last executing test programs:

2.504103673s ago: executing program 0 (id=364):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x4000001)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x20}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
add_key$fscrypt_v1(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)
r3 = socket$unix(0x1, 0x1, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r4, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e)
listen(r4, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
connect$unix(r5, 0x0, 0x0)
connect$unix(r3, 0x0, 0x0)
connect$unix(r3, &(0x7f0000000240)=@file={0x1, './file0\x00'}, 0x6e)
listen(r4, 0x1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40))
socket$nl_rdma(0x10, 0x3, 0x14)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000800)={'syztnl1\x00', &(0x7f0000000780)={'syztnl2\x00', 0x0, 0x71, 0x52, 0x2, 0x83, 0x79, @mcast1, @dev={0xfe, 0x80, '\x00', 0xd}, 0x80, 0x40, 0x1, 0xffff}})

1.939121858s ago: executing program 1 (id=372):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x251}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r2}, &(0x7f0000000180), &(0x7f00000001c0)=r1}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB], 0x0, 0x3}, 0x94)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_SET(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="0100280000000000000002000000200001800d0001007564703a73797a32"], 0x34}}, 0x0)
syz_clone3(&(0x7f0000000380)={0x3f435ce88ea90e20, 0x0, 0x0, 0x0, {0x1d}, 0x0, 0x0, 0x0, &(0x7f0000000340)=[0x0], 0x1}, 0x58)
r6 = socket$kcm(0x10, 0x2, 0x0)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000100)={0x3, 0x3}, 0x4)
setsockopt$packet_rx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x9, 0x0, 0xffffffff}, 0x1c)
r7 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_DELLINK(r7, &(0x7f0000000580)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f0000000300)={0x38, 0x1404, 0x108, 0x70bd28, 0x2, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}]}, 0x38}, 0x1, 0x0, 0x0, 0x20040804}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000780)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x48}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000780)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
sendmsg$kcm(r6, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000001c0)="d8000000180081064e81f782db4cb904021d080006007c09e8fe55a10a0015000600142603600e1208000f0000000401a80016002000024006000a00035c0461c1d60008000000000000fb8000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f0f49e119c849ea6e5a0fc55e4cde205a214d6102d6dcbf33fb5ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6cc", 0xd8}], 0x1}, 0x0)

1.91484205s ago: executing program 3 (id=373):
socket$key(0xf, 0x3, 0x2)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000240)=@o_path={0x0, 0x0, 0x4018}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x14, 0x0, &(0x7f0000000640)="b9ff03076844268cb89e14f088a847e088641100", 0x0, 0x11, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x50)
setresgid(0xee00, 0xee01, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32, @ANYBLOB="0000000000000008b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = mq_open(&(0x7f0000000180)='\r\x00elinu\xef\xe3elinux\x00\x96\xf6\x92\n#*\xac\x05\xce\xf8D\\\x9a\xe6[]L+\xf6\v\xe8\xf2\xd3\b\x15\n\xb8F!Q9o\x1f#\xbdt\r\xfb\"\x18%\xfdM\xaf_t\xd2\xdcJ\x10\a\xbab\x1a\xdf\xb1\xbdU\xd7Lo\xe7\xac\x81\x10k\xce-\xf5@\xbb\x9d;\xe8\xf6\xffQ\x04\xaai\x92k\x1b;\xddM\xa2\xe1-\x0e\xd8\xde\x00\xff\x18\xdd\bL\xfb\xa2.\xb6{\xb5\x85#\x88\xdc\xf0\x0f\x05\xf1\xc4 \xdeV\x80q\xf7\x04\xf5\x85T\x1f\xc2S]*\xc9lw\xd3J\xc5\xe8\x02\xcb\xbbAHxr\xac\xb77F\xdf\x1c\xcb\xd4\xce\x88L\xf1\xf9[\x98\xd4+pTx\x95\xb5\x1b]x\x1a\x95\xe1c6\xe7`83\xb7n#\xe0\xc1_\xec\xba\xde\a\x8b\xc5\x86woo\xbc\x1c\xa3r\x82\xf3enq-\x90/\xed\xff\xad+\x03\x10\t\xda\xfd\xa2\xd0\xef4\n%\xf1\xd8', 0x6e93ebbbcc0884f2, 0x0, &(0x7f0000000040)={0x1294, 0x2, 0x5})
mq_getsetattr(r2, &(0x7f0000000000)={0x800, 0x4, 0x9, 0x9a}, 0x0)
mq_timedreceive(r2, &(0x7f0000000340)=""/195, 0xc3, 0x0, 0x0)
mq_timedreceive(r2, &(0x7f0000000080)=""/87, 0x57, 0x1000002, 0x0)

1.811255241s ago: executing program 3 (id=374):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000005c0), 0x2, 0x0)
r3 = openat$selinux_policy(0xffffff9c, &(0x7f0000000400), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r3, 0x0)
write$selinux_load(r2, &(0x7f0000000000)=ANY=[], 0x190da)

1.737134108s ago: executing program 1 (id=375):
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x17)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000dc0)={0x6, 0x6, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffefffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
r2 = creat(0x0, 0xf4)
r3 = dup2(r2, r2)
ioctl$BLKTRACESETUP(r3, 0x1260, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x3000010, &(0x7f0000000340)={[{@errors_remount}, {@nodioread_nolock}]}, 0x1, 0x512, &(0x7f0000000380)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x38, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xc, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)

1.680711673s ago: executing program 3 (id=377):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000007d00000085"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1802000000000000040000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c3000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback=0x86b20727ab209fad, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020000088500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
fcntl$setlease(r1, 0x400, 0x0)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x8400, &(0x7f00000008c0)={[{@uid}, {@iocharset={'iocharset', 0x3d, 'macturkish'}}, {@showassoc}, {@unhide}, {@nojoliet}, {@uid}, {@dmode={'dmode', 0x3d, 0x2}}, {@iocharset={'iocharset', 0x3d, 'cp950'}}]}, 0x0, 0x688, &(0x7f0000000100)="$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")
r3 = openat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
getdents64(r3, &(0x7f0000000000)=""/47, 0x2f)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6e}}, {@user_xattr}, {@lazytime}, {@quota}]}, 0x3, 0x441, &(0x7f0000000440)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
socket$key(0xf, 0x3, 0x2)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext={0x95, 0x3}, 0x100002, 0x0, 0xffffffff, 0x3, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_usb_connect(0x6, 0x0, 0x0, 0x0)
socket(0x10, 0x2, 0x0)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, 0x0, 0x4040014)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r7}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)

1.603355371s ago: executing program 0 (id=379):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
creat(&(0x7f00000000c0)='./file0\x00', 0xf4)
r0 = syz_io_uring_setup(0x497, &(0x7f0000000300)={0x0, 0x4661, 0x800, 0x1, 0x20e}, &(0x7f0000000540)=<r1=>0x0, &(0x7f0000000440)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_LINKAT={0x27, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0x400, 0x1})
io_uring_enter(r0, 0x40f9, 0x217, 0xa5, 0x0, 0x0)
socket$tipc(0x1e, 0x2, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x200000a, 0x1, 0x8})
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0x1276, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000ec0), &(0x7f0000000180)='./file2\x00', 0x420c, &(0x7f0000003240)=ANY=[], 0x6, 0x36e, &(0x7f00000007c0)="$eJzs3U1oM0UYwPEnaZImeXmbHERRkA6+CHpZ2uhZDNKCELC0jdgKwrbdaMialGyoRsS2J4+Kd0+Ch9KbBQ8F7VnoxZteRPDWi6BgBXVlv5LNV9PGpMH2/4OSycw8uzPZSXk27WYv3vj03UrJ0kp6Q6JJJRERkUuRrEQlEPEfo245IfLJd622A3n+wW8/PL22UUx6FWo5v/5CTik1N//Nex+m/G6ns3Kefevi19wv54+fP3nxz/o7ZUuVLVWtNZSutmo/NfQt01A7ZauiKbViGrplqHLVMupe+1f+dsza7m5T6dWdh+ndumFZSq82VcVoqkZNNepNpb+tl6tK0zT1MC0Ypni0uqrnRwzeHvNgMCH1el6fEZFUT0vxaCoDAgAAU9Wd/0edlH5Y/h/Syv83Za5QWFpVTud2/n/8zFnjwesnc37+f5rol/+/+KO3rY783zmdaOf/Ne/8oDQ8//9cbpD/92ZE98vI+X92AoPBaOYTPVWRjmdO/p/237+uwzePF9wC+T8AAAAAAAAAAAAAAAAAAAAAAP8Hl7adsW07EzwGP+1LCPznuJMGHf9ZEUk6R9/m+N9laxubknQv3HOOsfnxXnGv6D36Hc5ExBTjb7ubszaCK4+UIyvfmvt+/P5eccZtyZek7MTLomQk666nULxtL79aWFpUHj++dZlSOhyfk4w8Fo7/2l2dTnyuM97ff0KeexSK1yQj329LTUzZcSPb+/9oUalXXit0xafcfiLy860fFAAAAAAAxkxTLX3P3zVtULv3LSP5kvsxkSELkpG/+p/fL/Q9P49lnopNe/YAAAAAANwPVvODii5Ro+4WTLNfISUDm8ZQiHXUxEWkb+dEV038qi3PhGZ43fEkxLuDyX+d1xfBq3qTqOAfKZyBt5r8O6rIaOMJ5u/WRGLP/u43/XnTeUUOxF0AB+GmqFwjPNY9+HmnQvXt/Gjgdg79ibRqgo+NEgNeZ1np3U70ipUQ76mxI6MtgCc++/KP8b1BXjrxV8D7wzsfmoa9L9c5KF0FZxe9TfGJ/+IBAAAAcOvaSX9Q83K4OXwjkfDNcvjLPQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYzSRr/TrKgze++xtThUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACYun8DAAD//7ct9c4=")
r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x105142, 0x2c)
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1200000004000000080000000280000000000000", @ANYRES64, @ANYBLOB='\x00'/18, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000aa"], 0x50)
mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x100000b, 0x2013, r3, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000000)=ANY=[], 0x32600)
nanosleep(0x0, &(0x7f0000000540))
r4 = socket$inet6_icmp(0xa, 0x2, 0x3a)
recvfrom$inet6(r4, 0x0, 0x0, 0x2120, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x12, &(0x7f0000000100), 0x1, 0x4c9, &(0x7f0000000b40)="$eJzs201sVNUeAPD/nU6/4PHo4yEKog6isdHYQkFh4QajiQtMjLjQZdMWghRqaE2EECmJwaUhcW9cunXhVt0ZVyZucWliSIhhA7gac2fubeez9GPaAeb3S6Y9586595z/3HPunLlnJoCeVUr/JBH/iYibEbGzmq0vUKr+u3fnytT9O1emYrFcPvV3Uil3N81n8v22Z5nRQkThi6ThgFXzly6fm5ydnbmY5ccXzn8yPn/p8qtnz0+emTkzc2Hi+PGjRw4fe33itbUH1aK+NK67+z6f27/3nY9uvDtVzLcPZf9r4+iUUpRaNaXixU5X1mU7atJJsYsNYU36IiI9Xf2V8b8z+sLJg15RLpfLg+2eHEjf6Rtca9oCPLKS6HYLgO7I3+rTz7/5Y8smHw+B2yeqH4DSuO9lj+ozxShkZfobPt/mFjtQ/1BEfLj4zzfpIzbpPgQAQK2fTuQzwbr535WDEbGnptx/szWUkYj4X0Tsioj/R8TuiHgiK/tkRDzVcPxSRJRXqL/UkG+e/xRubTTGlaTzvzeyta36+V8++4uRviy3IyKfMM8cyl6T0egfPH12duZw7UGT+jWon9/6/at29Zdq5n/pI60/nwtm7bhVbLhBNz25MLnhwDO3RyP2FRvjT4ppANWVgOHK370RsW8Nxx2pSZ99+bv9S5n++nKt429aNStXtgw0bO3AUkX524iXqud/MerO/3IbkpXXJ8eHYnbm0HjaCw61rOPX366/167+B57/H/5s3OXtYz+e2mjYS25fi9hW0/8jX79djn8kiUiW1mvn117H9T++bPuZZnX9/2rdPmn/H0g+qKTzLvHZ5MLCxcMRA8nJ5u0Ty/vm+bx8Gv/owdbjf1e2T/pKPB0RaSd+JiKejYjnsrYfiIjnI+LgCvH/8uYLH68//s2Vxj/d8vpXd/6X1+vnT+aJS6tN9J07cPN+m4vH6s7/0UpqNNvS+vqX1F00VtvADryEAAAA8NArROW7/4WxpXShMDZWvQe0O7YVZufmF145PffphenqbwRGor+Q3+mq3g/uT/L7nyM1+YmG/JHsvvHXfcOV/NjU3Ox0t4OHHre9MuaTpvGf+quv260DNp2f/EDvajn+a5bT9tzYwsYAW8r7P/SumvHf7jcti74pA4+n1u///VveDmDrtRr/V9exD/BoKRvL0NOMf+hdxXh/KV1YsRzwuDGuoSet/lf860mUB1s/NRTNhWNoc5ox3KKuriTSmdX6di9urPbh9eyVf/2rbZkoPOg4xbo+NhjNZfqiK+fizJ6Od/5y9l35Tjf1+5XHaT5d34QXamuvQwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJvl3wAAAP//l3DWug==")

1.358554455s ago: executing program 2 (id=381):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="180100000100a7d9000000000020b2850000007b00000095", @ANYRES8=0x0], &(0x7f00000001c0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffff7}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001340)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x6}, 0x18)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x808000, 0x4, 0x20300, 0xfc, 0x80000000}, 0x1c)
setsockopt$packet_rx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f0000000100)=@req3={0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x861}, 0x1c)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYRESOCT], 0x48)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000500)='afs_cm_no_server_u\x00'}, 0x18)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=r1, @ANYRES32=r2, @ANYRES64=0x0, @ANYRES64, @ANYRES16=r1, @ANYRES16=0x0, @ANYRES16, @ANYRES32], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xf, &(0x7f0000000340)=ANY=[], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000}, 0x94)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x8041, 0x0)
write$binfmt_aout(r3, &(0x7f0000000240)=ANY=[], 0xff2e)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000300)={0x0, 0x1, 0x0, 0x40000, 0x14, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00'})
r4 = ioctl$TIOCGPTPEER(r3, 0x5441, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000280)='objagg_obj_root_destroy\x00', r0, 0x0, 0xffffffffffffffff}, 0xfffffffffffffef6)
r5 = dup3(r4, r3, 0x80000)
ioctl$TIOCSTI(r5, 0x402c542c, &(0x7f0000000000)=0xff)
readv(r3, &(0x7f0000000580)=[{&(0x7f00000002c0)=""/35, 0x23}, {&(0x7f0000000440)=""/114, 0x72}, {&(0x7f0000001e00)=""/4096, 0x1000}], 0x3)
r6 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r6, 0x0, 0x27, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
writev(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000400)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000200000000000006040000000000f93132", 0x39}], 0x1)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[], 0x28}, 0x1, 0x0, 0x0, 0x28000}, 0x0)
recvfrom(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

1.21274374s ago: executing program 1 (id=382):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x2000000}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r1}, 0x18)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x1e, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))

1.177501793s ago: executing program 1 (id=383):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r1}, 0x9)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x318}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pselect6(0x40, &(0x7f0000000000)={0x7, 0x6, 0x3, 0x200000000000, 0x1, 0xa2, 0x1}, &(0x7f0000000200)={0x1f, 0x0, 0x5, 0x2128, 0x1, 0x0, 0x7, 0x4}, 0x0, 0x0, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f00000004c0)=@security={'security\x00', 0xe, 0x4, 0x378, 0xffffffff, 0x0, 0x388, 0x140, 0xffffffff, 0xffffffff, 0x530, 0x530, 0x530, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@AUDIT={0x28, 'AUDIT\x00', 0x0, {0x1}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @common=@inet=@TCPOPTSTRIP={0x40, 'TCPOPTSTRIP\x00', 0x0, {[0x1, 0x0, 0x8, 0x9, 0xf4, 0x4, 0x7, 0x6]}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00', 0x1, 0x0, {0x6a}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3d8)
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x1a00404, &(0x7f0000000080)={[{@grpquota}, {@nomblk_io_submit}]}, 0x1, 0xbac, &(0x7f00000017c0)="$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")
openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file2\x00', 0x1c9441, 0x0)
quotactl$Q_GETQUOTA(0xffffffff80000700, &(0x7f0000001300)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000001340))

997.101721ms ago: executing program 4 (id=385):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008"], 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001280)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32, @ANYBLOB="000000000058ef766600"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/27], 0x17)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000dc0)={0x6, 0x6, &(0x7f0000000640)=ANY=[@ANYBLOB="1800000000000000000000000000000018200000", @ANYRES32=r1, @ANYBLOB="0000d400000000"], 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r2 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffefffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, 0x0, 0x4000801)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
r4 = creat(&(0x7f00000000c0)='./file0\x00', 0xf4)
r5 = dup2(r4, r4)
ioctl$BLKTRACESETUP(r5, 0x1260, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r3}, &(0x7f0000000180), &(0x7f00000001c0)=r2}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r6}, 0x10)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x3000010, &(0x7f0000000340)={[{@errors_remount}, {@nodioread_nolock}]}, 0x1, 0x512, &(0x7f0000000380)="$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")

916.578339ms ago: executing program 3 (id=386):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x2)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0xc0a85320, &(0x7f00000003c0)={{0x80}, 'port0\x00', 0x0, 0x100804, 0x0, 0xa, 0x0, 0xffffffff, 0x4, 0x0, 0x0, 0x4})
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r0, 0x40a85321, &(0x7f00000004c0)={{0x80}, 'port0\x00', 0x0, 0x121428, 0x7fff, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0xe})

843.211446ms ago: executing program 3 (id=387):
timer_create(0x7, &(0x7f0000000000)={0x0, 0x2d, 0xcbbc48433744eb72}, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180200000020702500000000002020207b1af8ff00000000bfa100000000000007010000dbffffffb702000000000000b70300000000000085000000040000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x23, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0xfffffffffffffffc}, 0x18)
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
syz_usb_disconnect(r1)
syz_usb_connect(0x4, 0x24, &(0x7f00000000c0)=ANY=[], 0x0)
ioctl$EVIOCRMFF(r1, 0x40095505, 0x0)
syz_mount_image$ext4(&(0x7f0000000d80)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x21881e, &(0x7f00000000c0)={[{@mb_optimize_scan}, {@nogrpid}, {@stripe={'stripe', 0x3d, 0x4}}]}, 0x0, 0x50f, &(0x7f0000000140)="$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")
quotactl$Q_GETINFO(0xffffffff80000502, &(0x7f0000000080)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)

591.067111ms ago: executing program 1 (id=388):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(r2, 0x29, 0x37, &(0x7f0000000540)={0x32, 0x1d, '\x00', [@generic={0x7f, 0xb4, "cbaabd19f01985d8156e2301dd19ec06cf02f499e8c6f4124d8be9c928c70eb7afee590a0dfa48cccbc14fc0289039bac9540eb7c1504595edbdc53bae2604926cd71f0c9ff11d57245eeb28e6c57dbeb95701e9c1d9485f7466718732b1d476763d7a6ba79dd6a039e00a0f77d41d3aa474e5835708e6049b1dac6cb0d03a9e923d915f42f958580a1f163f36f5e54f61a52ae6c4d427369ac3d1745647480374e06b5c78f9f389adf16d349efee4bd07325cd5"}, @generic={0x1, 0x20, "b49c981b320bee03c588ffa2d062032509c0f7c900509194660d1287f9f05d32"}, @generic={0x9c, 0xe, "5bcc0f69a260322d1fd980e9a455"}]}, 0xf0)
listen(r2, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x6, 0x1, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)

584.929392ms ago: executing program 1 (id=389):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x4000001)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x20}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
add_key$fscrypt_v1(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)
r3 = socket$unix(0x1, 0x1, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r4, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e)
listen(r4, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
connect$unix(r5, 0x0, 0x0)
connect$unix(r3, 0x0, 0x0)
connect$unix(r3, &(0x7f0000000240)=@file={0x1, './file0\x00'}, 0x6e)
listen(r4, 0x1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40))
socket$nl_rdma(0x10, 0x3, 0x14)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000800)={'syztnl1\x00', &(0x7f0000000780)={'syztnl2\x00', 0x0, 0x71, 0x52, 0x2, 0x83, 0x79, @mcast1, @dev={0xfe, 0x80, '\x00', 0xd}, 0x80, 0x40, 0x1, 0xffff}})

519.064428ms ago: executing program 0 (id=390):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(r2, 0x29, 0x37, &(0x7f0000000540)={0x32, 0x1d, '\x00', [@generic={0x7f, 0xb4, "cbaabd19f01985d8156e2301dd19ec06cf02f499e8c6f4124d8be9c928c70eb7afee590a0dfa48cccbc14fc0289039bac9540eb7c1504595edbdc53bae2604926cd71f0c9ff11d57245eeb28e6c57dbeb95701e9c1d9485f7466718732b1d476763d7a6ba79dd6a039e00a0f77d41d3aa474e5835708e6049b1dac6cb0d03a9e923d915f42f958580a1f163f36f5e54f61a52ae6c4d427369ac3d1745647480374e06b5c78f9f389adf16d349efee4bd07325cd5"}, @generic={0x1, 0x20, "b49c981b320bee03c588ffa2d062032509c0f7c900509194660d1287f9f05d32"}, @generic={0x9c, 0xe, "5bcc0f69a260322d1fd980e9a455"}]}, 0xf0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x6, 0x1, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)

499.34777ms ago: executing program 4 (id=391):
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000440)={0xffffffffffffffff, 0x20, &(0x7f0000000400)={&(0x7f0000000140)=""/126, 0x7e, <r0=>0x0, &(0x7f0000000300)=""/211, 0xd3}}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x7, &(0x7f0000000080)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x800, 0xfffffffffffffea8, 0x0, 0x0, 0x23, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000002c0)={'macvlan0\x00'})
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="18002000000000000000000000000000970063a97becb55820fe6faf124eb0daa4bb0000000000008186526833d970b0dc476e9d95be6781a8a7139ec62a1089c57e61f9e462ceb48f6ecaf2329ba3f363aa574fc807718076c28f375b0f4afaed28817053496dfa6cd702e72ed074cc4ea8a0acfaeb0cd85bc03ecc8e5a58cc"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99ee}, 0x94)
r4 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000002380)={r3, 0x0, 0x2d, 0x0, @val=@netfilter={0x2, 0x4, 0x600, 0x1}}, 0x20)
bpf$LINK_DETACH(0x22, &(0x7f00000001c0)=r4, 0x4)

477.645562ms ago: executing program 2 (id=392):
bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
unshare(0x24020400)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="05000000000000007111ae00000000008510000002000000850000000500000095000000000000009500a50500000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000340)={r0, 0xffffffffffffffe3, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x55, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400e9, 0x0, 0xffffffffffffffd8, 0x0, 0x0, 0x0, 0x0, 0xc2, 0x8, 0x0, 0x0}}, 0x10)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x318}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
poll(&(0x7f00000002c0)=[{r1, 0x2}], 0x1, 0xfa)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000380)={0x0, &(0x7f00000001c0)})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xb, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='kmem_cache_free\x00', r2}, 0x10)
setresgid(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
pipe2(&(0x7f0000000040), 0x80000)
r3 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="600000000101010200000000000000000a0000060c0019800800020005000000380002802c00018014000300fe8000000000000000000000000000bb14000400fe88000000000000000000000000000106000340000000000600124000020000"], 0x60}}, 0x0)
r5 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r5, 0x0)
write(r3, &(0x7f0000000300)="2cd889f035a53e", 0x7)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x54, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r6, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f0000000040)=[0x6], 0x0, 0x0, 0x1}}, 0x40)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB="210000000000000000000000000010000004"], 0x48)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x3000003, 0x13, r7, 0x0)
syz_clone(0x26801000, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x120)
lseek(r8, 0xfffffffffffff96d, 0x3)

432.887697ms ago: executing program 4 (id=393):
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x17)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000dc0)={0x6, 0x6, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffefffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
r2 = creat(0x0, 0xf4)
r3 = dup2(r2, r2)
ioctl$BLKTRACESETUP(r3, 0x1260, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x3000010, &(0x7f0000000340)={[{@errors_remount}, {@nodioread_nolock}]}, 0x1, 0x512, &(0x7f0000000380)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x38, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xc, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)

432.206517ms ago: executing program 0 (id=394):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="190000000400000008000000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000005c0), 0x2, 0x0)
r3 = openat$selinux_policy(0xffffff9c, &(0x7f0000000400), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r3, 0x0)
write$selinux_load(r2, &(0x7f0000000000)=ANY=[], 0x190da)

322.799568ms ago: executing program 0 (id=395):
socket$key(0xf, 0x3, 0x2)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000240)=@o_path={0x0, 0x0, 0x4018}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x14, 0x0, &(0x7f0000000640)="b9ff03076844268cb89e14f088a847e088641100", 0x0, 0x11, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x50)
setresgid(0xee00, 0xee01, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32, @ANYBLOB="0000000000000008b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = mq_open(&(0x7f0000000180)='\r\x00elinu\xef\xe3elinux\x00\x96\xf6\x92\n#*\xac\x05\xce\xf8D\\\x9a\xe6[]L+\xf6\v\xe8\xf2\xd3\b\x15\n\xb8F!Q9o\x1f#\xbdt\r\xfb\"\x18%\xfdM\xaf_t\xd2\xdcJ\x10\a\xbab\x1a\xdf\xb1\xbdU\xd7Lo\xe7\xac\x81\x10k\xce-\xf5@\xbb\x9d;\xe8\xf6\xffQ\x04\xaai\x92k\x1b;\xddM\xa2\xe1-\x0e\xd8\xde\x00\xff\x18\xdd\bL\xfb\xa2.\xb6{\xb5\x85#\x88\xdc\xf0\x0f\x05\xf1\xc4 \xdeV\x80q\xf7\x04\xf5\x85T\x1f\xc2S]*\xc9lw\xd3J\xc5\xe8\x02\xcb\xbbAHxr\xac\xb77F\xdf\x1c\xcb\xd4\xce\x88L\xf1\xf9[\x98\xd4+pTx\x95\xb5\x1b]x\x1a\x95\xe1c6\xe7`83\xb7n#\xe0\xc1_\xec\xba\xde\a\x8b\xc5\x86woo\xbc\x1c\xa3r\x82\xf3enq-\x90/\xed\xff\xad+\x03\x10\t\xda\xfd\xa2\xd0\xef4\n%\xf1\xd8', 0x6e93ebbbcc0884f2, 0x0, &(0x7f0000000040)={0x1294, 0x2, 0x5})
mq_getsetattr(r2, &(0x7f0000000000)={0x800, 0x4, 0x9, 0x9a}, 0x0)
mq_timedreceive(r2, &(0x7f0000000340)=""/195, 0xc3, 0x0, 0x0)
mq_timedreceive(r2, &(0x7f0000000080)=""/87, 0x57, 0x1000002, 0x0)

252.787344ms ago: executing program 0 (id=396):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000007d00000085"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1802000000000000040000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c3000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback=0x86b20727ab209fad, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020000088500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
fcntl$setlease(r1, 0x400, 0x0)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x8400, &(0x7f00000008c0)={[{@uid}, {@iocharset={'iocharset', 0x3d, 'macturkish'}}, {@showassoc}, {@unhide}, {@nojoliet}, {@uid}, {@dmode={'dmode', 0x3d, 0x2}}, {@iocharset={'iocharset', 0x3d, 'cp950'}}]}, 0x0, 0x688, &(0x7f0000000100)="$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")
r3 = openat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
getdents64(r3, &(0x7f0000000000)=""/47, 0x2f)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6e}}, {@user_xattr}, {@lazytime}, {@quota}]}, 0x3, 0x441, &(0x7f0000000440)="$eJzs3MtvG0UYAPBv10lLXyRUpdAHECiIikfSpKX0wAUEEgeQkOBQjiFJq1K3QXWQaBRBQKgcUSXuiCMSfwEHBBcEnJC4wh1VqlAuLZyM1vYmjmuncepkC/79pI1ndseZ+bw79sxOnAD61kj2I4nYHRG/R8RQPbu6wEj94ebSwtTfSwtTSVSrb/6V1MrdWFqYyovmz9uVZwYi0k+TONSm3srl+fOT5fLMpUZ+bO7Ce2OVy/PPnrsweXbm7MzFiVOnThwff/7kxHM9iTOL68bBD2cPH3j17auvT52++s7P3yR5/C1x9MjIWgefqFZ7XF2x9jSlk4ECG0JXSvVuGoO1/j8UpVg5eUPxyieFNg7YVNVqtbo/4rsOhxerwP9YEkW3AChG/kGfzX/zbetGH8W7/mJ9ApTFfbOx1Y8MRNooM9gyv+2lkYg4vfjPl9kWm3MfAgBgle+z8c8z7cZ/aexvKndvYw1lOCLui4i9EXEyIvZFxP0RtbIPRMSDXdbfukhy6/gnvdb+mdu7rKm9bPz3QmNta/X4Lx/9xXCpkdtTi38wOXOuPHOs8ZocjcHtWX58jTp+ePm3zzsdax7/ZVtWf/a4sjqUXhtoCXV6cm7yjoJucv3jiIMD7eJPllcCkog4EBEHN1jHuae+PtzpWKf41/WLe7DOVP0q4sn6+V+Mlvhzydrrk2P3RHnm2Fh+Vdzql1+vvNGp/juKvwey87+z7fW/HP9w0rxeW+m+jit/fNZxTnP7+Ntf/9uSt1bt+2Bybu7SeMS25LV6o5v3T7SUm1gpn8V/9Ej7/r83Vl6JQxGRXcQPRcTDEfFIo+2PRsRjEXFkjfh/eunxdzce/+bK4p/u6vyvJLZF6572idL5H79dVelwN/Fn5/9ELXW0sWc973/radfGrmYAAAD470kjYnck6ehyOk1HR+t/w78vdqbl2crc02dm3784Xf+OwHAMpvmdrqGm+6HjjWl9np9oyR9v3Df+orSjlh+dmi1PFx089LldHfp/5s9S0a0DNp3va0H/0v+hf+n/0L/0f+hfbfr/jiLaAWy9dp//HxXQDmDrtfR/y37QR8z/oX/p/9C/9H/oS5UdcfsvyUsUncj/GcPd0p7K5flI74pmSGxSouA3JgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgB75NwAA//9wCOUr")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
socket$key(0xf, 0x3, 0x2)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext={0x95, 0x3}, 0x100002, 0x0, 0xffffffff, 0x3, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_usb_connect(0x6, 0x0, 0x0, 0x0)
socket(0x10, 0x2, 0x0)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x4040014)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r7}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)

172.313193ms ago: executing program 2 (id=397):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f60000008500000043000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r1}, 0x10)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)

146.283755ms ago: executing program 4 (id=398):
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x7}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000600)={0x2, 0x4e23, 0x0, @private0, 0x4}, 0x1c)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20, 0x1, @mcast1, 0x32fb}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e230e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac710aa7d0000ffffffffffffffffffe7ee00000000000000000200000000", 0x58}], 0x1)
r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
listen(r2, 0x0)
ioctl$SIOCX25SDTEFACILITIES(r2, 0x89eb, &(0x7f0000000080)={0x4, 0x4, 0x4, 0x84, 0x17, 0x5b, 0x14, "ad58cae9ffed000000502865f60400"})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="440000001000010400"/20, @ANYRES32=0x0, @ANYRES64=r3], 0x44}}, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x2a, &(0x7f00000001c0)={0x0, {{0x2, 0x4e22, @remote}}}, 0x88)

133.320906ms ago: executing program 2 (id=399):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(r2, 0x29, 0x37, &(0x7f0000000540)={0x32, 0x1d, '\x00', [@generic={0x7f, 0xb4, "cbaabd19f01985d8156e2301dd19ec06cf02f499e8c6f4124d8be9c928c70eb7afee590a0dfa48cccbc14fc0289039bac9540eb7c1504595edbdc53bae2604926cd71f0c9ff11d57245eeb28e6c57dbeb95701e9c1d9485f7466718732b1d476763d7a6ba79dd6a039e00a0f77d41d3aa474e5835708e6049b1dac6cb0d03a9e923d915f42f958580a1f163f36f5e54f61a52ae6c4d427369ac3d1745647480374e06b5c78f9f389adf16d349efee4bd07325cd5"}, @generic={0x1, 0x20, "b49c981b320bee03c588ffa2d062032509c0f7c900509194660d1287f9f05d32"}, @generic={0x9c, 0xe, "5bcc0f69a260322d1fd980e9a455"}]}, 0xf0)
listen(r2, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x6, 0x1, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)

114.515788ms ago: executing program 2 (id=400):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000140), r0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x18)
sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000003000000000000040000000800020005"], 0x24}}, 0x0)

86.651441ms ago: executing program 4 (id=401):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x23, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99ee}, 0x94)
r3 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000002380)={r2, 0x0, 0x2d, 0x0, @val=@netfilter={0x2, 0x4, 0x600, 0x1}}, 0x20)
bpf$LINK_DETACH(0x22, &(0x7f00000001c0)=r3, 0x4)

85.674311ms ago: executing program 4 (id=402):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008"], 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001280)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32, @ANYBLOB="000000000058ef766600"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/27], 0x17)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000dc0)={0x6, 0x6, &(0x7f0000000640)=ANY=[@ANYBLOB="1800000000000000000000000000000018200000", @ANYRES32=r1, @ANYBLOB="0000d400000000"], 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r2 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffefffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, 0x0, 0x4000801)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
r4 = creat(&(0x7f00000000c0)='./file0\x00', 0xf4)
r5 = dup2(r4, r4)
ioctl$BLKTRACESETUP(r5, 0x1260, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r3}, &(0x7f0000000180), &(0x7f00000001c0)=r2}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r6}, 0x10)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x3000010, &(0x7f0000000340)={[{@errors_remount}, {@nodioread_nolock}]}, 0x1, 0x512, &(0x7f0000000380)="$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")

64.695823ms ago: executing program 2 (id=403):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="180100000100a7d9000000000020b2850000007b00000095", @ANYRES8=0x0], &(0x7f00000001c0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffff7}, 0x94)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r1, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x808000, 0x4, 0x20300, 0xfc, 0x80000000}, 0x1c)
setsockopt$packet_rx_ring(r1, 0x107, 0x5, &(0x7f0000000100)=@req3={0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x861}, 0x1c)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYRESOCT], 0x48)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000500)='afs_cm_no_server_u\x00'}, 0x18)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=r2, @ANYRES32=r3, @ANYRES64=0x0, @ANYRES64, @ANYRES16=r2, @ANYRES16=0x0, @ANYRES16, @ANYRES32], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xf, &(0x7f0000000340)=ANY=[], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000}, 0x94)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x8041, 0x0)
write$binfmt_aout(r4, &(0x7f0000000240)=ANY=[], 0xff2e)
ioctl$TCSETS(r4, 0x40045431, &(0x7f0000000300)={0x0, 0x1, 0x0, 0x40000, 0x14, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00'})
r5 = ioctl$TIOCGPTPEER(r4, 0x5441, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000280)='objagg_obj_root_destroy\x00', r0, 0x0, 0xffffffffffffffff}, 0xfffffffffffffef6)
r6 = dup3(r5, r4, 0x80000)
ioctl$TIOCSTI(r6, 0x402c542c, &(0x7f0000000000)=0xff)
readv(r4, &(0x7f0000000580)=[{&(0x7f00000002c0)=""/35, 0x23}, {&(0x7f0000000440)=""/114, 0x72}, {&(0x7f0000001e00)=""/4096, 0x1000}], 0x3)
r7 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r7, 0x0, 0x27, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
writev(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000400)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000200000000000006040000000000f93132", 0x39}], 0x1)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[], 0x28}, 0x1, 0x0, 0x0, 0x28000}, 0x0)
recvfrom(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

0s ago: executing program 3 (id=404):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0xfffffffffffffdef, 0x0, 0x0, 0x6d, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r1}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'ip6_vti0\x00'})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="9feb01001800000000000000000000000000000009000060d58d05d4e900000000000000006100"], 0x0, 0x21}, 0x28)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000340)={r2, 0x58, &(0x7f00000002c0)}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0xc, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x39, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r4, &(0x7f0000000080)={0x18, 0x0, {0x3, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xc}, 'erspan0\x00'}}, 0x1e)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_MTU={0x8, 0x4, 0x600}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000140), &(0x7f00000001c0)='system_u:object_r:fuse_device_t:s0\x00', 0x23, 0x3)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000880)=@newlink={0x30, 0x10, 0x439, 0x70bd2a, 0xffffffea, {0x0, 0x0, 0xe403, 0x0, 0x3, 0x610c3}, [@IFLA_LINKINFO={0x10, 0x12, 0x0, 0x1, @sit={{0x8}, {0x4}}}]}, 0x30}, 0x1, 0x0, 0x0, 0x8000}, 0x4008040)
r6 = socket(0x2, 0x2, 0x1)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r7=>0x0})
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {0xe, 0x1}, {0x0, 0x3}}}, 0x24}}, 0x800)
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x200000, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00'}, 0x10)
r9 = gettid()
rt_sigqueueinfo(r9, 0x21, &(0x7f0000002d00)={0x0, 0x0, 0xffffffff})
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000200)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095", @ANYRES16=r1], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r10}, 0x10)
socket$kcm(0x10, 0x2, 0x0)

kernel console output (not intermixed with test programs):

[   34.265314][   T52] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   34.302883][ T3536] loop1: detected capacity change from 0 to 128
[   34.311897][ T3531] loop0: detected capacity change from 0 to 128
[   34.318402][   T52] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   34.360481][ T3300] udevd[3300]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory
[   34.374719][ T3535] udevd[3535]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory
[   34.386474][ T3537] udevd[3537]: inotify_add_watch(7, /dev/loop0p6, 10) failed: No such file or directory
[   34.394223][ T3536] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[   34.404194][ T3536] FAT-fs (loop1): Filesystem has been set read-only
[   34.407914][ T3303] udevd[3303]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[   34.419753][ T3530] SELinux: failed to load policy
[   34.435708][ T3526] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   34.446135][ T3526] EXT4-fs (loop2): orphan cleanup on readonly fs
[   34.463203][ T3536] syz.1.14: attempt to access beyond end of device
[   34.463203][ T3536] loop1: rw=524288, sector=2065, nr_sectors = 8 limit=128
[   34.511349][ T3536] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[   34.519283][ T3536] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[   34.527714][ T3536] syz.1.14: attempt to access beyond end of device
[   34.527714][ T3536] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[   34.541182][ T3536] syz.1.14: attempt to access beyond end of device
[   34.541182][ T3536] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[   34.555251][ T3536] syz.1.14: attempt to access beyond end of device
[   34.555251][ T3536] loop1: rw=524288, sector=2065, nr_sectors = 8 limit=128
[   34.568894][ T3546] syz.1.14: attempt to access beyond end of device
[   34.568894][ T3546] loop1: rw=0, sector=2065, nr_sectors = 1 limit=128
[   34.582047][ T3546] Buffer I/O error on dev loop1, logical block 2065, async page read
[   34.592607][ T3526] EXT4-fs error (device loop2): ext4_do_update_inode:5624: inode #16: comm syz.2.11: corrupted inode contents
[   34.593230][ T3546] syz.1.14: attempt to access beyond end of device
[   34.593230][ T3546] loop1: rw=0, sector=2066, nr_sectors = 1 limit=128
[   34.617954][ T3546] Buffer I/O error on dev loop1, logical block 2066, async page read
[   34.627193][ T3546] syz.1.14: attempt to access beyond end of device
[   34.627193][ T3546] loop1: rw=0, sector=2067, nr_sectors = 1 limit=128
[   34.640343][ T3546] Buffer I/O error on dev loop1, logical block 2067, async page read
[   34.645339][ T3526] EXT4-fs (loop2): Remounting filesystem read-only
[   34.682070][ T3546] syz.1.14: attempt to access beyond end of device
[   34.682070][ T3546] loop1: rw=0, sector=2068, nr_sectors = 1 limit=128
[   34.686307][ T3526] EXT4-fs (loop2): 1 truncate cleaned up
[   34.695302][ T3546] Buffer I/O error on dev loop1, logical block 2068, async page read
[   34.702616][   T12] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   34.702646][   T12] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   34.702688][   T12] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started
[   34.713858][ T3531] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   34.736776][ T3526] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   34.743078][ T3531] FAT-fs (loop0): Filesystem has been set read-only
[   34.761091][ T3546] syz.1.14: attempt to access beyond end of device
[   34.761091][ T3546] loop1: rw=0, sector=2069, nr_sectors = 1 limit=128
[   34.784985][ T3546] Buffer I/O error on dev loop1, logical block 2069, async page read
[   34.789651][ T3526] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   34.809608][ T3531] syz.0.12: attempt to access beyond end of device
[   34.809608][ T3531] loop0: rw=524288, sector=2065, nr_sectors = 8 limit=128
[   34.810977][ T3553] capability: warning: `syz.3.16' uses deprecated v2 capabilities in a way that may be insecure
[   34.823452][ T3546] Buffer I/O error on dev loop1, logical block 2070, async page read
[   34.842913][ T3546] Buffer I/O error on dev loop1, logical block 2071, async page read
[   34.854449][ T3546] Buffer I/O error on dev loop1, logical block 2072, async page read
[   34.872678][ T3536] Buffer I/O error on dev loop1, logical block 2065, async page read
[   34.895284][ T3536] Buffer I/O error on dev loop1, logical block 2066, async page read
[   34.917993][ T3555] loop3: detected capacity change from 0 to 2048
[   34.934837][ T3531] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   34.942731][ T3531] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   35.035811][ T3559] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   35.052041][ T3562] loop4: detected capacity change from 0 to 128
[   35.063863][ T3559] netlink: 224 bytes leftover after parsing attributes in process `syz.2.19'.
[   35.083113][ T3559] Zero length message leads to an empty skb
[   35.257925][ T3565] netlink: 8 bytes leftover after parsing attributes in process `syz.0.21'.
[   35.293643][ T3562] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[   35.301593][ T3562] FAT-fs (loop4): Filesystem has been set read-only
[   35.323589][ T3568] loop2: detected capacity change from 0 to 128
[   35.378796][ T3562] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[   35.386739][ T3562] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[   35.415234][ T3575] loop0: detected capacity change from 0 to 128
[   35.493048][ T3568] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[   35.500953][ T3568] FAT-fs (loop2): Filesystem has been set read-only
[   35.523899][ T3579] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   35.531202][ T3577] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[   35.531759][ T3579] FAT-fs (loop0): Filesystem has been set read-only
[   35.555675][ T3577] SELinux: failed to load policy
[   35.590185][ T3568] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[   35.598138][ T3568] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[   35.676907][ T3566] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[   35.687759][ T3583] loop1: detected capacity change from 0 to 1024
[   35.710264][ T3583] =======================================================
[   35.710264][ T3583] WARNING: The mand mount option has been deprecated and
[   35.710264][ T3583]          and is ignored by this kernel. Remove the mand
[   35.710264][ T3583]          option from the mount to silence this warning.
[   35.710264][ T3583] =======================================================
[   35.770778][ T3566] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[   35.778890][ T3566] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[   35.791838][ T3579] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   35.799874][ T3579] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   35.829003][ T3570] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   35.837210][ T3583] EXT4-fs: inline encryption not supported
[   35.846436][ T3583] EXT4-fs warning (device loop1): ext4_multi_mount_protect:292: Invalid MMP block in superblock
[   35.893525][ T3570] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   35.901496][ T3570] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   35.971115][ T3590] netlink: 'syz.4.26': attribute type 10 has an invalid length.
[   35.980775][ T3589] netlink: 'syz.1.27': attribute type 10 has an invalid length.
[   35.990329][ T3589] bond0: (slave bridge0): Enslaving as an active interface with an up link
[   36.054347][ T3595] netlink: 'syz.4.29': attribute type 21 has an invalid length.
[   36.062067][ T3595] netlink: 164 bytes leftover after parsing attributes in process `syz.4.29'.
[   36.239050][ T3609] SELinux: failed to load policy
[   36.412362][ T3611] loop2: detected capacity change from 0 to 512
[   36.446454][ T3611] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   36.495724][ T3611] ext4 filesystem being mounted at /7/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   36.513814][ T3620] loop1: detected capacity change from 0 to 512
[   36.551681][ T3620] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   36.580874][ T3620] ext4 filesystem being mounted at /9/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   36.689920][ T3647] loop3: detected capacity change from 0 to 512
[   36.736871][ T3647] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   36.752926][ T3647] EXT4-fs (loop3): orphan cleanup on readonly fs
[   36.779603][ T3650] loop0: detected capacity change from 0 to 512
[   36.805896][ T3647] EXT4-fs error (device loop3): ext4_do_update_inode:5624: inode #16: comm syz.3.34: corrupted inode contents
[   36.822940][ T3647] EXT4-fs (loop3): Remounting filesystem read-only
[   36.834175][ T3647] EXT4-fs (loop3): 1 truncate cleaned up
[   36.841127][ T1316] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   36.851768][ T1316] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   36.862517][ T1316] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started
[   36.887989][ T3647] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   36.889024][ T3650] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   36.914667][ T3650] EXT4-fs (loop0): orphan cleanup on readonly fs
[   36.937895][ T3647] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   36.967178][ T3650] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #16: comm syz.0.35: corrupted inode contents
[   36.993473][ T3650] EXT4-fs (loop0): Remounting filesystem read-only
[   37.015895][ T3650] EXT4-fs (loop0): 1 truncate cleaned up
[   37.022664][ T3448] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   37.033282][ T3448] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   37.043969][ T3448] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started
[   37.079022][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   37.079234][ T3682] netlink: 24 bytes leftover after parsing attributes in process `syz.3.36'.
[   37.105615][ T3650] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   37.126324][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   37.190535][ T3694] xt_hashlimit: max too large, truncated to 1048576
[   37.223697][ T3691] netlink: 348 bytes leftover after parsing attributes in process `syz.1.38'.
[   37.267890][ T3650] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   37.285843][ T3701] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   37.408989][ T3721] process 'syz.0.44' launched './file0' with NULL argv: empty string added
[   37.426033][ T3721] loop0: detected capacity change from 0 to 1024
[   37.436453][ T3721] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   37.447483][ T3721] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   37.458716][ T3721] JBD2: no valid journal superblock found
[   37.464530][ T3721] EXT4-fs (loop0): Could not load journal inode
[   37.480377][   T52] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   37.529011][   T52] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   37.606878][   T52] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   37.657186][   T52] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   37.793063][   T52] bridge_slave_1: left allmulticast mode
[   37.798911][   T52] bridge_slave_1: left promiscuous mode
[   37.804696][   T52] bridge0: port 2(bridge_slave_1) entered disabled state
[   37.826648][   T52] bridge_slave_0: left allmulticast mode
[   37.832371][   T52] bridge_slave_0: left promiscuous mode
[   37.838177][   T52] bridge0: port 1(bridge_slave_0) entered disabled state
[   38.010228][   T52] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   38.024696][   T52] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   38.035687][   T52] bond0 (unregistering): Released all slaves
[   38.101166][   T52] hsr_slave_0: left promiscuous mode
[   38.123303][   T52] hsr_slave_1: left promiscuous mode
[   38.141854][   T52] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   38.149345][   T52] batman_adv: batadv0: Removing interface: batadv_slave_0
[   38.161276][   T52] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   38.168945][   T52] batman_adv: batadv0: Removing interface: batadv_slave_1
[   38.179576][ T3781] loop1: detected capacity change from 0 to 512
[   38.195468][ T3781] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   38.213073][   T52] veth1_macvtap: left promiscuous mode
[   38.223178][ T3781] ext4 filesystem being mounted at /11/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   38.235485][   T52] veth0_macvtap: left promiscuous mode
[   38.245588][   T52] veth1_vlan: left promiscuous mode
[   38.252110][   T52] veth0_vlan: left promiscuous mode
[   38.359030][   T52] team0 (unregistering): Port device team_slave_1 removed
[   38.369383][   T52] team0 (unregistering): Port device team_slave_0 removed
[   38.412117][ T3730] chnl_net:caif_netlink_parms(): no params data found
[   38.493166][ T3730] bridge0: port 1(bridge_slave_0) entered blocking state
[   38.501045][ T3730] bridge0: port 1(bridge_slave_0) entered disabled state
[   38.528509][ T3730] bridge_slave_0: entered allmulticast mode
[   38.539288][ T3730] bridge_slave_0: entered promiscuous mode
[   38.554570][ T3730] bridge0: port 2(bridge_slave_1) entered blocking state
[   38.561831][ T3730] bridge0: port 2(bridge_slave_1) entered disabled state
[   38.578005][ T3730] bridge_slave_1: entered allmulticast mode
[   38.585698][ T3730] bridge_slave_1: entered promiscuous mode
[   38.605379][ T3730] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   38.616155][ T3730] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   38.640211][ T3730] team0: Port device team_slave_0 added
[   38.647008][ T3730] team0: Port device team_slave_1 added
[   38.665556][ T3730] batman_adv: batadv0: Adding interface: batadv_slave_0
[   38.672657][ T3730] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   38.698682][ T3730] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   38.714791][ T3730] batman_adv: batadv0: Adding interface: batadv_slave_1
[   38.721887][ T3730] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   38.747850][ T3730] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   38.799407][ T3730] hsr_slave_0: entered promiscuous mode
[   38.805558][ T3730] hsr_slave_1: entered promiscuous mode
[   38.821962][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.822903][ T3730] debugfs: 'hsr0' already exists in 'hsr'
[   38.836843][ T3730] Cannot create hsr debugfs directory
[   38.882807][   T29] kauditd_printk_skb: 320 callbacks suppressed
[   38.882825][   T29] audit: type=1400 audit(1760102902.794:415): avc:  denied  { mount } for  pid=3829 comm="syz.0.50" name="/" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[   38.943972][ T3831] SELinux:  Context system_u: is not valid (left unmapped).
[   38.975971][   T29] audit: type=1400 audit(1760102902.834:416): avc:  denied  { unmount } for  pid=3315 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[   38.996228][   T29] audit: type=1400 audit(1760102902.864:417): avc:  denied  { relabelto } for  pid=3828 comm="syz.1.49" name="memfd:" dev="hugetlbfs" ino=6200 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:"
[   39.020952][   T29] audit: type=1400 audit(1760102902.864:418): avc:  denied  { associate } for  pid=3828 comm="syz.1.49" name="memfd:" dev="hugetlbfs" ino=6200 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1 srawcon="system_u:"
[   39.046924][   T29] audit: type=1400 audit(1760102902.874:419): avc:  denied  { create } for  pid=3828 comm="syz.1.49" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[   39.066593][   T29] audit: type=1400 audit(1760102902.884:420): avc:  denied  { sys_admin } for  pid=3828 comm="syz.1.49" capability=21  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1
[   39.087404][   T29] audit: type=1400 audit(1760102902.894:421): avc:  denied  { unmount } for  pid=3315 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   39.234304][ T3847] loop0: detected capacity change from 0 to 512
[   39.254375][ T3852] loop4: detected capacity change from 0 to 128
[   39.348751][ T3847] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   39.367942][ T3847] EXT4-fs (loop0): orphan cleanup on readonly fs
[   39.375512][ T3861] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[   39.375562][ T3861] FAT-fs (loop4): Filesystem has been set read-only
[   39.375612][ T3861] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[   39.375646][ T3861] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[   39.438388][ T3861] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[   39.456606][ T3847] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #16: comm syz.0.55: corrupted inode contents
[   39.479001][ T3861] bio_check_eod: 59857 callbacks suppressed
[   39.479019][ T3861] syz.4.56: attempt to access beyond end of device
[   39.479019][ T3861] loop4: rw=524288, sector=2065, nr_sectors = 8 limit=128
[   39.503428][ T3861] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[   39.511312][ T3861] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[   39.524304][ T3847] EXT4-fs (loop0): Remounting filesystem read-only
[   39.524664][ T3864] syz.4.56: attempt to access beyond end of device
[   39.524664][ T3864] loop4: rw=0, sector=2065, nr_sectors = 1 limit=128
[   39.544901][ T3847] EXT4-fs (loop0): 1 truncate cleaned up
[   39.563053][ T2738] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   39.573733][ T2738] Quota error (device loop0): write_blk: dquota write failed
[   39.581138][ T2738] Quota error (device loop0): remove_free_dqentry: Can't write block (5) with free entries
[   39.591186][ T2738] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   39.601887][ T2738] Quota error (device loop0): write_blk: dquota write failed
[   39.610713][ T3864] syz.4.56: attempt to access beyond end of device
[   39.610713][ T3864] loop4: rw=0, sector=2066, nr_sectors = 1 limit=128
[   39.624172][ T3864] buffer_io_error: 59543 callbacks suppressed
[   39.624190][ T3864] Buffer I/O error on dev loop4, logical block 2066, async page read
[   39.650185][ T2738] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started
[   39.660501][ T3864] syz.4.56: attempt to access beyond end of device
[   39.660501][ T3864] loop4: rw=0, sector=2067, nr_sectors = 1 limit=128
[   39.673608][ T3864] Buffer I/O error on dev loop4, logical block 2067, async page read
[   39.674485][ T3730] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   39.682560][ T3864] syz.4.56: attempt to access beyond end of device
[   39.682560][ T3864] loop4: rw=0, sector=2068, nr_sectors = 1 limit=128
[   39.699968][ T3847] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   39.701548][ T3864] Buffer I/O error on dev loop4, logical block 2068, async page read
[   39.702209][ T3884] netlink: 'syz.2.59': attribute type 10 has an invalid length.
[   39.732139][ T3864] syz.4.56: attempt to access beyond end of device
[   39.732139][ T3864] loop4: rw=0, sector=2069, nr_sectors = 1 limit=128
[   39.736494][ T3884] team0: Port device dummy0 added
[   39.745300][ T3864] Buffer I/O error on dev loop4, logical block 2069, async page read
[   39.752316][ T3730] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   39.761696][ T3847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.765526][ T3864] syz.4.56: attempt to access beyond end of device
[   39.765526][ T3864] loop4: rw=0, sector=2070, nr_sectors = 1 limit=128
[   39.765558][ T3864] Buffer I/O error on dev loop4, logical block 2070, async page read
[   39.765580][ T3864] syz.4.56: attempt to access beyond end of device
[   39.765580][ T3864] loop4: rw=0, sector=2071, nr_sectors = 1 limit=128
[   39.765683][ T3864] Buffer I/O error on dev loop4, logical block 2071, async page read
[   39.765705][ T3864] syz.4.56: attempt to access beyond end of device
[   39.765705][ T3864] loop4: rw=0, sector=2072, nr_sectors = 1 limit=128
[   39.765733][ T3864] Buffer I/O error on dev loop4, logical block 2072, async page read
[   39.765789][ T3864] syz.4.56: attempt to access beyond end of device
[   39.765789][ T3864] loop4: rw=0, sector=2065, nr_sectors = 1 limit=128
[   39.765818][ T3864] Buffer I/O error on dev loop4, logical block 2065, async page read
[   39.765841][ T3864] Buffer I/O error on dev loop4, logical block 2066, async page read
[   39.765863][ T3864] Buffer I/O error on dev loop4, logical block 2067, async page read
[   39.893753][ T3883] netlink: 'syz.2.59': attribute type 10 has an invalid length.
[   39.896311][ T3730] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   39.911141][ T3882] loop1: detected capacity change from 0 to 512
[   39.917973][ T3882] /dev/loop1: Can't open blockdev
[   39.935256][ T3883] team0: Failed to send port change of device dummy0 via netlink (err -105)
[   39.976681][ T3883] team0: Port device dummy0 removed
[   39.984900][ T3883] bond0: (slave dummy0): Enslaving as an active interface with an up link
[   40.034235][ T3730] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   40.092199][ T3730] 8021q: adding VLAN 0 to HW filter on device bond0
[   40.120133][ T3730] 8021q: adding VLAN 0 to HW filter on device team0
[   40.133542][ T1316] bridge0: port 1(bridge_slave_0) entered blocking state
[   40.140802][ T1316] bridge0: port 1(bridge_slave_0) entered forwarding state
[   40.177417][ T1316] bridge0: port 2(bridge_slave_1) entered blocking state
[   40.184571][ T1316] bridge0: port 2(bridge_slave_1) entered forwarding state
[   40.219009][ T3730] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   40.229491][ T3730] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   40.253210][ T3899] loop0: detected capacity change from 0 to 512
[   40.283114][ T3899] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.310918][ T3899] ext4 filesystem being mounted at /11/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   40.380219][ T3730] 8021q: adding VLAN 0 to HW filter on device batadv0
[   40.497462][ T3730] veth0_vlan: entered promiscuous mode
[   40.508487][ T3730] veth1_vlan: entered promiscuous mode
[   40.541481][ T3730] veth0_macvtap: entered promiscuous mode
[   40.549694][ T3730] veth1_macvtap: entered promiscuous mode
[   40.562403][ T3730] batman_adv: batadv0: Interface activated: batadv_slave_0
[   40.577310][ T3730] batman_adv: batadv0: Interface activated: batadv_slave_1
[   40.588173][   T52] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   40.597287][   T52] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   40.610146][   T52] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   40.633946][   T31] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   40.696201][ T3971] SELinux: failed to load policy
[   40.736015][ T3978] loop1: detected capacity change from 0 to 512
[   40.736093][ T3980] loop3: detected capacity change from 0 to 512
[   40.749619][ T3980] ext2: Unknown parameter 'smackfsroot'
[   40.802154][ T3982] netlink: 48 bytes leftover after parsing attributes in process `syz.3.70'.
[   40.811160][ T3982] netlink: 20 bytes leftover after parsing attributes in process `syz.3.70'.
[   40.838286][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.998032][ T3995] loop3: detected capacity change from 0 to 128
[   41.136163][ T3995] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   41.144211][ T3995] FAT-fs (loop3): Filesystem has been set read-only
[   41.167585][ T4007] loop1: detected capacity change from 0 to 1024
[   41.174635][ T4007] EXT4-fs: Ignoring removed nobh option
[   41.180261][ T4007] EXT4-fs: Ignoring removed bh option
[   41.192813][ T4007] EXT4-fs (loop1): stripe (8) is not aligned with cluster size (16), stripe is disabled
[   41.204218][ T3995] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   41.212084][ T3995] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   41.220788][ T4008] syz.2.79 uses obsolete (PF_INET,SOCK_PACKET)
[   41.230014][ T3995] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   41.239624][ T4007] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   41.254041][ T3995] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   41.261993][ T3995] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   41.284786][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.415044][ T4019] loop1: detected capacity change from 0 to 512
[   41.486756][ T4024] ref_tracker: memory allocation failure, unreliable refcount tracker.
[   41.576264][ T4034] loop1: detected capacity change from 0 to 128
[   41.668595][ T4041] netlink: 12 bytes leftover after parsing attributes in process `syz.2.87'.
[   41.722066][ T4044] loop2: detected capacity change from 0 to 1024
[   41.729271][ T4044] EXT4-fs: Ignoring removed orlov option
[   41.736230][ T4044] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   41.781363][ T4050] loop0: detected capacity change from 0 to 764
[   41.789131][ T4044] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.849373][ T4054] FAULT_INJECTION: forcing a failure.
[   41.849373][ T4054] name failslab, interval 1, probability 0, space 0, times 0
[   41.862142][ T4054] CPU: 1 UID: 0 PID: 4054 Comm: syz.3.92 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   41.862169][ T4054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   41.862184][ T4054] Call Trace:
[   41.862191][ T4054]  <TASK>
[   41.862201][ T4054]  __dump_stack+0x1d/0x30
[   41.862300][ T4054]  dump_stack_lvl+0xe8/0x140
[   41.862326][ T4054]  dump_stack+0x15/0x1b
[   41.862346][ T4054]  should_fail_ex+0x265/0x280
[   41.862395][ T4054]  should_failslab+0x8c/0xb0
[   41.862424][ T4054]  kmem_cache_alloc_noprof+0x50/0x480
[   41.862515][ T4054]  ? security_file_alloc+0x32/0x100
[   41.862545][ T4054]  security_file_alloc+0x32/0x100
[   41.862607][ T4054]  init_file+0x5c/0x1d0
[   41.862649][ T4054]  alloc_empty_file+0x8b/0x200
[   41.862690][ T4054]  alloc_file_pseudo+0xc6/0x160
[   41.862782][ T4054]  __shmem_file_setup+0x1de/0x210
[   41.862853][ T4054]  shmem_file_setup+0x3b/0x50
[   41.862883][ T4054]  __se_sys_memfd_create+0x2c3/0x590
[   41.862907][ T4054]  __x64_sys_memfd_create+0x31/0x40
[   41.862961][ T4054]  x64_sys_call+0x2ac2/0x3000
[   41.862987][ T4054]  do_syscall_64+0xd2/0x200
[   41.863011][ T4054]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   41.863038][ T4054]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   41.863071][ T4054]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   41.863100][ T4054] RIP: 0033:0x7f5cc89aeec9
[   41.863119][ T4054] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   41.863143][ T4054] RSP: 002b:00007f5cc7416e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   41.863193][ T4054] RAX: ffffffffffffffda RBX: 00000000000005ad RCX: 00007f5cc89aeec9
[   41.863209][ T4054] RDX: 00007f5cc7416ef0 RSI: 0000000000000000 RDI: 00007f5cc8a32960
[   41.863292][ T4054] RBP: 0000200000000180 R08: 00007f5cc7416bb7 R09: 00007f5cc7416e40
[   41.863309][ T4054] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000040
[   41.863325][ T4054] R13: 00007f5cc7416ef0 R14: 00007f5cc7416eb0 R15: 0000200000000940
[   41.863354][ T4054]  </TASK>
[   42.138564][ T4060] SELinux:  Context system_u:object_r:hwdata_t:s0 is not valid (left unmapped).
[   42.247540][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.332561][ T4058] sd 0:0:1:0: device reset
[   42.351518][ T4070] netlink: 8 bytes leftover after parsing attributes in process `syz.4.96'.
[   42.360349][ T4070] netlink: 'syz.4.96': attribute type 30 has an invalid length.
[   42.376413][ T4072] netlink: 4 bytes leftover after parsing attributes in process `syz.2.95'.
[   42.385244][ T4072] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   42.392659][ T4072] batman_adv: batadv0: Removing interface: batadv_slave_0
[   42.427075][ T4072] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   42.434525][ T4072] batman_adv: batadv0: Removing interface: batadv_slave_1
[   42.452160][ T3448] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   42.479003][ T3448] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   42.499565][ T3448] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   42.511620][ T3448] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   42.643116][ T4090] loop4: detected capacity change from 0 to 1024
[   42.671086][ T4090] EXT4-fs: Ignoring removed nobh option
[   42.676807][ T4090] EXT4-fs: Ignoring removed bh option
[   42.696732][ T4090] EXT4-fs (loop4): stripe (8) is not aligned with cluster size (16), stripe is disabled
[   42.725568][ T4090] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.743801][ T4090] FAULT_INJECTION: forcing a failure.
[   42.743801][ T4090] name failslab, interval 1, probability 0, space 0, times 0
[   42.756660][ T4090] CPU: 0 UID: 0 PID: 4090 Comm: syz.4.101 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   42.756763][ T4090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   42.756776][ T4090] Call Trace:
[   42.756784][ T4090]  <TASK>
[   42.756792][ T4090]  __dump_stack+0x1d/0x30
[   42.756816][ T4090]  dump_stack_lvl+0xe8/0x140
[   42.756837][ T4090]  dump_stack+0x15/0x1b
[   42.756856][ T4090]  should_fail_ex+0x265/0x280
[   42.756964][ T4090]  should_failslab+0x8c/0xb0
[   42.756994][ T4090]  kmem_cache_alloc_noprof+0x50/0x480
[   42.757024][ T4090]  ? ext4_mb_new_blocks+0x2ce/0x2080
[   42.757123][ T4090]  ext4_mb_new_blocks+0x2ce/0x2080
[   42.757177][ T4090]  ? ext4_ext_search_right+0x30b/0x4f0
[   42.757205][ T4090]  ? ext4_inode_to_goal_block+0x1be/0x1e0
[   42.757230][ T4090]  ext4_ext_map_blocks+0xff5/0x38a0
[   42.757275][ T4090]  ext4_map_blocks+0x5ee/0xd00
[   42.757368][ T4090]  ? ext4_destroy_inline_data_nolock+0x2f4/0x340
[   42.757406][ T4090]  ext4_convert_inline_data_nolock+0x16b/0x570
[   42.757440][ T4090]  ext4_convert_inline_data+0x2bd/0x360
[   42.757500][ T4090]  ext4_fallocate+0x163/0x2f0
[   42.757530][ T4090]  vfs_fallocate+0x3b3/0x400
[   42.757560][ T4090]  file_ioctl+0x453/0x530
[   42.757582][ T4090]  do_vfs_ioctl+0x7ca/0xe10
[   42.757714][ T4090]  ? selinux_file_ioctl+0x308/0x3a0
[   42.757745][ T4090]  ? __fget_files+0x184/0x1c0
[   42.757776][ T4090]  __se_sys_ioctl+0x82/0x140
[   42.757796][ T4090]  __x64_sys_ioctl+0x43/0x50
[   42.757867][ T4090]  x64_sys_call+0x1816/0x3000
[   42.757890][ T4090]  do_syscall_64+0xd2/0x200
[   42.757970][ T4090]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   42.758123][ T4090]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   42.758152][ T4090] RIP: 0033:0x7f7c13c0eec9
[   42.758170][ T4090] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   42.758193][ T4090] RSP: 002b:00007f7c12677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   42.758248][ T4090] RAX: ffffffffffffffda RBX: 00007f7c13e65fa0 RCX: 00007f7c13c0eec9
[   42.758260][ T4090] RDX: 0000200000000180 RSI: 0000000040305839 RDI: 0000000000000004
[   42.758272][ T4090] RBP: 00007f7c12677090 R08: 0000000000000000 R09: 0000000000000000
[   42.758284][ T4090] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   42.758296][ T4090] R13: 00007f7c13e66038 R14: 00007f7c13e65fa0 R15: 00007fff123f6718
[   42.758320][ T4090]  </TASK>
[   43.069871][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.133154][ T4115] loop3: detected capacity change from 0 to 1024
[   43.141353][ T4115] EXT4-fs: Ignoring removed bh option
[   43.163530][ T4117] xt_hashlimit: max too large, truncated to 1048576
[   43.183780][ T4115] EXT4-fs: Mount option(s) incompatible with ext2
[   43.229247][ T4046] loop1: detected capacity change from 0 to 512
[   43.229312][ T4123] loop2: detected capacity change from 0 to 512
[   43.252286][ T4115] loop3: detected capacity change from 0 to 1024
[   43.272569][ T4123] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.287714][ T4115] EXT4-fs: Invalid want_extra_isize 9
[   43.302659][ T4046] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.315287][ T4046] ext4 filesystem being mounted at /27/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   43.316821][ T4123] ext4 filesystem being mounted at /24/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   43.341713][ T4046] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.343415][ T4123] EXT4-fs (loop2): shut down requested (0)
[   43.394593][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.441669][ T4115] loop3: detected capacity change from 0 to 512
[   43.464057][ T4115] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   43.529461][ T4145] loop0: detected capacity change from 0 to 512
[   43.565617][ T4149] netlink: 5452 bytes leftover after parsing attributes in process `syz.2.112'.
[   43.588030][ T4147] SELinux: failed to load policy
[   43.641956][ T4153] loop1: detected capacity change from 0 to 512
[   43.650143][ T4151] loop0: detected capacity change from 0 to 512
[   43.661997][ T4153] /dev/loop1: Can't open blockdev
[   43.742906][ T4151] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   43.766270][ T4151] EXT4-fs (loop0): orphan cleanup on readonly fs
[   43.819170][ T4171] loop3: detected capacity change from 0 to 1024
[   43.847754][ T4171] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   43.859000][ T4171] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   43.872005][ T4173] loop2: detected capacity change from 0 to 256
[   43.893063][ T4151] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #16: comm syz.0.113: corrupted inode contents
[   43.906428][ T4171] JBD2: no valid journal superblock found
[   43.912184][ T4171] EXT4-fs (loop3): Could not load journal inode
[   43.919701][ T4173] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   43.936247][ T4151] EXT4-fs (loop0): Remounting filesystem read-only
[   43.950286][ T4151] EXT4-fs (loop0): 1 truncate cleaned up
[   43.955104][ T4173] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   43.956972][ T2738] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   43.977316][ T2738] __quota_error: 398 callbacks suppressed
[   43.977331][ T2738] Quota error (device loop0): write_blk: dquota write failed
[   43.990638][ T2738] Quota error (device loop0): remove_free_dqentry: Can't write block (5) with free entries
[   44.000724][ T2738] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   44.011330][ T2738] Quota error (device loop0): write_blk: dquota write failed
[   44.018803][ T2738] Quota error (device loop0): free_dqentry: Can't move quota data block (5) to free list
[   44.047014][ T2738] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started
[   44.057210][ T2738] Quota error (device loop0): v2_write_file_info: Can't write info structure
[   44.066181][ T2738] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   44.066331][   T29] audit: type=1400 audit(1760102907.994:817): avc:  denied  { remount } for  pid=4172 comm="syz.2.119" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[   44.087547][ T4151] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   44.167728][ T4151] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.209432][ T4181] loop4: detected capacity change from 0 to 128
[   44.286966][ T4183] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[   44.294881][ T4183] FAT-fs (loop4): Filesystem has been set read-only
[   44.333535][ T4183] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[   44.341457][ T4183] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[   44.382168][ T4186] loop0: detected capacity change from 0 to 512
[   44.423971][ T4186] EXT4-fs: Ignoring removed nobh option
[   44.428785][   T29] audit: type=1400 audit(1760102908.344:818): avc:  denied  { setopt } for  pid=4172 comm="syz.2.119" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   44.478225][ T4186] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.503782][   T29] audit: type=1326 audit(1760102908.364:819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4172 comm="syz.2.119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59c5b4eec9 code=0x7ffc0000
[   44.519453][ T4186] ext4 filesystem being mounted at /20/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   44.527099][   T29] audit: type=1326 audit(1760102908.364:820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4172 comm="syz.2.119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f59c5b4eec9 code=0x7ffc0000
[   44.560798][ T4183] bio_check_eod: 37439 callbacks suppressed
[   44.560816][ T4183] syz.4.121: attempt to access beyond end of device
[   44.560816][ T4183] loop4: rw=0, sector=2070, nr_sectors = 1 limit=128
[   44.599070][ T4183] syz.4.121: attempt to access beyond end of device
[   44.599070][ T4183] loop4: rw=0, sector=2071, nr_sectors = 1 limit=128
[   44.622289][ T4186] EXT4-fs error (device loop0): ext4_lookup:1787: inode #12: comm syz.0.122: iget: bad i_size value: 2533274857506816
[   44.640224][ T4193] loop3: detected capacity change from 0 to 1024
[   44.650454][ T4186] EXT4-fs error (device loop0): ext4_lookup:1787: inode #12: comm syz.0.122: iget: bad i_size value: 2533274857506816
[   44.678930][ T4186] EXT4-fs error (device loop0): ext4_find_dest_de:2052: inode #2: block 3: comm syz.0.122: bad entry in directory: inode out of bounds - offset=92, inode=117440528, rec_len=16, size=2048 fake=0
[   44.699032][ T4183] syz.4.121: attempt to access beyond end of device
[   44.699032][ T4183] loop4: rw=0, sector=2072, nr_sectors = 1 limit=128
[   44.712327][ T4183] buffer_io_error: 37436 callbacks suppressed
[   44.712365][ T4183] Buffer I/O error on dev loop4, logical block 2072, async page read
[   44.734643][ T4193] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   44.751542][ T4193] ext4 filesystem being mounted at /11/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   44.772331][ T4178] syz.4.121: attempt to access beyond end of device
[   44.772331][ T4178] loop4: rw=0, sector=2065, nr_sectors = 1 limit=128
[   44.785533][ T4178] Buffer I/O error on dev loop4, logical block 2065, async page read
[   44.798985][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.820170][ T4193] lo: entered promiscuous mode
[   44.843106][ T4193] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   44.859361][ T4178] syz.4.121: attempt to access beyond end of device
[   44.859361][ T4178] loop4: rw=0, sector=2066, nr_sectors = 1 limit=128
[   44.872559][ T4178] Buffer I/O error on dev loop4, logical block 2066, async page read
[   44.883464][ T4178] syz.4.121: attempt to access beyond end of device
[   44.883464][ T4178] loop4: rw=0, sector=2067, nr_sectors = 1 limit=128
[   44.896678][ T4178] Buffer I/O error on dev loop4, logical block 2067, async page read
[   44.945129][ T4199] SELinux: failed to load policy
[   44.950410][ T4200] SELinux:  policydb magic number 0x80 does not match expected magic number 0xf97cff8c
[   44.960499][ T4200] SELinux: failed to load policy
[   44.963429][ T4178] syz.4.121: attempt to access beyond end of device
[   44.963429][ T4178] loop4: rw=0, sector=2068, nr_sectors = 1 limit=128
[   44.978690][ T4178] Buffer I/O error on dev loop4, logical block 2068, async page read
[   45.003443][ T4178] syz.4.121: attempt to access beyond end of device
[   45.003443][ T4178] loop4: rw=0, sector=2069, nr_sectors = 1 limit=128
[   45.016647][ T4178] Buffer I/O error on dev loop4, logical block 2069, async page read
[   45.034125][ T3730] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   45.053497][ T4178] syz.4.121: attempt to access beyond end of device
[   45.053497][ T4178] loop4: rw=0, sector=2070, nr_sectors = 1 limit=128
[   45.066687][ T4178] Buffer I/O error on dev loop4, logical block 2070, async page read
[   45.084345][ T4178] syz.4.121: attempt to access beyond end of device
[   45.084345][ T4178] loop4: rw=0, sector=2071, nr_sectors = 1 limit=128
[   45.097565][ T4178] Buffer I/O error on dev loop4, logical block 2071, async page read
[   45.100150][ T4195] loop2: detected capacity change from 0 to 32768
[   45.106008][ T4178] Buffer I/O error on dev loop4, logical block 2072, async page read
[   45.120607][ T4178] Buffer I/O error on dev loop4, logical block 2065, async page read
[   45.163717][ T3300]  loop2: p1 p3 < >
[   45.170979][ T4195]  loop2: p1 p3 < >
[   45.181889][ T4214] loop3: detected capacity change from 0 to 512
[   45.236030][ T4214] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.254910][ T4214] ext4 filesystem being mounted at /12/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   45.306092][ T4214] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.348935][ T4214] 9pnet_fd: Insufficient options for proto=fd
[   45.367293][ T4224] loop4: detected capacity change from 0 to 512
[   45.453275][ T3300] udevd[3300]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   45.473760][ T4233] IPv6: NLM_F_CREATE should be specified when creating new route
[   45.484651][ T3303] udevd[3303]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   45.528886][ T4240] netlink: 'syz.4.138': attribute type 13 has an invalid length.
[   45.547754][ T3303] udevd[3303]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   45.553684][ T4240] gretap0: refused to change device tx_queue_len
[   45.558683][ T3300] udevd[3300]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   45.582481][ T4240] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   45.599977][ T4238] SELinux: failed to load policy
[   45.653638][ T4222] xt_hashlimit: max too large, truncated to 1048576
[   45.698463][ T4222] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   45.761754][ T4252] FAULT_INJECTION: forcing a failure.
[   45.761754][ T4252] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   45.775228][ T4252] CPU: 1 UID: 0 PID: 4252 Comm: syz.4.144 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   45.775284][ T4252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   45.775299][ T4252] Call Trace:
[   45.775305][ T4252]  <TASK>
[   45.775382][ T4252]  __dump_stack+0x1d/0x30
[   45.775407][ T4252]  dump_stack_lvl+0xe8/0x140
[   45.775432][ T4252]  dump_stack+0x15/0x1b
[   45.775453][ T4252]  should_fail_ex+0x265/0x280
[   45.775545][ T4252]  should_fail+0xb/0x20
[   45.775586][ T4252]  should_fail_usercopy+0x1a/0x20
[   45.775612][ T4252]  _copy_to_user+0x20/0xa0
[   45.775695][ T4252]  simple_read_from_buffer+0xb5/0x130
[   45.775726][ T4252]  proc_fail_nth_read+0x10e/0x150
[   45.775766][ T4252]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   45.775849][ T4252]  vfs_read+0x1a5/0x770
[   45.775907][ T4252]  ? __rcu_read_unlock+0x4f/0x70
[   45.775939][ T4252]  ? __fget_files+0x184/0x1c0
[   45.776050][ T4252]  ksys_read+0xda/0x1a0
[   45.776150][ T4252]  __x64_sys_read+0x40/0x50
[   45.776202][ T4252]  x64_sys_call+0x27c0/0x3000
[   45.776267][ T4252]  do_syscall_64+0xd2/0x200
[   45.776292][ T4252]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   45.776340][ T4252]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   45.776436][ T4253] loop3: detected capacity change from 0 to 128
[   45.776367][ T4252]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   45.776476][ T4252] RIP: 0033:0x7f7c13c0d8dc
[   45.776495][ T4252] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   45.776520][ T4252] RSP: 002b:00007f7c12677030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   45.776548][ T4252] RAX: ffffffffffffffda RBX: 00007f7c13e65fa0 RCX: 00007f7c13c0d8dc
[   45.776613][ T4252] RDX: 000000000000000f RSI: 00007f7c126770a0 RDI: 0000000000000004
[   45.776631][ T4252] RBP: 00007f7c12677090 R08: 0000000000000000 R09: 0000000000000000
[   45.776651][ T4252] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   45.776667][ T4252] R13: 00007f7c13e66038 R14: 00007f7c13e65fa0 R15: 00007fff123f6718
[   45.776692][ T4252]  </TASK>
[   45.843151][ T4257] netlink: 'syz.2.146': attribute type 1 has an invalid length.
[   45.923016][ T4259] loop4: detected capacity change from 0 to 512
[   45.974815][ T4257] 8021q: adding VLAN 0 to HW filter on device bond1
[   46.003322][ T4253] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   46.011230][ T4253] FAT-fs (loop3): Filesystem has been set read-only
[   46.025104][ T4263] netlink: 'syz.1.147': attribute type 40 has an invalid length.
[   46.028027][ T4253] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   46.040782][ T4253] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   46.058849][ T4259] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   46.085580][ T4259] EXT4-fs (loop4): orphan cleanup on readonly fs
[   46.143642][ T4268] FAULT_INJECTION: forcing a failure.
[   46.143642][ T4268] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   46.156771][ T4268] CPU: 1 UID: 0 PID: 4268 Comm: syz.1.148 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   46.156859][ T4268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   46.156872][ T4268] Call Trace:
[   46.156877][ T4268]  <TASK>
[   46.156885][ T4268]  __dump_stack+0x1d/0x30
[   46.156906][ T4268]  dump_stack_lvl+0xe8/0x140
[   46.156930][ T4268]  dump_stack+0x15/0x1b
[   46.157019][ T4268]  should_fail_ex+0x265/0x280
[   46.157066][ T4268]  should_fail+0xb/0x20
[   46.157186][ T4268]  should_fail_usercopy+0x1a/0x20
[   46.157214][ T4268]  _copy_from_user+0x1c/0xb0
[   46.157299][ T4268]  kstrtouint_from_user+0x69/0xf0
[   46.157340][ T4268]  ? 0xffffffff81000000
[   46.157358][ T4268]  ? selinux_file_permission+0x1e4/0x320
[   46.157400][ T4268]  proc_fail_nth_write+0x50/0x160
[   46.157466][ T4268]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   46.157544][ T4268]  vfs_write+0x266/0x960
[   46.157571][ T4268]  ? vfs_read+0x4e6/0x770
[   46.157631][ T4268]  ? __rcu_read_unlock+0x4f/0x70
[   46.157662][ T4268]  ? __fget_files+0x184/0x1c0
[   46.157699][ T4268]  ksys_write+0xda/0x1a0
[   46.157732][ T4268]  __x64_sys_write+0x40/0x50
[   46.157762][ T4268]  x64_sys_call+0x2802/0x3000
[   46.157799][ T4268]  do_syscall_64+0xd2/0x200
[   46.157857][ T4268]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   46.157890][ T4268]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   46.157944][ T4268]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.157969][ T4268] RIP: 0033:0x7f91bb38d97f
[   46.157983][ T4268] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   46.158005][ T4268] RSP: 002b:00007f91b9def030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   46.158031][ T4268] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f91bb38d97f
[   46.158123][ T4268] RDX: 0000000000000001 RSI: 00007f91b9def0a0 RDI: 0000000000000004
[   46.158135][ T4268] RBP: 00007f91b9def090 R08: 0000000000000000 R09: 0000000000000000
[   46.158217][ T4268] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   46.158233][ T4268] R13: 00007f91bb5e6038 R14: 00007f91bb5e5fa0 R15: 00007ffdab236b38
[   46.158258][ T4268]  </TASK>
[   46.158566][ T4259] EXT4-fs error (device loop4): ext4_do_update_inode:5624: inode #16: comm syz.4.145: corrupted inode contents
[   46.387648][ T4259] EXT4-fs (loop4): Remounting filesystem read-only
[   46.394443][ T4259] EXT4-fs (loop4): 1 truncate cleaned up
[   46.413011][   T31] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   46.424407][   T31] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   46.535675][   T31] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[   46.546604][ T4259] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   46.559773][ T4259] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.569532][ T4257] loop2: detected capacity change from 0 to 164
[   46.579144][ T4277] netlink: 'syz.3.151': attribute type 13 has an invalid length.
[   46.587475][ T4277] lo: entered allmulticast mode
[   46.592642][ T4277] tunl0: entered promiscuous mode
[   46.597761][ T4277] tunl0: entered allmulticast mode
[   46.604035][ T4277] FAULT_INJECTION: forcing a failure.
[   46.604035][ T4277] name failslab, interval 1, probability 0, space 0, times 0
[   46.605767][ T4257] iso9660: Unknown parameter ''
[   46.616792][ T4277] CPU: 1 UID: 0 PID: 4277 Comm: syz.3.151 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   46.616907][ T4277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   46.616977][ T4277] Call Trace:
[   46.616987][ T4277]  <TASK>
[   46.617000][ T4277]  __dump_stack+0x1d/0x30
[   46.617031][ T4277]  dump_stack_lvl+0xe8/0x140
[   46.617068][ T4277]  dump_stack+0x15/0x1b
[   46.617091][ T4277]  should_fail_ex+0x265/0x280
[   46.617141][ T4277]  ? nf_nat_masq_schedule+0x149/0x330
[   46.617175][ T4277]  should_failslab+0x8c/0xb0
[   46.617245][ T4277]  __kmalloc_cache_noprof+0x4c/0x4a0
[   46.617286][ T4277]  ? nf_nat_masq_schedule+0x301/0x330
[   46.617375][ T4277]  nf_nat_masq_schedule+0x149/0x330
[   46.617407][ T4277]  ? __pfx_device_cmp+0x10/0x10
[   46.617439][ T4277]  ? __pfx_masq_device_event+0x10/0x10
[   46.617471][ T4277]  masq_device_event+0x72/0x90
[   46.617503][ T4277]  raw_notifier_call_chain+0x6f/0x1b0
[   46.617611][ T4277]  ? call_netdevice_notifiers_info+0x9c/0x100
[   46.617643][ T4277]  call_netdevice_notifiers_info+0xae/0x100
[   46.617673][ T4277]  __dev_notify_flags+0xff/0x1a0
[   46.617711][ T4277]  netif_change_flags+0xac/0xd0
[   46.617746][ T4277]  do_setlink+0x9d2/0x2810
[   46.617780][ T4277]  ? _raw_spin_unlock+0x26/0x50
[   46.617822][ T4277]  ? finish_task_switch+0xad/0x2b0
[   46.617864][ T4277]  ? __schedule+0x6b9/0xb30
[   46.617962][ T4277]  rtnl_newlink+0xd8b/0x12d0
[   46.618018][ T4277]  ? bpf_get_current_comm+0x7c/0xb0
[   46.618061][ T4277]  ? __rcu_read_unlock+0x34/0x70
[   46.618097][ T4277]  ? bpf_trace_run3+0x12c/0x1d0
[   46.618157][ T4277]  ? __memcg_slab_free_hook+0x135/0x230
[   46.618283][ T4277]  ? __rcu_read_unlock+0x4f/0x70
[   46.618318][ T4277]  ? avc_has_perm_noaudit+0x1b1/0x200
[   46.618418][ T4277]  ? cred_has_capability+0x210/0x280
[   46.618463][ T4277]  ? selinux_capable+0x31/0x40
[   46.618491][ T4277]  ? security_capable+0x83/0x90
[   46.618541][ T4277]  ? ns_capable+0x7d/0xb0
[   46.618630][ T4277]  ? __pfx_rtnl_newlink+0x10/0x10
[   46.618781][ T4277]  rtnetlink_rcv_msg+0x5fb/0x6d0
[   46.618834][ T4277]  netlink_rcv_skb+0x120/0x220
[   46.618871][ T4277]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   46.618994][ T4277]  rtnetlink_rcv+0x1c/0x30
[   46.619037][ T4277]  netlink_unicast+0x5c0/0x690
[   46.619086][ T4277]  netlink_sendmsg+0x58b/0x6b0
[   46.619180][ T4277]  ? __pfx_netlink_sendmsg+0x10/0x10
[   46.619222][ T4277]  __sock_sendmsg+0x142/0x180
[   46.619251][ T4277]  ____sys_sendmsg+0x31e/0x4e0
[   46.619334][ T4277]  ___sys_sendmsg+0x17b/0x1d0
[   46.619406][ T4277]  __x64_sys_sendmsg+0xd4/0x160
[   46.619516][ T4277]  x64_sys_call+0x191e/0x3000
[   46.619548][ T4277]  do_syscall_64+0xd2/0x200
[   46.619583][ T4277]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   46.619621][ T4277]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   46.619725][ T4277]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.619756][ T4277] RIP: 0033:0x7f5cc89aeec9
[   46.619778][ T4277] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   46.619806][ T4277] RSP: 002b:00007f5cc7417038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   46.619833][ T4277] RAX: ffffffffffffffda RBX: 00007f5cc8c05fa0 RCX: 00007f5cc89aeec9
[   46.619851][ T4277] RDX: 0000000000000000 RSI: 0000200000000180 RDI: 0000000000000005
[   46.619869][ T4277] RBP: 00007f5cc7417090 R08: 0000000000000000 R09: 0000000000000000
[   46.619901][ T4277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   46.619919][ T4277] R13: 00007f5cc8c06038 R14: 00007f5cc8c05fa0 R15: 00007ffe41ee0018
[   46.619952][ T4277]  </TASK>
[   46.621609][ T4277] gre0: entered promiscuous mode
[   46.673241][ T4257] loop2: detected capacity change from 0 to 128
[   46.675843][ T4277] gre0: entered allmulticast mode
[   46.762120][ T4279] SELinux: failed to load policy
[   46.801858][ T4257] netlink: 44 bytes leftover after parsing attributes in process `syz.2.146'.
[   46.805123][ T4277] gretap0: entered promiscuous mode
[   46.903235][ T4283] loop4: detected capacity change from 0 to 512
[   46.919048][ T4277] gretap0: entered allmulticast mode
[   46.923054][ T4277] gretap0: refused to change device tx_queue_len
[   46.945292][ T4283] EXT4-fs: Ignoring removed i_version option
[   46.951580][ T4277] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   46.979221][ T4277] syz.3.151 (4277) used greatest stack depth: 10264 bytes left
[   47.059078][ T4283] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   47.140951][ T4291] FAULT_INJECTION: forcing a failure.
[   47.140951][ T4291] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   47.154204][ T4291] CPU: 1 UID: 0 PID: 4291 Comm: syz.2.156 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   47.154230][ T4291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   47.154247][ T4291] Call Trace:
[   47.154254][ T4291]  <TASK>
[   47.154262][ T4291]  __dump_stack+0x1d/0x30
[   47.154283][ T4291]  dump_stack_lvl+0xe8/0x140
[   47.154360][ T4291]  dump_stack+0x15/0x1b
[   47.154379][ T4291]  should_fail_ex+0x265/0x280
[   47.154414][ T4291]  should_fail+0xb/0x20
[   47.154515][ T4291]  should_fail_usercopy+0x1a/0x20
[   47.154543][ T4291]  _copy_to_user+0x20/0xa0
[   47.154609][ T4291]  simple_read_from_buffer+0xb5/0x130
[   47.154640][ T4291]  proc_fail_nth_read+0x10e/0x150
[   47.154678][ T4291]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   47.154706][ T4291]  vfs_read+0x1a5/0x770
[   47.154805][ T4291]  ? __rcu_read_unlock+0x4f/0x70
[   47.154834][ T4291]  ? __fget_files+0x184/0x1c0
[   47.154929][ T4291]  ksys_read+0xda/0x1a0
[   47.154962][ T4291]  __x64_sys_read+0x40/0x50
[   47.155041][ T4291]  x64_sys_call+0x27c0/0x3000
[   47.155098][ T4291]  do_syscall_64+0xd2/0x200
[   47.155129][ T4291]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   47.155160][ T4291]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   47.155255][ T4291]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   47.155282][ T4291] RIP: 0033:0x7f59c5b4d8dc
[   47.155300][ T4291] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   47.155321][ T4291] RSP: 002b:00007f59c45af030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   47.155341][ T4291] RAX: ffffffffffffffda RBX: 00007f59c5da5fa0 RCX: 00007f59c5b4d8dc
[   47.155405][ T4291] RDX: 000000000000000f RSI: 00007f59c45af0a0 RDI: 0000000000000005
[   47.155421][ T4291] RBP: 00007f59c45af090 R08: 0000000000000000 R09: 0000000000000000
[   47.155437][ T4291] R10: fffffffffffffffd R11: 0000000000000246 R12: 0000000000000002
[   47.155454][ T4291] R13: 00007f59c5da6038 R14: 00007f59c5da5fa0 R15: 00007ffd20184738
[   47.155480][ T4291]  </TASK>
[   47.368615][ T4288] netlink: 'syz.3.157': attribute type 13 has an invalid length.
[   47.387731][ T4288] gretap0: refused to change device tx_queue_len
[   47.394159][ T4288] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   47.444392][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.473657][ T4300] SELinux:  Context system_u:object_r:ldconfig_exec_t:s0 is not valid (left unmapped).
[   47.520501][ T4298] netlink: 4 bytes leftover after parsing attributes in process `syz.0.159'.
[   47.530089][ T4300] FAULT_INJECTION: forcing a failure.
[   47.530089][ T4300] name failslab, interval 1, probability 0, space 0, times 0
[   47.542997][ T4300] CPU: 0 UID: 0 PID: 4300 Comm: syz.3.160 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   47.543085][ T4300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   47.543099][ T4300] Call Trace:
[   47.543105][ T4300]  <TASK>
[   47.543112][ T4300]  __dump_stack+0x1d/0x30
[   47.543133][ T4300]  dump_stack_lvl+0xe8/0x140
[   47.543152][ T4300]  dump_stack+0x15/0x1b
[   47.543174][ T4300]  should_fail_ex+0x265/0x280
[   47.543272][ T4300]  should_failslab+0x8c/0xb0
[   47.543299][ T4300]  kmem_cache_alloc_node_noprof+0x57/0x4a0
[   47.543334][ T4300]  ? __alloc_skb+0x101/0x320
[   47.543367][ T4300]  __alloc_skb+0x101/0x320
[   47.543400][ T4300]  netlink_alloc_large_skb+0xbf/0xf0
[   47.543432][ T4300]  netlink_sendmsg+0x3cf/0x6b0
[   47.543538][ T4300]  ? __pfx_netlink_sendmsg+0x10/0x10
[   47.543656][ T4300]  __sock_sendmsg+0x142/0x180
[   47.543682][ T4300]  ____sys_sendmsg+0x31e/0x4e0
[   47.543726][ T4300]  ___sys_sendmsg+0x17b/0x1d0
[   47.543793][ T4300]  __x64_sys_sendmsg+0xd4/0x160
[   47.543836][ T4300]  x64_sys_call+0x191e/0x3000
[   47.543909][ T4300]  do_syscall_64+0xd2/0x200
[   47.543987][ T4300]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   47.544016][ T4300]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   47.544065][ T4300]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   47.544094][ T4300] RIP: 0033:0x7f5cc89aeec9
[   47.544114][ T4300] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   47.544138][ T4300] RSP: 002b:00007f5cc7417038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   47.544163][ T4300] RAX: ffffffffffffffda RBX: 00007f5cc8c05fa0 RCX: 00007f5cc89aeec9
[   47.544221][ T4300] RDX: 0000000004000000 RSI: 0000200000000280 RDI: 0000000000000007
[   47.544238][ T4300] RBP: 00007f5cc7417090 R08: 0000000000000000 R09: 0000000000000000
[   47.544322][ T4300] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   47.544334][ T4300] R13: 00007f5cc8c06038 R14: 00007f5cc8c05fa0 R15: 00007ffe41ee0018
[   47.544357][ T4300]  </TASK>
[   47.760948][ T4303] loop1: detected capacity change from 0 to 512
[   47.819639][ T4303] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   47.832780][ T4303] EXT4-fs (loop1): orphan cleanup on readonly fs
[   47.855269][ T4303] EXT4-fs error (device loop1): ext4_do_update_inode:5624: inode #16: comm syz.1.162: corrupted inode contents
[   47.871838][ T4303] EXT4-fs (loop1): Remounting filesystem read-only
[   47.888691][ T4303] EXT4-fs (loop1): 1 truncate cleaned up
[   47.896763][ T3448] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   47.907373][ T3448] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   47.919794][ T3448] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started
[   47.936896][ T4303] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   47.965735][ T4303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.980537][ T4321] SELinux: failed to load policy
[   48.121552][ T4331] loop0: detected capacity change from 0 to 2048
[   48.136194][ T4331] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   48.170148][ T4344] netlink: 'syz.3.172': attribute type 10 has an invalid length.
[   48.178281][ T4344] ipvlan0: entered allmulticast mode
[   48.183627][ T4344] veth0_vlan: entered allmulticast mode
[   48.191042][ T4344] team0: Device ipvlan0 failed to register rx_handler
[   48.308912][ T4370] loop2: detected capacity change from 0 to 512
[   48.359573][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.370870][ T4368] SELinux: failed to load policy
[   48.374311][ T4370] EXT4-fs (loop2): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   48.454858][ T4402] netlink: 'syz.4.181': attribute type 10 has an invalid length.
[   48.474997][ T4402] ipvlan0: entered allmulticast mode
[   48.480327][ T4402] veth0_vlan: entered allmulticast mode
[   48.515096][ T4402] team0: Device ipvlan0 failed to register rx_handler
[   48.574649][ T4418] loop3: detected capacity change from 0 to 128
[   48.581350][ T4415] loop0: detected capacity change from 0 to 128
[   48.665178][ T4411] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   48.673151][ T4411] FAT-fs (loop3): Filesystem has been set read-only
[   48.679986][ T4411] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   48.687931][ T4411] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   48.723570][ T4426] netlink: 'syz.4.186': attribute type 29 has an invalid length.
[   48.731505][ T4426] netlink: 'syz.4.186': attribute type 29 has an invalid length.
[   48.737940][ T4408] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   48.747548][ T4408] FAT-fs (loop0): Filesystem has been set read-only
[   48.756065][ T4408] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   48.764027][ T4408] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   48.840829][ T4428] program syz.4.187 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   49.145578][ T3309] EXT4-fs (loop2): unmounting filesystem 00800000-0000-0000-0000-000000000000.
[   49.426531][ T4443] netlink: 5452 bytes leftover after parsing attributes in process `syz.1.191'.
[   49.460973][   T29] kauditd_printk_skb: 385 callbacks suppressed
[   49.460990][   T29] audit: type=1400 audit(1760103169.378:1194): avc:  denied  { shutdown } for  pid=4442 comm="syz.1.191" lport=60958 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   49.504446][ T4441] SELinux: failed to load policy
[   49.532421][   T29] audit: type=1326 audit(1760103169.418:1195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4444 comm="syz.3.192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cc89aeec9 code=0x7ffc0000
[   49.555979][   T29] audit: type=1326 audit(1760103169.418:1196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4444 comm="syz.3.192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cc89aeec9 code=0x7ffc0000
[   49.577945][ T4408] bio_check_eod: 49746 callbacks suppressed
[   49.577967][ T4408] syz.0.182: attempt to access beyond end of device
[   49.577967][ T4408] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[   49.579417][   T29] audit: type=1326 audit(1760103169.418:1197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4444 comm="syz.3.192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5cc89aeec9 code=0x7ffc0000
[   49.622153][   T29] audit: type=1326 audit(1760103169.418:1198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4444 comm="syz.3.192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cc89aeec9 code=0x7ffc0000
[   49.622181][ T4408] syz.0.182: attempt to access beyond end of device
[   49.622181][ T4408] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[   49.645486][   T29] audit: type=1326 audit(1760103169.418:1199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4444 comm="syz.3.192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cc89aeec9 code=0x7ffc0000
[   49.645518][   T29] audit: type=1326 audit(1760103169.418:1200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4444 comm="syz.3.192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5cc89aeec9 code=0x7ffc0000
[   49.645544][   T29] audit: type=1326 audit(1760103169.418:1201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4444 comm="syz.3.192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cc89aeec9 code=0x7ffc0000
[   49.710460][ T4408] syz.0.182: attempt to access beyond end of device
[   49.710460][ T4408] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[   49.728933][   T29] audit: type=1326 audit(1760103169.418:1202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4444 comm="syz.3.192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5cc89aeec9 code=0x7ffc0000
[   49.728970][   T29] audit: type=1326 audit(1760103169.418:1203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4444 comm="syz.3.192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cc89aeec9 code=0x7ffc0000
[   49.789083][ T4408] syz.0.182: attempt to access beyond end of device
[   49.789083][ T4408] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[   49.802800][ T4408] syz.0.182: attempt to access beyond end of device
[   49.802800][ T4408] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[   49.816446][ T4408] syz.0.182: attempt to access beyond end of device
[   49.816446][ T4408] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[   49.829814][ T4408] syz.0.182: attempt to access beyond end of device
[   49.829814][ T4408] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[   49.843122][ T4408] syz.0.182: attempt to access beyond end of device
[   49.843122][ T4408] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[   49.856799][ T4408] syz.0.182: attempt to access beyond end of device
[   49.856799][ T4408] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[   49.870063][ T4408] syz.0.182: attempt to access beyond end of device
[   49.870063][ T4408] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[   49.942887][ T4456] loop0: detected capacity change from 0 to 4096
[   49.955099][ T4456] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   50.002290][ T4459] loop2: detected capacity change from 0 to 1024
[   50.079701][ T4459] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[   50.089686][ T4459] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   50.103289][ T4459] jbd2_journal_init_inode: Cannot locate journal superblock
[   50.110691][ T4459] EXT4-fs (loop2): Could not load journal inode
[   50.177822][ T4470] FAULT_INJECTION: forcing a failure.
[   50.177822][ T4470] name failslab, interval 1, probability 0, space 0, times 0
[   50.190508][ T4470] CPU: 1 UID: 0 PID: 4470 Comm: syz.3.199 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   50.190536][ T4470] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   50.190548][ T4470] Call Trace:
[   50.190589][ T4470]  <TASK>
[   50.190599][ T4470]  __dump_stack+0x1d/0x30
[   50.190626][ T4470]  dump_stack_lvl+0xe8/0x140
[   50.190652][ T4470]  dump_stack+0x15/0x1b
[   50.190674][ T4470]  should_fail_ex+0x265/0x280
[   50.190760][ T4470]  should_failslab+0x8c/0xb0
[   50.190868][ T4470]  kmem_cache_alloc_noprof+0x50/0x480
[   50.190894][ T4470]  ? copy_signal+0x53/0x360
[   50.190933][ T4470]  copy_signal+0x53/0x360
[   50.190963][ T4470]  copy_process+0xcde/0x2000
[   50.191031][ T4470]  kernel_clone+0x16c/0x5c0
[   50.191066][ T4470]  ? vfs_write+0x7e8/0x960
[   50.191099][ T4470]  __x64_sys_clone+0xe6/0x120
[   50.191240][ T4470]  x64_sys_call+0x119c/0x3000
[   50.191269][ T4470]  do_syscall_64+0xd2/0x200
[   50.191298][ T4470]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   50.191394][ T4470]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   50.191429][ T4470]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   50.191459][ T4470] RIP: 0033:0x7f5cc89aeec9
[   50.191479][ T4470] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   50.191568][ T4470] RSP: 002b:00007f5cc73d4fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[   50.191587][ T4470] RAX: ffffffffffffffda RBX: 00007f5cc8c06180 RCX: 00007f5cc89aeec9
[   50.191599][ T4470] RDX: 0000000000000000 RSI: 0000000000020010 RDI: 0000000022023400
[   50.191611][ T4470] RBP: 00007f5cc73d5090 R08: 0000000000000000 R09: 0000000000000000
[   50.191705][ T4470] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[   50.191749][ T4470] R13: 00007f5cc8c06218 R14: 00007f5cc8c06180 R15: 00007ffe41ee0018
[   50.191782][ T4470]  </TASK>
[   50.500126][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.630224][ T4473] loop1: detected capacity change from 0 to 512
[   50.644473][ T4484] loop4: detected capacity change from 0 to 128
[   50.649523][ T4485] netlink: 'syz.0.202': attribute type 10 has an invalid length.
[   50.658677][ T4485] ipvlan0: entered allmulticast mode
[   50.664108][ T4485] veth0_vlan: entered allmulticast mode
[   50.671279][ T4485] team0: Device ipvlan0 failed to register rx_handler
[   50.684695][ T4473] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   50.697575][ T4483] SELinux: failed to load policy
[   50.706377][ T4473] ext4 filesystem being mounted at /46/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   50.729166][ T4481] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[   50.737287][ T4481] FAT-fs (loop4): Filesystem has been set read-only
[   50.746072][ T4481] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[   50.753974][ T4481] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[   50.787491][ T4495] loop0: detected capacity change from 0 to 128
[   50.787868][ T4495] msdos: Unknown parameter 'nod˙˙s'
[   50.800328][ T4484] buffer_io_error: 5535 callbacks suppressed
[   50.800360][ T4484] Buffer I/O error on dev loop4, logical block 2065, async page read
[   50.800416][ T4484] Buffer I/O error on dev loop4, logical block 2066, async page read
[   50.800441][ T4484] Buffer I/O error on dev loop4, logical block 2067, async page read
[   50.800462][ T4484] Buffer I/O error on dev loop4, logical block 2068, async page read
[   50.800479][ T4484] Buffer I/O error on dev loop4, logical block 2069, async page read
[   50.800502][ T4484] Buffer I/O error on dev loop4, logical block 2070, async page read
[   50.800519][ T4484] Buffer I/O error on dev loop4, logical block 2071, async page read
[   50.800540][ T4484] Buffer I/O error on dev loop4, logical block 2072, async page read
[   50.800565][ T4484] Buffer I/O error on dev loop4, logical block 2065, async page read
[   50.800587][ T4484] Buffer I/O error on dev loop4, logical block 2066, async page read
[   50.949826][ T4499] 9pnet_fd: Insufficient options for proto=fd
[   50.957934][ T4500] FAULT_INJECTION: forcing a failure.
[   50.957934][ T4500] name failslab, interval 1, probability 0, space 0, times 0
[   50.957969][ T4500] CPU: 1 UID: 0 PID: 4500 Comm: syz.3.209 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   50.958058][ T4500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   50.958107][ T4500] Call Trace:
[   50.958115][ T4500]  <TASK>
[   50.958125][ T4500]  __dump_stack+0x1d/0x30
[   50.958149][ T4500]  dump_stack_lvl+0xe8/0x140
[   50.958224][ T4500]  dump_stack+0x15/0x1b
[   50.958244][ T4500]  should_fail_ex+0x265/0x280
[   50.958279][ T4500]  should_failslab+0x8c/0xb0
[   50.958305][ T4500]  kmem_cache_alloc_noprof+0x50/0x480
[   50.958339][ T4500]  ? __anon_vma_prepare+0xcd/0x2f0
[   50.958395][ T4500]  __anon_vma_prepare+0xcd/0x2f0
[   50.958434][ T4500]  do_wp_page+0x18ee/0x2510
[   50.958460][ T4500]  ? __rcu_read_lock+0x37/0x50
[   50.958483][ T4500]  ? css_rstat_updated+0xb7/0x240
[   50.958581][ T4500]  ? __rcu_read_lock+0x37/0x50
[   50.958618][ T4500]  handle_mm_fault+0x77d/0x2be0
[   50.958649][ T4500]  ? vma_start_read+0x141/0x1f0
[   50.958725][ T4500]  do_user_addr_fault+0x630/0x1080
[   50.958755][ T4500]  ? fpregs_assert_state_consistent+0xb4/0xe0
[   50.958864][ T4500]  exc_page_fault+0x62/0xa0
[   50.958884][ T4500]  asm_exc_page_fault+0x26/0x30
[   50.958903][ T4500] RIP: 0033:0x7f5cc8870c03
[   50.958917][ T4500] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[   50.959076][ T4500] RSP: 002b:00007f5cc74164a0 EFLAGS: 00010202
[   50.959097][ T4500] RAX: 0000000000000400 RBX: 00007f5cc7416540 RCX: 00007f5cbeff7000
[   50.959114][ T4500] RDX: 00007f5cc74166e0 RSI: 0000000000000009 RDI: 00007f5cc74165e0
[   50.959131][ T4500] RBP: 00000000000000f9 R08: 0000000000000008 R09: 00000000000000aa
[   50.959200][ T4500] R10: 00000000000000c0 R11: 00007f5cc7416540 R12: 0000000000000001
[   50.959217][ T4500] R13: 00007f5cc8a4db80 R14: 0000000000000020 R15: 00007f5cc74165e0
[   50.959243][ T4500]  </TASK>
[   50.959267][ T4500] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[   50.965927][ T4500] loop3: detected capacity change from 0 to 1024
[   50.969115][ T4500] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   50.969138][ T4500] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   50.969892][ T4500] JBD2: no valid journal superblock found
[   50.969905][ T4500] EXT4-fs (loop3): Could not load journal inode
[   51.033495][ T4503] netlink: 'syz.3.210': attribute type 1 has an invalid length.
[   51.075962][ T4503] 8021q: adding VLAN 0 to HW filter on device bond1
[   51.092851][ T4503] veth3: entered promiscuous mode
[   51.095439][ T4503] bond1: (slave veth3): Enslaving as an active interface with a down link
[   51.101882][ T4503] bond1: entered allmulticast mode
[   51.282465][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.566266][ T4520] SELinux: failed to load policy
[   51.621263][ T4529] netlink: 8 bytes leftover after parsing attributes in process `syz.1.222'.
[   51.695924][ T4525] loop3: detected capacity change from 0 to 1024
[   51.744716][ T4525] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   51.756954][ T4525] ext4 filesystem being mounted at /35/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   51.831367][ T3730] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.864332][ T4544] loop2: detected capacity change from 0 to 512
[   51.871082][ T4544] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   51.897200][ T4532] loop4: detected capacity change from 0 to 512
[   51.909797][ T4546] loop0: detected capacity change from 0 to 512
[   51.935694][ T4546] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   51.954854][ T4532] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   51.957369][ T4546] ext4 filesystem being mounted at /38/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   51.981746][ T4532] ext4 filesystem being mounted at /43/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   52.020087][ T4552] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=8192 sclass=netlink_route_socket pid=4552 comm=syz.3.227
[   52.066496][ T4562] loop3: detected capacity change from 0 to 1024
[   52.075691][ T4564] netlink: 20 bytes leftover after parsing attributes in process `syz.2.228'.
[   52.104267][ T4562] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   52.115318][ T4562] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   52.151223][ T4562] JBD2: no valid journal superblock found
[   52.157224][ T4562] EXT4-fs (loop3): Could not load journal inode
[   52.269763][ T4569] netlink: 'syz.2.231': attribute type 7 has an invalid length.
[   52.536014][ T4573] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[   52.565972][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.572589][ T4573] SELinux: failed to load policy
[   52.602268][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.624234][ T4575] program syz.3.233 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   52.661034][ T4579] netlink: 'syz.0.236': attribute type 10 has an invalid length.
[   52.712236][ T4585] netlink: 4 bytes leftover after parsing attributes in process `syz.0.236'.
[   52.734528][ T4579] bridge0: port 2(bridge_slave_1) entered disabled state
[   52.741850][ T4579] bridge0: port 1(bridge_slave_0) entered disabled state
[   52.753058][ T4579] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.760183][ T4579] bridge0: port 2(bridge_slave_1) entered forwarding state
[   52.767544][ T4579] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.774748][ T4579] bridge0: port 1(bridge_slave_0) entered forwarding state
[   52.789910][ T4579] bond0: (slave bridge0): Enslaving as an active interface with an up link
[   52.799920][ T4585] bridge_slave_1: left allmulticast mode
[   52.805930][ T4585] bridge_slave_1: left promiscuous mode
[   52.811605][ T4585] FAULT_INJECTION: forcing a failure.
[   52.811605][ T4585] name failslab, interval 1, probability 0, space 0, times 0
[   52.824262][ T4585] CPU: 0 UID: 0 PID: 4585 Comm: syz.0.236 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   52.824340][ T4585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   52.824356][ T4585] Call Trace:
[   52.824362][ T4585]  <TASK>
[   52.824370][ T4585]  __dump_stack+0x1d/0x30
[   52.824432][ T4585]  dump_stack_lvl+0xe8/0x140
[   52.824451][ T4585]  dump_stack+0x15/0x1b
[   52.824469][ T4585]  should_fail_ex+0x265/0x280
[   52.824549][ T4585]  ? __pfx_switchdev_port_attr_set_deferred+0x10/0x10
[   52.824594][ T4585]  should_failslab+0x8c/0xb0
[   52.824630][ T4585]  __kmalloc_noprof+0xa5/0x570
[   52.824765][ T4585]  ? switchdev_deferred_enqueue+0x2d/0x1c0
[   52.824800][ T4585]  ? __pfx_switchdev_port_attr_set_deferred+0x10/0x10
[   52.824841][ T4585]  switchdev_deferred_enqueue+0x2d/0x1c0
[   52.824957][ T4585]  switchdev_port_attr_set+0x6c/0xe0
[   52.824986][ T4585]  br_set_state+0x205/0x390
[   52.825025][ T4585]  ? _raw_spin_unlock_bh+0x36/0x40
[   52.825144][ T4585]  br_stp_disable_port+0x5d/0x150
[   52.825168][ T4585]  del_nbp+0xdc/0x790
[   52.825198][ T4585]  br_dev_delete+0x4e/0xe0
[   52.825214][ T4591] loop3: detected capacity change from 0 to 512
[   52.825315][ T4585]  ? __pfx_br_dev_delete+0x10/0x10
[   52.825369][ T4585]  rtnl_dellink+0x3bd/0x550
[   52.825447][ T4585]  ? selinux_capable+0x31/0x40
[   52.825476][ T4585]  ? security_capable+0x83/0x90
[   52.825528][ T4585]  ? ns_capable+0x7d/0xb0
[   52.825561][ T4585]  ? __pfx_rtnl_dellink+0x10/0x10
[   52.825611][ T4585]  rtnetlink_rcv_msg+0x5fb/0x6d0
[   52.825664][ T4585]  netlink_rcv_skb+0x120/0x220
[   52.825769][ T4585]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   52.825825][ T4585]  rtnetlink_rcv+0x1c/0x30
[   52.825949][ T4585]  netlink_unicast+0x5c0/0x690
[   52.826002][ T4585]  netlink_sendmsg+0x58b/0x6b0
[   52.826047][ T4585]  ? __pfx_netlink_sendmsg+0x10/0x10
[   52.826089][ T4585]  __sock_sendmsg+0x142/0x180
[   52.826118][ T4585]  sock_write_iter+0x1a7/0x1f0
[   52.826242][ T4585]  ? __pfx_sock_write_iter+0x10/0x10
[   52.826286][ T4585]  vfs_write+0x527/0x960
[   52.826327][ T4585]  ksys_write+0xda/0x1a0
[   52.826372][ T4585]  __x64_sys_write+0x40/0x50
[   52.826417][ T4585]  x64_sys_call+0x2802/0x3000
[   52.826446][ T4585]  do_syscall_64+0xd2/0x200
[   52.826480][ T4585]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   52.826557][ T4585]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   52.826588][ T4585]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   52.826620][ T4585] RIP: 0033:0x7fa7f6cceec9
[   52.826713][ T4585] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   52.826740][ T4585] RSP: 002b:00007fa7f570e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   52.826769][ T4585] RAX: ffffffffffffffda RBX: 00007fa7f6f26090 RCX: 00007fa7f6cceec9
[   52.826787][ T4585] RDX: 0000000000000024 RSI: 0000200000000000 RDI: 0000000000000008
[   52.826805][ T4585] RBP: 00007fa7f570e090 R08: 0000000000000000 R09: 0000000000000000
[   52.826825][ T4585] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   52.826878][ T4585] R13: 00007fa7f6f26128 R14: 00007fa7f6f26090 R15: 00007ffd51614f78
[   52.826906][ T4585]  </TASK>
[   52.826919][ T4585] bridge0: error setting offload STP state on port 2(bridge_slave_1)
[   52.885273][ T4591] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   52.978320][ T4594] loop4: detected capacity change from 0 to 2048
[   52.987767][ T4591] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   53.170456][ T4591] EXT4-fs (loop3): 1 truncate cleaned up
[   53.170543][ T4585] bridge_slave_0: left allmulticast mode
[   53.177099][ T4591] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   53.181841][ T4585] bridge_slave_0: left promiscuous mode
[   53.200301][ T4585] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.223753][ T3730] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.250657][ T4585] bond0: (slave bridge0): Releasing backup interface
[   53.315004][ T4597] netlink: 4 bytes leftover after parsing attributes in process `syz.1.238'.
[   53.317797][ T4610] loop3: detected capacity change from 0 to 4096
[   53.334940][ T4610] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   53.355083][ T4579] syz.0.236 (4579) used greatest stack depth: 9968 bytes left
[   53.411786][ T4615] ext4: Unknown parameter '˙˙184467440737095516150xffffffffffffffff˙˙˙˙˙˙˙˙˙˙˙˙˙˙'
[   53.623932][ T4628] loop2: detected capacity change from 0 to 128
[   53.631484][ T3730] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.647084][ T4616] loop1: detected capacity change from 0 to 512
[   53.658271][ T4628] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[   53.666252][ T4628] FAT-fs (loop2): Filesystem has been set read-only
[   53.673292][ T4628] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[   53.681261][ T4628] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[   53.705206][ T4616] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   53.783401][ T4634] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[   53.807025][ T4634] SELinux: failed to load policy
[   53.812160][ T4616] ext4 filesystem being mounted at /52/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   53.840528][ T4636] SELinux: failed to load policy
[   53.938590][ T4648] hsr0: entered promiscuous mode
[   53.946707][ T4646] loop4: detected capacity change from 0 to 2048
[   53.953827][ T4649] netlink: 4 bytes leftover after parsing attributes in process `syz.3.257'.
[   53.965551][ T4648] netlink: 4 bytes leftover after parsing attributes in process `syz.3.257'.
[   53.974408][ T4649] hsr_slave_0: left promiscuous mode
[   53.980483][ T4649] hsr_slave_1: left promiscuous mode
[   53.989667][ T4649] hsr0 (unregistering): left promiscuous mode
[   53.999808][ T4646] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   54.025108][ T4646] FAULT_INJECTION: forcing a failure.
[   54.025108][ T4646] name failslab, interval 1, probability 0, space 0, times 0
[   54.037871][ T4646] CPU: 1 UID: 0 PID: 4646 Comm: syz.4.256 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   54.037902][ T4646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   54.037959][ T4646] Call Trace:
[   54.037965][ T4646]  <TASK>
[   54.037972][ T4646]  __dump_stack+0x1d/0x30
[   54.038000][ T4646]  dump_stack_lvl+0xe8/0x140
[   54.038021][ T4646]  dump_stack+0x15/0x1b
[   54.038088][ T4646]  should_fail_ex+0x265/0x280
[   54.038130][ T4646]  ? __pfx_ppp_ioctl+0x10/0x10
[   54.038206][ T4646]  should_failslab+0x8c/0xb0
[   54.038243][ T4646]  __kmalloc_noprof+0xa5/0x570
[   54.038301][ T4646]  ? slhc_init+0x81/0x390
[   54.038334][ T4646]  ? __pfx_ppp_ioctl+0x10/0x10
[   54.038368][ T4646]  slhc_init+0x81/0x390
[   54.038407][ T4646]  ? __pfx_ppp_ioctl+0x10/0x10
[   54.038465][ T4646]  ppp_ioctl+0xe9c/0x11c0
[   54.038502][ T4646]  ? __fget_files+0x184/0x1c0
[   54.038599][ T4646]  ? __pfx_ppp_ioctl+0x10/0x10
[   54.038627][ T4646]  __se_sys_ioctl+0xce/0x140
[   54.038678][ T4646]  __x64_sys_ioctl+0x43/0x50
[   54.038697][ T4646]  x64_sys_call+0x1816/0x3000
[   54.038719][ T4646]  do_syscall_64+0xd2/0x200
[   54.038743][ T4646]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   54.038811][ T4646]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   54.038878][ T4646]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.038907][ T4646] RIP: 0033:0x7f7c13c0eec9
[   54.039002][ T4646] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   54.039027][ T4646] RSP: 002b:00007f7c12677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   54.039052][ T4646] RAX: ffffffffffffffda RBX: 00007f7c13e65fa0 RCX: 00007f7c13c0eec9
[   54.039077][ T4646] RDX: 0000200000000200 RSI: 0000000040047451 RDI: 0000000000000006
[   54.039093][ T4646] RBP: 00007f7c12677090 R08: 0000000000000000 R09: 0000000000000000
[   54.039110][ T4646] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   54.039128][ T4646] R13: 00007f7c13e66038 R14: 00007f7c13e65fa0 R15: 00007fff123f6718
[   54.039148][ T4646]  </TASK>
[   54.281718][ T4654] loop3: detected capacity change from 0 to 512
[   54.301860][ T4654] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #15: comm syz.3.258: casefold flag without casefold feature
[   54.318881][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.331810][ T4654] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.258: couldn't read orphan inode 15 (err -117)
[   54.386736][ T4654] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.410438][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.502830][   T29] kauditd_printk_skb: 269 callbacks suppressed
[   54.502847][   T29] audit: type=1400 audit(1760103174.418:1471): avc:  denied  { execute } for  pid=4660 comm="syz.4.262" name="bus" dev="tmpfs" ino=323 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   54.576635][   T29] audit: type=1400 audit(1760103174.418:1472): avc:  denied  { execute_no_trans } for  pid=4660 comm="syz.4.262" path="/56/bus" dev="tmpfs" ino=323 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   54.599883][   T29] audit: type=1400 audit(1760103174.458:1473): avc:  denied  { write } for  pid=4653 comm="syz.3.258" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   54.673492][   T29] audit: type=1400 audit(1760103174.498:1474): avc:  denied  { unmount } for  pid=3309 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[   54.693521][   T29] audit: type=1400 audit(1760103174.548:1475): avc:  denied  { checkpoint_restore } for  pid=4662 comm="syz.1.261" capability=40  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   54.715369][   T29] audit: type=1326 audit(1760103174.548:1476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4656 comm="syz.0.260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7f6cceec9 code=0x7ffc0000
[   54.739519][   T29] audit: type=1326 audit(1760103174.548:1477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4656 comm="syz.0.260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7f6cceec9 code=0x7ffc0000
[   54.763161][   T29] audit: type=1326 audit(1760103174.548:1478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4656 comm="syz.0.260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7fa7f6cceec9 code=0x7ffc0000
[   54.786694][   T29] audit: type=1400 audit(1760103174.548:1479): avc:  denied  { mount } for  pid=4656 comm="syz.0.260" name="/" dev="ramfs" ino=8387 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[   54.808901][   T29] audit: type=1326 audit(1760103174.548:1480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4656 comm="syz.0.260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7f6cceec9 code=0x7ffc0000
[   54.846204][ T3730] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.938334][ T4678] loop2: detected capacity change from 0 to 512
[   54.946389][ T4682] SELinux: failed to load policy
[   54.961824][ T4684] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[   55.029046][ T4678] EXT4-fs warning (device loop2): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   55.078217][ T4695] loop0: detected capacity change from 0 to 128
[   55.161454][ T4678] EXT4-fs (loop2): mount failed
[   55.191396][ T4696] 9pnet: Could not find request transport: f
[   55.232681][ T4702] loop3: detected capacity change from 0 to 764
[   55.259921][ T4702] rock: directory entry would overflow storage
[   55.266178][ T4702] rock: sig=0x5245, size=8, remaining=5
[   55.275391][ T4688] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   55.283266][ T4688] FAT-fs (loop0): Filesystem has been set read-only
[   55.290248][ T4688] bio_check_eod: 110190 callbacks suppressed
[   55.290265][ T4688] syz.0.268: attempt to access beyond end of device
[   55.290265][ T4688] loop0: rw=524288, sector=2065, nr_sectors = 8 limit=128
[   55.312874][ T4688] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   55.320797][ T4688] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   55.335578][ T4695] syz.0.268: attempt to access beyond end of device
[   55.335578][ T4695] loop0: rw=0, sector=2065, nr_sectors = 1 limit=128
[   55.377690][ T4695] syz.0.268: attempt to access beyond end of device
[   55.377690][ T4695] loop0: rw=0, sector=2066, nr_sectors = 1 limit=128
[   55.438140][ T4695] syz.0.268: attempt to access beyond end of device
[   55.438140][ T4695] loop0: rw=0, sector=2067, nr_sectors = 1 limit=128
[   55.453485][ T4695] syz.0.268: attempt to access beyond end of device
[   55.453485][ T4695] loop0: rw=0, sector=2068, nr_sectors = 1 limit=128
[   55.505964][ T4695] syz.0.268: attempt to access beyond end of device
[   55.505964][ T4695] loop0: rw=0, sector=2069, nr_sectors = 1 limit=128
[   55.549349][ T4716] loop4: detected capacity change from 0 to 512
[   55.576669][ T4715] loop2: detected capacity change from 0 to 512
[   55.599463][ T4695] syz.0.268: attempt to access beyond end of device
[   55.599463][ T4695] loop0: rw=0, sector=2070, nr_sectors = 1 limit=128
[   55.638752][ T4716] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   55.640548][ T4695] syz.0.268: attempt to access beyond end of device
[   55.640548][ T4695] loop0: rw=0, sector=2071, nr_sectors = 1 limit=128
[   55.664327][ T4695] syz.0.268: attempt to access beyond end of device
[   55.664327][ T4695] loop0: rw=0, sector=2072, nr_sectors = 1 limit=128
[   55.666005][ T4716] EXT4-fs (loop4): orphan cleanup on readonly fs
[   55.677689][ T4695] syz.0.268: attempt to access beyond end of device
[   55.677689][ T4695] loop0: rw=0, sector=2065, nr_sectors = 1 limit=128
[   55.756901][ T4715] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   55.798921][ T4716] EXT4-fs error (device loop4): ext4_do_update_inode:5624: inode #16: comm syz.4.274: corrupted inode contents
[   55.811517][ T4688] buffer_io_error: 108208 callbacks suppressed
[   55.811532][ T4688] Buffer I/O error on dev loop0, logical block 2067, async page read
[   55.841197][ T4715] EXT4-fs (loop2): orphan cleanup on readonly fs
[   55.861970][ T4716] EXT4-fs (loop4): Remounting filesystem read-only
[   55.874105][ T4688] Buffer I/O error on dev loop0, logical block 2068, async page read
[   55.908495][ T4715] EXT4-fs error (device loop2): ext4_do_update_inode:5624: inode #16: comm syz.2.273: corrupted inode contents
[   55.923108][ T4716] EXT4-fs (loop4): 1 truncate cleaned up
[   55.929676][ T4363] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   55.938910][ T4688] Buffer I/O error on dev loop0, logical block 2069, async page read
[   55.940364][ T4363] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   55.949139][ T4688] Buffer I/O error on dev loop0, logical block 2070, async page read
[   55.969107][ T4363] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[   55.972057][ T4715] EXT4-fs (loop2): Remounting filesystem read-only
[   55.979576][ T4688] Buffer I/O error on dev loop0, logical block 2071, async page read
[   55.979679][ T4688] Buffer I/O error on dev loop0, logical block 2072, async page read
[   55.999540][ T4716] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   56.008080][ T4715] EXT4-fs (loop2): 1 truncate cleaned up
[   56.031133][ T4716] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.041832][ T4363] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   56.041888][ T4363] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   56.041949][ T4363] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started
[   56.114111][ T4715] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   56.195415][ T4715] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.304422][ T4760] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[   56.374758][ T4765] loop4: detected capacity change from 0 to 128
[   56.380750][ T4760] SELinux: failed to load policy
[   56.387389][ T4768] netlink: 24 bytes leftover after parsing attributes in process `syz.2.279'.
[   56.404351][ T4768] IPVS: Error connecting to the multicast addr
[   56.427421][ T4765] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[   56.429239][ T4768] netlink: 'syz.2.279': attribute type 3 has an invalid length.
[   56.435406][ T4765] FAT-fs (loop4): Filesystem has been set read-only
[   56.443065][ T4768] netlink: 'syz.2.279': attribute type 3 has an invalid length.
[   56.472822][ T4765] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[   56.480848][ T4765] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[   56.633643][ T4761] Buffer I/O error on dev loop4, logical block 2065, async page read
[   56.642000][ T4761] Buffer I/O error on dev loop4, logical block 2066, async page read
[   56.663532][ T4761] Buffer I/O error on dev loop4, logical block 2067, async page read
[   56.687733][ T4761] Buffer I/O error on dev loop4, logical block 2068, async page read
[   57.517902][ T4881] netlink: 7 bytes leftover after parsing attributes in process `syz.2.287'.
[   57.540237][ T4881] netlink: 7 bytes leftover after parsing attributes in process `syz.2.287'.
[   57.743002][ T4888] mmap: syz.2.289 (4888) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   57.926531][ T4893] loop0: detected capacity change from 0 to 128
[   58.007254][ T4900] netlink: 8 bytes leftover after parsing attributes in process `syz.2.293'.
[   58.039881][ T4893] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   58.047777][ T4893] FAT-fs (loop0): Filesystem has been set read-only
[   58.054623][ T4893] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   58.062485][ T4893] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   58.074412][ T4903] loop2: detected capacity change from 0 to 1024
[   58.105598][ T4903] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   58.351955][ T4913] loop4: detected capacity change from 0 to 512
[   58.421199][ T4913] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   58.585644][ T4913] EXT4-fs (loop4): orphan cleanup on readonly fs
[   58.649970][ T4917] SELinux: failed to load policy
[   58.657607][ T4913] EXT4-fs error (device loop4): ext4_do_update_inode:5624: inode #16: comm syz.4.296: corrupted inode contents
[   58.687377][ T4913] EXT4-fs (loop4): Remounting filesystem read-only
[   58.734872][ T4913] EXT4-fs (loop4): 1 truncate cleaned up
[   58.741094][ T4389] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   58.751842][ T4389] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   58.763492][ T4389] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[   58.808069][ T4913] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   58.851074][ T4913] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.917209][ T4911] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   58.935942][ T4911] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   58.948692][ T4911] EXT4-fs (loop2): This should not happen!! Data will be lost
[   58.948692][ T4911] 
[   58.958609][ T4911] EXT4-fs (loop2): Total free blocks count 0
[   58.964675][ T4911] EXT4-fs (loop2): Free/Dirty block details
[   58.970662][ T4911] EXT4-fs (loop2): free_blocks=68451041280
[   58.976786][ T4911] EXT4-fs (loop2): dirty_blocks=15104
[   58.982177][ T4911] EXT4-fs (loop2): Block reservation details
[   58.988266][ T4911] EXT4-fs (loop2): i_reserved_data_blocks=944
[   59.032246][ T4924] loop1: detected capacity change from 0 to 512
[   59.044759][ T4389] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 2048 with error 28
[   59.090092][ T4924] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   59.114028][ T4924] ext4 filesystem being mounted at /62/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   59.354993][ T4946] loop2: detected capacity change from 0 to 764
[   59.372853][ T4946] rock: directory entry would overflow storage
[   59.379130][ T4946] rock: sig=0x5245, size=8, remaining=5
[   59.387687][ T4944] loop4: detected capacity change from 0 to 512
[   59.640189][ T4944] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   59.719625][ T4944] EXT4-fs (loop4): orphan cleanup on readonly fs
[   59.849318][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.883368][ T4944] EXT4-fs error (device loop4): ext4_do_update_inode:5624: inode #16: comm syz.4.307: corrupted inode contents
[   59.901241][ T4944] EXT4-fs (loop4): Remounting filesystem read-only
[   59.921487][ T4944] EXT4-fs (loop4): 1 truncate cleaned up
[   59.929052][ T4380] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   59.939678][ T4380] __quota_error: 191 callbacks suppressed
[   59.939696][ T4380] Quota error (device loop4): write_blk: dquota write failed
[   59.952994][ T4380] Quota error (device loop4): remove_free_dqentry: Can't write block (5) with free entries
[   59.963183][ T4380] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   59.973857][ T4380] Quota error (device loop4): write_blk: dquota write failed
[   59.977007][ T4956] loop0: detected capacity change from 0 to 512
[   59.981272][ T4380] Quota error (device loop4): free_dqentry: Can't move quota data block (5) to free list
[   60.007889][ T4380] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[   60.018044][ T4380] Quota error (device loop4): v2_write_file_info: Can't write info structure
[   60.026991][ T4380] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   60.074833][ T4944] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   60.113828][ T4956] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   60.140499][ T4956] EXT4-fs (loop0): orphan cleanup on readonly fs
[   60.176994][ T4956] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #16: comm syz.0.308: corrupted inode contents
[   60.238352][ T4956] EXT4-fs (loop0): Remounting filesystem read-only
[   60.261967][ T4956] EXT4-fs (loop0): 1 truncate cleaned up
[   60.269140][ T4363] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   60.279831][ T4363] Quota error (device loop0): write_blk: dquota write failed
[   60.287362][ T4363] Quota error (device loop0): remove_free_dqentry: Can't write block (5) with free entries
[   60.297438][ T4363] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   60.308040][ T4363] Quota error (device loop0): write_blk: dquota write failed
[   60.315623][ T4363] Quota error (device loop0): free_dqentry: Can't move quota data block (5) to free list
[   60.325540][ T4363] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started
[   60.362217][ T4978] loop1: detected capacity change from 0 to 512
[   60.436058][ T4978] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   60.448113][ T4978] EXT4-fs (loop1): orphan cleanup on readonly fs
[   60.485372][ T4978] EXT4-fs error (device loop1): ext4_do_update_inode:5624: inode #16: comm syz.1.311: corrupted inode contents
[   60.533483][ T4978] EXT4-fs (loop1): Remounting filesystem read-only
[   60.545633][ T4978] EXT4-fs (loop1): 1 truncate cleaned up
[   60.552222][ T4387] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   60.562878][ T4387] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   60.576963][ T4997] SELinux: failed to load policy
[   60.630615][ T4387] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started
[   60.686169][ T5012] loop4: detected capacity change from 0 to 4096
[   60.693059][ T5012] EXT4-fs: Ignoring removed nomblk_io_submit option
[   60.933733][ T5036] loop1: detected capacity change from 0 to 128
[   61.045448][ T5049] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[   61.053648][ T5049] FAT-fs (loop1): Filesystem has been set read-only
[   61.089996][ T5049] bio_check_eod: 77212 callbacks suppressed
[   61.090014][ T5049] syz.1.317: attempt to access beyond end of device
[   61.090014][ T5049] loop1: rw=524288, sector=2065, nr_sectors = 8 limit=128
[   61.122219][ T5049] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[   61.130203][ T5049] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[   61.141947][ T5028] syz.1.317: attempt to access beyond end of device
[   61.141947][ T5028] loop1: rw=0, sector=2065, nr_sectors = 1 limit=128
[   61.155295][ T5028] buffer_io_error: 74052 callbacks suppressed
[   61.155315][ T5028] Buffer I/O error on dev loop1, logical block 2065, async page read
[   61.169967][ T5028] syz.1.317: attempt to access beyond end of device
[   61.169967][ T5028] loop1: rw=0, sector=2066, nr_sectors = 1 limit=128
[   61.183306][ T5028] Buffer I/O error on dev loop1, logical block 2066, async page read
[   61.192173][ T5028] syz.1.317: attempt to access beyond end of device
[   61.192173][ T5028] loop1: rw=0, sector=2067, nr_sectors = 1 limit=128
[   61.205529][ T5028] Buffer I/O error on dev loop1, logical block 2067, async page read
[   61.214374][ T5028] syz.1.317: attempt to access beyond end of device
[   61.214374][ T5028] loop1: rw=0, sector=2068, nr_sectors = 1 limit=128
[   61.227605][ T5028] Buffer I/O error on dev loop1, logical block 2068, async page read
[   61.236162][ T5028] syz.1.317: attempt to access beyond end of device
[   61.236162][ T5028] loop1: rw=0, sector=2069, nr_sectors = 1 limit=128
[   61.249462][ T5028] Buffer I/O error on dev loop1, logical block 2069, async page read
[   61.258181][ T5028] syz.1.317: attempt to access beyond end of device
[   61.258181][ T5028] loop1: rw=0, sector=2070, nr_sectors = 1 limit=128
[   61.271402][ T5028] Buffer I/O error on dev loop1, logical block 2070, async page read
[   61.280009][ T5028] syz.1.317: attempt to access beyond end of device
[   61.280009][ T5028] loop1: rw=0, sector=2071, nr_sectors = 1 limit=128
[   61.293276][ T5028] Buffer I/O error on dev loop1, logical block 2071, async page read
[   61.302491][ T5028] syz.1.317: attempt to access beyond end of device
[   61.302491][ T5028] loop1: rw=0, sector=2072, nr_sectors = 1 limit=128
[   61.315745][ T5028] Buffer I/O error on dev loop1, logical block 2072, async page read
[   61.324697][ T5049] syz.1.317: attempt to access beyond end of device
[   61.324697][ T5049] loop1: rw=0, sector=2065, nr_sectors = 1 limit=128
[   61.337960][ T5049] Buffer I/O error on dev loop1, logical block 2065, async page read
[   61.346659][ T5049] Buffer I/O error on dev loop1, logical block 2066, async page read
[   61.796522][ T5106] syzkaller0: entered promiscuous mode
[   61.802079][ T5106] syzkaller0: entered allmulticast mode
[   61.963281][ T5118] loop0: detected capacity change from 0 to 512
[   61.983984][ T5110] loop1: detected capacity change from 0 to 512
[   61.990715][ T5110] /dev/loop1: Can't open blockdev
[   62.019784][ T5120] netlink: 4 bytes leftover after parsing attributes in process `syz.4.324'.
[   62.020165][ T5118] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   62.116925][ T5118] EXT4-fs (loop0): orphan cleanup on readonly fs
[   62.254527][ T5118] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #16: comm syz.0.323: corrupted inode contents
[   62.286485][ T5118] EXT4-fs (loop0): Remounting filesystem read-only
[   62.306219][ T5126] SELinux: failed to load policy
[   62.320720][ T5118] EXT4-fs (loop0): 1 truncate cleaned up
[   62.439075][ T4363] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   62.449703][ T4363] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   62.479549][ T4363] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started
[   62.655331][ T5142] syzkaller1: entered promiscuous mode
[   62.660854][ T5142] syzkaller1: entered allmulticast mode
[   62.669087][ T5152] IPVS: sync thread started: state = MASTER, mcast_ifn = vcan0, syncid = 0, id = 0
[   62.774806][ T5148] loop0: detected capacity change from 0 to 128
[   62.847032][ T5166] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   62.869093][ T5171] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   62.877057][ T5171] FAT-fs (loop0): Filesystem has been set read-only
[   62.884192][ T5171] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   62.892040][ T5171] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   62.936383][ T5166] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.016138][ T5166] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.090499][ T5166] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.156456][ T4380] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   63.203751][ T4380] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   63.248514][ T4380] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   63.286677][ T4380] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   63.359054][ T5178] SELinux: failed to load policy
[   63.481976][ T5184] syzkaller0: entered promiscuous mode
[   63.487590][ T5184] syzkaller0: entered allmulticast mode
[   63.553222][ T5189] netlink: 24 bytes leftover after parsing attributes in process `syz.4.342'.
[   63.688789][ T5183] loop3: detected capacity change from 0 to 512
[   63.719265][ T5194] loop0: detected capacity change from 0 to 512
[   63.737087][ T5183] ext4 filesystem being mounted at /60/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.772859][ T5194] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   64.094515][ T5194] EXT4-fs (loop0): orphan cleanup on readonly fs
[   64.215180][ T5194] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #16: comm syz.0.343: corrupted inode contents
[   64.243112][ T5194] EXT4-fs (loop0): Remounting filesystem read-only
[   64.262041][ T5194] EXT4-fs (loop0): 1 truncate cleaned up
[   64.273593][ T4363] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   64.284215][ T4363] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   64.296526][ T4363] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started
[   64.385881][ T5212] netlink: 8 bytes leftover after parsing attributes in process `syz.0.348'.
[   64.419249][ T5212] netlink: 4 bytes leftover after parsing attributes in process `syz.0.348'.
[   64.430396][ T5218] FAULT_INJECTION: forcing a failure.
[   64.430396][ T5218] name failslab, interval 1, probability 0, space 0, times 0
[   64.443167][ T5218] CPU: 1 UID: 0 PID: 5218 Comm: syz.2.351 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   64.443239][ T5218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   64.443254][ T5218] Call Trace:
[   64.443263][ T5218]  <TASK>
[   64.443273][ T5218]  __dump_stack+0x1d/0x30
[   64.443348][ T5218]  dump_stack_lvl+0xe8/0x140
[   64.443373][ T5218]  dump_stack+0x15/0x1b
[   64.443420][ T5218]  should_fail_ex+0x265/0x280
[   64.443459][ T5218]  should_failslab+0x8c/0xb0
[   64.443493][ T5218]  kmem_cache_alloc_noprof+0x50/0x480
[   64.443560][ T5218]  ? mm_alloc+0x2b/0xa0
[   64.443589][ T5218]  mm_alloc+0x2b/0xa0
[   64.443612][ T5218]  alloc_bprm+0x20e/0x350
[   64.443633][ T5218]  do_execveat_common+0x12e/0x750
[   64.443662][ T5218]  ? __pfx___tsan_unaligned_volatile_write4+0x10/0x10
[   64.443709][ T5218]  ? getname_flags+0x154/0x3b0
[   64.443801][ T5218]  __x64_sys_execveat+0x73/0x90
[   64.443871][ T5218]  x64_sys_call+0x1fec/0x3000
[   64.443895][ T5218]  do_syscall_64+0xd2/0x200
[   64.443970][ T5218]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   64.444037][ T5218]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   64.444059][ T5218]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.444094][ T5218] RIP: 0033:0x7f59c5b4eec9
[   64.444184][ T5218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.444207][ T5218] RSP: 002b:00007f59c45af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[   64.444232][ T5218] RAX: ffffffffffffffda RBX: 00007f59c5da5fa0 RCX: 00007f59c5b4eec9
[   64.444333][ T5218] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[   64.444346][ T5218] RBP: 00007f59c45af090 R08: 0000000000001000 R09: 0000000000000000
[   64.444358][ T5218] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   64.444369][ T5218] R13: 00007f59c5da6038 R14: 00007f59c5da5fa0 R15: 00007ffd20184738
[   64.444390][ T5218]  </TASK>
[   64.698772][ T5220] loop4: detected capacity change from 0 to 764
[   64.707771][ T5220] rock: directory entry would overflow storage
[   64.714023][ T5220] rock: sig=0x5245, size=8, remaining=5
[   64.741802][ T5233] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[   64.754253][ T5233] Cannot find add_set index 0 as target
[   64.785253][ T5228] netlink: 40 bytes leftover after parsing attributes in process `syz.3.354'.
[   64.861221][ T5234] loop0: detected capacity change from 0 to 512
[   64.910925][ T5240] loop3: detected capacity change from 0 to 512
[   64.938098][ T5234] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   64.945315][ T5240] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   64.954983][ T5234] EXT4-fs (loop0): orphan cleanup on readonly fs
[   64.982751][ T5240] EXT4-fs (loop3): orphan cleanup on readonly fs
[   65.004176][ T5234] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #16: comm syz.0.358: corrupted inode contents
[   65.018014][ T5234] EXT4-fs (loop0): Remounting filesystem read-only
[   65.030002][ T5234] EXT4-fs (loop0): 1 truncate cleaned up
[   65.037157][ T4380] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   65.037904][ T5240] EXT4-fs error (device loop3): ext4_do_update_inode:5624: inode #16: comm syz.3.359: corrupted inode contents
[   65.047719][ T4380] __quota_error: 221 callbacks suppressed
[   65.047735][ T4380] Quota error (device loop0): write_blk: dquota write failed
[   65.047748][ T4380] Quota error (device loop0): remove_free_dqentry: Can't write block (5) with free entries
[   65.047844][ T4380] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   65.047867][ T4380] Quota error (device loop0): write_blk: dquota write failed
[   65.047883][ T4380] Quota error (device loop0): free_dqentry: Can't move quota data block (5) to free list
[   65.047967][ T4380] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started
[   65.047993][ T4380] Quota error (device loop0): v2_write_file_info: Can't write info structure
[   65.048052][ T4380] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   65.160443][ T5240] EXT4-fs (loop3): Remounting filesystem read-only
[   65.170054][ T5240] EXT4-fs (loop3): 1 truncate cleaned up
[   65.177530][ T4386] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   65.188143][ T4386] Quota error (device loop3): write_blk: dquota write failed
[   65.195566][ T4386] Quota error (device loop3): remove_free_dqentry: Can't write block (5) with free entries
[   65.205645][ T4386] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   65.216269][ T4386] Quota error (device loop3): write_blk: dquota write failed
[   65.223753][ T4386] Quota error (device loop3): free_dqentry: Can't move quota data block (5) to free list
[   65.253590][ T4386] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started
[   65.675568][ T5273] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[   65.838514][ T5277] netlink: 12 bytes leftover after parsing attributes in process `syz.1.372'.
[   65.900460][ T5277] netlink: 'syz.1.372': attribute type 21 has an invalid length.
[   65.940647][ T5277] netlink: 132 bytes leftover after parsing attributes in process `syz.1.372'.
[   65.949691][ T5277] netlink: 20 bytes leftover after parsing attributes in process `syz.1.372'.
[   66.019443][ T5284] loop1: detected capacity change from 0 to 512
[   66.022373][ T5282] SELinux: failed to load policy
[   66.037969][ T5286] netlink: 8 bytes leftover after parsing attributes in process `syz.2.376'.
[   66.075317][ T5284] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   66.096609][ T5284] EXT4-fs (loop1): orphan cleanup on readonly fs
[   66.114837][ T5292] loop3: detected capacity change from 0 to 764
[   66.157198][ T5292] rock: directory entry would overflow storage
[   66.163436][ T5292] rock: sig=0x5245, size=8, remaining=5
[   66.207353][ T5284] EXT4-fs error (device loop1): ext4_do_update_inode:5624: inode #16: comm syz.1.375: corrupted inode contents
[   66.251675][ T5299] loop0: detected capacity change from 0 to 128
[   66.286190][ T5284] EXT4-fs (loop1): Remounting filesystem read-only
[   66.295594][ T5284] EXT4-fs (loop1): 1 truncate cleaned up
[   66.303722][ T4363] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   66.314458][ T4363] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   66.331054][ T4363] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started
[   66.336638][ T5302] syzkaller0: entered promiscuous mode
[   66.346707][ T5302] syzkaller0: entered allmulticast mode
[   66.375424][ T5294] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   66.383441][ T5294] FAT-fs (loop0): Filesystem has been set read-only
[   66.398001][ T5294] bio_check_eod: 44726 callbacks suppressed
[   66.398022][ T5294] syz.0.379: attempt to access beyond end of device
[   66.398022][ T5294] loop0: rw=524288, sector=2065, nr_sectors = 8 limit=128
[   66.422037][ T5294] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   66.429976][ T5294] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   66.460764][ T5294] syz.0.379: attempt to access beyond end of device
[   66.460764][ T5294] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[   66.476669][ T5294] syz.0.379: attempt to access beyond end of device
[   66.476669][ T5294] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[   66.490228][ T5294] syz.0.379: attempt to access beyond end of device
[   66.490228][ T5294] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[   66.507799][ T5296] syz.0.379: attempt to access beyond end of device
[   66.507799][ T5296] loop0: rw=0, sector=2065, nr_sectors = 1 limit=128
[   66.521072][ T5296] buffer_io_error: 44086 callbacks suppressed
[   66.521101][ T5296] Buffer I/O error on dev loop0, logical block 2065, async page read
[   66.536063][ T5296] syz.0.379: attempt to access beyond end of device
[   66.536063][ T5296] loop0: rw=0, sector=2066, nr_sectors = 1 limit=128
[   66.549373][ T5296] Buffer I/O error on dev loop0, logical block 2066, async page read
[   66.579617][ T5296] syz.0.379: attempt to access beyond end of device
[   66.579617][ T5296] loop0: rw=0, sector=2067, nr_sectors = 1 limit=128
[   66.592967][ T5296] Buffer I/O error on dev loop0, logical block 2067, async page read
[   66.601733][ T5296] syz.0.379: attempt to access beyond end of device
[   66.601733][ T5296] loop0: rw=0, sector=2068, nr_sectors = 1 limit=128
[   66.614975][ T5296] Buffer I/O error on dev loop0, logical block 2068, async page read
[   66.623582][ T5296] syz.0.379: attempt to access beyond end of device
[   66.623582][ T5296] loop0: rw=0, sector=2069, nr_sectors = 1 limit=128
[   66.636779][ T5296] Buffer I/O error on dev loop0, logical block 2069, async page read
[   66.645265][ T5296] syz.0.379: attempt to access beyond end of device
[   66.645265][ T5296] loop0: rw=0, sector=2070, nr_sectors = 1 limit=128
[   66.658537][ T5296] Buffer I/O error on dev loop0, logical block 2070, async page read
[   66.668164][ T5296] Buffer I/O error on dev loop0, logical block 2071, async page read
[   66.676428][ T5296] Buffer I/O error on dev loop0, logical block 2072, async page read
[   66.684819][ T5294] Buffer I/O error on dev loop0, logical block 2065, async page read
[   66.692967][ T5294] Buffer I/O error on dev loop0, logical block 2066, async page read
[   66.763544][ T5314] loop4: detected capacity change from 0 to 512
[   66.802949][ T5314] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   66.813082][ T5314] EXT4-fs (loop4): orphan cleanup on readonly fs
[   66.908345][ T5314] EXT4-fs error (device loop4): ext4_do_update_inode:5624: inode #16: comm syz.4.385: corrupted inode contents
[   66.947184][ T5314] EXT4-fs (loop4): Remounting filesystem read-only
[   66.949974][ T5310] loop1: detected capacity change from 0 to 4096
[   66.968812][ T5310] EXT4-fs: Ignoring removed nomblk_io_submit option
[   66.981761][ T5314] EXT4-fs (loop4): 1 truncate cleaned up
[   66.989437][ T4380] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   67.000131][ T4380] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   67.052338][ T4380] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[   67.144529][ T5320] loop3: detected capacity change from 0 to 512
[   67.188357][ T5320] ext4 filesystem being mounted at /71/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   67.348607][ T5335] loop4: detected capacity change from 0 to 512
[   67.382264][ T5338] SELinux: failed to load policy
[   67.404721][ T5335] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   67.423621][ T5335] EXT4-fs (loop4): orphan cleanup on readonly fs
[   67.452772][ T5346] loop0: detected capacity change from 0 to 764
[   67.466164][ T5346] rock: directory entry would overflow storage
[   67.470447][ T5335] EXT4-fs error (device loop4): ext4_do_update_inode:5624: inode #16: comm syz.4.393: corrupted inode contents
[   67.472447][ T5346] rock: sig=0x5245, size=8, remaining=5
[   67.497102][ T5335] EXT4-fs (loop4): Remounting filesystem read-only
[   67.506361][ T5335] EXT4-fs (loop4): 1 truncate cleaned up
[   67.512876][ T4389] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   67.523601][ T4389] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   67.534462][ T4389] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[   67.607875][ T5352] netlink: 36 bytes leftover after parsing attributes in process `syz.4.398'.
[   67.644886][ T5356] netlink: 8 bytes leftover after parsing attributes in process `syz.2.400'.
[   67.711339][ T5360] loop4: detected capacity change from 0 to 512
[   67.763638][ T5360] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   67.781464][ T5360] EXT4-fs (loop4): orphan cleanup on readonly fs
[   67.793522][ T4389] ==================================================================
[   67.801662][ T4389] BUG: KCSAN: data-race in n_tty_receive_char_flow_ctrl / tty_set_termios
[   67.810224][ T4389] 
[   67.812572][ T4389] write to 0xffff888103fdcd08 of 44 bytes by task 5367 on cpu 1:
[   67.814124][ T5366] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   67.820307][ T4389]  tty_set_termios+0xc0/0x8c0
[   67.820352][ T4389]  set_termios+0x490/0x4d0
[   67.820388][ T4389]  tty_mode_ioctl+0x379/0x5c0
[   67.820426][ T4389]  n_tty_ioctl_helper+0x91/0x210
[   67.846503][ T4389]  n_tty_ioctl+0x101/0x200
[   67.850957][ T4389]  tty_ioctl+0x83c/0xb80
[   67.855217][ T4389]  __se_sys_ioctl+0xce/0x140
[   67.859836][ T4389]  __x64_sys_ioctl+0x43/0x50
[   67.864451][ T4389]  x64_sys_call+0x1816/0x3000
[   67.869199][ T4389]  do_syscall_64+0xd2/0x200
[   67.873740][ T4389]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.879000][ T5360] EXT4-fs error (device loop4): ext4_do_update_inode:5624: inode #16: comm syz.4.402: corrupted inode contents
[   67.879656][ T4389] 
[   67.879664][ T4389] read to 0xffff888103fdcd22 of 1 bytes by task 4389 on cpu 0:
[   67.879680][ T4389]  n_tty_receive_char_flow_ctrl+0x59/0x1a0
[   67.879725][ T4389]  n_tty_lookahead_flow_ctrl+0xed/0x130
[   67.879765][ T4389]  tty_port_default_lookahead_buf+0x91/0xc0
[   67.879800][ T4389]  flush_to_ldisc+0x285/0x340
[   67.879829][ T4389]  process_scheduled_works+0x4cb/0x9d0
[   67.879865][ T4389]  worker_thread+0x582/0x770
[   67.879883][ T4389]  kthread+0x486/0x510
[   67.879911][ T4389]  ret_from_fork+0x122/0x1b0
[   67.879937][ T4389]  ret_from_fork_asm+0x1a/0x30
[   67.879966][ T4389] 
[   67.879971][ T4389] value changed: 0x13 -> 0x00
[   67.879981][ T4389] 
[   67.879992][ T4389] Reported by Kernel Concurrency Sanitizer on:
[   67.880007][ T4389] CPU: 0 UID: 0 PID: 4389 Comm: kworker/u8:41 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   67.895082][ T5360] EXT4-fs (loop4): Remounting filesystem read-only
[   67.901593][ T4389] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   67.901614][ T4389] Workqueue: events_unbound flush_to_ldisc
[   67.901648][ T4389] ==================================================================
[   67.908048][ T5366] batman_adv: batadv0: Removing interface: batadv_slave_1
[   68.020098][ T5360] EXT4-fs (loop4): 1 truncate cleaned up
[   68.073394][ T4363] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   68.084078][ T4363] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   68.095229][ T4363] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started