last executing test programs:

38.428602375s ago: executing program 2 (id=132):
r0 = memfd_create(&(0x7f0000000640)='\xa3\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\xf5\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xacz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8ck\xc6S\xc3g\xb9\x1a\xf8\x8f \x9d\x00u7\xf0\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\xc9\xff \xd8\x9d\xad\x11\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\xd00\x88y\xebX\x92\xd5\xbb\xa1h7\xf3\xe0\x0f\xbd\x02\xe4%\xf9\xb1\x87\x8aM\xfeG\xb2L\xbd\x92-\xcd\x1f\xf4\xe1,\xb7G|\xec\"\xa2\xab\xf6\x84\xe0\xcf1\x9a\x00'/440, 0x1)
write$binfmt_elf32(r0, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b300000000002a002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff"], 0xd8)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r2}, 0x18)
execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

38.292406774s ago: executing program 2 (id=136):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000003000000000000000800000002000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000003c0)='kmem_cache_free\x00', r0, 0x0, 0x8}, 0x18)
msgget$private(0x0, 0x0)

38.292282354s ago: executing program 2 (id=137):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$int_in(r1, 0x5452, &(0x7f00000000c0)=0x14f)
setsockopt$inet6_tcp_int(r1, 0x6, 0x19, &(0x7f0000000080), 0x4)
setsockopt$inet_sctp_SCTP_EVENTS(r0, 0x84, 0xb, 0x0, 0x0)

38.292003694s ago: executing program 2 (id=138):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_int(r1, 0x0, 0x33, &(0x7f0000000100)=0x2, 0x3)
syz_mount_image$vfat(&(0x7f00000001c0), &(0x7f0000000300)='./file0/file0\x00', 0x220d886, &(0x7f0000000480)=ANY=[@ANYRESOCT, @ANYRES32=r0, @ANYRESHEX=r1, @ANYRESHEX, @ANYRES32=r1, @ANYRES16=0x0], 0x1, 0x2af, &(0x7f0000000a40)="$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")
r2 = gettid()
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x101102)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x28b1012, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000080)='./file0/../file0\x00', 0x89901)
umount2(&(0x7f0000000380)='./file0\x00', 0x6)
read(r3, &(0x7f0000000200)=""/213, 0xd5)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r3, 0x4040534e, &(0x7f0000000040)={0x335, @tick=0xff, 0x3, {0x5}, 0xfc, 0x0, 0x1})
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(r3, 0xc08c5334, &(0x7f0000000540)={0x1e, 0x2000, 0x1, 'queue0\x00', 0x20000})
tkill(r2, 0x7)
syz_open_dev$sg(0x0, 0x0, 0x22c01)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
shutdown(r4, 0x2)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r4, 0x0)
r5 = openat$tun(0xffffffffffffff9c, 0x0, 0x82241, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r6, 0x0, 0xfffffffffffffffd}, 0x18)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEAUTHENTICATE(r8, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRESDEC, @ANYRESHEX=r7, @ANYRES32=0x0, @ANYRES32=r6], 0x24}, 0x1, 0x0, 0x0, 0xc080}, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0xfffffffffffffd01)
openat$autofs(0xffffffffffffff9c, 0x0, 0x402, 0x0)

38.007243011s ago: executing program 2 (id=146):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x4008, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x40000000, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0, <r1=>0xffffffffffffffff}, 0x0, &(0x7f00000002c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r2}, 0x10)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
mkdir(0x0, 0x0)
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x7, 0x8)
sched_setscheduler(0x0, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)

37.796432699s ago: executing program 2 (id=151):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000007000000095"], &(0x7f0000000740)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='sched_switch\x00', r0, 0x0, 0x7}, 0x18)
socket$netlink(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1600000000000000040000000000000000400000", @ANYRES32=0x1, @ANYRES32=0x0, @ANYBLOB], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r1}, 0x10)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00'})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x0, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
dup(0xffffffffffffffff)
setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, 0x0, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0)

37.642599618s ago: executing program 32 (id=151):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000007000000095"], &(0x7f0000000740)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='sched_switch\x00', r0, 0x0, 0x7}, 0x18)
socket$netlink(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1600000000000000040000000000000000400000", @ANYRES32=0x1, @ANYRES32=0x0, @ANYBLOB], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r1}, 0x10)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00'})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x0, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
dup(0xffffffffffffffff)
setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, 0x0, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0)

2.03792335s ago: executing program 5 (id=1076):
r0 = io_uring_setup(0x664c, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0b00000005000000010001000900000001"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000170000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000feffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000200)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$inet6_dccp(0xa, 0x6, 0x0)
listen(r3, 0x9)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

1.938535309s ago: executing program 5 (id=1083):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kmem_cache_free\x00', r0, 0x0, 0x1}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
pwritev(r1, &(0x7f00000001c0)=[{0x0}, {0x0}], 0x2, 0x0, 0x0)

1.898622388s ago: executing program 5 (id=1085):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = fsopen(&(0x7f0000000480)='tmpfs\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000240)=',-\x10*\x00', &(0x7f0000000380)='$\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000001800)='\xd0\x9e^\xa0\xee\xc8\x17T\xb1GI\x90\xe2Q1\xb0\x8f\xe1\xa8\x95\xa0\xcd\fL\xf1<e\a\xa5\x8f\xab\x1a\xdaY\xfb\x03dhS\x97nZ\xf8\xc6\x1f\xd3K\xfa\xc8\x8d#\xce)\x9bg-D#g\x16\xf4\xd9\x00\x00\x00\x00\x00eA\x9f\xc3\x11\x18\xe6\xc5\x95\x9e!^\x97\b\x14\xc5\xad\t\f\xdeg\x8d\x16wW\xf6\xacE\xa3\xc8\xe7\xec\xd6\xbd\x1c+\n\xc7Q( \xba\xff\x17N\x1fBy\x15\x83\xec(B4/#W\xc5\x05\x9d\xd6\x02\fU!a\xdc|6\xdc\xee$\xb5\x1deC\xfb\xa2\xaa\xe0#\xcb\xde;sa\xad\xa6\xb6P\xa3\xf7\xc3\x93\xd4\xb6\x95\x02\xd8*\xa8\xd2\x94\xa3\x89\xa9\xa0\xc5\xc9=\xa5^\v\xfbO\xf3\xff\x1bf\xedC\xbd\xd1\xf1#\xb3\xe5\t\x9a\xddk\x95\xd5N\xf3\x98\x1a\xa3\xca%N\xf8\xc6\xbcJw\xd8\x99f\xf1\xb5\x93^x|\x05\x00\x00\x00o*\xd3\xab\x05$<\xa3KQm\x00\xd3M\xb2\xd0,\xeeP\x1a\xd0 yI!\x17\x9b\xe7\xef\t\xba\xa0]\xf4\xb7\x00_g/\r\xd2\x06\xc5\x15\x1d\xcc\x0eB\x87\xe9 \x81P\"\xea\xd5#\xa4\xe5\xa1\x19Wp\x83\xf8tC\x10\xbe\xe3\xa9H\xc7\x89\x0eN\xd3\xc1\xd7\x99\xd8\x88\x1dZ\x91\r\xd1\x1c\xac\xe26b\x04\xecB[\xf3Lp\xfcQ\xf8\xec\xa0\x87\xd3\xde\x8bo\xd2\xbb~;\x8d\xc2\xf1\tP\xdfB\"VD\v\x90\xfb`\x8b\xfbr\x87B\xc3\x1c\x99\xe1ft\xd1\xdb\x0e\x86\xa3\xfc;y\x9d\xe6\xe25\x9f9\nj\x8a\xba\xb5\xc7\x92`\xed\x89\xf4\xbd\xc3\xe7l\xa9\xda\xde\xe0\xcf\xeaM\xb2~\x159\x92\xf60\x0e\xa0\xc2\x17\x8aC\xa5\xcf\xcd\x16\xdb\x83v\xe8\xf1\x82\xe2\xa5\xf0\xc7K\xe4?|\xc9\xdfx\xf0\xb1', &(0x7f0000001600)='\xb8\x8b\xadTd\xdcJ\x03\xf7\n\x11x\xf5\x93Q#\xfe\xb4\xeb\xd9/\x90\xad\xc5\xd0\a\xef\x06$*\xf0\v7>\xa8`\xf1)\xec\xba\xb7\x85\a\x92I\xbb\xfe2\xa0\xc1\xb3\x13p\xa2l', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r2, 0x2, &(0x7f0000000340)='\xa3\x04\x00', &(0x7f00000003c0)='\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000080)='kfree\x00', &(0x7f0000000180)='\xfa.-\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000540)='U&~=\xd8G\x93\x14\xc9o\xaf\x8b\xd4-\xc5\x12\x8d\xc8\xf1\'\xcf\x92V\xceKg\x8b\xc3\x9e\xd6H\xad0`\xaf\x06\x00xOq\xb6H\x11', &(0x7f0000000580)='\xb8\x8b\xadTd\xdcJ\x03\xf7\n\x11x\xf5\x93Q#\xfe\xb4\xeb\xd9/\x90\xad\xc5\xd0\a\xef\x06$*\xf0\v7>\xa8`\xf1)\xec\xba\xb7\x85\a\x92I\xbb\xfe2\xa0\xc1\xb3\x13p\xa2l', 0x0)
close(r2)

1.864417858s ago: executing program 5 (id=1089):
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
r0 = openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000040)={0x8, 0x40000cca8, 0x4010})
r1 = epoll_create1(0x0)
r2 = getpid()
r3 = syz_pidfd_open(r2, 0x0)
setns(r3, 0x24020000)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001800)={&(0x7f00000017c0)='kfree\x00', r4, 0x0, 0xffffffffffffffff}, 0xc)
syz_clone(0xd5ba2180, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = socket$unix(0x1, 0x5, 0x0)
close(r5)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$sock_int(r6, 0x1, 0x2e, &(0x7f0000000040)=0x80, 0x4)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r7, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0xfff0)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1b00000000000000000000000080000000080000", @ANYRES32, @ANYBLOB="ff1b00000100ac7d11a3e9cdf50f8cd000000000004fb00000000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffcdb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r8}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r7, 0x6, 0x13, &(0x7f0000000100)=0x1, 0x4)
connect$inet(r7, &(0x7f00000006c0)={0x2, 0x0, @dev}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r7, 0x6, 0x14, &(0x7f0000000180)=0x2, 0x4)
sendmmsg$inet(r7, &(0x7f00000018c0)=[{{0x0, 0x0, &(0x7f00000001c0), 0x1}}, {{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000005c0)="b8", 0xfe49}, {&(0x7f0000000080)="61fc4777003a5456300750e99d9d0963"}], 0x1}}], 0x2, 0x4008440)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r5, &(0x7f0000000080)={0xa002a008})
r9 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r9, 0xc0185879, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)

1.575756555s ago: executing program 5 (id=1103):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r1 = fcntl$dupfd(r0, 0x0, r0)
write$sndseq(r1, 0x0, 0x0)

1.010941419s ago: executing program 4 (id=1130):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = fsopen(&(0x7f0000000480)='tmpfs\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000240)=',-\x10*\x00', &(0x7f0000000380)='$\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000001800)='\xd0\x9e^\xa0\xee\xc8\x17T\xb1GI\x90\xe2Q1\xb0\x8f\xe1\xa8\x95\xa0\xcd\fL\xf1<e\a\xa5\x8f\xab\x1a\xdaY\xfb\x03dhS\x97nZ\xf8\xc6\x1f\xd3K\xfa\xc8\x8d#\xce)\x9bg-D#g\x16\xf4\xd9\x00\x00\x00\x00\x00eA\x9f\xc3\x11\x18\xe6\xc5\x95\x9e!^\x97\b\x14\xc5\xad\t\f\xdeg\x8d\x16wW\xf6\xacE\xa3\xc8\xe7\xec\xd6\xbd\x1c+\n\xc7Q( \xba\xff\x17N\x1fBy\x15\x83\xec(B4/#W\xc5\x05\x9d\xd6\x02\fU!a\xdc|6\xdc\xee$\xb5\x1deC\xfb\xa2\xaa\xe0#\xcb\xde;sa\xad\xa6\xb6P\xa3\xf7\xc3\x93\xd4\xb6\x95\x02\xd8*\xa8\xd2\x94\xa3\x89\xa9\xa0\xc5\xc9=\xa5^\v\xfbO\xf3\xff\x1bf\xedC\xbd\xd1\xf1#\xb3\xe5\t\x9a\xddk\x95\xd5N\xf3\x98\x1a\xa3\xca%N\xf8\xc6\xbcJw\xd8\x99f\xf1\xb5\x93^x|\x05\x00\x00\x00o*\xd3\xab\x05$<\xa3KQm\x00\xd3M\xb2\xd0,\xeeP\x1a\xd0 yI!\x17\x9b\xe7\xef\t\xba\xa0]\xf4\xb7\x00_g/\r\xd2\x06\xc5\x15\x1d\xcc\x0eB\x87\xe9 \x81P\"\xea\xd5#\xa4\xe5\xa1\x19Wp\x83\xf8tC\x10\xbe\xe3\xa9H\xc7\x89\x0eN\xd3\xc1\xd7\x99\xd8\x88\x1dZ\x91\r\xd1\x1c\xac\xe26b\x04\xecB[\xf3Lp\xfcQ\xf8\xec\xa0\x87\xd3\xde\x8bo\xd2\xbb~;\x8d\xc2\xf1\tP\xdfB\"VD\v\x90\xfb`\x8b\xfbr\x87B\xc3\x1c\x99\xe1ft\xd1\xdb\x0e\x86\xa3\xfc;y\x9d\xe6\xe25\x9f9\nj\x8a\xba\xb5\xc7\x92`\xed\x89\xf4\xbd\xc3\xe7l\xa9\xda\xde\xe0\xcf\xeaM\xb2~\x159\x92\xf60\x0e\xa0\xc2\x17\x8aC\xa5\xcf\xcd\x16\xdb\x83v\xe8\xf1\x82\xe2\xa5\xf0\xc7K\xe4?|\xc9\xdfx\xf0\xb1', &(0x7f0000001600)='\xb8\x8b\xadTd\xdcJ\x03\xf7\n\x11x\xf5\x93Q#\xfe\xb4\xeb\xd9/\x90\xad\xc5\xd0\a\xef\x06$*\xf0\v7>\xa8`\xf1)\xec\xba\xb7\x85\a\x92I\xbb\xfe2\xa0\xc1\xb3\x13p\xa2l', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r2, 0x2, &(0x7f0000000340)='\xa3\x04\x00', &(0x7f00000003c0)='\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000080)='kfree\x00', &(0x7f0000000180)='\xfa.-\x00', 0x0)
close(r2)

973.624589ms ago: executing program 4 (id=1132):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r1 = fcntl$dupfd(r0, 0x0, r0)
write$sndseq(r1, 0x0, 0x0)

950.480939ms ago: executing program 5 (id=1134):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1, 0x0, 0x2}, 0x18)
clock_adjtime(0x0, &(0x7f0000000640)={0x7, 0x2000000000000009, 0x380000, 0x8, 0xfffffffffffffff9, 0xfffffffffffffff7, 0x9, 0x0, 0xae, 0x6, 0x7, 0x4, 0xfffffffffffff04f, 0x7, 0x80000000, 0xfffffffffffffff8, 0xffffffffffffffff, 0x6, 0x0, 0x100, 0x4, 0x2000000002, 0x5, 0x3, 0x8, 0x8})

950.226649ms ago: executing program 1 (id=1135):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = fsopen(&(0x7f0000000480)='tmpfs\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000240)=',-\x10*\x00', &(0x7f0000000380)='$\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000001800)='\xd0\x9e^\xa0\xee\xc8\x17T\xb1GI\x90\xe2Q1\xb0\x8f\xe1\xa8\x95\xa0\xcd\fL\xf1<e\a\xa5\x8f\xab\x1a\xdaY\xfb\x03dhS\x97nZ\xf8\xc6\x1f\xd3K\xfa\xc8\x8d#\xce)\x9bg-D#g\x16\xf4\xd9\x00\x00\x00\x00\x00eA\x9f\xc3\x11\x18\xe6\xc5\x95\x9e!^\x97\b\x14\xc5\xad\t\f\xdeg\x8d\x16wW\xf6\xacE\xa3\xc8\xe7\xec\xd6\xbd\x1c+\n\xc7Q( \xba\xff\x17N\x1fBy\x15\x83\xec(B4/#W\xc5\x05\x9d\xd6\x02\fU!a\xdc|6\xdc\xee$\xb5\x1deC\xfb\xa2\xaa\xe0#\xcb\xde;sa\xad\xa6\xb6P\xa3\xf7\xc3\x93\xd4\xb6\x95\x02\xd8*\xa8\xd2\x94\xa3\x89\xa9\xa0\xc5\xc9=\xa5^\v\xfbO\xf3\xff\x1bf\xedC\xbd\xd1\xf1#\xb3\xe5\t\x9a\xddk\x95\xd5N\xf3\x98\x1a\xa3\xca%N\xf8\xc6\xbcJw\xd8\x99f\xf1\xb5\x93^x|\x05\x00\x00\x00o*\xd3\xab\x05$<\xa3KQm\x00\xd3M\xb2\xd0,\xeeP\x1a\xd0 yI!\x17\x9b\xe7\xef\t\xba\xa0]\xf4\xb7\x00_g/\r\xd2\x06\xc5\x15\x1d\xcc\x0eB\x87\xe9 \x81P\"\xea\xd5#\xa4\xe5\xa1\x19Wp\x83\xf8tC\x10\xbe\xe3\xa9H\xc7\x89\x0eN\xd3\xc1\xd7\x99\xd8\x88\x1dZ\x91\r\xd1\x1c\xac\xe26b\x04\xecB[\xf3Lp\xfcQ\xf8\xec\xa0\x87\xd3\xde\x8bo\xd2\xbb~;\x8d\xc2\xf1\tP\xdfB\"VD\v\x90\xfb`\x8b\xfbr\x87B\xc3\x1c\x99\xe1ft\xd1\xdb\x0e\x86\xa3\xfc;y\x9d\xe6\xe25\x9f9\nj\x8a\xba\xb5\xc7\x92`\xed\x89\xf4\xbd\xc3\xe7l\xa9\xda\xde\xe0\xcf\xeaM\xb2~\x159\x92\xf60\x0e\xa0\xc2\x17\x8aC\xa5\xcf\xcd\x16\xdb\x83v\xe8\xf1\x82\xe2\xa5\xf0\xc7K\xe4?|\xc9\xdfx\xf0\xb1', &(0x7f0000001600)='\xb8\x8b\xadTd\xdcJ\x03\xf7\n\x11x\xf5\x93Q#\xfe\xb4\xeb\xd9/\x90\xad\xc5\xd0\a\xef\x06$*\xf0\v7>\xa8`\xf1)\xec\xba\xb7\x85\a\x92I\xbb\xfe2\xa0\xc1\xb3\x13p\xa2l', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r2, 0x2, &(0x7f0000000340)='\xa3\x04\x00', &(0x7f00000003c0)='\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, 0x0, &(0x7f0000000180)='\xfa.-\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000540)='U&~=\xd8G\x93\x14\xc9o\xaf\x8b\xd4-\xc5\x12\x8d\xc8\xf1\'\xcf\x92V\xceKg\x8b\xc3\x9e\xd6H\xad0`\xaf\x06\x00xOq\xb6H\x11', &(0x7f0000000580)='\xb8\x8b\xadTd\xdcJ\x03\xf7\n\x11x\xf5\x93Q#\xfe\xb4\xeb\xd9/\x90\xad\xc5\xd0\a\xef\x06$*\xf0\v7>\xa8`\xf1)\xec\xba\xb7\x85\a\x92I\xbb\xfe2\xa0\xc1\xb3\x13p\xa2l', 0x0)
close(r2)

891.149158ms ago: executing program 33 (id=1134):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1, 0x0, 0x2}, 0x18)
clock_adjtime(0x0, &(0x7f0000000640)={0x7, 0x2000000000000009, 0x380000, 0x8, 0xfffffffffffffff9, 0xfffffffffffffff7, 0x9, 0x0, 0xae, 0x6, 0x7, 0x4, 0xfffffffffffff04f, 0x7, 0x80000000, 0xfffffffffffffff8, 0xffffffffffffffff, 0x6, 0x0, 0x100, 0x4, 0x2000000002, 0x5, 0x3, 0x8, 0x8})

888.585918ms ago: executing program 4 (id=1139):
r0 = add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000000c0)="ff", 0x1, 0xffffffffffffffff)
r1 = add_key$keyring(&(0x7f0000000280), 0x0, 0x0, 0x0, 0xffffffffffffffff)
add_key$user(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x0}, 0x0, 0x0, r1)
mremap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4000, 0x0, &(0x7f0000001000/0x4000)=nil)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000004680)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = getpid()
process_vm_readv(r4, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0xbfff, 0x0, 0x0, 0x2)
mlockall(0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0, r3}, 0x18)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r5, 0x0, 0x40, &(0x7f0000000700)=@raw={'raw\x00', 0x8, 0x3, 0x650, 0x0, 0xa, 0x148, 0x368, 0x10, 0x5b8, 0x2a8, 0x2a8, 0x5b8, 0x2a8, 0x3, 0x0, {[{{@ip={@multicast2=0xe000000b, @multicast2, 0x0, 0x0, 'bridge0\x00', 'rose0\x00'}, 0x0, 0x2f8, 0x368, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'veth1_to_team\x00', {0x7a, 0x8000000, 0x0, 0x0, 0x0, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x64, './file0\x00'}}]}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f2f7b9f28413d9d8ad470ad2b60c45cb4ea6e7bf902bdc2ff8a9304d9f655c746adc0bdc773506378bc2d27efd6abb05175089830cc46186074d7de46d5af300"}}}, {{@ip={@empty, @broadcast, 0x0, 0x0, 'syzkaller0\x00', 'veth0_to_team\x00'}, 0x0, 0x1f0, 0x250, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'veth1_to_bond\x00'}}, @inet=@rpfilter={{0x28}}]}, @common=@SET={0x60}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x6b0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r7}, 0x10)
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000580)={{r2}, &(0x7f0000000500), &(0x7f0000000540)=r3}, 0x20)
setsockopt$IPT_SO_SET_REPLACE(r8, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x478, 0x0, 0x25, 0x148, 0x310, 0x60, 0x3e0, 0x2a8, 0x2a8, 0x3e0, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2c8, 0x310, 0x0, {0x200003ae, 0x7f00}, [@inet=@rpfilter={{0x28}, {0x3}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x6, 'syz0\x00'}}}, {{@ip={@empty, @empty, 0x0, 0x0, 'syzkaller0\x00', 'veth0_to_team\x00', {0xff}}, 0x0, 0x70, 0xd0}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x0, [0x0, 0x1]}, {0x0, [0x3]}}}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x4d8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
keyctl$KEYCTL_MOVE(0x1e, r0, 0xffffffffffffffff, r1, 0x1)

884.205688ms ago: executing program 1 (id=1140):
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, 0x0, 0x40)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1, 0x0, 0x2}, 0x18)
clock_adjtime(0x0, &(0x7f0000000640)={0x7, 0x2000000000000009, 0x380000, 0x8, 0xfffffffffffffff9, 0xfffffffffffffff7, 0x9, 0x0, 0xae, 0x6, 0x7, 0x4, 0xfffffffffffff04f, 0x7, 0x80000000, 0xfffffffffffffff8, 0xffffffffffffffff, 0x6, 0x0, 0x100, 0x4, 0x2000000002, 0x5, 0x3, 0x8, 0x8})

844.719328ms ago: executing program 1 (id=1141):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x4000000000000000, &(0x7f0000000000)={<r1=>0xffffffffffffffff}, 0x13f, 0xa}}, 0x20)
write$RDMA_USER_CM_CMD_DESTROY_ID(r0, &(0x7f0000000180)={0x1, 0x10, 0xfa00, {&(0x7f0000000140), r1}}, 0x18)

768.420247ms ago: executing program 1 (id=1143):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = fsopen(&(0x7f0000000480)='tmpfs\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000240)=',-\x10*\x00', &(0x7f0000000380)='$\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000001800)='\xd0\x9e^\xa0\xee\xc8\x17T\xb1GI\x90\xe2Q1\xb0\x8f\xe1\xa8\x95\xa0\xcd\fL\xf1<e\a\xa5\x8f\xab\x1a\xdaY\xfb\x03dhS\x97nZ\xf8\xc6\x1f\xd3K\xfa\xc8\x8d#\xce)\x9bg-D#g\x16\xf4\xd9\x00\x00\x00\x00\x00eA\x9f\xc3\x11\x18\xe6\xc5\x95\x9e!^\x97\b\x14\xc5\xad\t\f\xdeg\x8d\x16wW\xf6\xacE\xa3\xc8\xe7\xec\xd6\xbd\x1c+\n\xc7Q( \xba\xff\x17N\x1fBy\x15\x83\xec(B4/#W\xc5\x05\x9d\xd6\x02\fU!a\xdc|6\xdc\xee$\xb5\x1deC\xfb\xa2\xaa\xe0#\xcb\xde;sa\xad\xa6\xb6P\xa3\xf7\xc3\x93\xd4\xb6\x95\x02\xd8*\xa8\xd2\x94\xa3\x89\xa9\xa0\xc5\xc9=\xa5^\v\xfbO\xf3\xff\x1bf\xedC\xbd\xd1\xf1#\xb3\xe5\t\x9a\xddk\x95\xd5N\xf3\x98\x1a\xa3\xca%N\xf8\xc6\xbcJw\xd8\x99f\xf1\xb5\x93^x|\x05\x00\x00\x00o*\xd3\xab\x05$<\xa3KQm\x00\xd3M\xb2\xd0,\xeeP\x1a\xd0 yI!\x17\x9b\xe7\xef\t\xba\xa0]\xf4\xb7\x00_g/\r\xd2\x06\xc5\x15\x1d\xcc\x0eB\x87\xe9 \x81P\"\xea\xd5#\xa4\xe5\xa1\x19Wp\x83\xf8tC\x10\xbe\xe3\xa9H\xc7\x89\x0eN\xd3\xc1\xd7\x99\xd8\x88\x1dZ\x91\r\xd1\x1c\xac\xe26b\x04\xecB[\xf3Lp\xfcQ\xf8\xec\xa0\x87\xd3\xde\x8bo\xd2\xbb~;\x8d\xc2\xf1\tP\xdfB\"VD\v\x90\xfb`\x8b\xfbr\x87B\xc3\x1c\x99\xe1ft\xd1\xdb\x0e\x86\xa3\xfc;y\x9d\xe6\xe25\x9f9\nj\x8a\xba\xb5\xc7\x92`\xed\x89\xf4\xbd\xc3\xe7l\xa9\xda\xde\xe0\xcf\xeaM\xb2~\x159\x92\xf60\x0e\xa0\xc2\x17\x8aC\xa5\xcf\xcd\x16\xdb\x83v\xe8\xf1\x82\xe2\xa5\xf0\xc7K\xe4?|\xc9\xdfx\xf0\xb1', &(0x7f0000001600)='\xb8\x8b\xadTd\xdcJ\x03\xf7\n\x11x\xf5\x93Q#\xfe\xb4\xeb\xd9/\x90\xad\xc5\xd0\a\xef\x06$*\xf0\v7>\xa8`\xf1)\xec\xba\xb7\x85\a\x92I\xbb\xfe2\xa0\xc1\xb3\x13p\xa2l', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r2, 0x2, &(0x7f0000000340)='\xa3\x04\x00', &(0x7f00000003c0)='\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000080)='kfree\x00', &(0x7f0000000180)='\xfa.-\x00', 0x0)
close(r2)

757.034067ms ago: executing program 1 (id=1144):
r0 = openat(0xffffffffffffff9c, 0x0, 0x2c41, 0x0)
flock(r0, 0x5)
openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x200800, 0x0)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x20000023896)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$KDFONTOP_COPY(r3, 0x4b72, &(0x7f0000000400)={0x3, 0x1, 0x6, 0x19, 0x3f, 0x0})
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000200)='scsi_dispatch_cmd_start\x00', r4, 0x0, 0x5}, 0x18)
sync()

601.870745ms ago: executing program 3 (id=1146):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='kmem_cache_free\x00', r1}, 0x18)
r2 = syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x54e, &(0x7f00000014c0)="$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")
lsetxattr$system_posix_acl(&(0x7f0000000400)='.\x00', &(0x7f0000000440)='system.posix_acl_default\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="02000000010000000000000002000000", @ANYRES32=0xee01, @ANYBLOB="02000000", @ANYRES32=0xee00, @ANYBLOB="02000000", @ANYRES32=0xee00, @ANYBLOB="02000000", @ANYRES32=r2, @ANYBLOB="040000000000800008000000", @ANYRES32=r2, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="100000000000000020"], 0x5c, 0x0)
open(&(0x7f0000000040)='.\x00', 0x418601, 0x8)

464.388164ms ago: executing program 0 (id=1147):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x1, 0x5, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000900)={{r0}, &(0x7f0000000880), &(0x7f00000008c0)}, 0x20)
r2 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r2, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
sendmsg$tipc(r2, &(0x7f00000005c0)={&(0x7f0000000000), 0x10, &(0x7f0000000480)=[{&(0x7f0000000180)="f7", 0x101d0}], 0x1}, 0x0)

429.068854ms ago: executing program 0 (id=1148):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = fsopen(&(0x7f0000000480)='tmpfs\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000240)=',-\x10*\x00', &(0x7f0000000380)='$\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000001800)='\xd0\x9e^\xa0\xee\xc8\x17T\xb1GI\x90\xe2Q1\xb0\x8f\xe1\xa8\x95\xa0\xcd\fL\xf1<e\a\xa5\x8f\xab\x1a\xdaY\xfb\x03dhS\x97nZ\xf8\xc6\x1f\xd3K\xfa\xc8\x8d#\xce)\x9bg-D#g\x16\xf4\xd9\x00\x00\x00\x00\x00eA\x9f\xc3\x11\x18\xe6\xc5\x95\x9e!^\x97\b\x14\xc5\xad\t\f\xdeg\x8d\x16wW\xf6\xacE\xa3\xc8\xe7\xec\xd6\xbd\x1c+\n\xc7Q( \xba\xff\x17N\x1fBy\x15\x83\xec(B4/#W\xc5\x05\x9d\xd6\x02\fU!a\xdc|6\xdc\xee$\xb5\x1deC\xfb\xa2\xaa\xe0#\xcb\xde;sa\xad\xa6\xb6P\xa3\xf7\xc3\x93\xd4\xb6\x95\x02\xd8*\xa8\xd2\x94\xa3\x89\xa9\xa0\xc5\xc9=\xa5^\v\xfbO\xf3\xff\x1bf\xedC\xbd\xd1\xf1#\xb3\xe5\t\x9a\xddk\x95\xd5N\xf3\x98\x1a\xa3\xca%N\xf8\xc6\xbcJw\xd8\x99f\xf1\xb5\x93^x|\x05\x00\x00\x00o*\xd3\xab\x05$<\xa3KQm\x00\xd3M\xb2\xd0,\xeeP\x1a\xd0 yI!\x17\x9b\xe7\xef\t\xba\xa0]\xf4\xb7\x00_g/\r\xd2\x06\xc5\x15\x1d\xcc\x0eB\x87\xe9 \x81P\"\xea\xd5#\xa4\xe5\xa1\x19Wp\x83\xf8tC\x10\xbe\xe3\xa9H\xc7\x89\x0eN\xd3\xc1\xd7\x99\xd8\x88\x1dZ\x91\r\xd1\x1c\xac\xe26b\x04\xecB[\xf3Lp\xfcQ\xf8\xec\xa0\x87\xd3\xde\x8bo\xd2\xbb~;\x8d\xc2\xf1\tP\xdfB\"VD\v\x90\xfb`\x8b\xfbr\x87B\xc3\x1c\x99\xe1ft\xd1\xdb\x0e\x86\xa3\xfc;y\x9d\xe6\xe25\x9f9\nj\x8a\xba\xb5\xc7\x92`\xed\x89\xf4\xbd\xc3\xe7l\xa9\xda\xde\xe0\xcf\xeaM\xb2~\x159\x92\xf60\x0e\xa0\xc2\x17\x8aC\xa5\xcf\xcd\x16\xdb\x83v\xe8\xf1\x82\xe2\xa5\xf0\xc7K\xe4?|\xc9\xdfx\xf0\xb1', &(0x7f0000001600)='\xb8\x8b\xadTd\xdcJ\x03\xf7\n\x11x\xf5\x93Q#\xfe\xb4\xeb\xd9/\x90\xad\xc5\xd0\a\xef\x06$*\xf0\v7>\xa8`\xf1)\xec\xba\xb7\x85\a\x92I\xbb\xfe2\xa0\xc1\xb3\x13p\xa2l', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r2, 0x2, &(0x7f0000000340)='\xa3\x04\x00', &(0x7f00000003c0), 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000080)='kfree\x00', &(0x7f0000000180)='\xfa.-\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000540)='U&~=\xd8G\x93\x14\xc9o\xaf\x8b\xd4-\xc5\x12\x8d\xc8\xf1\'\xcf\x92V\xceKg\x8b\xc3\x9e\xd6H\xad0`\xaf\x06\x00xOq\xb6H\x11', &(0x7f0000000580)='\xb8\x8b\xadTd\xdcJ\x03\xf7\n\x11x\xf5\x93Q#\xfe\xb4\xeb\xd9/\x90\xad\xc5\xd0\a\xef\x06$*\xf0\v7>\xa8`\xf1)\xec\xba\xb7\x85\a\x92I\xbb\xfe2\xa0\xc1\xb3\x13p\xa2l', 0x0)
close(r2)

374.319833ms ago: executing program 3 (id=1149):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = fsopen(&(0x7f0000000480)='tmpfs\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000240)=',-\x10*\x00', &(0x7f0000000380)='$\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000001800)='\xd0\x9e^\xa0\xee\xc8\x17T\xb1GI\x90\xe2Q1\xb0\x8f\xe1\xa8\x95\xa0\xcd\fL\xf1<e\a\xa5\x8f\xab\x1a\xdaY\xfb\x03dhS\x97nZ\xf8\xc6\x1f\xd3K\xfa\xc8\x8d#\xce)\x9bg-D#g\x16\xf4\xd9\x00\x00\x00\x00\x00eA\x9f\xc3\x11\x18\xe6\xc5\x95\x9e!^\x97\b\x14\xc5\xad\t\f\xdeg\x8d\x16wW\xf6\xacE\xa3\xc8\xe7\xec\xd6\xbd\x1c+\n\xc7Q( \xba\xff\x17N\x1fBy\x15\x83\xec(B4/#W\xc5\x05\x9d\xd6\x02\fU!a\xdc|6\xdc\xee$\xb5\x1deC\xfb\xa2\xaa\xe0#\xcb\xde;sa\xad\xa6\xb6P\xa3\xf7\xc3\x93\xd4\xb6\x95\x02\xd8*\xa8\xd2\x94\xa3\x89\xa9\xa0\xc5\xc9=\xa5^\v\xfbO\xf3\xff\x1bf\xedC\xbd\xd1\xf1#\xb3\xe5\t\x9a\xddk\x95\xd5N\xf3\x98\x1a\xa3\xca%N\xf8\xc6\xbcJw\xd8\x99f\xf1\xb5\x93^x|\x05\x00\x00\x00o*\xd3\xab\x05$<\xa3KQm\x00\xd3M\xb2\xd0,\xeeP\x1a\xd0 yI!\x17\x9b\xe7\xef\t\xba\xa0]\xf4\xb7\x00_g/\r\xd2\x06\xc5\x15\x1d\xcc\x0eB\x87\xe9 \x81P\"\xea\xd5#\xa4\xe5\xa1\x19Wp\x83\xf8tC\x10\xbe\xe3\xa9H\xc7\x89\x0eN\xd3\xc1\xd7\x99\xd8\x88\x1dZ\x91\r\xd1\x1c\xac\xe26b\x04\xecB[\xf3Lp\xfcQ\xf8\xec\xa0\x87\xd3\xde\x8bo\xd2\xbb~;\x8d\xc2\xf1\tP\xdfB\"VD\v\x90\xfb`\x8b\xfbr\x87B\xc3\x1c\x99\xe1ft\xd1\xdb\x0e\x86\xa3\xfc;y\x9d\xe6\xe25\x9f9\nj\x8a\xba\xb5\xc7\x92`\xed\x89\xf4\xbd\xc3\xe7l\xa9\xda\xde\xe0\xcf\xeaM\xb2~\x159\x92\xf60\x0e\xa0\xc2\x17\x8aC\xa5\xcf\xcd\x16\xdb\x83v\xe8\xf1\x82\xe2\xa5\xf0\xc7K\xe4?|\xc9\xdfx\xf0\xb1', &(0x7f0000001600)='\xb8\x8b\xadTd\xdcJ\x03\xf7\n\x11x\xf5\x93Q#\xfe\xb4\xeb\xd9/\x90\xad\xc5\xd0\a\xef\x06$*\xf0\v7>\xa8`\xf1)\xec\xba\xb7\x85\a\x92I\xbb\xfe2\xa0\xc1\xb3\x13p\xa2l', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r2, 0x2, &(0x7f0000000340)='\xa3\x04\x00', &(0x7f00000003c0)='\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000080)='kfree\x00', 0x0, 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000540)='U&~=\xd8G\x93\x14\xc9o\xaf\x8b\xd4-\xc5\x12\x8d\xc8\xf1\'\xcf\x92V\xceKg\x8b\xc3\x9e\xd6H\xad0`\xaf\x06\x00xOq\xb6H\x11', &(0x7f0000000580)='\xb8\x8b\xadTd\xdcJ\x03\xf7\n\x11x\xf5\x93Q#\xfe\xb4\xeb\xd9/\x90\xad\xc5\xd0\a\xef\x06$*\xf0\v7>\xa8`\xf1)\xec\xba\xb7\x85\a\x92I\xbb\xfe2\xa0\xc1\xb3\x13p\xa2l', 0x0)
close(r2)

368.537263ms ago: executing program 1 (id=1150):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @empty}, 0x10)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r2}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x18)
sendmsg$nl_xfrm(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000023c0)=ANY=[@ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fe80000000000000000000000000000000000000330000002001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000300000000000000004c001400636d6163286165732900"/244], 0x13c}}, 0x0)
r3 = getpid()
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r4 = socket$inet6(0xa, 0x3, 0x9)
setsockopt$inet6_MCAST_JOIN_GROUP(r4, 0x29, 0x6, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='sched_process_fork\x00', r5}, 0x10)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000340)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
process_vm_readv(r3, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
write(0xffffffffffffffff, 0x0, 0x0)
r7 = mq_open(&(0x7f0000000200)='kmem_cache_free\x00', 0x2, 0x10, &(0x7f0000000240)={0x0, 0xc, 0x80, 0x7fff})
mq_notify(r7, &(0x7f0000000280)={0x0, 0x2d, 0x1, @tid=r3})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

344.029023ms ago: executing program 0 (id=1151):
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, 0x0, 0x40)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1, 0x0, 0x2}, 0x18)
clock_adjtime(0x0, &(0x7f0000000640)={0x7, 0x2000000000000009, 0x380000, 0x8, 0xfffffffffffffff9, 0xfffffffffffffff7, 0x9, 0x0, 0xae, 0x6, 0x7, 0x4, 0xfffffffffffff04f, 0x7, 0x80000000, 0xfffffffffffffff8, 0xffffffffffffffff, 0x6, 0x0, 0x100, 0x4, 0x2000000002, 0x5, 0x3, 0x8, 0x8})

343.728503ms ago: executing program 3 (id=1152):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
recvmmsg(r1, &(0x7f0000000180)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=""/3, 0x3}, 0xa}], 0x1, 0x2040, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)

316.238732ms ago: executing program 0 (id=1153):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x4000000000000000, &(0x7f0000000000)={<r1=>0xffffffffffffffff}, 0x13f, 0xa}}, 0x20)
write$RDMA_USER_CM_CMD_DESTROY_ID(r0, &(0x7f0000000180)={0x1, 0x10, 0xfa00, {&(0x7f0000000140), r1}}, 0x18)

266.611442ms ago: executing program 3 (id=1154):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='kmem_cache_free\x00', r1}, 0x18)
r2 = syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x54e, &(0x7f00000014c0)="$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")
lsetxattr$system_posix_acl(&(0x7f0000000400)='.\x00', &(0x7f0000000440)='system.posix_acl_default\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="02000000010000000000000002000000", @ANYRES32=0xee01, @ANYBLOB="02000000", @ANYRES32=0xee00, @ANYBLOB="02000000", @ANYRES32=0xee00, @ANYBLOB="02000000", @ANYRES32=r2, @ANYBLOB="040000000000800008000000", @ANYRES32=r2, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="100000000000000020"], 0x5c, 0x0)
open(&(0x7f0000000040)='.\x00', 0x418601, 0x8)

266.206252ms ago: executing program 0 (id=1155):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = memfd_secret(0x80000)
fcntl$setlease(r1, 0x400, 0x0)
fsetxattr$system_posix_acl(r1, &(0x7f0000000380)='system.posix_acl_default\x00', 0x0, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001cc0)={0x9, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff0000cd9c000000000000000007020000f8ffffffb703000008000000b704000000000000912d1409c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b80)={&(0x7f0000000180)='kfree\x00', r2}, 0x18)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000003c0)='/sys/kernel/address_bits', 0x101800, 0x100)
bpf$ITER_CREATE(0x21, &(0x7f0000000400)={r3}, 0x8)
r4 = syz_open_procfs(0x0, &(0x7f0000000380)='net/ipv6_route\x00')
read$char_usb(r4, &(0x7f0000002280)=""/4118, 0x1016)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a3000000000090003007379"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a50000000060a0b040000000000000000020000002400048020000180070001006374000014000280080004400000000008000240000000110900010073797a30000000000900020073797a32"], 0x78}}, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000580)='\t\x00[@\x02\xc9l\x87\xe5>\xec\xc78\xe6\xba\r\x8d\x8b\xb8\xab1\xd8\x1a1*H\x1d\'\xc2QG\xd6\x80\xee\x12\xb3\xbf\xef\xe87\xfb\xf2\xf9\xe2\x96\xac\x86\x12\xcbgw\xa8\x1b\xb3s\x8bB\xf9\xed@\x9f\xe0\x05~\r\xfa\xba\xca\t\x8b\x89\x98\xda\x83\x1a\x18\vO}\x92\xc4\xa9\x93\x8e\xa0\xf2p9C\x0e\x9e%]\x84=\xe2\xaeG@xL{\x16\xad{_\x9aq\x90\xb9\xc5Yi\x96\xa3d:\xe0\xccT\x02#3a\xfe\b[\\\xa6\x89\xb4\xc5\xef\xdb\x01\xcc\xd0\xc8\x00\x04\xc8\xa8\x83`\t7t\xe4\xfc\x84\xce\xfbI$&\x99\x1e\x89.\x9c\xe4\x92BN\xe3\xa5i\xa8\\\xccJH\xf8Hp')
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r6}, 0x10)
r7 = socket$rxrpc(0x21, 0x2, 0x2)
recvmmsg(r7, &(0x7f00000050c0)=[{{0x0, 0xfffffffffffffeba, 0x0}}], 0x1, 0x4040, 0x0)
pipe2(&(0x7f0000000200)={<r8=>0xffffffffffffffff}, 0x8439d987ceaa71ee)
writev(r8, &(0x7f0000000280)=[{&(0x7f0000000240)="60f115f02a3c15f348", 0x9}], 0x1)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x3000046, &(0x7f0000000100)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@errors_remount}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x55a, &(0x7f0000000480)="$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")
r9 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x123042, 0x110)
write$binfmt_script(r9, &(0x7f0000000080), 0xffffff3e)
r10 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f00000002c0), r10)
lsetxattr$system_posix_acl(&(0x7f0000000000)='./file1\x00', &(0x7f00000001c0)='system.posix_acl_access\x00', 0x0, 0x0, 0x0)

210.552032ms ago: executing program 4 (id=1156):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'dummy0\x00'})
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={0x0, 0x44}}, 0x0)

153.135191ms ago: executing program 4 (id=1157):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x1, 0x5, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000900)={{r0}, &(0x7f0000000880), &(0x7f00000008c0)}, 0x20)
r2 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r2, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
sendmsg$tipc(r2, &(0x7f00000005c0)={&(0x7f0000000000), 0x10, &(0x7f0000000480)=[{&(0x7f0000000180)="f7", 0x101d0}], 0x1}, 0x0)

125.109461ms ago: executing program 3 (id=1158):
r0 = fsopen(&(0x7f0000000480)='tmpfs\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000240)=',-\x10*\x00', &(0x7f0000000380)='$\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000001800)='\xd0\x9e^\xa0\xee\xc8\x17T\xb1GI\x90\xe2Q1\xb0\x8f\xe1\xa8\x95\xa0\xcd\fL\xf1<e\a\xa5\x8f\xab\x1a\xdaY\xfb\x03dhS\x97nZ\xf8\xc6\x1f\xd3K\xfa\xc8\x8d#\xce)\x9bg-D#g\x16\xf4\xd9\x00\x00\x00\x00\x00eA\x9f\xc3\x11\x18\xe6\xc5\x95\x9e!^\x97\b\x14\xc5\xad\t\f\xdeg\x8d\x16wW\xf6\xacE\xa3\xc8\xe7\xec\xd6\xbd\x1c+\n\xc7Q( \xba\xff\x17N\x1fBy\x15\x83\xec(B4/#W\xc5\x05\x9d\xd6\x02\fU!a\xdc|6\xdc\xee$\xb5\x1deC\xfb\xa2\xaa\xe0#\xcb\xde;sa\xad\xa6\xb6P\xa3\xf7\xc3\x93\xd4\xb6\x95\x02\xd8*\xa8\xd2\x94\xa3\x89\xa9\xa0\xc5\xc9=\xa5^\v\xfbO\xf3\xff\x1bf\xedC\xbd\xd1\xf1#\xb3\xe5\t\x9a\xddk\x95\xd5N\xf3\x98\x1a\xa3\xca%N\xf8\xc6\xbcJw\xd8\x99f\xf1\xb5\x93^x|\x05\x00\x00\x00o*\xd3\xab\x05$<\xa3KQm\x00\xd3M\xb2\xd0,\xeeP\x1a\xd0 yI!\x17\x9b\xe7\xef\t\xba\xa0]\xf4\xb7\x00_g/\r\xd2\x06\xc5\x15\x1d\xcc\x0eB\x87\xe9 \x81P\"\xea\xd5#\xa4\xe5\xa1\x19Wp\x83\xf8tC\x10\xbe\xe3\xa9H\xc7\x89\x0eN\xd3\xc1\xd7\x99\xd8\x88\x1dZ\x91\r\xd1\x1c\xac\xe26b\x04\xecB[\xf3Lp\xfcQ\xf8\xec\xa0\x87\xd3\xde\x8bo\xd2\xbb~;\x8d\xc2\xf1\tP\xdfB\"VD\v\x90\xfb`\x8b\xfbr\x87B\xc3\x1c\x99\xe1ft\xd1\xdb\x0e\x86\xa3\xfc;y\x9d\xe6\xe25\x9f9\nj\x8a\xba\xb5\xc7\x92`\xed\x89\xf4\xbd\xc3\xe7l\xa9\xda\xde\xe0\xcf\xeaM\xb2~\x159\x92\xf60\x0e\xa0\xc2\x17\x8aC\xa5\xcf\xcd\x16\xdb\x83v\xe8\xf1\x82\xe2\xa5\xf0\xc7K\xe4?|\xc9\xdfx\xf0\xb1', &(0x7f0000001600)='\xb8\x8b\xadTd\xdcJ\x03\xf7\n\x11x\xf5\x93Q#\xfe\xb4\xeb\xd9/\x90\xad\xc5\xd0\a\xef\x06$*\xf0\v7>\xa8`\xf1)\xec\xba\xb7\x85\a\x92I\xbb\xfe2\xa0\xc1\xb3\x13p\xa2l', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r0, 0x2, &(0x7f0000000340)='\xa3\x04\x00', &(0x7f00000003c0), 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000080)='kfree\x00', &(0x7f0000000180)='\xfa.-\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000540)='U&~=\xd8G\x93\x14\xc9o\xaf\x8b\xd4-\xc5\x12\x8d\xc8\xf1\'\xcf\x92V\xceKg\x8b\xc3\x9e\xd6H\xad0`\xaf\x06\x00xOq\xb6H\x11', &(0x7f0000000580)='\xb8\x8b\xadTd\xdcJ\x03\xf7\n\x11x\xf5\x93Q#\xfe\xb4\xeb\xd9/\x90\xad\xc5\xd0\a\xef\x06$*\xf0\v7>\xa8`\xf1)\xec\xba\xb7\x85\a\x92I\xbb\xfe2\xa0\xc1\xb3\x13p\xa2l', 0x0)
close(r0)

93.733001ms ago: executing program 4 (id=1159):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='kmem_cache_free\x00', r1}, 0x18)
r2 = syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x54e, &(0x7f00000014c0)="$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")
lsetxattr$system_posix_acl(&(0x7f0000000400)='.\x00', &(0x7f0000000440)='system.posix_acl_default\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="02000000010000000000000002000000", @ANYRES32=0xee01, @ANYBLOB="02000000", @ANYRES32=0xee00, @ANYBLOB="02000000", @ANYRES32=0xee00, @ANYBLOB="02000000", @ANYRES32=r2, @ANYBLOB="040000000000800008000000", @ANYRES32=r2, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="100000000000000020"], 0x5c, 0x0)
open(&(0x7f0000000040)='.\x00', 0x418601, 0x8)

341.649µs ago: executing program 3 (id=1160):
r0 = openat(0xffffffffffffff9c, 0x0, 0x2c41, 0x0)
flock(r0, 0x5)
openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x200800, 0x0)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x20000023896)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$KDFONTOP_COPY(r3, 0x4b72, &(0x7f0000000400)={0x3, 0x1, 0x6, 0x19, 0x3f, 0x0})
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000200)='scsi_dispatch_cmd_start\x00', r4, 0x0, 0x5}, 0x18)
sync()

0s ago: executing program 0 (id=1161):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)

kernel console output (not intermixed with test programs):


[   46.109718][ T4372]  ? clear_bhb_loop+0x55/0xb0
[   46.109748][ T4372]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.109774][ T4372] RIP: 0033:0x7f076b2bcda9
[   46.109787][ T4372] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   46.109810][ T4372] RSP: 002b:00007f0769927038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   46.109828][ T4372] RAX: ffffffffffffffda RBX: 00007f076b4d5fa0 RCX: 00007f076b2bcda9
[   46.109838][ T4372] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000005
[   46.109850][ T4372] RBP: 00007f0769927090 R08: 0000000000000000 R09: 0000000000000000
[   46.109945][ T4372] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   46.109957][ T4372] R13: 0000000000000000 R14: 00007f076b4d5fa0 R15: 00007ffce016db68
[   46.110052][ T4372]  </TASK>
[   46.366141][ T4385] loop1: detected capacity change from 0 to 1024
[   46.390746][ T4385] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   46.430397][ T4393] FAULT_INJECTION: forcing a failure.
[   46.430397][ T4393] name failslab, interval 1, probability 0, space 0, times 0
[   46.443168][ T4393] CPU: 0 UID: 0 PID: 4393 Comm: syz.4.254 Not tainted 6.13.0-syzkaller-09485-g72deda0abee6 #0
[   46.443190][ T4393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   46.443201][ T4393] Call Trace:
[   46.443207][ T4393]  <TASK>
[   46.443214][ T4393]  dump_stack_lvl+0xf2/0x150
[   46.443302][ T4393]  dump_stack+0x15/0x1a
[   46.443321][ T4393]  should_fail_ex+0x24a/0x260
[   46.443357][ T4393]  should_failslab+0x8f/0xb0
[   46.443385][ T4393]  kmem_cache_alloc_node_noprof+0x59/0x320
[   46.443452][ T4393]  ? __alloc_skb+0x10b/0x310
[   46.443482][ T4393]  __alloc_skb+0x10b/0x310
[   46.443566][ T4393]  ? audit_log_start+0x34c/0x6b0
[   46.443606][ T4393]  audit_log_start+0x368/0x6b0
[   46.443671][ T4393]  ? mod_objcg_state+0x2ea/0x4f0
[   46.443710][ T4393]  audit_seccomp+0x4b/0x130
[   46.443742][ T4393]  __seccomp_filter+0x6fa/0x1180
[   46.443785][ T4393]  ? security_file_alloc+0x63/0x100
[   46.443818][ T4393]  ? percpu_counter_add_batch+0xc6/0x140
[   46.443894][ T4393]  ? errseq_sample+0x2f/0x40
[   46.443913][ T4393]  ? file_init_path+0x267/0x290
[   46.443947][ T4393]  __secure_computing+0x9f/0x1c0
[   46.444029][ T4393]  syscall_trace_enter+0xd1/0x1f0
[   46.444053][ T4393]  ? do_epoll_create+0x23d/0x280
[   46.444078][ T4393]  ? fpregs_assert_state_consistent+0x83/0xa0
[   46.444187][ T4393]  do_syscall_64+0xaa/0x1c0
[   46.444217][ T4393]  ? clear_bhb_loop+0x55/0xb0
[   46.444278][ T4393]  ? clear_bhb_loop+0x55/0xb0
[   46.444361][ T4393]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.444391][ T4393] RIP: 0033:0x7fef2cfab7bc
[   46.444407][ T4393] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   46.444426][ T4393] RSP: 002b:00007fef2b617030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   46.444502][ T4393] RAX: ffffffffffffffda RBX: 00007fef2d1c5fa0 RCX: 00007fef2cfab7bc
[   46.444513][ T4393] RDX: 000000000000000f RSI: 00007fef2b6170a0 RDI: 0000000000000003
[   46.444523][ T4393] RBP: 00007fef2b617090 R08: 0000000000000000 R09: 0000000000000000
[   46.444533][ T4393] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   46.444543][ T4393] R13: 0000000000000000 R14: 00007fef2d1c5fa0 R15: 00007ffe05a02db8
[   46.444563][ T4393]  </TASK>
[   46.691897][ T4395] dummy0: entered promiscuous mode
[   46.708452][ T4395] dummy0: left promiscuous mode
[   46.725688][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.743439][ T4403] Illegal XDP return value 3772224872 on prog  (id 174) dev N/A, expect packet loss!
[   46.775341][ T4409] netlink: 'syz.0.262': attribute type 1 has an invalid length.
[   46.783069][ T4409] netlink: 8 bytes leftover after parsing attributes in process `syz.0.262'.
[   46.821935][ T4413] netlink: 76 bytes leftover after parsing attributes in process `syz.4.263'.
[   46.927095][ T4424] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[   46.978444][ T4429] loop5: detected capacity change from 0 to 512
[   47.167496][ T4444] netlink: 8 bytes leftover after parsing attributes in process `syz.5.275'.
[   47.278616][ T4449] vhci_hcd: invalid port number 9
[   47.283770][ T4449] vhci_hcd: default hub control req: 000e v0000 i0009 l41
[   47.325369][ T4453] loop1: detected capacity change from 0 to 2048
[   47.334581][ T4451] loop4: detected capacity change from 0 to 2048
[   47.354832][ T4453] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   47.390635][ T4453] team0 (unregistering): Port device geneve1 removed
[   47.472858][ T4451] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.533447][ T4451] EXT4-fs error (device loop4): ext4_find_extent:938: inode #2: comm syz.4.277: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   47.550432][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.615712][ T4451] EXT4-fs (loop4): Remounting filesystem read-only
[   47.707148][   T29] kauditd_printk_skb: 264 callbacks suppressed
[   47.707166][   T29] audit: type=1400 audit(1738270500.950:1025): avc:  denied  { accept } for  pid=4450 comm="syz.4.277" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   47.748754][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.793393][   T29] audit: type=1326 audit(1738270501.060:1026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4465 comm="syz.1.281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f076b2bcda9 code=0x7ffc0000
[   47.818704][   T29] audit: type=1326 audit(1738270501.090:1027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4465 comm="syz.1.281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f076b2bcda9 code=0x7ffc0000
[   47.858339][   T29] audit: type=1326 audit(1738270501.090:1028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4465 comm="syz.1.281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f076b2bcda9 code=0x7ffc0000
[   47.866521][ T4470] loop0: detected capacity change from 0 to 512
[   47.881799][   T29] audit: type=1326 audit(1738270501.090:1029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4465 comm="syz.1.281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f076b2bcda9 code=0x7ffc0000
[   47.881865][   T29] audit: type=1326 audit(1738270501.120:1030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4465 comm="syz.1.281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f076b2bcda9 code=0x7ffc0000
[   47.935402][   T29] audit: type=1326 audit(1738270501.120:1031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4465 comm="syz.1.281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f076b2bcde3 code=0x7ffc0000
[   47.958054][ T4466] loop1: detected capacity change from 0 to 8192
[   47.958707][   T29] audit: type=1326 audit(1738270501.120:1032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4467 comm="syz.4.280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef2cfacda9 code=0x7ffc0000
[   47.988719][   T29] audit: type=1326 audit(1738270501.120:1033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4467 comm="syz.4.280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=305 compat=0 ip=0x7fef2cfacda9 code=0x7ffc0000
[   48.012167][   T29] audit: type=1326 audit(1738270501.120:1034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4467 comm="syz.4.280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef2cfacda9 code=0x7ffc0000
[   48.098820][ T4466]  loop1: p2 p3 p4
[   48.110303][ T4466] loop1: p2 size 130943 extends beyond EOD, truncated
[   48.117442][ T4470] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.282: bg 0: block 248: padding at end of block bitmap is not set
[   48.131978][ T4466] loop1: p3 size 16776960 extends beyond EOD, truncated
[   48.140094][ T4485] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   48.152007][ T4466] loop1: p4 size 3599499392 extends beyond EOD, truncated
[   48.154241][ T4485] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=12880 sclass=netlink_audit_socket pid=4485 comm=syz.3.286
[   48.162122][ T4470] EXT4-fs error (device loop0): ext4_acquire_dquot:6927: comm syz.0.282: Failed to acquire dquot type 1
[   48.171839][ T4485] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=4485 comm=syz.3.286
[   48.200860][ T4470] EXT4-fs (loop0): 1 truncate cleaned up
[   48.208167][ T4470] ext4 filesystem being mounted at /53/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   48.316014][ T4493] netlink: 76 bytes leftover after parsing attributes in process `syz.5.287'.
[   48.329415][ T3373] udevd[3373]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[   48.344113][ T3532] udevd[3532]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory
[   48.346100][ T3287] udevd[3287]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[   48.386546][ T4491] SELinux:  Context system_u:object_r:zero_device_t:s0 is not valid (left unmapped).
[   48.509732][ T4511] FAULT_INJECTION: forcing a failure.
[   48.509732][ T4511] name failslab, interval 1, probability 0, space 0, times 0
[   48.522420][ T4511] CPU: 1 UID: 0 PID: 4511 Comm: syz.0.294 Not tainted 6.13.0-syzkaller-09485-g72deda0abee6 #0
[   48.522473][ T4511] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   48.522533][ T4511] Call Trace:
[   48.522540][ T4511]  <TASK>
[   48.522549][ T4511]  dump_stack_lvl+0xf2/0x150
[   48.522583][ T4511]  dump_stack+0x15/0x1a
[   48.522609][ T4511]  should_fail_ex+0x24a/0x260
[   48.522693][ T4511]  ? nf_ct_tmpl_alloc+0x63/0x120
[   48.522732][ T4511]  should_failslab+0x8f/0xb0
[   48.522761][ T4511]  __kmalloc_cache_noprof+0x4e/0x320
[   48.522828][ T4511]  nf_ct_tmpl_alloc+0x63/0x120
[   48.522866][ T4511]  xt_ct_tg_check+0x170/0x790
[   48.522928][ T4511]  xt_ct_tg_check_v0+0xc3/0x130
[   48.522962][ T4511]  xt_check_target+0x266/0x480
[   48.522995][ T4511]  ? xt_find_match+0x1c1/0x1e0
[   48.523019][ T4511]  ? strnlen+0x28/0x50
[   48.523110][ T4511]  ? strcmp+0x21/0x50
[   48.523138][ T4511]  ? xt_find_target+0x1bd/0x1e0
[   48.523166][ T4511]  translate_table+0xcde/0x1040
[   48.523257][ T4511]  do_ip6t_set_ctl+0x7cc/0x8c0
[   48.523361][ T4511]  ? kstrtouint+0x77/0xc0
[   48.523385][ T4511]  ? __rcu_read_unlock+0x4e/0x70
[   48.523414][ T4511]  nf_setsockopt+0x195/0x1b0
[   48.523441][ T4511]  ipv6_setsockopt+0x10f/0x130
[   48.523548][ T4511]  udpv6_setsockopt+0x95/0xb0
[   48.523580][ T4511]  sock_common_setsockopt+0x64/0x80
[   48.523608][ T4511]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   48.523636][ T4511]  __sys_setsockopt+0x187/0x200
[   48.523737][ T4511]  __x64_sys_setsockopt+0x66/0x80
[   48.523772][ T4511]  x64_sys_call+0x282e/0x2dc0
[   48.523797][ T4511]  do_syscall_64+0xc9/0x1c0
[   48.523884][ T4511]  ? clear_bhb_loop+0x55/0xb0
[   48.523910][ T4511]  ? clear_bhb_loop+0x55/0xb0
[   48.523966][ T4511]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   48.523990][ T4511] RIP: 0033:0x7f153ecbcda9
[   48.524006][ T4511] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   48.524027][ T4511] RSP: 002b:00007f153d321038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   48.524048][ T4511] RAX: ffffffffffffffda RBX: 00007f153eed5fa0 RCX: 00007f153ecbcda9
[   48.524061][ T4511] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000003
[   48.524121][ T4511] RBP: 00007f153d321090 R08: 00000000000013d8 R09: 0000000000000000
[   48.524132][ T4511] R10: 0000000020001800 R11: 0000000000000246 R12: 0000000000000002
[   48.524143][ T4511] R13: 0000000000000000 R14: 00007f153eed5fa0 R15: 00007fff2d72e888
[   48.524159][ T4511]  </TASK>
[   48.803485][ T4514] loop3: detected capacity change from 0 to 1024
[   48.841402][ T4514] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   48.857183][ T4514] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   48.874507][ T4514] EXT4-fs error (device loop3): ext4_get_journal_inode:5798: comm syz.3.295: inode #1: comm syz.3.295: iget: illegal inode #
[   48.889326][ T4514] EXT4-fs (loop3): no journal found
[   48.894618][ T4514] EXT4-fs (loop3): can't get journal size
[   48.902213][ T4514] EXT4-fs (loop3): failed to initialize system zone (-22)
[   48.910915][ T4514] EXT4-fs (loop3): mount failed
[   49.012441][ T4530] loop5: detected capacity change from 0 to 8192
[   49.057761][ T4530]  loop5: p2 p3 p4
[   49.061842][ T4530] loop5: p2 size 130943 extends beyond EOD, truncated
[   49.073402][ T4530] loop5: p3 size 16776960 extends beyond EOD, truncated
[   49.080427][ T4526] loop0: detected capacity change from 0 to 8192
[   49.094242][ T4530] loop5: p4 size 3599499392 extends beyond EOD, truncated
[   49.230725][ T4543] 9pnet_virtio: no channels available for device 
[   49.282911][ T4552] netlink: 76 bytes leftover after parsing attributes in process `syz.1.310'.
[   49.356656][ T4556] netlink: 4 bytes leftover after parsing attributes in process `syz.5.311'.
[   49.383757][ T4560] loop3: detected capacity change from 0 to 1024
[   49.398096][ T4558] FAULT_INJECTION: forcing a failure.
[   49.398096][ T4558] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   49.400719][ T4556] loop5: detected capacity change from 0 to 512
[   49.411305][ T4558] CPU: 0 UID: 0 PID: 4558 Comm: syz.4.312 Not tainted 6.13.0-syzkaller-09485-g72deda0abee6 #0
[   49.411337][ T4558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   49.411360][ T4558] Call Trace:
[   49.411367][ T4558]  <TASK>
[   49.411375][ T4558]  dump_stack_lvl+0xf2/0x150
[   49.411410][ T4558]  dump_stack+0x15/0x1a
[   49.411437][ T4558]  should_fail_ex+0x24a/0x260
[   49.411512][ T4558]  should_fail+0xb/0x10
[   49.411547][ T4558]  should_fail_usercopy+0x1a/0x20
[   49.411588][ T4558]  _copy_from_user+0x1c/0xa0
[   49.411656][ T4558]  memdup_user+0x64/0xc0
[   49.411684][ T4558]  security_setselfattr+0x8f/0x260
[   49.411718][ T4558]  __x64_sys_lsm_set_self_attr+0x51/0x60
[   49.411747][ T4558]  x64_sys_call+0x5b0/0x2dc0
[   49.411843][ T4558]  do_syscall_64+0xc9/0x1c0
[   49.411878][ T4558]  ? clear_bhb_loop+0x55/0xb0
[   49.411911][ T4558]  ? clear_bhb_loop+0x55/0xb0
[   49.412013][ T4558]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   49.412104][ T4558] RIP: 0033:0x7fef2cfacda9
[   49.412122][ T4558] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   49.412144][ T4558] RSP: 002b:00007fef2b617038 EFLAGS: 00000246 ORIG_RAX: 00000000000001cc
[   49.412255][ T4558] RAX: ffffffffffffffda RBX: 00007fef2d1c5fa0 RCX: 00007fef2cfacda9
[   49.412270][ T4558] RDX: 00000000000000e3 RSI: 0000000000000000 RDI: 0000000000000064
[   49.412283][ T4558] RBP: 00007fef2b617090 R08: 0000000000000000 R09: 0000000000000000
[   49.412298][ T4558] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   49.412312][ T4558] R13: 0000000000000000 R14: 00007fef2d1c5fa0 R15: 00007ffe05a02db8
[   49.412411][ T4558]  </TASK>
[   49.517108][ T4560] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   49.567429][ T4556] journal_path: Non-blockdev passed as './bus'
[   49.570147][ T4560] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   49.576383][ T4556] EXT4-fs: error: could not find journal device path
[   49.598193][ T4560] EXT4-fs error (device loop3): ext4_get_journal_inode:5798: comm syz.3.313: inode #1: comm syz.3.313: iget: illegal inode #
[   49.636676][ T4560] EXT4-fs (loop3): no journal found
[   49.642041][ T4560] EXT4-fs (loop3): can't get journal size
[   49.677198][ T4560] EXT4-fs (loop3): failed to initialize system zone (-22)
[   49.689720][ T4560] EXT4-fs (loop3): mount failed
[   49.780268][ T4578] loop0: detected capacity change from 0 to 1024
[   49.799405][ T4578] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   49.810433][ T4578] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   49.826190][ T4571] loop5: detected capacity change from 0 to 8192
[   49.835422][ T4578] JBD2: no valid journal superblock found
[   49.841200][ T4578] EXT4-fs (loop0): Could not load journal inode
[   49.977086][ T4590] netlink: 76 bytes leftover after parsing attributes in process `syz.1.324'.
[   50.027707][ T4598] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   50.036401][ T4598] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   50.100248][ T4587] loop5: detected capacity change from 0 to 8192
[   50.188162][ T4587]  loop5: p2 p3 p4
[   50.191982][ T4587] loop5: p2 size 130943 extends beyond EOD, truncated
[   50.210485][ T4587] loop5: p3 size 16776960 extends beyond EOD, truncated
[   50.218649][ T4602] netlink: 4 bytes leftover after parsing attributes in process `syz.4.327'.
[   50.227518][ T4587] loop5: p4 size 3599499392 extends beyond EOD, truncated
[   50.231793][ T4602] hub 2-0:1.0: USB hub found
[   50.241126][ T4602] hub 2-0:1.0: 8 ports detected
[   50.248187][ T2998]  loop5: p2 p3 p4
[   50.251986][ T2998] loop5: p2 size 130943 extends beyond EOD, truncated
[   50.269563][ T2998] loop5: p3 size 16776960 extends beyond EOD, truncated
[   50.287237][ T2998] loop5: p4 size 3599499392 extends beyond EOD, truncated
[   50.349212][ T3373] udevd[3373]: inotify_add_watch(7, /dev/loop5p3, 10) failed: No such file or directory
[   50.351477][ T3532] udevd[3532]: inotify_add_watch(7, /dev/loop5p2, 10) failed: No such file or directory
[   50.378673][ T3287] udevd[3287]: inotify_add_watch(7, /dev/loop5p4, 10) failed: No such file or directory
[   50.400924][ T3287] udevd[3287]: inotify_add_watch(7, /dev/loop5p3, 10) failed: No such file or directory
[   50.415437][ T3532] udevd[3532]: inotify_add_watch(7, /dev/loop5p2, 10) failed: No such file or directory
[   50.426789][ T3553] udevd[3553]: inotify_add_watch(7, /dev/loop5p4, 10) failed: No such file or directory
[   50.473933][ T4615] loop5: detected capacity change from 0 to 512
[   50.503720][ T4617] netlink: 76 bytes leftover after parsing attributes in process `syz.4.332'.
[   50.547025][ T4615] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.331: bg 0: block 248: padding at end of block bitmap is not set
[   50.598954][ T4615] EXT4-fs error (device loop5): ext4_acquire_dquot:6927: comm syz.5.331: Failed to acquire dquot type 1
[   50.614018][ T4625] loop1: detected capacity change from 0 to 8192
[   50.642776][ T4625] FAULT_INJECTION: forcing a failure.
[   50.642776][ T4625] name failslab, interval 1, probability 0, space 0, times 0
[   50.655526][ T4625] CPU: 1 UID: 0 PID: 4625 Comm: syz.1.334 Not tainted 6.13.0-syzkaller-09485-g72deda0abee6 #0
[   50.655592][ T4625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   50.655605][ T4625] Call Trace:
[   50.655612][ T4625]  <TASK>
[   50.655620][ T4625]  dump_stack_lvl+0xf2/0x150
[   50.655713][ T4625]  dump_stack+0x15/0x1a
[   50.655733][ T4625]  should_fail_ex+0x24a/0x260
[   50.655768][ T4625]  should_failslab+0x8f/0xb0
[   50.655797][ T4625]  kmem_cache_alloc_noprof+0x52/0x320
[   50.655872][ T4625]  ? alloc_empty_file+0xd0/0x200
[   50.655953][ T4625]  alloc_empty_file+0xd0/0x200
[   50.655986][ T4625]  path_openat+0x6a/0x1fb0
[   50.656004][ T4625]  ? _parse_integer_limit+0x167/0x180
[   50.656050][ T4625]  ? _parse_integer+0x27/0x30
[   50.656079][ T4625]  ? kstrtoull+0x110/0x140
[   50.656110][ T4625]  ? kstrtouint+0x77/0xc0
[   50.656138][ T4625]  ? kstrtouint_from_user+0xb0/0xe0
[   50.656235][ T4625]  do_filp_open+0x107/0x230
[   50.656269][ T4625]  do_sys_openat2+0xab/0x120
[   50.656301][ T4625]  __x64_sys_openat+0xf3/0x120
[   50.656417][ T4625]  x64_sys_call+0x2b30/0x2dc0
[   50.656448][ T4625]  do_syscall_64+0xc9/0x1c0
[   50.656531][ T4625]  ? clear_bhb_loop+0x55/0xb0
[   50.656572][ T4625]  ? clear_bhb_loop+0x55/0xb0
[   50.656603][ T4625]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   50.656663][ T4625] RIP: 0033:0x7f076b2bcda9
[   50.656677][ T4625] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   50.656765][ T4625] RSP: 002b:00007f0769927038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   50.656798][ T4625] RAX: ffffffffffffffda RBX: 00007f076b4d5fa0 RCX: 00007f076b2bcda9
[   50.656813][ T4625] RDX: 000000000000275a RSI: 0000000020000180 RDI: ffffffffffffff9c
[   50.656827][ T4625] RBP: 00007f0769927090 R08: 0000000000000000 R09: 0000000000000000
[   50.656840][ T4625] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   50.656853][ T4625] R13: 0000000000000000 R14: 00007f076b4d5fa0 R15: 00007ffce016db68
[   50.656871][ T4625]  </TASK>
[   50.863814][ T4615] EXT4-fs (loop5): 1 truncate cleaned up
[   50.877460][ T4615] ext4 filesystem being mounted at /21/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   50.916914][ T4632] loop3: detected capacity change from 0 to 512
[   50.932985][ T4615] bridge_slave_0: left allmulticast mode
[   50.935471][ T4630] loop0: detected capacity change from 0 to 8192
[   50.938680][ T4615] bridge_slave_0: left promiscuous mode
[   50.938817][ T4615] bridge0: port 1(bridge_slave_0) entered disabled state
[   50.964870][ T4615] bridge_slave_1: left allmulticast mode
[   50.970601][ T4615] bridge_slave_1: left promiscuous mode
[   50.976317][ T4615] bridge0: port 2(bridge_slave_1) entered disabled state
[   51.018842][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.026296][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.033750][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.035816][ T4632] netlink: 4 bytes leftover after parsing attributes in process `syz.3.337'.
[   51.041162][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.041266][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.041288][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.072346][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.079806][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.087237][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.094654][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.102087][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.109509][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.116941][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.124364][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.131779][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.139279][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.146775][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.154265][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.161689][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.169215][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.176705][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.184237][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.191654][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.199127][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.206535][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.213942][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.221346][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.228770][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.236162][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.243572][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.251039][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.258509][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.265907][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.273358][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.280805][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.288277][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.295710][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.303151][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.310564][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.317984][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.325383][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.332905][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.340359][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.347837][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.355232][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.362736][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.370134][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.377582][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.384965][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.392377][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.399790][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.407198][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.414616][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.422030][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.429442][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.436872][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.444316][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.451796][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.459219][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.466636][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.474050][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.481455][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.488876][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.496260][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.503689][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.511130][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.518582][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.525972][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.533468][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.540886][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.548298][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.555677][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.563182][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.570586][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.577982][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.585432][ T3376] hid-generic 0006:0000:0002.0002: unknown main item tag 0x0
[   51.594040][ T3376] hid-generic 0006:0000:0002.0002: hidraw0: VIRTUAL HID v0.08 Device [syz1] on syz1
[   51.635231][ T4615] bond0: (slave bond_slave_0): Releasing backup interface
[   51.677482][ T4615] bond0: (slave bond_slave_1): Releasing backup interface
[   51.691387][ T4615] team0: Port device team_slave_0 removed
[   51.702466][ T4615] team0: Port device team_slave_1 removed
[   51.709817][ T4615] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   51.717516][ T4615] batman_adv: batadv0: Removing interface: batadv_slave_0
[   51.728633][ T4615] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   51.736217][ T4615] batman_adv: batadv0: Removing interface: batadv_slave_1
[   51.782159][ T4650] netlink: 'syz.0.342': attribute type 1 has an invalid length.
[   51.794120][ T4650] netlink: 12 bytes leftover after parsing attributes in process `syz.0.342'.
[   51.828650][ T4661] netlink: 'syz.5.344': attribute type 1 has an invalid length.
[   51.851363][ T4661] netlink: 12 bytes leftover after parsing attributes in process `syz.5.344'.
[   51.900904][ T4650] sd 0:0:1:0: device reset
[   51.920377][ T4661] sd 0:0:1:0: device reset
[   51.999570][ T4675] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=4675 comm=syz.5.351
[   52.140847][ T4688] loop5: detected capacity change from 0 to 512
[   52.160684][ T4690] loop4: detected capacity change from 0 to 2048
[   52.169385][ T4693] loop0: detected capacity change from 0 to 512
[   52.180011][ T4688] netlink: 4 bytes leftover after parsing attributes in process `syz.5.355'.
[   52.227936][ T4690] EXT4-fs error (device loop4): ext4_find_extent:938: inode #2: comm syz.4.356: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   52.268486][ T4690] EXT4-fs (loop4): Remounting filesystem read-only
[   52.405913][ T4710] loop4: detected capacity change from 0 to 512
[   52.429702][ T4710] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.363: bg 0: block 248: padding at end of block bitmap is not set
[   52.486998][ T4710] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm syz.4.363: Failed to acquire dquot type 1
[   52.504021][ T4716] loop5: detected capacity change from 0 to 512
[   52.512059][ T4716] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[   52.522283][ T4710] EXT4-fs (loop4): 1 truncate cleaned up
[   52.538294][ T4710] ext4 filesystem being mounted at /95/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   52.551883][ T4716] EXT4-fs error (device loop5): ext4_do_update_inode:5154: inode #2: comm syz.5.366: corrupted inode contents
[   52.578188][ T4716] EXT4-fs error (device loop5): ext4_dirty_inode:6042: inode #2: comm syz.5.366: mark_inode_dirty error
[   52.618033][ T4716] EXT4-fs error (device loop5): ext4_do_update_inode:5154: inode #2: comm syz.5.366: corrupted inode contents
[   52.663215][ T4721] xt_bpf: check failed: parse error
[   52.682781][ T4721] Cannot find add_set index 0 as target
[   52.761504][   T29] kauditd_printk_skb: 492 callbacks suppressed
[   52.761520][   T29] audit: type=1326 audit(1738270506.030:1521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4727 comm="syz.4.369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef2cfacda9 code=0x7ffc0000
[   52.791078][   T29] audit: type=1326 audit(1738270506.030:1522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4727 comm="syz.4.369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=310 compat=0 ip=0x7fef2cfacda9 code=0x7ffc0000
[   52.840141][ T4724] loop1: detected capacity change from 0 to 8192
[   52.861398][ T4734] loop5: detected capacity change from 0 to 512
[   52.881645][ T4736] loop3: detected capacity change from 0 to 512
[   52.905184][ T4736] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   52.932515][ T4732] netlink: 4 bytes leftover after parsing attributes in process `syz.5.370'.
[   53.011526][   T29] audit: type=1326 audit(1738270506.280:1523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4748 comm="syz.5.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24875acda9 code=0x7ffc0000
[   53.034957][   T29] audit: type=1326 audit(1738270506.280:1524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4748 comm="syz.5.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24875acda9 code=0x7ffc0000
[   53.172903][   T29] audit: type=1326 audit(1738270506.280:1525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4748 comm="syz.5.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f24875acda9 code=0x7ffc0000
[   53.196403][   T29] audit: type=1326 audit(1738270506.280:1526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4748 comm="syz.5.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24875acda9 code=0x7ffc0000
[   53.220057][   T29] audit: type=1326 audit(1738270506.280:1527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4748 comm="syz.5.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24875acda9 code=0x7ffc0000
[   53.243563][   T29] audit: type=1326 audit(1738270506.330:1528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4748 comm="syz.5.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f24875acda9 code=0x7ffc0000
[   53.258430][ T4763] loop1: detected capacity change from 0 to 1024
[   53.267175][   T29] audit: type=1326 audit(1738270506.330:1529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4748 comm="syz.5.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24875acda9 code=0x7ffc0000
[   53.296628][   T29] audit: type=1326 audit(1738270506.330:1530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4748 comm="syz.5.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24875acda9 code=0x7ffc0000
[   53.361315][ T4763] ext4 filesystem being mounted at /72/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   53.489579][ T4782] loop1: detected capacity change from 0 to 512
[   53.517642][ T4780] loop0: detected capacity change from 0 to 2048
[   53.535157][ T4780] EXT4-fs: Ignoring removed mblk_io_submit option
[   53.639595][ T4788] FAULT_INJECTION: forcing a failure.
[   53.639595][ T4788] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   53.652834][ T4788] CPU: 1 UID: 0 PID: 4788 Comm: syz.1.387 Not tainted 6.13.0-syzkaller-09485-g72deda0abee6 #0
[   53.652860][ T4788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   53.652875][ T4788] Call Trace:
[   53.652883][ T4788]  <TASK>
[   53.652892][ T4788]  dump_stack_lvl+0xf2/0x150
[   53.652925][ T4788]  dump_stack+0x15/0x1a
[   53.652978][ T4788]  should_fail_ex+0x24a/0x260
[   53.653017][ T4788]  should_fail+0xb/0x10
[   53.653064][ T4788]  should_fail_usercopy+0x1a/0x20
[   53.653134][ T4788]  _copy_to_user+0x20/0xa0
[   53.653159][ T4788]  simple_read_from_buffer+0xa0/0x110
[   53.653239][ T4788]  proc_fail_nth_read+0xf9/0x140
[   53.653288][ T4788]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   53.653328][ T4788]  vfs_read+0x19b/0x6f0
[   53.653353][ T4788]  ? __cond_resched+0x28/0x50
[   53.653443][ T4788]  ksys_read+0xe8/0x1b0
[   53.653468][ T4788]  __x64_sys_read+0x42/0x50
[   53.653494][ T4788]  x64_sys_call+0x2874/0x2dc0
[   53.653525][ T4788]  do_syscall_64+0xc9/0x1c0
[   53.653553][ T4788]  ? clear_bhb_loop+0x55/0xb0
[   53.653624][ T4788]  ? clear_bhb_loop+0x55/0xb0
[   53.653656][ T4788]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   53.653763][ T4788] RIP: 0033:0x7f076b2bb7bc
[   53.653777][ T4788] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   53.653793][ T4788] RSP: 002b:00007f0769927030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   53.653809][ T4788] RAX: ffffffffffffffda RBX: 00007f076b4d5fa0 RCX: 00007f076b2bb7bc
[   53.653860][ T4788] RDX: 000000000000000f RSI: 00007f07699270a0 RDI: 0000000000000003
[   53.653874][ T4788] RBP: 00007f0769927090 R08: 0000000000000000 R09: 0000000000000000
[   53.653887][ T4788] R10: 0000000000080000 R11: 0000000000000246 R12: 0000000000000002
[   53.653927][ T4788] R13: 0000000000000000 R14: 00007f076b4d5fa0 R15: 00007ffce016db68
[   53.653944][ T4788]  </TASK>
[   53.858139][ T4794] loop3: detected capacity change from 0 to 1024
[   54.010739][ T4805] FAULT_INJECTION: forcing a failure.
[   54.010739][ T4805] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   54.024150][ T4805] CPU: 0 UID: 0 PID: 4805 Comm: syz.0.394 Not tainted 6.13.0-syzkaller-09485-g72deda0abee6 #0
[   54.024179][ T4805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   54.024194][ T4805] Call Trace:
[   54.024202][ T4805]  <TASK>
[   54.024210][ T4805]  dump_stack_lvl+0xf2/0x150
[   54.024240][ T4805]  dump_stack+0x15/0x1a
[   54.024283][ T4805]  should_fail_ex+0x24a/0x260
[   54.024313][ T4805]  should_fail+0xb/0x10
[   54.024338][ T4805]  should_fail_usercopy+0x1a/0x20
[   54.024445][ T4805]  _copy_to_user+0x20/0xa0
[   54.024466][ T4805]  simple_read_from_buffer+0xa0/0x110
[   54.024494][ T4805]  proc_fail_nth_read+0xf9/0x140
[   54.024592][ T4805]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   54.024655][ T4805]  vfs_read+0x19b/0x6f0
[   54.024680][ T4805]  ? __rcu_read_unlock+0x4e/0x70
[   54.024707][ T4805]  ? __fget_files+0x17c/0x1c0
[   54.024789][ T4805]  ksys_read+0xe8/0x1b0
[   54.024817][ T4805]  __x64_sys_read+0x42/0x50
[   54.024843][ T4805]  x64_sys_call+0x2874/0x2dc0
[   54.024876][ T4805]  do_syscall_64+0xc9/0x1c0
[   54.024904][ T4805]  ? clear_bhb_loop+0x55/0xb0
[   54.025027][ T4805]  ? clear_bhb_loop+0x55/0xb0
[   54.025063][ T4805]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.025138][ T4805] RIP: 0033:0x7f153ecbb7bc
[   54.025157][ T4805] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   54.025234][ T4805] RSP: 002b:00007f153d321030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   54.025256][ T4805] RAX: ffffffffffffffda RBX: 00007f153eed5fa0 RCX: 00007f153ecbb7bc
[   54.025269][ T4805] RDX: 000000000000000f RSI: 00007f153d3210a0 RDI: 0000000000000003
[   54.025283][ T4805] RBP: 00007f153d321090 R08: 0000000000000000 R09: 0000000000000000
[   54.025296][ T4805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   54.025309][ T4805] R13: 0000000000000001 R14: 00007f153eed5fa0 R15: 00007fff2d72e888
[   54.025330][ T4805]  </TASK>
[   54.259492][ T4798] loop4: detected capacity change from 0 to 8192
[   54.323894][ T4819] loop1: detected capacity change from 0 to 512
[   54.369179][ T4819] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.396: bg 0: block 248: padding at end of block bitmap is not set
[   54.415846][ T4819] EXT4-fs error (device loop1): ext4_acquire_dquot:6927: comm syz.1.396: Failed to acquire dquot type 1
[   54.443956][ T4819] EXT4-fs (loop1): 1 truncate cleaned up
[   54.462180][ T4819] ext4 filesystem being mounted at /76/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   54.740040][ T4869] ªªªªªª: renamed from vlan0 (while UP)
[   54.821761][ T4881] loop4: detected capacity change from 0 to 512
[   54.856734][ T4881] __nla_validate_parse: 1 callbacks suppressed
[   54.862993][ T4881] netlink: 4 bytes leftover after parsing attributes in process `syz.4.410'.
[   54.910777][ T4895] dccp_invalid_packet: P.Data Offset(172) too large
[   54.996607][ T4908] loop0: detected capacity change from 0 to 1024
[   55.023242][ T4908] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   55.041697][ T4900] loop1: detected capacity change from 0 to 8192
[   55.058529][ T4908] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   55.079020][ T4908] EXT4-fs error (device loop0): ext4_get_journal_inode:5798: comm syz.0.416: inode #1: comm syz.0.416: iget: illegal inode #
[   55.104981][ T4914] loop4: detected capacity change from 0 to 8192
[   55.107463][ T4908] EXT4-fs (loop0): no journal found
[   55.116574][ T4908] EXT4-fs (loop0): can't get journal size
[   55.144909][ T4908] EXT4-fs (loop0): failed to initialize system zone (-22)
[   55.161858][ T4908] EXT4-fs (loop0): mount failed
[   55.164707][ T4914]  loop4: p2 p3 p4
[   55.181070][ T4914] loop4: p2 size 130943 extends beyond EOD, truncated
[   55.188588][ T4920] FAULT_INJECTION: forcing a failure.
[   55.188588][ T4920] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   55.201700][ T4920] CPU: 1 UID: 0 PID: 4920 Comm: syz.3.419 Not tainted 6.13.0-syzkaller-09485-g72deda0abee6 #0
[   55.201774][ T4920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   55.201789][ T4920] Call Trace:
[   55.201832][ T4920]  <TASK>
[   55.201841][ T4920]  dump_stack_lvl+0xf2/0x150
[   55.201907][ T4920]  dump_stack+0x15/0x1a
[   55.201932][ T4920]  should_fail_ex+0x24a/0x260
[   55.202011][ T4920]  should_fail+0xb/0x10
[   55.202045][ T4920]  should_fail_usercopy+0x1a/0x20
[   55.202087][ T4920]  _copy_from_user+0x1c/0xa0
[   55.202113][ T4920]  memdup_user+0x64/0xc0
[   55.202190][ T4920]  security_setselfattr+0x8f/0x260
[   55.202218][ T4920]  __x64_sys_lsm_set_self_attr+0x51/0x60
[   55.202241][ T4920]  x64_sys_call+0x5b0/0x2dc0
[   55.202315][ T4920]  do_syscall_64+0xc9/0x1c0
[   55.202351][ T4920]  ? clear_bhb_loop+0x55/0xb0
[   55.202385][ T4920]  ? clear_bhb_loop+0x55/0xb0
[   55.202477][ T4920]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.202502][ T4920] RIP: 0033:0x7f1acd3fcda9
[   55.202517][ T4920] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   55.202539][ T4920] RSP: 002b:00007f1acba61038 EFLAGS: 00000246 ORIG_RAX: 00000000000001cc
[   55.202560][ T4920] RAX: ffffffffffffffda RBX: 00007f1acd615fa0 RCX: 00007f1acd3fcda9
[   55.202572][ T4920] RDX: 00000000000000e3 RSI: 0000000000000000 RDI: 0000000000000064
[   55.202583][ T4920] RBP: 00007f1acba61090 R08: 0000000000000000 R09: 0000000000000000
[   55.202594][ T4920] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   55.202632][ T4920] R13: 0000000000000000 R14: 00007f1acd615fa0 R15: 00007fff93916f98
[   55.202653][ T4920]  </TASK>
[   55.381398][ T4920] 9pnet_fd: Insufficient options for proto=fd
[   55.394030][ T4914] loop4: p3 size 16776960 extends beyond EOD, truncated
[   55.412639][ T4933] netlink: 12 bytes leftover after parsing attributes in process `syz.1.423'.
[   55.419707][ T4914] loop4: p4 size 3599499392 extends beyond EOD, truncated
[   55.424511][ T4929] 9pnet_fd: Insufficient options for proto=fd
[   55.451370][ T4933] loop1: detected capacity change from 0 to 1024
[   55.470672][ T4933] EXT4-fs: Ignoring removed nobh option
[   55.476287][ T4933] EXT4-fs: Ignoring removed bh option
[   55.481934][ T2998]  loop4: p2 p3 p4
[   55.485735][ T2998] loop4: p2 size 130943 extends beyond EOD, truncated
[   55.488922][ T4940] loop0: detected capacity change from 0 to 2048
[   55.499188][ T2998] loop4: p3 size 16776960 extends beyond EOD, truncated
[   55.506815][ T2998] loop4: p4 size 3599499392 extends beyond EOD, truncated
[   55.537578][ T3532] udevd[3532]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[   55.554407][ T4940] EXT4-fs error (device loop0): ext4_find_extent:938: inode #2: comm syz.0.426: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   55.562112][ T3373] udevd[3373]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   55.581039][ T4951] loop3: detected capacity change from 0 to 512
[   55.599294][ T3287] udevd[3287]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[   55.631031][ T4933] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4115: comm 	: Allocating blocks 497-513 which overlap fs metadata
[   55.636860][ T4962] netlink: 4 bytes leftover after parsing attributes in process `syz.3.427'.
[   55.647046][ T4933] EXT4-fs (loop1): Remounting filesystem read-only
[   55.661170][ T4940] EXT4-fs (loop0): Remounting filesystem read-only
[   55.670151][ T3532] udevd[3532]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[   55.673289][ T3287] udevd[3287]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[   55.679211][ T3373] udevd[3373]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   55.728834][ T4932] EXT4-fs (loop1): pa ffff88810488f850: logic 256, phys. 385, len 8
[   55.820226][ T4977] loop0: detected capacity change from 0 to 512
[   55.849386][ T4982] netlink: 12 bytes leftover after parsing attributes in process `syz.3.433'.
[   55.889562][ T4977] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.431: bg 0: block 248: padding at end of block bitmap is not set
[   55.931182][ T4977] EXT4-fs error (device loop0): ext4_acquire_dquot:6927: comm syz.0.431: Failed to acquire dquot type 1
[   55.943896][ T4977] EXT4-fs (loop0): 1 truncate cleaned up
[   55.982373][ T5008] FAULT_INJECTION: forcing a failure.
[   55.982373][ T5008] name failslab, interval 1, probability 0, space 0, times 0
[   55.995061][ T5008] CPU: 0 UID: 0 PID: 5008 Comm: syz.1.440 Not tainted 6.13.0-syzkaller-09485-g72deda0abee6 #0
[   55.995165][ T5008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   55.995179][ T5008] Call Trace:
[   55.995186][ T5008]  <TASK>
[   55.995194][ T5008]  dump_stack_lvl+0xf2/0x150
[   55.995226][ T5008]  dump_stack+0x15/0x1a
[   55.995251][ T5008]  should_fail_ex+0x24a/0x260
[   55.995282][ T5008]  should_failslab+0x8f/0xb0
[   55.995312][ T5008]  __kmalloc_noprof+0xab/0x3f0
[   55.995342][ T5008]  ? __list_lru_init+0x72/0x2e0
[   55.995412][ T5008]  __list_lru_init+0x72/0x2e0
[   55.995444][ T5008]  alloc_super+0x554/0x5a0
[   55.995482][ T5008]  ? __pfx_set_anon_super_fc+0x10/0x10
[   55.995567][ T5008]  sget_fc+0x259/0x670
[   55.995602][ T5008]  ? __pfx_set_anon_super_fc+0x10/0x10
[   55.995627][ T5008]  ? __pfx_mqueue_fill_super+0x10/0x10
[   55.995679][ T5008]  get_tree_nodev+0x28/0xf0
[   55.995702][ T5008]  mqueue_get_tree+0x6b/0x90
[   55.995732][ T5008]  vfs_get_tree+0x56/0x1e0
[   55.995758][ T5008]  fc_mount+0x16/0x70
[   55.995777][ T5008]  mq_init_ns+0x253/0x300
[   55.995805][ T5008]  copy_ipcs+0x218/0x3b0
[   55.995859][ T5008]  create_new_namespaces+0x135/0x430
[   55.995879][ T5008]  ? security_capable+0x81/0x90
[   55.995907][ T5008]  unshare_nsproxy_namespaces+0xe6/0x120
[   55.995929][ T5008]  ksys_unshare+0x3c9/0x6e0
[   55.995997][ T5008]  __x64_sys_unshare+0x1f/0x30
[   55.996038][ T5008]  x64_sys_call+0x1a3e/0x2dc0
[   55.996068][ T5008]  do_syscall_64+0xc9/0x1c0
[   55.996101][ T5008]  ? clear_bhb_loop+0x55/0xb0
[   55.996187][ T5008]  ? clear_bhb_loop+0x55/0xb0
[   55.996217][ T5008]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.996244][ T5008] RIP: 0033:0x7f076b2bcda9
[   55.996258][ T5008] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   55.996277][ T5008] RSP: 002b:00007f0769927038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[   55.996374][ T5008] RAX: ffffffffffffffda RBX: 00007f076b4d5fa0 RCX: 00007f076b2bcda9
[   55.996388][ T5008] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000068040200
[   55.996402][ T5008] RBP: 00007f0769927090 R08: 0000000000000000 R09: 0000000000000000
[   55.996415][ T5008] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   55.996429][ T5008] R13: 0000000000000000 R14: 00007f076b4d5fa0 R15: 00007ffce016db68
[   55.996450][ T5008]  </TASK>
[   56.045852][ T4977] ext4 filesystem being mounted at /87/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   56.256226][ T5011] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.327177][ T5022] loop5: detected capacity change from 0 to 2048
[   56.345907][ T5017] dummy0: entered promiscuous mode
[   56.350976][ T5022] EXT4-fs error (device loop5): ext4_find_extent:938: inode #2: comm syz.5.443: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   56.369075][ T5017] dummy0: left promiscuous mode
[   56.374068][ T5022] EXT4-fs (loop5): Remounting filesystem read-only
[   56.404160][ T5011] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.479818][ T5011] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.552795][ T5043] ref_tracker: memory allocation failure, unreliable refcount tracker.
[   56.568445][ T5031] loop0: detected capacity change from 0 to 8192
[   56.602013][ T5011] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.637871][ T5031]  loop0: p2 p3 p4
[   56.641704][ T5031] loop0: p2 size 130943 extends beyond EOD, truncated
[   56.646980][ T5011] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.683494][ T5031] loop0: p3 size 16776960 extends beyond EOD, truncated
[   56.698709][ T5011] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.722571][ T5031] loop0: p4 size 3599499392 extends beyond EOD, truncated
[   56.730611][ T5011] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.749776][ T5065] loop4: detected capacity change from 0 to 2048
[   56.767032][ T5011] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.801372][ T5065] EXT4-fs error (device loop4): ext4_find_extent:938: inode #2: comm syz.4.455: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   56.891138][ T3373] udevd[3373]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory
[   56.891197][ T3532] udevd[3532]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory
[   56.902338][ T3287] udevd[3287]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[   56.936209][ T5065] EXT4-fs (loop4): Remounting filesystem read-only
[   57.133928][ T5120] xt_bpf: check failed: parse error
[   57.160490][ T5054] Cannot find add_set index 0 as target
[   57.291566][ T5137] loop3: detected capacity change from 0 to 1024
[   57.323840][ T5141] loop0: detected capacity change from 0 to 2048
[   57.328715][ T5137] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   57.359774][ T5141]  loop0: p1 p2 p3
[   57.386693][ T5137] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   57.419426][ T5137] EXT4-fs error (device loop3): ext4_get_journal_inode:5798: comm syz.3.468: inode #1: comm syz.3.468: iget: illegal inode #
[   57.446305][ T3373] udevd[3373]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory
[   57.466331][ T5137] EXT4-fs (loop3): no journal found
[   57.471732][ T5137] EXT4-fs (loop3): can't get journal size
[   57.504489][ T5137] EXT4-fs (loop3): failed to initialize system zone (-22)
[   57.516768][ T5137] EXT4-fs (loop3): mount failed
[   57.625736][ T5161] loop1: detected capacity change from 0 to 1024
[   57.657866][ T5161] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   57.658758][ T5162] loop3: detected capacity change from 0 to 1024
[   57.674378][ T5162] EXT4-fs: Ignoring removed nomblk_io_submit option
[   57.681060][ T5162] EXT4-fs: Ignoring removed nomblk_io_submit option
[   57.685980][ T5161] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   57.699358][ T5162] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   57.710161][ T5161] EXT4-fs error (device loop1): ext4_get_journal_inode:5798: comm syz.1.473: inode #1: comm syz.1.473: iget: illegal inode #
[   57.724980][ T5161] EXT4-fs (loop1): no journal found
[   57.730231][ T5161] EXT4-fs (loop1): can't get journal size
[   57.741222][ T5161] EXT4-fs (loop1): failed to initialize system zone (-22)
[   57.767578][ T5161] EXT4-fs (loop1): mount failed
[   57.772811][   T29] kauditd_printk_skb: 572 callbacks suppressed
[   57.772826][   T29] audit: type=1326 audit(1738270511.040:2099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5091 comm="syz.5.459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24875acda9 code=0x7ffc0000
[   57.803202][   T29] audit: type=1326 audit(1738270511.060:2100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5091 comm="syz.5.459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24875acda9 code=0x7ffc0000
[   57.908847][ T5178] dummy0: entered promiscuous mode
[   57.960698][ T5178] dummy0: left promiscuous mode
[   57.986311][   T29] audit: type=1326 audit(1738270511.250:2101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5188 comm="syz.4.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef2cfacda9 code=0x7ffc0000
[   58.009955][   T29] audit: type=1326 audit(1738270511.250:2102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5188 comm="syz.4.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef2cfacda9 code=0x7ffc0000
[   58.035946][   T29] audit: type=1326 audit(1738270511.250:2103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5188 comm="syz.4.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fef2cfacda9 code=0x7ffc0000
[   58.059621][   T29] audit: type=1326 audit(1738270511.250:2104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5188 comm="syz.4.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef2cfacda9 code=0x7ffc0000
[   58.083112][   T29] audit: type=1326 audit(1738270511.250:2105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5188 comm="syz.4.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef2cfacda9 code=0x7ffc0000
[   58.106481][   T29] audit: type=1326 audit(1738270511.250:2106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5188 comm="syz.4.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fef2cfacda9 code=0x7ffc0000
[   58.129877][   T29] audit: type=1326 audit(1738270511.250:2107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5188 comm="syz.4.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef2cfacda9 code=0x7ffc0000
[   58.153395][   T29] audit: type=1326 audit(1738270511.250:2108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5188 comm="syz.4.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fef2cfacda9 code=0x7ffc0000
[   58.203114][ T5193] loop4: detected capacity change from 0 to 8192
[   58.679738][ T5260] loop3: detected capacity change from 0 to 2048
[   58.711803][ T5260] EXT4-fs error (device loop3): ext4_find_extent:938: inode #2: comm syz.3.508: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   58.736798][ T5260] EXT4-fs (loop3): Remounting filesystem read-only
[   58.961997][ T5303] ªªªªªª: renamed from vlan0 (while UP)
[   58.988780][ T5305] loop4: detected capacity change from 0 to 2048
[   59.020150][ T5305] EXT4-fs error (device loop4): ext4_find_extent:938: inode #2: comm syz.4.528: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   59.039538][ T5305] EXT4-fs (loop4): Remounting filesystem read-only
[   59.350946][ T5353] loop3: detected capacity change from 0 to 512
[   59.351567][ T5347] loop1: detected capacity change from 0 to 8192
[   59.369947][ T5353] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   59.396970][ T5347]  loop1: p2 p3 p4
[   59.401095][ T5347] loop1: p2 size 130943 extends beyond EOD, truncated
[   59.411622][ T5347] loop1: p3 size 16776960 extends beyond EOD, truncated
[   59.419633][ T5353] EXT4-fs error (device loop3): ext4_do_update_inode:5154: inode #2: comm syz.3.549: corrupted inode contents
[   59.419676][ T5347] loop1: p4 size 3599499392 extends beyond EOD, truncated
[   59.444904][ T5360] loop0: detected capacity change from 0 to 1024
[   59.455262][ T2998]  loop1: p2 p3 p4
[   59.459318][ T2998] loop1: p2 size 130943 extends beyond EOD, truncated
[   59.468020][ T5353] EXT4-fs error (device loop3): ext4_dirty_inode:6042: inode #2: comm syz.3.549: mark_inode_dirty error
[   59.480345][ T5360] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   59.486643][ T2998] loop1: p3 size 16776960 extends beyond EOD, truncated
[   59.491251][ T5360] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   59.497685][ T2998] loop1: p4 size 3599499392 extends beyond EOD, truncated
[   59.507862][ T5360] EXT4-fs error (device loop0): ext4_get_journal_inode:5798: comm syz.0.551: inode #1: comm syz.0.551: iget: illegal inode #
[   59.514417][ T5353] EXT4-fs error (device loop3): ext4_do_update_inode:5154: inode #2: comm syz.3.549: corrupted inode contents
[   59.529156][ T5360] EXT4-fs (loop0): no journal found
[   59.544585][ T5360] EXT4-fs (loop0): can't get journal size
[   59.557452][ T5360] EXT4-fs (loop0): failed to initialize system zone (-22)
[   59.580209][ T5360] EXT4-fs (loop0): mount failed
[   59.859397][ T5399] loop1: detected capacity change from 0 to 512
[   59.873855][ T5402] loop5: detected capacity change from 0 to 512
[   59.918672][ T5402] netlink: 4 bytes leftover after parsing attributes in process `syz.5.569'.
[   60.066696][ T5425] loop1: detected capacity change from 0 to 1024
[   60.074709][ T5425] EXT4-fs: Ignoring removed nobh option
[   60.080474][ T5425] EXT4-fs: Ignoring removed bh option
[   60.116068][ T5425] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4115: comm 	: Allocating blocks 497-513 which overlap fs metadata
[   60.130714][ T5425] EXT4-fs (loop1): Remounting filesystem read-only
[   60.151747][ T5424] EXT4-fs (loop1): pa ffff88810488f850: logic 256, phys. 385, len 8
[   60.331621][ T5447] loop1: detected capacity change from 0 to 512
[   60.339098][ T5447] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   60.362034][ T5447] EXT4-fs error (device loop1): ext4_do_update_inode:5154: inode #2: comm syz.1.587: corrupted inode contents
[   60.374369][ T5447] EXT4-fs error (device loop1): ext4_dirty_inode:6042: inode #2: comm syz.1.587: mark_inode_dirty error
[   60.386245][ T5447] EXT4-fs error (device loop1): ext4_do_update_inode:5154: inode #2: comm syz.1.587: corrupted inode contents
[   60.473784][ T5460] dummy0: entered promiscuous mode
[   60.480802][ T5460] dummy0: left promiscuous mode
[   60.609415][ T5476] loop1: detected capacity change from 0 to 512
[   60.641169][ T5478] loop5: detected capacity change from 0 to 1024
[   60.674157][ T5476] netlink: 4 bytes leftover after parsing attributes in process `syz.1.597'.
[   60.684041][ T5478] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   60.708462][ T5478] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   60.711029][ T5487] loop0: detected capacity change from 0 to 512
[   60.726239][ T5478] EXT4-fs error (device loop5): ext4_get_journal_inode:5798: comm syz.5.599: inode #1: comm syz.5.599: iget: illegal inode #
[   60.766612][ T5478] EXT4-fs (loop5): no journal found
[   60.771877][ T5478] EXT4-fs (loop5): can't get journal size
[   60.788516][ T5490] loop1: detected capacity change from 0 to 1024
[   60.796797][ T5490] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   60.806580][ T5478] EXT4-fs (loop5): failed to initialize system zone (-22)
[   60.832880][ T5490] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   60.843300][ T5490] EXT4-fs error (device loop1): ext4_get_journal_inode:5798: comm syz.1.603: inode #1: comm syz.1.603: iget: illegal inode #
[   60.857039][ T5478] EXT4-fs (loop5): mount failed
[   60.863209][ T5490] EXT4-fs (loop1): no journal found
[   60.868484][ T5490] EXT4-fs (loop1): can't get journal size
[   60.892750][ T5490] EXT4-fs (loop1): failed to initialize system zone (-22)
[   60.914556][ T5490] EXT4-fs (loop1): mount failed
[   61.055246][ T5511] loop0: detected capacity change from 0 to 8192
[   61.076972][ T5511]  loop0: p2 p3 p4
[   61.081135][ T5511] loop0: p2 size 130943 extends beyond EOD, truncated
[   61.089607][ T5511] loop0: p3 size 16776960 extends beyond EOD, truncated
[   61.102535][ T5511] loop0: p4 size 3599499392 extends beyond EOD, truncated
[   61.159637][ T5520] loop4: detected capacity change from 0 to 512
[   61.185965][ T3532] udevd[3532]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory
[   61.186222][ T3373] udevd[3373]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory
[   61.236462][ T5520] netlink: 4 bytes leftover after parsing attributes in process `syz.4.614'.
[   61.297222][ T3532] udevd[3532]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[   61.368051][ T5539] ªªªªªª: renamed from vlan0 (while UP)
[   61.390906][ T5535] loop3: detected capacity change from 0 to 8192
[   61.561448][ T5554] loop3: detected capacity change from 0 to 512
[   61.622801][ T5554] netlink: 4 bytes leftover after parsing attributes in process `syz.3.628'.
[   61.751836][ T5569] loop3: detected capacity change from 0 to 512
[   61.784227][ T5569] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   61.860735][ T5577] loop5: detected capacity change from 0 to 512
[   61.912396][ T5584] loop4: detected capacity change from 0 to 512
[   61.919839][ T5577] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.637: bg 0: block 248: padding at end of block bitmap is not set
[   61.948682][ T5584] netlink: 4 bytes leftover after parsing attributes in process `syz.4.641'.
[   61.968455][ T5577] EXT4-fs error (device loop5): ext4_acquire_dquot:6927: comm syz.5.637: Failed to acquire dquot type 1
[   62.009277][ T5577] EXT4-fs (loop5): 1 truncate cleaned up
[   62.054718][ T5577] ext4 filesystem being mounted at /79/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.107295][ T5602] xt_bpf: check failed: parse error
[   62.126488][ T5602] Cannot find add_set index 0 as target
[   62.250288][ T5616] loop1: detected capacity change from 0 to 512
[   62.293896][ T5616] netlink: 4 bytes leftover after parsing attributes in process `syz.1.654'.
[   62.377900][ T5630] loop1: detected capacity change from 0 to 2048
[   62.411430][ T5630] EXT4-fs error (device loop1): ext4_find_extent:938: inode #2: comm syz.1.659: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   62.429829][ T5630] EXT4-fs (loop1): Remounting filesystem read-only
[   62.505937][ T5641] netlink: 12 bytes leftover after parsing attributes in process `syz.1.662'.
[   62.556400][ T5641] loop1: detected capacity change from 0 to 1024
[   62.581831][ T5641] EXT4-fs: Ignoring removed nobh option
[   62.587692][ T5641] EXT4-fs: Ignoring removed bh option
[   62.655864][ T5641] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4115: comm 	: Allocating blocks 497-513 which overlap fs metadata
[   62.683251][ T5641] EXT4-fs (loop1): Remounting filesystem read-only
[   62.700554][ T5640] EXT4-fs (loop1): pa ffff88810488f8c0: logic 256, phys. 385, len 8
[   62.783474][ T5659] loop4: detected capacity change from 0 to 512
[   62.799182][ T5658] loop3: detected capacity change from 0 to 1024
[   62.826540][ T5658] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   62.845749][ T5659] netlink: 4 bytes leftover after parsing attributes in process `syz.4.669'.
[   62.885592][ T5658] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   62.897561][ T5658] EXT4-fs error (device loop3): ext4_get_journal_inode:5798: comm syz.3.670: inode #1: comm syz.3.670: iget: illegal inode #
[   62.913055][ T5658] EXT4-fs (loop3): no journal found
[   62.918440][ T5658] EXT4-fs (loop3): can't get journal size
[   62.924320][   T29] kauditd_printk_skb: 434 callbacks suppressed
[   62.924332][   T29] audit: type=1326 audit(1738270516.191:2541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5642 comm="syz.5.664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24875acda9 code=0x7ffc0000
[   62.955035][   T29] audit: type=1326 audit(1738270516.191:2542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5642 comm="syz.5.664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24875acda9 code=0x7ffc0000
[   62.979671][ T5658] EXT4-fs (loop3): failed to initialize system zone (-22)
[   62.999428][ T5658] EXT4-fs (loop3): mount failed
[   63.018433][ T5676] loop0: detected capacity change from 0 to 512
[   63.072062][ T5676] ext4 filesystem being mounted at /123/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   63.099657][ T5683] dummy0: entered promiscuous mode
[   63.121828][ T5683] dummy0: left promiscuous mode
[   63.133498][ T5686] loop5: detected capacity change from 0 to 512
[   63.142668][ T5687] xt_bpf: check failed: parse error
[   63.157018][ T5688] Zero length message leads to an empty skb
[   63.166221][   T29] audit: type=1326 audit(1738270516.421:2543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5675 comm="syz.0.675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f153ecbcda9 code=0x7ffc0000
[   63.189669][   T29] audit: type=1326 audit(1738270516.421:2544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5675 comm="syz.0.675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f153ecbcda9 code=0x7ffc0000
[   63.213115][   T29] audit: type=1326 audit(1738270516.421:2545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5675 comm="syz.0.675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f153ecbcda9 code=0x7ffc0000
[   63.236603][   T29] audit: type=1326 audit(1738270516.421:2546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5675 comm="syz.0.675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f153ecbcda9 code=0x7ffc0000
[   63.238362][ T5686] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[   63.259962][   T29] audit: type=1326 audit(1738270516.421:2547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5675 comm="syz.0.675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f153ecbcda9 code=0x7ffc0000
[   63.281773][ T5671] Cannot find add_set index 0 as target
[   63.292227][   T29] audit: type=1326 audit(1738270516.421:2548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5675 comm="syz.0.675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f153ecbcda9 code=0x7ffc0000
[   63.321209][   T29] audit: type=1326 audit(1738270516.421:2549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5675 comm="syz.0.675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f153ecbcda9 code=0x7ffc0000
[   63.344581][   T29] audit: type=1326 audit(1738270516.421:2550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5675 comm="syz.0.675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f153ecbcda9 code=0x7ffc0000
[   63.522820][ T5699] loop4: detected capacity change from 0 to 1024
[   63.539736][ T5699] ext4 filesystem being mounted at /163/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.543443][ T5701] loop3: detected capacity change from 0 to 512
[   63.556737][ T5699] netlink: 8 bytes leftover after parsing attributes in process `syz.4.683'.
[   63.596350][ T5701] netlink: 4 bytes leftover after parsing attributes in process `syz.3.684'.
[   63.651922][ T5711] loop3: detected capacity change from 0 to 512
[   63.667660][ T5711] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.687: bg 0: block 248: padding at end of block bitmap is not set
[   63.682871][ T5711] EXT4-fs error (device loop3): ext4_acquire_dquot:6927: comm syz.3.687: Failed to acquire dquot type 1
[   63.694852][ T5711] EXT4-fs (loop3): 1 truncate cleaned up
[   63.704557][ T5711] ext4 filesystem being mounted at /126/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.733217][ T5711] bond0: (slave bond_slave_0): Releasing backup interface
[   63.744084][ T5711] bond0: (slave bond_slave_1): Releasing backup interface
[   63.760146][ T5711] team0: Port device team_slave_0 removed
[   63.769888][ T5711] team0: Port device team_slave_1 removed
[   63.776919][ T5711] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   63.784431][ T5711] batman_adv: batadv0: Removing interface: batadv_slave_0
[   63.793259][ T5711] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   63.800984][ T5711] batman_adv: batadv0: Removing interface: batadv_slave_1
[   63.929599][ T5725] loop0: detected capacity change from 0 to 1024
[   63.951277][ T5725] EXT4-fs: Ignoring removed nobh option
[   63.957003][ T5725] EXT4-fs: Ignoring removed bh option
[   63.992636][ T5736] loop1: detected capacity change from 0 to 1024
[   64.016571][ T5725] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4115: comm 	: Allocating blocks 497-513 which overlap fs metadata
[   64.030772][ T5725] EXT4-fs (loop0): Remounting filesystem read-only
[   64.042559][ T5736] ext4 filesystem being mounted at /146/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   64.055965][ T5724] EXT4-fs (loop0): pa ffff888100702310: logic 256, phys. 385, len 8
[   64.165936][ T5758] loop0: detected capacity change from 0 to 512
[   64.174134][ T5758] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   64.180518][ T5762] loop5: detected capacity change from 0 to 512
[   64.219718][ T5762] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.706: bg 0: block 248: padding at end of block bitmap is not set
[   64.249325][ T5762] EXT4-fs error (device loop5): ext4_acquire_dquot:6927: comm syz.5.706: Failed to acquire dquot type 1
[   64.274789][ T5774] loop3: detected capacity change from 0 to 512
[   64.286776][ T5762] EXT4-fs (loop5): 1 truncate cleaned up
[   64.297829][ T5762] ext4 filesystem being mounted at /94/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   64.324724][ T5777] loop1: detected capacity change from 0 to 1024
[   64.339841][ T5777] ext4 filesystem being mounted at /150/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   64.357626][ T5780] netlink: 'syz.0.710': attribute type 21 has an invalid length.
[   64.365577][ T5780] IPv6: NLM_F_CREATE should be specified when creating new route
[   64.387414][ T5780] IPv6: Can't replace route, no match found
[   64.479285][ T5788] loop5: detected capacity change from 0 to 1024
[   64.486106][ T5788] EXT4-fs: Ignoring removed nobh option
[   64.491882][ T5788] EXT4-fs: Ignoring removed bh option
[   64.507444][ T2998] udevd[2998]: worker [3532] terminated by signal 33 (Unknown signal 33)
[   64.537209][ T5798] dummy0: entered promiscuous mode
[   64.545895][ T5798] dummy0: left promiscuous mode
[   64.564251][ T3287] printk: udevd: 8 output lines suppressed due to ratelimiting
[   64.580619][ T5788] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4115: comm 	: Allocating blocks 497-513 which overlap fs metadata
[   64.598292][ T5788] EXT4-fs (loop5): Remounting filesystem read-only
[   64.610421][ T5787] EXT4-fs (loop5): pa ffff888100702310: logic 256, phys. 385, len 8
[   64.668533][ T5803] loop4: detected capacity change from 0 to 8192
[   64.699824][ T5803]  loop4: p2 p3 p4
[   64.703693][ T5803] loop4: p2 size 130943 extends beyond EOD, truncated
[   64.712753][ T5803] loop4: p3 size 16776960 extends beyond EOD, truncated
[   64.720899][ T5803] loop4: p4 size 3599499392 extends beyond EOD, truncated
[   64.771177][ T5815] loop1: detected capacity change from 0 to 512
[   64.808989][ T5816] loop5: detected capacity change from 0 to 1024
[   64.835927][ T5820] loop1: detected capacity change from 0 to 512
[   64.844592][ T5816] ext4 filesystem being mounted at /98/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   64.974259][ T5834] loop1: detected capacity change from 0 to 1024
[   64.982838][ T5834] EXT4-fs: Ignoring removed nomblk_io_submit option
[   64.989518][ T5834] EXT4-fs: Ignoring removed nomblk_io_submit option
[   65.007178][ T5834] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   65.061507][ T5843] loop4: detected capacity change from 0 to 512
[   65.074445][ T5840] loop5: detected capacity change from 0 to 1024
[   65.081461][ T5840] EXT4-fs: Ignoring removed nobh option
[   65.087188][ T5840] EXT4-fs: Ignoring removed bh option
[   65.126992][ T5840] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4115: comm 	: Allocating blocks 497-513 which overlap fs metadata
[   65.157837][ T5840] EXT4-fs (loop5): Remounting filesystem read-only
[   65.169179][ T5838] EXT4-fs (loop5): pa ffff888100702380: logic 256, phys. 385, len 8
[   65.172218][ T5856] loop3: detected capacity change from 0 to 512
[   65.213528][ T5856] __nla_validate_parse: 5 callbacks suppressed
[   65.213545][ T5856] netlink: 4 bytes leftover after parsing attributes in process `syz.3.735'.
[   65.244389][ T5860] loop5: detected capacity change from 0 to 1024
[   65.264835][ T5864] loop3: detected capacity change from 0 to 512
[   65.278182][ T5867] loop0: detected capacity change from 0 to 512
[   65.287214][ T5860] ext4 filesystem being mounted at /101/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.301111][ T5860] netlink: 156 bytes leftover after parsing attributes in process `syz.5.736'.
[   65.312097][ T5864] ext4 filesystem being mounted at /139/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   65.333588][ T5867] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.740: bg 0: block 248: padding at end of block bitmap is not set
[   65.349806][ T5867] EXT4-fs error (device loop0): ext4_acquire_dquot:6927: comm syz.0.740: Failed to acquire dquot type 1
[   65.364440][ T5867] EXT4-fs (loop0): 1 truncate cleaned up
[   65.377929][ T5867] ext4 filesystem being mounted at /128/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.392608][ T5891] loop5: detected capacity change from 0 to 512
[   65.541143][ T5893] loop4: detected capacity change from 0 to 1024
[   65.548042][ T5893] EXT4-fs: Ignoring removed nomblk_io_submit option
[   65.554715][ T5893] EXT4-fs: Ignoring removed nomblk_io_submit option
[   65.563906][ T5893] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   65.568374][ T5899] loop0: detected capacity change from 0 to 1024
[   65.603001][ T5903] loop5: detected capacity change from 0 to 512
[   65.606691][ T5899] EXT4-fs: Ignoring removed nobh option
[   65.614860][ T5899] EXT4-fs: Ignoring removed bh option
[   65.621231][ T5903] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[   65.646800][ T5903] EXT4-fs error (device loop5): ext4_do_update_inode:5154: inode #2: comm syz.5.749: corrupted inode contents
[   65.670513][ T5899] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4115: comm 	: Allocating blocks 497-513 which overlap fs metadata
[   65.684147][ T5899] EXT4-fs (loop0): Remounting filesystem read-only
[   65.696301][ T5903] EXT4-fs error (device loop5): ext4_dirty_inode:6042: inode #2: comm syz.5.749: mark_inode_dirty error
[   65.703715][ T5898] EXT4-fs (loop0): pa ffff8881007023f0: logic 256, phys. 385, len 8
[   65.719085][ T5903] EXT4-fs error (device loop5): ext4_do_update_inode:5154: inode #2: comm syz.5.749: corrupted inode contents
[   65.789413][ T5919] loop5: detected capacity change from 0 to 256
[   65.828564][ T5921] loop1: detected capacity change from 0 to 1024
[   65.839079][ T5928] loop0: detected capacity change from 0 to 512
[   65.851723][ T5921] ext4 filesystem being mounted at /160/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.873476][ T5933] netlink: 12 bytes leftover after parsing attributes in process `syz.4.757'.
[   65.891051][ T5933] loop4: detected capacity change from 0 to 1024
[   65.898080][ T5933] EXT4-fs: Ignoring removed nobh option
[   65.903636][ T5933] EXT4-fs: Ignoring removed bh option
[   65.910681][ T5921] netlink: 156 bytes leftover after parsing attributes in process `syz.1.754'.
[   65.951763][ T5933] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4115: comm 	: Allocating blocks 497-513 which overlap fs metadata
[   65.965518][ T5933] EXT4-fs (loop4): Remounting filesystem read-only
[   65.980404][ T5932] EXT4-fs (loop4): pa ffff888100702460: logic 256, phys. 385, len 8
[   66.034345][ T5947] loop4: detected capacity change from 0 to 1024
[   66.041608][ T5947] EXT4-fs: Ignoring removed nobh option
[   66.047301][ T5947] EXT4-fs: Ignoring removed bh option
[   66.058904][ T5950] loop1: detected capacity change from 0 to 1024
[   66.065537][ T5950] EXT4-fs: Ignoring removed nomblk_io_submit option
[   66.072341][ T5950] EXT4-fs: Ignoring removed nomblk_io_submit option
[   66.079537][ T5950] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   66.096059][ T5947] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4115: comm 	: Allocating blocks 497-513 which overlap fs metadata
[   66.109843][ T5947] EXT4-fs (loop4): Remounting filesystem read-only
[   66.121181][ T5946] EXT4-fs (loop4): pa ffff88810488f8c0: logic 256, phys. 385, len 8
[   66.195834][ T5968] sg_write: data in/out 122/14 bytes for SCSI command 0x0-- guessing data in;
[   66.195834][ T5968]    program syz.0.767 not setting count and/or reply_len properly
[   66.220650][ T5970] loop1: detected capacity change from 0 to 512
[   66.334361][ T5981] loop0: detected capacity change from 0 to 1024
[   66.368156][ T5981] ext4 filesystem being mounted at /138/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   66.387125][ T5981] netlink: 128 bytes leftover after parsing attributes in process `syz.0.770'.
[   66.396365][ T5981] netlink: 128 bytes leftover after parsing attributes in process `syz.0.770'.
[   66.426171][ T5990] FAULT_INJECTION: forcing a failure.
[   66.426171][ T5990] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   66.439335][ T5990] CPU: 1 UID: 0 PID: 5990 Comm: syz.4.775 Not tainted 6.13.0-syzkaller-09485-g72deda0abee6 #0
[   66.439409][ T5990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   66.439420][ T5990] Call Trace:
[   66.439425][ T5990]  <TASK>
[   66.439431][ T5990]  dump_stack_lvl+0xf2/0x150
[   66.439457][ T5990]  dump_stack+0x15/0x1a
[   66.439600][ T5990]  should_fail_ex+0x24a/0x260
[   66.439639][ T5990]  should_fail+0xb/0x10
[   66.439666][ T5990]  should_fail_usercopy+0x1a/0x20
[   66.439705][ T5990]  _copy_from_user+0x1c/0xa0
[   66.439837][ T5990]  sg_new_write+0x77a/0x8e0
[   66.439945][ T5990]  sg_ioctl+0xe22/0x1870
[   66.439967][ T5990]  ? __fget_files+0x17c/0x1c0
[   66.439997][ T5990]  ? __pfx_sg_ioctl+0x10/0x10
[   66.440024][ T5990]  __se_sys_ioctl+0xc9/0x140
[   66.440098][ T5990]  __x64_sys_ioctl+0x43/0x50
[   66.440117][ T5990]  x64_sys_call+0x1690/0x2dc0
[   66.440142][ T5990]  do_syscall_64+0xc9/0x1c0
[   66.440240][ T5990]  ? clear_bhb_loop+0x55/0xb0
[   66.440331][ T5990]  ? clear_bhb_loop+0x55/0xb0
[   66.440357][ T5990]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.440382][ T5990] RIP: 0033:0x7fef2cfacda9
[   66.440457][ T5990] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.440480][ T5990] RSP: 002b:00007fef2b5f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   66.440501][ T5990] RAX: ffffffffffffffda RBX: 00007fef2d1c6080 RCX: 00007fef2cfacda9
[   66.440514][ T5990] RDX: 0000000020000040 RSI: 0000000000002285 RDI: 0000000000000004
[   66.440527][ T5990] RBP: 00007fef2b5f6090 R08: 0000000000000000 R09: 0000000000000000
[   66.440540][ T5990] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   66.440554][ T5990] R13: 0000000000000000 R14: 00007fef2d1c6080 R15: 00007ffe05a02db8
[   66.440587][ T5990]  </TASK>
[   66.695300][ T5996] loop1: detected capacity change from 0 to 1024
[   66.702173][ T5996] EXT4-fs: Ignoring removed nomblk_io_submit option
[   66.708852][ T5996] EXT4-fs: Ignoring removed nomblk_io_submit option
[   66.716158][ T6006] loop3: detected capacity change from 0 to 8192
[   66.724938][ T5996] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   66.988934][ T6043] loop5: detected capacity change from 0 to 512
[   67.231228][ T6063] loop4: detected capacity change from 0 to 1024
[   67.250778][ T6063] EXT4-fs: Ignoring removed nobh option
[   67.256454][ T6063] EXT4-fs: Ignoring removed bh option
[   67.278909][ T6063] EXT4-fs mount: 98 callbacks suppressed
[   67.278923][ T6063] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.320491][ T6063] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4115: comm 	: Allocating blocks 497-513 which overlap fs metadata
[   67.334111][ T6075] loop1: detected capacity change from 0 to 512
[   67.340699][ T6063] EXT4-fs (loop4): Remounting filesystem read-only
[   67.365216][ T6060] EXT4-fs (loop4): pa ffff888100702460: logic 256, phys. 385, len 8
[   67.399385][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.503796][ T6100] loop3: detected capacity change from 0 to 512
[   67.513665][ T6100] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   67.530541][ T6102] loop0: detected capacity change from 0 to 1024
[   67.538720][ T6104] loop4: detected capacity change from 0 to 1024
[   67.545396][ T6104] EXT4-fs: Ignoring removed nobh option
[   67.551168][ T6104] EXT4-fs: Ignoring removed bh option
[   67.571881][ T6104] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.584975][ T6102] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.587042][ T6100] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.632597][ T6119] loop5: detected capacity change from 0 to 1024
[   67.642978][ T6119] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   67.645599][ T6104] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4115: comm 	: Allocating blocks 497-513 which overlap fs metadata
[   67.664457][ T3296] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.665798][ T6104] EXT4-fs (loop4): Remounting filesystem read-only
[   67.681117][ T6119] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   67.681254][ T6119] EXT4-fs error (device loop5): ext4_get_journal_inode:5798: comm syz.5.823: inode #1: comm syz.5.823: iget: illegal inode #
[   67.699521][ T6102] ext4 filesystem being mounted at /153/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   67.712089][ T6103] EXT4-fs (loop4): pa ffff88810488f930: logic 256, phys. 385, len 8
[   67.725944][ T6123] dummy0: entered promiscuous mode
[   67.732500][ T6123] dummy0: left promiscuous mode
[   67.737395][ T6119] EXT4-fs (loop5): no journal found
[   67.740119][ T6102] netlink: 128 bytes leftover after parsing attributes in process `syz.0.816'.
[   67.742627][ T6119] EXT4-fs (loop5): can't get journal size
[   67.757629][ T6102] netlink: 128 bytes leftover after parsing attributes in process `syz.0.816'.
[   67.757937][ T6119] EXT4-fs (loop5): failed to initialize system zone (-22)
[   67.769192][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.774699][ T6119] EXT4-fs (loop5): mount failed
[   67.810064][ T3295] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.834774][ T6128] loop4: detected capacity change from 0 to 512
[   67.893080][ T6139] loop1: detected capacity change from 0 to 512
[   67.928117][ T6139] netlink: 4 bytes leftover after parsing attributes in process `syz.1.832'.
[   67.964578][ T6152] loop4: detected capacity change from 0 to 1024
[   67.975742][ T6154] loop5: detected capacity change from 0 to 1024
[   67.983113][ T6152] EXT4-fs: Ignoring removed nobh option
[   67.988766][ T6152] EXT4-fs: Ignoring removed bh option
[   68.005619][ T6158] loop1: detected capacity change from 0 to 512
[   68.018612][ T6154] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.024011][ T6165] netlink: 12 bytes leftover after parsing attributes in process `syz.0.840'.
[   68.031158][ T6154] ext4 filesystem being mounted at /129/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   68.042323][ T6152] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.061629][ T6158] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.839: bg 0: block 248: padding at end of block bitmap is not set
[   68.077257][ T6158] __quota_error: 1800 callbacks suppressed
[   68.077270][ T6158] Quota error (device loop1): write_blk: dquota write failed
[   68.082448][ T6165] loop0: detected capacity change from 0 to 1024
[   68.083125][ T6158] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[   68.083156][ T6158] EXT4-fs error (device loop1): ext4_acquire_dquot:6927: comm syz.1.839: Failed to acquire dquot type 1
[   68.097435][ T6165] EXT4-fs: Ignoring removed nobh option
[   68.107997][ T6158] EXT4-fs (loop1): 1 truncate cleaned up
[   68.118036][ T6165] EXT4-fs: Ignoring removed bh option
[   68.124271][ T6158] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.147675][ T6158] ext4 filesystem being mounted at /173/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   68.148371][ T6152] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4115: comm 	: Allocating blocks 497-513 which overlap fs metadata
[   68.179881][ T3951] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.180098][   T29] audit: type=1326 audit(1738270521.451:4345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6129 comm="syz.3.828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1acd3fcda9 code=0x7ffc0000
[   68.212522][   T29] audit: type=1326 audit(1738270521.451:4346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6129 comm="syz.3.828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1acd3fcda9 code=0x7ffc0000
[   68.255528][ T6152] EXT4-fs (loop4): Remounting filesystem read-only
[   68.266976][ T6165] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.288952][ T6151] EXT4-fs (loop4): pa ffff88810488f9a0: logic 256, phys. 385, len 8
[   68.306219][   T29] audit: type=1326 audit(1738270521.571:4347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6172 comm="syz.3.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1acd3fcda9 code=0x7ffc0000
[   68.329683][   T29] audit: type=1326 audit(1738270521.571:4348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6172 comm="syz.3.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1acd3fcda9 code=0x7ffc0000
[   68.353149][   T29] audit: type=1326 audit(1738270521.571:4349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6172 comm="syz.3.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1acd3fcda9 code=0x7ffc0000
[   68.376545][   T29] audit: type=1326 audit(1738270521.571:4350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6172 comm="syz.3.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1acd3fcda9 code=0x7ffc0000
[   68.399913][   T29] audit: type=1326 audit(1738270521.571:4351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6172 comm="syz.3.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=305 compat=0 ip=0x7f1acd3fcda9 code=0x7ffc0000
[   68.423294][   T29] audit: type=1326 audit(1738270521.581:4352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6172 comm="syz.3.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1acd3fcda9 code=0x7ffc0000
[   68.458100][ T3295] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.467726][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.479028][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.507918][ T6187] netlink: '+}[@': attribute type 1 has an invalid length.
[   68.526424][ T6187] bond1: entered promiscuous mode
[   68.534051][ T6187] bond1: (slave team_slave_1): making interface the new active one
[   68.542006][ T6187] team_slave_1: entered promiscuous mode
[   68.548357][ T6187] bond1: (slave team_slave_1): Enslaving as an active interface with an up link
[   68.551285][ T6194] loop4: detected capacity change from 0 to 512
[   68.558058][ T6187] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=770 sclass=netlink_route_socket pid=6187 comm=+}[@
[   68.622610][ T6191] loop5: detected capacity change from 0 to 1024
[   68.639420][ T6199] loop1: detected capacity change from 0 to 1024
[   68.661115][ T6199] EXT4-fs: Ignoring removed nobh option
[   68.666849][ T6199] EXT4-fs: Ignoring removed bh option
[   68.677085][ T6191] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.707974][ T6191] ext4 filesystem being mounted at /133/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   68.738439][ T6210] loop0: detected capacity change from 0 to 1024
[   68.745621][ T3951] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.746396][ T6210] EXT4-fs: Ignoring removed nobh option
[   68.760252][ T6210] EXT4-fs: Ignoring removed bh option
[   68.782949][ T6199] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.825201][ T6216] loop4: detected capacity change from 0 to 1024
[   68.850014][ T6216] EXT4-fs: Ignoring removed nobh option
[   68.855618][ T6216] EXT4-fs: Ignoring removed bh option
[   68.862862][ T6210] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.876752][ T6199] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4115: comm 	: Allocating blocks 497-513 which overlap fs metadata
[   68.899832][ T3295] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.902094][ T6199] EXT4-fs (loop1): Remounting filesystem read-only
[   68.911636][ T6216] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.940698][ T6198] EXT4-fs (loop1): pa ffff88810488fa10: logic 256, phys. 385, len 8
[   68.976671][ T6216] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4115: comm 	: Allocating blocks 497-513 which overlap fs metadata
[   68.992132][ T6216] EXT4-fs (loop4): Remounting filesystem read-only
[   69.003159][ T6240] loop3: detected capacity change from 0 to 512
[   69.012566][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.022664][ T6215] EXT4-fs (loop4): pa ffff8881007024d0: logic 256, phys. 385, len 8
[   69.073469][ T6250] loop5: detected capacity change from 0 to 512
[   69.088535][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.146125][ T6250] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.870: bg 0: block 248: padding at end of block bitmap is not set
[   69.181217][ T6269] loop3: detected capacity change from 0 to 1024
[   69.187934][ T6269] EXT4-fs: Ignoring removed nobh option
[   69.193512][ T6269] EXT4-fs: Ignoring removed bh option
[   69.237064][ T6269] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.239798][ T6250] EXT4-fs error (device loop5): ext4_acquire_dquot:6927: comm syz.5.870: Failed to acquire dquot type 1
[   69.277342][ T6250] EXT4-fs (loop5): 1 truncate cleaned up
[   69.286569][ T6250] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.319377][ T6269] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4115: comm 	: Allocating blocks 497-513 which overlap fs metadata
[   69.343018][ T6250] ext4 filesystem being mounted at /139/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   69.364604][ T6269] EXT4-fs (loop3): Remounting filesystem read-only
[   69.396115][ T6268] EXT4-fs (loop3): pa ffff888100702540: logic 256, phys. 385, len 8
[   69.433177][ T3951] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.468004][ T6286] loop5: detected capacity change from 0 to 1024
[   69.476328][ T6286] EXT4-fs: Ignoring removed nobh option
[   69.482015][ T6286] EXT4-fs: Ignoring removed bh option
[   69.491646][ T6290] loop1: detected capacity change from 0 to 512
[   69.500796][ T3296] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.512632][ T6290] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   69.523516][ T6286] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.557666][ T6286] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4115: comm 	: Allocating blocks 497-513 which overlap fs metadata
[   69.571456][ T6286] EXT4-fs (loop5): Remounting filesystem read-only
[   69.580130][ T6290] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.582352][ T6285] EXT4-fs (loop5): pa ffff88810488fa10: logic 256, phys. 385, len 8
[   69.620803][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.643902][ T3951] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.676497][ T6312] loop5: detected capacity change from 0 to 512
[   69.690124][ T6312] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[   69.701946][ T6316] loop1: detected capacity change from 0 to 512
[   69.704661][ T6320] loop3: detected capacity change from 0 to 1024
[   69.714855][ T6316] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   69.715348][ T6320] EXT4-fs: Ignoring removed nobh option
[   69.729680][ T6320] EXT4-fs: Ignoring removed bh option
[   69.758377][ T6312] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.758746][ T6320] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.773033][ T6312] EXT4-fs error (device loop5): ext4_do_update_inode:5154: inode #2: comm syz.5.893: corrupted inode contents
[   69.793819][ T6316] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.799456][ T6312] EXT4-fs error (device loop5): ext4_dirty_inode:6042: inode #2: comm syz.5.893: mark_inode_dirty error
[   69.817309][ T6316] EXT4-fs error (device loop1): ext4_do_update_inode:5154: inode #2: comm syz.1.890: corrupted inode contents
[   69.841432][ T6312] EXT4-fs error (device loop5): ext4_do_update_inode:5154: inode #2: comm syz.5.893: corrupted inode contents
[   69.846261][ T6316] EXT4-fs error (device loop1): ext4_dirty_inode:6042: inode #2: comm syz.1.890: mark_inode_dirty error
[   69.876704][ T6316] EXT4-fs error (device loop1): ext4_do_update_inode:5154: inode #2: comm syz.1.890: corrupted inode contents
[   69.910425][ T6320] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4115: comm 	: Allocating blocks 497-513 which overlap fs metadata
[   69.939745][ T6320] EXT4-fs (loop3): Remounting filesystem read-only
[   69.940892][ T3951] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.963242][ T6347] loop4: detected capacity change from 0 to 1024
[   69.970316][ T6318] EXT4-fs (loop3): pa ffff88810488fa10: logic 256, phys. 385, len 8
[   69.978957][ T6347] EXT4-fs: Ignoring removed nobh option
[   69.984652][ T6347] EXT4-fs: Ignoring removed bh option
[   70.006339][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.016776][ T6353] loop5: detected capacity change from 0 to 512
[   70.018122][ T6347] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.025905][ T3296] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.055152][ T6353] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[   70.071209][ T6347] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4115: comm 	: Allocating blocks 497-513 which overlap fs metadata
[   70.092417][ T6347] EXT4-fs (loop4): Remounting filesystem read-only
[   70.107192][ T6353] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.130801][ T6346] EXT4-fs (loop4): pa ffff8881007025b0: logic 256, phys. 385, len 8
[   70.161263][ T6371] loop1: detected capacity change from 0 to 1024
[   70.171117][ T6371] EXT4-fs: Ignoring removed nomblk_io_submit option
[   70.178034][ T6371] EXT4-fs: Ignoring removed nomblk_io_submit option
[   70.192716][ T6371] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   70.196758][ T3951] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.224678][ T6371] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.242072][ T6380] __nla_validate_parse: 7 callbacks suppressed
[   70.242089][ T6380] netlink: 12 bytes leftover after parsing attributes in process `syz.0.914'.
[   70.247179][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.272917][ T6380] loop0: detected capacity change from 0 to 1024
[   70.280410][ T6380] EXT4-fs: Ignoring removed nobh option
[   70.286124][ T6380] EXT4-fs: Ignoring removed bh option
[   70.295534][ T6385] loop5: detected capacity change from 0 to 512
[   70.312234][ T6380] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.334954][ T6387] loop3: detected capacity change from 0 to 1024
[   70.342157][ T6387] EXT4-fs: Ignoring removed nobh option
[   70.347820][ T6387] EXT4-fs: Ignoring removed bh option
[   70.351769][ T6385] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.369771][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.372728][ T6385] ext4 filesystem being mounted at /143/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   70.389776][ T3295] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.402812][ T6387] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.428332][ T6407] loop1: detected capacity change from 0 to 512
[   70.442285][ T6387] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4115: comm 	: Allocating blocks 497-513 which overlap fs metadata
[   70.470619][ T6410] loop0: detected capacity change from 0 to 512
[   70.483109][ T6387] EXT4-fs (loop3): Remounting filesystem read-only
[   70.485026][ T6410] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   70.499184][ T6386] EXT4-fs (loop3): pa ffff88810488faf0: logic 256, phys. 385, len 8
[   70.520121][ T6407] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.533148][ T3296] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.543642][ T6407] ext4 filesystem being mounted at /181/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   70.556205][ T6410] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.591899][ T3295] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.603216][ T6418] loop3: detected capacity change from 0 to 1024
[   70.618365][ T6418] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   70.660737][ T6418] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   70.671117][ T6418] EXT4-fs error (device loop3): ext4_get_journal_inode:5798: comm syz.3.923: inode #1: comm syz.3.923: iget: illegal inode #
[   70.684382][ T6418] EXT4-fs (loop3): no journal found
[   70.689671][ T6418] EXT4-fs (loop3): can't get journal size
[   70.700840][ T6418] EXT4-fs (loop3): failed to initialize system zone (-22)
[   70.703450][ T6420] loop0: detected capacity change from 0 to 8192
[   70.714667][ T6418] EXT4-fs (loop3): mount failed
[   70.746289][ T6420]  loop0: p2 p3 p4
[   70.750141][ T6420] loop0: p2 size 130943 extends beyond EOD, truncated
[   70.760677][ T6420] loop0: p3 size 16776960 extends beyond EOD, truncated
[   70.777355][ T6420] loop0: p4 size 3599499392 extends beyond EOD, truncated
[   70.860601][ T6440] loop3: detected capacity change from 0 to 8192
[   70.904283][ T6443] netlink: 12 bytes leftover after parsing attributes in process `syz.3.932'.
[   70.920518][ T6443] loop3: detected capacity change from 0 to 1024
[   70.928599][ T6443] EXT4-fs: Ignoring removed nobh option
[   70.934266][ T6443] EXT4-fs: Ignoring removed bh option
[   70.951621][ T6443] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.004160][ T3296] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.021960][ T6449] netlink: 76 bytes leftover after parsing attributes in process `syz.0.935'.
[   71.033110][ T6451] loop3: detected capacity change from 0 to 512
[   71.067783][ T6451] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   71.088381][ T6451] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.089948][ T6434] xt_bpf: check failed: parse error
[   71.116437][ T6434] Cannot find add_set index 0 as target
[   71.123077][ T3296] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.152919][ T3951] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.196741][ T6460] loop5: detected capacity change from 0 to 1024
[   71.216608][ T6460] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   71.236409][ T6460] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   71.259517][ T6464] FAULT_INJECTION: forcing a failure.
[   71.259517][ T6464] name failslab, interval 1, probability 0, space 0, times 0
[   71.272312][ T6464] CPU: 1 UID: 0 PID: 6464 Comm: syz.3.939 Not tainted 6.13.0-syzkaller-09485-g72deda0abee6 #0
[   71.272343][ T6464] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   71.272358][ T6464] Call Trace:
[   71.272366][ T6464]  <TASK>
[   71.272375][ T6464]  dump_stack_lvl+0xf2/0x150
[   71.272403][ T6464]  dump_stack+0x15/0x1a
[   71.272423][ T6464]  should_fail_ex+0x24a/0x260
[   71.272505][ T6464]  should_failslab+0x8f/0xb0
[   71.272529][ T6464]  kmem_cache_alloc_noprof+0x52/0x320
[   71.272605][ T6464]  ? getname_flags+0x81/0x3b0
[   71.272636][ T6464]  getname_flags+0x81/0x3b0
[   71.272748][ T6464]  user_path_at+0x26/0x120
[   71.272772][ T6464]  __se_sys_mount+0x24b/0x2d0
[   71.272802][ T6464]  ? fput+0x1c4/0x200
[   71.272889][ T6464]  __x64_sys_mount+0x67/0x80
[   71.272918][ T6464]  x64_sys_call+0x2c84/0x2dc0
[   71.272944][ T6464]  do_syscall_64+0xc9/0x1c0
[   71.273014][ T6464]  ? clear_bhb_loop+0x55/0xb0
[   71.273106][ T6464]  ? clear_bhb_loop+0x55/0xb0
[   71.273132][ T6464]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.273180][ T6464] RIP: 0033:0x7f1acd3fcda9
[   71.273241][ T6464] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   71.273286][ T6464] RSP: 002b:00007f1acba61038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   71.273307][ T6464] RAX: ffffffffffffffda RBX: 00007f1acd615fa0 RCX: 00007f1acd3fcda9
[   71.273322][ T6464] RDX: 00000000200002c0 RSI: 0000000020000080 RDI: 0000000000000000
[   71.273333][ T6464] RBP: 00007f1acba61090 R08: 0000000020000400 R09: 0000000000000000
[   71.273344][ T6464] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   71.273357][ T6464] R13: 0000000000000000 R14: 00007f1acd615fa0 R15: 00007fff93916f98
[   71.273400][ T6464]  </TASK>
[   71.278389][ T6460] EXT4-fs error (device loop5): ext4_get_journal_inode:5798: comm syz.5.937: inode #1: comm syz.5.937: iget: illegal inode #
[   71.328904][ T6466] loop3: detected capacity change from 0 to 512
[   71.353918][ T6460] EXT4-fs (loop5): no journal found
[   71.359280][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.361965][ T6460] EXT4-fs (loop5): can't get journal size
[   71.477450][ T6466] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   71.507036][ T6460] EXT4-fs (loop5): failed to initialize system zone (-22)
[   71.516916][ T6460] EXT4-fs (loop5): mount failed
[   71.550933][ T6466] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.597100][ T3296] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.606223][ T6484] loop1: detected capacity change from 0 to 512
[   71.621280][ T6486] loop0: detected capacity change from 0 to 512
[   71.645219][ T6484] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.710583][ T6484] ext4 filesystem being mounted at /184/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   71.739495][ T6501] loop5: detected capacity change from 0 to 8192
[   71.742719][ T6495] loop3: detected capacity change from 0 to 8192
[   71.766774][ T6505] loop0: detected capacity change from 0 to 1024
[   71.773754][ T6505] EXT4-fs: Ignoring removed nobh option
[   71.779403][ T6505] EXT4-fs: Ignoring removed bh option
[   71.796016][ T6501]  loop5: p2 p3 p4
[   71.799989][ T6501] loop5: p2 size 130943 extends beyond EOD, truncated
[   71.812318][ T6501] loop5: p3 size 16776960 extends beyond EOD, truncated
[   71.813529][ T6509] netlink: 76 bytes leftover after parsing attributes in process `syz.3.958'.
[   71.828528][ T6501] loop5: p4 size 3599499392 extends beyond EOD, truncated
[   71.836380][ T6505] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.892781][ T6505] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4115: comm 	: Allocating blocks 497-513 which overlap fs metadata
[   71.920901][ T6505] EXT4-fs (loop0): Remounting filesystem read-only
[   71.940348][ T6504] EXT4-fs (loop0): pa ffff88810488fb60: logic 256, phys. 385, len 8
[   71.970409][ T3295] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.002682][ T6518] loop0: detected capacity change from 0 to 512
[   72.010983][ T6518] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   72.036818][ T6518] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.107781][ T6527] loop0: detected capacity change from 0 to 1024
[   72.128114][ T6527] ext4 filesystem being mounted at /193/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.144763][ T6527] netlink: 108 bytes leftover after parsing attributes in process `syz.0.963'.
[   72.153893][ T6527] netlink: 108 bytes leftover after parsing attributes in process `syz.0.963'.
[   72.162955][ T6527] netlink: 108 bytes leftover after parsing attributes in process `syz.0.963'.
[   72.182207][ T6527] netlink: 108 bytes leftover after parsing attributes in process `syz.0.963'.
[   72.191286][ T6527] netlink: 108 bytes leftover after parsing attributes in process `syz.0.963'.
[   72.200316][ T6527] netlink: 108 bytes leftover after parsing attributes in process `syz.0.963'.
[   72.237523][ T6542] loop5: detected capacity change from 0 to 512
[   72.265145][ T6548] loop0: detected capacity change from 0 to 1024
[   72.278511][ T6548] ext4 filesystem being mounted at /194/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.288766][ T6547] loop3: detected capacity change from 0 to 1024
[   72.295999][ T6547] EXT4-fs: Ignoring removed nobh option
[   72.301643][ T6547] EXT4-fs: Ignoring removed bh option
[   72.356942][ T6547] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4115: comm 	: Allocating blocks 497-513 which overlap fs metadata
[   72.371817][ T6562] loop5: detected capacity change from 0 to 1024
[   72.379142][ T6547] EXT4-fs (loop3): Remounting filesystem read-only
[   72.389909][ T6562] ext4 filesystem being mounted at /157/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.394271][ T6544] EXT4-fs (loop3): pa ffff8881007025b0: logic 256, phys. 385, len 8
[   72.500637][ T6580] loop3: detected capacity change from 0 to 512
[   72.526138][ T6580] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.979: bg 0: block 248: padding at end of block bitmap is not set
[   72.541980][ T6580] EXT4-fs error (device loop3): ext4_acquire_dquot:6927: comm syz.3.979: Failed to acquire dquot type 1
[   72.554099][ T6580] EXT4-fs (loop3): 1 truncate cleaned up
[   72.574352][ T6580] ext4 filesystem being mounted at /187/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.636836][ T6596] loop5: detected capacity change from 0 to 512
[   72.709438][ T6604] dummy0: entered promiscuous mode
[   72.718066][ T6604] dummy0: left promiscuous mode
[   72.792093][ T6624] loop0: detected capacity change from 0 to 512
[   72.819269][ T6614] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   73.095767][   T29] kauditd_printk_skb: 365 callbacks suppressed
[   73.095851][   T29] audit: type=1400 audit(1738270526.311:4714): avc:  denied  { getopt } for  pid=6609 comm="syz.1.991" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   73.177721][ T6641] xt_bpf: check failed: parse error
[   73.211287][ T6626] Cannot find add_set index 0 as target
[   73.295044][   T29] audit: type=1326 audit(1738270526.561:4715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6627 comm="syz.0.996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f153ecbcda9 code=0x7ffc0000
[   73.375909][   T29] audit: type=1326 audit(1738270526.591:4716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6627 comm="syz.0.996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f153ecbcda9 code=0x7ffc0000
[   73.448123][   T29] audit: type=1326 audit(1738270526.721:4717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6642 comm="syz.0.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f153ecbcda9 code=0x7ffc0000
[   73.511410][   T29] audit: type=1326 audit(1738270526.751:4718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6642 comm="syz.0.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f153ecbcda9 code=0x7ffc0000
[   73.534975][   T29] audit: type=1326 audit(1738270526.751:4719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6642 comm="syz.0.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=310 compat=0 ip=0x7f153ecbcda9 code=0x7ffc0000
[   73.827155][ T6664] loop3: detected capacity change from 0 to 512
[   73.929699][   T29] audit: type=1326 audit(1738270527.201:4720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6642 comm="syz.0.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f153ecbcda9 code=0x7ffc0000
[   73.959395][   T29] audit: type=1326 audit(1738270527.201:4721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6642 comm="syz.0.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f153ecbcda9 code=0x7ffc0000
[   73.960024][ T6682] netlink: '+}[@': attribute type 1 has an invalid length.
[   73.998323][ T6682] bond1: entered promiscuous mode
[   74.009695][ T6682] bond1: (slave team_slave_1): making interface the new active one
[   74.017843][ T6682] team_slave_1: entered promiscuous mode
[   74.034554][ T6682] bond1: (slave team_slave_1): Enslaving as an active interface with an up link
[   74.066030][   T29] audit: type=1326 audit(1738270527.321:4722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6692 comm="syz.1.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f076b2bcda9 code=0x7ffc0000
[   74.089565][   T29] audit: type=1326 audit(1738270527.321:4723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6692 comm="syz.1.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f076b2bcda9 code=0x7ffc0000
[   74.159425][ T6701] loop3: detected capacity change from 0 to 512
[   74.177368][ T6694] loop1: detected capacity change from 0 to 8192
[   74.246407][ T6694]  loop1: p2 p3 p4
[   74.248773][ T6723] loop0: detected capacity change from 0 to 512
[   74.250248][ T6694] loop1: p2 size 130943 extends beyond EOD, truncated
[   74.266263][ T6694] loop1: p3 size 16776960 extends beyond EOD, truncated
[   74.274370][ T6694] loop1: p4 size 3599499392 extends beyond EOD, truncated
[   74.277177][ T6723] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1028: bg 0: block 248: padding at end of block bitmap is not set
[   74.315344][ T6723] EXT4-fs error (device loop0): ext4_acquire_dquot:6927: comm syz.0.1028: Failed to acquire dquot type 1
[   74.388977][ T6723] EXT4-fs (loop0): 1 truncate cleaned up
[   74.397320][ T6723] ext4 filesystem being mounted at /210/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   74.626928][ T6737] loop3: detected capacity change from 0 to 512
[   74.711270][ T6737] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1032: bg 0: block 248: padding at end of block bitmap is not set
[   74.811037][ T6737] EXT4-fs error (device loop3): ext4_acquire_dquot:6927: comm syz.3.1032: Failed to acquire dquot type 1
[   74.877574][ T6746] loop1: detected capacity change from 0 to 512
[   74.885700][ T6737] EXT4-fs (loop3): 1 truncate cleaned up
[   74.891683][ T6737] ext4 filesystem being mounted at /202/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   74.945803][ T6737] bond1: (slave team_slave_1): Releasing active interface
[   74.953212][ T6737] team_slave_1: left promiscuous mode
[   75.107960][ T6772] loop5: detected capacity change from 0 to 512
[   75.292957][ T6793] loop1: detected capacity change from 0 to 1024
[   75.300075][ T6794] loop5: detected capacity change from 0 to 1024
[   75.307997][ T6794] EXT4-fs: Ignoring removed nomblk_io_submit option
[   75.314622][ T6794] EXT4-fs: Ignoring removed nomblk_io_submit option
[   75.317860][ T6789] loop3: detected capacity change from 0 to 8192
[   75.322163][ T6794] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   75.377657][ T6793] ext4 filesystem being mounted at /201/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   75.410616][ T6793] __nla_validate_parse: 33 callbacks suppressed
[   75.410631][ T6793] netlink: 108 bytes leftover after parsing attributes in process `syz.1.1055'.
[   75.426251][ T6793] netlink: 108 bytes leftover after parsing attributes in process `syz.1.1055'.
[   75.427683][ T6766] Invalid ELF header magic: != ELF
[   75.435492][ T6793] netlink: 108 bytes leftover after parsing attributes in process `syz.1.1055'.
[   75.450343][ T6766] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1044'.
[   75.474550][ T6793] netlink: 108 bytes leftover after parsing attributes in process `syz.1.1055'.
[   75.483782][ T6793] netlink: 108 bytes leftover after parsing attributes in process `syz.1.1055'.
[   75.493140][ T6793] netlink: 108 bytes leftover after parsing attributes in process `syz.1.1055'.
[   75.517053][ T6805] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1058'.
[   75.526134][ T6805] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1058'.
[   75.551113][ T6793] netlink: 108 bytes leftover after parsing attributes in process `syz.1.1055'.
[   75.578691][ T6812] loop3: detected capacity change from 0 to 512
[   75.677093][ T6824] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   75.678471][ T6826] loop5: detected capacity change from 0 to 512
[   75.685504][ T6824] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   75.731481][ T6824] loop4: detected capacity change from 0 to 512
[   75.738362][ T6826] EXT4-fs: Ignoring removed mblk_io_submit option
[   75.753836][ T6826] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2240: inode #15: comm syz.5.1058: corrupted in-inode xattr: invalid ea_ino
[   75.772376][ T6838] loop0: detected capacity change from 0 to 512
[   75.799404][ T6826] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.1058: couldn't read orphan inode 15 (err -117)
[   75.813073][ T6838] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   75.826731][ T6824] EXT4-fs (loop4): too many log groups per flexible block group
[   75.834455][ T6824] EXT4-fs (loop4): failed to initialize mballoc (-12)
[   75.851921][ T6834] loop1: detected capacity change from 0 to 1024
[   75.859199][ T6834] EXT4-fs: Ignoring removed nomblk_io_submit option
[   75.865626][ T6824] EXT4-fs (loop4): mount failed
[   75.865902][ T6834] EXT4-fs: Ignoring removed nomblk_io_submit option
[   75.886606][ T6834] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   75.909288][ T6838] EXT4-fs error (device loop0): ext4_do_update_inode:5154: inode #2: comm syz.0.1069: corrupted inode contents
[   75.926410][ T6838] EXT4-fs error (device loop0): ext4_dirty_inode:6042: inode #2: comm syz.0.1069: mark_inode_dirty error
[   75.943579][ T6838] EXT4-fs error (device loop0): ext4_do_update_inode:5154: inode #2: comm syz.0.1069: corrupted inode contents
[   76.017981][ T6860] FAULT_INJECTION: forcing a failure.
[   76.017981][ T6860] name failslab, interval 1, probability 0, space 0, times 0
[   76.030698][ T6860] CPU: 0 UID: 0 PID: 6860 Comm: syz.1.1074 Not tainted 6.13.0-syzkaller-09485-g72deda0abee6 #0
[   76.030729][ T6860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   76.030755][ T6860] Call Trace:
[   76.030762][ T6860]  <TASK>
[   76.030769][ T6860]  dump_stack_lvl+0xf2/0x150
[   76.030800][ T6860]  dump_stack+0x15/0x1a
[   76.030825][ T6860]  should_fail_ex+0x24a/0x260
[   76.030867][ T6860]  ? audit_log_d_path+0x96/0x250
[   76.030903][ T6860]  should_failslab+0x8f/0xb0
[   76.030931][ T6860]  __kmalloc_cache_noprof+0x4e/0x320
[   76.030973][ T6860]  audit_log_d_path+0x96/0x250
[   76.031016][ T6860]  ? __rcu_read_unlock+0x4e/0x70
[   76.031040][ T6860]  audit_log_d_path_exe+0x42/0x70
[   76.031078][ T6860]  audit_log_task+0x192/0x1c0
[   76.031172][ T6860]  audit_seccomp+0x68/0x130
[   76.031205][ T6860]  __seccomp_filter+0x6fa/0x1180
[   76.031229][ T6860]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   76.031327][ T6860]  ? vfs_write+0x644/0x920
[   76.031346][ T6860]  ? putname+0xcf/0xf0
[   76.031376][ T6860]  __secure_computing+0x9f/0x1c0
[   76.031400][ T6860]  syscall_trace_enter+0xd1/0x1f0
[   76.031491][ T6860]  ? fpregs_assert_state_consistent+0x83/0xa0
[   76.031528][ T6860]  do_syscall_64+0xaa/0x1c0
[   76.031613][ T6860]  ? clear_bhb_loop+0x55/0xb0
[   76.031643][ T6860]  ? clear_bhb_loop+0x55/0xb0
[   76.031673][ T6860]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.031703][ T6860] RIP: 0033:0x7f076b2bcda9
[   76.031749][ T6860] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.031770][ T6860] RSP: 002b:00007f0769927038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[   76.031809][ T6860] RAX: ffffffffffffffda RBX: 00007f076b4d5fa0 RCX: 00007f076b2bcda9
[   76.031824][ T6860] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   76.031838][ T6860] RBP: 00007f0769927090 R08: 0000000000000000 R09: 0000000000000000
[   76.031917][ T6860] R10: 00000000003e0000 R11: 0000000000000246 R12: 0000000000000001
[   76.031932][ T6860] R13: 0000000000000000 R14: 00007f076b4d5fa0 R15: 00007ffce016db68
[   76.031953][ T6860]  </TASK>
[   76.296250][ T6869] loop0: detected capacity change from 0 to 512
[   76.333034][ T6874] bond1: (slave team_slave_1): Releasing active interface
[   76.340879][ T6874] team_slave_1: left promiscuous mode
[   76.382192][ T6877] loop3: detected capacity change from 0 to 8192
[   76.394104][ T6885] loop0: detected capacity change from 0 to 512
[   76.407323][ T6885] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   76.459120][ T6895] loop5: detected capacity change from 0 to 1024
[   76.461121][ T6885] EXT4-fs error (device loop0): ext4_do_update_inode:5154: inode #2: comm syz.0.1084: corrupted inode contents
[   76.465879][ T6895] EXT4-fs: Ignoring removed orlov option
[   76.483073][ T6895] EXT4-fs: Ignoring removed nomblk_io_submit option
[   76.492840][ T6885] EXT4-fs error (device loop0): ext4_dirty_inode:6042: inode #2: comm syz.0.1084: mark_inode_dirty error
[   76.507884][ T6885] EXT4-fs error (device loop0): ext4_do_update_inode:5154: inode #2: comm syz.0.1084: corrupted inode contents
[   76.667052][ T6916] loop0: detected capacity change from 0 to 512
[   76.724006][ T6927] loop3: detected capacity change from 0 to 512
[   76.744254][ T6916] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1097: bg 0: block 248: padding at end of block bitmap is not set
[   76.790598][ T6916] EXT4-fs error (device loop0): ext4_acquire_dquot:6927: comm syz.0.1097: Failed to acquire dquot type 1
[   76.821420][ T6935] dummy0: entered promiscuous mode
[   76.831939][ T6916] EXT4-fs (loop0): 1 truncate cleaned up
[   76.842175][ T6935] dummy0: left promiscuous mode
[   76.851583][ T6916] ext4 filesystem being mounted at /223/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   77.106466][ T6970] dummy0: entered promiscuous mode
[   77.113030][ T6970] dummy0: left promiscuous mode
[   77.303862][  T420] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.307187][ T6991] netlink: 'syz.3.1131': attribute type 1 has an invalid length.
[   77.373233][ T6999] dummy0: entered promiscuous mode
[   77.392979][ T6999] dummy0: left promiscuous mode
[   77.410445][  T420] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.499087][  T420] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.538009][ T7013] loop3: detected capacity change from 0 to 512
[   77.578661][  T420] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.709976][ T7027] loop3: detected capacity change from 0 to 512
[   77.724830][ T7027] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   77.780199][ T7027] EXT4-fs error (device loop3): ext4_do_update_inode:5154: inode #2: comm syz.3.1146: corrupted inode contents
[   77.805286][ T7027] EXT4-fs error (device loop3): ext4_dirty_inode:6042: inode #2: comm syz.3.1146: mark_inode_dirty error
[   77.822813][ T7004] xt_bpf: check failed: parse error
[   77.829318][ T7004] Cannot find add_set index 0 as target
[   77.829843][ T7027] EXT4-fs error (device loop3): ext4_do_update_inode:5154: inode #2: comm syz.3.1146: corrupted inode contents
[   77.960457][  T420] bond0 (unregistering): Released all slaves
[   78.025802][ T7055] loop3: detected capacity change from 0 to 512
[   78.040028][ T7055] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   78.052203][ T7009] chnl_net:caif_netlink_parms(): no params data found
[   78.064928][ T7055] EXT4-fs error (device loop3): ext4_do_update_inode:5154: inode #2: comm syz.3.1154: corrupted inode contents
[   78.079701][ T7058] loop0: detected capacity change from 0 to 1024
[   78.098632][ T7055] EXT4-fs error (device loop3): ext4_dirty_inode:6042: inode #2: comm syz.3.1154: mark_inode_dirty error
[   78.113078][ T7058] EXT4-fs: Ignoring removed nobh option
[   78.118713][ T7058] EXT4-fs: Ignoring removed bh option
[   78.127462][  T420] hsr_slave_0: left promiscuous mode
[   78.132673][ T7055] EXT4-fs error (device loop3): ext4_do_update_inode:5154: inode #2: comm syz.3.1154: corrupted inode contents
[   78.144639][  T420] hsr_slave_1: left promiscuous mode
[   78.177474][  T420] veth1_macvtap: left promiscuous mode
[   78.183000][  T420] veth0_macvtap: left promiscuous mode
[   78.194373][ T7058] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4115: comm 	: Allocating blocks 497-513 which overlap fs metadata
[   78.207577][  T420] veth1_vlan: left promiscuous mode
[   78.214277][  T420] veth0_vlan: left promiscuous mode
[   78.223382][ T7058] EXT4-fs (loop0): Remounting filesystem read-only
[   78.229773][ T7073] loop4: detected capacity change from 0 to 512
[   78.236945][ T7073] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   78.258230][ T7057] EXT4-fs (loop0): pa ffff888100702620: logic 256, phys. 385, len 8
[   78.276269][ T7073] EXT4-fs error (device loop4): ext4_do_update_inode:5154: inode #2: comm syz.4.1159: corrupted inode contents
[   78.305479][ T7081] ==================================================================
[   78.313587][ T7081] BUG: KCSAN: data-race in hrtimer_interrupt / print_cpu
[   78.320637][ T7081] 
[   78.322966][ T7081] read-write to 0xffff888237c1fd14 of 4 bytes by interrupt on cpu 0:
[   78.331064][ T7081]  hrtimer_interrupt+0x72/0x4a0
[   78.331432][   T29] kauditd_printk_skb: 189 callbacks suppressed
[   78.331452][   T29] audit: type=1326 audit(1738270531.572:4907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7042 comm="syz.1.1150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f076b2bcda9 code=0x7ffc0000
[   78.335909][ T7081]  __sysvec_apic_timer_interrupt+0x5c/0x1d0
[   78.345520][   T29] audit: type=1326 audit(1738270531.572:4908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7042 comm="syz.1.1150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f076b2bcda9 code=0x7ffc0000
[   78.365406][ T7081]  sysvec_apic_timer_interrupt+0x6e/0x80
[   78.365443][ T7081]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   78.365477][ T7081]  __sanitizer_cov_trace_pc+0x0/0x70
[   78.365516][ T7081]  vma_alloc_folio_noprof+0x1ad/0x310
[   78.373755][ T7073] EXT4-fs error (device loop4): ext4_dirty_inode:6042: inode #2: comm syz.4.1159: mark_inode_dirty error
[   78.394736][ T7081]  do_wp_page+0x64b/0x2340
[   78.394771][ T7081]  handle_mm_fault+0xc63/0x2ac0
[   78.437547][ T7081]  exc_page_fault+0x296/0x650
[   78.442240][ T7081]  asm_exc_page_fault+0x26/0x30
[   78.447099][ T7081]  rep_movs_alternative+0x4a/0x70
[   78.452125][ T7081]  _copy_to_iter+0x2cb/0xd00
[   78.456723][ T7081]  copy_page_to_iter+0x171/0x2b0
[   78.461696][ T7081]  process_vm_rw+0x5b6/0x890
[   78.466305][ T7081]  __x64_sys_process_vm_readv+0x7a/0x90
[   78.472036][ T7081]  x64_sys_call+0xb24/0x2dc0
[   78.476636][ T7081]  do_syscall_64+0xc9/0x1c0
[   78.481148][ T7081]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.487047][ T7081] 
[   78.489364][ T7081] read to 0xffff888237c1fd14 of 4 bytes by task 7081 on cpu 1:
[   78.496912][ T7081]  print_cpu+0x348/0x670
[   78.501162][ T7081]  timer_list_show+0x115/0x180
[   78.505928][ T7081]  seq_read_iter+0x655/0x930
[   78.510532][ T7081]  proc_reg_read_iter+0x118/0x190
[   78.515564][ T7081]  copy_splice_read+0x383/0x5b0
[   78.520416][ T7081]  splice_direct_to_actor+0x269/0x670
[   78.525797][ T7081]  do_splice_direct+0xd7/0x150
[   78.530560][ T7081]  do_sendfile+0x398/0x660
[   78.534981][ T7081]  __x64_sys_sendfile64+0x110/0x150
[   78.540189][ T7081]  x64_sys_call+0xfbd/0x2dc0
[   78.544791][ T7081]  do_syscall_64+0xc9/0x1c0
[   78.549303][ T7081]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.555198][ T7081] 
[   78.557513][ T7081] value changed: 0x0000553b -> 0x0000553c
[   78.563223][ T7081] 
[   78.565551][ T7081] Reported by Kernel Concurrency Sanitizer on:
[   78.571692][ T7081] CPU: 1 UID: 0 PID: 7081 Comm: syz.3.1160 Not tainted 6.13.0-syzkaller-09485-g72deda0abee6 #0
[   78.582214][ T7081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   78.592274][ T7081] ==================================================================
[   78.606738][ T7073] EXT4-fs error (device loop4): ext4_do_update_inode:5154: inode #2: comm syz.4.1159: corrupted inode contents
[   78.710873][ T7009] bridge0: port 1(bridge_slave_0) entered blocking state
[   78.718039][ T7009] bridge0: port 1(bridge_slave_0) entered disabled state
[   78.725144][ T7009] bridge_slave_0: entered allmulticast mode
[   78.731745][ T7009] bridge_slave_0: entered promiscuous mode
[   78.738409][ T7009] bridge0: port 2(bridge_slave_1) entered blocking state
[   78.745657][ T7009] bridge0: port 2(bridge_slave_1) entered disabled state
[   78.753097][ T7009] bridge_slave_1: entered allmulticast mode
[   78.759758][ T7009] bridge_slave_1: entered promiscuous mode
[   78.777341][ T7009] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   78.787878][ T7009] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   78.808007][ T7009] team0: Port device team_slave_0 added
[   78.814451][ T7009] team0: Port device team_slave_1 added
[   78.829574][ T7009] batman_adv: batadv0: Adding interface: batadv_slave_0
[   78.836640][ T7009] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   78.862655][ T7009] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   78.874093][ T7009] batman_adv: batadv0: Adding interface: batadv_slave_1
[   78.881230][ T7009] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   78.907358][ T7009] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   78.934691][ T7009] hsr_slave_0: entered promiscuous mode
[   78.940817][ T7009] hsr_slave_1: entered promiscuous mode
[   78.946913][ T7009] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   78.954572][ T7009] Cannot create hsr debugfs directory
[   79.019486][ T7009] netdevsim netdevsim6 netdevsim0: renamed from eth0
[   79.028111][ T7009] netdevsim netdevsim6 netdevsim1: renamed from eth1
[   79.037100][ T7009] netdevsim netdevsim6 netdevsim2: renamed from eth2
[   79.046885][ T7009] netdevsim netdevsim6 netdevsim3: renamed from eth3
[   79.063289][ T7009] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.070399][ T7009] bridge0: port 2(bridge_slave_1) entered forwarding state
[   79.077679][ T7009] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.084820][ T7009] bridge0: port 1(bridge_slave_0) entered forwarding state
[   79.092955][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[   79.100853][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[   79.129868][ T7009] 8021q: adding VLAN 0 to HW filter on device bond0
[   79.141638][ T7009] 8021q: adding VLAN 0 to HW filter on device team0
[   79.150811][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.157879][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   79.168324][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.175442][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[   79.230264][ T7009] 8021q: adding VLAN 0 to HW filter on device batadv0
[   79.319584][ T7009] veth0_vlan: entered promiscuous mode
[   79.327792][ T7009] veth1_vlan: entered promiscuous mode
[   79.341321][ T7009] veth0_macvtap: entered promiscuous mode
[   79.348452][ T7009] veth1_macvtap: entered promiscuous mode
[   79.358685][ T7009] batman_adv: batadv0: Interface activated: batadv_slave_0
[   79.367416][ T7009] batman_adv: batadv0: Interface activated: batadv_slave_1
[   79.378343][ T7009] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   79.387215][ T7009] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   79.396056][ T7009] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   79.404842][ T7009] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   79.428758][   T29] audit: type=1400 audit(1738270532.702:4909): avc:  denied  { mount } for  pid=7009 comm="syz-executor" name="/" dev="gadgetfs" ino=3794 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1