last executing test programs:

2.271181991s ago: executing program 4 (id=1099):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r1, &(0x7f0000000300)={0xa, 0x3, 0x4000, @mcast1, 0x9}, 0x1c)
sendmsg(r1, &(0x7f00000000c0)={0x0, 0x9504, &(0x7f0000000100)=[{&(0x7f0000000000)="2b10", 0xffbd}], 0x1, 0x0, 0x0, 0x2c}, 0x4)

2.227166121s ago: executing program 4 (id=1100):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x13, 0x0, 0x0, 0x2}, 0x10}}, 0x0)

2.182344621s ago: executing program 4 (id=1101):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000040000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000280)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x30, 0x30, 0x6, [@typedef={0x2, 0x0, 0x0, 0x8, 0x5}, @typedef={0x2, 0x0, 0x0, 0x8, 0x2}, @ptr={0xe, 0x0, 0x0, 0x2, 0x4}, @const={0x4, 0x0, 0x0, 0xa, 0x5}]}, {0x0, [0x61, 0x2e, 0x5f, 0x0]}}, &(0x7f0000000300)=""/172, 0x4e, 0xac, 0x0, 0x10001, 0x0, @void, @value}, 0x28)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000e80)={0x11, 0x1, &(0x7f0000000a80)=@raw=[@call={0x85, 0x0, 0x0, 0x25}], &(0x7f0000000ac0)='GPL\x00', 0x8c0e, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, @void, @value}, 0x94)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x801, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000200)='./bus\x00', 0x1000000, &(0x7f00000005c0)=ANY=[], 0x1, 0x126f, &(0x7f0000001600)="$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")
creat(&(0x7f0000000000)='./bus\x00', 0x26)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, 0x0, 0x58010)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r4, &(0x7f0000004200)='t', 0x1)
sendfile(r4, r3, 0x0, 0x3ffff)
sendfile(r4, r3, 0x0, 0x7ffff000)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000000)=[{0x106, 0x0, 0x0, 0x7ffc0002}]})
mremap(&(0x7f0000ff8000/0x3000)=nil, 0x3000, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil)

1.531608854s ago: executing program 0 (id=1121):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00'}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x18)
r0 = perf_event_open(&(0x7f0000001040)={0x2, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f00000001c0)='cpu&00\t&&')

1.358661635s ago: executing program 0 (id=1126):
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xc8}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
r2 = msgget$private(0x0, 0x3a9)
msgrcv(r2, 0x0, 0x0, 0x0, 0x0)
msgctl$IPC_SET(r2, 0x1, &(0x7f0000000280)={{0x2, 0xee00, 0x0, 0x0, 0xee01}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
close(0x3)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read$char_usb(r3, 0x0, 0x0)
mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000180)='kfree\x00', r5}, 0x18)
mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
mq_timedreceive(0xffffffffffffffff, &(0x7f0000000180)=""/204, 0xcc, 0x100000000000000, 0x0)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r6, 0x40605346, &(0x7f00000000c0))

1.269520155s ago: executing program 4 (id=1130):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x12, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x3, 0x1, 0xfffffffc)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000a850000000f000000c50000009e00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IMADDTIMER(r4, 0x80044940, &(0x7f00000000c0)=0x32)
read(r4, &(0x7f00000019c0)=""/4107, 0x100b)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000700), &(0x7f00000000c0), 0xff, r0}, 0x38)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000700)={{}, &(0x7f0000000500), &(0x7f00000006c0)}, 0x20)

1.203185625s ago: executing program 3 (id=1131):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', 0xffffffffffffffff, 0x0, 0x4}, 0x18)
r0 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x14)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe47, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040))
r1 = bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x42, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000140), r3)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r5}, &(0x7f00000001c0), &(0x7f00000002c0)}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0, r6}, 0x18)
r7 = syz_init_net_socket$llc(0x1a, 0x801, 0x0)
bind$llc(r7, &(0x7f0000000000)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x10)
sendmsg$NLBL_MGMT_C_ADDDEF(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0100000300000000000004000000080002"], 0x24}}, 0x0)

1.147722745s ago: executing program 1 (id=1132):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
r1 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r1, &(0x7f0000000300)={0xa, 0x3, 0x4000, @mcast1, 0x9}, 0x1c)
sendmsg(r1, &(0x7f00000000c0)={0x0, 0x9504, &(0x7f0000000100)=[{&(0x7f0000000000)="2b10", 0xffbd}], 0x1, 0x0, 0x0, 0x2c}, 0x4)

1.132286555s ago: executing program 3 (id=1134):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000003020000850000008600000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r2}, 0x10)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000100)=@newlink={0x3c, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x115}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macsec={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACSEC_ICV_LEN={0x5, 0x3, 0x8}]}}}]}, 0x3c}}, 0x0)
r3 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f00000000c0)='bridge_slave_1\x00', 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={0xffffffffffffffff, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000c00)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10)
connect$inet(r3, &(0x7f0000000300)={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f0000000140), 0x4)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00'}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x18)
r5 = perf_event_open(&(0x7f0000001040)={0x2, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r5, 0x40082406, &(0x7f00000001c0)='cpu&00\t&&')

1.087878635s ago: executing program 1 (id=1135):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x13, 0x0, 0x0, 0x2}, 0x10}}, 0x0)

1.073637775s ago: executing program 3 (id=1136):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00'}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x18)
r0 = perf_event_open(&(0x7f0000001040)={0x2, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f00000001c0)='cpu&00\t&&')

1.062627865s ago: executing program 4 (id=1137):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001780)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x383541, 0x0)
readv(r3, &(0x7f0000001980)=[{&(0x7f0000001740)=""/92, 0x5c}, {0x0}], 0x2)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000fc0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_emit_ethernet(0x16, &(0x7f00000009c0)={@multicast, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x43}, @void, {@llc={0x4, {@snap={0xaa, 0x1, '\x00', "3fb4a8", 0x2}}}}}, 0x0)

1.059582076s ago: executing program 1 (id=1138):
r0 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000000c0), 0x4)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{0xffffffffffffffff, <r1=>0xffffffffffffffff}, &(0x7f0000000100), &(0x7f0000000140)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000b8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000006c0)=@newsa={0x138, 0x10, 0x633, 0x0, 0x0, {{@in=@multicast2, @in6=@dev={0xfe, 0x80, '\x00', 0xfd}}, {@in6=@remote, 0x4d2, 0x32}, @in=@local, {}, {0x0, 0x0, 0x0, 0x10080005}, {}, 0x2, 0x0, 0xa, 0x4}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}]}, 0x138}}, 0x0)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={<r4=>0x0, @private, @empty}, &(0x7f0000000340)=0xc)
r5 = bpf$OBJ_GET_PROG(0x7, &(0x7f0000000440)=@generic={&(0x7f0000000400)='./file0\x00', 0x0, 0x8}, 0x18)
r6 = socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0xea140, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x1}, 0x106190, 0x1, 0x0, 0x6, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x100)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r9=>0x0})
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000000c0)=ANY=[@ANYBLOB="6c000000100003042cbd70000000000000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000003c00128009000100766c616e000000002c00028006000100000000001c0003800c00010000010000800000000c00010000000000ffffff7f0400048008000a00", @ANYRES32=r9, @ANYBLOB="08000500", @ANYRES32=<r10=>r9], 0x6c}, 0x1, 0xba01}, 0x0)
getsockopt$inet_mreqsrc(r6, 0x0, 0x53, &(0x7f0000000000)={@dev, @local, @broadcast}, &(0x7f00000000c0)=0xc)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x12, 0x9, &(0x7f0000000200)=@raw=[@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8}}], &(0x7f0000000280)='GPL\x00', 0x1ff, 0x6, &(0x7f00000002c0)=""/6, 0x41100, 0x5e, '\x00', r4, @fallback=0x6, r0, 0x8, &(0x7f0000000380)={0x3, 0x4}, 0x8, 0x10, &(0x7f00000003c0)={0x0, 0xe, 0x9d, 0x5}, 0x10, 0xffffffffffffffff, r5, 0x3, 0x0, &(0x7f0000000480)=[{0x4, 0x1, 0x8, 0xb}, {0x3, 0x5, 0x5, 0x8}, {0x0, 0x5, 0xb, 0xc}], 0x10, 0x3, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
alarm(0xb95)
r11 = socket(0x18, 0x80000, 0x2)
connect$netlink(r11, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x20001, 0x20000000}, 0xc)
r12 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x1f, 0x3, &(0x7f0000000080)=ANY=[@ANYRESHEX=r10, @ANYRESHEX=r11, @ANYRES32=r2], &(0x7f0000000680)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41100, 0x10, '\x00', 0x0, 0x0, r0, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffb, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000900)={r12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f00000008c0)="89", 0x0}, 0x32)

1.015239205s ago: executing program 3 (id=1139):
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f00000003c0)={0xffffffffffffffff, 0x1, 0x0, 0x6})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES16, @ANYBLOB="0000000000000008b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000400)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x1c, 0x1c, 0x2, [@enum={0x0, 0x2, 0x0, 0x6, 0x4, [{0xd, 0xffffffff}, {0x0, 0x5}]}]}}, 0x0, 0x36, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
io_setup(0x401, &(0x7f0000000340)=<r1=>0x0)
r2 = timerfd_create(0x0, 0x800)
io_submit(r1, 0x4, &(0x7f0000000240)=[&(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x58}, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000840)="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", 0x1000, 0x5, 0x0, 0x2}, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="e982ab1a", 0x4, 0x3f, 0x0, 0x2}, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000100)="8d5deea6fee55c0e6cadc87aee0e7011ca6e4cf4c17c01c7a8c4508a7330886f33a7e25d082ead6f7ac99aa662b61987570a1171057bcb2888d411fd2a7c869847f830bc98437fffc84873e7d0e65c0cf7014748eb920ba5d50be661aa42b1f3b0229def38997ba0d41d835e54c48d409f68f35737d979ed8dbba9c1adf39482c65c71a761820277d3353104e000557663842307b0fad32da6daac31aec673e0c2524d537efac90fae0e1302765b0e39e908ec667e57bb05fe336e063a9270cc9465e4064dc3857cda0fa1941d39f57054c2", 0xd2, 0xffffffff, 0x0, 0x2}])
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000400)='tlb_flush\x00', r3, 0x0, 0x80000000000}, 0x18)
r4 = getpid()
r5 = syz_pidfd_open(r4, 0x0)
setns(r5, 0x24020000)
syz_clone3(&(0x7f00000008c0)={0x17140000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000340)=ANY=[], 0x20}}, 0x0)
r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r7 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
write$selinux_validatetrans(r7, &(0x7f0000000280)={'system_u:object_r:cpu_device_t:s0', 0x20, 'system_u:object_r:policy_src_t:s0', 0x20, 0x6, 0x20, 'unconfined_u:system_r:insmod_t:s0-s0:c0.c1023\x00'}, 0x87)
fcntl$getflags(r6, 0xb)
r8 = socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_ATTACH_FILTER(r8, 0x1, 0x1a, &(0x7f0000000000)={0x2, &(0x7f0000000040)=[{0x30, 0x3, 0x0, 0xfffff034}, {0x80000006, 0x0, 0x0, 0x4}]}, 0x10)
r9 = socket$inet6_sctp(0xa, 0x5, 0x84)
sendto$inet6(r9, &(0x7f0000000580)=' ', 0xffe0, 0x0, &(0x7f0000000100)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

781.800077ms ago: executing program 4 (id=1142):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000040000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000280)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x30, 0x30, 0x6, [@typedef={0x2, 0x0, 0x0, 0x8, 0x5}, @typedef={0x2, 0x0, 0x0, 0x8, 0x2}, @ptr={0xe, 0x0, 0x0, 0x2, 0x4}, @const={0x4, 0x0, 0x0, 0xa, 0x5}]}, {0x0, [0x61, 0x2e, 0x5f, 0x0]}}, &(0x7f0000000300)=""/172, 0x4e, 0xac, 0x0, 0x10001, 0x0, @void, @value}, 0x28)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000e80)={0x11, 0x1, &(0x7f0000000a80)=@raw=[@call={0x85, 0x0, 0x0, 0x25}], &(0x7f0000000ac0)='GPL\x00', 0x8c0e, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, @void, @value}, 0x94)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x801, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000200)='./bus\x00', 0x1000000, &(0x7f00000005c0)=ANY=[], 0x1, 0x126f, &(0x7f0000001600)="$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")
creat(&(0x7f0000000000)='./bus\x00', 0x26)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, 0x0, 0x58010)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r4, &(0x7f0000004200)='t', 0x1)
sendfile(r4, r3, 0x0, 0x3ffff)
sendfile(r4, r3, 0x0, 0x7ffff000)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000000)=[{0x106, 0x0, 0x0, 0x7ffc0002}]})
mremap(&(0x7f0000ff8000/0x3000)=nil, 0x3000, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil)

726.551597ms ago: executing program 3 (id=1143):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', 0xffffffffffffffff, 0x0, 0x4}, 0x18)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000ac0), r0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="050000000000000073114100000000008510000002000000850000005600000095000810000000009500000500000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
sendmsg$NLBL_CALIPSO_C_ADD(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="01002bbd7000fedbb82501000000"], 0x14}, 0x1, 0x0, 0x0, 0x200000c0}, 0x800)
r2 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000003c0)=0x14)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe47, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040))
r3 = bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x1}, 0x0, 0x0, 0x1, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB, @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x42, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000140), r4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f00000700000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000003b0a0000000000000000000000000000000000007f"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x20, 0x4f, 0x0, 0x0, 0x5, 0x0, 0x0, 0x40f00, 0x9, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r5}, &(0x7f00000001c0), &(0x7f00000002c0)}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
r7 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r7, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r8=>0x0})
connect$can_bcm(r7, &(0x7f00000000c0)={0x1d, r8}, 0x10)
sendmsg$can_bcm(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="0100000003ece1"], 0x20000600}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0, r6}, 0x18)
r9 = syz_init_net_socket$llc(0x1a, 0x801, 0x0)
bind$llc(r9, &(0x7f0000000000)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x10)

667.928317ms ago: executing program 3 (id=1145):
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080), 0x1c0002, 0x0)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000100)={0x40000000, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x2, 0x18, 0x0, 0x0, 0x1b, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @empty}}, @sadb_x_policy={0x8, 0x12, 0x0, 0x0, 0x0, 0x6e6bbd, 0x0, {0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in=@multicast1}}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0xffff, 0x0, @private0}}, @sadb_x_kmaddress={0x7, 0x19, 0x0, @in6={0xa, 0x4e21, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xdb7}, @in={0x2, 0x4e22, @multicast1}}]}, 0xd8}}, 0x4000)
write$vga_arbiter(r0, &(0x7f0000000000)=@other={'lock', ' ', 'io+mem'}, 0xc)
write$vga_arbiter(r0, &(0x7f0000000240)=ANY=[@ANYBLOB="6dfdec0c266392035103cc2d2bcc4800e853c824f4df249274029a55b7767e26156b61804a926e6efb421f33825850419bb6ccdcd0c50b0e91528d597f666c5da45a34e66333cd15dbf7bf45ee01000080000000001682319d5ab2fce1ee54e1e2fdc6e8"], 0xe)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x13}}, 0x10)
sendto$inet(r2, &(0x7f0000000700)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff959bcecc7a95425a3a07e758044ab4ea6f7c555d88fecf90b037511bf746bec66ba", 0x994b6e03113064ae, 0x0, 0x0, 0x0)
recvmsg(r2, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x200045ca}], 0x1, 0x0, 0x46, 0x407006}, 0x104)
syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f00000002c0)='./file1\x00', 0x0, &(0x7f0000000480)={[{@acl}]}, 0x1, 0x787, &(0x7f0000001000)="$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")
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
socket$kcm(0x10, 0x2, 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
setxattr$incfs_metadata(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380), 0x0, 0x0, 0x0)
removexattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=@known='user.incfs.metadata\x00')
setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000140)='bic\x00', 0x4)
connect$qrtr(0xffffffffffffffff, &(0x7f00000008c0)={0x2a, 0x3, 0xfffffffe}, 0xc)
socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
setsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x39, &(0x7f0000000040)="ff02040000ffffffffffffffff1f2be82db1af0000", 0x15)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0xe0, 0x0, @loopback}, 0x1c)
accept4$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x0, 0x800)
gettid()

645.401567ms ago: executing program 1 (id=1147):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x12, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x3, 0x1, 0xfffffffc)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000a850000000f000000c50000009e00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IMADDTIMER(r4, 0x80044940, &(0x7f00000000c0)=0x32)
read(r4, &(0x7f00000019c0)=""/4107, 0x100b)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000700), &(0x7f00000000c0), 0xff, r0}, 0x38)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000700)={{}, &(0x7f0000000500), &(0x7f00000006c0)}, 0x20)

574.290138ms ago: executing program 2 (id=1149):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00'}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x18)
r0 = perf_event_open(&(0x7f0000001040)={0x2, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f00000001c0)='cpu&00\t&&')

549.964928ms ago: executing program 1 (id=1150):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000380)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x1001, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x1, '\x00', 0x0, @fallback=0x26, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000180)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="090200000000000000000100000008000600ac1414aa08000b00", @ANYRES32, @ANYBLOB], 0x2c}}, 0x0)

502.912158ms ago: executing program 0 (id=1151):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800"/15, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x2f1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
pipe(&(0x7f0000000380)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x10000000013, &(0x7f0000000180)=0x1, 0x4)
setsockopt$inet_tcp_int(r2, 0x6, 0x14, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r2, &(0x7f0000000300)={0x2, 0x0, @remote}, 0x10)
sendto$inet(r2, &(0x7f0000000200)="e1", 0xfea8, 0x0, 0x0, 0x0)
splice(r2, 0x0, r1, 0x0, 0x7ffff041, 0x0)
ioctl$SIOCPNENABLEPIPE(r1, 0x89ed, 0x0)

502.681248ms ago: executing program 0 (id=1152):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00"/12], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014002000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r1}, 0x10)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0xffffffff, 0x0, "df3e0400000000000000000000000609000040"})
r3 = syz_open_pts(r2, 0x0)
dup3(r3, r2, 0x0)

502.533288ms ago: executing program 2 (id=1153):
open(&(0x7f0000000200)='./file0\x00', 0x680ff, 0xcda69041e34c7842)
r0 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x1300, 0x0) (fail_nth: 2)
fcntl$setlease(r0, 0x400, 0x0)

479.526538ms ago: executing program 1 (id=1154):
creat(&(0x7f0000000000)='./bus\x00', 0x26)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r1, &(0x7f0000004200)='t', 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7ffff000)

274.296969ms ago: executing program 0 (id=1155):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0b00000007000000010001000800000001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\r\x00'], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r2, &(0x7f0000000300)={0xa, 0x3, 0x4000, @mcast1, 0x9}, 0x1c)
sendmsg(r2, &(0x7f00000000c0)={0x0, 0x9504, &(0x7f0000000100)=[{&(0x7f0000000000)="2b10", 0xffbd}], 0x1, 0x0, 0x0, 0x2c}, 0x4)

184.044529ms ago: executing program 2 (id=1156):
socket$inet_smc(0x2b, 0x1, 0x0)
socket$inet(0x2, 0x2, 0x1)
dup(0xffffffffffffffff)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0xa00, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$can_bcm(0x1d, 0x2, 0x2)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000180), 0xfea7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d01080000c582b61bdd04878800080103"], 0x2c}, 0x1, 0x0, 0x0, 0x80}, 0x26004080)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r5, @ANYRES32=r2], 0x4}}, 0x0)
sendfile(r4, r3, 0x0, 0x100000002)

131.349629ms ago: executing program 0 (id=1157):
open(&(0x7f0000000200)='./file0\x00', 0x680ff, 0xcda69041e34c7842)
r0 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x1300, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
io_setup(0x8, &(0x7f0000000c40)=<r1=>0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000c80), 0x321580, 0x0)
r2 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
io_submit(r1, 0x0, &(0x7f00000001c0))
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='configfs\x00', 0x0, 0x0)
getrandom(&(0x7f0000000240)=""/161, 0xa1, 0xff72f7fc137a12a6)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000004c0)={r2, 0x0, 0x9b, 0x6e, &(0x7f0000000300)="f3a0e18838d1e785c9f6b9e5e04565612d848994c4214bd4dd12e9ede12bf0cc22ef72f367adfdfef8b7e100cefd2726ba174715b5f4268c4029b9413f193556e05ee499ee2b652de81754e6f93b8d72d414e5cfc274100570b089d43b8a3696b609c0ff69c6d86ba0561226c210729d82fc986f0065744ec976c07db9fbdf8d2b651619fa42805ad2dba8154d353bfcfd22012a9f74dce7e558f0", &(0x7f0000000180)=""/110, 0x0, 0x0, 0x2d, 0xc0, &(0x7f0000000080)="fc0f93dfd8b4495319776b1c3a69d58ca1158bdf166fd4b828e3431917580f46770ca988587b00b4e85385c52a", &(0x7f0000000400)="a2506235c167e08494588d00fb62784c07937eda2ca201f4425ac126c97ab0c0f2d1d19fb1230b200572e2ad37e2a58a696fa1f987f756f4e7e3923405a10027a81ebf4603312c138b7606026b7eedab49e07ac28ec910f3eb5da8ad3c7cabdfe27f2057cb2d9462ce55c1d4e01e5b1cea0129a76dc2056c7040cb8a079e9a7b12487add34cf56a198588bc245173acff362f2408801837bf33f9966f3296800d86ddf57532aa937ac6792513586ac5d7f45813f0597c4cf1de378c644c9c64f", 0x4, 0x0, 0x6}, 0x50)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x180, 0x0)
getdents64(r3, 0x0, 0x2e)
fcntl$setlease(r0, 0x400, 0x0)

125.852819ms ago: executing program 2 (id=1158):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000003020000850000008600000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r2}, 0x10)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000100)=@newlink={0x3c, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x115}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macsec={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACSEC_ICV_LEN={0x5, 0x3, 0x8}]}}}]}, 0x3c}}, 0x0)
r3 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f00000000c0)='bridge_slave_1\x00', 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={0xffffffffffffffff, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000c00)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10)
connect$inet(r3, &(0x7f0000000300)={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f0000000140), 0x4)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00'}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x18)
r5 = perf_event_open(&(0x7f0000001040)={0x2, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r5, 0x40082406, &(0x7f00000001c0)='cpu&00\t&&')

24.74673ms ago: executing program 2 (id=1159):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x13, 0x0, 0x0, 0x2}, 0x10}}, 0x0)

0s ago: executing program 2 (id=1160):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = perf_event_open(&(0x7f0000001040)={0x2, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f00000001c0)='cpu&00\t&&')

kernel console output (not intermixed with test programs):

967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4148 comm="syz.4.204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03eebefed9 code=0x7ffc0000
[   38.530252][   T29] audit: type=1326 audit(1733761717.375:1155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4148 comm="syz.4.204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f03eebefed9 code=0x7ffc0000
[   38.553683][   T29] audit: type=1326 audit(1733761717.375:1156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4148 comm="syz.4.204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03eebefed9 code=0x7ffc0000
[   38.601873][ T4153] loop2: detected capacity change from 0 to 512
[   38.630197][ T3294] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   38.632696][ T4153] EXT4-fs (loop2): orphan cleanup on readonly fs
[   38.669369][ T3294] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.681274][ T4153] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.206: bg 0: block 248: padding at end of block bitmap is not set
[   38.697345][ T4153] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.206: Failed to acquire dquot type 1
[   38.699217][ T4160] IPVS: stopping master sync thread 4161 ...
[   38.714958][ T4161] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0
[   38.727978][ T4153] EXT4-fs (loop2): 1 truncate cleaned up
[   38.764881][ T4153] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   38.783043][ T4153] capability: warning: `syz.2.206' uses 32-bit capabilities (legacy support in use)
[   38.801597][ T4169] netlink: 4 bytes leftover after parsing attributes in process `syz.4.212'.
[   38.812091][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.839219][ T4174] loop2: detected capacity change from 0 to 164
[   38.846383][ T4174] Unable to read rock-ridge attributes
[   38.852828][ T4174] Unable to read rock-ridge attributes
[   38.914675][ T4188] netlink: 'syz.4.219': attribute type 10 has an invalid length.
[   38.922539][ T4188] netlink: 40 bytes leftover after parsing attributes in process `syz.4.219'.
[   38.931758][ T4182] wireguard0: entered promiscuous mode
[   38.937342][ T4182] wireguard0: entered allmulticast mode
[   38.946853][ T4191] SELinux:  policydb version 0 does not match my version range 15-33
[   38.955049][ T4191] SELinux: failed to load policy
[   38.955044][ T4188] veth1_macvtap: entered allmulticast mode
[   38.955603][ T4188] bridge0: port 3(veth1_macvtap) entered blocking state
[   38.972931][ T4188] bridge0: port 3(veth1_macvtap) entered disabled state
[   38.981103][ T4188] A link change request failed with some changes committed already. Interface veth1_macvtap may have been left with an inconsistent configuration, please check.
[   38.997394][ T4191] netlink: 24 bytes leftover after parsing attributes in process `syz.0.220'.
[   39.032434][ T4196] FAULT_INJECTION: forcing a failure.
[   39.032434][ T4196] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   39.045542][ T4196] CPU: 0 UID: 0 PID: 4196 Comm: syz.4.222 Not tainted 6.13.0-rc2-syzkaller #0
[   39.054481][ T4196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   39.064625][ T4196] Call Trace:
[   39.067940][ T4196]  <TASK>
[   39.070876][ T4196]  dump_stack_lvl+0xf2/0x150
[   39.075741][ T4196]  dump_stack+0x15/0x1a
[   39.079919][ T4196]  should_fail_ex+0x223/0x230
[   39.084732][ T4196]  should_fail+0xb/0x10
[   39.088942][ T4196]  should_fail_usercopy+0x1a/0x20
[   39.094029][ T4196]  _copy_from_user+0x1e/0xb0
[   39.098685][ T4196]  __se_sys_mount+0x119/0x2d0
[   39.103430][ T4196]  ? ksys_write+0x176/0x1b0
[   39.107932][ T4196]  __x64_sys_mount+0x67/0x80
[   39.112559][ T4196]  x64_sys_call+0x2c84/0x2dc0
[   39.117333][ T4196]  do_syscall_64+0xc9/0x1c0
[   39.121828][ T4196]  ? clear_bhb_loop+0x55/0xb0
[   39.126502][ T4196]  ? clear_bhb_loop+0x55/0xb0
[   39.131241][ T4196]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   39.137195][ T4196] RIP: 0033:0x7f03eebefed9
[   39.141610][ T4196] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   39.161286][ T4196] RSP: 002b:00007f03ed267058 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   39.169695][ T4196] RAX: ffffffffffffffda RBX: 00007f03eedb5fa0 RCX: 00007f03eebefed9
[   39.177878][ T4196] RDX: 00000000200002c0 RSI: 0000000020000080 RDI: 0000000000000000
[   39.185840][ T4196] RBP: 00007f03ed2670a0 R08: 0000000020000400 R09: 0000000000000000
[   39.193852][ T4196] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   39.201817][ T4196] R13: 0000000000000000 R14: 00007f03eedb5fa0 R15: 00007ffefbaee638
[   39.209792][ T4196]  </TASK>
[   39.214325][ T4200] mmap: syz.0.224 (4200) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   39.232898][ T4200] smc: net device bond0 applied user defined pnetid SYZ0
[   39.240302][ T4200] netlink: 116 bytes leftover after parsing attributes in process `syz.0.224'.
[   39.249427][ T4200] smc: net device bond0 erased user defined pnetid SYZ0
[   39.350739][ T4221] loop2: detected capacity change from 0 to 512
[   39.359157][ T4221] EXT4-fs error (device loop2): ext4_orphan_get:1415: comm syz.2.232: bad orphan inode 15
[   39.369520][ T4221] ext4_test_bit(bit=14, block=5) = 0
[   39.375269][ T4221] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   39.445623][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.454728][ T4231] wireguard0: entered promiscuous mode
[   39.460319][ T4231] wireguard0: entered allmulticast mode
[   39.492743][ T4237] loop2: detected capacity change from 0 to 512
[   39.507525][ T4237] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   39.520219][ T4237] ext4 filesystem being mounted at /46/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   39.533051][ T4237] netlink: 'syz.2.237': attribute type 10 has an invalid length.
[   39.541042][ T4237] veth0_macvtap: entered promiscuous mode
[   39.547801][ T4237] team0: Device macvtap0 failed to register rx_handler
[   39.554858][ T4237] veth0_macvtap: left promiscuous mode
[   39.572549][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.694809][ T4244] netlink: 8 bytes leftover after parsing attributes in process `syz.2.238'.
[   39.774520][ T4258] loop2: detected capacity change from 0 to 164
[   39.786962][ T4258] Unable to read rock-ridge attributes
[   39.794080][ T4258] Unable to read rock-ridge attributes
[   39.894069][ T4269] loop2: detected capacity change from 0 to 512
[   39.921561][ T4272] netlink: 'syz.0.249': attribute type 10 has an invalid length.
[   39.932715][ T4272] veth0_macvtap: entered promiscuous mode
[   39.940787][ T4272] team0: Device macvtap0 failed to register rx_handler
[   39.948111][ T4272] veth0_macvtap: left promiscuous mode
[   39.966754][ T4269] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.248: couldn't read orphan inode 26 (err -116)
[   39.978413][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[   39.996805][ T4269] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.010190][ T4269] ext4 filesystem being mounted at /50/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   40.033436][ T4269] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #3: comm syz.2.248: corrupted inode contents
[   40.047123][ T4269] EXT4-fs error (device loop2): ext4_dirty_inode:6041: inode #3: comm syz.2.248: mark_inode_dirty error
[   40.061096][ T4269] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.248: bg 0: block 64: padding at end of block bitmap is not set
[   40.077004][ T4269] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.248: Failed to acquire dquot type 0
[   40.112180][ T4281] loop4: detected capacity change from 0 to 164
[   40.120312][ T4281] Unable to read rock-ridge attributes
[   40.126774][ T4281] Unable to read rock-ridge attributes
[   40.181002][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.196242][ T3375] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   40.203708][ T3375] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   40.211153][ T3375] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   40.219450][ T3375] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   40.227035][ T3375] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   40.234505][ T3375] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   40.241950][ T3375] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   40.249496][ T3375] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   40.257002][ T3375] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   40.264445][ T3375] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   40.272027][ T3375] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   40.279458][ T3375] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   40.287049][ T3375] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   40.294472][ T3375] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   40.305196][ T4289] FAULT_INJECTION: forcing a failure.
[   40.305196][ T4289] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   40.318504][ T4289] CPU: 0 UID: 0 PID: 4289 Comm: syz.2.253 Not tainted 6.13.0-rc2-syzkaller #0
[   40.327426][ T4289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   40.327770][ T4291] loop3: detected capacity change from 0 to 1024
[   40.337550][ T4289] Call Trace:
[   40.337561][ T4289]  <TASK>
[   40.337569][ T4289]  dump_stack_lvl+0xf2/0x150
[   40.348188][ T4291] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.255: Failed to acquire dquot type 0
[   40.350194][ T4289]  dump_stack+0x15/0x1a
[   40.356412][ T4291] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, 
[   40.365937][ T4289]  should_fail_ex+0x223/0x230
[   40.370128][ T4291] inode 13: block 144:
[   40.377659][ T4289]  should_fail+0xb/0x10
[   40.377762][ T4289]  should_fail_usercopy+0x1a/0x20
[   40.377785][ T4289]  _copy_to_user+0x20/0xa0
[   40.377809][ T4289]  simple_read_from_buffer+0xa0/0x110
[   40.377837][ T4289]  proc_fail_nth_read+0xf9/0x140
[   40.377863][ T4289]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   40.382704][ T4291] freeing already freed block (bit 9); block bitmap corrupt.
[   40.386844][ T4289]  vfs_read+0x1a2/0x700
[   40.386886][ T4289]  ? __rcu_read_unlock+0x4e/0x70
[   40.394502][ T4291] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.255: corrupted inode contents
[   40.396049][ T4289]  ? __fget_files+0x17c/0x1c0
[   40.400749][ T4291] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #13: comm syz.3.255: mark_inode_dirty error
[   40.405837][ T4289]  ksys_read+0xe8/0x1b0
[   40.405869][ T4289]  __x64_sys_read+0x42/0x50
[   40.413949][ T4291] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.255: corrupted inode contents
[   40.416427][ T4289]  x64_sys_call+0x2874/0x2dc0
[   40.416453][ T4289]  do_syscall_64+0xc9/0x1c0
[   40.424265][ T4291] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #13: comm syz.3.255: mark_inode_dirty error
[   40.428000][ T4289]  ? clear_bhb_loop+0x55/0xb0
[   40.428020][ T4289]  ? clear_bhb_loop+0x55/0xb0
[   40.428039][ T4289]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   40.434862][ T4291] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.255: corrupted inode contents
[   40.444799][ T4289] RIP: 0033:0x7f908568e8ec
[   40.444821][ T4289] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   40.444838][ T4289] RSP: 002b:00007f9083d07050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   40.444855][ T4289] RAX: ffffffffffffffda RBX: 00007f9085855fa0 RCX: 00007f908568e8ec
[   40.444909][ T4289] RDX: 000000000000000f RSI: 00007f9083d070b0 RDI: 0000000000000006
[   40.449987][ T4291] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[   40.460727][ T4289] RBP: 00007f9083d070a0 R08: 0000000000000000 R09: 0000000000000000
[   40.460741][ T4289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   40.460753][ T4289] R13: 0000000000000000 R14: 00007f9085855fa0 R15: 00007fff96468578
[   40.460772][ T4289]  </TASK>
[   40.475805][ T3375] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   40.502089][ T4291] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.255: corrupted inode contents
[   40.506535][ T3375] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   40.506571][ T3375] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   40.578750][ T4291] EXT4-fs error (device loop3): ext4_truncate:4240: inode #13: comm syz.3.255: mark_inode_dirty error
[   40.586450][ T3375] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   40.595053][ T4291] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[   40.602431][ T3375] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   40.611660][ T4291] EXT4-fs (loop3): 1 truncate cleaned up
[   40.613824][ T3375] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   40.624105][ T4291] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.634973][ T3375] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   40.716912][ T3375] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   40.724438][ T3375] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   40.732025][ T3375] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   40.739454][ T3375] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   40.746863][ T3375] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   40.754248][ T3375] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   40.761665][ T3375] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   40.769074][ T3375] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   40.776483][ T3375] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   40.784429][ T3375] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   40.786124][ T3294] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.855835][ T4304] IPVS: stopping master sync thread 4308 ...
[   40.857842][ T4308] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0
[   40.897956][ T4315] loop1: detected capacity change from 0 to 128
[   40.904405][ T4311] wireguard0: entered promiscuous mode
[   40.909983][ T4311] wireguard0: entered allmulticast mode
[   40.944274][ T4315] xt_CT: You must specify a L4 protocol and not use inversions on it
[   40.974989][ T4320] loop2: detected capacity change from 0 to 2048
[   40.998106][ T4320] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   41.052721][ T4328] IPVS: Error connecting to the multicast addr
[   41.094347][ T4333] netlink: 8 bytes leftover after parsing attributes in process `syz.4.267'.
[   41.147605][ T4336] loop3: detected capacity change from 0 to 512
[   41.208424][ T4344] FAULT_INJECTION: forcing a failure.
[   41.208424][ T4344] name failslab, interval 1, probability 0, space 0, times 0
[   41.221188][ T4344] CPU: 0 UID: 0 PID: 4344 Comm: syz.4.272 Not tainted 6.13.0-rc2-syzkaller #0
[   41.230108][ T4344] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   41.240206][ T4344] Call Trace:
[   41.243496][ T4344]  <TASK>
[   41.246519][ T4344]  dump_stack_lvl+0xf2/0x150
[   41.251235][ T4344]  dump_stack+0x15/0x1a
[   41.255409][ T4344]  should_fail_ex+0x223/0x230
[   41.260098][ T4344]  should_failslab+0x8f/0xb0
[   41.264701][ T4344]  kmem_cache_alloc_noprof+0x52/0x320
[   41.270118][ T4344]  ? getname_flags+0x81/0x3b0
[   41.274927][ T4344]  getname_flags+0x81/0x3b0
[   41.279442][ T4344]  getname+0x17/0x20
[   41.283441][ T4344]  __se_sys_quotactl+0x15b/0x660
[   41.288398][ T4344]  __x64_sys_quotactl+0x55/0x70
[   41.293299][ T4344]  x64_sys_call+0x826/0x2dc0
[   41.297934][ T4344]  do_syscall_64+0xc9/0x1c0
[   41.302439][ T4344]  ? clear_bhb_loop+0x55/0xb0
[   41.307123][ T4344]  ? clear_bhb_loop+0x55/0xb0
[   41.311802][ T4344]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   41.317855][ T4344] RIP: 0033:0x7f03eebefed9
[   41.322348][ T4344] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   41.342136][ T4344] RSP: 002b:00007f03ed267058 EFLAGS: 00000246 ORIG_RAX: 00000000000000b3
[   41.350555][ T4344] RAX: ffffffffffffffda RBX: 00007f03eedb5fa0 RCX: 00007f03eebefed9
[   41.358540][ T4344] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffff80000201
[   41.366522][ T4344] RBP: 00007f03ed2670a0 R08: 0000000000000000 R09: 0000000000000000
[   41.374498][ T4344] R10: 0000000020000340 R11: 0000000000000246 R12: 0000000000000001
[   41.382736][ T4344] R13: 0000000000000000 R14: 00007f03eedb5fa0 R15: 00007ffefbaee638
[   41.390800][ T4344]  </TASK>
[   41.411844][ T4336] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.425555][ T4336] ext4 filesystem being mounted at /48/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   41.438429][ T4336] netlink: 'syz.3.270': attribute type 10 has an invalid length.
[   41.451207][ T4348] IPVS: stopping master sync thread 4349 ...
[   41.452703][ T4349] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0
[   41.464786][ T4351] loop1: detected capacity change from 0 to 164
[   41.469402][ T4336] veth0_macvtap: left promiscuous mode
[   41.482748][ T4351] Unable to read rock-ridge attributes
[   41.490404][ T4351] Unable to read rock-ridge attributes
[   41.497273][ T4336] veth0_macvtap: entered promiscuous mode
[   41.505057][ T4336] team0: Device macvtap0 failed to register rx_handler
[   41.514341][ T4336] veth0_macvtap: left promiscuous mode
[   41.533895][ T4356] netlink: 8 bytes leftover after parsing attributes in process `syz.1.276'.
[   41.554795][ T3294] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.573117][ T4355] netlink: 8 bytes leftover after parsing attributes in process `syz.4.275'.
[   41.632369][ T4365] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0
[   41.632559][ T4362] IPVS: stopping master sync thread 4365 ...
[   41.702507][ T3306] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   41.720762][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.765020][ T4378] IPVS: stopping master sync thread 3588 ...
[   41.839374][ T4387] ip6erspan0: tun_chr_ioctl cmd 35108
[   41.853677][ T4393] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0
[   41.854370][ T4391] IPVS: stopping master sync thread 4393 ...
[   41.879102][ T4392] loop3: detected capacity change from 0 to 1024
[   41.886917][ T4392] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   41.903278][ T4392] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   41.911666][ T4392] EXT4-fs (loop3): orphan cleanup on readonly fs
[   41.920054][ T4392] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   41.930025][ T4392] EXT4-fs (loop3): Remounting filesystem read-only
[   41.937008][ T4392] EXT4-fs (loop3): 1 orphan inode deleted
[   41.943370][ T4392] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   41.955810][ T4392] SELinux: (dev loop3, type ext4) getxattr errno 5
[   41.962760][ T4392] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.062336][ T4409] netlink: 4 bytes leftover after parsing attributes in process `syz.2.298'.
[   42.131034][ T4417] loop4: detected capacity change from 0 to 2048
[   42.167484][ T4417] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.251334][ T4423] FAULT_INJECTION: forcing a failure.
[   42.251334][ T4423] name failslab, interval 1, probability 0, space 0, times 0
[   42.264086][ T4423] CPU: 1 UID: 0 PID: 4423 Comm: syz.0.300 Not tainted 6.13.0-rc2-syzkaller #0
[   42.272966][ T4423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   42.283032][ T4423] Call Trace:
[   42.286351][ T4423]  <TASK>
[   42.289449][ T4423]  dump_stack_lvl+0xf2/0x150
[   42.294039][ T4423]  dump_stack+0x15/0x1a
[   42.298282][ T4423]  should_fail_ex+0x223/0x230
[   42.302993][ T4423]  ? audit_log_d_path+0x96/0x250
[   42.307952][ T4423]  should_failslab+0x8f/0xb0
[   42.312620][ T4423]  __kmalloc_cache_noprof+0x4e/0x320
[   42.318099][ T4423]  audit_log_d_path+0x96/0x250
[   42.322914][ T4423]  ? __rcu_read_unlock+0x4e/0x70
[   42.327857][ T4423]  audit_log_d_path_exe+0x42/0x70
[   42.332962][ T4423]  audit_log_task+0x192/0x1c0
[   42.337628][ T4423]  audit_seccomp+0x68/0x130
[   42.342190][ T4423]  __seccomp_filter+0x6fa/0x1180
[   42.347268][ T4423]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   42.352952][ T4423]  ? vfs_write+0x596/0x920
[   42.357372][ T4423]  __secure_computing+0x9f/0x1c0
[   42.362409][ T4423]  syscall_trace_enter+0xd1/0x1f0
[   42.367464][ T4423]  do_syscall_64+0xaa/0x1c0
[   42.372039][ T4423]  ? clear_bhb_loop+0x55/0xb0
[   42.376947][ T4423]  ? clear_bhb_loop+0x55/0xb0
[   42.381696][ T4423]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   42.387683][ T4423] RIP: 0033:0x7f33698cfed9
[   42.392115][ T4423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   42.411981][ T4423] RSP: 002b:00007f3367f47058 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[   42.420391][ T4423] RAX: ffffffffffffffda RBX: 00007f3369a95fa0 RCX: 00007f33698cfed9
[   42.428470][ T4423] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000009
[   42.436445][ T4423] RBP: 00007f3367f470a0 R08: 0000000000000000 R09: 0000000000000000
[   42.444564][ T4423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   42.452564][ T4423] R13: 0000000000000000 R14: 00007f3369a95fa0 R15: 00007ffc1c2e8f78
[   42.460677][ T4423]  </TASK>
[   42.495133][ T3298] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   42.514046][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.538751][ T4431] netlink: 8 bytes leftover after parsing attributes in process `syz.4.303'.
[   42.551108][ T4431] netlink: 8 bytes leftover after parsing attributes in process `syz.4.303'.
[   42.588517][ T4434] netlink: 3 bytes leftover after parsing attributes in process `syz.4.305'.
[   42.590675][ T4433] IPv6: sit1: Disabled Multicast RS
[   42.604604][ T4433] sit1: entered allmulticast mode
[   42.618565][ T4434] 0ªX¹¦À: renamed from caif0
[   42.624308][   T29] kauditd_printk_skb: 403 callbacks suppressed
[   42.624399][   T29] audit: type=1400 audit(1733761721.525:1550): avc:  denied  { write } for  pid=4436 comm="syz.0.306" name="sg0" dev="devtmpfs" ino=137 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   42.655709][ T4437] FAULT_INJECTION: forcing a failure.
[   42.655709][ T4437] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   42.668890][ T4437] CPU: 1 UID: 0 PID: 4437 Comm: syz.0.306 Not tainted 6.13.0-rc2-syzkaller #0
[   42.668935][ T4437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   42.668945][ T4437] Call Trace:
[   42.668952][ T4437]  <TASK>
[   42.668966][ T4437]  dump_stack_lvl+0xf2/0x150
[   42.668997][ T4437]  dump_stack+0x15/0x1a
[   42.704486][ T4437]  should_fail_ex+0x223/0x230
[   42.709193][ T4437]  should_fail+0xb/0x10
[   42.713369][ T4437]  should_fail_usercopy+0x1a/0x20
[   42.718465][ T4437]  _copy_from_user+0x1e/0xb0
[   42.722840][   T29] audit: type=1326 audit(1733761721.625:1551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4442 comm="syz.1.309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f711795fed9 code=0x7ffc0000
[   42.723058][ T4437]  get_sg_io_hdr+0xbc/0x390
[   42.746521][   T29] audit: type=1326 audit(1733761721.625:1552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4442 comm="syz.1.309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f711795fed9 code=0x7ffc0000
[   42.750958][ T4437]  ? should_fail_ex+0x31/0x230
[   42.750983][ T4437]  ? __rcu_read_unlock+0x4e/0x70
[   42.778988][   T29] audit: type=1326 audit(1733761721.685:1553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4442 comm="syz.1.309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f711795fed9 code=0x7ffc0000
[   42.779091][ T4437]  ? avc_has_perm_noaudit+0x1cc/0x210
[   42.784083][   T29] audit: type=1326 audit(1733761721.685:1554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4442 comm="syz.1.309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f711795fed9 code=0x7ffc0000
[   42.807353][ T4437]  sg_new_write+0xca/0x8e0
[   42.807407][ T4437]  sg_write+0x28e/0x710
[   42.807422][ T4437]  ? _parse_integer_limit+0x167/0x180
[   42.812943][   T29] audit: type=1326 audit(1733761721.685:1555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4442 comm="syz.1.309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f711795fed9 code=0x7ffc0000
[   42.836505][ T4437]  ? __pfx_sg_write+0x10/0x10
[   42.836560][ T4437]  vfs_write+0x281/0x920
[   42.840988][   T29] audit: type=1326 audit(1733761721.685:1556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4442 comm="syz.1.309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f711795fed9 code=0x7ffc0000
[   42.845110][ T4437]  ? __fget_files+0x17c/0x1c0
[   42.850492][   T29] audit: type=1326 audit(1733761721.685:1557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4442 comm="syz.1.309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f711795fed9 code=0x7ffc0000
[   42.873861][ T4437]  ksys_write+0xe8/0x1b0
[   42.873888][ T4437]  __x64_sys_write+0x42/0x50
[   42.878610][   T29] audit: type=1326 audit(1733761721.685:1558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4442 comm="syz.1.309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f711795fed9 code=0x7ffc0000
[   42.878638][   T29] audit: type=1326 audit(1733761721.685:1559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4442 comm="syz.1.309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f711795fed9 code=0x7ffc0000
[   42.882857][ T4437]  x64_sys_call+0x287e/0x2dc0
[   42.995074][ T4437]  do_syscall_64+0xc9/0x1c0
[   42.999588][ T4437]  ? clear_bhb_loop+0x55/0xb0
[   43.004328][ T4437]  ? clear_bhb_loop+0x55/0xb0
[   43.009268][ T4437]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   43.015267][ T4437] RIP: 0033:0x7f33698cfed9
[   43.019749][ T4437] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   43.039584][ T4437] RSP: 002b:00007f3367f47058 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   43.048002][ T4437] RAX: ffffffffffffffda RBX: 00007f3369a95fa0 RCX: 00007f33698cfed9
[   43.055977][ T4437] RDX: 00000000000000a2 RSI: 0000000020000400 RDI: 0000000000000004
[   43.063966][ T4437] RBP: 00007f3367f470a0 R08: 0000000000000000 R09: 0000000000000000
[   43.072160][ T4437] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   43.080339][ T4437] R13: 0000000000000000 R14: 00007f3369a95fa0 R15: 00007ffc1c2e8f78
[   43.089890][ T4437]  </TASK>
[   43.097462][ T4434] 0ªX¹¦À: entered allmulticast mode
[   43.102952][ T4434] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[   43.143361][ T4448] netlink: 'syz.3.311': attribute type 13 has an invalid length.
[   43.182547][ T4452] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0
[   43.192581][ T4451] IPVS: stopping master sync thread 4452 ...
[   43.217884][ T4457] netlink: 8 bytes leftover after parsing attributes in process `syz.3.315'.
[   43.238950][ T4458] FAULT_INJECTION: forcing a failure.
[   43.238950][ T4458] name failslab, interval 1, probability 0, space 0, times 0
[   43.239719][ T4457] netlink: 8 bytes leftover after parsing attributes in process `syz.3.315'.
[   43.251683][ T4458] CPU: 0 UID: 0 PID: 4458 Comm: syz.0.313 Not tainted 6.13.0-rc2-syzkaller #0
[   43.269510][ T4458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   43.280115][ T4458] Call Trace:
[   43.283406][ T4458]  <TASK>
[   43.286336][ T4458]  dump_stack_lvl+0xf2/0x150
[   43.291281][ T4458]  dump_stack+0x15/0x1a
[   43.295547][ T4458]  should_fail_ex+0x223/0x230
[   43.300951][ T4458]  should_failslab+0x8f/0xb0
[   43.305733][ T4458]  kmem_cache_alloc_noprof+0x52/0x320
[   43.311259][ T4458]  ? dst_alloc+0xc0/0x100
[   43.315686][ T4458]  ? __traceiter_kfree+0x2b/0x50
[   43.320625][ T4458]  dst_alloc+0xc0/0x100
[   43.324978][ T4458]  ip_route_output_key_hash_rcu+0xb90/0x12d0
[   43.330978][ T4458]  ip_route_output_flow+0x76/0x120
[   43.336142][ T4458]  udp_sendmsg+0xe5d/0x12f0
[   43.340640][ T4458]  ? __pfx_ip_generic_getfrag+0x10/0x10
[   43.346182][ T4458]  ? __rcu_read_unlock+0x4e/0x70
[   43.351151][ T4458]  ? ip4_datagram_release_cb+0x3f9/0x430
[   43.356967][ T4458]  ? __pfx_udp_sendmsg+0x10/0x10
[   43.361901][ T4458]  inet_sendmsg+0xaf/0xd0
[   43.366239][ T4458]  __sock_sendmsg+0x102/0x180
[   43.370921][ T4458]  ____sys_sendmsg+0x312/0x410
[   43.375737][ T4458]  __sys_sendmmsg+0x227/0x4b0
[   43.380516][ T4458]  __x64_sys_sendmmsg+0x57/0x70
[   43.385676][ T4458]  x64_sys_call+0x29aa/0x2dc0
[   43.390358][ T4458]  do_syscall_64+0xc9/0x1c0
[   43.395003][ T4458]  ? clear_bhb_loop+0x55/0xb0
[   43.399906][ T4458]  ? clear_bhb_loop+0x55/0xb0
[   43.404666][ T4458]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   43.410793][ T4458] RIP: 0033:0x7f33698cfed9
[   43.415435][ T4458] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   43.435043][ T4458] RSP: 002b:00007f3367f47058 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   43.443480][ T4458] RAX: ffffffffffffffda RBX: 00007f3369a95fa0 RCX: 00007f33698cfed9
[   43.451445][ T4458] RDX: 0000000000000001 RSI: 0000000020000780 RDI: 0000000000000006
[   43.459420][ T4458] RBP: 00007f3367f470a0 R08: 0000000000000000 R09: 0000000000000000
[   43.467399][ T4458] R10: 0000000004008804 R11: 0000000000000246 R12: 0000000000000001
[   43.475511][ T4458] R13: 0000000000000000 R14: 00007f3369a95fa0 R15: 00007ffc1c2e8f78
[   43.483481][ T4458]  </TASK>
[   43.488605][ T4464] FAULT_INJECTION: forcing a failure.
[   43.488605][ T4464] name failslab, interval 1, probability 0, space 0, times 0
[   43.501707][ T4464] CPU: 1 UID: 0 PID: 4464 Comm: syz.4.318 Not tainted 6.13.0-rc2-syzkaller #0
[   43.510602][ T4464] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   43.520657][ T4464] Call Trace:
[   43.523944][ T4464]  <TASK>
[   43.526870][ T4464]  dump_stack_lvl+0xf2/0x150
[   43.531506][ T4464]  dump_stack+0x15/0x1a
[   43.535793][ T4464]  should_fail_ex+0x223/0x230
[   43.540510][ T4464]  should_failslab+0x8f/0xb0
[   43.545142][ T4464]  kmem_cache_alloc_noprof+0x52/0x320
[   43.550614][ T4464]  ? audit_log_start+0x34c/0x6b0
[   43.555572][ T4464]  ? audit_log_end+0x1d0/0x1e0
[   43.560358][ T4464]  audit_log_start+0x34c/0x6b0
[   43.565185][ T4464]  ? kmem_cache_free+0xdc/0x2d0
[   43.570203][ T4464]  audit_seccomp+0x4b/0x130
[   43.574739][ T4464]  __seccomp_filter+0x6fa/0x1180
[   43.579787][ T4464]  ? __se_sys_mremap+0xbfd/0xf10
[   43.584963][ T4464]  __secure_computing+0x9f/0x1c0
[   43.589931][ T4464]  syscall_trace_enter+0xd1/0x1f0
[   43.594969][ T4464]  ? fpregs_assert_state_consistent+0x83/0xa0
[   43.601165][ T4464]  do_syscall_64+0xaa/0x1c0
[   43.605770][ T4464]  ? clear_bhb_loop+0x55/0xb0
[   43.610678][ T4464]  ? clear_bhb_loop+0x55/0xb0
[   43.615480][ T4464]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   43.621398][ T4464] RIP: 0033:0x7f03eebee8ec
[   43.625881][ T4464] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   43.645651][ T4464] RSP: 002b:00007f03ed267050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   43.654113][ T4464] RAX: ffffffffffffffda RBX: 00007f03eedb5fa0 RCX: 00007f03eebee8ec
[   43.662079][ T4464] RDX: 000000000000000f RSI: 00007f03ed2670b0 RDI: 0000000000000005
[   43.670105][ T4464] RBP: 00007f03ed2670a0 R08: 0000000000000000 R09: 0000000000000000
[   43.678116][ T4464] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   43.686107][ T4464] R13: 0000000000000000 R14: 00007f03eedb5fa0 R15: 00007ffefbaee638
[   43.694130][ T4464]  </TASK>
[   43.714277][ T4468] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0
[   43.724168][ T4462] IPVS: stopping master sync thread 4468 ...
[   43.787570][ T4478] loop4: detected capacity change from 0 to 164
[   43.796971][ T4478] Unable to read rock-ridge attributes
[   43.803647][ T4478] Unable to read rock-ridge attributes
[   43.886584][ T4486] pimreg: entered allmulticast mode
[   43.935915][ T4491] loop4: detected capacity change from 0 to 512
[   43.968423][ T4491] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.992150][ T4491] ext4 filesystem being mounted at /63/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   44.004835][ T4491] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.084683][ T4505] loop1: detected capacity change from 0 to 164
[   44.118410][ T4508] FAULT_INJECTION: forcing a failure.
[   44.118410][ T4508] name failslab, interval 1, probability 0, space 0, times 0
[   44.131455][ T4508] CPU: 1 UID: 0 PID: 4508 Comm: syz.4.332 Not tainted 6.13.0-rc2-syzkaller #0
[   44.131557][ T4505] Unable to read rock-ridge attributes
[   44.140352][ T4508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   44.140367][ T4508] Call Trace:
[   44.140379][ T4508]  <TASK>
[   44.140387][ T4508]  dump_stack_lvl+0xf2/0x150
[   44.167190][ T4508]  dump_stack+0x15/0x1a
[   44.171571][ T4508]  should_fail_ex+0x223/0x230
[   44.177000][ T4508]  ? p9_client_stat+0x5b/0x220
[   44.182191][ T4508]  should_failslab+0x8f/0xb0
[   44.186921][ T4508]  __kmalloc_cache_noprof+0x4e/0x320
[   44.192287][ T4508]  p9_client_stat+0x5b/0x220
[   44.197011][ T4508]  v9fs_vfs_getattr+0x14e/0x270
[   44.201906][ T4508]  ? __pfx_v9fs_vfs_getattr+0x10/0x10
[   44.207302][ T4508]  vfs_statx_path+0x171/0x2d0
[   44.212040][ T4508]  __se_sys_newstat+0xb1/0x320
[   44.216869][ T4508]  ? fput+0x1c4/0x200
[   44.220858][ T4508]  ? ksys_write+0x176/0x1b0
[   44.225383][ T4508]  __x64_sys_newstat+0x31/0x40
[   44.230161][ T4508]  x64_sys_call+0x6eb/0x2dc0
[   44.234815][ T4508]  do_syscall_64+0xc9/0x1c0
[   44.239351][ T4508]  ? clear_bhb_loop+0x55/0xb0
[   44.244035][ T4508]  ? clear_bhb_loop+0x55/0xb0
[   44.248771][ T4508]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   44.254733][ T4508] RIP: 0033:0x7f03eebefed9
[   44.259156][ T4508] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   44.278952][ T4508] RSP: 002b:00007f03ed267058 EFLAGS: 00000246 ORIG_RAX: 0000000000000004
[   44.287373][ T4508] RAX: ffffffffffffffda RBX: 00007f03eedb5fa0 RCX: 00007f03eebefed9
[   44.295542][ T4508] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000040
[   44.303662][ T4508] RBP: 00007f03ed2670a0 R08: 0000000000000000 R09: 0000000000000000
[   44.311680][ T4508] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   44.319923][ T4508] R13: 0000000000000000 R14: 00007f03eedb5fa0 R15: 00007ffefbaee638
[   44.327987][ T4508]  </TASK>
[   44.368404][ T4505] Unable to read rock-ridge attributes
[   44.389166][ T4507] loop2: detected capacity change from 0 to 2048
[   44.428415][ T4507] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   44.520257][ T4520] FAULT_INJECTION: forcing a failure.
[   44.520257][ T4520] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   44.533473][ T4520] CPU: 0 UID: 0 PID: 4520 Comm: syz.4.334 Not tainted 6.13.0-rc2-syzkaller #0
[   44.542372][ T4520] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   44.552456][ T4520] Call Trace:
[   44.555740][ T4520]  <TASK>
[   44.558664][ T4520]  dump_stack_lvl+0xf2/0x150
[   44.563261][ T4520]  dump_stack+0x15/0x1a
[   44.567516][ T4520]  should_fail_ex+0x223/0x230
[   44.572194][ T4520]  should_fail+0xb/0x10
[   44.576408][ T4520]  should_fail_usercopy+0x1a/0x20
[   44.581617][ T4520]  _copy_from_user+0x1e/0xb0
[   44.586232][ T4520]  autofs_dev_ioctl+0xd6/0x660
[   44.591298][ T4520]  ? __pfx_autofs_dev_ioctl+0x10/0x10
[   44.596754][ T4520]  __se_sys_ioctl+0xc9/0x140
[   44.601345][ T4520]  __x64_sys_ioctl+0x43/0x50
[   44.606005][ T4520]  x64_sys_call+0x1690/0x2dc0
[   44.610735][ T4520]  do_syscall_64+0xc9/0x1c0
[   44.615274][ T4520]  ? clear_bhb_loop+0x55/0xb0
[   44.620011][ T4520]  ? clear_bhb_loop+0x55/0xb0
[   44.624686][ T4520]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   44.630618][ T4520] RIP: 0033:0x7f03eebefed9
[   44.635308][ T4520] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   44.654924][ T4520] RSP: 002b:00007f03ed267058 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   44.663334][ T4520] RAX: ffffffffffffffda RBX: 00007f03eedb5fa0 RCX: 00007f03eebefed9
[   44.671392][ T4520] RDX: 0000000020000240 RSI: 00000000c018937e RDI: 0000000000000003
[   44.679363][ T4520] RBP: 00007f03ed2670a0 R08: 0000000000000000 R09: 0000000000000000
[   44.687384][ T4520] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   44.695481][ T4520] R13: 0000000000000000 R14: 00007f03eedb5fa0 R15: 00007ffefbaee638
[   44.703453][ T4520]  </TASK>
[   44.739039][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.750366][ T4524] loop3: detected capacity change from 0 to 512
[   44.750957][ T4525] __nla_validate_parse: 3 callbacks suppressed
[   44.751026][ T4525] netlink: 132 bytes leftover after parsing attributes in process `syz.4.339'.
[   44.766829][ T4521] loop1: detected capacity change from 0 to 164
[   44.780644][ T4521] Unable to read rock-ridge attributes
[   44.798385][ T4524] EXT4-fs error (device loop3): ext4_orphan_get:1415: comm syz.3.338: bad orphan inode 15
[   44.800961][ T4521] Unable to read rock-ridge attributes
[   44.808916][ T4527] netlink: 'syz.0.337': attribute type 10 has an invalid length.
[   44.824147][ T4524] ext4_test_bit(bit=14, block=5) = 0
[   44.830354][ T4527] veth0_macvtap: entered promiscuous mode
[   44.837084][ T4524] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   44.859679][ T4527] team0: Device macvtap0 failed to register rx_handler
[   44.872245][ T4527] veth0_macvtap: left promiscuous mode
[   44.899162][ T3294] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.919070][ T4537] loop4: detected capacity change from 0 to 512
[   44.948235][ T4537] EXT4-fs (loop4): orphan cleanup on readonly fs
[   44.959955][ T4541] IPVS: stopping master sync thread 4544 ...
[   44.969107][ T4544] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0
[   44.980470][ T4537] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.343: bg 0: block 248: padding at end of block bitmap is not set
[   44.996340][ T4537] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.343: Failed to acquire dquot type 1
[   45.023684][ T4537] EXT4-fs (loop4): 1 truncate cleaned up
[   45.030226][ T4537] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   45.063750][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.117004][ T4555] netlink: 4 bytes leftover after parsing attributes in process `syz.1.350'.
[   45.123650][ T4553] loop3: detected capacity change from 0 to 4096
[   45.141563][ T4553] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.173932][ T4564] wireguard0: entered promiscuous mode
[   45.179488][ T4564] wireguard0: entered allmulticast mode
[   45.232306][ T4578] netlink: 8 bytes leftover after parsing attributes in process `syz.1.359'.
[   45.241293][ T4576] netlink: 'syz.0.356': attribute type 10 has an invalid length.
[   45.250476][ T4576] veth0_macvtap: entered promiscuous mode
[   45.257371][ T4576] team0: Device macvtap0 failed to register rx_handler
[   45.267901][ T4576] veth0_macvtap: left promiscuous mode
[   45.362348][ T4587] loop1: detected capacity change from 0 to 2048
[   45.404832][ T4587] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   45.438952][ T3294] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.475691][ T3295] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.525361][ T4603] FAULT_INJECTION: forcing a failure.
[   45.525361][ T4603] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   45.538695][ T4603] CPU: 0 UID: 0 PID: 4603 Comm: syz.0.369 Not tainted 6.13.0-rc2-syzkaller #0
[   45.547685][ T4603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   45.557778][ T4603] Call Trace:
[   45.561049][ T4603]  <TASK>
[   45.564078][ T4603]  dump_stack_lvl+0xf2/0x150
[   45.568798][ T4603]  dump_stack+0x15/0x1a
[   45.573007][ T4603]  should_fail_ex+0x223/0x230
[   45.577682][ T4603]  should_fail+0xb/0x10
[   45.581831][ T4603]  should_fail_usercopy+0x1a/0x20
[   45.586878][ T4603]  _copy_from_user+0x1e/0xb0
[   45.591514][ T4603]  restore_sigcontext+0x64/0x220
[   45.596461][ T4603]  __do_sys_rt_sigreturn+0xfd/0x160
[   45.601738][ T4603]  x64_sys_call+0x2982/0x2dc0
[   45.606410][ T4603]  do_syscall_64+0xc9/0x1c0
[   45.611081][ T4603]  ? clear_bhb_loop+0x55/0xb0
[   45.615809][ T4603]  ? clear_bhb_loop+0x55/0xb0
[   45.620481][ T4603]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   45.626428][ T4603] RIP: 0033:0x7f336986c0e9
[   45.630848][ T4603] Code: 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 04 25
[   45.650839][ T4603] RSP: 002b:00007f3367f46ac0 EFLAGS: 00000202 ORIG_RAX: 000000000000000f
[   45.659262][ T4603] RAX: ffffffffffffffda RBX: 00007f3369a95fa0 RCX: 00007f336986c0e9
[   45.667234][ T4603] RDX: 00007f3367f46ac0 RSI: 00007f3367f46bf0 RDI: 0000000000000021
[   45.675195][ T4603] RBP: 00007f3367f470a0 R08: 0000000000000000 R09: 0000000000000000
[   45.683192][ T4603] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000001
[   45.691170][ T4603] R13: 0000000000000000 R14: 00007f3369a95fa0 R15: 00007ffc1c2e8f78
[   45.699151][ T4603]  </TASK>
[   45.786304][ T4613] netlink: 8 bytes leftover after parsing attributes in process `syz.0.373'.
[   45.796079][ T4611] wireguard0: entered promiscuous mode
[   45.801718][ T4611] wireguard0: entered allmulticast mode
[   45.876521][ T4620] loop2: detected capacity change from 0 to 4096
[   45.898536][ T4620] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.985980][ T4633] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0
[   45.991292][ T4630] IPVS: stopping master sync thread 4633 ...
[   46.008613][ T4632] netlink: 8 bytes leftover after parsing attributes in process `syz.4.378'.
[   46.025899][ T4620] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.163839][ T4653] netlink: 8 bytes leftover after parsing attributes in process `syz.3.387'.
[   46.168252][ T4651] loop1: detected capacity change from 0 to 2048
[   46.175684][ T4655] loop4: detected capacity change from 0 to 512
[   46.220124][ T4658] netlink: 332 bytes leftover after parsing attributes in process `syz.3.389'.
[   46.234235][ T4651] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   46.267837][ T4655] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.289125][ T4664] netlink: 8 bytes leftover after parsing attributes in process `syz.3.390'.
[   46.310988][ T4655] ext4 filesystem being mounted at /73/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   46.341568][ T4655] netlink: 'syz.4.388': attribute type 10 has an invalid length.
[   46.367363][ T4655] veth0_macvtap: entered promiscuous mode
[   46.376951][ T4655] team0: Device macvtap0 failed to register rx_handler
[   46.384102][ T4655] veth0_macvtap: left promiscuous mode
[   46.434863][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.460850][ T3295] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   46.488643][ T3295] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.564769][ T4692] netlink: 'syz.1.402': attribute type 13 has an invalid length.
[   46.572647][ T4692] netlink: 28 bytes leftover after parsing attributes in process `syz.1.402'.
[   46.625370][ T4698] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[   46.638063][ T4690] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.401' sets config #0
[   46.659699][ T4702] loop1: detected capacity change from 0 to 512
[   46.678954][ T4702] EXT4-fs (loop1): orphan cleanup on readonly fs
[   46.686037][ T4702] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.405: bg 0: block 248: padding at end of block bitmap is not set
[   46.700954][ T4702] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.405: Failed to acquire dquot type 1
[   46.713356][ T4702] EXT4-fs (loop1): 1 truncate cleaned up
[   46.721171][ T4702] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   46.739709][ T4705] netlink: 8 bytes leftover after parsing attributes in process `syz.4.406'.
[   46.754000][ T4702] syz.1.405 (4702) used greatest stack depth: 9192 bytes left
[   46.763675][ T3295] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.783624][ T4709] loop1: detected capacity change from 0 to 512
[   46.794937][ T4709] EXT4-fs error (device loop1): ext4_orphan_get:1415: comm syz.1.408: bad orphan inode 15
[   46.806904][ T4709] ext4_test_bit(bit=14, block=5) = 0
[   46.810902][ T4707] loop4: detected capacity change from 0 to 4096
[   46.812446][ T4709] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   46.842623][ T3295] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.843600][ T4707] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.929216][ T4707] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.930481][ T4718] loop2: detected capacity change from 0 to 164
[   46.946306][ T4718] Unable to read rock-ridge attributes
[   46.958107][ T4718] Unable to read rock-ridge attributes
[   47.033050][ T4730] loop2: detected capacity change from 0 to 164
[   47.037961][ T4732] loop1: detected capacity change from 0 to 164
[   47.046855][ T4730] Unable to read rock-ridge attributes
[   47.050917][ T4732] Unable to read rock-ridge attributes
[   47.057704][ T4730] Unable to read rock-ridge attributes
[   47.067884][ T4732] Unable to read rock-ridge attributes
[   47.749643][    C0] vcan0: j1939_tp_rxtimer: 0xffff8881184bd400: rx timeout, send abort
[   47.757945][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff8881184bd400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   47.853254][ T4751] loop3: detected capacity change from 0 to 4096
[   47.861826][ T4753] loop4: detected capacity change from 0 to 2048
[   47.869855][ T4753] EXT4-fs (loop4): couldn't mount as ext3 due to feature incompatibilities
[   47.886661][ T4751] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.973204][ T4751] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.029852][   T29] kauditd_printk_skb: 442 callbacks suppressed
[   48.029865][   T29] audit: type=1326 audit(1733761726.935:1996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4762 comm="syz.3.428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70c0c9fed9 code=0x7ffc0000
[   48.059735][   T29] audit: type=1326 audit(1733761726.935:1997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4762 comm="syz.3.428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70c0c9fed9 code=0x7ffc0000
[   48.085778][   T29] audit: type=1326 audit(1733761726.935:1998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4762 comm="syz.3.428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f70c0c9fed9 code=0x7ffc0000
[   48.109291][   T29] audit: type=1326 audit(1733761726.935:1999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4762 comm="syz.3.428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70c0c9fed9 code=0x7ffc0000
[   48.132785][   T29] audit: type=1326 audit(1733761726.935:2000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4762 comm="syz.3.428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f70c0c9fed9 code=0x7ffc0000
[   48.144547][ T4768] loop1: detected capacity change from 0 to 2048
[   48.156286][   T29] audit: type=1326 audit(1733761726.935:2001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4762 comm="syz.3.428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70c0c9fed9 code=0x7ffc0000
[   48.156314][   T29] audit: type=1326 audit(1733761726.935:2002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4762 comm="syz.3.428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f70c0c9fed9 code=0x7ffc0000
[   48.156336][   T29] audit: type=1326 audit(1733761726.935:2003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4762 comm="syz.3.428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70c0c9fed9 code=0x7ffc0000
[   48.233128][   T29] audit: type=1326 audit(1733761726.935:2004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4762 comm="syz.3.428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=40 compat=0 ip=0x7f70c0c9fed9 code=0x7ffc0000
[   48.256431][   T29] audit: type=1326 audit(1733761726.975:2005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4762 comm="syz.3.428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70c0c9fed9 code=0x7ffc0000
[   48.304819][ T4768] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   48.332987][ T4778] IPVS: Error connecting to the multicast addr
[   48.464655][ T4792] netlink: 'syz.3.440': attribute type 13 has an invalid length.
[   48.478438][ T3295] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   48.501369][ T3295] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.621658][ T4811] loop3: detected capacity change from 0 to 2048
[   48.819147][ T4831] loop3: detected capacity change from 0 to 512
[   48.827536][ T4831] EXT4-fs (loop3): orphan cleanup on readonly fs
[   48.834482][ T4831] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.454: bg 0: block 248: padding at end of block bitmap is not set
[   48.850269][ T4831] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.454: Failed to acquire dquot type 1
[   48.862298][ T4831] EXT4-fs (loop3): 1 truncate cleaned up
[   48.869595][ T4831] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   48.902870][ T3294] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.953651][ T4838] loop2: detected capacity change from 0 to 128
[   48.960576][ T4838] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   48.974211][ T4838] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   49.110881][ T4846] loop3: detected capacity change from 0 to 512
[   49.137040][ T4846] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   49.150546][ T4846] ext4 filesystem being mounted at /93/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   49.171319][ T4846] veth0_vlan: entered allmulticast mode
[   49.190820][    C1] hrtimer: interrupt took 47347 ns
[   49.286213][ T4846] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[   49.294874][ T4846] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[   49.316267][ T3294] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.358108][ T4868] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[   49.619601][ T4899] loop3: detected capacity change from 0 to 164
[   49.629033][ T4899] Unable to read rock-ridge attributes
[   49.641181][ T4899] Unable to read rock-ridge attributes
[   49.872965][ T4920] __nla_validate_parse: 17 callbacks suppressed
[   49.872981][ T4920] netlink: 8 bytes leftover after parsing attributes in process `syz.1.490'.
[   49.906212][ T4922] loop1: detected capacity change from 0 to 128
[   49.921769][ T4922] ext4 filesystem being mounted at /109/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   49.959123][ T4928] netlink: 8 bytes leftover after parsing attributes in process `syz.3.493'.
[   49.994640][ T4930] loop3: detected capacity change from 0 to 2048
[   50.042247][ T4935] loop3: detected capacity change from 0 to 512
[   50.051422][ T4935] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   50.062577][ T4935] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2863: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   50.076617][ T4935] EXT4-fs (loop3): 1 truncate cleaned up
[   50.083251][ T4935] FAULT_INJECTION: forcing a failure.
[   50.083251][ T4935] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   50.096617][ T4935] CPU: 0 UID: 0 PID: 4935 Comm: syz.3.496 Not tainted 6.13.0-rc2-syzkaller #0
[   50.105508][ T4935] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   50.115585][ T4935] Call Trace:
[   50.118861][ T4935]  <TASK>
[   50.121875][ T4935]  dump_stack_lvl+0xf2/0x150
[   50.126552][ T4935]  dump_stack+0x15/0x1a
[   50.130769][ T4935]  should_fail_ex+0x223/0x230
[   50.135480][ T4935]  should_fail+0xb/0x10
[   50.139629][ T4935]  should_fail_usercopy+0x1a/0x20
[   50.144789][ T4935]  _copy_from_user+0x1e/0xb0
[   50.149428][ T4935]  __se_sys_mount+0x119/0x2d0
[   50.154107][ T4935]  ? ksys_write+0x176/0x1b0
[   50.158714][ T4935]  __x64_sys_mount+0x67/0x80
[   50.163435][ T4935]  x64_sys_call+0x2c84/0x2dc0
[   50.168152][ T4935]  do_syscall_64+0xc9/0x1c0
[   50.172698][ T4935]  ? clear_bhb_loop+0x55/0xb0
[   50.177399][ T4935]  ? clear_bhb_loop+0x55/0xb0
[   50.182272][ T4935]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   50.188356][ T4935] RIP: 0033:0x7f70c0c9fed9
[   50.192817][ T4935] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   50.212598][ T4935] RSP: 002b:00007f70bf317058 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   50.221119][ T4935] RAX: ffffffffffffffda RBX: 00007f70c0e65fa0 RCX: 00007f70c0c9fed9
[   50.229516][ T4935] RDX: 00000000200004c0 RSI: 0000000020000000 RDI: 0000000000000000
[   50.237481][ T4935] RBP: 00007f70bf3170a0 R08: 0000000020000080 R09: 0000000000000000
[   50.245649][ T4935] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001
[   50.253644][ T4935] R13: 0000000000000000 R14: 00007f70c0e65fa0 R15: 00007ffe543656d8
[   50.261653][ T4935]  </TASK>
[   50.289627][ T4941] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[   50.338630][ T4946] IPVS: Error connecting to the multicast addr
[   50.371728][ T4954] loop3: detected capacity change from 0 to 512
[   50.399859][ T4954] ext4 filesystem being mounted at /106/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   50.399890][ T4948] netlink: 12 bytes leftover after parsing attributes in process `syz.4.504'.
[   50.399921][ T4948] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   50.422820][ T4954] netlink: 'syz.3.501': attribute type 10 has an invalid length.
[   50.426821][ T4948] batman_adv: batadv0: Removing interface: batadv_slave_0
[   50.453516][ T4948] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   50.453539][ T4948] batman_adv: batadv0: Removing interface: batadv_slave_1
[   50.461765][ T4954] veth0_macvtap: entered promiscuous mode
[   50.475160][ T4965] netlink: 8 bytes leftover after parsing attributes in process `syz.2.509'.
[   50.489997][ T4954] team0: Device macvtap0 failed to register rx_handler
[   50.505127][ T4954] veth0_macvtap: left promiscuous mode
[   50.506565][ T4968] ALSA: seq fatal error: cannot create timer (-22)
[   50.519575][ T4960] loop1: detected capacity change from 0 to 4096
[   50.541784][ T4962] SELinux: syz.4.504 (4962) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   50.630819][ T4980] loop4: detected capacity change from 0 to 4096
[   50.641514][ T4980] EXT4-fs: Ignoring removed nomblk_io_submit option
[   50.652225][ T4980] EXT4-fs (loop4): can't mount with commit=9, fs mounted w/o journal
[   50.729594][ T4991] loop1: detected capacity change from 0 to 512
[   50.746913][ T4993] netlink: 332 bytes leftover after parsing attributes in process `syz.4.518'.
[   50.757284][ T4991] ext4 filesystem being mounted at /115/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   50.777401][ T4991] netlink: 'syz.1.516': attribute type 10 has an invalid length.
[   50.791280][ T4991] veth0_macvtap: entered promiscuous mode
[   50.798209][ T4991] team0: Device macvtap0 failed to register rx_handler
[   50.801545][ T4999] netlink: 8 bytes leftover after parsing attributes in process `syz.4.520'.
[   50.814218][ T4991] veth0_macvtap: left promiscuous mode
[   50.852574][ T5001] loop4: detected capacity change from 0 to 512
[   50.860801][ T5001] EXT4-fs (loop4): orphan cleanup on readonly fs
[   50.865027][ T5004] loop1: detected capacity change from 0 to 164
[   50.868692][ T5001] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.522: bg 0: block 248: padding at end of block bitmap is not set
[   50.889927][ T5001] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.522: Failed to acquire dquot type 1
[   50.901809][ T5004] Unable to read rock-ridge attributes
[   50.902133][ T5001] EXT4-fs (loop4): 1 truncate cleaned up
[   50.925060][ T5004] Unable to read rock-ridge attributes
[   51.003276][ T5014] loop1: detected capacity change from 0 to 2048
[   51.083108][ T5026] netlink: 8 bytes leftover after parsing attributes in process `syz.4.532'.
[   51.094641][ T5027] IPVS: stopping master sync thread 5028 ...
[   51.094972][ T5028] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0
[   51.366761][ T5055] netlink: 'syz.1.545': attribute type 13 has an invalid length.
[   51.378379][ T5055] gretap0: refused to change device tx_queue_len
[   51.386558][ T5055] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   51.418038][ T5057] wireguard0: entered promiscuous mode
[   51.423560][ T5057] wireguard0: entered allmulticast mode
[   51.528035][ T5080] loop2: detected capacity change from 0 to 2048
[   51.619297][ T5093] loop2: detected capacity change from 0 to 512
[   51.647710][ T5093] ext4 filesystem being mounted at /105/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   51.661864][ T5093] netlink: 'syz.2.561': attribute type 10 has an invalid length.
[   51.670080][ T5093] veth0_macvtap: entered promiscuous mode
[   51.677794][ T5093] team0: Device macvtap0 failed to register rx_handler
[   51.685075][ T5093] veth0_macvtap: left promiscuous mode
[   51.715162][ T5101] netlink: 'syz.2.562': attribute type 13 has an invalid length.
[   51.724718][ T5101] gretap0: refused to change device tx_queue_len
[   51.731965][ T5101] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   52.010236][ T5121] loop3: detected capacity change from 0 to 512
[   52.027315][ T5121] ext4 filesystem being mounted at /114/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   52.041611][ T5121] netlink: 'syz.3.568': attribute type 10 has an invalid length.
[   52.049890][ T5121] veth0_macvtap: entered promiscuous mode
[   52.057281][ T5121] team0: Device macvtap0 failed to register rx_handler
[   52.064403][ T5121] veth0_macvtap: left promiscuous mode
[   52.201291][ T5136] netlink: 'syz.4.573': attribute type 13 has an invalid length.
[   52.211204][ T5136] gretap0: refused to change device tx_queue_len
[   52.218040][ T5136] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   52.258559][ T5139] netlink: 332 bytes leftover after parsing attributes in process `syz.4.574'.
[   52.352106][ T5145] loop1: detected capacity change from 0 to 8192
[   52.446064][ T5160] netlink: 'syz.0.585': attribute type 13 has an invalid length.
[   52.461182][ T5160] gretap0: refused to change device tx_queue_len
[   52.471158][ T5160] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   52.526173][ T5166] netlink: 8 bytes leftover after parsing attributes in process `syz.4.586'.
[   52.551757][ T5168] netlink: 332 bytes leftover after parsing attributes in process `syz.0.587'.
[   52.837527][ T5188] loop2: detected capacity change from 0 to 164
[   52.844533][ T5188] Unable to read rock-ridge attributes
[   52.854515][ T5188] Unable to read rock-ridge attributes
[   52.879817][ T5192] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0
[   53.038316][   T29] kauditd_printk_skb: 312 callbacks suppressed
[   53.038373][   T29] audit: type=1326 audit(1733761731.945:2314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5202 comm="syz.3.602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70c0c9fed9 code=0x7ffc0000
[   53.073610][   T29] audit: type=1326 audit(1733761731.975:2315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5202 comm="syz.3.602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=125 compat=0 ip=0x7f70c0c9fed9 code=0x7ffc0000
[   53.098876][   T29] audit: type=1326 audit(1733761731.975:2316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5202 comm="syz.3.602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70c0c9fed9 code=0x7ffc0000
[   53.122334][   T29] audit: type=1326 audit(1733761731.975:2317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5202 comm="syz.3.602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70c0c9fed9 code=0x7ffc0000
[   53.183587][ T5208] loop2: detected capacity change from 0 to 512
[   53.218380][ T5208] ext4 filesystem being mounted at /118/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   53.273925][ T5208] netlink: 'syz.2.603': attribute type 10 has an invalid length.
[   53.285945][ T5208] veth0_macvtap: entered promiscuous mode
[   53.292877][ T5208] team0: Device macvtap0 failed to register rx_handler
[   53.300293][ T5208] veth0_macvtap: left promiscuous mode
[   53.352366][ T5217] wireguard0: entered promiscuous mode
[   53.358010][ T5217] wireguard0: entered allmulticast mode
[   53.451879][ T5227] loop3: detected capacity change from 0 to 4096
[   53.467955][ T5234] loop1: detected capacity change from 0 to 164
[   53.487526][ T5239] IPVS: stopping master sync thread 5240 ...
[   53.493888][ T5240] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0
[   53.494674][ T5237] netlink: 'syz.2.614': attribute type 13 has an invalid length.
[   53.512069][ T5234] Unable to read rock-ridge attributes
[   53.518877][ T5237] gretap0: refused to change device tx_queue_len
[   53.519834][ T5234] Unable to read rock-ridge attributes
[   53.540330][ T5237] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   53.603671][ T5243] gretap0: refused to change device tx_queue_len
[   53.613739][ T5243] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   53.799245][ T5276] gretap0: refused to change device tx_queue_len
[   53.810885][ T5276] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   53.885642][ T5285] IPVS: stopping master sync thread 5192 ...
[   53.907770][ T5283] loop1: detected capacity change from 0 to 2048
[   53.935517][   T29] audit: type=1400 audit(1733761732.835:2318): avc:  denied  { write } for  pid=5290 comm="syz.0.637" path="socket:[10392]" dev="sockfs" ino=10392 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   54.019312][ T5300] loop2: detected capacity change from 0 to 164
[   54.034698][ T5300] Unable to read rock-ridge attributes
[   54.079202][ T5303] loop4: detected capacity change from 0 to 2048
[   54.135064][ T5315] gretap0: refused to change device tx_queue_len
[   54.162764][ T5315] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   54.209013][ T3295] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   54.245162][ T3298] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   54.265064][ T5328] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0
[   54.275224][ T5325] IPVS: stopping master sync thread 5328 ...
[   54.326817][ T5334] loop2: detected capacity change from 0 to 164
[   54.333300][ T5332] loop3: detected capacity change from 0 to 164
[   54.343431][ T5334] Unable to read rock-ridge attributes
[   54.349062][ T5332] Unable to read rock-ridge attributes
[   54.355993][ T5332] Unable to read rock-ridge attributes
[   54.480184][   T29] audit: type=1326 audit(1733761733.385:2319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5344 comm="syz.2.659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f908568fed9 code=0x7ffc0000
[   54.503895][   T29] audit: type=1326 audit(1733761733.385:2320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5344 comm="syz.2.659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f908568fed9 code=0x7ffc0000
[   54.518868][ T5352] gretap0: refused to change device tx_queue_len
[   54.527320][   T29] audit: type=1326 audit(1733761733.385:2321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5344 comm="syz.2.659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=125 compat=0 ip=0x7f908568fed9 code=0x7ffc0000
[   54.557100][   T29] audit: type=1326 audit(1733761733.385:2322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5344 comm="syz.2.659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f908568fed9 code=0x7ffc0000
[   54.561672][ T5352] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   54.581433][   T29] audit: type=1326 audit(1733761733.385:2323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5344 comm="syz.2.659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f908568fed9 code=0x7ffc0000
[   54.639705][ T5358] IPVS: stopping master sync thread 5359 ...
[   54.640219][ T5359] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0
[   54.673043][ T5360] loop1: detected capacity change from 0 to 2048
[   54.757556][ T5370] loop4: detected capacity change from 0 to 164
[   54.774891][ T5370] Unable to read rock-ridge attributes
[   54.832082][ T5373] loop2: detected capacity change from 0 to 2048
[   54.894356][ T5381] __nla_validate_parse: 10 callbacks suppressed
[   54.894373][ T5381] netlink: 8 bytes leftover after parsing attributes in process `syz.4.670'.
[   54.970977][ T5387] veth0_macvtap: entered promiscuous mode
[   54.985350][ T5387] team0: Device macvtap0 failed to register rx_handler
[   54.995487][ T5387] veth0_macvtap: left promiscuous mode
[   55.024837][ T5394] netlink: 8 bytes leftover after parsing attributes in process `syz.0.676'.
[   55.132945][ T5403] loop4: detected capacity change from 0 to 2048
[   55.316093][ T3295] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   55.333189][ T5428] loop3: detected capacity change from 0 to 164
[   55.336365][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[   55.379557][ T5428] Unable to read rock-ridge attributes
[   55.566056][ T3306] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   55.706914][ T5470] wireguard0: entered promiscuous mode
[   55.712441][ T5470] wireguard0: entered allmulticast mode
[   55.784205][ T5477] loop1: detected capacity change from 0 to 512
[   55.811827][ T5477] ext4 filesystem being mounted at /156/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.826745][ T5477] validate_nla: 5 callbacks suppressed
[   55.826835][ T5477] netlink: 'syz.1.709': attribute type 10 has an invalid length.
[   55.840587][ T5477] veth0_macvtap: entered promiscuous mode
[   55.848980][ T5477] team0: Device macvtap0 failed to register rx_handler
[   55.856297][ T5477] veth0_macvtap: left promiscuous mode
[   55.906806][ T5483] loop1: detected capacity change from 0 to 2048
[   55.948398][ T5489] netlink: 8 bytes leftover after parsing attributes in process `syz.2.714'.
[   56.055515][ T5502] wireguard0: entered promiscuous mode
[   56.061397][ T5502] wireguard0: entered allmulticast mode
[   56.085818][ T5506] FAULT_INJECTION: forcing a failure.
[   56.085818][ T5506] name failslab, interval 1, probability 0, space 0, times 0
[   56.099048][ T5506] CPU: 0 UID: 0 PID: 5506 Comm: syz.0.721 Not tainted 6.13.0-rc2-syzkaller #0
[   56.108078][ T5506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   56.118229][ T5506] Call Trace:
[   56.121498][ T5506]  <TASK>
[   56.124564][ T5506]  dump_stack_lvl+0xf2/0x150
[   56.129196][ T5506]  dump_stack+0x15/0x1a
[   56.133365][ T5506]  should_fail_ex+0x223/0x230
[   56.138164][ T5506]  ? audit_log_d_path+0x96/0x250
[   56.143088][ T5506]  should_failslab+0x8f/0xb0
[   56.147736][ T5506]  __kmalloc_cache_noprof+0x4e/0x320
[   56.153084][ T5506]  audit_log_d_path+0x96/0x250
[   56.157872][ T5506]  ? __rcu_read_unlock+0x4e/0x70
[   56.162877][ T5506]  audit_log_d_path_exe+0x42/0x70
[   56.167965][ T5506]  audit_log_task+0x192/0x1c0
[   56.172637][ T5506]  audit_seccomp+0x68/0x130
[   56.177686][ T5506]  __seccomp_filter+0x6fa/0x1180
[   56.182741][ T5506]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   56.188464][ T5506]  ? vfs_write+0x596/0x920
[   56.192895][ T5506]  ? putname+0xcf/0xf0
[   56.196990][ T5506]  __secure_computing+0x9f/0x1c0
[   56.201955][ T5506]  syscall_trace_enter+0xd1/0x1f0
[   56.207067][ T5506]  ? fpregs_assert_state_consistent+0x83/0xa0
[   56.213334][ T5506]  do_syscall_64+0xaa/0x1c0
[   56.217970][ T5506]  ? clear_bhb_loop+0x55/0xb0
[   56.222700][ T5506]  ? clear_bhb_loop+0x55/0xb0
[   56.227409][ T5506]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.233434][ T5506] RIP: 0033:0x7f33698cfed9
[   56.237836][ T5506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.257527][ T5506] RSP: 002b:00007f3367f47058 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[   56.265950][ T5506] RAX: ffffffffffffffda RBX: 00007f3369a95fa0 RCX: 00007f33698cfed9
[   56.273937][ T5506] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[   56.281898][ T5506] RBP: 00007f3367f470a0 R08: 0000000000000000 R09: 0000000000000000
[   56.290058][ T5506] R10: 0000000000000180 R11: 0000000000000246 R12: 0000000000000001
[   56.298263][ T5506] R13: 0000000000000000 R14: 00007f3369a95fa0 R15: 00007ffc1c2e8f78
[   56.306345][ T5506]  </TASK>
[   56.431946][ T5526] FAULT_INJECTION: forcing a failure.
[   56.431946][ T5526] name failslab, interval 1, probability 0, space 0, times 0
[   56.444787][ T5526] CPU: 0 UID: 0 PID: 5526 Comm: syz.2.727 Not tainted 6.13.0-rc2-syzkaller #0
[   56.453656][ T5526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   56.463757][ T5526] Call Trace:
[   56.467029][ T5526]  <TASK>
[   56.469971][ T5526]  dump_stack_lvl+0xf2/0x150
[   56.474701][ T5526]  dump_stack+0x15/0x1a
[   56.478865][ T5526]  should_fail_ex+0x223/0x230
[   56.483695][ T5526]  should_failslab+0x8f/0xb0
[   56.488303][ T5526]  __kmalloc_node_noprof+0xad/0x410
[   56.493805][ T5526]  ? __rcu_read_unlock+0x4e/0x70
[   56.499053][ T5526]  ? load_msg+0x41/0x2c0
[   56.503291][ T5526]  load_msg+0x41/0x2c0
[   56.507578][ T5526]  do_mq_timedsend+0x23b/0x680
[   56.512437][ T5526]  __x64_sys_mq_timedsend+0xca/0x150
[   56.517720][ T5526]  x64_sys_call+0x2a68/0x2dc0
[   56.522473][ T5526]  do_syscall_64+0xc9/0x1c0
[   56.526968][ T5526]  ? clear_bhb_loop+0x55/0xb0
[   56.531788][ T5526]  ? clear_bhb_loop+0x55/0xb0
[   56.536470][ T5526]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.542427][ T5526] RIP: 0033:0x7f908568fed9
[   56.546855][ T5526] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.566543][ T5526] RSP: 002b:00007f9083ce6058 EFLAGS: 00000246 ORIG_RAX: 00000000000000f2
[   56.575205][ T5526] RAX: ffffffffffffffda RBX: 00007f9085856080 RCX: 00007f908568fed9
[   56.583192][ T5526] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[   56.591191][ T5526] RBP: 00007f9083ce60a0 R08: 0000000000000000 R09: 0000000000000000
[   56.599329][ T5526] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   56.607502][ T5526] R13: 0000000000000001 R14: 00007f9085856080 R15: 00007fff96468578
[   56.615684][ T5526]  </TASK>
[   56.936014][ T5553] wireguard0: entered promiscuous mode
[   56.941575][ T5553] wireguard0: entered allmulticast mode
[   56.977188][ T5557] loop1: detected capacity change from 0 to 2048
[   57.042321][ T5563] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0
[   57.047833][ T5562] IPVS: stopping master sync thread 5563 ...
[   57.067130][ T5565] netlink: 332 bytes leftover after parsing attributes in process `syz.4.743'.
[   57.099303][ T5569] netlink: 8 bytes leftover after parsing attributes in process `syz.4.745'.
[   57.128703][ T5575] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0
[   57.128736][ T5574] IPVS: stopping master sync thread 5575 ...
[   57.200854][ T5582] loop1: detected capacity change from 0 to 512
[   57.217410][ T5582] ext4 filesystem being mounted at /169/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   57.230675][ T5582] x_tables: duplicate underflow at hook 2
[   57.296152][ T5592] wireguard0: entered promiscuous mode
[   57.301696][ T5592] wireguard0: entered allmulticast mode
[   57.348723][ T5603] netlink: 8 bytes leftover after parsing attributes in process `syz.0.757'.
[   57.569174][ T5610] loop1: detected capacity change from 0 to 2048
[   57.774465][ T5632] netlink: 8 bytes leftover after parsing attributes in process `syz.0.769'.
[   57.824995][ T5634] IPVS: Error connecting to the multicast addr
[   57.975181][ T5636] loop3: detected capacity change from 0 to 2048
[   58.019549][ T5643] netlink: 'syz.0.773': attribute type 13 has an invalid length.
[   58.037017][ T5643] gretap0: refused to change device tx_queue_len
[   58.043928][ T5643] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   58.091134][ T5648] netlink: 8 bytes leftover after parsing attributes in process `syz.4.776'.
[   58.102039][   T29] kauditd_printk_skb: 219 callbacks suppressed
[   58.102051][   T29] audit: type=1326 audit(1733761736.995:2543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5649 comm="syz.0.775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33698cfed9 code=0x7ffc0000
[   58.119945][ T5652] FAULT_INJECTION: forcing a failure.
[   58.119945][ T5652] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   58.131625][   T29] audit: type=1326 audit(1733761736.995:2544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5649 comm="syz.0.775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f33698cfed9 code=0x7ffc0000
[   58.144660][ T5652] CPU: 1 UID: 0 PID: 5652 Comm: +}[@ Not tainted 6.13.0-rc2-syzkaller #0
[   58.144685][ T5652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   58.144699][ T5652] Call Trace:
[   58.167986][   T29] audit: type=1326 audit(1733761736.995:2545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5649 comm="syz.0.775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33698cfed9 code=0x7ffc0000
[   58.176321][ T5652]  <TASK>
[   58.186496][   T29] audit: type=1326 audit(1733761736.995:2546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5649 comm="syz.0.775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f33698cfed9 code=0x7ffc0000
[   58.190298][ T5652]  dump_stack_lvl+0xf2/0x150
[   58.213807][   T29] audit: type=1326 audit(1733761736.995:2547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5649 comm="syz.0.775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33698cfed9 code=0x7ffc0000
[   58.216685][ T5652]  dump_stack+0x15/0x1a
[   58.216717][ T5652]  should_fail_ex+0x223/0x230
[   58.240087][   T29] audit: type=1326 audit(1733761736.995:2548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5649 comm="syz.0.775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=285 compat=0 ip=0x7f33698cfed9 code=0x7ffc0000
[   58.244673][ T5652]  should_fail+0xb/0x10
[   58.267953][   T29] audit: type=1326 audit(1733761736.995:2549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5649 comm="syz.0.775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=96 compat=0 ip=0xffffffffff600000 code=0x7ffc0000
[   58.272042][ T5652]  should_fail_usercopy+0x1a/0x20
[   58.276766][   T29] audit: type=1326 audit(1733761736.995:2550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5649 comm="syz.0.775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33698cfed9 code=0x7ffc0000
[   58.300228][ T5652]  _copy_from_user+0x1e/0xb0
[   58.300264][ T5652]  eventfd_write+0x73/0x370
[   58.365579][ T5652]  ? __pfx_eventfd_write+0x10/0x10
[   58.370742][ T5652]  vfs_write+0x281/0x920
[   58.374994][ T5652]  ? putname+0xcf/0xf0
[   58.379152][ T5652]  ? __fget_files+0x17c/0x1c0
[   58.383927][ T5652]  ksys_write+0xe8/0x1b0
[   58.388220][ T5652]  __x64_sys_write+0x42/0x50
[   58.392895][ T5652]  x64_sys_call+0x287e/0x2dc0
[   58.397566][ T5652]  do_syscall_64+0xc9/0x1c0
[   58.402074][ T5652]  ? clear_bhb_loop+0x55/0xb0
[   58.406766][ T5652]  ? clear_bhb_loop+0x55/0xb0
[   58.411511][ T5652]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.417515][ T5652] RIP: 0033:0x7f33698cfed9
[   58.421952][ T5652] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.441587][ T5652] RSP: 002b:00007f3367f47058 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   58.450007][ T5652] RAX: ffffffffffffffda RBX: 00007f3369a95fa0 RCX: 00007f33698cfed9
[   58.457985][ T5652] RDX: 0000000000000008 RSI: 0000000020000000 RDI: 0000000000000003
[   58.466035][ T5652] RBP: 00007f3367f470a0 R08: 0000000000000000 R09: 0000000000000000
[   58.474612][ T5652] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   58.482716][ T5652] R13: 0000000000000000 R14: 00007f3369a95fa0 R15: 00007ffc1c2e8f78
[   58.490880][ T5652]  </TASK>
[   58.532966][ T3295] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   58.568092][   T29] audit: type=1326 audit(1733761737.475:2551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5660 comm="syz.4.781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03eebefed9 code=0x7ffc0000
[   58.580224][ T5664] netlink: 8 bytes leftover after parsing attributes in process `syz.1.780'.
[   58.591665][   T29] audit: type=1326 audit(1733761737.475:2552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5660 comm="syz.4.781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03eebefed9 code=0x7ffc0000
[   58.625011][ T5658] netlink: 332 bytes leftover after parsing attributes in process `syz.2.779'.
[   58.691963][ T5672] netlink: 'syz.1.785': attribute type 13 has an invalid length.
[   58.721371][ T5672] gretap0: refused to change device tx_queue_len
[   58.725182][ T3294] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   58.735960][ T5672] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   58.788145][ T5681] IPVS: stopping master sync thread 5686 ...
[   58.794310][ T5686] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0
[   58.807157][ T5684] loop3: detected capacity change from 0 to 2048
[   58.836107][ T5684] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   58.844155][ T5684] EXT4-fs error (device loop3): ext4_init_orphan_info:586: comm syz.3.789: inode #0: comm syz.3.789: iget: illegal inode #
[   58.866293][ T5684] EXT4-fs (loop3): get orphan inode failed
[   58.872523][ T5684] EXT4-fs (loop3): mount failed
[   58.914922][ T5695] loop1: detected capacity change from 0 to 8192
[   59.054553][ T5706] loop3: detected capacity change from 0 to 2048
[   59.217126][ T3294] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   59.280550][ T5720] netlink: 'syz.3.801': attribute type 13 has an invalid length.
[   59.290258][ T5720] gretap0: refused to change device tx_queue_len
[   59.297701][ T5720] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   59.388770][ T5723] loop3: detected capacity change from 0 to 2048
[   59.416885][ T5723] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   59.427446][ T5723] EXT4-fs error (device loop3): ext4_init_orphan_info:586: comm syz.3.802: inode #0: comm syz.3.802: iget: illegal inode #
[   59.441411][ T5723] EXT4-fs (loop3): get orphan inode failed
[   59.447588][ T5723] EXT4-fs (loop3): mount failed
[   59.624855][ T5741] loop3: detected capacity change from 0 to 2048
[   59.818707][ T5751] loop4: detected capacity change from 0 to 8192
[   59.912657][ T5755] tipc: Started in network mode
[   59.917593][ T5755] tipc: Node identity 5e54baf38457, cluster identity 4711
[   59.925305][ T5755] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   59.979835][ T5755] syzkaller0: entered promiscuous mode
[   59.987551][ T5755] syzkaller0: entered allmulticast mode
[   59.995357][ T5755] tipc: Resetting bearer <eth:syzkaller0>
[   60.008881][ T5754] tipc: Resetting bearer <eth:syzkaller0>
[   60.048733][ T5754] tipc: Disabling bearer <eth:syzkaller0>
[   60.182481][ T5770] loop1: detected capacity change from 0 to 2048
[   60.263114][ T5780] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0
[   60.263165][ T5779] IPVS: stopping master sync thread 5780 ...
[   60.293669][ T5782] wireguard0: entered promiscuous mode
[   60.300050][ T5782] wireguard0: entered allmulticast mode
[   60.319873][ T5786] __nla_validate_parse: 7 callbacks suppressed
[   60.319934][ T5786] netlink: 332 bytes leftover after parsing attributes in process `syz.1.825'.
[   60.410466][ T3294] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   60.471922][ T5791] netlink: 8 bytes leftover after parsing attributes in process `syz.1.828'.
[   60.473704][ T5793] loop3: detected capacity change from 0 to 4096
[   60.532195][ T5798] loop1: detected capacity change from 0 to 128
[   60.643950][ T5803] loop3: detected capacity change from 0 to 2048
[   60.709824][ T5814] netlink: 8 bytes leftover after parsing attributes in process `syz.0.836'.
[   60.737039][ T5816] loop1: detected capacity change from 0 to 2048
[   60.749716][ T5816] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   60.760479][ T5821] netlink: 8 bytes leftover after parsing attributes in process `syz.0.840'.
[   60.777156][ T5816] EXT4-fs error (device loop1): ext4_init_orphan_info:586: comm syz.1.838: inode #0: comm syz.1.838: iget: illegal inode #
[   60.811952][ T5816] EXT4-fs (loop1): get orphan inode failed
[   60.818536][ T5816] EXT4-fs (loop1): mount failed
[   60.821861][ T5831] SELinux: syz.0.844 (5831) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   60.919906][ T5836] loop4: detected capacity change from 0 to 8192
[   60.932226][ T5843] loop1: detected capacity change from 0 to 2048
[   61.009850][ T5846] loop2: detected capacity change from 0 to 2048
[   61.147387][ T5868] FAULT_INJECTION: forcing a failure.
[   61.147387][ T5868] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   61.161402][ T5868] CPU: 0 UID: 0 PID: 5868 Comm: syz.3.859 Not tainted 6.13.0-rc2-syzkaller #0
[   61.170277][ T5868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   61.183721][ T5868] Call Trace:
[   61.187141][ T5868]  <TASK>
[   61.190100][ T5868]  dump_stack_lvl+0xf2/0x150
[   61.195372][ T5868]  dump_stack+0x15/0x1a
[   61.199568][ T5868]  should_fail_ex+0x223/0x230
[   61.204448][ T5868]  should_fail_alloc_page+0xfd/0x110
[   61.210997][ T5868]  __alloc_pages_noprof+0x109/0x340
[   61.216931][ T5868]  alloc_pages_mpol_noprof+0xb1/0x1e0
[   61.222330][ T5868]  vma_alloc_folio_noprof+0x1a0/0x2f0
[   61.227817][ T5868]  do_wp_page+0x64b/0x2340
[   61.232325][ T5868]  ? __rcu_read_lock+0x36/0x50
[   61.237114][ T5868]  handle_mm_fault+0xc63/0x2ac0
[   61.242035][ T5868]  exc_page_fault+0x296/0x650
[   61.246746][ T5868]  ? bpf_trace_run2+0x123/0x1d0
[   61.251624][ T5868]  asm_exc_page_fault+0x26/0x30
[   61.256497][ T5868] RIP: 0010:__put_user_4+0x11/0x20
[   61.261664][ T5868] Code: 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90
[   61.281393][ T5868] RSP: 0018:ffffc90001427c58 EFLAGS: 00050202
[   61.287555][ T5868] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000020007ff8
[   61.295654][ T5868] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   61.303806][ T5868] RBP: ffffc90001427ee0 R08: ffffffff84158909 R09: 0000000000000000
[   61.311858][ T5868] R10: 0001ffffffffffff R11: 00018881031e1bf0 R12: 0000000000040000
[   61.320105][ T5868] R13: 0000000020007fc0 R14: ffffc90001427d10 R15: 0000000000000001
[   61.329145][ T5868]  ? __sys_sendmmsg+0x319/0x4b0
[   61.334066][ T5868]  __sys_sendmmsg+0x331/0x4b0
[   61.338769][ T5868]  __x64_sys_sendmmsg+0x57/0x70
[   61.343700][ T5868]  x64_sys_call+0x29aa/0x2dc0
[   61.348446][ T5868]  do_syscall_64+0xc9/0x1c0
[   61.353039][ T5868]  ? clear_bhb_loop+0x55/0xb0
[   61.357771][ T5868]  ? clear_bhb_loop+0x55/0xb0
[   61.362463][ T5868]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.368431][ T5868] RIP: 0033:0x7f70c0c9fed9
[   61.373508][ T5868] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   61.393487][ T5868] RSP: 002b:00007f70bf317058 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   61.402280][ T5868] RAX: ffffffffffffffda RBX: 00007f70c0e65fa0 RCX: 00007f70c0c9fed9
[   61.410369][ T5868] RDX: 000000000800001d RSI: 0000000020007fc0 RDI: 0000000000000005
[   61.418448][ T5868] RBP: 00007f70bf3170a0 R08: 0000000000000000 R09: 0000000000000000
[   61.426441][ T5868] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   61.434511][ T5868] R13: 0000000000000000 R14: 00007f70c0e65fa0 R15: 00007ffe543656d8
[   61.442596][ T5868]  </TASK>
[   61.475911][ T5870] loop1: detected capacity change from 0 to 2048
[   61.572986][ T3295] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   61.724788][ T5890] loop1: detected capacity change from 0 to 2048
[   61.834655][ T5905] loop3: detected capacity change from 0 to 2048
[   61.889588][ T5912] loop3: detected capacity change from 0 to 2048
[   61.967057][ T5920] FAULT_INJECTION: forcing a failure.
[   61.967057][ T5920] name failslab, interval 1, probability 0, space 0, times 0
[   61.979931][ T5920] CPU: 0 UID: 0 PID: 5920 Comm: syz.3.876 Not tainted 6.13.0-rc2-syzkaller #0
[   61.989617][ T5920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   62.000977][ T5920] Call Trace:
[   62.004395][ T5920]  <TASK>
[   62.007486][ T5920]  dump_stack_lvl+0xf2/0x150
[   62.012352][ T5920]  dump_stack+0x15/0x1a
[   62.016569][ T5920]  should_fail_ex+0x223/0x230
[   62.021420][ T5920]  should_failslab+0x8f/0xb0
[   62.026054][ T5920]  __kmalloc_node_noprof+0xad/0x410
[   62.031268][ T5920]  ? vmemdup_user+0x42/0x1b0
[   62.036044][ T5920]  vmemdup_user+0x42/0x1b0
[   62.039636][ T5918] loop4: detected capacity change from 0 to 2048
[   62.040631][ T5920]  map_lookup_and_delete_elem+0x2db/0x630
[   62.053172][ T5920]  __sys_bpf+0x53c/0x7a0
[   62.057804][ T5920]  __x64_sys_bpf+0x43/0x50
[   62.062801][ T5920]  x64_sys_call+0x2914/0x2dc0
[   62.067872][ T5920]  do_syscall_64+0xc9/0x1c0
[   62.072611][ T5920]  ? clear_bhb_loop+0x55/0xb0
[   62.080300][ T5920]  ? clear_bhb_loop+0x55/0xb0
[   62.086027][ T5920]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.093589][ T5920] RIP: 0033:0x7f70c0c9fed9
[   62.098429][ T5920] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.119744][ T5920] RSP: 002b:00007f70bf317058 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   62.128418][ T5920] RAX: ffffffffffffffda RBX: 00007f70c0e65fa0 RCX: 00007f70c0c9fed9
[   62.136415][ T5920] RDX: 0000000000000020 RSI: 00000000200000c0 RDI: 0000000000000015
[   62.144488][ T5920] RBP: 00007f70bf3170a0 R08: 0000000000000000 R09: 0000000000000000
[   62.152533][ T5920] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   62.160582][ T5920] R13: 0000000000000000 R14: 00007f70c0e65fa0 R15: 00007ffe543656d8
[   62.168757][ T5920]  </TASK>
[   62.235656][ T3295] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   62.313547][ T5934] netlink: 8 bytes leftover after parsing attributes in process `syz.0.882'.
[   62.362651][ T3298] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   62.617626][ T5974] loop1: detected capacity change from 0 to 512
[   62.624167][ T5974] EXT4-fs: Ignoring removed nomblk_io_submit option
[   62.637773][ T5974] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[   62.668013][ T5974] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -2
[   62.689283][ T5974] EXT4-fs (loop1): 1 truncate cleaned up
[   62.696591][ T5974] EXT4-fs error (device loop1): ext4_map_blocks:671: inode #2: block 4: comm syz.1.901: lblock 0 mapped to illegal pblock 4 (length 1)
[   62.712111][ T5974] EXT4-fs (loop1): Remounting filesystem read-only
[   62.741507][ T5989] FAULT_INJECTION: forcing a failure.
[   62.741507][ T5989] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   62.754711][ T5989] CPU: 0 UID: 0 PID: 5989 Comm: syz.2.906 Not tainted 6.13.0-rc2-syzkaller #0
[   62.763560][ T5989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   62.773779][ T5989] Call Trace:
[   62.777052][ T5989]  <TASK>
[   62.779988][ T5989]  dump_stack_lvl+0xf2/0x150
[   62.784675][ T5989]  dump_stack+0x15/0x1a
[   62.788859][ T5989]  should_fail_ex+0x223/0x230
[   62.793549][ T5989]  should_fail+0xb/0x10
[   62.797782][ T5989]  should_fail_usercopy+0x1a/0x20
[   62.802926][ T5989]  _copy_to_user+0x20/0xa0
[   62.807370][ T5989]  simple_read_from_buffer+0xa0/0x110
[   62.812765][ T5989]  proc_fail_nth_read+0xf9/0x140
[   62.817801][ T5989]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   62.823468][ T5989]  vfs_read+0x1a2/0x700
[   62.827646][ T5989]  ? __rcu_read_unlock+0x4e/0x70
[   62.832724][ T5989]  ? __fget_files+0x17c/0x1c0
[   62.837409][ T5989]  ksys_read+0xe8/0x1b0
[   62.841643][ T5989]  __x64_sys_read+0x42/0x50
[   62.846178][ T5989]  x64_sys_call+0x2874/0x2dc0
[   62.850931][ T5989]  do_syscall_64+0xc9/0x1c0
[   62.855510][ T5989]  ? clear_bhb_loop+0x55/0xb0
[   62.860194][ T5989]  ? clear_bhb_loop+0x55/0xb0
[   62.864914][ T5989]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.871015][ T5989] RIP: 0033:0x7f908568e8ec
[   62.875529][ T5989] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   62.895212][ T5989] RSP: 002b:00007f9083d07050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   62.903664][ T5989] RAX: ffffffffffffffda RBX: 00007f9085855fa0 RCX: 00007f908568e8ec
[   62.911737][ T5989] RDX: 000000000000000f RSI: 00007f9083d070b0 RDI: 0000000000000005
[   62.919710][ T5989] RBP: 00007f9083d070a0 R08: 0000000000000000 R09: 0000000000000000
[   62.927682][ T5989] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   62.935650][ T5989] R13: 0000000000000000 R14: 00007f9085855fa0 R15: 00007fff96468578
[   62.943626][ T5989]  </TASK>
[   62.987731][ T5993] loop2: detected capacity change from 0 to 1024
[   62.995725][ T5993] ext2: Unknown parameter 'obj_type'
[   63.051059][ T5999] loop2: detected capacity change from 0 to 2048
[   63.148309][ T6005] loop1: detected capacity change from 0 to 2048
[   63.169343][ T6008] FAULT_INJECTION: forcing a failure.
[   63.169343][ T6008] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   63.182508][ T6008] CPU: 1 UID: 0 PID: 6008 Comm: syz.4.915 Not tainted 6.13.0-rc2-syzkaller #0
[   63.191393][ T6008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   63.201460][ T6008] Call Trace:
[   63.204778][ T6008]  <TASK>
[   63.207862][ T6008]  dump_stack_lvl+0xf2/0x150
[   63.212529][ T6008]  dump_stack+0x15/0x1a
[   63.216709][ T6008]  should_fail_ex+0x223/0x230
[   63.221493][ T6008]  should_fail+0xb/0x10
[   63.225660][ T6008]  should_fail_usercopy+0x1a/0x20
[   63.230728][ T6008]  _copy_from_iter+0xd5/0xd00
[   63.235404][ T6008]  ? __rcu_read_unlock+0x4e/0x70
[   63.240450][ T6008]  ? avc_has_perm_noaudit+0x1cc/0x210
[   63.245854][ T6008]  write_pool_user+0x80/0x1e0
[   63.250546][ T6008]  ? import_ubuf+0xec/0x130
[   63.255148][ T6008]  random_ioctl+0x2c6/0x3f0
[   63.259805][ T6008]  ? __pfx_random_ioctl+0x10/0x10
[   63.264858][ T6008]  __se_sys_ioctl+0xc9/0x140
[   63.269506][ T6008]  __x64_sys_ioctl+0x43/0x50
[   63.274173][ T6008]  x64_sys_call+0x1690/0x2dc0
[   63.278853][ T6008]  do_syscall_64+0xc9/0x1c0
[   63.283450][ T6008]  ? clear_bhb_loop+0x55/0xb0
[   63.288271][ T6008]  ? clear_bhb_loop+0x55/0xb0
[   63.293142][ T6008]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.299673][ T6008] RIP: 0033:0x7f03eebefed9
[   63.304147][ T6008] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   63.323762][ T6008] RSP: 002b:00007f03ed267058 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   63.332188][ T6008] RAX: ffffffffffffffda RBX: 00007f03eedb5fa0 RCX: 00007f03eebefed9
[   63.340179][ T6008] RDX: 0000000020000000 RSI: 0000000040085203 RDI: 000000000000000d
[   63.348157][ T6008] RBP: 00007f03ed2670a0 R08: 0000000000000000 R09: 0000000000000000
[   63.356143][ T6008] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   63.364146][ T6008] R13: 0000000000000000 R14: 00007f03eedb5fa0 R15: 00007ffefbaee638
[   63.372131][ T6008]  </TASK>
[   63.439251][ T6015] netlink: 332 bytes leftover after parsing attributes in process `syz.0.916'.
[   63.464817][ T6019] loop2: detected capacity change from 0 to 8192
[   63.482748][ T3295] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   63.584310][ T6036] netlink: 8 bytes leftover after parsing attributes in process `syz.3.924'.
[   63.653595][ T6048] FAULT_INJECTION: forcing a failure.
[   63.653595][ T6048] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   63.666804][ T6048] CPU: 0 UID: 0 PID: 6048 Comm: syz.0.929 Not tainted 6.13.0-rc2-syzkaller #0
[   63.669552][ T6046] loop3: detected capacity change from 0 to 4096
[   63.675817][ T6048] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   63.675832][ T6048] Call Trace:
[   63.675838][ T6048]  <TASK>
[   63.675846][ T6048]  dump_stack_lvl+0xf2/0x150
[   63.675943][ T6048]  dump_stack+0x15/0x1a
[   63.675968][ T6048]  should_fail_ex+0x223/0x230
[   63.676004][ T6048]  should_fail+0xb/0x10
[   63.676023][ T6048]  should_fail_usercopy+0x1a/0x20
[   63.721411][ T6048]  _copy_from_user+0x1e/0xb0
[   63.726080][ T6048]  move_addr_to_kernel+0x82/0x120
[   63.731209][ T6048]  copy_msghdr_from_user+0x271/0x2a0
[   63.736565][ T6048]  __sys_sendmsg+0x13e/0x230
[   63.741381][ T6048]  __x64_sys_sendmsg+0x46/0x50
[   63.746238][ T6048]  x64_sys_call+0x2734/0x2dc0
[   63.750906][ T6048]  do_syscall_64+0xc9/0x1c0
[   63.755456][ T6048]  ? clear_bhb_loop+0x55/0xb0
[   63.760123][ T6048]  ? clear_bhb_loop+0x55/0xb0
[   63.764798][ T6048]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.770706][ T6048] RIP: 0033:0x7f33698cfed9
[   63.775126][ T6048] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   63.794996][ T6048] RSP: 002b:00007f3367f47058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   63.803405][ T6048] RAX: ffffffffffffffda RBX: 00007f3369a95fa0 RCX: 00007f33698cfed9
[   63.811399][ T6048] RDX: 0000000000000000 RSI: 0000000020000780 RDI: 0000000000000003
[   63.819454][ T6048] RBP: 00007f3367f470a0 R08: 0000000000000000 R09: 0000000000000000
[   63.827489][ T6048] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   63.835453][ T6048] R13: 0000000000000000 R14: 00007f3369a95fa0 R15: 00007ffc1c2e8f78
[   63.843444][ T6048]  </TASK>
[   63.907075][ T6053] netlink: 332 bytes leftover after parsing attributes in process `syz.4.931'.
[   63.999800][   T29] kauditd_printk_skb: 76 callbacks suppressed
[   63.999812][   T29] audit: type=1400 audit(1733761742.905:2629): avc:  denied  { map } for  pid=6062 comm="syz.0.935" path="socket:[13580]" dev="sockfs" ino=13580 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   64.029499][   T29] audit: type=1326 audit(1733761742.925:2630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6062 comm="syz.0.935" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f33698cfed9 code=0x0
[   64.055187][   T29] audit: type=1326 audit(1733761742.965:2631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6065 comm="syz.4.936" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03eebefed9 code=0x7ffc0000
[   64.078634][   T29] audit: type=1326 audit(1733761742.965:2632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6065 comm="syz.4.936" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03eebefed9 code=0x7ffc0000
[   64.106782][   T29] audit: type=1326 audit(1733761742.985:2633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6065 comm="syz.4.936" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f03eebefed9 code=0x7ffc0000
[   64.130250][   T29] audit: type=1326 audit(1733761742.985:2634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6065 comm="syz.4.936" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03eebefed9 code=0x7ffc0000
[   64.153683][   T29] audit: type=1326 audit(1733761742.985:2635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6065 comm="syz.4.936" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03eebefed9 code=0x7ffc0000
[   64.177400][   T29] audit: type=1326 audit(1733761742.985:2636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6065 comm="syz.4.936" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f03eebefed9 code=0x7ffc0000
[   64.200722][   T29] audit: type=1326 audit(1733761742.985:2637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6065 comm="syz.4.936" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03eebefed9 code=0x7ffc0000
[   64.224164][   T29] audit: type=1326 audit(1733761742.985:2638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6065 comm="syz.4.936" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03eebefed9 code=0x7ffc0000
[   64.447463][ T6087] netlink: 332 bytes leftover after parsing attributes in process `syz.2.944'.
[   64.546284][ T6099] loop2: detected capacity change from 0 to 2048
[   64.673525][ T6115] loop1: detected capacity change from 0 to 8192
[   64.715602][ T6121] loop4: detected capacity change from 0 to 2048
[   64.756744][ T6127] netlink: 8 bytes leftover after parsing attributes in process `syz.4.963'.
[   64.887141][ T6146] loop4: detected capacity change from 0 to 8192
[   64.939085][ T6149] loop2: detected capacity change from 0 to 4096
[   64.980244][ T6151] loop1: detected capacity change from 0 to 2048
[   65.002649][ T6154] netlink: 'syz.0.976': attribute type 4 has an invalid length.
[   65.089927][ T3295] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[   65.180265][ T6179] loop4: detected capacity change from 0 to 8192
[   65.307206][ T6200] netlink: 'syz.2.995': attribute type 4 has an invalid length.
[   65.314200][ T6194] loop1: detected capacity change from 0 to 4096
[   65.403348][ T6211] __nla_validate_parse: 4 callbacks suppressed
[   65.403364][ T6211] netlink: 332 bytes leftover after parsing attributes in process `syz.4.1000'.
[   65.462018][ T6221] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1004'.
[   65.527437][ T6224] loop1: detected capacity change from 0 to 8192
[   65.615062][ T6237] loop1: detected capacity change from 0 to 2048
[   65.635491][ T6234] loop2: detected capacity change from 0 to 8192
[   65.695866][ T6245] netlink: 332 bytes leftover after parsing attributes in process `syz.1.1015'.
[   65.718821][ T6248] loop4: detected capacity change from 0 to 2048
[   65.776121][ T6257] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1020'.
[   65.893832][ T3298] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   65.940449][ T6268] FAULT_INJECTION: forcing a failure.
[   65.940449][ T6268] name failslab, interval 1, probability 0, space 0, times 0
[   65.953169][ T6268] CPU: 0 UID: 0 PID: 6268 Comm: syz.1.1025 Not tainted 6.13.0-rc2-syzkaller #0
[   65.962172][ T6268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   65.972234][ T6268] Call Trace:
[   65.975512][ T6268]  <TASK>
[   65.978448][ T6268]  dump_stack_lvl+0xf2/0x150
[   65.983140][ T6268]  dump_stack+0x15/0x1a
[   65.987419][ T6268]  should_fail_ex+0x223/0x230
[   65.992297][ T6268]  should_failslab+0x8f/0xb0
[   65.997027][ T6268]  kmem_cache_alloc_node_noprof+0x59/0x320
[   66.003090][ T6268]  ? __alloc_skb+0x10b/0x310
[   66.007770][ T6268]  __alloc_skb+0x10b/0x310
[   66.012299][ T6268]  netlink_alloc_large_skb+0xad/0xe0
[   66.017616][ T6268]  netlink_sendmsg+0x3b4/0x6e0
[   66.022422][ T6268]  ? __pfx_netlink_sendmsg+0x10/0x10
[   66.027798][ T6268]  __sock_sendmsg+0x140/0x180
[   66.032495][ T6268]  sock_write_iter+0x15e/0x1a0
[   66.037302][ T6268]  do_iter_readv_writev+0x394/0x450
[   66.042574][ T6268]  vfs_writev+0x2d4/0x880
[   66.046919][ T6268]  ? proc_fail_nth_write+0x12a/0x150
[   66.052271][ T6268]  do_writev+0xf4/0x220
[   66.056554][ T6268]  __x64_sys_writev+0x45/0x50
[   66.061272][ T6268]  x64_sys_call+0x1fab/0x2dc0
[   66.065968][ T6268]  do_syscall_64+0xc9/0x1c0
[   66.070515][ T6268]  ? clear_bhb_loop+0x55/0xb0
[   66.075211][ T6268]  ? clear_bhb_loop+0x55/0xb0
[   66.079906][ T6268]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.086093][ T6268] RIP: 0033:0x7f711795fed9
[   66.090578][ T6268] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.111118][ T6268] RSP: 002b:00007f7115fd7058 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[   66.119651][ T6268] RAX: ffffffffffffffda RBX: 00007f7117b25fa0 RCX: 00007f711795fed9
[   66.127631][ T6268] RDX: 0000000000000001 RSI: 00000000200003c0 RDI: 0000000000000009
[   66.135674][ T6268] RBP: 00007f7115fd70a0 R08: 0000000000000000 R09: 0000000000000000
[   66.143669][ T6268] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   66.151649][ T6268] R13: 0000000000000000 R14: 00007f7117b25fa0 R15: 00007ffe9dbe7078
[   66.159900][ T6268]  </TASK>
[   66.222116][ T6270] loop4: detected capacity change from 0 to 8192
[   66.299100][ T6285] netlink: 332 bytes leftover after parsing attributes in process `syz.3.1030'.
[   66.410864][ T6298] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1037'.
[   66.470084][ T6298] loop3: detected capacity change from 0 to 512
[   66.476832][ T6303] FAULT_INJECTION: forcing a failure.
[   66.476832][ T6303] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   66.490022][ T6303] CPU: 1 UID: 0 PID: 6303 Comm: syz.0.1039 Not tainted 6.13.0-rc2-syzkaller #0
[   66.498977][ T6303] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   66.509214][ T6303] Call Trace:
[   66.512526][ T6303]  <TASK>
[   66.515459][ T6303]  dump_stack_lvl+0xf2/0x150
[   66.520070][ T6303]  dump_stack+0x15/0x1a
[   66.524320][ T6303]  should_fail_ex+0x223/0x230
[   66.529099][ T6303]  should_fail+0xb/0x10
[   66.533339][ T6303]  should_fail_usercopy+0x1a/0x20
[   66.537413][ T6306] loop1: detected capacity change from 0 to 8192
[   66.538382][ T6303]  _copy_to_user+0x20/0xa0
[   66.549275][ T6303]  simple_read_from_buffer+0xa0/0x110
[   66.554668][ T6303]  proc_fail_nth_read+0xf9/0x140
[   66.559635][ T6303]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   66.565238][ T6303]  vfs_read+0x1a2/0x700
[   66.569542][ T6303]  ? _copy_from_user+0x3d/0xb0
[   66.574338][ T6303]  ? __rcu_read_unlock+0x4e/0x70
[   66.579297][ T6303]  ? __fget_files+0x17c/0x1c0
[   66.584141][ T6303]  ksys_read+0xe8/0x1b0
[   66.588771][ T6303]  __x64_sys_read+0x42/0x50
[   66.593296][ T6303]  x64_sys_call+0x2874/0x2dc0
[   66.597980][ T6303]  do_syscall_64+0xc9/0x1c0
[   66.602490][ T6303]  ? clear_bhb_loop+0x55/0xb0
[   66.607266][ T6303]  ? clear_bhb_loop+0x55/0xb0
[   66.611938][ T6303]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.617928][ T6303] RIP: 0033:0x7f33698ce8ec
[   66.622338][ T6303] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   66.642134][ T6303] RSP: 002b:00007f3367f47050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   66.650542][ T6303] RAX: ffffffffffffffda RBX: 00007f3369a95fa0 RCX: 00007f33698ce8ec
[   66.658509][ T6303] RDX: 000000000000000f RSI: 00007f3367f470b0 RDI: 0000000000000003
[   66.666521][ T6303] RBP: 00007f3367f470a0 R08: 0000000000000000 R09: 0000000000000000
[   66.674538][ T6303] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   66.682681][ T6303] R13: 0000000000000001 R14: 00007f3369a95fa0 R15: 00007ffc1c2e8f78
[   66.690689][ T6303]  </TASK>
[   66.737963][ T6320] FAULT_INJECTION: forcing a failure.
[   66.737963][ T6320] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   66.751145][ T6320] CPU: 0 UID: 0 PID: 6320 Comm: syz.1.1043 Not tainted 6.13.0-rc2-syzkaller #0
[   66.753656][ T6322] netlink: 332 bytes leftover after parsing attributes in process `syz.0.1046'.
[   66.760078][ T6320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   66.760093][ T6320] Call Trace:
[   66.760100][ T6320]  <TASK>
[   66.760107][ T6320]  dump_stack_lvl+0xf2/0x150
[   66.760139][ T6320]  dump_stack+0x15/0x1a
[   66.794847][ T6320]  should_fail_ex+0x223/0x230
[   66.799532][ T6320]  should_fail+0xb/0x10
[   66.803681][ T6320]  should_fail_usercopy+0x1a/0x20
[   66.808702][ T6320]  strncpy_from_user+0x25/0x210
[   66.813634][ T6320]  ? kmem_cache_alloc_noprof+0x18e/0x320
[   66.819350][ T6320]  ? getname_flags+0x81/0x3b0
[   66.824021][ T6320]  getname_flags+0xb0/0x3b0
[   66.828598][ T6320]  user_path_at+0x26/0x120
[   66.833008][ T6320]  __se_sys_fspick+0x9f/0x260
[   66.837756][ T6320]  __x64_sys_fspick+0x43/0x50
[   66.842470][ T6320]  x64_sys_call+0x2806/0x2dc0
[   66.847150][ T6320]  do_syscall_64+0xc9/0x1c0
[   66.851743][ T6320]  ? clear_bhb_loop+0x55/0xb0
[   66.856424][ T6320]  ? clear_bhb_loop+0x55/0xb0
[   66.861099][ T6320]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.867008][ T6320] RIP: 0033:0x7f711795fed9
[   66.871415][ T6320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.891113][ T6320] RSP: 002b:00007f7115fd7058 EFLAGS: 00000246 ORIG_RAX: 00000000000001b1
[   66.899600][ T6320] RAX: ffffffffffffffda RBX: 00007f7117b25fa0 RCX: 00007f711795fed9
[   66.907600][ T6320] RDX: 0000000000000000 RSI: 00000000200003c0 RDI: ffffffffffffffff
[   66.915564][ T6320] RBP: 00007f7115fd70a0 R08: 0000000000000000 R09: 0000000000000000
[   66.923525][ T6320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   66.931485][ T6320] R13: 0000000000000000 R14: 00007f7117b25fa0 R15: 00007ffe9dbe7078
[   66.939455][ T6320]  </TASK>
[   66.951081][ T6298] EXT4-fs mount: 66 callbacks suppressed
[   66.951094][ T6298] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   66.999906][ T6298] ext4 filesystem being mounted at /200/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   67.003248][ T6326] loop4: detected capacity change from 0 to 4096
[   67.020400][ T6298] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.1037: corrupted inode contents
[   67.040764][ T6298] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #2: comm syz.3.1037: mark_inode_dirty error
[   67.057302][ T6298] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.1037: corrupted inode contents
[   67.058700][ T6326] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.071068][ T6298] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #2: comm syz.3.1037: mark_inode_dirty error
[   67.138263][ T6338] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1051'.
[   67.138598][ T3294] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.171059][ T6326] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.205790][ T6344] loop2: detected capacity change from 0 to 512
[   67.214819][ T6344] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.1055: corrupted in-inode xattr: invalid ea_ino
[   67.228697][ T6344] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.1055: couldn't read orphan inode 15 (err -117)
[   67.241562][ T6344] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.264396][ T6352] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1057'.
[   67.296898][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.326200][ T6354] loop4: detected capacity change from 0 to 512
[   67.355944][ T6354] EXT4-fs warning (device loop4): ext4_block_to_path:107: block 3279945729 > max in inode 13
[   67.394234][ T6354] EXT4-fs warning (device loop4): ext4_block_to_path:107: block 3279945730 > max in inode 13
[   67.413593][ T6354] EXT4-fs (loop4): 1 truncate cleaned up
[   67.419688][ T6354] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.433697][ T6354] EXT4-fs warning (device loop4): ext4_lookup:1825: Inconsistent encryption contexts: 2/12
[   67.456252][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.483821][ T6381] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1070'.
[   67.541134][ T6378] loop3: detected capacity change from 0 to 8192
[   67.562344][ T6385] FAULT_INJECTION: forcing a failure.
[   67.562344][ T6385] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   67.576624][ T6385] CPU: 0 UID: 0 PID: 6385 Comm: syz.0.1072 Not tainted 6.13.0-rc2-syzkaller #0
[   67.577845][ T6388] loop4: detected capacity change from 0 to 4096
[   67.585765][ T6385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   67.585781][ T6385] Call Trace:
[   67.585788][ T6385]  <TASK>
[   67.585795][ T6385]  dump_stack_lvl+0xf2/0x150
[   67.585887][ T6385]  dump_stack+0x15/0x1a
[   67.617693][ T6385]  should_fail_ex+0x223/0x230
[   67.622466][ T6385]  should_fail+0xb/0x10
[   67.626717][ T6385]  should_fail_usercopy+0x1a/0x20
[   67.631737][ T6385]  copy_page_from_iter_atomic+0x3fc/0xf80
[   67.637541][ T6385]  ? shmem_write_begin+0xa2/0x180
[   67.642631][ T6385]  ? shmem_write_begin+0xda/0x180
[   67.647663][ T6385]  generic_perform_write+0x2f1/0x4a0
[   67.653010][ T6385]  shmem_file_write_iter+0xc2/0xe0
[   67.658122][ T6385]  do_iter_readv_writev+0x394/0x450
[   67.663320][ T6385]  vfs_writev+0x2d4/0x880
[   67.667703][ T6385]  ? proc_fail_nth_write+0x12a/0x150
[   67.673009][ T6385]  __se_sys_pwritev2+0x100/0x1c0
[   67.678058][ T6385]  __x64_sys_pwritev2+0x78/0x90
[   67.682907][ T6385]  x64_sys_call+0x2afe/0x2dc0
[   67.687618][ T6385]  do_syscall_64+0xc9/0x1c0
[   67.692111][ T6385]  ? clear_bhb_loop+0x55/0xb0
[   67.696780][ T6385]  ? clear_bhb_loop+0x55/0xb0
[   67.701561][ T6385]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.707523][ T6385] RIP: 0033:0x7f33698cfed9
[   67.711928][ T6385] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.731547][ T6385] RSP: 002b:00007f3367f47058 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[   67.740188][ T6385] RAX: ffffffffffffffda RBX: 00007f3369a95fa0 RCX: 00007f33698cfed9
[   67.748217][ T6385] RDX: 0000000000000002 RSI: 0000000020000240 RDI: 0000000000000004
[   67.756179][ T6385] RBP: 00007f3367f470a0 R08: 0000000000000000 R09: 0000000000000003
[   67.764142][ T6385] R10: 0000000000001400 R11: 0000000000000246 R12: 0000000000000001
[   67.772299][ T6385] R13: 0000000000000000 R14: 00007f3369a95fa0 R15: 00007ffc1c2e8f78
[   67.780296][ T6385]  </TASK>
[   67.800929][ T6388] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.849784][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.071384][ T6423] loop4: detected capacity change from 0 to 2048
[   68.098633][ T6423] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.175432][ T3298] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   68.193384][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.413590][ T6451] loop1: detected capacity change from 0 to 8192
[   68.511635][ T6458] loop4: detected capacity change from 0 to 8192
[   68.837620][ T6491] loop3: detected capacity change from 0 to 2048
[   68.860877][ T6491] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.898429][ T6487] loop1: detected capacity change from 0 to 8192
[   69.027354][ T3294] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.115774][   T29] kauditd_printk_skb: 127 callbacks suppressed
[   69.115788][   T29] audit: type=1400 audit(1733761748.025:2766): avc:  denied  { map } for  pid=6513 comm="syz.3.1120" path="socket:[14651]" dev="sockfs" ino=14651 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   69.207534][   T29] audit: type=1400 audit(1733761748.025:2767): avc:  denied  { read } for  pid=6513 comm="syz.3.1120" path="socket:[14651]" dev="sockfs" ino=14651 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   69.219826][ T6518] loop2: detected capacity change from 0 to 2048
[   69.250242][ T6518] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.312051][ T3306] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   69.324666][ T6527] loop1: detected capacity change from 0 to 2048
[   69.344679][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.428574][   T29] audit: type=1400 audit(1733761748.335:2768): avc:  denied  { bind } for  pid=6536 comm="syz.3.1131" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   69.487990][ T6543] loop2: detected capacity change from 0 to 4096
[   69.499232][ T6543] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.592178][   T29] audit: type=1326 audit(1733761748.495:2769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6552 comm="syz.4.1137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03eebefed9 code=0x7ffc0000
[   69.607060][ T6553] bridge0: port 3(vlan2) entered blocking state
[   69.616094][   T29] audit: type=1326 audit(1733761748.495:2770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6552 comm="syz.4.1137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03eebefed9 code=0x7ffc0000
[   69.623075][ T6553] bridge0: port 3(vlan2) entered disabled state
[   69.652144][ T6543] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.657748][ T6553] vlan2: entered allmulticast mode
[   69.667558][   T29] audit: type=1326 audit(1733761748.555:2771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6551 comm="syz.1.1138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f711795fed9 code=0x7ffc0000
[   69.691556][   T29] audit: type=1326 audit(1733761748.555:2772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6551 comm="syz.1.1138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f711795fed9 code=0x7ffc0000
[   69.715498][   T29] audit: type=1326 audit(1733761748.555:2773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6551 comm="syz.1.1138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=37 compat=0 ip=0x7f711795fed9 code=0x7ffc0000
[   69.739448][   T29] audit: type=1326 audit(1733761748.555:2774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6551 comm="syz.1.1138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f711795fed9 code=0x7ffc0000
[   69.763304][   T29] audit: type=1326 audit(1733761748.555:2775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6551 comm="syz.1.1138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f711795fed9 code=0x7ffc0000
[   69.788200][ T6553] vlan2: left allmulticast mode
[   69.859886][ T6564] loop4: detected capacity change from 0 to 8192
[   70.066358][ T6583] loop3: detected capacity change from 0 to 2048
[   70.123827][ T6594] FAULT_INJECTION: forcing a failure.
[   70.123827][ T6594] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   70.136969][ T6594] CPU: 0 UID: 0 PID: 6594 Comm: syz.2.1153 Not tainted 6.13.0-rc2-syzkaller #0
[   70.146007][ T6594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   70.156254][ T6594] Call Trace:
[   70.159546][ T6594]  <TASK>
[   70.162486][ T6594]  dump_stack_lvl+0xf2/0x150
[   70.167111][ T6594]  dump_stack+0x15/0x1a
[   70.171289][ T6594]  should_fail_ex+0x223/0x230
[   70.177199][ T6594]  should_fail+0xb/0x10
[   70.184709][ T6594]  should_fail_usercopy+0x1a/0x20
[   70.190764][ T6594]  strncpy_from_user+0x25/0x210
[   70.196188][ T6594]  ? kmem_cache_alloc_noprof+0x18e/0x320
[   70.201921][ T6594]  ? getname_flags+0x81/0x3b0
[   70.206683][ T6594]  getname_flags+0xb0/0x3b0
[   70.211347][ T6594]  getname+0x17/0x20
[   70.215632][ T6594]  do_sys_openat2+0x67/0x120
[   70.220246][ T6594]  __x64_sys_openat+0xf3/0x120
[   70.225020][ T6594]  x64_sys_call+0x2b30/0x2dc0
[   70.229761][ T6594]  do_syscall_64+0xc9/0x1c0
[   70.234282][ T6594]  ? clear_bhb_loop+0x55/0xb0
[   70.238981][ T6594]  ? clear_bhb_loop+0x55/0xb0
[   70.243744][ T6594]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.249850][ T6594] RIP: 0033:0x7f908568fed9
[   70.254336][ T6594] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.274162][ T6594] RSP: 002b:00007f9083d07058 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   70.282674][ T6594] RAX: ffffffffffffffda RBX: 00007f9085855fa0 RCX: 00007f908568fed9
[   70.291267][ T6594] RDX: 0000000000001300 RSI: 00000000200003c0 RDI: ffffffffffffff9c
[   70.300342][ T6594] RBP: 00007f9083d070a0 R08: 0000000000000000 R09: 0000000000000000
[   70.308496][ T6594] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   70.316652][ T6594] R13: 0000000000000000 R14: 00007f9085855fa0 R15: 00007fff96468578
[   70.324632][ T6594]  </TASK>
[   70.362226][ T6583] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.616397][ T6575] ==================================================================
[   70.624620][ T6575] BUG: KCSAN: data-race in __writeback_single_inode / xas_set_mark
[   70.632533][ T6575] 
[   70.634857][ T6575] write to 0xffff888106a46f14 of 4 bytes by task 6564 on cpu 1:
[   70.642490][ T6575]  xas_set_mark+0x131/0x150
[   70.647041][ T6575]  __folio_start_writeback+0x1e8/0x430
[   70.652517][ T6575]  __block_write_full_folio+0x506/0x8c0
[   70.658087][ T6575]  block_write_full_folio+0x293/0x2b0
[   70.663467][ T6575]  __mpage_writepage+0xcfe/0xe10
[   70.668419][ T6575]  write_cache_pages+0x62/0x100
[   70.674333][ T6575]  mpage_writepages+0x72/0xf0
[   70.679292][ T6575]  fat_writepages+0x24/0x30
[   70.683812][ T6575]  do_writepages+0x1d8/0x480
[   70.688452][ T6575]  file_write_and_wait_range+0x168/0x2f0
[   70.694365][ T6575]  __generic_file_fsync+0x46/0x140
[   70.700227][ T6575]  fat_file_fsync+0x46/0x100
[   70.704830][ T6575]  vfs_fsync_range+0x116/0x130
[   70.709705][ T6575]  generic_file_write_iter+0x185/0x1c0
[   70.715367][ T6575]  iter_file_splice_write+0x5f1/0x980
[   70.720749][ T6575]  direct_splice_actor+0x160/0x2c0
[   70.725870][ T6575]  splice_direct_to_actor+0x302/0x670
[   70.731250][ T6575]  do_splice_direct+0xd7/0x150
[   70.736022][ T6575]  do_sendfile+0x398/0x660
[   70.740450][ T6575]  __x64_sys_sendfile64+0x110/0x150
[   70.745653][ T6575]  x64_sys_call+0xfbd/0x2dc0
[   70.750249][ T6575]  do_syscall_64+0xc9/0x1c0
[   70.754767][ T6575]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.760688][ T6575] 
[   70.763453][ T6575] read to 0xffff888106a46f14 of 4 bytes by task 6575 on cpu 0:
[   70.771002][ T6575]  __writeback_single_inode+0x210/0x850
[   70.776645][ T6575]  writeback_single_inode+0x16c/0x3f0
[   70.782109][ T6575]  sync_inode_metadata+0x5c/0x90
[   70.787077][ T6575]  __generic_file_fsync+0xed/0x140
[   70.792311][ T6575]  fat_file_fsync+0x46/0x100
[   70.796925][ T6575]  vfs_fsync_range+0x116/0x130
[   70.801721][ T6575]  generic_file_write_iter+0x185/0x1c0
[   70.807284][ T6575]  iter_file_splice_write+0x5f1/0x980
[   70.812683][ T6575]  direct_splice_actor+0x160/0x2c0
[   70.817807][ T6575]  splice_direct_to_actor+0x302/0x670
[   70.823204][ T6575]  do_splice_direct+0xd7/0x150
[   70.827990][ T6575]  do_sendfile+0x398/0x660
[   70.832415][ T6575]  __x64_sys_sendfile64+0x110/0x150
[   70.837611][ T6575]  x64_sys_call+0xfbd/0x2dc0
[   70.842202][ T6575]  do_syscall_64+0xc9/0x1c0
[   70.846887][ T6575]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.852803][ T6575] 
[   70.855121][ T6575] value changed: 0x0a000021 -> 0x04000021
[   70.860827][ T6575] 
[   70.863138][ T6575] Reported by Kernel Concurrency Sanitizer on:
[   70.869384][ T6575] CPU: 0 UID: 0 PID: 6575 Comm: syz.4.1142 Not tainted 6.13.0-rc2-syzkaller #0
[   70.878335][ T6575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   70.888961][ T6575] ==================================================================
[   70.927929][ T3294] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   70.997959][ T3294] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.