.457871][ T5695] SELinux: (dev loop1, type ext4) getxattr errno 5
[   84.479144][ T5704] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   84.492558][ T5695] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.517185][ T5704] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal
[   84.608269][ T5693] EXT4-fs (loop4): Remounting filesystem read-only
[   84.614849][ T5693] EXT4-fs warning (device loop4): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[   84.628292][ T5693] EXT4-fs (loop4): 1 orphan inode deleted
[   84.634483][ T5693] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   84.696382][ T5693] SELinux: (dev loop4, type ext4) getxattr errno 5
[   84.729313][ T5693] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.057072][ T5718] loop1: detected capacity change from 0 to 256
[   85.070824][ T5718] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   85.087228][ T5718] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   85.114975][ T5722] loop4: detected capacity change from 0 to 512
[   85.147307][ T5722] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   85.165643][ T5722] EXT4-fs (loop4): orphan cleanup on readonly fs
[   85.176609][ T5722] EXT4-fs warning (device loop4): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   85.199348][ T5722] EXT4-fs (loop4): Cannot turn on quotas: error -117
[   85.207917][ T5722] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.801: bg 0: block 40: padding at end of block bitmap is not set
[   85.229099][ T5722] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   85.240288][ T5722] EXT4-fs (loop4): 1 truncate cleaned up
[   85.247532][ T5729] netlink: 48 bytes leftover after parsing attributes in process `syz.5.803'.
[   85.250355][ T5727] loop2: detected capacity change from 0 to 512
[   85.265742][ T5722] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   85.285745][ T5727] EXT4-fs: Ignoring removed oldalloc option
[   85.311135][ T5727] EXT4-fs error (device loop2): ext4_xattr_inode_iget:436: comm syz.2.797: Parent and EA inode have the same ino 15
[   85.324906][ T5727] EXT4-fs (loop2): Remounting filesystem read-only
[   85.331561][ T5727] EXT4-fs warning (device loop2): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[   85.344813][ T5727] EXT4-fs (loop2): 1 orphan inode deleted
[   85.351006][ T5727] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   85.364433][ T5727] SELinux: (dev loop2, type ext4) getxattr errno 5
[   85.373396][ T5727] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.443030][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.495776][ T5735] loop5: detected capacity change from 0 to 512
[   85.504198][ T5739] netlink: 48 bytes leftover after parsing attributes in process `4¹ßs'.
[   85.537471][ T5735] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   85.548404][ T5735] EXT4-fs (loop5): can't mount with data=, fs mounted w/o journal
[   85.592757][ T5741] loop4: detected capacity change from 0 to 2048
[   85.667063][ T5749] loop5: detected capacity change from 0 to 512
[   85.700896][ T5741]  loop4: p1 < > p4
[   85.705441][ T5741] loop4: p4 size 8388608 extends beyond EOD, truncated
[   85.743877][ T5749] EXT4-fs (loop5): revision level too high, forcing read-only mode
[   85.774764][ T5749] EXT4-fs (loop5): orphan cleanup on readonly fs
[   85.790604][ T5749] __quota_error: 198 callbacks suppressed
[   85.790622][ T5749] Quota error (device loop5): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[   85.870678][ T5749] EXT4-fs warning (device loop5): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   85.913328][ T5749] EXT4-fs (loop5): Cannot turn on quotas: error -117
[   85.920656][ T5758] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.813'.
[   85.930228][ T5755] netlink: 16402 bytes leftover after parsing attributes in process `4¹ßs'.
[   85.934765][ T5749] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.812: bg 0: block 40: padding at end of block bitmap is not set
[   85.992896][ T5749] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   86.022199][ T5749] EXT4-fs (loop5): 1 truncate cleaned up
[   86.029585][ T5749] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   86.043235][ T5763] loop1: detected capacity change from 0 to 2048
[   86.054473][ T5765] netlink: 48 bytes leftover after parsing attributes in process `syz.4.817'.
[   86.077745][ T3374] IPVS: starting estimator thread 0...
[   86.083723][ T5749] EXT4-fs error (device loop5): ext4_xattr_block_get:596: inode #16: comm syz.5.812: corrupted xattr block 31: invalid header
[   86.098939][ T5763]  loop1: p1 < > p4
[   86.103791][ T5763] loop1: p4 size 8388608 extends beyond EOD, truncated
[   86.107349][ T5749] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=16
[   86.168316][ T5767] IPVS: using max 2640 ests per chain, 132000 per kthread
[   86.213758][   T29] audit: type=1326 audit(1736927193.741:2876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5768 comm="syz.4.818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0d175d29 code=0x7ffc0000
[   86.249640][ T5291] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.271309][ T2999]  loop1: p1 < > p4
[   86.276280][   T29] audit: type=1326 audit(1736927193.741:2877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5768 comm="syz.4.818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0d175d29 code=0x7ffc0000
[   86.299668][   T29] audit: type=1326 audit(1736927193.741:2878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5768 comm="syz.4.818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdd0d175d29 code=0x7ffc0000
[   86.323077][   T29] audit: type=1326 audit(1736927193.741:2879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5768 comm="syz.4.818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0d175d29 code=0x7ffc0000
[   86.333520][ T2999] loop1: p4 size 8388608 extends beyond EOD, truncated
[   86.346523][   T29] audit: type=1326 audit(1736927193.741:2880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5768 comm="syz.4.818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0d175d29 code=0x7ffc0000
[   86.376896][   T29] audit: type=1326 audit(1736927193.741:2881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5768 comm="syz.4.818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdd0d175d29 code=0x7ffc0000
[   86.400384][   T29] audit: type=1326 audit(1736927193.741:2882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5768 comm="syz.4.818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0d175d29 code=0x7ffc0000
[   86.424047][   T29] audit: type=1326 audit(1736927193.741:2883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5768 comm="syz.4.818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdd0d175d29 code=0x7ffc0000
[   86.447449][   T29] audit: type=1326 audit(1736927193.741:2884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5768 comm="syz.4.818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0d175d29 code=0x7ffc0000
[   86.510134][ T4582] udevd[4582]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[   86.523058][ T4582] udevd[4582]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[   86.621715][ T5769] loop4: detected capacity change from 0 to 512
[   86.634506][ T5769] EXT4-fs: Ignoring removed oldalloc option
[   86.659670][ T5769] EXT4-fs error (device loop4): ext4_xattr_inode_iget:436: comm syz.4.818: Parent and EA inode have the same ino 15
[   86.664341][ T5784] loop3: detected capacity change from 0 to 256
[   86.679922][ T5769] EXT4-fs (loop4): Remounting filesystem read-only
[   86.686471][ T5769] EXT4-fs warning (device loop4): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[   86.687627][ T5782] loop1: detected capacity change from 0 to 2048
[   86.706828][ T5784] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   86.726557][ T5784] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   86.738508][ T5769] EXT4-fs (loop4): 1 orphan inode deleted
[   86.746861][ T5786] netlink: 48 bytes leftover after parsing attributes in process `syz.5.825'.
[   86.756425][ T5769] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   86.768623][ T5769] SELinux: (dev loop4, type ext4) getxattr errno 5
[   86.778789][ T5782]  loop1: p1 < > p4
[   86.783192][ T5782] loop1: p4 size 8388608 extends beyond EOD, truncated
[   86.784631][ T5769] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.804129][ T2999]  loop1: p1 < > p4
[   86.812941][ T2999] loop1: p4 size 8388608 extends beyond EOD, truncated
[   86.882760][ T3292] udevd[3292]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[   86.894123][ T4582] udevd[4582]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[   87.057956][ T5803] loop1: detected capacity change from 0 to 512
[   87.085354][ T5803] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   87.094420][ T5803] EXT4-fs (loop1): can't mount with data=, fs mounted w/o journal
[   87.476231][ T5817] bridge_slave_1: left allmulticast mode
[   87.481989][ T5817] bridge_slave_1: left promiscuous mode
[   87.487749][ T5817] bridge0: port 2(bridge_slave_1) entered disabled state
[   87.500143][ T5817] bridge_slave_0: left allmulticast mode
[   87.505818][ T5817] bridge_slave_0: left promiscuous mode
[   87.511692][ T5817] bridge0: port 1(bridge_slave_0) entered disabled state
[   87.530937][ T5819] loop3: detected capacity change from 0 to 512
[   87.550129][ T5819] EXT4-fs warning (device loop3): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   87.565864][ T5819] EXT4-fs (loop3): mount failed
[   87.644933][ T5817] loop3: detected capacity change from 0 to 1024
[   87.657522][ T5817] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   87.669362][ T5817] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   87.677683][ T5817] EXT4-fs (loop3): orphan cleanup on readonly fs
[   87.684933][ T5817] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   87.695390][ T5817] EXT4-fs (loop3): Remounting filesystem read-only
[   87.702477][ T5817] EXT4-fs (loop3): 1 orphan inode deleted
[   87.709725][ T5817] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   87.722361][ T5817] SELinux: (dev loop3, type ext4) getxattr errno 5
[   87.729529][ T5817] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.838539][ T5828] __nla_validate_parse: 4 callbacks suppressed
[   87.838559][ T5828] netlink: 3 bytes leftover after parsing attributes in process `syz.3.838'.
[   87.891571][ T5828] batadv1: entered promiscuous mode
[   87.896815][ T5828] batadv1: entered allmulticast mode
[   87.932658][ T5831] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   87.952833][ T5831] vhci_hcd: invalid port number 23
[   88.110678][ T5847] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.842'.
[   88.127029][ T5839] netlink: 16402 bytes leftover after parsing attributes in process `4¹ßs'.
[   88.159846][ T5849] netlink: 48 bytes leftover after parsing attributes in process `syz.3.846'.
[   88.422391][ T5858] loop3: detected capacity change from 0 to 512
[   88.451360][ T5858] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   88.454380][ T5859] loop2: detected capacity change from 0 to 512
[   88.459418][ T5858] EXT4-fs (loop3): orphan cleanup on readonly fs
[   88.485471][ T5858] EXT4-fs warning (device loop3): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   88.486537][ T5859] EXT4-fs: Ignoring removed oldalloc option
[   88.512812][ T5858] EXT4-fs (loop3): Cannot turn on quotas: error -117
[   88.522796][ T5859] EXT4-fs error (device loop2): ext4_xattr_inode_iget:436: comm syz.2.847: Parent and EA inode have the same ino 15
[   88.535869][ T5858] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.850: bg 0: block 40: padding at end of block bitmap is not set
[   88.551846][ T5859] EXT4-fs (loop2): Remounting filesystem read-only
[   88.558408][ T5859] EXT4-fs warning (device loop2): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[   88.570029][ T5858] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   88.580012][ T5859] EXT4-fs (loop2): 1 orphan inode deleted
[   88.586241][ T5859] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   88.600821][ T5858] EXT4-fs (loop3): 1 truncate cleaned up
[   88.606912][ T5858] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   88.621461][ T5859] SELinux: (dev loop2, type ext4) getxattr errno 5
[   88.628726][ T5859] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.780318][ T5864] loop5: detected capacity change from 0 to 512
[   88.800136][ T5858] EXT4-fs error (device loop3): ext4_xattr_block_get:596: inode #16: comm syz.3.850: corrupted xattr block 31: invalid header
[   88.814728][ T5858] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=16
[   88.938871][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.949719][ T5864] EXT4-fs (loop5): revision level too high, forcing read-only mode
[   88.957762][ T5864] EXT4-fs (loop5): orphan cleanup on readonly fs
[   88.974621][ T5864] EXT4-fs warning (device loop5): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   89.004250][ T5864] EXT4-fs (loop5): Cannot turn on quotas: error -117
[   89.012276][ T5864] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.851: bg 0: block 40: padding at end of block bitmap is not set
[   89.028248][ T5864] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   89.037300][ T5864] EXT4-fs (loop5): 1 truncate cleaned up
[   89.045193][ T5864] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   89.062914][ T5875] loop4: detected capacity change from 0 to 2048
[   89.082721][ T5870] loop2: detected capacity change from 0 to 2048
[   89.091341][ T5864] EXT4-fs error (device loop5): ext4_xattr_block_get:596: inode #16: comm syz.5.851: corrupted xattr block 31: invalid header
[   89.105766][ T5864] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=16
[   89.108628][ T5875]  loop4: p1 < > p4
[   89.121165][ T5875] loop4: p4 size 8388608 extends beyond EOD, truncated
[   89.128957][ T5870]  loop2: p1 < > p4
[   89.134102][ T5870] loop2: p4 size 8388608 extends beyond EOD, truncated
[   89.143439][ T2999]  loop4: p1 < > p4
[   89.152835][ T2999] loop4: p4 size 8388608 extends beyond EOD, truncated
[   89.218562][ T5291] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.229863][ T2999]  loop2: p1 < > p4
[   89.234816][ T2999] loop2: p4 size 8388608 extends beyond EOD, truncated
[   89.284624][ T4582] udevd[4582]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   89.312276][ T5888] loop4: detected capacity change from 0 to 512
[   89.330069][ T5894] loop3: detected capacity change from 0 to 2048
[   89.389667][ T5896] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.858'.
[   89.410885][ T5890] netlink: 16402 bytes leftover after parsing attributes in process `4¹ßs'.
[   89.420792][ T5888] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   89.428908][ T5888] EXT4-fs (loop4): orphan cleanup on readonly fs
[   89.436808][ T5888] EXT4-fs warning (device loop4): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   89.451873][ T2999]  loop3: p1 < > p4
[   89.457680][ T2999] loop3: p4 size 8388608 extends beyond EOD, truncated
[   89.467075][ T5888] EXT4-fs (loop4): Cannot turn on quotas: error -117
[   89.468284][ T2999]  loop3: p1 < > p4
[   89.474415][ T5888] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.859: bg 0: block 40: padding at end of block bitmap is not set
[   89.480872][ T2999] loop3: p4 size 8388608 extends beyond EOD, truncated
[   89.494451][ T5888] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   89.507988][ T5888] EXT4-fs (loop4): 1 truncate cleaned up
[   89.515442][ T5888] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   89.545314][ T5903] netlink: 48 bytes leftover after parsing attributes in process `syz.1.865'.
[   89.555379][ T5894]  loop3: p1 < > p4
[   89.566080][ T5894] loop3: p4 size 8388608 extends beyond EOD, truncated
[   89.595379][ T5888] Zero length message leads to an empty skb
[   89.607480][ T5908] netlink: 8 bytes leftover after parsing attributes in process `syz.1.866'.
[   89.644151][ T4582] udevd[4582]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[   89.682688][ T2999]  loop3: p1 < > p4
[   89.687099][ T2999] loop3: p4 size 8388608 extends beyond EOD, truncated
[   89.787787][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.896265][ T3289] udevd[3289]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[   89.910961][ T4583] udevd[4583]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[   89.966067][ T3292] udevd[3292]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   90.004871][ T4582] udevd[4582]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[   90.237949][ T4541] udevd[4541]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[   90.257209][ T4583] udevd[4583]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[   90.344219][ T4582] udevd[4582]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[   90.361607][ T4541] udevd[4541]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[   90.496275][ T5948] loop1: detected capacity change from 0 to 1024
[   90.506045][ T5948] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   90.521769][ T5948] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   90.537634][ T5948] EXT4-fs (loop1): orphan cleanup on readonly fs
[   90.542180][ T5946] loop2: detected capacity change from 0 to 2048
[   90.588147][ T5948] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   90.600299][ T5946]  loop2: p1 < > p4
[   90.605969][ T5946] loop2: p4 size 8388608 extends beyond EOD, truncated
[   90.610709][ T5948] EXT4-fs (loop1): Remounting filesystem read-only
[   90.633439][ T5948] EXT4-fs (loop1): 1 orphan inode deleted
[   90.640836][ T5948] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   90.655908][ T2999]  loop2: p1 < > p4
[   90.660468][ T5948] SELinux: (dev loop1, type ext4) getxattr errno 5
[   90.670199][ T5948] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.681672][ T2999] loop2: p4 size 8388608 extends beyond EOD, truncated
[   90.724797][ T5955] syz.2.878[5955] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   90.724921][ T5955] syz.2.878[5955] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   90.736465][ T5955] syz.2.878[5955] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   90.800130][   T29] kauditd_printk_skb: 293 callbacks suppressed
[   90.800146][   T29] audit: type=1400 audit(1736927198.331:3166): avc:  denied  { mount } for  pid=5960 comm="syz.2.881" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[   90.862589][   T29] audit: type=1400 audit(1736927198.391:3167): avc:  denied  { create } for  pid=5962 comm="syz.1.882" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   90.921308][   T29] audit: type=1400 audit(1736927198.451:3168): avc:  denied  { create } for  pid=5966 comm="syz.1.884" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   90.948469][   T29] audit: type=1400 audit(1736927198.451:3169): avc:  denied  { write } for  pid=5966 comm="syz.1.884" path="socket:[12175]" dev="sockfs" ino=12175 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   90.973005][   T29] audit: type=1400 audit(1736927198.451:3170): avc:  denied  { nlmsg_read } for  pid=5966 comm="syz.1.884" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   90.995636][   T29] audit: type=1400 audit(1736927198.521:3171): avc:  denied  { write } for  pid=5968 comm="syz.1.885" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   91.081178][ T5972] netlink: 48 bytes leftover after parsing attributes in process `syz.4.887'.
[   91.165256][   T29] audit: type=1326 audit(1736927198.691:3172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5982 comm="syz.4.893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0d175d29 code=0x7ffc0000
[   91.204884][   T29] audit: type=1326 audit(1736927198.731:3173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5982 comm="syz.4.893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0d175d29 code=0x7ffc0000
[   91.228443][   T29] audit: type=1326 audit(1736927198.731:3174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5982 comm="syz.4.893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdd0d175d29 code=0x7ffc0000
[   91.252020][   T29] audit: type=1326 audit(1736927198.731:3175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5982 comm="syz.4.893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0d175d29 code=0x7ffc0000
[   91.280170][ T5991] loop5: detected capacity change from 0 to 2048
[   91.281081][ T5992] loop2: detected capacity change from 0 to 512
[   91.349999][ T5991]  loop5: p1 < > p4
[   91.353873][ T5998] netlink: 60 bytes leftover after parsing attributes in process `syz.1.899'.
[   91.363161][ T5991] loop5: p4 size 8388608 extends beyond EOD, truncated
[   91.371046][ T5992] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   91.383488][ T5992] EXT4-fs (loop2): orphan cleanup on readonly fs
[   91.406164][ T5992] EXT4-fs warning (device loop2): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   91.441097][ T5992] EXT4-fs (loop2): Cannot turn on quotas: error -117
[   91.448465][ T5992] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.895: bg 0: block 40: padding at end of block bitmap is not set
[   91.464432][ T5992] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   91.474700][ T5992] EXT4-fs (loop2): 1 truncate cleaned up
[   91.480835][ T5992] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   91.560541][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.602265][ T6019] loop1: detected capacity change from 0 to 256
[   91.625472][ T6019] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   91.645928][ T6019] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   91.667955][ T6023] loop2: detected capacity change from 0 to 2048
[   91.674652][ T5984] loop4: detected capacity change from 0 to 512
[   91.682971][ T5984] EXT4-fs: Ignoring removed oldalloc option
[   91.693445][ T5984] EXT4-fs error (device loop4): ext4_xattr_inode_iget:436: comm syz.4.893: Parent and EA inode have the same ino 15
[   91.710245][ T6023]  loop2: p1 < > p4
[   91.714617][ T5984] EXT4-fs (loop4): Remounting filesystem read-only
[   91.721230][ T5984] EXT4-fs warning (device loop4): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[   91.724157][ T6031] loop3: detected capacity change from 0 to 1024
[   91.738766][ T5984] EXT4-fs (loop4): 1 orphan inode deleted
[   91.744898][ T5984] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   91.745228][ T6023] loop2: p4 size 8388608 extends beyond EOD, truncated
[   91.756955][ T5984] SELinux: (dev loop4, type ext4) getxattr errno 5
[   91.783733][ T2999]  loop2: p1 < > p4
[   91.788460][ T2999] loop2: p4 size 8388608 extends beyond EOD, truncated
[   91.789011][ T5984] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.795932][ T6031] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   91.843762][ T6031] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   91.872332][ T6031] EXT4-fs (loop3): orphan cleanup on readonly fs
[   91.880156][ T6031] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   91.895610][ T6031] EXT4-fs (loop3): Remounting filesystem read-only
[   91.902502][ T6031] EXT4-fs (loop3): 1 orphan inode deleted
[   91.918437][ T6031] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   91.930547][ T6031] SELinux: (dev loop3, type ext4) getxattr errno 5
[   91.937364][ T6031] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.019710][ T6047] loop4: detected capacity change from 0 to 512
[   92.034273][ T6051] loop3: detected capacity change from 0 to 256
[   92.042129][ T6051] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   92.066751][ T6051] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   92.081620][ T6047] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   92.090994][ T6047] EXT4-fs (loop4): orphan cleanup on readonly fs
[   92.099032][ T6047] EXT4-fs warning (device loop4): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   92.114954][ T6047] EXT4-fs (loop4): Cannot turn on quotas: error -117
[   92.122920][ T6047] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.918: bg 0: block 40: padding at end of block bitmap is not set
[   92.147956][ T6047] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   92.160457][ T6047] EXT4-fs (loop4): 1 truncate cleaned up
[   92.183113][ T6047] EXT4-fs error (device loop4): ext4_xattr_block_get:596: inode #16: comm syz.4.918: corrupted xattr block 31: invalid header
[   92.201879][ T6047] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=16
[   92.220111][ T6065] syz.5.927[6065] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   92.220267][ T6065] syz.5.927[6065] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   92.232186][ T6065] syz.5.927[6065] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   92.311404][ T6072] loop5: detected capacity change from 0 to 2048
[   92.368695][ T6072]  loop5: p1 < > p4
[   92.375327][ T6072] loop5: p4 size 8388608 extends beyond EOD, truncated
[   92.416773][ T2999]  loop5: p1 < > p4
[   92.423020][ T2999] loop5: p4 size 8388608 extends beyond EOD, truncated
[   92.440473][ T6074] loop4: detected capacity change from 0 to 512
[   92.447342][ T6074] EXT4-fs: Ignoring removed oldalloc option
[   92.456527][ T6074] EXT4-fs error (device loop4): ext4_xattr_inode_iget:436: comm syz.4.930: Parent and EA inode have the same ino 15
[   92.471512][ T6074] EXT4-fs (loop4): Remounting filesystem read-only
[   92.478097][ T6074] EXT4-fs warning (device loop4): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[   92.494039][ T6074] EXT4-fs (loop4): 1 orphan inode deleted
[   92.502914][ T6074] SELinux: (dev loop4, type ext4) getxattr errno 5
[   92.514530][ T6086] batadv1: entered promiscuous mode
[   92.519819][ T6086] batadv1: entered allmulticast mode
[   92.539766][ T6088] loop2: detected capacity change from 0 to 512
[   92.557329][ T6088] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   92.571528][ T6088] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal
[   92.694637][ T6104] syz.4.939[6104] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   92.694729][ T6104] syz.4.939[6104] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   92.708108][ T6104] syz.4.939[6104] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   92.882065][ T6122] loop4: detected capacity change from 0 to 256
[   93.032158][ T6122] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   93.074550][ T6136] loop5: detected capacity change from 0 to 2048
[   93.097406][ T6122] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   93.193180][ T6136]  loop5: p1 < > p4
[   93.211204][ T6136] loop5: p4 size 8388608 extends beyond EOD, truncated
[   93.269995][ T2999]  loop5: p1 < > p4
[   93.274825][ T2999] loop5: p4 size 8388608 extends beyond EOD, truncated
[   93.609394][ T6151] loop5: detected capacity change from 0 to 512
[   93.627488][ T6151] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   93.672871][ T6151] EXT4-fs (loop5): can't mount with data=, fs mounted w/o journal
[   94.330766][ T6212] loop3: detected capacity change from 0 to 512
[   94.381002][ T6212] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   94.391704][ T6212] EXT4-fs (loop3): orphan cleanup on readonly fs
[   94.426983][ T6212] EXT4-fs warning (device loop3): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   94.495884][ T6231] loop1: detected capacity change from 0 to 2048
[   94.506613][ T6212] EXT4-fs (loop3): Cannot turn on quotas: error -117
[   94.535679][ T6237] __nla_validate_parse: 13 callbacks suppressed
[   94.535695][ T6237] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.967'.
[   94.552679][ T6212] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.960: bg 0: block 40: padding at end of block bitmap is not set
[   94.567508][ T6229] netlink: 16402 bytes leftover after parsing attributes in process `4¹ßs'.
[   94.582454][ T6212] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   94.591815][ T6231]  loop1: p1 < > p4
[   94.597756][ T6212] EXT4-fs (loop3): 1 truncate cleaned up
[   94.603743][ T6231] loop1: p4 size 8388608 extends beyond EOD, truncated
[   94.722285][ T4582] udevd[4582]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[   94.739429][ T6212] EXT4-fs error (device loop3): ext4_xattr_block_get:596: inode #16: comm syz.3.960: corrupted xattr block 31: invalid header
[   94.779705][ T6212] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=16
[   94.812044][ T6252] netlink: 48 bytes leftover after parsing attributes in process `4¹ßs'.
[   94.973262][ T6281] loop3: detected capacity change from 0 to 2048
[   94.991245][ T6276] loop5: detected capacity change from 0 to 2048
[   95.028885][ T6281]  loop3: p1 < > p4
[   95.035181][ T6281] loop3: p4 size 8388608 extends beyond EOD, truncated
[   95.059899][ T6276]  loop5: p1 < > p4
[   95.067163][ T6276] loop5: p4 size 8388608 extends beyond EOD, truncated
[   95.088153][ T4582] udevd[4582]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[   95.099572][ T3292] udevd[3292]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[   95.122609][ T2999]  loop5: p1 < > p4
[   95.128817][ T2999] loop5: p4 size 8388608 extends beyond EOD, truncated
[   95.159795][ T4582] udevd[4582]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[   95.169529][ T3292] udevd[3292]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[   95.276720][ T3292] udevd[3292]: inotify_add_watch(7, /dev/loop5p4, 10) failed: No such file or directory
[   95.633749][ T6315] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.991'.
[   95.643465][ T6314] netlink: 16402 bytes leftover after parsing attributes in process `4¹ßs'.
[   95.700560][ T6317] loop1: detected capacity change from 0 to 512
[   95.723026][ T6317] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   95.731447][ T6317] EXT4-fs (loop1): orphan cleanup on readonly fs
[   95.738012][ T6317] EXT4-fs warning (device loop1): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   95.754257][ T6317] EXT4-fs (loop1): Cannot turn on quotas: error -117
[   95.761388][ T6317] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.992: bg 0: block 40: padding at end of block bitmap is not set
[   95.783691][ T6317] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   95.801197][ T6317] EXT4-fs (loop1): 1 truncate cleaned up
[   95.826884][   T29] kauditd_printk_skb: 308 callbacks suppressed
[   95.827086][   T29] audit: type=1400 audit(1736927203.351:3476): avc:  denied  { write } for  pid=6316 comm="syz.1.992" name="if_inet6" dev="proc" ino=4026532472 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[   95.861522][ T6317] EXT4-fs error (device loop1): ext4_xattr_block_get:596: inode #16: comm syz.1.992: corrupted xattr block 31: invalid header
[   95.875092][ T6317] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop1 ino=16
[   95.888746][ T6328] loop2: detected capacity change from 0 to 2048
[   95.948770][ T6328]  loop2: p1 < > p4
[   95.952773][   T29] audit: type=1400 audit(1736927203.481:3477): avc:  denied  { unmount } for  pid=3298 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   95.969446][ T6328] loop2: p4 size 8388608 extends beyond EOD, truncated
[   95.981300][ T6332] netlink: 48 bytes leftover after parsing attributes in process `syz.4.999'.
[   96.002225][ T6334] loop1: detected capacity change from 0 to 512
[   96.009968][ T2999]  loop2: p1 < > p4
[   96.014042][ T6334] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   96.014445][ T2999] loop2: p4 size 8388608 extends beyond EOD, truncated
[   96.024972][ T6334] EXT4-fs (loop1): can't mount with data=, fs mounted w/o journal
[   96.045154][   T29] audit: type=1400 audit(1736927203.571:3478): avc:  denied  { search } for  pid=6337 comm="dhcpcd-run-hook" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   96.150325][   T29] audit: type=1400 audit(1736927203.571:3479): avc:  denied  { read } for  pid=6338 comm="dhcpcd-run-hook" name="resolv.conf" dev="tmpfs" ino=416 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   96.173575][   T29] audit: type=1400 audit(1736927203.571:3480): avc:  denied  { open } for  pid=6338 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=416 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   96.190080][ T2999]  loop2: p1 < > p4
[   96.198590][   T29] audit: type=1400 audit(1736927203.571:3481): avc:  denied  { getattr } for  pid=6338 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=416 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   96.198627][   T29] audit: type=1400 audit(1736927203.571:3482): avc:  denied  { getattr } for  pid=6338 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf/eth0.dhcp" dev="tmpfs" ino=442 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   96.254121][   T29] audit: type=1400 audit(1736927203.571:3483): avc:  denied  { read } for  pid=6340 comm="sed" name="eth0.dhcp" dev="tmpfs" ino=442 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   96.276018][   T29] audit: type=1400 audit(1736927203.571:3484): avc:  denied  { open } for  pid=6340 comm="sed" path="/run/dhcpcd/hook-state/resolv.conf/eth0.dhcp" dev="tmpfs" ino=442 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   96.300931][   T29] audit: type=1400 audit(1736927203.621:3485): avc:  denied  { sqpoll } for  pid=6327 comm="syz.2.996" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[   96.301334][ T2999] loop2: p4 size 8388608 extends beyond EOD, truncated
[   96.330579][ T6358] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1003'.
[   96.375028][ T4582] udevd[4582]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   96.392588][ T4541] udevd[4541]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[   96.410939][ T6360] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1002'.
[   96.434705][ T6357] netlink: 16402 bytes leftover after parsing attributes in process `4¹ßs'.
[   96.450113][ T3292] udevd[3292]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[   96.463360][ T4582] udevd[4582]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   96.589845][ T6381] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1012'.
[   96.598870][ T6381] bridge_slave_1: left allmulticast mode
[   96.603738][ T6383] loop4: detected capacity change from 0 to 2048
[   96.604526][ T6381] bridge_slave_1: left promiscuous mode
[   96.616740][ T6381] bridge0: port 2(bridge_slave_1) entered disabled state
[   96.640276][ T6381] bridge_slave_0: left allmulticast mode
[   96.646040][ T6381] bridge_slave_0: left promiscuous mode
[   96.651868][ T6381] bridge0: port 1(bridge_slave_0) entered disabled state
[   96.667429][ T6389] loop2: detected capacity change from 0 to 512
[   96.678945][ T6383]  loop4: p1 < > p4
[   96.683922][ T6383] loop4: p4 size 8388608 extends beyond EOD, truncated
[   96.699761][ T6389] EXT4-fs warning (device loop2): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   96.718631][ T6389] EXT4-fs (loop2): mount failed
[   96.852811][ T6389] loop2: detected capacity change from 0 to 1024
[   96.860248][ T6401] loop4: detected capacity change from 0 to 512
[   96.876156][ T6389] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   96.898004][ T6389] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   96.906619][ T6401] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   96.915967][ T6401] EXT4-fs (loop4): orphan cleanup on readonly fs
[   96.923033][ T6401] EXT4-fs warning (device loop4): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   96.939629][ T6389] EXT4-fs (loop2): orphan cleanup on readonly fs
[   96.946433][ T6401] EXT4-fs (loop4): Cannot turn on quotas: error -117
[   96.946591][ T6389] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   96.953955][ T6401] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1020: bg 0: block 40: padding at end of block bitmap is not set
[   96.974397][ T6389] EXT4-fs (loop2): Remounting filesystem read-only
[   96.987464][ T6389] EXT4-fs (loop2): 1 orphan inode deleted
[   96.988372][ T6401] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   97.002182][ T6401] EXT4-fs (loop4): 1 truncate cleaned up
[   97.002541][ T6389] SELinux: (dev loop2, type ext4) getxattr errno 5
[   97.050606][ T6416] loop1: detected capacity change from 0 to 512
[   97.059440][ T6416] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   97.069604][ T6416] EXT4-fs (loop1): can't mount with data=, fs mounted w/o journal
[   97.154081][ T6420] loop4: detected capacity change from 0 to 512
[   97.161222][ T6422] syz.1.1029[6422] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   97.161295][ T6422] syz.1.1029[6422] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   97.175138][ T6422] syz.1.1029[6422] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   97.180947][ T6418] loop2: detected capacity change from 0 to 512
[   97.211815][ T6420] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   97.224205][ T6420] EXT4-fs (loop4): orphan cleanup on readonly fs
[   97.231410][ T6420] EXT4-fs warning (device loop4): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   97.242105][ T6418] EXT4-fs warning (device loop2): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   97.246359][ T6420] EXT4-fs (loop4): Cannot turn on quotas: error -117
[   97.269543][ T6418] EXT4-fs (loop2): mount failed
[   97.274498][ T6420] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1027: bg 0: block 40: padding at end of block bitmap is not set
[   97.316915][ T6420] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   97.327146][ T6420] EXT4-fs (loop4): 1 truncate cleaned up
[   97.362460][ T6420] EXT4-fs error (device loop4): ext4_xattr_block_get:596: inode #16: comm syz.4.1027: corrupted xattr block 31: invalid header
[   97.379772][ T6420] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=16
[   97.423420][ T6418] loop2: detected capacity change from 0 to 1024
[   97.462830][ T6418] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   97.489212][ T6418] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   97.498435][ T6418] EXT4-fs (loop2): orphan cleanup on readonly fs
[   97.517531][ T6418] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   97.527357][ T6418] EXT4-fs (loop2): Remounting filesystem read-only
[   97.544210][ T6418] EXT4-fs (loop2): 1 orphan inode deleted
[   97.554178][ T6418] SELinux: (dev loop2, type ext4) getxattr errno 5
[   97.622454][ T6449] bridge_slave_1: left allmulticast mode
[   97.628158][ T6449] bridge_slave_1: left promiscuous mode
[   97.630998][ T6434] loop3: detected capacity change from 0 to 512
[   97.633897][ T6449] bridge0: port 2(bridge_slave_1) entered disabled state
[   97.640709][ T6434] EXT4-fs: Ignoring removed oldalloc option
[   97.659492][ T6449] bridge_slave_0: left allmulticast mode
[   97.665169][ T6449] bridge_slave_0: left promiscuous mode
[   97.670865][ T6449] bridge0: port 1(bridge_slave_0) entered disabled state
[   97.674531][ T6434] EXT4-fs error (device loop3): ext4_xattr_inode_iget:436: comm syz.3.1032: Parent and EA inode have the same ino 15
[   97.690532][ T6434] EXT4-fs (loop3): Remounting filesystem read-only
[   97.697049][ T6434] EXT4-fs warning (device loop3): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[   97.707489][ T6434] EXT4-fs (loop3): 1 orphan inode deleted
[   97.713611][ T6434] SELinux: (dev loop3, type ext4) getxattr errno 5
[   97.744178][ T6453] loop1: detected capacity change from 0 to 512
[   97.760589][ T6453] EXT4-fs warning (device loop1): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   97.779088][ T6453] EXT4-fs (loop1): mount failed
[   97.871661][ T6449] loop1: detected capacity change from 0 to 1024
[   97.887480][ T6449] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   97.899645][ T6464] loop3: detected capacity change from 0 to 2048
[   97.913117][ T6449] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   97.923247][ T6449] EXT4-fs (loop1): orphan cleanup on readonly fs
[   97.936284][ T6449] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   97.941815][ T6464]  loop3: p1 < > p4
[   97.946925][ T6449] EXT4-fs (loop1): Remounting filesystem read-only
[   97.950763][ T6464] loop3: p4 size 8388608 extends beyond EOD, truncated
[   97.956780][ T6449] EXT4-fs (loop1): 1 orphan inode deleted
[   97.975965][ T6449] SELinux: (dev loop1, type ext4) getxattr errno 5
[   98.074644][ T6478] loop1: detected capacity change from 0 to 2048
[   98.115364][ T6481] loop2: detected capacity change from 0 to 512
[   98.119330][ T6478]  loop1: p1 < > p4
[   98.126324][ T6478] loop1: p4 size 8388608 extends beyond EOD, truncated
[   98.150636][ T6481] EXT4-fs warning (device loop2): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   98.172839][ T6481] EXT4-fs (loop2): mount failed
[   98.257019][ T6493] loop2: detected capacity change from 0 to 1024
[   98.279087][ T6493] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   98.293926][ T6493] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   98.302037][ T6493] EXT4-fs (loop2): orphan cleanup on readonly fs
[   98.314727][ T6492] loop1: detected capacity change from 0 to 512
[   98.314800][ T6493] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   98.339496][ T6493] EXT4-fs (loop2): Remounting filesystem read-only
[   98.346430][ T6493] EXT4-fs (loop2): 1 orphan inode deleted
[   98.352987][ T6493] SELinux: (dev loop2, type ext4) getxattr errno 5
[   98.357164][ T6492] EXT4-fs warning (device loop1): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   98.376250][ T6492] EXT4-fs (loop1): mount failed
[   98.398059][ T6492] loop1: detected capacity change from 0 to 1024
[   98.409951][ T6492] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   98.420828][ T6492] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   98.429446][ T6492] EXT4-fs (loop1): orphan cleanup on readonly fs
[   98.438367][ T6492] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   98.457100][ T6492] EXT4-fs (loop1): Remounting filesystem read-only
[   98.467792][ T6506] loop2: detected capacity change from 0 to 512
[   98.474856][ T6506] EXT4-fs: Ignoring removed oldalloc option
[   98.483613][ T6492] EXT4-fs (loop1): 1 orphan inode deleted
[   98.492051][ T6492] SELinux: (dev loop1, type ext4) getxattr errno 5
[   98.516314][ T6506] EXT4-fs error (device loop2): ext4_xattr_inode_iget:436: comm syz.2.1055: Parent and EA inode have the same ino 15
[   98.541157][ T6506] EXT4-fs (loop2): Remounting filesystem read-only
[   98.547728][ T6506] EXT4-fs warning (device loop2): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[   98.551836][ T6510] loop5: detected capacity change from 0 to 2048
[   98.565296][ T6506] EXT4-fs (loop2): 1 orphan inode deleted
[   98.571683][ T6506] SELinux: (dev loop2, type ext4) getxattr errno 5
[   98.599083][ T6510]  loop5: p1 < > p4
[   98.608064][ T6510] loop5: p4 size 8388608 extends beyond EOD, truncated
[   98.698965][ T2999]  loop5: p1 < > p4
[   98.713101][ T2999] loop5: p4 size 8388608 extends beyond EOD, truncated
[   98.813189][ T6534] loop4: detected capacity change from 0 to 2048
[   98.846628][ T6538] loop5: detected capacity change from 0 to 512
[   98.858561][ T6534]  loop4: p1 < > p4
[   98.865032][ T6534] loop4: p4 size 8388608 extends beyond EOD, truncated
[   98.881893][ T2999]  loop4: p1 < > p4
[   98.886280][ T6538] EXT4-fs (loop5): revision level too high, forcing read-only mode
[   98.899457][ T2999] loop4: p4 size 8388608 extends beyond EOD, truncated
[   98.902595][ T6538] EXT4-fs (loop5): orphan cleanup on readonly fs
[   98.919642][ T6538] EXT4-fs warning (device loop5): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   98.934805][ T6538] EXT4-fs (loop5): Cannot turn on quotas: error -117
[   98.942346][ T6538] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1070: bg 0: block 40: padding at end of block bitmap is not set
[   98.964635][ T6538] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   98.974961][ T6551] loop1: detected capacity change from 0 to 256
[   98.982230][ T6551] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   98.994792][ T6538] EXT4-fs (loop5): 1 truncate cleaned up
[   99.003505][ T6551] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   99.028037][ T6553] loop4: detected capacity change from 0 to 2048
[   99.059476][ T6553]  loop4: p1 < > p4
[   99.064095][ T6553] loop4: p4 size 8388608 extends beyond EOD, truncated
[   99.247764][ T6568] bridge_slave_1: left allmulticast mode
[   99.253702][ T6568] bridge_slave_1: left promiscuous mode
[   99.259637][ T6568] bridge0: port 2(bridge_slave_1) entered disabled state
[   99.268034][ T6568] bridge_slave_0: left allmulticast mode
[   99.273820][ T6568] bridge_slave_0: left promiscuous mode
[   99.279648][ T6568] bridge0: port 1(bridge_slave_0) entered disabled state
[   99.325573][ T6576] loop4: detected capacity change from 0 to 2048
[   99.331188][ T6574] loop3: detected capacity change from 0 to 512
[   99.348778][ T6574] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   99.349958][ T6577] loop5: detected capacity change from 0 to 512
[   99.356814][ T6574] EXT4-fs (loop3): orphan cleanup on readonly fs
[   99.368611][ T6576]  loop4: p1 < > p4
[   99.371172][ T6574] EXT4-fs warning (device loop3): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   99.388652][ T6576] loop4: p4 size 8388608 extends beyond EOD, truncated
[   99.398788][ T6574] EXT4-fs (loop3): Cannot turn on quotas: error -117
[   99.409766][ T6574] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1085: bg 0: block 40: padding at end of block bitmap is not set
[   99.425803][ T6574] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   99.430219][ T6577] EXT4-fs warning (device loop5): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   99.438623][ T6574] EXT4-fs (loop3): 1 truncate cleaned up
[   99.449177][ T6577] EXT4-fs (loop5): mount failed
[   99.479449][ T2999]  loop4: p1 < > p4
[   99.484621][ T2999] loop4: p4 size 8388608 extends beyond EOD, truncated
[   99.569879][ T6586] __nla_validate_parse: 18 callbacks suppressed
[   99.569897][ T6586] netlink: 48 bytes leftover after parsing attributes in process `4¹ßs'.
[   99.581524][ T6568] loop5: detected capacity change from 0 to 1024
[   99.593833][ T6568] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   99.608352][ T6568] EXT4-fs (loop5): revision level too high, forcing read-only mode
[   99.622192][ T6568] EXT4-fs (loop5): orphan cleanup on readonly fs
[   99.629834][ T6568] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   99.639774][ T6568] EXT4-fs (loop5): Remounting filesystem read-only
[   99.646572][ T6568] EXT4-fs (loop5): 1 orphan inode deleted
[   99.653449][ T6568] SELinux: (dev loop5, type ext4) getxattr errno 5
[   99.750256][ T6596] loop5: detected capacity change from 0 to 512
[   99.762148][ T6598] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1093'.
[   99.793398][ T6596] EXT4-fs (loop5): revision level too high, forcing read-only mode
[   99.819496][ T6596] EXT4-fs (loop5): orphan cleanup on readonly fs
[   99.826179][ T6596] EXT4-fs warning (device loop5): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   99.851399][ T6596] EXT4-fs (loop5): Cannot turn on quotas: error -117
[   99.858878][ T6596] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1091: bg 0: block 40: padding at end of block bitmap is not set
[   99.873544][ T6596] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   99.882860][ T6610] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.1094'.
[   99.884057][ T6596] EXT4-fs (loop5): 1 truncate cleaned up
[   99.892709][ T6604] netlink: 16402 bytes leftover after parsing attributes in process `4¹ßs'.
[   99.898630][ T6596] EXT4-fs mount: 32 callbacks suppressed
[   99.898644][ T6596] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   99.941487][ T6596] EXT4-fs error (device loop5): ext4_xattr_block_get:596: inode #16: comm syz.5.1091: corrupted xattr block 31: invalid header
[   99.971452][ T6596] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=16
[  100.000111][ T6612] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1097'.
[  100.004744][ T6615] loop1: detected capacity change from 0 to 512
[  100.020246][ T6612] loop3: detected capacity change from 0 to 512
[  100.033977][ T6612] EXT4-fs warning (device loop3): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  100.036860][ T6615] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  100.048700][ T6612] EXT4-fs (loop3): mount failed
[  100.061877][ T6615] EXT4-fs (loop1): orphan cleanup on readonly fs
[  100.068844][ T6615] EXT4-fs warning (device loop1): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  100.069098][ T5291] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.083737][ T6615] EXT4-fs (loop1): Cannot turn on quotas: error -117
[  100.117310][ T6615] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1098: bg 0: block 40: padding at end of block bitmap is not set
[  100.139281][ T6615] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  100.158908][ T6615] EXT4-fs (loop1): 1 truncate cleaned up
[  100.163006][ T6612] loop3: detected capacity change from 0 to 1024
[  100.166627][ T6615] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  100.206501][ T6612] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  100.219840][ T6615] EXT4-fs error (device loop1): ext4_xattr_block_get:596: inode #16: comm syz.1.1098: corrupted xattr block 31: invalid header
[  100.224267][ T6624] loop5: detected capacity change from 0 to 512
[  100.234703][ T6615] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop1 ino=16
[  100.249487][ T6612] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  100.257607][ T6612] EXT4-fs (loop3): orphan cleanup on readonly fs
[  100.264884][ T6612] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  100.274667][ T6612] EXT4-fs (loop3): Remounting filesystem read-only
[  100.281524][ T6612] EXT4-fs (loop3): 1 orphan inode deleted
[  100.288034][ T6612] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  100.300261][ T6612] SELinux: (dev loop3, type ext4) getxattr errno 5
[  100.307260][ T6612] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.311904][ T6624] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  100.325809][ T6624] EXT4-fs (loop5): orphan cleanup on readonly fs
[  100.332460][ T6624] EXT4-fs warning (device loop5): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  100.355684][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.376040][ T6624] EXT4-fs (loop5): Cannot turn on quotas: error -117
[  100.383389][ T6624] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1100: bg 0: block 40: padding at end of block bitmap is not set
[  100.406037][ T6629] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1102'.
[  100.415800][ T6624] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  100.424893][ T6624] EXT4-fs (loop5): 1 truncate cleaned up
[  100.430952][ T6624] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  100.523020][ T6638] loop4: detected capacity change from 0 to 256
[  100.523416][ T6641] loop1: detected capacity change from 0 to 512
[  100.536398][ T6641] EXT4-fs: Ignoring removed oldalloc option
[  100.536401][ T6638] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  100.557655][ T6638] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  100.575513][ T6641] EXT4-fs error (device loop1): ext4_xattr_inode_iget:436: comm syz.1.1107: Parent and EA inode have the same ino 15
[  100.578828][ T5291] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.593359][ T6641] EXT4-fs (loop1): Remounting filesystem read-only
[  100.603478][ T6641] EXT4-fs warning (device loop1): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[  100.613782][ T6641] EXT4-fs (loop1): 1 orphan inode deleted
[  100.619957][ T6641] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.632019][ T6641] SELinux: (dev loop1, type ext4) getxattr errno 5
[  100.647070][ T6641] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.711573][ T6647] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1109'.
[  100.724325][ T6647] loop3: detected capacity change from 0 to 512
[  100.746494][ T6647] EXT4-fs warning (device loop3): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  100.762544][ T6647] EXT4-fs (loop3): mount failed
[  100.770228][ T6659] loop1: detected capacity change from 0 to 512
[  100.777049][ T6659] EXT4-fs: Ignoring removed oldalloc option
[  100.802830][ T6659] EXT4-fs error (device loop1): ext4_xattr_inode_iget:436: comm syz.1.1113: Parent and EA inode have the same ino 15
[  100.824528][ T6659] EXT4-fs (loop1): Remounting filesystem read-only
[  100.831124][ T6659] EXT4-fs warning (device loop1): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[  100.841332][ T6659] EXT4-fs (loop1): 1 orphan inode deleted
[  100.847417][ T6659] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.855507][ T6666] loop3: detected capacity change from 0 to 1024
[  100.859694][ T6659] SELinux: (dev loop1, type ext4) getxattr errno 5
[  100.872595][ T6666] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  100.873151][ T6659] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.902128][   T29] kauditd_printk_skb: 517 callbacks suppressed
[  100.902162][   T29] audit: type=1326 audit(1736927208.431:3960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6658 comm="syz.1.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f686d2e4690 code=0x7ffc0000
[  100.909427][ T6666] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  100.932173][   T29] audit: type=1326 audit(1736927208.431:3961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6658 comm="syz.1.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f686d2e592b code=0x7ffc0000
[  100.947267][ T6666] EXT4-fs (loop3): orphan cleanup on readonly fs
[  100.963151][   T29] audit: type=1326 audit(1736927208.431:3962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6658 comm="syz.1.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f686d2e498a code=0x7ffc0000
[  100.992860][   T29] audit: type=1326 audit(1736927208.431:3963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6658 comm="syz.1.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f686d2e5d29 code=0x7ffc0000
[  101.020064][ T6666] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  101.023012][   T29] audit: type=1326 audit(1736927208.551:3964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6668 comm="syz.1.1116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f686d2e5d29 code=0x7ffc0000
[  101.053256][   T29] audit: type=1326 audit(1736927208.571:3965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6668 comm="syz.1.1116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f686d2e5d29 code=0x7ffc0000
[  101.076634][   T29] audit: type=1400 audit(1736927208.571:3966): avc:  denied  { create } for  pid=6668 comm="syz.1.1116" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  101.080868][ T6666] EXT4-fs (loop3): Remounting filesystem read-only
[  101.096222][   T29] audit: type=1326 audit(1736927208.571:3967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6668 comm="syz.1.1116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f686d2e5d29 code=0x7ffc0000
[  101.096259][   T29] audit: type=1326 audit(1736927208.571:3968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6668 comm="syz.1.1116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f686d2e5d29 code=0x7ffc0000
[  101.107699][ T6666] Quota error (device loop3): write_blk: dquota write failed
[  101.162424][ T6666] EXT4-fs (loop3): 1 orphan inode deleted
[  101.170369][ T6666] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  101.182768][ T6666] SELinux: (dev loop3, type ext4) getxattr errno 5
[  101.190684][ T6666] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.266297][ T6680] loop5: detected capacity change from 0 to 512
[  101.284770][ T6680] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  101.293701][ T6680] EXT4-fs (loop5): can't mount with data=, fs mounted w/o journal
[  101.692640][ T6694] loop3: detected capacity change from 0 to 512
[  101.703889][ T6694] EXT4-fs: Ignoring removed oldalloc option
[  101.719211][ T6694] EXT4-fs error (device loop3): ext4_xattr_inode_iget:436: comm syz.3.1127: Parent and EA inode have the same ino 15
[  101.733084][ T6694] EXT4-fs (loop3): Remounting filesystem read-only
[  101.739718][ T6694] EXT4-fs warning (device loop3): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[  101.759236][ T6694] EXT4-fs (loop3): 1 orphan inode deleted
[  101.765975][ T6694] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.791664][ T6694] SELinux: (dev loop3, type ext4) getxattr errno 5
[  101.799833][ T6701] loop5: detected capacity change from 0 to 2048
[  101.806693][ T6694] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.839877][ T6701]  loop5: p1 < > p4
[  101.849078][ T6701] loop5: p4 size 8388608 extends beyond EOD, truncated
[  101.919553][ T6714] netlink: 48 bytes leftover after parsing attributes in process `4¹ßs'.
[  101.980562][ T6721] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1138'.
[  102.000147][ T6717] netlink: 116 bytes leftover after parsing attributes in process `syz.2.1137'.
[  102.036522][ T6723] loop3: detected capacity change from 0 to 512
[  102.078044][ T6723] EXT4-fs warning (device loop3): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  102.093001][ T6731] loop2: detected capacity change from 0 to 512
[  102.113327][ T6723] EXT4-fs (loop3): mount failed
[  102.120525][ T6731] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  102.129214][ T6731] EXT4-fs (loop2): orphan cleanup on readonly fs
[  102.135821][ T6731] EXT4-fs warning (device loop2): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  102.152677][ T6731] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  102.159820][ T6731] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1141: bg 0: block 40: padding at end of block bitmap is not set
[  102.176007][ T6731] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  102.185657][ T6731] EXT4-fs (loop2): 1 truncate cleaned up
[  102.192579][ T6731] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  102.213202][ T6723] loop3: detected capacity change from 0 to 1024
[  102.220582][ T6731] EXT4-fs error (device loop2): ext4_xattr_block_get:596: inode #16: comm syz.2.1141: corrupted xattr block 31: invalid header
[  102.236592][ T6731] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=16
[  102.248393][ T6723] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  102.261806][ T6723] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  102.272868][ T6723] EXT4-fs (loop3): orphan cleanup on readonly fs
[  102.287232][ T6743] loop1: detected capacity change from 0 to 2048
[  102.296660][ T6723] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  102.313562][ T6723] EXT4-fs (loop3): Remounting filesystem read-only
[  102.320229][ T6723] EXT4-fs (loop3): 1 orphan inode deleted
[  102.337373][ T6723] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  102.351478][ T6723] SELinux: (dev loop3, type ext4) getxattr errno 5
[  102.358848][ T6723] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.370015][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.391448][ T6743]  loop1: p1 < > p4
[  102.396654][ T6743] loop1: p4 size 8388608 extends beyond EOD, truncated
[  102.422824][ T2999]  loop1: p1 < > p4
[  102.436494][ T2999] loop1: p4 size 8388608 extends beyond EOD, truncated
[  102.863689][ T4582] udevd[4582]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  102.876334][ T3292] udevd[3292]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  102.903447][ T4582] udevd[4582]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  102.913528][ T3292] udevd[3292]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  103.030447][ T6778] loop3: detected capacity change from 0 to 512
[  103.049670][ T6778] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  103.057774][ T6778] EXT4-fs (loop3): orphan cleanup on readonly fs
[  103.064817][ T6778] EXT4-fs warning (device loop3): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  103.081356][ T6786] loop4: detected capacity change from 0 to 256
[  103.088070][ T6786] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  103.104466][ T6787] loop2: detected capacity change from 0 to 512
[  103.124788][ T6787] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  103.150115][ T6786] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  103.170039][ T6778] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  103.178196][ T6787] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal
[  103.223704][ T6778] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1161: bg 0: block 40: padding at end of block bitmap is not set
[  103.267322][ T6778] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  103.288555][ T6778] EXT4-fs (loop3): 1 truncate cleaned up
[  103.293865][ T6795] loop5: detected capacity change from 0 to 2048
[  103.294731][ T6778] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  103.343723][ T6778] EXT4-fs error (device loop3): ext4_xattr_block_get:596: inode #16: comm syz.3.1161: corrupted xattr block 31: invalid header
[  103.357296][ T6778] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=16
[  103.367571][ T6795]  loop5: p1 < > p4
[  103.372267][ T6795] loop5: p4 size 8388608 extends beyond EOD, truncated
[  103.409788][ T2999]  loop5: p1 < > p4
[  103.414126][ T2999] loop5: p4 size 8388608 extends beyond EOD, truncated
[  103.437556][ T6797] loop1: detected capacity change from 0 to 512
[  103.459334][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.484351][ T6797] EXT4-fs warning (device loop1): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  103.530785][ T4582] udevd[4582]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  103.543417][ T3292] udevd[3292]: inotify_add_watch(7, /dev/loop5p4, 10) failed: No such file or directory
[  103.582055][ T6797] EXT4-fs (loop1): mount failed
[  103.608402][ T4582] udevd[4582]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  103.611609][ T3292] udevd[3292]: inotify_add_watch(7, /dev/loop5p4, 10) failed: No such file or directory
[  103.665684][ T6811] loop3: detected capacity change from 0 to 512
[  103.697280][ T6814] loop1: detected capacity change from 0 to 1024
[  103.709018][ T6814] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  103.730201][ T6814] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  103.738537][ T6811] EXT4-fs warning (device loop3): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  103.739106][ T6814] EXT4-fs (loop1): orphan cleanup on readonly fs
[  103.760037][ T6811] EXT4-fs (loop3): mount failed
[  103.767628][ T6814] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  103.790951][ T6814] EXT4-fs (loop1): Remounting filesystem read-only
[  103.803490][ T6814] EXT4-fs (loop1): 1 orphan inode deleted
[  103.829683][ T6814] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  103.900549][ T6814] SELinux: (dev loop1, type ext4) getxattr errno 5
[  103.903903][ T6811] loop3: detected capacity change from 0 to 1024
[  103.922414][ T6814] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.929915][ T6824] loop4: detected capacity change from 0 to 512
[  103.941964][ T6824] EXT4-fs: Ignoring removed oldalloc option
[  103.969515][ T6824] EXT4-fs error (device loop4): ext4_xattr_inode_iget:436: comm syz.4.1173: Parent and EA inode have the same ino 15
[  103.983904][ T6811] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  104.018032][ T6824] EXT4-fs (loop4): Remounting filesystem read-only
[  104.024720][ T6824] EXT4-fs warning (device loop4): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[  104.043578][ T6824] EXT4-fs (loop4): 1 orphan inode deleted
[  104.049897][ T6811] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  104.061104][ T6824] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.073209][ T6824] SELinux: (dev loop4, type ext4) getxattr errno 5
[  104.076161][ T6811] EXT4-fs (loop3): orphan cleanup on readonly fs
[  104.086979][ T6824] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.107681][ T6832] loop5: detected capacity change from 0 to 2048
[  104.145332][ T6811] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  104.180448][ T6832]  loop5: p1 < > p4
[  104.191666][ T6832] loop5: p4 size 8388608 extends beyond EOD, truncated
[  104.221090][ T6811] EXT4-fs (loop3): Remounting filesystem read-only
[  104.245657][ T6836] loop1: detected capacity change from 0 to 512
[  104.248164][ T6811] EXT4-fs (loop3): 1 orphan inode deleted
[  104.268953][ T2999]  loop5: p1 < > p4
[  104.268977][ T6836] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  104.269042][ T6836] EXT4-fs (loop1): orphan cleanup on readonly fs
[  104.277799][ T2999] loop5: p4 size 8388608 extends beyond EOD, truncated
[  104.298790][ T6811] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  104.299595][ T6836] EXT4-fs warning (device loop1): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  104.328400][ T6836] EXT4-fs (loop1): Cannot turn on quotas: error -117
[  104.335154][ T6811] SELinux: (dev loop3, type ext4) getxattr errno 5
[  104.354680][ T6836] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1179: bg 0: block 40: padding at end of block bitmap is not set
[  104.381406][ T3292] udevd[3292]: inotify_add_watch(7, /dev/loop5p4, 10) failed: No such file or directory
[  104.390392][ T6811] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.402738][ T4582] udevd[4582]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  104.417408][ T6845] syz.5.1182[6845] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  104.417562][ T6845] syz.5.1182[6845] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  104.443375][ T6836] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  104.464709][ T6845] syz.5.1182[6845] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  104.632838][ T6836] EXT4-fs (loop1): 1 truncate cleaned up
[  104.670466][ T6858] loop4: detected capacity change from 0 to 256
[  104.679597][ T6836] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  104.694445][ T6858] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  104.707182][ T6863] __nla_validate_parse: 20 callbacks suppressed
[  104.707195][ T6863] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1187'.
[  104.732054][ T6858] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  104.750448][ T6863] loop3: detected capacity change from 0 to 512
[  104.778701][ T6865] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1188'.
[  104.806580][ T6836] EXT4-fs error (device loop1): ext4_xattr_block_get:596: inode #16: comm syz.1.1179: corrupted xattr block 31: invalid header
[  104.845685][ T6865] loop5: detected capacity change from 0 to 512
[  104.855550][ T6836] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop1 ino=16
[  104.929828][ T6863] EXT4-fs warning (device loop3): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  104.947798][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.957393][ T6863] EXT4-fs (loop3): mount failed
[  104.974163][ T6865] EXT4-fs warning (device loop5): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  104.992467][ T6865] EXT4-fs (loop5): mount failed
[  104.997826][ T6872] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1189'.
[  105.055825][ T6859] loop3: detected capacity change from 0 to 1024
[  105.079404][ T6859] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  105.088578][ T6864] loop5: detected capacity change from 0 to 1024
[  105.098823][ T6859] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  105.113560][ T6864] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  105.130272][ T6874] loop1: detected capacity change from 0 to 512
[  105.137799][ T6859] EXT4-fs (loop3): orphan cleanup on readonly fs
[  105.146224][ T6859] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  105.156066][ T6864] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  105.166104][ T6874] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  105.174277][ T6874] EXT4-fs (loop1): orphan cleanup on readonly fs
[  105.183861][ T6864] EXT4-fs (loop5): orphan cleanup on readonly fs
[  105.190636][ T6874] EXT4-fs warning (device loop1): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  105.206214][ T6864] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  105.206788][ T6874] EXT4-fs (loop1): Cannot turn on quotas: error -117
[  105.215765][ T6859] EXT4-fs (loop3): Remounting filesystem read-only
[  105.229619][ T6874] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1190: bg 0: block 40: padding at end of block bitmap is not set
[  105.245238][ T6864] EXT4-fs (loop5): Remounting filesystem read-only
[  105.252277][ T6859] EXT4-fs (loop3): 1 orphan inode deleted
[  105.258520][ T6864] EXT4-fs (loop5): 1 orphan inode deleted
[  105.264508][ T6874] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  105.275263][ T6859] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  105.287685][ T6864] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  105.303841][ T6874] EXT4-fs (loop1): 1 truncate cleaned up
[  105.309816][ T6859] SELinux: (dev loop3, type ext4) getxattr errno 5
[  105.315746][ T6864] SELinux: (dev loop5, type ext4) getxattr errno 5
[  105.323360][ T6864] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.324793][ T6874] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  105.349022][ T6859] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.349132][ T6880] loop2: detected capacity change from 0 to 512
[  105.383216][ T6880] EXT4-fs: Ignoring removed oldalloc option
[  105.402580][ T6880] EXT4-fs error (device loop2): ext4_xattr_inode_iget:436: comm syz.2.1191: Parent and EA inode have the same ino 15
[  105.430764][ T6880] EXT4-fs (loop2): Remounting filesystem read-only
[  105.437449][ T6880] EXT4-fs warning (device loop2): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[  105.452491][ T6880] EXT4-fs (loop2): 1 orphan inode deleted
[  105.458691][ T6880] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.470865][ T6880] SELinux: (dev loop2, type ext4) getxattr errno 5
[  105.500046][ T6880] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.510554][ T6883] loop5: detected capacity change from 0 to 2048
[  105.558829][ T6883]  loop5: p1 < > p4
[  105.574248][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.574754][ T6883] loop5: p4 size 8388608 extends beyond EOD, truncated
[  105.632897][ T6896] loop3: detected capacity change from 0 to 512
[  105.639471][ T2999]  loop5: p1 < > p4
[  105.644120][ T2999] loop5: p4 size 8388608 extends beyond EOD, truncated
[  105.665334][ T6901] netlink: 48 bytes leftover after parsing attributes in process `4¹ßs'.
[  105.684911][ T6907] loop2: detected capacity change from 0 to 256
[  105.694542][ T6903] loop5: detected capacity change from 0 to 512
[  105.701193][ T6907] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  105.703441][ T6896] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  105.728269][ T6907] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  105.728634][ T6896] EXT4-fs (loop3): orphan cleanup on readonly fs
[  105.750293][ T6903] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  105.753933][ T6896] EXT4-fs warning (device loop3): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  105.774025][ T6903] EXT4-fs (loop5): can't mount with data=, fs mounted w/o journal
[  105.788949][ T6896] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  105.799173][ T6896] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1195: bg 0: block 40: padding at end of block bitmap is not set
[  105.818507][ T6896] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  105.841092][ T6896] EXT4-fs (loop3): 1 truncate cleaned up
[  105.847146][ T6896] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  105.878579][ T6916] loop4: detected capacity change from 0 to 256
[  105.889619][ T6916] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  105.912804][ T6916] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  105.943197][ T6921] loop5: detected capacity change from 0 to 512
[  105.948509][ T6891] EXT4-fs error (device loop3): ext4_xattr_block_get:596: inode #16: comm syz.3.1195: corrupted xattr block 31: invalid header
[  105.964347][ T6921] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  105.968311][ T6891] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=16
[  105.980656][ T6921] EXT4-fs (loop5): can't mount with data=, fs mounted w/o journal
[  105.992657][ T6922] loop1: detected capacity change from 0 to 512
[  106.020059][ T6922] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  106.028024][ T6922] EXT4-fs (loop1): orphan cleanup on readonly fs
[  106.035004][ T6926] netlink: 72 bytes leftover after parsing attributes in process `syz.5.1209'.
[  106.037014][ T6922] __quota_error: 400 callbacks suppressed
[  106.037029][ T6922] Quota error (device loop1): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[  106.060619][ T6922] EXT4-fs warning (device loop1): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  106.075918][ T6922] EXT4-fs (loop1): Cannot turn on quotas: error -117
[  106.085209][ T6922] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1208: bg 0: block 40: padding at end of block bitmap is not set
[  106.102531][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.110150][ T6922] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  106.120842][ T6922] EXT4-fs (loop1): 1 truncate cleaned up
[  106.126957][ T6922] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  106.163841][ T6931] loop5: detected capacity change from 0 to 256
[  106.170888][ T6931] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  106.183414][ T6931] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  106.204274][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.214115][ T6933] syz.3.1212[6933] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  106.214249][ T6933] syz.3.1212[6933] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  106.226986][ T6933] syz.3.1212[6933] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  106.271560][   T29] audit: type=1400 audit(1736927213.801:4336): avc:  denied  { create } for  pid=6938 comm="syz.3.1214" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  106.313449][ T6941] netlink: zone id is out of range
[  106.318632][ T6941] netlink: zone id is out of range
[  106.324785][ T6941] netlink: set zone limit has 4 unknown bytes
[  106.331603][   T29] audit: type=1400 audit(1736927213.801:4337): avc:  denied  { create } for  pid=6938 comm="syz.3.1214" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  106.351067][   T29] audit: type=1400 audit(1736927213.801:4338): avc:  denied  { bind } for  pid=6938 comm="syz.3.1214" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  106.376496][   T29] audit: type=1400 audit(1736927213.901:4339): avc:  denied  { setopt } for  pid=6940 comm="syz.1.1216" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  106.376816][ T6941] process 'syz.1.1216' launched 'ÿÿÿÿle1' with NULL argv: empty string added
[  106.397244][   T29] audit: type=1400 audit(1736927213.901:4340): avc:  denied  { execute } for  pid=6940 comm="syz.1.1216" name=FFFFFFFF6C6531 dev="tmpfs" ino=1333 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  106.430714][   T29] audit: type=1400 audit(1736927213.941:4341): avc:  denied  { execute_no_trans } for  pid=6940 comm="syz.1.1216" path=2F3234382FFFFFFFFF6C6531 dev="tmpfs" ino=1333 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  106.455359][   T29] audit: type=1400 audit(1736927213.961:4342): avc:  denied  { setopt } for  pid=6938 comm="syz.3.1214" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  106.475123][   T29] audit: type=1400 audit(1736927213.991:4343): avc:  denied  { write } for  pid=6938 comm="syz.3.1214" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  106.508090][   T29] audit: type=1400 audit(1736927214.031:4344): avc:  denied  { read write } for  pid=3304 comm="syz-executor" name="loop2" dev="devtmpfs" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  106.547937][ T6946] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1218'.
[  106.562575][ T6944] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1217'.
[  106.582821][ T6944] loop1: detected capacity change from 0 to 512
[  106.583240][ T6950] FAULT_INJECTION: forcing a failure.
[  106.583240][ T6950] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  106.602501][ T6950] CPU: 1 UID: 0 PID: 6950 Comm: syz.2.1219 Not tainted 6.13.0-rc7-syzkaller-00043-g619f0b6fad52 #0
[  106.613265][ T6950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  106.623336][ T6950] Call Trace:
[  106.626625][ T6950]  <TASK>
[  106.629636][ T6950]  dump_stack_lvl+0xf2/0x150
[  106.630000][ T6944] EXT4-fs warning (device loop1): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  106.634259][ T6950]  dump_stack+0x15/0x1a
[  106.653100][ T6950]  should_fail_ex+0x223/0x230
[  106.657799][ T6950]  should_fail+0xb/0x10
[  106.661979][ T6950]  should_fail_usercopy+0x1a/0x20
[  106.664647][ T6944] EXT4-fs (loop1): mount failed
[  106.667012][ T6950]  _copy_from_user+0x1e/0xb0
[  106.667053][ T6950]  __x64_sys_epoll_ctl+0x8e/0xf0
[  106.667117][ T6950]  x64_sys_call+0x1361/0x2dc0
[  106.667139][ T6950]  do_syscall_64+0xc9/0x1c0
[  106.667163][ T6950]  ? clear_bhb_loop+0x55/0xb0
[  106.667204][ T6950]  ? clear_bhb_loop+0x55/0xb0
[  106.700228][ T6950]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.706197][ T6950] RIP: 0033:0x7f4b50ad5d29
[  106.710679][ T6950] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  106.730355][ T6950] RSP: 002b:00007f4b4f147038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[  106.738838][ T6950] RAX: ffffffffffffffda RBX: 00007f4b50cc5fa0 RCX: 00007f4b50ad5d29
[  106.746825][ T6950] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000006
[  106.754809][ T6950] RBP: 00007f4b4f147090 R08: 0000000000000000 R09: 0000000000000000
[  106.762778][ T6950] R10: 0000000020000600 R11: 0000000000000246 R12: 0000000000000001
[  106.770776][ T6950] R13: 0000000000000000 R14: 00007f4b50cc5fa0 R15: 00007ffc8db2f5b8
[  106.778759][ T6950]  </TASK>
[  106.806410][ T6954] loop4: detected capacity change from 0 to 512
[  106.824357][ T6954] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  106.838428][ T6954] EXT4-fs (loop4): can't mount with data=, fs mounted w/o journal
[  106.857973][ T6956] loop2: detected capacity change from 0 to 512
[  106.883645][ T6956] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  106.898162][ T6956] EXT4-fs (loop2): orphan cleanup on readonly fs
[  106.906910][ T6944] loop1: detected capacity change from 0 to 1024
[  106.913935][ T6956] EXT4-fs warning (device loop2): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  106.922696][ T6944] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  106.940281][ T6956] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  106.956700][ T6956] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1221: bg 0: block 40: padding at end of block bitmap is not set
[  106.966328][ T6944] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  106.976411][ T6956] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  106.981206][ T6944] EXT4-fs (loop1): orphan cleanup on readonly fs
[  106.991223][ T6956] EXT4-fs (loop2): 1 truncate cleaned up
[  107.000362][ T6956] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  107.021086][ T6944] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  107.031644][ T6944] EXT4-fs (loop1): Remounting filesystem read-only
[  107.038491][ T6944] EXT4-fs (loop1): 1 orphan inode deleted
[  107.048658][ T6944] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  107.064277][ T6944] SELinux: (dev loop1, type ext4) getxattr errno 5
[  107.071298][ T6944] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.087412][ T6968] syz.5.1225[6968] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  107.087475][ T6968] syz.5.1225[6968] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  107.099010][ T6956] EXT4-fs error (device loop2): ext4_xattr_block_get:596: inode #16: comm syz.2.1221: corrupted xattr block 31: invalid header
[  107.133610][ T6968] syz.5.1225[6968] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  107.133947][ T6956] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=16
[  107.181591][ T6972] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1227'.
[  107.204935][ T6974] loop5: detected capacity change from 0 to 512
[  107.212193][ T6974] EXT4-fs: Ignoring removed oldalloc option
[  107.229873][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.253082][ T6974] EXT4-fs error (device loop5): ext4_xattr_inode_iget:436: comm syz.5.1228: Parent and EA inode have the same ino 15
[  107.268037][ T6974] EXT4-fs (loop5): Remounting filesystem read-only
[  107.274658][ T6974] EXT4-fs warning (device loop5): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[  107.288722][ T6974] EXT4-fs (loop5): 1 orphan inode deleted
[  107.295523][ T6974] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.307861][ T6974] SELinux: (dev loop5, type ext4) getxattr errno 5
[  107.316739][ T6982] loop1: detected capacity change from 0 to 256
[  107.336901][ T6982] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  107.338808][ T6974] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.352007][ T6981] loop2: detected capacity change from 0 to 512
[  107.365629][ T6982] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  107.434299][ T6981] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  107.435088][ T6987] loop3: detected capacity change from 0 to 512
[  107.445110][ T6981] EXT4-fs (loop2): orphan cleanup on readonly fs
[  107.462165][ T6981] EXT4-fs warning (device loop2): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  107.483160][ T6981] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  107.492120][ T6981] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1229: bg 0: block 40: padding at end of block bitmap is not set
[  107.508495][ T6981] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  107.517469][ T6981] EXT4-fs (loop2): 1 truncate cleaned up
[  107.524752][ T6981] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  107.559133][ T6987] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  107.567394][ T6987] EXT4-fs (loop3): orphan cleanup on readonly fs
[  107.575583][ T6981] EXT4-fs error (device loop2): ext4_xattr_block_get:596: inode #16: comm syz.2.1229: corrupted xattr block 31: invalid header
[  107.590300][ T6987] EXT4-fs warning (device loop3): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  107.605555][ T6987] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  107.612568][ T6981] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=16
[  107.613601][ T6987] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1232: bg 0: block 40: padding at end of block bitmap is not set
[  107.637323][ T6987] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  107.646502][ T6987] EXT4-fs (loop3): 1 truncate cleaned up
[  107.652567][ T6987] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  107.714542][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.031433][ T7009] loop2: detected capacity change from 0 to 512
[  108.038564][ T7009] EXT4-fs (loop2): couldn't mount as ext3 due to feature incompatibilities
[  108.208046][ T7014] loop1: detected capacity change from 0 to 512
[  108.328671][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.461494][ T7014] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  108.474784][ T7014] EXT4-fs (loop1): orphan cleanup on readonly fs
[  108.505693][ T7014] EXT4-fs warning (device loop1): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  108.529860][ T7014] EXT4-fs (loop1): Cannot turn on quotas: error -117
[  108.547495][ T7014] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1240: bg 0: block 40: padding at end of block bitmap is not set
[  108.631806][ T7026] loop3: detected capacity change from 0 to 512
[  108.673683][ T7014] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  108.704216][ T7014] EXT4-fs (loop1): 1 truncate cleaned up
[  108.719940][ T7014] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  108.748852][ T7026] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  108.782475][ T7026] EXT4-fs (loop3): orphan cleanup on readonly fs
[  108.812732][ T7026] EXT4-fs warning (device loop3): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  108.838511][ T7026] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  108.846095][ T7026] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1245: bg 0: block 40: padding at end of block bitmap is not set
[  108.862272][ T7026] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  108.871346][ T7026] EXT4-fs (loop3): 1 truncate cleaned up
[  108.877509][ T7026] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  108.911600][ T7026] EXT4-fs error (device loop3): ext4_xattr_block_get:596: inode #16: comm syz.3.1245: corrupted xattr block 31: invalid header
[  108.944934][ T7033] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1247'.
[  108.969568][ T7026] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=16
[  108.995726][ T7014] EXT4-fs error (device loop1): ext4_xattr_block_get:596: inode #16: comm syz.1.1240: corrupted xattr block 31: invalid header
[  109.030479][ T7014] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop1 ino=16
[  109.042325][ T7036] netlink: 48 bytes leftover after parsing attributes in process `syz.5.1248'.
[  109.070688][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.124946][ T7040] syz.5.1251[7040] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  109.137552][ T7044] FAULT_INJECTION: forcing a failure.
[  109.137552][ T7044] name failslab, interval 1, probability 0, space 0, times 0
[  109.160624][ T7042] loop3: detected capacity change from 0 to 2048
[  109.161730][ T7044] CPU: 1 UID: 0 PID: 7044 Comm: syz.4.1252 Not tainted 6.13.0-rc7-syzkaller-00043-g619f0b6fad52 #0
[  109.178739][ T7044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  109.188810][ T7044] Call Trace:
[  109.192093][ T7044]  <TASK>
[  109.195032][ T7044]  dump_stack_lvl+0xf2/0x150
[  109.199652][ T7044]  dump_stack+0x15/0x1a
[  109.203830][ T7044]  should_fail_ex+0x223/0x230
[  109.208583][ T7044]  should_failslab+0x8f/0xb0
[  109.213215][ T7044]  kmem_cache_alloc_noprof+0x52/0x320
[  109.218622][ T7044]  ? audit_log_start+0x34c/0x6b0
[  109.223625][ T7044]  audit_log_start+0x34c/0x6b0
[  109.228409][ T7044]  audit_seccomp+0x4b/0x130
[  109.232965][ T7044]  __seccomp_filter+0x6fa/0x1180
[  109.237949][ T7044]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  109.243643][ T7044]  ? vfs_write+0x596/0x920
[  109.248152][ T7044]  ? putname+0xcf/0xf0
[  109.252240][ T7044]  __secure_computing+0x9f/0x1c0
[  109.257306][ T7044]  syscall_trace_enter+0xd1/0x1f0
[  109.262385][ T7044]  ? fpregs_assert_state_consistent+0x83/0xa0
[  109.268527][ T7044]  do_syscall_64+0xaa/0x1c0
[  109.273138][ T7044]  ? clear_bhb_loop+0x55/0xb0
[  109.277832][ T7044]  ? clear_bhb_loop+0x55/0xb0
[  109.282526][ T7044]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.288541][ T7044] RIP: 0033:0x7fdd0d175d29
[  109.292963][ T7044] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.312611][ T7044] RSP: 002b:00007fdd0b7e7038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b8
[  109.321032][ T7044] RAX: ffffffffffffffda RBX: 00007fdd0d365fa0 RCX: 00007fdd0d175d29
[  109.329144][ T7044] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffffffffff
[  109.337134][ T7044] RBP: 00007fdd0b7e7090 R08: 0000000000000000 R09: 0000000000000000
[  109.345109][ T7044] R10: 0000000000000014 R11: 0000000000000246 R12: 0000000000000001
[  109.353296][ T7044] R13: 0000000000000000 R14: 00007fdd0d365fa0 R15: 00007ffcad81ded8
[  109.361283][ T7044]  </TASK>
[  109.391523][ T7045]  loop3: p1 < > p4
[  109.392153][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.424960][ T7045] loop3: p4 size 8388608 extends beyond EOD, truncated
[  109.511376][ T7059] loop2: detected capacity change from 0 to 512
[  109.559671][ T7059] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  109.568993][ T7059] EXT4-fs (loop2): orphan cleanup on readonly fs
[  109.578105][ T7059] EXT4-fs warning (device loop2): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  109.590944][ T7042]  loop3: p1 < > p4
[  109.597311][ T7042] loop3: p4 size 8388608 extends beyond EOD, truncated
[  109.625300][ T7059] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  109.636649][ T7069] bpf_get_probe_write_proto: 2 callbacks suppressed
[  109.636670][ T7069] syz.3.1260[7069] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  109.639779][ T7059] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1255: bg 0: block 40: padding at end of block bitmap is not set
[  109.645047][ T7069] syz.3.1260[7069] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  109.670735][ T7069] syz.3.1260[7069] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  109.745152][ T7059] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  109.766985][ T7059] EXT4-fs (loop2): 1 truncate cleaned up
[  109.774182][ T7059] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  109.919128][ T3292] udevd[3292]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[  109.949350][ T4582] udevd[4582]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  109.963608][ T7076] __nla_validate_parse: 1 callbacks suppressed
[  109.963628][ T7076] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1263'.
[  110.026582][ T7052] EXT4-fs error (device loop2): ext4_xattr_block_get:596: inode #16: comm syz.2.1255: corrupted xattr block 31: invalid header
[  110.074783][ T3292] udevd[3292]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[  110.087737][ T4582] udevd[4582]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  110.104616][ T7052] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=16
[  110.118738][ T7076] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1263'.
[  110.128639][ T3292] udevd[3292]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[  110.148916][ T4582] udevd[4582]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  110.202722][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.242859][ T7084] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1267'.
[  110.253482][ T7090] netlink: 48 bytes leftover after parsing attributes in process `4¹ßs'.
[  110.261626][ T7084] loop3: detected capacity change from 0 to 512
[  110.295614][ T7084] EXT4-fs warning (device loop3): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  110.307102][ T7095] loop2: detected capacity change from 0 to 512
[  110.310875][ T7084] EXT4-fs (loop3): mount failed
[  110.336045][ T7095] EXT4-fs: Ignoring removed oldalloc option
[  110.369235][ T7095] EXT4-fs error (device loop2): ext4_xattr_inode_iget:436: comm syz.2.1270: Parent and EA inode have the same ino 15
[  110.396839][ T7095] EXT4-fs (loop2): Remounting filesystem read-only
[  110.403467][ T7095] EXT4-fs warning (device loop2): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[  110.415015][ T7095] EXT4-fs (loop2): 1 orphan inode deleted
[  110.422775][ T7095] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  110.425344][ T7099] loop3: detected capacity change from 0 to 1024
[  110.435391][ T7095] SELinux: (dev loop2, type ext4) getxattr errno 5
[  110.452813][ T7099] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  110.479171][ T7095] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.491215][ T7099] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  110.503679][ T7103] loop5: detected capacity change from 0 to 2048
[  110.510852][ T7099] EXT4-fs (loop3): orphan cleanup on readonly fs
[  110.521251][ T7099] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  110.532499][ T7099] EXT4-fs (loop3): Remounting filesystem read-only
[  110.539370][ T7099] EXT4-fs (loop3): 1 orphan inode deleted
[  110.545575][ T7099] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  110.557639][ T7099] SELinux: (dev loop3, type ext4) getxattr errno 5
[  110.564844][ T7099] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.569882][ T7103]  loop5: p1 < > p4
[  110.599933][ T7103] loop5: p4 size 8388608 extends beyond EOD, truncated
[  110.612810][ T7103] ==================================================================
[  110.620923][ T7103] BUG: KCSAN: data-race in fsnotify_detach_mark / fsnotify_handle_inode_event
[  110.629807][ T7103] 
[  110.632510][ T7103] write to 0xffff8881043fc634 of 4 bytes by task 3292 on cpu 0:
[  110.640168][ T7103]  fsnotify_detach_mark+0xba/0x160
[  110.645300][ T7103]  fsnotify_destroy_mark+0x6e/0x140
[  110.650516][ T7103]  __se_sys_inotify_rm_watch+0xea/0x170
[  110.656077][ T7103]  __x64_sys_inotify_rm_watch+0x31/0x40
[  110.661644][ T7103]  x64_sys_call+0x25e0/0x2dc0
[  110.666330][ T7103]  do_syscall_64+0xc9/0x1c0
[  110.670840][ T7103]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.676756][ T7103] 
[  110.679077][ T7103] read to 0xffff8881043fc634 of 4 bytes by task 7103 on cpu 1:
[  110.686630][ T7103]  fsnotify_handle_inode_event+0xf6/0x1f0
[  110.692365][ T7103]  fsnotify+0x10ae/0x1190
[  110.696788][ T7103]  __fsnotify_parent+0x285/0x380
[  110.701821][ T7103]  __fput+0x5a5/0x6d0
[  110.705815][ T7103]  __fput_sync+0x96/0xc0
[  110.710064][ T7103]  __se_sys_close+0x109/0x1b0
[  110.714751][ T7103]  __x64_sys_close+0x1f/0x30
[  110.719350][ T7103]  x64_sys_call+0x266c/0x2dc0
[  110.724031][ T7103]  do_syscall_64+0xc9/0x1c0
[  110.728540][ T7103]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.734456][ T7103] 
[  110.736871][ T7103] value changed: 0x00000003 -> 0x00000000
[  110.742595][ T7103] 
[  110.744915][ T7103] Reported by Kernel Concurrency Sanitizer on:
[  110.751066][ T7103] CPU: 1 UID: 0 PID: 7103 Comm: syz.5.1273 Not tainted 6.13.0-rc7-syzkaller-00043-g619f0b6fad52 #0
[  110.761746][ T7103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  110.771805][ T7103] ==================================================================
[  110.821962][ T2999]  loop5: p1 < > p4
[  110.824039][ T7112] loop3: detected capacity change from 0 to 512
[  110.826514][ T2999] loop5: p4 size 8388608 extends beyond EOD, truncated
[  110.861379][ T7112] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  110.862429][ T7117] FAULT_INJECTION: forcing a failure.
[  110.862429][ T7117] name failslab, interval 1, probability 0, space 0, times 0
[  110.871983][ T7112] EXT4-fs (loop3): orphan cleanup on readonly fs
[  110.881957][ T7117] CPU: 1 UID: 0 PID: 7117 Comm: syz.4.1276 Not tainted 6.13.0-rc7-syzkaller-00043-g619f0b6fad52 #0
[  110.881991][ T7117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  110.909182][ T7117] Call Trace:
[  110.912460][ T7117]  <TASK>
[  110.915444][ T7117]  dump_stack_lvl+0xf2/0x150
[  110.920136][ T7117]  dump_stack+0x15/0x1a
[  110.924434][ T7117]  should_fail_ex+0x223/0x230
[  110.929261][ T7117]  should_failslab+0x8f/0xb0
[  110.933889][ T7117]  kmem_cache_alloc_noprof+0x52/0x320
[  110.939288][ T7117]  ? audit_log_start+0x34c/0x6b0
[  110.944244][ T7117]  audit_log_start+0x34c/0x6b0
[  110.949080][ T7117]  audit_seccomp+0x4b/0x130
[  110.953619][ T7117]  __seccomp_filter+0x6fa/0x1180
[  110.958667][ T7117]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  110.964341][ T7117]  ? vfs_write+0x596/0x920
[  110.968827][ T7117]  __secure_computing+0x9f/0x1c0
[  110.973898][ T7117]  syscall_trace_enter+0xd1/0x1f0
[  110.978964][ T7117]  ? fpregs_assert_state_consistent+0x83/0xa0
[  110.985079][ T7117]  do_syscall_64+0xaa/0x1c0
[  110.989604][ T7117]  ? clear_bhb_loop+0x55/0xb0
[  110.994361][ T7117]  ? clear_bhb_loop+0x55/0xb0
[  110.999061][ T7117]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.005042][ T7117] RIP: 0033:0x7fdd0d175d29
[  111.009514][ T7117] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.029232][ T7117] RSP: 002b:00007fdd0b7c6038 EFLAGS: 00000246 ORIG_RAX: 000000000000001d
[  111.037651][ T7117] RAX: ffffffffffffffda RBX: 00007fdd0d366080 RCX: 00007fdd0d175d29
[  111.045683][ T7117] RDX: 0000000000000800 RSI: 0000000000001000 RDI: 0000000000000000
[  111.053671][ T7117] RBP: 00007fdd0b7c6090 R08: 0000000000000000 R09: 0000000000000000
[  111.061725][ T7117] R10: 0000000020ffc000 R11: 0000000000000246 R12: 0000000000000001
[  111.069786][ T7117] R13: 0000000000000000 R14: 00007fdd0d366080 R15: 00007ffcad81ded8
[  111.077771][ T7117]  </TASK>
[  111.080959][ T7117] audit_log_lost: 355 callbacks suppressed
[  111.080988][ T7117] audit: audit_lost=3 audit_rate_limit=0 audit_backlog_limit=64
[  111.084396][ T7112] Quota error (device loop3): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[  111.086837][ T7117] audit: out of memory in audit_log_start
[  111.094531][ T7112] EXT4-fs warning (device loop3): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  111.126098][   T29] audit: type=1326 audit(1736927218.661:4682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7111 comm="syz.4.1276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7fdd0d17473c code=0x7ffc0000
[  111.165507][   T29] audit: type=1326 audit(1736927218.681:4683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7111 comm="syz.4.1276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fdd0d1747df code=0x7ffc0000
[  111.188842][   T29] audit: type=1326 audit(1736927218.681:4684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7111 comm="syz.4.1276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fdd0d17498a code=0x7ffc0000
[  111.212257][   T29] audit: type=1326 audit(1736927218.681:4685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7111 comm="syz.4.1276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0d175d29 code=0x7ffc0000
[  111.214081][ T3292] udevd[3292]: inotify_add_watch(7, /dev/loop5p4, 10) failed: No such file or directory
[  111.235758][   T29] audit: type=1326 audit(1736927218.681:4686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7111 comm="syz.4.1276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0d175d29 code=0x7ffc0000
[  111.250062][ T4582] udevd[4582]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  111.278984][ T7112] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  111.288908][ T7112] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1278: bg 0: block 40: padding at end of block bitmap is not set
[  111.307556][ T7112] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  111.316914][ T7112] EXT4-fs (loop3): 1 truncate cleaned up
[  111.323077][ T7112] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  111.335717][   T29] audit: type=1400 audit(1736927218.871:4687): avc:  denied  { mount } for  pid=7109 comm="syz.3.1278" name="/" dev="loop3" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  111.360013][   T29] audit: type=1400 audit(1736927218.891:4688): avc:  denied  { write } for  pid=7109 comm="syz.3.1278" name="if_inet6" dev="proc" ino=4026532604 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  111.438807][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.